youraa
(Jurasick)
15 Listopad 2005 07:33
#1
Witam
Jako, ze jestem nowy wybaczcie bledy jesli takowe beda przy wklejaniu loga
Otoz wczoraj zeskanowalem kompa mks onlinem i wykryl mi pare wirusow, ktore skasowalem, po restarcie dostaje komunikat, ze system nie moze odnalezc sciezki do pliku ibm00003.exe, mam jednoczesnie avasta zainstalowanego, ktory nie wykryl mi trojanow, ktore wykryl mi mks, a myslalem ze jest the best
Thx
Logfile of HijackThis v1.99.1 Scan saved at 08:11:11, on 2005-11-15 Platform: Windows XP Dodatek SP. 1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\AvidSDMService.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\explorer.exe C:\Program Files\Microsoft IntelliPoint\point32.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\PROGRA~1\MULTIM~1\MMKbd.exe C:\WINDOWS\System32\ctfmon.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\jurasick\Pulpit\hijackthis_199\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://195.95.218.172/index.php R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.p2p-load.de/share R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.p2p-load.de/share R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://195.95.218.172/index.php R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://195.95.218.172/index.php R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = http://195.95.218.172/index.php R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = http://195.95.218.172/index.php R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = localhost:12080 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local., R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza F2 - REG:system.ini: Shell=explorer.exe “C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00003.exe” F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\userinit.exe O1 - Hosts: 66.249.85.99 http://www.google.de/intl/de/ads/ O1 - Hosts: 66.249.85.99 http://www.google.de/imghp?hl=de&tab=wi O1 - Hosts: 66.249.85.99 http://groups.google.de/grphp?hl=de&tab=wg O1 - Hosts: 66.249.85.99 http://www.google.de/dirhp?hl=de&tab=wd O1 - Hosts: 66.249.85.99 http://news.google.de/nwshp?hl=de&tab=wn O1 - Hosts: 66.249.85.99 http://froogle.google.de/frghp?hl=de&tab=wf O1 - Hosts: 66.249.85.99 http://www.google.de/intl/de/options/ O1 - Hosts: 66.249.85.99 http://www.google.de/advanced_search?hl=de O1 - Hosts: 66.249.85.99 http://www.google.de/preferences?hl=de O1 - Hosts: 66.249.85.99 http://www.google.de/language_tools?hl=de O1 - Hosts: 66.249.85.99 http://www.google.de/services/ O1 - Hosts: 66.249.85.99 http://www.google.de/intl/de/about.html O1 - Hosts: 66.249.85.99 http://www.google.com/ncr O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll O4 - HKLM…\Run: [intelliPoint] “C:\Program Files\Microsoft IntelliPoint\point32.exe” O4 - HKLM…\Run: [Zone Labs Client] “C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe” O4 - HKLM…\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM…\Run: [load32] C:\WINDOWS\System32\winldra.exe O4 - HKLM…\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM…\Run: [Multimedir KBD] C:\PROGRA~1\MULTIM~1\MMKbd.exe O4 - HKLM…\RunServices: [RegisterDropHandler] C:\Program Files\ScannerU\TBRIDGE\BIN\RegisterDropHandler.exe O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: Convert link target to Adobe PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert to existing PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra ‘Tools’ menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll O15 - Trusted Zone: http://skaner.mks.com.pl O16 - DPF: {E7544C6C-CFD6-43EA-B4E9-360CEE20BDF7} (MainControl Class) - http://skaner.mks.com.pl/SkanerOnline.cab O18 - Filter: text/html - {4F7681E5-6CAF-478D-9CB8-4CA593BEE7FB} - C:\WINDOWS\System32\xplugin.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Version Cue CS2 - Unknown owner - D:\a. PROGRAMY\adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe" -win32service (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Avid SDM Service (AvidSDMService) - Avid Technology, Inc. - C:\WINDOWS\system32\AvidSDMService.exe O23 - Service: Avid Startup (AvidStartup) - Unknown owner - C:\WINDOWS\system32\AvidStartup.exe O23 - Service: Bonjour Service - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: RadClock - Unknown owner - C:\WINDOWS\system32\RadClock.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZONELABS\vsmon.exe
Złączono Posta : 15.11.2005 (Wto) 9:10
zapomnialem dodac, ze przeskanowalem kompa ad-awerem i wykryl mi kolo 213 krytycznych plikow, ale nie mam pojecia co z tego wykasowac?
loga niestety podesle po poludniu gdyz teraz do pracy trzeba leciec
pozdro i thx
Gutek
(Gutek)
15 Listopad 2005 13:59
#2
Wyłączyć Przywracanie systemu w XP TU
Zastartować do trybu awaryjnego bez internetu(opis w linku wyżej).
Zaznaczyć wskazane wpisy w Hijacku i kliknąć Fix checked. Wpisy zostaną usunięte.
Skasować z dysku pliki i foldery, które podkreśliłem na czerwono
Dokończyć skanerami online - Scanery do wyboru
Pokazać nowy log
Użyj CWS.Systime Removal 3.5
youraa
(Jurasick)
15 Listopad 2005 21:23
#3
Wielkie dzieki pomoglo
Jednego wpisu w hijacku nie znalazlem i nie skasowalem
RO - HKLM\Software\Microsoft\Internet Explorer\Main.Local Page = http://195.95
oto obecny log:
Logfile of HijackThis v1.99.1 Scan saved at 22:22:25, on 2005-11-15 Platform: Windows XP Dodatek SP. 1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\AvidSDMService.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Microsoft IntelliPoint\point32.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\PROGRA~1\MULTIM~1\MMKbd.exe C:\WINDOWS\System32\ctfmon.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\WINDOWS\system32\ZONELABS\vsmon.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\jurasick\Pulpit\hijackthis_199\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = localhost:12080 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local., R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\userinit.exe O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll O4 - HKLM…\Run: [intelliPoint] “C:\Program Files\Microsoft IntelliPoint\point32.exe” O4 - HKLM…\Run: [Zone Labs Client] “C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe” O4 - HKLM…\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM…\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM…\Run: [Multimedir KBD] C:\PROGRA~1\MULTIM~1\MMKbd.exe O4 - HKLM…\RunServices: [RegisterDropHandler] C:\Program Files\ScannerU\TBRIDGE\BIN\RegisterDropHandler.exe O4 - HKCU…\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: Convert link target to Adobe PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert to existing PDF - res://D:\a. PROGRAMY\adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm O8 - Extra context menu item: Eksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll O15 - Trusted Zone: http://skaner.mks.com.pl O16 - DPF: {E7544C6C-CFD6-43EA-B4E9-360CEE20BDF7} (MainControl Class) - http://skaner.mks.com.pl/SkanerOnline.cab O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Version Cue CS2 - Unknown owner - D:\a. PROGRAMY\adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe" -win32service (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Avid SDM Service (AvidSDMService) - Avid Technology, Inc. - C:\WINDOWS\system32\AvidSDMService.exe O23 - Service: Avid Startup (AvidStartup) - Unknown owner - C:\WINDOWS\system32\AvidStartup.exe O23 - Service: Bonjour Service - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: RadClock - Unknown owner - C:\WINDOWS\system32\RadClock.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZONELABS\vsmon.exe
a oto log z ad-awera ktory mi troche syfu znalazl, moze cos podpowiesz :)?
Ad-Aware SE Build 1.06r1 Logfile Created on:15 listopada 2005 21:56:46 Created with Ad-Aware SE Personal, free for private use. Using definitions file:SE1R74 09.11.2005 »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» »»» References detected during the scan: »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»» 180Solutions(TAC index:6):2 total references Alexa(TAC index:5):3 total references CoolWebSearch(TAC index:10):23 total references MRU List(TAC index:0):43 total references NavExcel(TAC index:7):8 total references Possible Browser Hijack attempt(TAC index:3):3 total references Tracking Cookie(TAC index:3):184 total references »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» ;»»»»»»» Ad-Aware SE Settings =========================== Set : Search for negligible risk entries Set : Safe mode (always request confirmation) Set : Scan active processes Set : Scan registry Set : Deep-scan registry Set : Scan my IE Favorites for banned URLs Set : Scan my Hosts file Extended Ad-Aware SE Settings =========================== Set : Unload recognized processes modules during scan Set : Scan registry for all users instead of current user only Set : Always try to unload modules before deletion Set : During removal, unload Explorer and IE if necessary Set : Let Windows remove files in use at next reboot Set : Delete quarantined objects after restoring Set : Include basic Ad-Aware settings in log file Set : Include additional Ad-Aware settings in log file Set : Include reference summary in log file Set : Include alternate data stream details in log file Set : Play sound at scan completion if scan locates critical objects 2005-11-15 21:56:46 - Scan started. (Smart mode) Listing running processes »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» »»»»»» #:1 [smss.exe] FilePath : \SystemRoot\System32\ ProcessID : 684 ThreadCreationTime : 2005-11-15 20:53:19 BasePriority : Normal #:2 [csrss.exe] FilePath : ??\C:\WINDOWS\system32\ ProcessID : 796 ThreadCreationTime : 2005-11-15 20:53:21 BasePriority : Normal #:3 [winlogon.exe] FilePath : ??\C:\WINDOWS\system32\ ProcessID : 820 ThreadCreationTime : 2005-11-15 20:53:22 BasePriority : High #:4 [services.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 864 ThreadCreationTime : 2005-11-15 20:53:22 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : System operacyjny Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Usługi i aplikacja Kontroler InternalName : services.exe LegalCopyright : © Microsoft Corporation. Wszelkie prawa zastrzeżone. OriginalFilename : services.exe #:5 [lsass.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 876 ThreadCreationTime : 2005-11-15 20:53:22 BasePriority : Normal FileVersion : 5.1.2600.1106 (xpsp1.020828-1920) ProductVersion : 5.1.2600.1106 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : LSA Shell (Export Version) InternalName : lsass.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : lsass.exe #:6 [ati2evxx.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 1040 ThreadCreationTime : 2005-11-15 20:53:23 BasePriority : Normal #:7 [svchost.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1064 ThreadCreationTime : 2005-11-15 20:53:23 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:8 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 1132 ThreadCreationTime : 2005-11-15 20:53:23 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:9 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 1280 ThreadCreationTime : 2005-11-15 20:53:23 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:10 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 1356 ThreadCreationTime : 2005-11-15 20:53:23 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:11 [spoolsv.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1668 ThreadCreationTime : 2005-11-15 20:53:24 BasePriority : Normal FileVersion : 5.1.2600.0 (XPClient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Spooler SubSystem App InternalName : spoolsv.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : spoolsv.exe #:12 [aswupdsv.exe] FilePath : C:\Program Files\Alwil Software\Avast4\ ProcessID : 1804 ThreadCreationTime : 2005-11-15 20:53:24 BasePriority : Normal #:13 [ashserv.exe] FilePath : C:\Program Files\Alwil Software\Avast4\ ProcessID : 1832 ThreadCreationTime : 2005-11-15 20:53:24 BasePriority : High FileVersion : 4, 6, 665, 0 ProductVersion : 4, 6, 0, 0 ProductName : avast! Antivirus FileDescription : avast! antivirus service InternalName : aswServ LegalCopyright : Copyright © 2005 ALWIL Software OriginalFilename : aswServ.exe #:14 [avidsdmservice.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1928 ThreadCreationTime : 2005-11-15 20:53:31 BasePriority : Normal FileVersion : 1, 1, 0, 0 ProductVersion : 1, 1, 0, 0 ProductName : Avid Technology, Inc. AvidSDMService CompanyName : Avid Technology, Inc. FileDescription : AvidSDMService InternalName : AvidSDMService LegalCopyright : Copyright © 2003 OriginalFilename : AvidSDMService.exe #:15 [ati2evxx.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1952 ThreadCreationTime : 2005-11-15 20:53:31 BasePriority : Normal #:16 [explorer.exe] FilePath : C:\WINDOWS\ ProcessID : 248 ThreadCreationTime : 2005-11-15 20:53:31 BasePriority : Normal FileVersion : 6.00.2800.1106 (xpsp1.020828-1920) ProductVersion : 6.00.2800.1106 ProductName : System operacyjny Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Eksplorator Windows InternalName : explorer LegalCopyright : © Microsoft Corporation. Wszelkie prawa zastrzeżone. OriginalFilename : EXPLORER.EXE #:17 [point32.exe] FilePath : C:\Program Files\Microsoft IntelliPoint\ ProcessID : 660 ThreadCreationTime : 2005-11-15 20:53:33 BasePriority : Normal #:18 [zlclient.exe] FilePath : C:\Program Files\Zone Labs\ZoneAlarm\ ProcessID : 736 ThreadCreationTime : 2005-11-15 20:53:34 BasePriority : Normal FileVersion : 5.5.062.004 ProductVersion : 5.5.062.004 ProductName : Zone Labs Client CompanyName : Zone Labs Inc. FileDescription : Zone Labs Client InternalName : zlclient LegalCopyright : Copyright © 1998-2004, Zone Labs Inc. OriginalFilename : zlclient.exe #:19 [atiptaxx.exe] FilePath : C:\Program Files\ATI Technologies\ATI Control Panel\ ProcessID : 744 ThreadCreationTime : 2005-11-15 20:53:34 BasePriority : Normal FileVersion : 6.14.10.5145 ProductVersion : 6.14.10.5145 ProductName : ATI Desktop Component CompanyName : ATI Technologies, Inc. FileDescription : ATI Desktop Control Panel InternalName : Atiptaxx.exe LegalCopyright : Copyright © 1998-2005 ATI Technologies Inc. OriginalFilename : Atiptaxx.exe #:20 [ashdisp.exe] FilePath : C:\PROGRA~1\ALWILS~1\Avast4\ ProcessID : 760 ThreadCreationTime : 2005-11-15 20:53:34 BasePriority : Normal FileVersion : 4, 6, 665, 0 ProductVersion : 4, 6, 0, 0 ProductName : avast! Antivirus FileDescription : avast! service GUI component InternalName : aswDisp LegalCopyright : Copyright © 2005 ALWIL Software OriginalFilename : aswDisp.exe #:21 [mmkbd.exe] FilePath : C:\PROGRA~1\MULTIM~1\ ProcessID : 768 ThreadCreationTime : 2005-11-15 20:53:34 BasePriority : Normal FileVersion : 2.1 ProductVersion : 2.1 ProductName : Samsung Multimedia Hotkey CompanyName : EleArt Co Ltd. FileDescription : Samsung Multimedia Hotkey InternalName : Samsung Multimedia Hotkey LegalCopyright : Copyright ¨I 1998 EleArt Co Ltd. LegalTrademarks : Samsung Multimedia Hotkey OriginalFilename : MMKbd.exe #:22 [ctfmon.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 792 ThreadCreationTime : 2005-11-15 20:53:34 BasePriority : Normal FileVersion : 5.1.2600.1106 (xpsp1.020828-1920) ProductVersion : 5.1.2600.1106 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : CTF Loader InternalName : CTFMON LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : CTFMON.EXE #:23 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 1412 ThreadCreationTime : 2005-11-15 20:53:38 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:24 [ulcdrsvr.exe] FilePath : C:\Program Files\Common Files\Ulead Systems\DVD\ ProcessID : 1376 ThreadCreationTime : 2005-11-15 20:53:38 BasePriority : Normal FileVersion : 1, 0, 0, 3 ProductVersion : 1, 0, 0, 3 ProductName : Ulead Systems ULCDRSvr CompanyName : Ulead Systems, Inc. FileDescription : ULCDRSvr InternalName : ULCDRSvr LegalCopyright : Copyright © 2002 Ulead Systems, Inc. OriginalFilename : ULCDRSvr.exe #:25 [vsmon.exe] FilePath : C:\WINDOWS\system32\ZONELABS\ ProcessID : 1548 ThreadCreationTime : 2005-11-15 20:53:38 BasePriority : Normal FileVersion : 5.5.062.004 ProductVersion : 5.5.062.004 ProductName : TrueVector Service CompanyName : Zone Labs Inc. FileDescription : TrueVector Service InternalName : vsmon LegalCopyright : Copyright © 1998-2004, Zone Labs Inc. OriginalFilename : vsmon.exe #:26 [ashwebsv.exe] FilePath : C:\Program Files\Alwil Software\Avast4\ ProcessID : 356 ThreadCreationTime : 2005-11-15 20:53:45 BasePriority : Normal #:27 [ashmaisv.exe] FilePath : C:\Program Files\Alwil Software\Avast4\ ProcessID : 492 ThreadCreationTime : 2005-11-15 20:53:46 BasePriority : Normal #:28 [ad-aware.exe] FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\ ProcessID : 3240 ThreadCreationTime : 2005-11-15 20:55:50 BasePriority : Normal FileVersion : 6.2.0.236 ProductVersion : SE 106 ProductName : Lavasoft Ad-Aware SE CompanyName : Lavasoft Sweden FileDescription : Ad-Aware SE Core application InternalName : Ad-Aware.exe LegalCopyright : Copyright © Lavasoft AB Sweden OriginalFilename : Ad-Aware.exe Comments : All Rights Reserved Memory scan result: »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» »»»»»» New critical objects: 0 Objects found so far: 0 Started registry scan »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» »»»»»» CoolWebSearch Object Recognized! Type : Regkey Data : TAC Rating : 10 Category : Malware Comment : Rootkey : HKEY_CLASSES_ROOT Object : clsid{4f7681e5-6caf-478d-9cb8-4ca593bee7fb} CoolWebSearch Object Recognized! Type : RegValue Data : TAC Rating : 10 Category : Malware Comment : Rootkey : HKEY_CLASSES_ROOT Object : clsid{4f7681e5-6caf-478d-9cb8-4ca593bee7fb} Value : AppID CoolWebSearch Object Recognized! Type : Regkey Data : TAC Rating : 10 Category : Malware Comment : Rootkey : HKEY_CLASSES_ROOT Object : typelib{ee79d398-aaaf-47b1-8c9e-11f7d4c9111b} CoolWebSearch Object Recognized! Type : Regkey Data : TAC Rating : 10 Category : Malware Comment : Rootkey : HKEY_CLASSES_ROOT Object : xplugin.xfilter CoolWebSearch Object Recognized! Type : Regkey Data : TAC Rating : 10 Category : Malware Comment : Rootkey : HKEY_CLASSES_ROOT Object : xplugin.xfilter.1 NavExcel Object Recognized! Type : Regkey Data : TAC Rating : 7 Category : Data Miner Comment : Rootkey : HKEY_CLASSES_ROOT Object : appid{710bcb5b-8c6c-483e-a4f5-faf083b13184} NavExcel Object Recognized! Type : Regkey Data : TAC Rating : 7 Category : Data Miner Comment : Rootkey : HKEY_CLASSES_ROOT Object : clsid{c1e58a84-95b3-4630-b8c2-d06b77b7a0fc} NavExcel Object Recognized! Type : RegValue Data : TAC Rating : 7 Category : Data Miner Comment : Rootkey : HKEY_CLASSES_ROOT Object : clsid{c1e58a84-95b3-4630-b8c2-d06b77b7a0fc} Value : AppID NavExcel Object Recognized! Type : Regkey Data : TAC Rating : 7 Category : Data Miner Comment : Rootkey : HKEY_CLASSES_ROOT Object : interface{20f36af3-3486-4bb6-8bcb-f1f8abe74d07} NavExcel Object Recognized! Type : Regkey Data : TAC Rating : 7 Category : Data Miner Comment : Rootkey : HKEY_CLASSES_ROOT Object : navexcel.navhelper NavExcel Object Recognized! Type : Regkey Data : TAC Rating : 7 Category : Data Miner Comment : Rootkey : HKEY_CLASSES_ROOT Object : navexcel.navhelper.1 NavExcel Object Recognized! Type : Regkey Data : TAC Rating : 7 Category : Data Miner Comment : Rootkey : HKEY_CLASSES_ROOT Object : typelib{fa4de133-d3c3-4ed4-92d1-cd4dde839ab3} 180Solutions Object Recognized! Type : Regkey Data : TAC Rating : 6 Category : Data Miner Comment : Rootkey : HKEY_LOCAL_MACHINE Object : software\microsoft\windows\currentversion\app management\arpcache\ncase 180Solutions Object Recognized! Type : RegValue Data : TAC Rating : 6 Category : Data Miner Comment : Rootkey : HKEY_LOCAL_MACHINE Object : software\microsoft\windows\currentversion\app management\arpcache\ncase Value : Changed CoolWebSearch Object Recognized! Type : Regkey Data : TAC Rating : 10 Category : Malware Comment : Rootkey : HKEY_LOCAL_MACHINE Object : software\classes\appid{ac3f36d4-f905-4fe9-a926-eb937e66f591} CoolWebSearch Object Recognized! Type : Regkey Data : TAC Rating : 10 Category : Malware Comment : Rootkey : HKEY_LOCAL_MACHINE Object : software\tmksoft\xplugin CoolWebSearch Object Recognized! Type : RegValue Data : TAC Rating : 10 Category : Malware Comment : Rootkey : HKEY_LOCAL_MACHINE Object : software\tmksoft\xplugin Value : Period CoolWebSearch Object Recognized! Type : RegValue Data : TAC Rating : 10 Category : Malware Comment : Rootkey : HKEY_LOCAL_MACHINE Object : software\tmksoft\xplugin Value : Version CoolWebSearch Object Recognized! Type : RegValue Data : TAC Rating : 10 Category : Malware Comment : Rootkey : HKEY_LOCAL_MACHINE Object : software\tmksoft\xplugin Value : ID Alexa Object Recognized! Type : RegValue Data : TAC Rating : 5 Category : Data Miner Comment : “{c95fe080-8f5d-11d2-a20b-00aa003c157a}” Rootkey : HKEY_USERS Object : .DEFAULT\software\microsoft\internet explorer\extensions\cmdmapping Value : {c95fe080-8f5d-11d2-a20b-00aa003c157a} Alexa Object Recognized! Type : RegValue Data : TAC Rating : 5 Category : Data Miner Comment : “{c95fe080-8f5d-11d2-a20b-00aa003c157a}” Rootkey : HKEY_USERS Object : S-1-5-18\software\microsoft\internet explorer\extensions\cmdmapping Value : {c95fe080-8f5d-11d2-a20b-00aa003c157a} Alexa Object Recognized! Type : RegValue Data : TAC Rating : 5 Category : Data Miner Comment : “{c95fe080-8f5d-11d2-a20b-00aa003c157a}” Rootkey : HKEY_USERS Object : S-1-5-21-861567501-602609370-725345543-1003\software\microsoft\internet explorer\extensions\cmdmapping Value : {c95fe080-8f5d-11d2-a20b-00aa003c157a} Registry Scan result: »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» »»»»»» New critical objects: 22 Objects found so far: 22 Started deep registry scan »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» »»»»»» Deep registry scan result: »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» »»»»»» New critical objects: 0 Objects found so far: 22 Started Tracking Cookie scan »»»»» »»»»»»»» »»»»»»»» »»»»»»»» »»»»»»»» » Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@tickle[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:11 Value : Cookie:jurasick@tickle.com / Expires : 2007-01-13 22:26:08 LastSync : Hits:11 UseCount : 0 Hits : 11 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@trafic[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:4 Value : Cookie:jurasick@trafic.ro/ Expires : 2037-01-11 15:00:00 LastSync : Hits:4 UseCount : 0 Hits : 4 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@specificclick[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:1 Value : Cookie:jurasick@specificclick.net / Expires : 2014-11-25 00:59:52 LastSync : Hits:1 UseCount : 0 Hits : 1 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@z1.adserver[5].txt TAC Rating : 3 Category : Data Miner Comment : Hits:54 Value : Cookie:jurasick@z1.adserver.com / Expires : 2006-05-31 23:04:36 LastSync : Hits:54 UseCount : 0 Hits : 54 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@server.iad.liveperson[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:38 Value : Cookie:jurasick@server.iad.liveperson.net / Expires : 2005-09-05 22:30:40 LastSync : Hits:38 UseCount : 0 Hits : 38 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@citi.bridgetrack[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:2 Value : Cookie:jurasick@citi.bridgetrack.com / Expires : 2005-09-02 05:00:00 LastSync : Hits:2 UseCount : 0 Hits : 2 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@please[5].txt TAC Rating : 3 Category : Data Miner Comment : Hits:182 Value : Cookie:jurasick@ad2.pl.mediainter.net /please/ Expires : 2006-10-13 23:34:10 LastSync : Hits:182 UseCount : 0 Hits : 182 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@webads[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:8 Value : Cookie:jurasick@webads.nl/ Expires : 2012-03-01 01:00:00 LastSync : Hits:8 UseCount : 0 Hits : 8 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@peel[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:4 Value : Cookie:jurasick@peel.com / Expires : 2004-08-07 23:34:44 LastSync : Hits:4 UseCount : 0 Hits : 4 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@revenue[4].txt TAC Rating : 3 Category : Data Miner Comment : Hits:10 Value : Cookie:jurasick@revenue.net / Expires : 2022-06-10 06:05:42 LastSync : Hits:10 UseCount : 0 Hits : 10 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@questionmarket[5].txt TAC Rating : 3 Category : Data Miner Comment : Hits:1 Value : Cookie:jurasick@questionmarket.com / Expires : 2006-07-22 15:00:20 LastSync : Hits:1 UseCount : 0 Hits : 1 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@fastclick[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:127 Value : Cookie:jurasick@fastclick.net / Expires : 2007-10-31 00:24:50 LastSync : Hits:127 UseCount : 0 Hits : 127 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@ads.tucows[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:2 Value : Cookie:jurasick@ads.tucows.com / Expires : 2037-12-30 17:00:00 LastSync : Hits:2 UseCount : 0 Hits : 2 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@cgi-bin[13].txt TAC Rating : 3 Category : Data Miner Comment : Hits:8 Value : Cookie:jurasick@www2.addfreestats.com /cgi-bin Expires : 2015-02-28 01:00:00 LastSync : Hits:8 UseCount : 0 Hits : 8 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@bluestreak[5].txt TAC Rating : 3 Category : Data Miner Comment : Hits:15 Value : Cookie:jurasick@bluestreak.com / Expires : 2015-04-04 18:35:02 LastSync : Hits:15 UseCount : 0 Hits : 15 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@casalemedia[5].txt TAC Rating : 3 Category : Data Miner Comment : Hits:57 Value : Cookie:jurasick@casalemedia.com / Expires : 2006-09-09 19:16:18 LastSync : Hits:57 UseCount : 0 Hits : 57 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@ehg-camcorderinfo.hitbox[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:2 Value : Cookie:jurasick@ehg-camcorderinfo.hitbox.com / Expires : 2006-04-24 22:30:08 LastSync : Hits:2 UseCount : 0 Hits : 2 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@tradedoubler[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:112 Value : Cookie:jurasick@tradedoubler.com / Expires : 2025-11-08 21:09:26 LastSync : Hits:112 UseCount : 0 Hits : 112 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@kelkoo[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:3 Value : Cookie:jurasick@kelkoo.se/ Expires : 2007-03-27 23:53:56 LastSync : Hits:3 UseCount : 0 Hits : 3 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@c.porngraph[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:3 Value : Cookie:jurasick@c.porngraph.com / Expires : 2005-04-14 14:45:18 LastSync : Hits:3 UseCount : 0 Hits : 3 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@www.the-exit[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:2 Value : Cookie:jurasick@www.the-exit.com / Expires : 2004-10-06 00:19:26 LastSync : Hits:2 UseCount : 0 Hits : 2 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@doubleclick[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:39 Value : Cookie:jurasick@doubleclick.net / Expires : 2008-06-03 00:14:14 LastSync : Hits:39 UseCount : 0 Hits : 39 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@please[4].txt TAC Rating : 3 Category : Data Miner Comment : Hits:2 Value : Cookie:jurasick@ad2.ip.ro/please/ Expires : 2005-06-02 11:46:00 LastSync : Hits:2 UseCount : 0 Hits : 2 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@tmpad[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:1 Value : Cookie:jurasick@ad.trafficmp.com /tmpad Expires : 2005-06-04 20:48:38 LastSync : Hits:1 UseCount : 0 Hits : 1 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@ehg-autodesk.hitbox[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:26 Value : Cookie:jurasick@ehg-autodesk.hitbox.com / Expires : 2006-01-07 22:04:40 LastSync : Hits:26 UseCount : 0 Hits : 26 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@ehg-ati.hitbox[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:123 Value : Cookie:jurasick@ehg-ati.hitbox.com / Expires : 2006-04-29 23:25:02 LastSync : Hits:123 UseCount : 0 Hits : 123 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@adserver.schnaeppchenjagd[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:3 Value : Cookie:jurasick@adserver.schnaeppchenjagd.de / Expires : 2005-08-28 00:20:20 LastSync : Hits:3 UseCount : 0 Hits : 3 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@statcounter[4].txt TAC Rating : 3 Category : Data Miner Comment : Hits:13 Value : Cookie:jurasick@statcounter.com / Expires : 2010-11-10 16:15:14 LastSync : Hits:13 UseCount : 0 Hits : 13 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@cgi-bin[9].txt TAC Rating : 3 Category : Data Miner Comment : Hits:3 Value : Cookie:jurasick@www1.addfreestats.com /cgi-bin Expires : 2015-02-28 01:00:00 LastSync : Hits:3 UseCount : 0 Hits : 3 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@cgi-bin[12].txt TAC Rating : 3 Category : Data Miner Comment : Hits:180 Value : Cookie:jurasick@stat.4u.pl/cgi-bin/ Expires : 2006-06-07 20:50:56 LastSync : Hits:180 UseCount : 0 Hits : 180 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@adtech[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:2 Value : Cookie:jurasick@adtech.de / Expires : 2014-07-02 12:09:22 LastSync : Hits:2 UseCount : 0 Hits : 2 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@bravenet[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:2 Value : Cookie:jurasick@bravenet.com / Expires : 2014-10-27 00:06:44 LastSync : Hits:2 UseCount : 0 Hits : 2 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@trafficmp[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:8 Value : Cookie:jurasick@trafficmp.com / Expires : 2014-06-04 20:48:38 LastSync : Hits:8 UseCount : 0 Hits : 8 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@atdmt[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:15 Value : Cookie:jurasick@atdmt.com / Expires : 2010-07-17 01:00:00 LastSync : Hits:15 UseCount : 0 Hits : 15 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@ads.x10[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:8 Value : Cookie:jurasick@ads.x10.com Expires : 2005-02-25 22:00:24 LastSync : Hits:8 UseCount : 0 Hits : 8 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@adserver[6].txt TAC Rating : 3 Category : Data Miner Comment : Hits:27 Value : Cookie:jurasick@moon.interia.pl/adserver/ Expires : 2005-06-12 01:08:08 LastSync : Hits:27 UseCount : 0 Hits : 27 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@servedby.advertising[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:14 Value : Cookie:jurasick@servedby.advertising.com / Expires : 2005-12-11 17:27:44 LastSync : Hits:14 UseCount : 0 Hits : 14 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@ehg-nokiafin.hitbox[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:10 Value : Cookie:jurasick@ehg-nokiafin.hitbox.com / Expires : 2006-09-19 23:22:32 LastSync : Hits:10 UseCount : 0 Hits : 10 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@hitbox[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:48 Value : Cookie:jurasick@hitbox.com / Expires : 2006-11-06 23:17:34 LastSync : Hits:48 UseCount : 0 Hits : 48 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@edge.ru4[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:2 Value : Cookie:jurasick@edge.ru4.com / Expires : 2035-07-14 23:13:58 LastSync : Hits:2 UseCount : 0 Hits : 2 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@list[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:7 Value : Cookie:jurasick@list.ru / Expires : 2006-01-01 21:00:00 LastSync : Hits:7 UseCount : 0 Hits : 7 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@centrport[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:4 Value : Cookie:jurasick@centrport.net / Expires : 2030-01-01 01:00:00 LastSync : Hits:4 UseCount : 0 Hits : 4 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@counter2.hitslink[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:4 Value : Cookie:jurasick@counter2.hitslink.com / Expires : 2038-01-18 06:00:00 LastSync : Hits:4 UseCount : 0 Hits : 4 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@advertising[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:10 Value : Cookie:jurasick@advertising.com / Expires : 2010-11-10 17:27:44 LastSync : Hits:10 UseCount : 0 Hits : 10 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@tribalfusion[5].txt TAC Rating : 3 Category : Data Miner Comment : Hits:83 Value : Cookie:jurasick@tribalfusion.com / Expires : 2038-01-01 01:00:00 LastSync : Hits:83 UseCount : 0 Hits : 83 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@adviva[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:2 Value : Cookie:jurasick@adviva.net / Expires : 2010-03-22 20:42:44 LastSync : Hits:2 UseCount : 0 Hits : 2 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@valueclick[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:1 Value : Cookie:jurasick@valueclick.com / Expires : 2030-09-23 22:47:24 LastSync : Hits:1 UseCount : 0 Hits : 1 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@maxserving[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:10 Value : Cookie:jurasick@maxserving.com / Expires : 2015-04-16 20:40:24 LastSync : Hits:10 UseCount : 0 Hits : 10 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@domainsponsor[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:17 Value : Cookie:jurasick@domainsponsor.com / Expires : 2005-04-17 23:46:00 LastSync : Hits:17 UseCount : 0 Hits : 17 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@adrevolver[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:3 Value : Cookie:jurasick@grover.winsite.com /adrevolver/ Expires : 2005-06-04 08:28:26 LastSync : Hits:3 UseCount : 0 Hits : 3 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@as-us.falkag[4].txt TAC Rating : 3 Category : Data Miner Comment : Hits:198 Value : Cookie:jurasick@as-us.falkag.net / Expires : 2006-05-05 22:03:02 LastSync : Hits:198 UseCount : 0 Hits : 198 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@ehg-idg.hitbox[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:4 Value : Cookie:jurasick@ehg-idg.hitbox.com / Expires : 2006-03-06 23:16:54 LastSync : Hits:4 UseCount : 0 Hits : 4 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@cgi-bin[16].txt TAC Rating : 3 Category : Data Miner Comment : Hits:183 Value : Cookie:jurasick@imrworldwide.com /cgi-bin Expires : 2015-10-23 23:24:14 LastSync : Hits:183 UseCount : 0 Hits : 183 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@okcounter[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:1 Value : Cookie:jurasick@okcounter.com / Expires : 2004-11-04 01:17:56 LastSync : Hits:1 UseCount : 0 Hits : 1 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@servedby.netshelter[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:39 Value : Cookie:jurasick@servedby.netshelter.net / Expires : 2005-10-17 20:39:58 LastSync : Hits:39 UseCount : 0 Hits : 39 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@2o7[5].txt TAC Rating : 3 Category : Data Miner Comment : Hits:253 Value : Cookie:jurasick@2o7.net / Expires : 2010-10-28 11:06:34 LastSync : Hits:253 UseCount : 0 Hits : 253 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@as1.falkag[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:24 Value : Cookie:jurasick@as1.falkag.de / Expires : 2005-05-17 20:46:44 LastSync : Hits:24 UseCount : 0 Hits : 24 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@ads.pointroll[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:16 Value : Cookie:jurasick@ads.pointroll.com / Expires : 2010-01-01 01:00:00 LastSync : Hits:16 UseCount : 0 Hits : 16 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@a.as-us.falkag[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:93 Value : Cookie:jurasick@a.as-us.falkag.net / Expires : 2005-10-30 00:59:28 LastSync : Hits:93 UseCount : 0 Hits : 93 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@kelkoo[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:2 Value : Cookie:jurasick@kelkoo.be/ Expires : 2007-08-27 20:47:14 LastSync : Hits:2 UseCount : 0 Hits : 2 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@247realmedia[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:4 Value : Cookie:jurasick@247realmedia.com / Expires : 2011-01-01 01:00:00 LastSync : Hits:4 UseCount : 0 Hits : 4 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@spylog[4].txt TAC Rating : 3 Category : Data Miner Comment : Hits:40 Value : Cookie:jurasick@spylog.com / Expires : 2006-03-28 22:45:40 LastSync : Hits:40 UseCount : 0 Hits : 40 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@seeq[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:4 Value : Cookie:jurasick@seeq.com / Expires : 2005-09-10 00:13:40 LastSync : Hits:4 UseCount : 0 Hits : 4 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@adrevolver[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:6 Value : Cookie:jurasick@media.adrevolver.com /adrevolver/ Expires : 2007-07-26 14:58:04 LastSync : Hits:6 UseCount : 0 Hits : 6 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@ehg-acdsystems.hitbox[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:5 Value : Cookie:jurasick@ehg-acdsystems.hitbox.com / Expires : 2006-04-02 21:01:52 LastSync : Hits:5 UseCount : 0 Hits : 5 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@internetfuel[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:8 Value : Cookie:jurasick@internetfuel.com / Expires : 2013-12-01 15:00:00 LastSync : Hits:8 UseCount : 0 Hits : 8 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@zedo[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:9 Value : Cookie:jurasick@zedo.com / Expires : 2014-12-20 21:00:34 LastSync : Hits:9 UseCount : 0 Hits : 9 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@estat[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:3 Value : Cookie:jurasick@estat.com / Expires : 2015-04-03 21:02:34 LastSync : Hits:3 UseCount : 0 Hits : 3 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@sextracker[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:1 Value : Cookie:jurasick@sextracker.com / Expires : 2005-05-25 23:40:48 LastSync : Hits:1 UseCount : 0 Hits : 1 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@hlwd.valueclick[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:1 Value : Cookie:jurasick@hlwd.valueclick.net / Expires : 2005-11-27 23:00:20 LastSync : Hits:1 UseCount : 0 Hits : 1 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@adserver.o2[1].txt TAC Rating : 3 Category : Data Miner Comment : Hits:5 Value : Cookie:jurasick@adserver.o2.pl/ Expires : 2008-06-24 03:37:26 LastSync : Hits:5 UseCount : 0 Hits : 5 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@ehg-sonyesolutions.hitbox[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:12 Value : Cookie:jurasick@ehg-sonyesolutions.hitbox.com / Expires : 2006-11-06 23:17:34 LastSync : Hits:12 UseCount : 0 Hits : 12 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@landing.domainsponsor[3].txt TAC Rating : 3 Category : Data Miner Comment : Hits:15 Value : Cookie:jurasick@landing.domainsponsor.com / Expires : 2007-09-09 23:40:04 LastSync : Hits:15 UseCount : 0 Hits : 15 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@www.smartadserver[2].txt TAC Rating : 3 Category : Data Miner Comment : Hits:9 Value : Cookie:jurasick@www.smartadserver.com / Expires : 2025-09-29 20:56:02 LastSync : Hits:9 UseCount : 0 Hits : 9 Tracking Cookie Object Recognized! Type : IECache Entry Data : jurasick@adserver.akqa[1].txt TAC Rating : 3 Category : Data Miner Commen
Gutek
(Gutek)
15 Listopad 2005 21:50
#4
OK juz wszystko
Proponuję program Spybot - Search & Destroy - http://dobreprogramy.com/index.php?dz=2&t=82&id=188 i od czasu do czasu jego użyć
youraa
(Jurasick)
16 Listopad 2005 10:17
#5
Thx
To mowisz zebyma ad awera odpuscil?
spy bot uzywam juz od jakiegos czasu
Tylko zdaje sie, ze format i tak niebawem mnie czeka gdyz i tak strasznie powoli mi komp dziala:( ale to moze dlatego ze system mam juz prawie 3 lata:)))
A do czego jest ten cws sys removal bo wygenerowal mi jakiegos dziwnego loga, skonczyl na checking cos tam jakby nie skonczyl do konca, ale moze jest tak normalnie
pozdrawiam i dzieki
Gutek
(Gutek)
16 Listopad 2005 14:59
#6
usuwa syf SYSTIME - miałeś
Nie jak masz Ad-Aware SE Professional zostaw