ANALYSIS: 2007-11-16 17:30:04
PROTECTIONS: 2
MALWARE: 148
SUSPECTS: 2
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
McAfee VirusScan 8.0 No Yes
McAfee VirusScan Online No No
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00027660 adware/savenow Adware No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{87766247-311c-43b4-8499-3d5fec94a183}
00027660 adware/savenow Adware No 0 Yes No hkey_local_machine\software\classes\runmsc.loader
00027660 adware/savenow Adware No 0 Yes No hkey_local_machine\software\classes\runmsc.loader.1
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA9-A523-4961-B6BB-170DE4475CCA}
00032731 application/mywebsearch HackTools No 0 Yes No hkey_classes_root\clsid\{a4730ebe-43a6-443e-9776-36915d323ad3}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
00032731 application/mywebsearch HackTools No 0 Yes No hkey_current_user\software\mywebsearch
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44cf-8957-5838F569A31D}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{a4730ebe-43a6-443e-9776-36915d323ad3}
00032731 application/mywebsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
00034463 adware/wupd Adware No 0 Yes No hkey_classes_root\install.install
00034463 adware/wupd Adware No 0 Yes No hkey_classes_root\install.install.1
00035722 adware/comet Adware No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D49E9D35-254C-4c6a-9D17-95018D228FF5}
00035722 adware/comet Adware No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CA356D79-679B-4b4c-8E49-5AF97014F4C1}
00040319 adware/activesearch Adware No 0 Yes No HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{12F02779-6D88-4958-8AD3-83C12D86ADC7}
00040415 adware/wintools Adware No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{339BB23F-A864-48C0-A59F-29EA915965EC}
00040415 adware/wintools Adware No 0 Yes No hkey_local_machine\system\controlset001\enum\root\legacy_tbpssvc
00040415 adware/wintools Adware No 0 Yes No hkey_local_machine\system\controlset001\enum\root\legacy_wintoolssvc
00040415 adware/wintools Adware No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8952A998-1E7E-4716-B23D-3DBE03910972}
00048251 Adware/WUpd Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temporary Internet Files\Content.IE5\LFRV9X4E\lyrics_mynameis[1].htm
00048251 Adware/WUpd Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temporary Internet Files\Content.IE5\SJX3UURH\lyrics[1].htm
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
00096053 application/funweb HackTools No 0 Yes No hkey_local_machine\software\fun web products
00096053 application/funweb HackTools No 0 Yes No c:\windows\downloaded program files\f3initialsetup1.0.0.15-3.inf
00096053 application/funweb HackTools No 0 Yes No hkey_current_user\software\fun web products
00096053 application/funweb HackTools No 0 Yes No HKEY_LOCAL_MACHINE\Software\Microsoft\Code Store Database\Distribution Units\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
00096053 application/funweb HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
00115735 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193980.DLL
00116106 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193984.DLL
00117092 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\beth\Local Settings\Temp\~815976.tmp
00117092 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\beth\Local Settings\Temp\~756936.tmp
00117092 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\beth\Local Settings\Temp\~620998.tmp
00117092 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\beth\Local Settings\Temp\~504287.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~827312.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\beth\Local Settings\Temp\~770837.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~917367.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~887959.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~809677.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~877629.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~723191.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\beth\Local Settings\Temp\~617742.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~913687.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~138043.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~481036.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~386932.tmp
00117711 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~969039.tmp
00122006 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~378318.tmp
00132652 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~957547.tmp
00132652 Adware/WinTools Adware No 0 Yes No C:\Documents and Settings\tom\Local Settings\Temp\~888599.tmp
00134791 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193974.DLL
00134792 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193991.DLL
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@trafficmp[1].txt
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@trafficmp[1].txt
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@trafficmp[2].txt
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@casalemedia[2].txt
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@casalemedia[2].txt
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@casalemedia[1].txt
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@casalemedia[2].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@doubleclick[2].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@doubleclick[2].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@atdmt[2].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@atdmt[2].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@atdmt[2].txt
00145345 Cookie/Uproar TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@ads.uproar[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@tradedoubler[2].txt
00145405 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@247realmedia[1].txt
00145405 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@247realmedia[1].txt
00145433 Cookie/Mammamediasolutions TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@targetnet[1].txt
00145453 Cookie/Bfast TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@bfast[2].txt
00145453 Cookie/Bfast TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@bfast[1].txt
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@fastclick[1].txt
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@fastclick[1].txt
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@fastclick[2].txt
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@fastclick[1].txt
00145460 Cookie/2o7 TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@2o7[2].txt
00145460 Cookie/2o7 TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@2o7[2].txt
00145460 Cookie/2o7 TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@2o7[2].txt
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@tribalfusion[2].txt
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@tribalfusion[2].txt
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@tribalfusion[2].txt
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@tribalfusion[2].txt
00145732 Cookie/Falkag TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@as-eu.falkag[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@mediaplex[2].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@mediaplex[2].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@mediaplex[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@mediaplex[1].txt
00145770 Cookie/CentrPort TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@centrport[2].txt
00145807 Cookie/Linksynergy TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@linksynergy[1].txt
00145847 Cookie/QkSrv TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@qksrv[2].txt
00145847 Cookie/QkSrv TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@qksrv[1].txt
00145847 Cookie/QkSrv TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@qksrv[2].txt
00147806 Cookie/7search TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@7search[2].txt
00147824 Cookie/Clickbank TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@clickbank[1].txt
00149064 Cookie/Maxserving TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@maxserving[2].txt
00149064 Cookie/Maxserving TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@maxserving[2].txt
00149116 Cookie/Ccbill TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@ccbill[1].txt
00149116 Cookie/Ccbill TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@ccbill[2].txt
00157143 Cookie/MyWay TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@www.xzoomy[1].txt
00159564 Cookie/WUpd TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@revenue[2].txt
00159564 Cookie/WUpd TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@revenue[2].txt
00162730 Cookie/Belnk TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@dist.belnk[2].txt
00162900 Cookie/MediaTickets TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@kinghost[1].txt
00167642 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@com[1].txt
00167642 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@com[2].txt
00167642 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@com[1].txt
00167647 Cookie/Yadro TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@yadro[1].txt
00167671 Cookie/DomainSponsor TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@domainsponsor[2].txt
00167671 Cookie/DomainSponsor TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@domainsponsor[2].txt
00167672 Cookie/DomainSponsor TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@landing.domainsponsor[1].txt
00167681 Cookie/Dbbsrv TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@dbbsrv[1].txt
00167690 Cookie/Rightmedia TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@rightmedia[1].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@xiti[1].txt
00167713 Cookie/Euniverseads TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@euniverseads[1].txt
00167726 Cookie/Tickle TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@tickle[1].txt
00167733 Cookie/Adserver TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@z1.adserver[1].txt
00167733 Cookie/Adserver TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@z1.adserver[2].txt
00167747 Cookie/Azjmp TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@azjmp[1].txt
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@statcounter[1].txt
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@statcounter[2].txt
00167760 Cookie/Hitslink TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@counter.hitslink[1].txt
00167760 Cookie/Hitslink TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@counter.hitslink[2].txt
00168048 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@perf.overture[1].txt
00168048 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@perf.overture[1].txt
00168048 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@perf.overture[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@ad.yieldmanager[2].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@ad.yieldmanager[2].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@apmebf[1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@apmebf[1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@apmebf[1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@apmebf[2].txt
00168076 Cookie/BurstNet TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@burstnet[2].txt
00168076 Cookie/BurstNet TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@burstnet[1].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@serving-sys[2].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@serving-sys[2].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@serving-sys[2].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@bs.serving-sys[2].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@bs.serving-sys[1].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@bs.serving-sys[2].txt
00168097 Cookie/BurstBeacon TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@www.burstbeacon[2].txt
00168097 Cookie/BurstBeacon TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@www.burstbeacon[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@weborama[1].txt
00168108 Cookie/Tickle TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@web.tickle[1].txt
00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@adtech[2].txt
00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@server.iad.liveperson[1].txt
00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@server.iad.liveperson[2].txt
00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@server.iad.liveperson[3].txt
00168114 Cookie/onestat.com TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@stat.onestat[2].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@advertising[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@advertising[2].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@advertising[2].txt
00169287 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@media.adrevolver[2].txt
00169287 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@media.adrevolver[2].txt
00169288 Cookie/Gorillanation TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@ads.gorillanation[1].txt
00170304 Cookie/WebtrendsLive TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@statse.webtrendslive[1].txt
00170304 Cookie/WebtrendsLive TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@statse.webtrendslive[1].txt
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@ads.pointroll[1].txt
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@ads.pointroll[2].txt
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@ads.pointroll[2].txt
00170549 Cookie/FortuneCity TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@fortunecity[1].txt
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@overture[1].txt
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@realmedia[2].txt
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@realmedia[2].txt
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@realmedia[1].txt
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@realmedia[2].txt
00171633 Cookie/Cgi-bin TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@cgi-bin[4].txt
00171718 Cookie/Enhance TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@c.enhance[1].txt
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@questionmarket[1].txt
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@questionmarket[2].txt
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@zedo[1].txt
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@zedo[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@bluestreak[1].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@bluestreak[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@bluestreak[1].txt
00173992 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@c5.zedo[1].txt
00175950 Cookie/cs.sexcounter TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@cs.sexcounter[2].txt
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@adrevolver[1].txt
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@adrevolver[1].txt
00187950 Cookie/bravenetA TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@bravenet[1].txt
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No C:\Documents and Settings\dad\Cookies\dad@adultfriendfinder[1].txt
00194327 Cookie/Go TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@go[2].txt
00194327 Cookie/Go TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@go[2].txt
00194327 Cookie/Go TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@go[2].txt
00199983 Cookie/Valueclick TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@valueclick[2].txt
00199984 Cookie/Searchportal TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@searchportal.information[2].txt
00200583 adware/block-checker Adware No 1 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P\History\fastclick.net\
00202047 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193975.DLL
00207338 Cookie/Target TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@target[2].txt
00213141 Cookie/GoStats TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@c3.gostats[2].txt
00216065 Cookie/Screensavers TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@i.screensavers[2].txt
00224535 Adware/Comet Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1557\A0194163.dll
00224535 Adware/Comet Adware No 0 Yes No C:\qoobox\Quarantine\C\Program Files\Screensavers.com\Installer\bin\ScreensaversInst.dll.vir
00234869 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@media.fastclick[2].txt
00234869 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@media.fastclick[1].txt
00241782 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193987.DLL
00247238 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193972.DLL
00254794 Application/FunWeb HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193982.DLL
00261257 Adware/Comet Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1557\A0194164.exe
00261257 Adware/Comet Adware No 0 Yes No C:\qoobox\Quarantine\C\Program Files\Screensavers.com\Installer\bin\siuninst.exe.vir
00262020 Cookie/Atwola TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@atwola[1].txt
00262020 Cookie/Atwola TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@atwola[1].txt
00262020 Cookie/Atwola TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@atwola[2].txt
00264405 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0194017.EXE
00286732 Cookie/Cgi-bin TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@www3.addfreestats[2].txt
00286739 Cookie/Hitbox TrackingCookie No 0 Yes No C:\Documents and Settings\tom\Cookies\tom@ehg-dig.hitbox[1].txt
00286739 Cookie/Hitbox TrackingCookie No 0 Yes No C:\Documents and Settings\beth\Cookies\beth@ehg-dig.hitbox[1].txt
00286739 Cookie/Hitbox TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@ehg-dig.hitbox[1].txt
00293517 Cookie/AdDynamix TrackingCookie No 0 Yes No C:\Documents and Settings\mom\Cookies\mom@ads.addynamix[1].txt
00314351 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193985.MANIFEST
00337303 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193979.DLL
00358091 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193981.EXE
00358465 application/myglobalsearch HackTools No 0 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{37B85A21-692B-4205-9CAD-2626E4993404}
00365118 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193993.DLL
00365120 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193971.DLL
00365121 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193983.DLL
00365123 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193977.DLL
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0194014.dll
00365126 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193976.DLL
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193970.scr
00365127 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193978.SCR
00365133 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0194018.DLL
00369714 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193997.DLL
00371752 Adware/Yazzle Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1551\A0193748.exe
00416446 Generic Application HackTools No 0 Yes No C:\qoobox\Quarantine\C\Program Files\BearShare\Installer\BSInstall5.2.5.1.exe.vir
00445492 Adware/Coupons Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1563\A0194635.ocx
00445492 Adware/Coupons Adware No 0 Yes No C:\qoobox\Quarantine\C\WINDOWS\cpbrkpie.ocx.vir
00505702 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193994.EXE
00505935 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0194015.DLL
00514395 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0194013.DLL
00516286 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193973.DLL
00516287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193986.DLL
00529152 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193988.EXE
00958927 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1562\A0194527.dll
01057811 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193992.DLL
01059313 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193998.DLL
01130155 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193996.EXE
01136588 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193995.EXE
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1556\A0194057.dll
01159410 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0194016.DLL
01215128 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193989.DLL
01262593 Application/NirCmd.A HackTools No 0 Yes No C:\WINDOWS\NirCmd.exe
01262593 Application/NirCmd.A HackTools No 0 No No C:\Documents and Settings\dad\Desktop\ComboFix.exe[nircmd.exe]
01262593 Application/NirCmd.A HackTools No 0 No No C:\Documents and Settings\dad\Desktop\ComboFix.exe[nircmd.cfexe]
01262593 Application/NirCmd.A HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1562\A0194630.exe
01262593 Application/NirCmd.A HackTools No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1557\A0194321.exe
01649382 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\qoobox\Quarantine\C\WINDOWS\Downloaded Program Files\popcaploader.dll.vir
02405180 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1549\A0193646.dll
02405214 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1543\A0193549.exe
02487350 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1554\A0193963.dll
02487350 Generic Malware Virus/Trojan No 0 No No C:\qoobox\Quarantine\C\81F.tmp.vir[BndDrive6.dll]
02510587 Adware/Amera Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1526\A0190863.exe
02510587 Adware/Amera Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1527\A0190910.exe
02510587 Adware/Amera Adware No 0 Yes No C:\qoobox\Quarantine\C\Program Files\ISM2\ISMPack6.exe.vir
02510587 Adware/Amera Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1557\A0194146.exe
02556812 Trj/Downloader.MDW Virus/Trojan No 1 No No C:\qoobox\Quarantine\C\81F.tmp.vir[ISMModule6.exe]
02556812 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1536\A0192272.exe
02618645 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\qoobox\Quarantine\C\820.tmp.vir
02649296 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1557\A0194147.exe
02649296 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\qoobox\Quarantine\C\Program Files\ISM2\ISMPack7.exe.vir
02649296 Trj/Downloader.MDW Virus/Trojan No 1 No No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1537\A0192294.exe[ISMPack7.exe]
02649296 Trj/Downloader.MDW Virus/Trojan No 1 No No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1540\A0193293.exe[ISMPack7.exe]
02650324 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1547\A0193615.dll
02650324 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1548\A0193628.dll
02650324 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1549\A0193649.dll
02650324 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1544\A0193562.dll
02650324 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1549\A0193648.dll
02650324 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1545\A0193574.dll
02652765 Adware/SpywareDetect Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1558\A0194332.exe
02652765 Adware/SpywareDetect Adware No 0 Yes No C:\qoobox\Quarantine\C\WINDOWS\SYSTEM32\vvgeowbv.exe.vir
02663232 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1549\A0193647.exe
02663232 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1547\A0193616.exe
02663232 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1546\A0193596.exe
02663232 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1548\A0193629.exe
02663232 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1545\A0193575.exe
02673704 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1551\A0193741.dll
02685581 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\qoobox\Quarantine\C\WINDOWS\SYSTEM32\aivskurq.dll.vir
02685581 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1558\A0194330.dll
02686869 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1558\A0194328.exe
02686869 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\qoobox\Quarantine\C\info.exe.vir
02686869 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1552\A0193851.exe
02688777 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\qoobox\Quarantine\C\WINDOWS\SYSTEM32\nusrmgr.exe.vir
02697186 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1557\A0194148.exe
02697186 Trj/Downloader.MDW Virus/Trojan No 1 No No C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP1557\A0194144.exe[ISMPack8.exe]
02697186 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\qoobox\Quarantine\C\Program Files\ISM2\ISMPack8.exe.vir
02697186 Trj/Downloader.MDW Virus/Trojan No 1 No No C:\qoobox\Quarantine\C\Program Files\ISM2\cringupd.exe.vir[ISMPack8.exe]
;===================================================================================================================================================================================
SUSPECTS
Location
;===================================================================================================================================================================================
C:\Documents and Settings\tom\Local Settings\Temp\~933777.tmp
C:\Documents and Settings\tom\Local Settings\Temporary Internet Files\Content.IE5\0PA3G1YV\TBPS[1].cab[TBPS.exe]
;===================================================================================================================================================================================