Bienvenido: ( Identificarse | Registrarse )      
Foros de Trucos Windows
 
 Closed TopicStart new topicStart Poll

Outline · [ Estándar ] · Lineal+

> tngo barritas virusianas y kizas algo mas

socorrovirus
post Dec 26 2005, 06:47 PM
Publicado: #1


Newbie
*

Grupo: Members
Mensajes: 8
Registrado: 26-December 05
Miembro nº: 155.424
pues eso,toy en el pc d mi novia y a ver si m ayudais a limpiarlo un poco... en windows xp:


Logfile of HijackThis v1.99.1
Scan saved at 18:45:23, on 26/12/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Archivos de programa\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\Archivos de programa\iTunes\iTunesHelper.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Archivos de programa\Ulead Systems\Ulead Photo Explorer 7.0\Monitor.exe
C:\Archivos de programa\QuickTime\qttask.exe
C:\Archivos de programa\Microsoft AntiSpyware\gcasServ.exe
C:\WINDOWS\System32\rundll32.exe
C:\Archivos de programa\Creative\Shared Files\CAMTRAY.EXE
C:\Archivos de programa\AVPersonal\AVGNT.EXE
C:\Archivos de programa\D-Tools\daemon.exe
C:\ARCHIV~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
C:\ARCHIV~1\PRESAR~1\Presario\XPHWWRS4\plugin\bin\pchbutton.exe
C:\Archivos de programa\Microsoft ActiveSync\WCESCOMM.EXE
C:\Archivos de programa\Microsoft AntiSpyware\gcasDtServ.exe
C:\Archivos de programa\Internet Explorer\iexplore.exe
C:\Archivos de programa\AVPersonal\AVGUARD.EXE
C:\Archivos de programa\AVPersonal\AVWUPSRV.EXE
C:\WINDOWS\System32\gearsec.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Archivos de programa\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Archivos de programa\WinZip\WZQKPICK.EXE
C:\Archivos de programa\iPod\bin\iPodService.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Archivos de programa\MSN Messenger\msnmsgr.exe
C:\Archivos de programa\Internet Explorer\iexplore.exe
C:\Documents and Settings\Lauri\Escritorio\cosas\HJT\HijackThis[www.trucoswindows.net].exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.es/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.terra.es
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Archivos de programa\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Archivos de programa\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Archivos de programa\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: (no name) - {4DF94E5F-F5A9-A4F2-B55E-FB6482663EE7} - C:\DOCUME~1\PROPIE~1\DATOSD~1\SECTRE~1\flaw rdr.exe (file missing)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Archivos de programa\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [iTunesHelper] C:\Archivos de programa\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [Ulead Memory Card Detector] C:\Archivos de programa\Ulead Systems\Ulead Photo Explorer 7.0\Monitor.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Archivos de programa\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [QuickTime Task] "C:\Archivos de programa\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SvcH0st] C:\WINDOWS\svchst.exe /i
O4 - HKLM\..\Run: [gcasServ] "C:\Archivos de programa\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Archivos de programa\Creative\Shared Files\CAMTRAY.EXE
O4 - HKLM\..\Run: [AVGCtrl] C:\Archivos de programa\AVPersonal\AVGNT.EXE /min
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Archivos de programa\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [delete roam scr gram] C:\Documents and Settings\All Users\Datos de programa\objcoaldeleteroam\fivedvd.exe
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\ARCHIV~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Archivos de programa\Messenger Plus! 3\MsgPlus1.exe" /WinStart
O4 - HKCU\..\Run: [Acme.PCHButton] C:\ARCHIV~1\PRESAR~1\Presario\XPHWWRS4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [send dash] C:\DOCUME~1\Lauri\DATOSD~1\TWODEF~1\Pileoneflap.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Archivos de programa\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Archivos de programa\Archivos comunes\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Consola KIT ADSL.lnk = ?
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Archivos de programa\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Archivos de programa\MyWebSearch\bar\1.bin\MWSOEMON.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Archivos de programa\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNxmk570YYES
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: Crear un favorito móvil - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\ARCHIV~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\ARCHIV~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Crear un favorito móvil... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\ARCHIV~1\MICROS~3\INetRepl.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\MSMSGS.EXE
O16 - DPF: {11111111-1111-1111-1111-111191113457} - file://c:\ied_s7.cab
O16 - DPF: {11111111-1111-1111-1111-511111193457} - file://c:\x.cab
O16 - DPF: {11111111-1111-1111-1111-511111193458} - file://c:\x.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwe...tup1.0.0.15.cab
O16 - DPF: {23232323-2323-2323-2323-232323291122} - file://c:\x.cab
O16 - DPF: {24311111-1111-1121-1111-111191113457} - file://c:\eied_s7.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab30149.cab
O16 - DPF: {33331111-1111-1111-1111-611111193457} - file://c:\ex.cab
O16 - DPF: {33331111-1111-1111-1111-611111193458} - file://c:\ex.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab30149.cab
O16 - DPF: {9A54032D-31F7-400D-B184-83B33BDE65FA} (MSN File Upload Control) - http://sc.groups.msn.com/controls/FileUC/MsnUpld.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\ARCHIV~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O21 - SSODL: SystemCheck2 - {54645654-2225-4455-44A1-9F4543D34545} - C:\WINDOWS\System32\vbsys2 (file missing)
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Archivos de programa\AVPersonal\AVGUARD.EXE
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Archivos de programa\AVPersonal\AVWUPSRV.EXE
O23 - Service: Servicio de seguridad Gear (GEARSecurity) - GEAR Software - C:\WINDOWS\System32\gearsec.exe
O23 - Service: Servicio del iPod (iPodService) - Apple Computer, Inc. - C:\Archivos de programa\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

gracias a todos thumbsup.gif


User is offlineProfile CardPM
Go to the top of the page
+Quote Post
Krosty
post Dec 26 2005, 06:50 PM
Publicado: #2


Thanatos
**********

Grupo: Miembros Vitalicios
Mensajes: 3.507
Registrado: 13-January 05
Desde: Buenos Aires, Argentina
Miembro nº: 59.993
MMM... esta muy sucio, hace lo siguiente:

Haz un scan on line :
http://www.kaspersky.com/virusscanner

Luego :
Baja la version trial del Spy Sweeper :
http://www.webroot.com/consumer/products/spysweeper
Instálalo usando “Standard Install “opción.
Te pedirá una dirección de email .
Se actualizará.
Luego andá a “Options”>Sweep options” y marca “Sweep all folders on selected drives”
Marca “Local disc C “ ( o pon el que quieres analizar )
Y en “What to Sweep “ selecciona todas las casillas
Haz clic en “Sweep” y comenzará el scaneo
Al finalizar haz clic en “Remove”, clic en “Selected All “ y luego pulsa “Next”
En “Results” selecciona “Session Log “, marca “Save to File “
Guarda el reporte (Log) en un lugar conveniente.
Copia y pega ese log en tu próximo pos junto a un nuevo reporte del Hijack.

Salu2


User is offlineProfile CardPM
Go to the top of the page
+Quote Post
socorrovirus
post Dec 27 2005, 12:03 AM
Publicado: #3


Newbie
*

Grupo: Members
Mensajes: 8
Registrado: 26-December 05
Miembro nº: 155.424
bueno, aqui esta el log del kaspersky, que no se si necesitareis:

-------------------------------------------------------------------------------
KASPERSKY ON-LINE SCANNER REPORT
Monday, December 26, 2005 23:11:01
Operating System: Microsoft Windows XP Home Edition, Service Pack 1 (Build 2600)
Kaspersky On-line Scanner version: 5.0.67.0
Kaspersky Anti-Virus database last update: 26/12/2005
Kaspersky Anti-Virus database records: 157426
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: standard
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
C:\
D:\
E:\
F:\
G:\
H:\

Scan Statistics:
Total number of scanned objects: 182511
Number of viruses found: 14
Number of infected objects: 159
Number of suspicious objects: 0
Duration of the scan process: 11704 sec

Infected Object Name - Virus Name
C:\Archivos de programa\AVPersonal\INFECTED\NVSVCA32.EXE.VIR Infected: Trojan-Downloader.Win32.Small.cca
C:\Documents and Settings\All Users\Datos de programa\objcoaldeleteroam\close 16.exe Infected: Trojan-Downloader.Win32.Swizzor.bz
C:\Documents and Settings\All Users\Datos de programa\objcoaldeleteroam\close intra.exe Infected: Trojan-Downloader.Win32.Swizzor.bz
C:\Documents and Settings\All Users\Datos de programa\objcoaldeleteroam\first less.exe Infected: Trojan-Downloader.Win32.Swizzor.bz
C:\Documents and Settings\All Users\Datos de programa\objcoaldeleteroam\Idle First.exe Infected: Trojan-Downloader.Win32.Swizzor.de
C:\Documents and Settings\All Users\Datos de programa\objcoaldeleteroam\less close.exe Infected: Trojan-Downloader.Win32.Swizzor.bz
C:\Documents and Settings\All Users\Datos de programa\objcoaldeleteroam\mpeg glue.exe Infected: Trojan.Win32.Krepper.ab
C:\Documents and Settings\All Users\Datos de programa\objcoaldeleteroam\pile the.exe Infected: Trojan-Downloader.Win32.Swizzor.bz
C:\Documents and Settings\All Users\Datos de programa\objcoaldeleteroam\Stupid Acid.exe Infected: Trojan-Downloader.Win32.Swizzor.bz
C:\Documents and Settings\All Users\Datos de programa\objcoaldeleteroam\way blue.exe Infected: Trojan-Downloader.Win32.Swizzor.bz
C:\Documents and Settings\Lauri\Configuración local\Temp\1123837.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\112dc4a.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\11c8184.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\1250858.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\125ca54.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\12790d4.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\13bef43.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\142e198.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\144d85.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\14b899b.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\152bb94.exe Infected: Trojan-Downloader.Win32.Swizzor.dj
C:\Documents and Settings\Lauri\Configuración local\Temp\15b65dc.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\16c1706.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\16cb487.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\17dcf53.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\18c7aea.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\1921c30.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\195ceba.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\1ac4a8d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\1b7e336.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\1d3f62d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\1d748bf.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\1ec8870.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\1fb5b95.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\1febf6b.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\1fecfed.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2018b84.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\201c1cb.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2022864.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\21aa712.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\21e2e70.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\221280e.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\22db2b5.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\23a030d.exe Infected: Trojan-Downloader.Win32.Swizzor.dj
C:\Documents and Settings\Lauri\Configuración local\Temp\23e2490.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\24134b8.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2417162.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\244b7f.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\248aa8d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\24de6b5.exe Infected: Trojan-Downloader.Win32.Swizzor.dj
C:\Documents and Settings\Lauri\Configuración local\Temp\2553695.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2684c61.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\26a58.exe Infected: Trojan-Downloader.Win32.Swizzor.dj
C:\Documents and Settings\Lauri\Configuración local\Temp\27485e4.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\274a087.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\280281d.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\28800c4.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\293bb0d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\29dde35.exe Infected: Trojan-Downloader.Win32.Swizzor.dj
C:\Documents and Settings\Lauri\Configuración local\Temp\2b31fa9.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2bf90a3.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2bfb0d8.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2c17e25.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2c558a8.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\2cb027.exe Infected: Trojan-Downloader.Win32.Swizzor.ca
C:\Documents and Settings\Lauri\Configuración local\Temp\2ce5bc5.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2d3108d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2d327a8.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2da89fd.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2e688d6.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\2ed960d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\30b20ca.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\31137f8.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\318665.exe Infected: Trojan-Downloader.Win32.Swizzor.dj
C:\Documents and Settings\Lauri\Configuración local\Temp\31a37a2.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\31ae38d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\32dcfad.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\337696d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\3580274.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\363117d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\3651809.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\367f08.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\36cf9fc.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\374c3ac.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\379a7a.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\37e793a.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\3814574.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\3aaff11.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\3acea81.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\3bfd2bd.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\3c853b5.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\3e3aca.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\3f42634.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\3f7fbb3.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\3fdf17f.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\4017e31.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\404dc81.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\4132540.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\441d3ad.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\448e930.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\44faac7.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\45a0ee7.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\46d1c7e.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\4931477.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\496bccd.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\4b4ef7f.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\4d98735.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\4da1388.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\4fff8dc.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\51a86d1.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\52a609d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\549d935.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\557f8f.exe Infected: Trojan-Downloader.Win32.Swizzor.dj
C:\Documents and Settings\Lauri\Configuración local\Temp\5777fd5.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\590ace9.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\5cf2c5c.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\5d0042.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\5e28603.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\5f5287.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\635928f.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\64ef48.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\6590dcc.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\6601dba.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\6627db.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\67f7ed9.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\6867b01.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\6ab6b.exe Infected: Trojan-Downloader.Win32.Swizzor.ca
C:\Documents and Settings\Lauri\Configuración local\Temp\6c95cba.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\6f2fbdd.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\6f5dd1.exe Infected: Trojan-Downloader.Win32.Swizzor.di
C:\Documents and Settings\Lauri\Configuración local\Temp\7102dc0.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\794f8c.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\796868.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\8058a6.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\80759c.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\829f86de.exe Infected: Trojan-Downloader.Win32.Swizzor.bx
C:\Documents and Settings\Lauri\Configuración local\Temp\83465847.exe Infected: Trojan-Downloader.Win32.Swizzor.ca
C:\Documents and Settings\Lauri\Configuración local\Temp\88205d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\affd7c.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\cb2e55.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\cb42e8.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\d3e950.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\f01ffa.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\f1aaa.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\f6cb9d.exe Infected: Trojan-Downloader.Win32.Swizzor.dv
C:\Documents and Settings\Lauri\Configuración local\Temp\Inside Program.exe Infected: Trojan-Downloader.Win32.Swizzor.cc
C:\Documents and Settings\Lauri\Datos de programa\Sect Regs Remote\flaw rdr.exe Infected: Trojan-Downloader.Win32.Swizzor.bo
C:\Documents and Settings\Misae\Escritorio\Messenger Deluxe.exe Infected: Backdoor.Win32.VB.agd
C:\WINDOWS\msnms32.exe Infected: Trojan.Win32.Delf.bj
C:\WINDOWS\system32\ShellExt\a11.EXE Infected: Trojan.Win32.Delf.bj
C:\WINDOWS\system32\ShellExt\a2ud.EXE Infected: Trojan.Win32.Delf.bj
C:\WINDOWS\system32\ShellExt\aenwBLnSKT.EXE Infected: Trojan.Win32.Delf.bj
C:\WINDOWS\system32\ShellExt\agk6l4QVWQ.EXE Infected: Trojan.Win32.Delf.bj
C:\WINDOWS\system32\ShellExt\aT8.EXE Infected: Trojan.Win32.Delf.bj
C:\WINDOWS\system32\ShellExt\aw2iI9E27V.EXE Infected: Trojan.Win32.Delf.bj
C:\WINDOWS\system32\ShellExt\axo0qh1ra.EXE Infected: Trojan.Win32.Delf.bj
C:\WINDOWS\system32\ShellExt\aY8nTCCJM.EXE Infected: Trojan.Win32.Delf.bj
C:\WINDOWS\system32\ShellExt\aycnFnQ5l.EXE Infected: Trojan.Win32.Delf.bj
C:\WINDOWS\system32\vbsys2.dll_old Infected: Trojan-Clicker.Win32.Agent.ac

Scan process completed.


ahora, el log del SWEEPER:

********
23:16: | Start of Session, dilluns, 26 / desembre / 2005 |
23:16: Spy Sweeper started
23:16: Sweep initiated using definitions version 589
23:16: Starting Memory Sweep
23:19: Memory Sweep Complete, Elapsed Time: 00:02:17
23:19: Starting Registry Sweep
23:19: Found Adware: logih adware
23:19: HKLM\software\microsoft\windows\currentversion\shellserviceobjectdelayload\ || systemcheck2 (ID = 129814)
23:19: HKCR\clsid\{54645654-2225-4455-44a1-9f4543d34545}\ (3 subtraces) (ID = 129815)
23:19: HKLM\software\classes\clsid\{54645654-2225-4455-44a1-9f4543d34545}\ (3 subtraces) (ID = 129816)
23:19: Found Adware: mirar webband
23:19: HKLM\software\microsoft\code store database\distribution units\{33331111-1111-1111-1111-611111193458}\ (8 subtraces) (ID = 135094)
23:19: Found Adware: sicro dialer
23:19: HKLM\software\microsoft\code store database\distribution units\{33331111-1111-1111-1111-611111193457}\ (8 subtraces) (ID = 141760)
23:19: Found Trojan Horse: trojan downloader catan
23:19: HKLM\software\catal\ (2 subtraces) (ID = 143987)
23:19: Found Adware: 7adpower
23:19: HKCR\vacpro.int_ver30\ (3 subtraces) (ID = 778459)
23:19: HKCR\clsid\{b7e76c25-791f-432e-bdb7-748d01a93fc2}\ (29 subtraces) (ID = 778463)
23:19: HKCR\typelib\{62753dcb-b56b-46c1-831c-93387ec8135a}\ (9 subtraces) (ID = 778491)
23:19: HKLM\software\classes\typelib\{62753dcb-b56b-46c1-831c-93387ec8135a}\ (9 subtraces) (ID = 778517)
23:19: HKLM\software\classes\vacpro.int_ver30\ (3 subtraces) (ID = 778527)
23:19: HKLM\software\classes\clsid\{b7e76c25-791f-432e-bdb7-748d01a93fc2}\ (29 subtraces) (ID = 778531)
23:19: Found Adware: cydoor
23:19: HKU\WRSS_Profile_S-1-5-21-4146975191-719366843-2682897470-1008\software\cydoor\ (15 subtraces) (ID = 639126)
23:19: HKU\WRSS_Profile_S-1-5-21-4146975191-719366843-2682897470-1008\software\cydoor services\ (ID = 639128)
23:19: Registry Sweep Complete, Elapsed Time:00:00:15
23:19: Starting Cookie Sweep
23:19: Found Spy Cookie: 2o7.net cookie
23:19: visitante@112.2o7[1].txt (ID = 1958)
23:19: visitante@2o7[1].txt (ID = 1957)
23:19: Found Spy Cookie: 888 cookie
23:19: visitante@888[1].txt (ID = 2019)
23:19: visitante@888[2].txt (ID = 2019)
23:19: Found Spy Cookie: yieldmanager cookie
23:19: visitante@ad.yieldmanager[2].txt (ID = 3751)
23:19: Found Spy Cookie: hbmediapro cookie
23:19: visitante@adopt.hbmediapro[2].txt (ID = 2768)
23:19: Found Spy Cookie: addynamix cookie
23:19: visitante@ads.addynamix[2].txt (ID = 2062)
23:19: Found Spy Cookie: pointroll cookie
23:19: visitante@ads.pointroll[1].txt (ID = 3148)
23:19: Found Spy Cookie: ads.tripod.lycos.com cookie
23:19: visitante@ads.tripod.lycos[1].txt (ID = 2133)
23:19: Found Spy Cookie: bpath cookie
23:19: visitante@ads33.bpath[1].txt (ID = 2321)
23:19: Found Spy Cookie: adultfriendfinder cookie
23:19: visitante@adultfriendfinder[2].txt (ID = 2165)
23:19: Found Spy Cookie: advertising cookie
23:19: visitante@advertising[1].txt (ID = 2175)
23:19: Found Spy Cookie: falkag cookie
23:19: visitante@as-eu.falkag[2].txt (ID = 2650)
23:19: visitante@as1.falkag[2].txt (ID = 2650)
23:19: Found Spy Cookie: atlas dmt cookie
23:19: visitante@atdmt[2].txt (ID = 2253)
23:19: Found Spy Cookie: a cookie
23:19: visitante@a[1].txt (ID = 2027)
23:19: Found Spy Cookie: belnk cookie
23:19: visitante@belnk[1].txt (ID = 2292)
23:19: Found Spy Cookie: bravenet cookie
23:19: visitante@bravenet[1].txt (ID = 2322)
23:19: Found Spy Cookie: casalemedia cookie
23:19: visitante@casalemedia[2].txt (ID = 2354)
23:19: Found Spy Cookie: cassava cookie
23:19: visitante@cassava[1].txt (ID = 2362)
23:19: Found Spy Cookie: centrport net cookie
23:19: visitante@centrport[1].txt (ID = 2374)
23:19: visitante@dist.belnk[2].txt (ID = 2293)
23:19: Found Spy Cookie: fastclick cookie
23:19: visitante@fastclick[2].txt (ID = 2651)
23:19: Found Spy Cookie: fe.lea.lycos.com cookie
23:19: visitante@fe.lea.lycos[1].txt (ID = 2660)
23:19: Found Spy Cookie: humanclick cookie
23:19: visitante@hc2.humanclick[2].txt (ID = 2810)
23:19: Found Spy Cookie: lopdotcom cookie
23:19: visitante@lop[1].txt (ID = 2936)
23:19: visitante@media.fastclick[2].txt (ID = 2652)
23:19: Found Spy Cookie: touchclarity cookie
23:19: visitante@msn.touchclarity[1].txt (ID = 3566)
23:19: Found Spy Cookie: mywebsearch cookie
23:19: visitante@mywebsearch[1].txt (ID = 3051)
23:19: Found Spy Cookie: offeroptimizer cookie
23:19: visitante@offeroptimizer[2].txt (ID = 3087)
23:19: Found Spy Cookie: overture cookie
23:19: visitante@overture[1].txt (ID = 3105)
23:19: Found Spy Cookie: partypoker cookie
23:19: visitante@partypoker[2].txt (ID = 3111)
23:19: Found Spy Cookie: realmedia cookie
23:19: visitante@realmedia[2].txt (ID = 3235)
23:19: Found Spy Cookie: revenue.net cookie
23:19: visitante@revenue[1].txt (ID = 3257)
23:19: Found Spy Cookie: server.iad.liveperson cookie
23:19: visitante@server.iad.liveperson[2].txt (ID = 3341)
23:19: Found Spy Cookie: serving-sys cookie
23:19: visitante@serving-sys[1].txt (ID = 3343)
23:19: Found Spy Cookie: spylog cookie
23:19: visitante@spylog[1].txt (ID = 3415)
23:19: Found Spy Cookie: statcounter cookie
23:19: visitante@statcounter[2].txt (ID = 3447)
23:19: Found Spy Cookie: reliablestats cookie
23:19: visitante@stats1.reliablestats[2].txt (ID = 3254)
23:19: Found Spy Cookie: webtrendslive cookie
23:19: visitante@statse.webtrendslive[1].txt (ID = 3667)
23:19: Found Spy Cookie: tradedoubler cookie
23:19: visitante@tradedoubler[2].txt (ID = 3575)
23:19: Found Spy Cookie: trafficmp cookie
23:19: visitante@trafficmp[2].txt (ID = 3581)
23:19: Found Spy Cookie: tribalfusion cookie
23:19: visitante@tribalfusion[1].txt (ID = 3589)
23:19: Found Spy Cookie: weborama cookie
23:19: visitante@weborama[1].txt (ID = 3658)
23:19: Found Spy Cookie: xiti cookie
23:19: visitante@xiti[1].txt (ID = 3717)
23:19: Found Spy Cookie: adserver cookie
23:19: visitante@z1.adserver[1].txt (ID = 2142)
23:19: Found Spy Cookie: zedo cookie
23:19: visitante@zedo[2].txt (ID = 3762)
23:19: Found Spy Cookie: 247realmedia cookie
23:19: misae@247realmedia[1].txt (ID = 1953)
23:19: misae@2o7[2].txt (ID = 1957)
23:19: misae@888[1].txt (ID = 2019)
23:19: misae@888[2].txt (ID = 2019)
23:19: misae@ad.yieldmanager[1].txt (ID = 3751)
23:19: misae@adopt.hbmediapro[2].txt (ID = 2768)
23:19: Found Spy Cookie: cc214142 cookie
23:19: misae@ads.cc214142[2].txt (ID = 2367)
23:19: misae@ads.pointroll[1].txt (ID = 3148)
23:19: Found Spy Cookie: adreactor cookie
23:19: misae@adserver.adreactor[1].txt (ID = 2087)
23:19: Found Spy Cookie: adtech cookie
23:19: misae@adtech[2].txt (ID = 2155)
23:19: misae@adultfriendfinder[2].txt (ID = 2165)
23:19: misae@advertising[1].txt (ID = 2175)
23:19: Found Spy Cookie: apmebf cookie
23:19: misae@apmebf[1].txt (ID = 2229)
23:19: misae@as-eu.falkag[1].txt (ID = 2650)
23:19: misae@as1.falkag[1].txt (ID = 2650)
23:19: misae@atdmt[2].txt (ID = 2253)
23:19: Found Spy Cookie: goldenpalace cookie
23:19: misae@banner.goldenpalace[2].txt (ID = 2735)
23:19: misae@belnk[1].txt (ID = 2292)
23:19: misae@bravenet[2].txt (ID = 2322)
23:19: misae@casalemedia[1].txt (ID = 2354)
23:19: misae@cassava[1].txt (ID = 2362)
23:19: misae@centrport[2].txt (ID = 2374)
23:19: misae@dist.belnk[2].txt (ID = 2293)
23:19: Found Spy Cookie: excite cookie
23:19: misae@excite[1].txt (ID = 2631)
23:19: misae@fastclick[1].txt (ID = 2651)
23:19: misae@goldenpalace[2].txt (ID = 2734)
23:19: misae@lop[2].txt (ID = 2936)
23:19: Found Spy Cookie: maxserving cookie
23:19: misae@maxserving[2].txt (ID = 2966)
23:19: misae@msn.touchclarity[1].txt (ID = 3566)
23:19: misae@mywebsearch[1].txt (ID = 3051)
23:19: misae@offeroptimizer[1].txt (ID = 3087)
23:19: misae@partypoker[2].txt (ID = 3111)
23:19: Found Spy Cookie: passion cookie
23:19: misae@passion[1].txt (ID = 3113)
23:19: Found Spy Cookie: paypopup cookie
23:19: misae@paypopup[1].txt (ID = 3119)
23:19: misae@perf.overture[1].txt (ID = 3106)
23:19: Found Spy Cookie: qksrv cookie
23:19: misae@qksrv[1].txt (ID = 3213)
23:19: Found Spy Cookie: questionmarket cookie
23:19: misae@questionmarket[2].txt (ID = 3217)
23:19: Found Spy Cookie: rc cookie
23:19: misae@rc[1].txt (ID = 3231)
23:19: misae@revenue[2].txt (ID = 3257)
23:19: Found Spy Cookie: rn11 cookie
23:19: misae@rn11[2].txt (ID = 3261)
23:19: misae@sel.as-eu.falkag[1].txt (ID = 2650)
23:19: Found Spy Cookie: servedby advertising cookie
23:19: misae@servedby.advertising[1].txt (ID = 3335)
23:19: misae@server.iad.liveperson[1].txt (ID = 3341)
23:19: misae@serving-sys[2].txt (ID = 3343)
23:19: Found Spy Cookie: onestat.com cookie
23:19: misae@stat.onestat[1].txt (ID = 3098)
23:19: misae@statcounter[1].txt (ID = 3447)
23:19: misae@stats1.reliablestats[2].txt (ID = 3254)
23:19: misae@tradedoubler[1].txt (ID = 3575)
23:19: misae@tribalfusion[2].txt (ID = 3589)
23:19: Found Spy Cookie: tripod cookie
23:19: misae@tripod[1].txt (ID = 3591)
23:19: misae@vodafonees.122.2o7[1].txt (ID = 1958)
23:19: misae@weborama[1].txt (ID = 3658)
23:19: misae@www.goldenpalace[1].txt (ID = 2735)
23:19: misae@xiti[1].txt (ID = 3717)
23:19: misae@z1.adserver[1].txt (ID = 2142)
23:19: misae@zedo[1].txt (ID = 3762)
23:19: lauri@247realmedia[1].txt (ID = 1953)
23:19: lauri@2o7[2].txt (ID = 1957)
23:19: lauri@888[1].txt (ID = 2019)
23:19: lauri@888[2].txt (ID = 2019)
23:19: lauri@ad.yieldmanager[2].txt (ID = 3751)
23:19: lauri@adopt.hbmediapro[2].txt (ID = 2768)
23:19: lauri@ads.addynamix[1].txt (ID = 2062)
23:19: lauri@ads.cc214142[2].txt (ID = 2367)
23:19: lauri@ads.pointroll[2].txt (ID = 3148)
23:19: lauri@adultfriendfinder[1].txt (ID = 2165)
23:19: lauri@advertising[1].txt (ID = 2175)
23:19: lauri@as-eu.falkag[2].txt (ID = 2650)
23:19: lauri@as1.falkag[2].txt (ID = 2650)
23:19: lauri@atdmt[2].txt (ID = 2253)
23:19: lauri@banner.goldenpalace[2].txt (ID = 2735)
23:19: lauri@belnk[2].txt (ID = 2292)
23:19: Found Spy Cookie: bluestreak cookie
23:19: lauri@bluestreak[1].txt (ID = 2314)
23:19: lauri@bravenet[1].txt (ID = 2322)
23:19: Found Spy Cookie: goclick cookie
23:19: lauri@c.goclick[1].txt (ID = 2733)
23:19: lauri@casalemedia[1].txt (ID = 2354)
23:19: lauri@cassava[1].txt (ID = 2362)
23:19: lauri@dist.belnk[2].txt (ID = 2293)
23:19: Found Spy Cookie: imlive.com cookie
23:19: lauri@es.imlive[1].txt (ID = 2844)
23:19: lauri@excite[1].txt (ID = 2631)
23:19: lauri@fastclick[1].txt (ID = 2651)
23:19: lauri@fe.lea.lycos[1].txt (ID = 2660)
23:19: Found Spy Cookie: gamespy cookie
23:19: lauri@gamespy[1].txt (ID = 2719)
23:19: lauri@goldenpalace[2].txt (ID = 2734)
23:19: Found Spy Cookie: domainsponsor cookie
23:19: lauri@landing.domainsponsor[1].txt (ID = 2535)
23:19: Found Spy Cookie: netster cookie
23:19: lauri@lb1.netster[1].txt (ID = 3072)
23:19: lauri@lop[1].txt (ID = 2936)
23:19: lauri@media.fastclick[2].txt (ID = 2652)
23:19: Found Spy Cookie: metriweb.be cookie
23:19: lauri@metriweb[1].txt (ID = 2992)
23:19: lauri@mywebsearch[1].txt (ID = 3051)
23:19: lauri@offeroptimizer[1].txt (ID = 3087)
23:19: lauri@partypoker[1].txt (ID = 3111)
23:19: lauri@passion[2].txt (ID = 3113)
23:19: lauri@paypopup[2].txt (ID = 3119)
23:19: lauri@perf.overture[1].txt (ID = 3106)
23:19: lauri@planetthesims.gamespy[1].txt (ID = 2719)
23:19: lauri@revenue[1].txt (ID = 3257)
23:19: lauri@rn11[2].txt (ID = 3261)
23:19: Found Spy Cookie: searchweb2 cookie
23:19: lauri@searchweb2[1].txt (ID = 3325)
23:19: Found Spy Cookie: seeq cookie
23:19: lauri@seeq[2].txt (ID = 3331)
23:19: lauri@sel.as-eu.falkag[1].txt (ID = 2650)
23:19: lauri@server.iad.liveperson[1].txt (ID = 3341)
23:19: lauri@serving-sys[1].txt (ID = 3343)
23:19: lauri@spylog[2].txt (ID = 3415)
23:19: lauri@statcounter[1].txt (ID = 3447)
23:19: lauri@stats1.reliablestats[1].txt (ID = 3254)
23:19: lauri@tradedoubler[1].txt (ID = 3575)
23:19: lauri@tribalfusion[1].txt (ID = 3589)
23:19: lauri@weborama[1].txt (ID = 3658)
23:19: lauri@www.goldenpalace[1].txt (ID = 2735)
23:19: lauri@www.seeq[1].txt (ID = 3332)
23:19: lauri@www48.seeq[1].txt (ID = 3332)
23:19: lauri@xiti[1].txt (ID = 3717)
23:19: Found Spy Cookie: yadro cookie
23:19: lauri@yadro[1].txt (ID = 3743)
23:19: lauri@z1.adserver[1].txt (ID = 2142)
23:19: lauri@zedo[2].txt (ID = 3762)
23:19: propietario@247realmedia[1].txt (ID = 1953)
23:19: propietario@2o7[1].txt (ID = 1957)
23:19: Found Spy Cookie: 3 cookie
23:19: propietario@3[1].txt (ID = 1959)
23:19: propietario@3[2].txt (ID = 1959)
23:19: Found Spy Cookie: 66.220.17 cookie
23:19: propietario@66.220.17[2].txt (ID = 1991)
23:19: propietario@66.220.17[3].txt (ID = 1991)
23:19: propietario@888[2].txt (ID = 2019)
23:19: propietario@ad.yieldmanager[2].txt (ID = 3751)
23:19: propietario@adopt.hbmediapro[1].txt (ID = 2768)
23:19: Found Spy Cookie: adrevolver cookie
23:19: propietario@adrevolver[2].txt (ID = 2088)
23:19: propietario@ads.addynamix[2].txt (ID = 2062)
23:19: propietario@ads.tripod.lycos[1].txt (ID = 2133)
23:19: propietario@adtech[2].txt (ID = 2155)
23:19: propietario@advertising[1].txt (ID = 2175)
23:19: propietario@apmebf[1].txt (ID = 2229)
23:19: propietario@atdmt[2].txt (ID = 2253)
23:19: propietario@ath.belnk[1].txt (ID = 2293)
23:19: Found Spy Cookie: atwola cookie
23:19: propietario@atwola[1].txt (ID = 2255)
23:19: Found Spy Cookie: banner cookie
23:19: propietario@banner[1].txt (ID = 2276)
23:19: propietario@belnk[2].txt (ID = 2292)
23:19: Found Spy Cookie: bilbo.counted.com cookie
23:19: propietario@bilbo.counted[2].txt (ID = 2306)
23:19: propietario@bravenet[1].txt (ID = 2322)
23:19: Found Spy Cookie: bs.serving-sys cookie
23:19: propietario@bs.serving-sys[2].txt (ID = 2330)
23:19: propietario@casalemedia[1].txt (ID = 2354)
23:19: Found Spy Cookie: coremetrics cookie
23:19: propietario@data.coremetrics[1].txt (ID = 2472)
23:19: propietario@dist.belnk[2].txt (ID = 2293)
23:19: Found Spy Cookie: domain sponsor cookie
23:19: propietario@domainsponsor[2].txt (ID = 2533)
23:19: propietario@excite[1].txt (ID = 2631)
23:19: propietario@fastclick[2].txt (ID = 2651)
23:19: propietario@fe.lea.lycos[1].txt (ID = 2660)
23:19: Found Spy Cookie: findwhat cookie
23:19: propietario@findwhat[1].txt (ID = 2674)
23:19: Found Spy Cookie: fortunecity cookie
23:19: propietario@fortunecity[2].txt (ID = 2686)
23:19: Found Spy Cookie: l2m.net cookie
23:19: propietario@l2m[1].txt (ID = 2913)
23:19: propietario@landing.domainsponsor[1].txt (ID = 2535)
23:19: propietario@lop[2].txt (ID = 2936)
23:19: propietario@offeroptimizer[1].txt (ID = 3087)
23:19: propietario@overture[1].txt (ID = 3105)
23:19: propietario@qksrv[2].txt (ID = 3213)
23:19: Found Spy Cookie: qsrch cookie
23:19: propietario@qsrch[1].txt (ID = 3215)
23:19: propietario@realmedia[1].txt (ID = 3235)
23:19: propietario@revenue[1].txt (ID = 3257)
23:19: propietario@searchweb2[2].txt (ID = 3325)
23:19: propietario@server.iad.liveperson[1].txt (ID = 3341)
23:19: propietario@serving-sys[2].txt (ID = 3343)
23:19: propietario@statcounter[1].txt (ID = 3447)
23:19: propietario@stats1.reliablestats[2].txt (ID = 3254)
23:19: propietario@statse.webtrendslive[1].txt (ID = 3667)
23:19: propietario@tradedoubler[1].txt (ID = 3575)
23:19: propietario@trafficmp[1].txt (ID = 3581)
23:19: propietario@tribalfusion[1].txt (ID = 3589)
23:19: propietario@tripod[1].txt (ID = 3591)
23:19: propietario@weborama[2].txt (ID = 3658)
23:19: propietario@xiti[1].txt (ID = 3717)
23:19: propietario@z1.adserver[1].txt (ID = 2142)
23:19: propietario@zedo[2].txt (ID = 3762)
23:19: Cookie Sweep Complete, Elapsed Time: 00:00:08
23:19: Starting File Sweep
23:20: Found Adware: lopdotcom
23:20: 8058a6.exe (ID = 121)
23:20: 16c1706.exe (ID = 121)
23:20: 794f8c.exe (ID = 121)
23:20: f3f92.exe (ID = 121)
23:20: 135ad5.exe (ID = 121)
23:20: 5d0042.exe (ID = 121)
23:20: 5777fd5.exe (ID = 121)
23:20: 6590dcc.exe (ID = 121)
23:20: 293bb0d.exe (ID = 121)
23:20: affd7c.exe (ID = 121)
23:20: 441d3ad.exe (ID = 121)
23:20: 30b20ca.exe (ID = 121)
23:20: 2ed960d.exe (ID = 121)
23:20: f6cb9d.exe (ID = 121)
23:20: 28800c4.exe (ID = 121)
23:20: 3c853b5.exe (ID = 121)
23:21: 126c98.exe (ID = 121)
23:21: 2b31fa9.exe (ID = 121)
23:22: 5b6947.exe (ID = 121)
23:22: 6627db.exe (ID = 121)
23:22: 37e793a.exe (ID = 121)
23:22: 6f2fbdd.exe (ID = 121)
23:22: 2da89fd.exe (ID = 121)
23:22: 4132540.exe (ID = 121)
23:22: 45a0ee7.exe (ID = 121)
23:22: 5cf2c5c.exe (ID = 121)
23:22: 64ef48.exe (ID = 121)
23:22: 5f7c64.exe (ID = 121)
23:22: 51a86d1.exe (ID = 121)
23:22: 144d85.exe (ID = 121)
23:22: 6ab6b.exe (ID = 121)
23:23: 1d8d0a.exe (ID = 121)
23:23: 201c1cb.exe (ID = 121)
23:23: 52a609d.exe (ID = 121)
23:23: xyhbpvpi.exe (ID = 121)
23:23: 24134b8.exe (ID = 121)
23:23: 10d5e2.exe (ID = 121)
23:23: 3fdf17f.exe (ID = 121)
23:23: 3e3aca.exe (ID = 121)
23:23: 1212e4.exe (ID = 121)
23:23: 590ace9.exe (ID = 121)
23:24: cb2e55.exe (ID = 121)
23:24: 1123837.exe (ID = 121)
23:24: 6c95cba.exe (ID = 121)
23:24: 46d1c7e.exe (ID = 121)
23:24: 1b7e336.exe (ID = 121)
23:24: 336655e.exe (ID = 121)
23:24: 337696d.exe (ID = 121)
23:24: 3814574.exe (ID = 121)
23:24: 502d6.exe (ID = 121)
23:24: 1fecfed.exe (ID = 121)
23:24: 6c95c5a.exe (ID = 121)
23:24: int_ver30.ocx (ID = 147512)
23:25: 5f5287.exe (ID = 121)
23:25: 4fff8dc.exe (ID = 121)
23:25: 379a7a.exe (ID = 121)
23:25: lrmvvogz.exe (ID = 121)
23:25: 142e198.exe (ID = 121)
23:25: 248aa8d.exe (ID = 121)
23:26: 169b2d.exe (ID = 121)
23:26: 1d1dc1.exe (ID = 121)
23:26: 13bef43.exe (ID = 121)
23:26: 1d6be2.exe (ID = 121)
23:26: 404dc81.exe (ID = 121)
23:26: 13f40c.exe (ID = 121)
23:26: 1c20e4.exe (ID = 121)
23:27: 4d98735.exe (ID = 121)
23:27: 44faac7.exe (ID = 121)
23:27: 3358154.exe (ID = 121)
23:27: upayb_unk[1].int (ID = 121)
23:28: 1ac4a8d.exe (ID = 121)
23:28: 32bfae9.exe (ID = 121)
23:29: 2cb027.exe (ID = 121)
23:29: 83465847.exe (ID = 121)
23:30: 195ceba.exe (ID = 121)
23:30: 82893dd6.exe (ID = 121)
23:31: 1cf7b12.exe (ID = 121)
23:31: upayb[1].int (ID = 121)
23:31: inside program.exe (ID = 121)
23:31: 496bccd.exe (ID = 121)
23:32: 796868.exe (ID = 121)
23:32: 796675.exe (ID = 121)
23:33: sta3a1.exe (ID = 95)
23:34: euxvubcn.exe (ID = 95)
23:34: sta33.exe (ID = 162)
23:35: flag eggs grim.exe (ID = 90)
23:35: 8367effe.exe (ID = 121)
23:35: 3f7fbb3.exe (ID = 121)
23:36: 28d530.exe (ID = 121)
23:36: sta34.exe (ID = 162)
23:37: aopyykgz.exe (ID = 122)
23:37: mixcake.exe (ID = 122)
23:37: cxtskxdx.exe (ID = 122)
23:37: show tray.exe (ID = 122)
23:37: fpsqhdis.exe (ID = 122)
23:37: castlove.exe (ID = 122)
23:37: 23e2490.exe (ID = 121)
23:37: sta35.exe (ID = 162)
23:37: pahgetsc.exe (ID = 122)
23:37: vmbabvmd.exe (ID = 122)
23:37: ieghxlrs.exe (ID = 122)
23:37: mfcd bike.exe (ID = 122)
23:37: sta36.exe (ID = 162)
23:38: Found Trojan Horse: trojan-downloader-mediket
23:38: eied_s7[1].chm (ID = 95089)
23:38: sxpyfwhi.exe (ID = 122)
23:38: 3bcd0d6.exe (ID = 121)
23:38: anti bags.exe (ID = 122)
23:38: deafeach.exe (ID = 122)
23:38: pileoneflap.exe (ID = 162)
23:38: HKU\WRSS_Profile_S-1-5-21-4146975191-719366843-2682897470-1003\Software\Microsoft\Windows\CurrentVersion\Run || send dash (ID = 0)
23:38: wuzpbymf.exe (ID = 122)
23:39: bore heart.exe (ID = 122)
23:39: ydzfatti.exe (ID = 122)
23:39: copycamp.exe (ID = 122)
23:39: yasofpxd.exe (ID = 122)
23:39: bits about.exe (ID = 122)
23:40: nhbneaee.exe (ID = 122)
23:40: gplref.exe (ID = 122)
23:40: sta5.exe (ID = 162)
23:40: bore bags.exe (ID = 122)
23:40: 75b77a4.exe (ID = 121)
23:40: interdartroampeak.exe (ID = 121)
23:40: store style.exe (ID = 122)
23:40: deaf delete.exe (ID = 122)
23:40: 67f7ed9.exe (ID = 121)
23:40: 3376103.exe (ID = 121)
23:40: 32aaac4.exe (ID = 121)
23:40: auzmslao.exe (ID = 122)
23:40: staa.exe (ID = 162)
23:40: vpnutged.exe (ID = 122)
23:40: sta7.exe (ID = 162)
23:40: sta4.exe (ID = 162)
23:40: 11c8184.exe (ID = 121)
23:40: 12790d4.exe (ID = 121)
23:40: 21aa712.exe (ID = 121)
23:40: 2d3108d.exe (ID = 121)
23:40: 22db2b5.exe (ID = 121)
23:40: 2417162.exe (ID = 121)
23:40: 2ce5bc5.exe (ID = 121)
23:40: 2d3271e.exe (ID = 121)
23:41: 2d327a8.exe (ID = 121)
23:41: 31137f8.exe (ID = 121)
23:41: 31a3721.exe (ID = 121)
23:41: 31a37a2.exe (ID = 121)
23:41: 3580274.exe (ID = 121)
23:41: 363117d.exe (ID = 121)
23:41: 3aaff11.exe (ID = 121)
23:41: 80759c.exe (ID = 121)
23:41: cb42e8.exe (ID = 121)
23:41: 15b65dc.exe (ID = 121)
23:41: 27485e4.exe (ID = 121)
23:41: 2bf90a3.exe (ID = 121)
23:41: 2c17e25.exe (ID = 121)
23:41: 31ae38d.exe (ID = 121)
23:41: 32dcfad.exe (ID = 121)
23:41: 374c3ac.exe (ID = 121)
23:41: 3bfd2bd.exe (ID = 121)
23:41: 88205d.exe (ID = 121)
23:41: d3e950.exe (ID = 121)
23:41: 1d3f62d.exe (ID = 121)
23:41: 274a087.exe (ID = 121)
23:41: 2e688d6.exe (ID = 121)
23:41: 1250858.exe (ID = 121)
23:41: 2bfb0d8.exe (ID = 121)
23:41: 3f42634.exe (ID = 121)
23:41: f1aaa.exe (ID = 121)
23:41: 8707035c.exe (ID = 121)
23:41: 1fb5b95.exe (ID = 121)
23:41: 2022864.exe (ID = 121)
23:41: 2553695.exe (ID = 121)
23:41: 82607b12.exe (ID = 121)
23:41: 82d4b0c3.exe (ID = 121)
23:41: xcchestw.exe (ID = 122)
23:41: flaw rdr.exe (ID = 91)
23:42: switchagreement.txt (ID = 76024)
23:42: sta3a3.exe (ID = 95)
23:43: 1d748bf.exe (ID = 121)
23:43: rsvoitis.exe (ID = 122)
23:43: sta38.exe (ID = 95)
23:43: sta2.exe (ID = 162)
23:43: atweeang.exe (ID = 122)
23:43: 7102de0.exe (ID = 121)
23:43: 7102dc0.exe (ID = 121)
23:43: 3651809.exe (ID = 121)
23:43: 5e28603.exe (ID = 121)
23:43: 6867b21.exe (ID = 121)
23:43: 3acea81.exe (ID = 121)
23:43: inside program.exe (ID = 121)
23:44: 21e2e70.exe (ID = 121)
23:44: 635928f.exe (ID = 121)
23:44: cqwovaxr.exe (ID = 122)
23:44: 221280e.exe (ID = 121)
23:44: 549d935.exe (ID = 121)
23:44: f01ffa.exe (ID = 121)
23:45: sta3.exe (ID = 162)
23:45: sta39.exe (ID = 95)
23:45: 367f08.exe (ID = 121)
23:45: sta382.exe (ID = 95)
23:45: 17dcf53.exe (ID = 121)
23:45: sta3a4.exe (ID = 95)
23:45: 6601dba.exe (ID = 121)
23:45: sta39f.exe (ID = 95)
23:46: first browse.exe (ID = 122)
23:46: dddnhfan.exe (ID = 122)
23:46: chic style.exe (ID = 122)
23:46: 83ddef4a.exe (ID = 121)
23:46: web coal.exe (ID = 122)
23:46: 2684c61.exe (ID = 121)
23:46: sta3a2.exe (ID = 95)
23:46: 4b4ef7f.exe (ID = 121)
23:47: sta3a0.exe (ID = 95)
23:47: pileoneflap.exe.vir (ID = 95)
23:47: sta3d.exe (ID = 162)
23:47: 6867b01.exe (ID = 121)
23:47: 71695c88-5a92-4d1b-90d1-8668d7.asq (ID = 147511)
23:47: 18c7aea.exe (ID = 121)
23:47: sta8.exe (ID = 162)
23:47: sta6.exe (ID = 162)
23:47: sta9.exe (ID = 162)
23:47: flaw rdr.exe (ID = 91)
23:47: pure second.exe (ID = 122)
23:47: fivedvd.exe (ID = 122)
23:47: HKLM\Software\Microsoft\Windows\CurrentVersion\Run || delete roam scr gram (ID = 0)
23:48: settings user.exe (ID = 122)
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0385.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0076.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0459.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0072.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0287.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0034.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0082.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0174.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0422.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0198.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0044.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\thumbs.db.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0172.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0644.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0668.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0884.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\1105.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0646.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0150.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0207.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0211.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0384.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0809.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0657.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0628.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0227.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0565.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\1101.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\1023.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\1099.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0064.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0281.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0080.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0297.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0301.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0303.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0148.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\


User is offlineProfile CardPM
Go to the top of the page
+Quote Post
socorrovirus
post Dec 27 2005, 12:05 AM
Publicado: #4


Newbie
*

Grupo: Members
Mensajes: 8
Registrado: 26-December 05
Miembro nº: 155.424
bueno, parece que no ha entrao todo, os los pongo aki de nuevo el del SWEEPER:

********
23:16: | Start of Session, dilluns, 26 / desembre / 2005 |
23:16: Spy Sweeper started
23:16: Sweep initiated using definitions version 589
23:16: Starting Memory Sweep
23:19: Memory Sweep Complete, Elapsed Time: 00:02:17
23:19: Starting Registry Sweep
23:19: Found Adware: logih adware
23:19: HKLM\software\microsoft\windows\currentversion\shellserviceobjectdelayload\ || systemcheck2 (ID = 129814)
23:19: HKCR\clsid\{54645654-2225-4455-44a1-9f4543d34545}\ (3 subtraces) (ID = 129815)
23:19: HKLM\software\classes\clsid\{54645654-2225-4455-44a1-9f4543d34545}\ (3 subtraces) (ID = 129816)
23:19: Found Adware: mirar webband
23:19: HKLM\software\microsoft\code store database\distribution units\{33331111-1111-1111-1111-611111193458}\ (8 subtraces) (ID = 135094)
23:19: Found Adware: sicro dialer
23:19: HKLM\software\microsoft\code store database\distribution units\{33331111-1111-1111-1111-611111193457}\ (8 subtraces) (ID = 141760)
23:19: Found Trojan Horse: trojan downloader catan
23:19: HKLM\software\catal\ (2 subtraces) (ID = 143987)
23:19: Found Adware: 7adpower
23:19: HKCR\vacpro.int_ver30\ (3 subtraces) (ID = 778459)
23:19: HKCR\clsid\{b7e76c25-791f-432e-bdb7-748d01a93fc2}\ (29 subtraces) (ID = 778463)
23:19: HKCR\typelib\{62753dcb-b56b-46c1-831c-93387ec8135a}\ (9 subtraces) (ID = 778491)
23:19: HKLM\software\classes\typelib\{62753dcb-b56b-46c1-831c-93387ec8135a}\ (9 subtraces) (ID = 778517)
23:19: HKLM\software\classes\vacpro.int_ver30\ (3 subtraces) (ID = 778527)
23:19: HKLM\software\classes\clsid\{b7e76c25-791f-432e-bdb7-748d01a93fc2}\ (29 subtraces) (ID = 778531)
23:19: Found Adware: cydoor
23:19: HKU\WRSS_Profile_S-1-5-21-4146975191-719366843-2682897470-1008\software\cydoor\ (15 subtraces) (ID = 639126)
23:19: HKU\WRSS_Profile_S-1-5-21-4146975191-719366843-2682897470-1008\software\cydoor services\ (ID = 639128)
23:19: Registry Sweep Complete, Elapsed Time:00:00:15
23:19: Starting Cookie Sweep
23:19: Found Spy Cookie: 2o7.net cookie
23:19: visitante@112.2o7[1].txt (ID = 1958)
23:19: visitante@2o7[1].txt (ID = 1957)
23:19: Found Spy Cookie: 888 cookie
23:19: visitante@888[1].txt (ID = 2019)
23:19: visitante@888[2].txt (ID = 2019)
23:19: Found Spy Cookie: yieldmanager cookie
23:19: visitante@ad.yieldmanager[2].txt (ID = 3751)
23:19: Found Spy Cookie: hbmediapro cookie
23:19: visitante@adopt.hbmediapro[2].txt (ID = 2768)
23:19: Found Spy Cookie: addynamix cookie
23:19: visitante@ads.addynamix[2].txt (ID = 2062)
23:19: Found Spy Cookie: pointroll cookie
23:19: visitante@ads.pointroll[1].txt (ID = 3148)
23:19: Found Spy Cookie: ads.tripod.lycos.com cookie
23:19: visitante@ads.tripod.lycos[1].txt (ID = 2133)
23:19: Found Spy Cookie: bpath cookie
23:19: visitante@ads33.bpath[1].txt (ID = 2321)
23:19: Found Spy Cookie: adultfriendfinder cookie
23:19: visitante@adultfriendfinder[2].txt (ID = 2165)
23:19: Found Spy Cookie: advertising cookie
23:19: visitante@advertising[1].txt (ID = 2175)
23:19: Found Spy Cookie: falkag cookie
23:19: visitante@as-eu.falkag[2].txt (ID = 2650)
23:19: visitante@as1.falkag[2].txt (ID = 2650)
23:19: Found Spy Cookie: atlas dmt cookie
23:19: visitante@atdmt[2].txt (ID = 2253)
23:19: Found Spy Cookie: a cookie
23:19: visitante@a[1].txt (ID = 2027)
23:19: Found Spy Cookie: belnk cookie
23:19: visitante@belnk[1].txt (ID = 2292)
23:19: Found Spy Cookie: bravenet cookie
23:19: visitante@bravenet[1].txt (ID = 2322)
23:19: Found Spy Cookie: casalemedia cookie
23:19: visitante@casalemedia[2].txt (ID = 2354)
23:19: Found Spy Cookie: cassava cookie
23:19: visitante@cassava[1].txt (ID = 2362)
23:19: Found Spy Cookie: centrport net cookie
23:19: visitante@centrport[1].txt (ID = 2374)
23:19: visitante@dist.belnk[2].txt (ID = 2293)
23:19: Found Spy Cookie: fastclick cookie
23:19: visitante@fastclick[2].txt (ID = 2651)
23:19: Found Spy Cookie: fe.lea.lycos.com cookie
23:19: visitante@fe.lea.lycos[1].txt (ID = 2660)
23:19: Found Spy Cookie: humanclick cookie
23:19: visitante@hc2.humanclick[2].txt (ID = 2810)
23:19: Found Spy Cookie: lopdotcom cookie
23:19: visitante@lop[1].txt (ID = 2936)
23:19: visitante@media.fastclick[2].txt (ID = 2652)
23:19: Found Spy Cookie: touchclarity cookie
23:19: visitante@msn.touchclarity[1].txt (ID = 3566)
23:19: Found Spy Cookie: mywebsearch cookie
23:19: visitante@mywebsearch[1].txt (ID = 3051)
23:19: Found Spy Cookie: offeroptimizer cookie
23:19: visitante@offeroptimizer[2].txt (ID = 3087)
23:19: Found Spy Cookie: overture cookie
23:19: visitante@overture[1].txt (ID = 3105)
23:19: Found Spy Cookie: partypoker cookie
23:19: visitante@partypoker[2].txt (ID = 3111)
23:19: Found Spy Cookie: realmedia cookie
23:19: visitante@realmedia[2].txt (ID = 3235)
23:19: Found Spy Cookie: revenue.net cookie
23:19: visitante@revenue[1].txt (ID = 3257)
23:19: Found Spy Cookie: server.iad.liveperson cookie
23:19: visitante@server.iad.liveperson[2].txt (ID = 3341)
23:19: Found Spy Cookie: serving-sys cookie
23:19: visitante@serving-sys[1].txt (ID = 3343)
23:19: Found Spy Cookie: spylog cookie
23:19: visitante@spylog[1].txt (ID = 3415)
23:19: Found Spy Cookie: statcounter cookie
23:19: visitante@statcounter[2].txt (ID = 3447)
23:19: Found Spy Cookie: reliablestats cookie
23:19: visitante@stats1.reliablestats[2].txt (ID = 3254)
23:19: Found Spy Cookie: webtrendslive cookie
23:19: visitante@statse.webtrendslive[1].txt (ID = 3667)
23:19: Found Spy Cookie: tradedoubler cookie
23:19: visitante@tradedoubler[2].txt (ID = 3575)
23:19: Found Spy Cookie: trafficmp cookie
23:19: visitante@trafficmp[2].txt (ID = 3581)
23:19: Found Spy Cookie: tribalfusion cookie
23:19: visitante@tribalfusion[1].txt (ID = 3589)
23:19: Found Spy Cookie: weborama cookie
23:19: visitante@weborama[1].txt (ID = 3658)
23:19: Found Spy Cookie: xiti cookie
23:19: visitante@xiti[1].txt (ID = 3717)
23:19: Found Spy Cookie: adserver cookie
23:19: visitante@z1.adserver[1].txt (ID = 2142)
23:19: Found Spy Cookie: zedo cookie
23:19: visitante@zedo[2].txt (ID = 3762)
23:19: Found Spy Cookie: 247realmedia cookie
23:19: misae@247realmedia[1].txt (ID = 1953)
23:19: misae@2o7[2].txt (ID = 1957)
23:19: misae@888[1].txt (ID = 2019)
23:19: misae@888[2].txt (ID = 2019)
23:19: misae@ad.yieldmanager[1].txt (ID = 3751)
23:19: misae@adopt.hbmediapro[2].txt (ID = 2768)
23:19: Found Spy Cookie: cc214142 cookie
23:19: misae@ads.cc214142[2].txt (ID = 2367)
23:19: misae@ads.pointroll[1].txt (ID = 3148)
23:19: Found Spy Cookie: adreactor cookie
23:19: misae@adserver.adreactor[1].txt (ID = 2087)
23:19: Found Spy Cookie: adtech cookie
23:19: misae@adtech[2].txt (ID = 2155)
23:19: misae@adultfriendfinder[2].txt (ID = 2165)
23:19: misae@advertising[1].txt (ID = 2175)
23:19: Found Spy Cookie: apmebf cookie
23:19: misae@apmebf[1].txt (ID = 2229)
23:19: misae@as-eu.falkag[1].txt (ID = 2650)
23:19: misae@as1.falkag[1].txt (ID = 2650)
23:19: misae@atdmt[2].txt (ID = 2253)
23:19: Found Spy Cookie: goldenpalace cookie
23:19: misae@banner.goldenpalace[2].txt (ID = 2735)
23:19: misae@belnk[1].txt (ID = 2292)
23:19: misae@bravenet[2].txt (ID = 2322)
23:19: misae@casalemedia[1].txt (ID = 2354)
23:19: misae@cassava[1].txt (ID = 2362)
23:19: misae@centrport[2].txt (ID = 2374)
23:19: misae@dist.belnk[2].txt (ID = 2293)
23:19: Found Spy Cookie: excite cookie
23:19: misae@excite[1].txt (ID = 2631)
23:19: misae@fastclick[1].txt (ID = 2651)
23:19: misae@goldenpalace[2].txt (ID = 2734)
23:19: misae@lop[2].txt (ID = 2936)
23:19: Found Spy Cookie: maxserving cookie
23:19: misae@maxserving[2].txt (ID = 2966)
23:19: misae@msn.touchclarity[1].txt (ID = 3566)
23:19: misae@mywebsearch[1].txt (ID = 3051)
23:19: misae@offeroptimizer[1].txt (ID = 3087)
23:19: misae@partypoker[2].txt (ID = 3111)
23:19: Found Spy Cookie: passion cookie
23:19: misae@passion[1].txt (ID = 3113)
23:19: Found Spy Cookie: paypopup cookie
23:19: misae@paypopup[1].txt (ID = 3119)
23:19: misae@perf.overture[1].txt (ID = 3106)
23:19: Found Spy Cookie: qksrv cookie
23:19: misae@qksrv[1].txt (ID = 3213)
23:19: Found Spy Cookie: questionmarket cookie
23:19: misae@questionmarket[2].txt (ID = 3217)
23:19: Found Spy Cookie: rc cookie
23:19: misae@rc[1].txt (ID = 3231)
23:19: misae@revenue[2].txt (ID = 3257)
23:19: Found Spy Cookie: rn11 cookie
23:19: misae@rn11[2].txt (ID = 3261)
23:19: misae@sel.as-eu.falkag[1].txt (ID = 2650)
23:19: Found Spy Cookie: servedby advertising cookie
23:19: misae@servedby.advertising[1].txt (ID = 3335)
23:19: misae@server.iad.liveperson[1].txt (ID = 3341)
23:19: misae@serving-sys[2].txt (ID = 3343)
23:19: Found Spy Cookie: onestat.com cookie
23:19: misae@stat.onestat[1].txt (ID = 3098)
23:19: misae@statcounter[1].txt (ID = 3447)
23:19: misae@stats1.reliablestats[2].txt (ID = 3254)
23:19: misae@tradedoubler[1].txt (ID = 3575)
23:19: misae@tribalfusion[2].txt (ID = 3589)
23:19: Found Spy Cookie: tripod cookie
23:19: misae@tripod[1].txt (ID = 3591)
23:19: misae@vodafonees.122.2o7[1].txt (ID = 1958)
23:19: misae@weborama[1].txt (ID = 3658)
23:19: misae@www.goldenpalace[1].txt (ID = 2735)
23:19: misae@xiti[1].txt (ID = 3717)
23:19: misae@z1.adserver[1].txt (ID = 2142)
23:19: misae@zedo[1].txt (ID = 3762)
23:19: lauri@247realmedia[1].txt (ID = 1953)
23:19: lauri@2o7[2].txt (ID = 1957)
23:19: lauri@888[1].txt (ID = 2019)
23:19: lauri@888[2].txt (ID = 2019)
23:19: lauri@ad.yieldmanager[2].txt (ID = 3751)
23:19: lauri@adopt.hbmediapro[2].txt (ID = 2768)
23:19: lauri@ads.addynamix[1].txt (ID = 2062)
23:19: lauri@ads.cc214142[2].txt (ID = 2367)
23:19: lauri@ads.pointroll[2].txt (ID = 3148)
23:19: lauri@adultfriendfinder[1].txt (ID = 2165)
23:19: lauri@advertising[1].txt (ID = 2175)
23:19: lauri@as-eu.falkag[2].txt (ID = 2650)
23:19: lauri@as1.falkag[2].txt (ID = 2650)
23:19: lauri@atdmt[2].txt (ID = 2253)
23:19: lauri@banner.goldenpalace[2].txt (ID = 2735)
23:19: lauri@belnk[2].txt (ID = 2292)
23:19: Found Spy Cookie: bluestreak cookie
23:19: lauri@bluestreak[1].txt (ID = 2314)
23:19: lauri@bravenet[1].txt (ID = 2322)
23:19: Found Spy Cookie: goclick cookie
23:19: lauri@c.goclick[1].txt (ID = 2733)
23:19: lauri@casalemedia[1].txt (ID = 2354)
23:19: lauri@cassava[1].txt (ID = 2362)
23:19: lauri@dist.belnk[2].txt (ID = 2293)
23:19: Found Spy Cookie: imlive.com cookie
23:19: lauri@es.imlive[1].txt (ID = 2844)
23:19: lauri@excite[1].txt (ID = 2631)
23:19: lauri@fastclick[1].txt (ID = 2651)
23:19: lauri@fe.lea.lycos[1].txt (ID = 2660)
23:19: Found Spy Cookie: gamespy cookie
23:19: lauri@gamespy[1].txt (ID = 2719)
23:19: lauri@goldenpalace[2].txt (ID = 2734)
23:19: Found Spy Cookie: domainsponsor cookie
23:19: lauri@landing.domainsponsor[1].txt (ID = 2535)
23:19: Found Spy Cookie: netster cookie
23:19: lauri@lb1.netster[1].txt (ID = 3072)
23:19: lauri@lop[1].txt (ID = 2936)
23:19: lauri@media.fastclick[2].txt (ID = 2652)
23:19: Found Spy Cookie: metriweb.be cookie
23:19: lauri@metriweb[1].txt (ID = 2992)
23:19: lauri@mywebsearch[1].txt (ID = 3051)
23:19: lauri@offeroptimizer[1].txt (ID = 3087)
23:19: lauri@partypoker[1].txt (ID = 3111)
23:19: lauri@passion[2].txt (ID = 3113)
23:19: lauri@paypopup[2].txt (ID = 3119)
23:19: lauri@perf.overture[1].txt (ID = 3106)
23:19: lauri@planetthesims.gamespy[1].txt (ID = 2719)
23:19: lauri@revenue[1].txt (ID = 3257)
23:19: lauri@rn11[2].txt (ID = 3261)
23:19: Found Spy Cookie: searchweb2 cookie
23:19: lauri@searchweb2[1].txt (ID = 3325)
23:19: Found Spy Cookie: seeq cookie
23:19: lauri@seeq[2].txt (ID = 3331)
23:19: lauri@sel.as-eu.falkag[1].txt (ID = 2650)
23:19: lauri@server.iad.liveperson[1].txt (ID = 3341)
23:19: lauri@serving-sys[1].txt (ID = 3343)
23:19: lauri@spylog[2].txt (ID = 3415)
23:19: lauri@statcounter[1].txt (ID = 3447)
23:19: lauri@stats1.reliablestats[1].txt (ID = 3254)
23:19: lauri@tradedoubler[1].txt (ID = 3575)
23:19: lauri@tribalfusion[1].txt (ID = 3589)
23:19: lauri@weborama[1].txt (ID = 3658)
23:19: lauri@www.goldenpalace[1].txt (ID = 2735)
23:19: lauri@www.seeq[1].txt (ID = 3332)
23:19: lauri@www48.seeq[1].txt (ID = 3332)
23:19: lauri@xiti[1].txt (ID = 3717)
23:19: Found Spy Cookie: yadro cookie
23:19: lauri@yadro[1].txt (ID = 3743)
23:19: lauri@z1.adserver[1].txt (ID = 2142)
23:19: lauri@zedo[2].txt (ID = 3762)
23:19: propietario@247realmedia[1].txt (ID = 1953)
23:19: propietario@2o7[1].txt (ID = 1957)
23:19: Found Spy Cookie: 3 cookie
23:19: propietario@3[1].txt (ID = 1959)
23:19: propietario@3[2].txt (ID = 1959)
23:19: Found Spy Cookie: 66.220.17 cookie
23:19: propietario@66.220.17[2].txt (ID = 1991)
23:19: propietario@66.220.17[3].txt (ID = 1991)
23:19: propietario@888[2].txt (ID = 2019)
23:19: propietario@ad.yieldmanager[2].txt (ID = 3751)
23:19: propietario@adopt.hbmediapro[1].txt (ID = 2768)
23:19: Found Spy Cookie: adrevolver cookie
23:19: propietario@adrevolver[2].txt (ID = 2088)
23:19: propietario@ads.addynamix[2].txt (ID = 2062)
23:19: propietario@ads.tripod.lycos[1].txt (ID = 2133)
23:19: propietario@adtech[2].txt (ID = 2155)
23:19: propietario@advertising[1].txt (ID = 2175)
23:19: propietario@apmebf[1].txt (ID = 2229)
23:19: propietario@atdmt[2].txt (ID = 2253)
23:19: propietario@ath.belnk[1].txt (ID = 2293)
23:19: Found Spy Cookie: atwola cookie
23:19: propietario@atwola[1].txt (ID = 2255)
23:19: Found Spy Cookie: banner cookie
23:19: propietario@banner[1].txt (ID = 2276)
23:19: propietario@belnk[2].txt (ID = 2292)
23:19: Found Spy Cookie: bilbo.counted.com cookie
23:19: propietario@bilbo.counted[2].txt (ID = 2306)
23:19: propietario@bravenet[1].txt (ID = 2322)
23:19: Found Spy Cookie: bs.serving-sys cookie
23:19: propietario@bs.serving-sys[2].txt (ID = 2330)
23:19: propietario@casalemedia[1].txt (ID = 2354)
23:19: Found Spy Cookie: coremetrics cookie
23:19: propietario@data.coremetrics[1].txt (ID = 2472)
23:19: propietario@dist.belnk[2].txt (ID = 2293)
23:19: Found Spy Cookie: domain sponsor cookie
23:19: propietario@domainsponsor[2].txt (ID = 2533)
23:19: propietario@excite[1].txt (ID = 2631)
23:19: propietario@fastclick[2].txt (ID = 2651)
23:19: propietario@fe.lea.lycos[1].txt (ID = 2660)
23:19: Found Spy Cookie: findwhat cookie
23:19: propietario@findwhat[1].txt (ID = 2674)
23:19: Found Spy Cookie: fortunecity cookie
23:19: propietario@fortunecity[2].txt (ID = 2686)
23:19: Found Spy Cookie: l2m.net cookie
23:19: propietario@l2m[1].txt (ID = 2913)
23:19: propietario@landing.domainsponsor[1].txt (ID = 2535)
23:19: propietario@lop[2].txt (ID = 2936)
23:19: propietario@offeroptimizer[1].txt (ID = 3087)
23:19: propietario@overture[1].txt (ID = 3105)
23:19: propietario@qksrv[2].txt (ID = 3213)
23:19: Found Spy Cookie: qsrch cookie
23:19: propietario@qsrch[1].txt (ID = 3215)
23:19: propietario@realmedia[1].txt (ID = 3235)
23:19: propietario@revenue[1].txt (ID = 3257)
23:19: propietario@searchweb2[2].txt (ID = 3325)
23:19: propietario@server.iad.liveperson[1].txt (ID = 3341)
23:19: propietario@serving-sys[2].txt (ID = 3343)
23:19: propietario@statcounter[1].txt (ID = 3447)
23:19: propietario@stats1.reliablestats[2].txt (ID = 3254)
23:19: propietario@statse.webtrendslive[1].txt (ID = 3667)
23:19: propietario@tradedoubler[1].txt (ID = 3575)
23:19: propietario@trafficmp[1].txt (ID = 3581)
23:19: propietario@tribalfusion[1].txt (ID = 3589)
23:19: propietario@tripod[1].txt (ID = 3591)
23:19: propietario@weborama[2].txt (ID = 3658)
23:19: propietario@xiti[1].txt (ID = 3717)
23:19: propietario@z1.adserver[1].txt (ID = 2142)
23:19: propietario@zedo[2].txt (ID = 3762)
23:19: Cookie Sweep Complete, Elapsed Time: 00:00:08
23:19: Starting File Sweep
23:20: Found Adware: lopdotcom
23:20: 8058a6.exe (ID = 121)
23:20: 16c1706.exe (ID = 121)
23:20: 794f8c.exe (ID = 121)
23:20: f3f92.exe (ID = 121)
23:20: 135ad5.exe (ID = 121)
23:20: 5d0042.exe (ID = 121)
23:20: 5777fd5.exe (ID = 121)
23:20: 6590dcc.exe (ID = 121)
23:20: 293bb0d.exe (ID = 121)
23:20: affd7c.exe (ID = 121)
23:20: 441d3ad.exe (ID = 121)
23:20: 30b20ca.exe (ID = 121)
23:20: 2ed960d.exe (ID = 121)
23:20: f6cb9d.exe (ID = 121)
23:20: 28800c4.exe (ID = 121)
23:20: 3c853b5.exe (ID = 121)
23:21: 126c98.exe (ID = 121)
23:21: 2b31fa9.exe (ID = 121)
23:22: 5b6947.exe (ID = 121)
23:22: 6627db.exe (ID = 121)
23:22: 37e793a.exe (ID = 121)
23:22: 6f2fbdd.exe (ID = 121)
23:22: 2da89fd.exe (ID = 121)
23:22: 4132540.exe (ID = 121)
23:22: 45a0ee7.exe (ID = 121)
23:22: 5cf2c5c.exe (ID = 121)
23:22: 64ef48.exe (ID = 121)
23:22: 5f7c64.exe (ID = 121)
23:22: 51a86d1.exe (ID = 121)
23:22: 144d85.exe (ID = 121)
23:22: 6ab6b.exe (ID = 121)
23:23: 1d8d0a.exe (ID = 121)
23:23: 201c1cb.exe (ID = 121)
23:23: 52a609d.exe (ID = 121)
23:23: xyhbpvpi.exe (ID = 121)
23:23: 24134b8.exe (ID = 121)
23:23: 10d5e2.exe (ID = 121)
23:23: 3fdf17f.exe (ID = 121)
23:23: 3e3aca.exe (ID = 121)
23:23: 1212e4.exe (ID = 121)
23:23: 590ace9.exe (ID = 121)
23:24: cb2e55.exe (ID = 121)
23:24: 1123837.exe (ID = 121)
23:24: 6c95cba.exe (ID = 121)
23:24: 46d1c7e.exe (ID = 121)
23:24: 1b7e336.exe (ID = 121)
23:24: 336655e.exe (ID = 121)
23:24: 337696d.exe (ID = 121)
23:24: 3814574.exe (ID = 121)
23:24: 502d6.exe (ID = 121)
23:24: 1fecfed.exe (ID = 121)
23:24: 6c95c5a.exe (ID = 121)
23:24: int_ver30.ocx (ID = 147512)
23:25: 5f5287.exe (ID = 121)
23:25: 4fff8dc.exe (ID = 121)
23:25: 379a7a.exe (ID = 121)
23:25: lrmvvogz.exe (ID = 121)
23:25: 142e198.exe (ID = 121)
23:25: 248aa8d.exe (ID = 121)
23:26: 169b2d.exe (ID = 121)
23:26: 1d1dc1.exe (ID = 121)
23:26: 13bef43.exe (ID = 121)
23:26: 1d6be2.exe (ID = 121)
23:26: 404dc81.exe (ID = 121)
23:26: 13f40c.exe (ID = 121)
23:26: 1c20e4.exe (ID = 121)
23:27: 4d98735.exe (ID = 121)
23:27: 44faac7.exe (ID = 121)
23:27: 3358154.exe (ID = 121)
23:27: upayb_unk[1].int (ID = 121)
23:28: 1ac4a8d.exe (ID = 121)
23:28: 32bfae9.exe (ID = 121)
23:29: 2cb027.exe (ID = 121)
23:29: 83465847.exe (ID = 121)
23:30: 195ceba.exe (ID = 121)
23:30: 82893dd6.exe (ID = 121)
23:31: 1cf7b12.exe (ID = 121)
23:31: upayb[1].int (ID = 121)
23:31: inside program.exe (ID = 121)
23:31: 496bccd.exe (ID = 121)
23:32: 796868.exe (ID = 121)
23:32: 796675.exe (ID = 121)
23:33: sta3a1.exe (ID = 95)
23:34: euxvubcn.exe (ID = 95)
23:34: sta33.exe (ID = 162)
23:35: flag eggs grim.exe (ID = 90)
23:35: 8367effe.exe (ID = 121)
23:35: 3f7fbb3.exe (ID = 121)
23:36: 28d530.exe (ID = 121)
23:36: sta34.exe (ID = 162)
23:37: aopyykgz.exe (ID = 122)
23:37: mixcake.exe (ID = 122)
23:37: cxtskxdx.exe (ID = 122)
23:37: show tray.exe (ID = 122)
23:37: fpsqhdis.exe (ID = 122)
23:37: castlove.exe (ID = 122)
23:37: 23e2490.exe (ID = 121)
23:37: sta35.exe (ID = 162)
23:37: pahgetsc.exe (ID = 122)
23:37: vmbabvmd.exe (ID = 122)
23:37: ieghxlrs.exe (ID = 122)
23:37: mfcd bike.exe (ID = 122)
23:37: sta36.exe (ID = 162)
23:38: Found Trojan Horse: trojan-downloader-mediket
23:38: eied_s7[1].chm (ID = 95089)
23:38: sxpyfwhi.exe (ID = 122)
23:38: 3bcd0d6.exe (ID = 121)
23:38: anti bags.exe (ID = 122)
23:38: deafeach.exe (ID = 122)
23:38: pileoneflap.exe (ID = 162)
23:38: HKU\WRSS_Profile_S-1-5-21-4146975191-719366843-2682897470-1003\Software\Microsoft\Windows\CurrentVersion\Run || send dash (ID = 0)
23:38: wuzpbymf.exe (ID = 122)
23:39: bore heart.exe (ID = 122)
23:39: ydzfatti.exe (ID = 122)
23:39: copycamp.exe (ID = 122)
23:39: yasofpxd.exe (ID = 122)
23:39: bits about.exe (ID = 122)
23:40: nhbneaee.exe (ID = 122)
23:40: gplref.exe (ID = 122)
23:40: sta5.exe (ID = 162)
23:40: bore bags.exe (ID = 122)
23:40: 75b77a4.exe (ID = 121)
23:40: interdartroampeak.exe (ID = 121)
23:40: store style.exe (ID = 122)
23:40: deaf delete.exe (ID = 122)
23:40: 67f7ed9.exe (ID = 121)
23:40: 3376103.exe (ID = 121)
23:40: 32aaac4.exe (ID = 121)
23:40: auzmslao.exe (ID = 122)
23:40: staa.exe (ID = 162)
23:40: vpnutged.exe (ID = 122)
23:40: sta7.exe (ID = 162)
23:40: sta4.exe (ID = 162)
23:40: 11c8184.exe (ID = 121)
23:40: 12790d4.exe (ID = 121)
23:40: 21aa712.exe (ID = 121)
23:40: 2d3108d.exe (ID = 121)
23:40: 22db2b5.exe (ID = 121)
23:40: 2417162.exe (ID = 121)
23:40: 2ce5bc5.exe (ID = 121)
23:40: 2d3271e.exe (ID = 121)
23:41: 2d327a8.exe (ID = 121)
23:41: 31137f8.exe (ID = 121)
23:41: 31a3721.exe (ID = 121)
23:41: 31a37a2.exe (ID = 121)
23:41: 3580274.exe (ID = 121)
23:41: 363117d.exe (ID = 121)
23:41: 3aaff11.exe (ID = 121)
23:41: 80759c.exe (ID = 121)
23:41: cb42e8.exe (ID = 121)
23:41: 15b65dc.exe (ID = 121)
23:41: 27485e4.exe (ID = 121)
23:41: 2bf90a3.exe (ID = 121)
23:41: 2c17e25.exe (ID = 121)
23:41: 31ae38d.exe (ID = 121)
23:41: 32dcfad.exe (ID = 121)
23:41: 374c3ac.exe (ID = 121)
23:41: 3bfd2bd.exe (ID = 121)
23:41: 88205d.exe (ID = 121)
23:41: d3e950.exe (ID = 121)
23:41: 1d3f62d.exe (ID = 121)
23:41: 274a087.exe (ID = 121)
23:41: 2e688d6.exe (ID = 121)
23:41: 1250858.exe (ID = 121)
23:41: 2bfb0d8.exe (ID = 121)
23:41: 3f42634.exe (ID = 121)
23:41: f1aaa.exe (ID = 121)
23:41: 8707035c.exe (ID = 121)
23:41: 1fb5b95.exe (ID = 121)
23:41: 2022864.exe (ID = 121)
23:41: 2553695.exe (ID = 121)
23:41: 82607b12.exe (ID = 121)
23:41: 82d4b0c3.exe (ID = 121)
23:41: xcchestw.exe (ID = 122)
23:41: flaw rdr.exe (ID = 91)
23:42: switchagreement.txt (ID = 76024)
23:42: sta3a3.exe (ID = 95)
23:43: 1d748bf.exe (ID = 121)
23:43: rsvoitis.exe (ID = 122)
23:43: sta38.exe (ID = 95)
23:43: sta2.exe (ID = 162)
23:43: atweeang.exe (ID = 122)
23:43: 7102de0.exe (ID = 121)
23:43: 7102dc0.exe (ID = 121)
23:43: 3651809.exe (ID = 121)
23:43: 5e28603.exe (ID = 121)
23:43: 6867b21.exe (ID = 121)
23:43: 3acea81.exe (ID = 121)
23:43: inside program.exe (ID = 121)
23:44: 21e2e70.exe (ID = 121)
23:44: 635928f.exe (ID = 121)
23:44: cqwovaxr.exe (ID = 122)
23:44: 221280e.exe (ID = 121)
23:44: 549d935.exe (ID = 121)
23:44: f01ffa.exe (ID = 121)
23:45: sta3.exe (ID = 162)
23:45: sta39.exe (ID = 95)
23:45: 367f08.exe (ID = 121)
23:45: sta382.exe (ID = 95)
23:45: 17dcf53.exe (ID = 121)
23:45: sta3a4.exe (ID = 95)
23:45: 6601dba.exe (ID = 121)
23:45: sta39f.exe (ID = 95)
23:46: first browse.exe (ID = 122)
23:46: dddnhfan.exe (ID = 122)
23:46: chic style.exe (ID = 122)
23:46: 83ddef4a.exe (ID = 121)
23:46: web coal.exe (ID = 122)
23:46: 2684c61.exe (ID = 121)
23:46: sta3a2.exe (ID = 95)
23:46: 4b4ef7f.exe (ID = 121)
23:47: sta3a0.exe (ID = 95)
23:47: pileoneflap.exe.vir (ID = 95)
23:47: sta3d.exe (ID = 162)
23:47: 6867b01.exe (ID = 121)
23:47: 71695c88-5a92-4d1b-90d1-8668d7.asq (ID = 147511)
23:47: 18c7aea.exe (ID = 121)
23:47: sta8.exe (ID = 162)
23:47: sta6.exe (ID = 162)
23:47: sta9.exe (ID = 162)
23:47: flaw rdr.exe (ID = 91)
23:47: pure second.exe (ID = 122)
23:47: fivedvd.exe (ID = 122)
23:47: HKLM\Software\Microsoft\Windows\CurrentVersion\Run || delete roam scr gram (ID = 0)
23:48: settings user.exe (ID = 122)
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0385.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0076.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0459.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0072.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0287.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0034.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0082.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0174.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\universidad\publicidad-emule\carteles guerra civil española\coleccion 1110 carteles guerra civil española\coleccion 1110 carteles guerra civil española.(by drasen)\1102 carteles guerra civil española.jpg.(by drasen)\0422.jpg.
23:52: Warning: DDAFileExists failed to resolve the MFT number for: c:\documents and settings\misae\escritorio\kris\univer