Here ya go:
SUPERAntiSpyware Scan Log
http://www.superantispyware.comGenerated 02/09/2012 at 05:27 PM
Application Version : 5.0.1144
Core Rules Database Version : 8223
Trace Rules Database Version: 6035
Scan type : Complete Scan
Total Scan Time : 01:39:04
Operating System Information
Windows Vista Home Basic 32-bit, Service Pack 2 (Build 6.00.6002)
UAC On - Administrator
Memory items scanned : 701
Memory threats detected : 0
Registry items scanned : 34071
Registry threats detected : 0
File items scanned : 243541
File threats detected : 314
Adware.Tracking Cookie
C:\Users\Hansberry\AppData\Roaming\Microsoft\Windows\Cookies\
[email protected][1].txt [ /msadcenter.112.2o7 ]
C:\Users\Hansberry\AppData\Roaming\Microsoft\Windows\Cookies\KST4B109.txt [ /doubleclick.net ]
C:\Users\Hansberry\AppData\Roaming\Microsoft\Windows\Cookies\9G6YDUF5.txt [ /atdmt.com ]
C:\Users\Hansberry\AppData\Roaming\Microsoft\Windows\Cookies\D60TF823.txt [ /2o7.net ]
C:\Users\Hansberry\AppData\Roaming\Microsoft\Windows\Cookies\PHPCG60R.txt [ /www.windowsmedia.com ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\RJVQ2KBU.txt [ Cookie:
[email protected]/accounts ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\hansberry@apmebf[3].txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\0L1QENWC.txt [ Cookie:
[email protected]/adsense/support/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\MT34X0LQ.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\V08V3B1R.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\3QJ20M1N.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\
[email protected][1].txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\AYB9EFCE.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\5ITYS1BO.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\2WR5ZNW2.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\GUFH8YQ0.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\UHTOVA4Q.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\hansberry@yadro[2].txt [ *Blocked Russian URL*/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\IM4XS4W8.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\SSEED4NT.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\V0A0E1K7.txt [ Cookie:
[email protected]/vztracker/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\113AIWC1.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\W30TASG2.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\4BU9ON83.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\UIY0BD5L.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\6DAKP2RC.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\HI3TIVDV.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\B43RMHOZ.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\6OY33U01.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\hansberry@specificclick[1].txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\BHYQ7TIB.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\J6AZVLS3.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\MYMNPRCY.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\OQTEQME8.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\73O1JBNK.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\23R1NXFT.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZSZ92PQM.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\2SJ8LK37.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\18FX64EF.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\0OAHPCEZ.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\S95VJZBK.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\
[email protected][1].txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\WHWUARZA.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\XYRP1WRQ.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\XLV6V95X.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\AL5HPF9I.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\YU0YJYAF.txt [ Cookie:
[email protected]/hc/57386690 ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\BSQI6Q0H.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\9UK16LDI.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\F7HDOX32.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\FQC9CEBX.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\XOM9QB3D.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\hansberry@questionpro[2].txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\hansberry@imrworldwide[3].txt [ Cookie:
[email protected]/cgi-bin ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\
[email protected][2].txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\9WHI0GEG.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\PQOF0SIY.txt [ Cookie:
[email protected]/hc/44153975 ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\JJ7A6EOL.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\NT4SYT0V.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\H6Q5SF90.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\MQ244PD8.txt [ Cookie:
[email protected]/adsense/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\1PU1RV68.txt [ Cookie:
[email protected]/hc/19357552 ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\45UUYT19.txt [ Cookie:
[email protected]/hc/37343836 ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\FW3IQPU6.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\DDU9J90X.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\0ZDHELQ3.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\Y1CFHFHN.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\SXHU9KEF.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\8J2HM7VK.txt [ Cookie:
[email protected]/accounts ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\3NZQWH4Q.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\YF3BC0NG.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\FN5RMPYY.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\MSXQF8RK.txt [ Cookie:
[email protected]/pagead/conversion/986691772/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\HFHZYNF6.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\E9K5FRD4.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\3EM9R0EL.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZT030K4H.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\74O5RT6W.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\5AR6SC1B.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\NC264MTB.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\PTBH32X2.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\1OFTUIJD.txt [ Cookie:
[email protected]/hc/47899488 ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\9ADXOS2U.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\MBIPAWDK.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\JQD0ZRW4.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\B3GBA8N2.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\N1T011GL.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\MPIDQD6S.txt [ Cookie:
[email protected]/dcsk62gwjq4tuubom1pirjier_1m1i ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\UCZ7JW6L.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\GUO0JERG.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\6CSHK145.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\NP4EGWE0.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\R1PJWPDY.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\QU9M7LFB.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\Q271HFND.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\23UW15Z0.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\AANL291G.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\PF15UIK3.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\QZ7I3NW7.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\YS3AJYLO.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\OKV25025.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\K54UAWK0.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\4MB0LL40.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\XR9DFPRZ.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\F3N3DF3E.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\OUZV7897.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\MEOGZJ0S.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\VG3HM0HK.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\UWA1UG95.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\L0XOHZXK.txt [ Cookie:
[email protected]/pagead/conversion/1071670928/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\6GOJHB8M.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\IDAAAEP7.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\GBP7YXIA.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\9U4T77K2.txt [ Cookie:
[email protected]/accounts/recovery/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\HNIP7L51.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\8BRMJ1WC.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\5Q3H0JG5.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\AppData\Roaming\Microsoft\Windows\Cookies\Low\8IXO43M4.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\Cookies\9G6YDUF5.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\Cookies\
[email protected][1].txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\Cookies\D60TF823.txt [ Cookie:
[email protected]/ ]
C:\USERS\HANSBERRY\Cookies\PHPCG60R.txt [ Cookie:
[email protected]/ ]
ad.insightexpressai.com [ C:\USERS\HANSBERRY\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\7J6VFVDN ]
cdn.eyewonder.com [ C:\USERS\HANSBERRY\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\7J6VFVDN ]
convoad.technoratimedia.net [ C:\USERS\HANSBERRY\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\7J6VFVDN ]
media.socialvibe.com [ C:\USERS\HANSBERRY\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\7J6VFVDN ]
media10.washingtonpost.com [ C:\USERS\HANSBERRY\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\7J6VFVDN ]
objects.tremormedia.com [ C:\USERS\HANSBERRY\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\7J6VFVDN ]
s0.2mdn.net [ C:\USERS\HANSBERRY\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\7J6VFVDN ]
speed.pointroll.com [ C:\USERS\HANSBERRY\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\7J6VFVDN ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /008.FREE-COUNTERS.CO ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /112.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@247REALMEDIA[1].TXT [ /247REALMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@2O7[2].TXT [ /2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /A1.INTERCLICK ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ACCOUNTONLINE[1].TXT [ /ACCOUNTONLINE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ACTIVENETWORK.122.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /AD.ADPERIUM ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /AD.WSOD ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /AD.YIELDMANAGER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ADBRITE[1].TXT [ /ADBRITE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ADBRITE[2].TXT [ /ADBRITE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ADECN[1].TXT [ /ADECN ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ADINTERAX[2].TXT [ /ADINTERAX ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ADS.ASSOCIATEDCONTENT ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ADS.CAROCEAN.CO ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /ADS.CAROCEAN.CO ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /ADS.CNN ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /ADS.CPXADROIT ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /ADS.CRAKMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ADS.HEARTLIGHT ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /ADS.NETRITION ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ADS.OOKLA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /ADS.PEOPLESPHARMACY ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ADS.POINTROLL ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /ADS.POINTROLL ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][3].TXT [ /ADS.POINTROLL ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /ADS.PUBMATIC ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ADS.TELEGRAPH.CO ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /ADS.UNDERTONE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ADS2.PHONEARENA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /ADSERVER.ADTECHUS ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ADTECH[1].TXT [ /ADTECH ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ADULTFRIENDFINDER[1].TXT [ /ADULTFRIENDFINDER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ADVANCE.ADTRACK.CALLS ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ADVERTISEFIRST[2].TXT [ /ADVERTISEFIRST ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ADVERTISING[1].TXT [ /ADVERTISING ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ADXPOSE[1].TXT [ /ADXPOSE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ALLBRITTON.122.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@AMTK-MEDIA[2].TXT [ /AMTK-MEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@APMEBF[1].TXT [ /APMEBF ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /AR.ATWOLA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ASSOCIATEDCONTENT.112.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /ASURIONINSURANCESERVICES.122.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /AT.ATWOLA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ATDMT[2].TXT [ /ATDMT ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@AZJMP[2].TXT [ /AZJMP ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /BEACON.DMSINSIGHTS ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /BETA-ADS.ACE.ADVERTISING ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@BIZRATE[2].TXT [ /BIZRATE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /BMUK.BURSTNET ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@BRAVENET[1].TXT [ /BRAVENET ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /BS.SERVING-SYS ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@BURSTBEACON[1].TXT [ /BURSTBEACON ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@BURSTNET[1].TXT [ /BURSTNET ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@BURSTNET[3].TXT [ /BURSTNET ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][3].TXT [ /BUSINESSFINDER.OREGONLIVE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /C.GIGCOUNT ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@CASALEMEDIA[1].TXT [ /CASALEMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@CASALEMEDIA[3].TXT [ /CASALEMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /CITI.BRIDGETRACK ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /CLICK.MEDIADOME ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@CLICKBANK[1].TXT [ /CLICKBANK ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@COHOMEFINDER[2].TXT [ /COHOMEFINDER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@COLLECTIVE-MEDIA[2].TXT [ /COLLECTIVE-MEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][3].TXT [ /CONTENT.YIELDMANAGER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@COUNTRYLIVING[2].TXT [ /COUNTRYLIVING ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@CURRCLICK[1].TXT [ /CURRCLICK ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@DA-TRACKING[1].TXT [ /DA-TRACKING ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /DATA.COREMETRICS ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /DC.TREMORMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@DMTRACKER[1].TXT [ /DMTRACKER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /DOMINIONENTERPRISES.112.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@DOUBLECLICK[2].TXT [ /DOUBLECLICK ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /E-2DJ6WHLOCPC5KFP.STATS.ESOMNITURE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /EARTHLINK.122.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /EAS.APM.EMEDIATE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@EDGEADX[2].TXT [ /EDGEADX ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /EHG-TI.HITBOX ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /EHG-VERIZON.HITBOX ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ERO-ADVERTISING[1].TXT [ /ERO-ADVERTISING ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@EYEWONDER[1].TXT [ /EYEWONDER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@EYEWONDER[3].TXT [ /EYEWONDER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@FASTCLICK[1].TXT [ /FASTCLICK ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@FREEFIND[1].TXT [ /FREEFIND ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@GOSTATS[2].TXT [ /GOSTATS ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /HEARSTMAGAZINES.112.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@HITBOX[2].TXT [ /HITBOX ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /HOMESTORE.122.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@IMRWORLDWIDE[2].TXT [ /IMRWORLDWIDE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /IN.GETCLICKY ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@INDIECLICK[1].TXT [ /INDIECLICK ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@INSIGHTEXPRESSAI[2].TXT [ /INSIGHTEXPRESSAI ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@INTERCLICK[1].TXT [ /INTERCLICK ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@INTERMUNDOMEDIA[2].TXT [ /INTERMUNDOMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@INVITEMEDIA[1].TXT [ /INVITEMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@KANTARMEDIA[1].TXT [ /KANTARMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@KONTERA[1].TXT [ /KONTERA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /LEGO.112.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@LEGOLAS-MEDIA[2].TXT [ /LEGOLAS-MEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@LINKSYNERGY[1].TXT [ /LINKSYNERGY ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@LIVEPERSON[1].TXT [ /LIVEPERSON ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@LIVEPERSON[2].TXT [ /LIVEPERSON ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@LIVEPERSON[3].TXT [ /LIVEPERSON ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@LIVEPERSON[4].TXT [ /LIVEPERSON ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@LIVEPERSON[6].TXT [ /LIVEPERSON ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@LUCIDMEDIA[1].TXT [ /LUCIDMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /M1.WEBSTATS.MOTIGO ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@MEDIA6DEGREES[1].TXT [ /MEDIA6DEGREES ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@MEDIA6DEGREES[2].TXT [ /MEDIA6DEGREES ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@MEDIA6DEGREES[3].TXT [ /MEDIA6DEGREES ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@MEDIABRANDSWW[2].TXT [ /MEDIABRANDSWW ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@MEDIAPLEX[1].TXT [ /MEDIAPLEX ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /MEDIASTORE.VERIZONWIRELESS ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /MERCOLA.122.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /MM.CHITIKA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@MONDAYMORNINGINSIGHT[1].TXT [ /MONDAYMORNINGINSIGHT ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /MSNBC.112.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /MSNPORTAL.112.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /MYACCOUNT.VERIZONWIRELESS ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /NETWORK.REALMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@NEXTAG[1].TXT [ /NEXTAG ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@NORTHRIDGEMEDIA[1].TXT [ /NORTHRIDGEMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /OPTIMIZE.INDIECLICK ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@OVERTURE[2].TXT [ /OVERTURE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /PARENTINGTEENS.ABOUT ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /PAYPAL.112.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /PERF.OVERTURE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@POINTROLL[2].TXT [ /POINTROLL ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@POINTROLL[3].TXT [ /POINTROLL ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@POINTROLL[4].TXT [ /POINTROLL ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@PRO-MARKET[2].TXT [ /PRO-MARKET ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@QUESTIONMARKET[1].TXT [ /QUESTIONMARKET ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@QUESTIONMARKET[3].TXT [ /QUESTIONMARKET ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /R1-ADS.ACE.ADVERTISING ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@REALMEDIA[1].TXT [ /REALMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@REVENUE[2].TXT [ /REVENUE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@REVSCI[2].TXT [ /REVSCI ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /ROTATOR.ADJUGGLER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@RU4[2].TXT [ /RU4 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /S.CLICKABILITY ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /SALES.LIVEPERSON ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /SERVER.IAD.LIVEPERSON ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@SERVING-SYS[2].TXT [ /SERVING-SYS ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@SMARTADSERVER[2].TXT [ /SMARTADSERVER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@SPECIFICCLICK[2].TXT [ /SPECIFICCLICK ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@SPECIFICMEDIA[1].TXT [ /SPECIFICMEDIA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /STAT.DEALTIME ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@STATCOUNTER[1].TXT [ /STATCOUNTER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /STATS.CRAYOLA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /STATS.PAYPAL ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /STATSE.WEBTRENDSLIVE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /TACODA.AT.ATWOLA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@TACODA[1].TXT [ /TACODA ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@TESTQUESTIONSANDANSWERS[2].TXT [ /TESTQUESTIONSANDANSWERS ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /TEXASINSTRUMENT.122.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /TRACKER.OPTICSPLANET ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /TRACKING.REALTOR ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /TRACKING.VEILLE-REFERENCEMENT ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@TRAFFICMP[2].TXT [ /TRAFFICMP ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /TRAVIDIA.112.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@TRIBALFUSION[1].TXT [ /TRIBALFUSION ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@TRIBALFUSION[2].TXT [ /TRIBALFUSION ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /WALMART.112.2O7 ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /WWW.ACCOUNTONLINE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /WWW.BURSTBEACON ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /WWW.BURSTNET ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][3].TXT [ /WWW.BURSTNET ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][1].TXT [ /WWW.COHOMEFINDER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /WWW.COUNTRYLIVING ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /WWW.COUNTRYWIDE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][3].TXT [ /WWW.COUNTRYWIDE ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /WWW.CURRCLICK ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /WWW.GOOGLEADSERVICES ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\
[email protected][2].TXT [ /WWW.HOBBYADSALES ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@XITI[1].TXT [ /XITI ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@YIELDMANAGER[1].TXT [ /YIELDMANAGER ]
C:\USERS\HANSBERRY\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\HANSBERRY@ZEDO[1].TXT [ /ZEDO ]
Trojan.Agent/Gen-UsrMgr
C:\USERS\HANSBERRY\DESKTOP\CALEB\GRAPHING CALCULATOR\TI-8X PROGRAMS\DOWNLOADS\TI-83+SE DOWNLOADS\AXE PARSER\TOOLS\APPLICATION SIGNING\RABBITSIGN.EXE
Trojan.Agent/Gen-Krpytik
ZIP ARCHIVE( C:\USERS\HANSBERRY\DESKTOP\SAVE TO FREEAGENT\BRUSH2.ZIP )/FILTERS/RIPPLE.DLL
C:\USERS\HANSBERRY\DESKTOP\SAVE TO FREEAGENT\BRUSH2.ZIP
ZIP ARCHIVE( C:\USERS\HANSBERRY\DESKTOP\SAVE TO FREEAGENT\BRUSH2.ZIP )/FILTERS/SWIRL.DLL
ZIP ARCHIVE( C:\USERS\HANSBERRY\DESKTOP\SAVE TO FREEAGENT\BRUSH2.ZIP )/FILTERS/MANDELBROTT FRACTAL.DLL
ZIP ARCHIVE( C:\USERS\HANSBERRY\DESKTOP\SAVE TO FREEAGENT\BRUSH2.ZIP )/FILTERS/RANDOMIZE.DLL
Malwarebytes Anti-Malware (Trial) 1.60.1.1000
www.malwarebytes.orgDatabase version: v2012.01.31.07
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19170
Hansberry :: HANSBERRY-PC [administrator]
Protection: Enabled
2/9/2012 12:46:10 AM
mbam-log-2012-02-09 (00-46-10).txt
Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 398513
Time elapsed: 1 hour(s), 27 minute(s),
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 3
C:\Users\Hansberry\AppData\Local\volmgr.dll (Trojan.Downloader.adb) -> Quarantined and deleted successfully.
C:\Users\Hansberry\AppData\Local\volmgr.exe (Trojan.Downloader.adb) -> Quarantined and deleted successfully.
C:\Users\Hansberry\AppData\Local\Temp\jar_cache5846010264388550745.tmp (Trojan.Downloader.adb) -> Quarantined and deleted successfully.
(end)
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.19170
Run by Hansberry at 17:57:10 on 2012-02-09
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.1918.1115 [GMT -8:00]
.
AV: Norton 360 *Disabled/Outdated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton 360 *Disabled/Outdated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
FW: Norton 360 *Disabled* {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Zune\ZuneLauncher.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Sandisk\Common\Bin\WinCinemaMgr.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Windows\system32\agrsmsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Program Files\Rosetta Stone\SMS v3.0.2hs\Service\JavaSrvc.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.homeschoolfreebie.wholesomechildhood.com/
uDefault_Page_URL = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0409&s=1&o=vb32&d=0209&m=et1161-05
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
mStart Page = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0409&s=1&o=vb32&d=0209&m=et1161-05
mDefault_Page_URL = hxxp://homepage.emachines.com/rdr.aspx?b=ACEW&l=0409&s=1&o=vb32&d=0209&m=et1161-05
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: NCO 2.0 IE BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\common files\symantec shared\coshared\browser\2.6\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\progra~1\common~1\symant~1\ids\IPSBHO.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.6.5612.1312\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_A8904FB862BD9564.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn\YTSingleInstance.dll
TB: Show Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\common files\symantec shared\coshared\browser\2.6\CoIEPlg.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe"
mRun: [osCheck] "c:\program files\norton 360\osCheck.exe"
mRun: [eRecoveryService]
mRun: [UpdateP2GoShortCut] "c:\program files\cyberlink\power2go\muitransfer\muistartmenu.exe" "c:\program files\cyberlink\power2go" updatewithcreateonce "software\cyberlink\power2go\6.0"
mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe"
mRun: [LanguageShortcut] "c:\program files\cyberlink\powerdvd\language\Language.exe"
mRun: [UpdatePSTShortCut] "c:\program files\cyberlink\dvd suite\muitransfer\muistartmenu.exe" "c:\program files\cyberlink\dvd suite" updatewithcreateonce "software\cyberlink\PowerStarter"
mRun: [Skytel] Skytel.exe
mRun: [Zune Launcher] "c:\program files\zune\ZuneLauncher.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
StartupFolder: c:\users\hansbe~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\wincin~1.lnk - c:\program files\sandisk\common\bin\WinCinemaMgr.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\billmi~1.lnk - c:\quickenw\billmind.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\2.0.181\SSScheduler.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\netgea~1.lnk - c:\program files\netgear\wg111v3\WG111v3.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
Trusted Zone: real.com\rhap-app-4-0
Trusted Zone: real.com\rhapreg
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - c:\program files\google\google toolbar\component\fastsearch_A8904FB862BD9564.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
============= SERVICES / DRIVERS ===============
.
R1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\symantec\defini~1\symcdata\ipsdefs\20090811.002\IDSvix86.sys [2009-8-11 272432]
R1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver;c:\windows\system32\drivers\RtlProt.sys [2007-4-23 25896]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
R2 ETService;Empowering Technology Service;c:\program files\emachines\emachines recovery management\service\ETService.exe [2009-2-19 24576]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 21504]
R2 LiveUpdate Notice;LiveUpdate Notice;c:\program files\common files\symantec shared\CCSVCHST.EXE [2008-2-17 149352]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-2-9 652360]
R2 SMSv3_0_2hs;SMSv3_0_2hs;c:\program files\rosetta stone\sms v3.0.2hs\service\JavaSrvc.exe [2006-7-26 65536]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-2-9 20464]
R3 RTL8187B;NETGEAR WG111v3 Wireless-G USB Adapter Vista Driver;c:\windows\system32\drivers\wg111v3.sys [2011-3-20 348160]
R3 Symantec Core LC;Symantec Core LC;c:\progra~1\common~1\symant~1\ccpd-lc\symlcsvc.exe [2008-10-28 1245064]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 COH_Mon;COH_Mon;c:\windows\system32\drivers\COH_Mon.sys [2008-1-11 23888]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-8-26 102448]
S3 libusb0;libusb-win32 - Kernel Driver, Version 1.2.3.0;c:\windows\system32\drivers\libusb0.sys [2011-7-8 35904]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2011-3-18 9216]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
S3 SYMNDISV;SYMNDISV;c:\windows\system32\drivers\symndisv.sys [2009-2-19 41008]
S3 WMZuneComm;Zune Windows Mobile Connectivity Service;c:\program files\zune\WMZuneComm.exe [2010-9-24 268528]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S3 ZTEusbgps;ZTE GPS Port;c:\windows\system32\drivers\ZTEusbgps.sys [2011-3-18 105856]
S3 ZTEusbnmeaext;ZTE NMEAExt Port;c:\windows\system32\drivers\ZTEusbnmeaext.sys [2011-3-18 105856]
.
=============== Created Last 30 ================
.
2012-02-09 23:36:05 -------- d-----w- c:\users\hansberry\appdata\roaming\SUPERAntiSpyware.com
2012-02-09 23:34:30 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-02-09 23:34:30 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-02-09 17:37:00 56200 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{3aad5b11-a19b-4275-a64c-a3dc40cf8f2b}\offreg.dll
2012-02-09 08:45:26 -------- d-----w- c:\users\hansberry\appdata\roaming\Malwarebytes
2012-02-09 08:45:20 -------- d-----w- c:\programdata\Malwarebytes
2012-02-09 08:45:19 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-09 08:45:19 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-02-09 07:31:43 -------- d-----w- C:\OEMSettings
2012-02-05 06:06:39 -------- d-----w- c:\users\hansberry\appdata\roaming\.minecraft
2012-01-23 22:23:58 91448 ----a-w- c:\windows\system32\bcmwlcoi.dll
2012-01-23 22:23:58 3874816 ----a-w- c:\windows\system32\bcmihvsrv.dll
2012-01-23 22:23:58 3563520 ----a-w- c:\windows\system32\bcmihvui.dll
2012-01-23 22:23:58 21728 ----a-w- c:\windows\system32\drivers\SCMNdisP.sys
2012-01-23 17:09:50 -------- d-----w- C:\CSGAMES
2012-01-23 17:09:49 598544 ----a-w- c:\windows\system\OWL202.DLL
2012-01-23 17:09:48 69632 ----a-w- c:\windows\system\BIDS402.DLL
2012-01-23 17:09:48 219648 ----a-w- c:\windows\system\BC402RTL.DLL
2012-01-23 00:44:45 -------- d-----w- c:\windows\pss
2012-01-22 01:08:08 6823496 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{3aad5b11-a19b-4275-a64c-a3dc40cf8f2b}\mpengine.dll
2012-01-11 19:04:57 2409784 ----a-w- c:\program files\windows mail\OESpamFilter.dat
2012-01-11 18:43:35 376320 ----a-w- c:\windows\system32\winsrv.dll
2012-01-11 18:43:33 23552 ----a-w- c:\windows\system32\mciseq.dll
2012-01-11 18:43:33 189952 ----a-w- c:\windows\system32\winmm.dll
2012-01-11 18:43:30 1205064 ----a-w- c:\windows\system32\ntdll.dll
2012-01-11 18:43:28 66560 ----a-w- c:\windows\system32\packager.dll
2012-01-11 18:43:20 497152 ----a-w- c:\windows\system32\qdvd.dll
2012-01-11 18:43:20 1314816 ----a-w- c:\windows\system32\quartz.dll
.
==================== Find3M ====================
.
2011-11-23 13:37:27 2043904 ----a-w- c:\windows\system32\win32k.sys
.
============= FINISH: 17:58:22.39 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft® Windows Vista™ Home Basic
Boot Device: \Device\HarddiskVolume2
Install Date: 2/19/2009 3:21:17 PM
System Uptime: 2/9/2012 5:32:58 PM (0 hours ago)
.
Motherboard: eMachines | | MCP61PM-GM
Processor: AMD Athlon(tm) Processor LE-1620 | Socket AM2 | 2400/201mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 139 GiB total, 69.085 GiB free.
D: is CDROM ()
E: is Removable
F: is Removable
G: is Removable
H: is Removable
I: is FIXED (NTFS) - 298 GiB total, 159.034 GiB free.
J: is Removable
K: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
.
==== Installed Programs ======================
.
Sansa Media Converter
Update for Microsoft Office 2007 (KB2508958)
7-Zip 9.20
Adobe Flash Player 10 ActiveX
Adobe Reader 8.3.1
Agere Systems PCI-SV92PP Soft Modem
AppCore
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ArcSoft PhotoStudio 2000
ASM Suite 2.0
AviSynth 2.5
Backup
Basic Facts Worksheet Factory
Best Buy Digital Music Store
Best Buy Rhapsody
Bonjour
Canon G.726 WMP-Decoder
Canon MovieEdit Task for ZoomBrowser EX
Canon RAW Image Task for ZoomBrowser EX
Canon ScanGear Toolbox 3.0
Canon Utilities CameraWindow
Canon Utilities CameraWindow DC
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX
Canon Utilities MyCamera
Canon Utilities MyCamera DC
Canon Utilities PhotoStitch
Canon Utilities RemoteCapture Task for ZoomBrowser EX
Canon Utilities ZoomBrowser EX
Canon ZoomBrowser EX Memory Card Utility
ccCommon
Compatibility Pack for the 2007 Office system
CyberLink DVD Suite
CyberLink LabelPrint
CyberLink Power2Go
CyberLink PowerDVD
Digital Media Reader
e-Sword
eMachines Games
eMachines Recovery Management
ffdshow [rev 2583] [2009-01-05]
GearDrvs
Google Toolbar for Internet Explorer
Haali Media Splitter
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hoyle Board Games 5
Interactive Math Journey
iTunes
Java Auto Updater
Java DB 10.6.2.1
Java(TM) 6 Update 22
Java(TM) 6 Update 5
Java(TM) SE Development Kit 6 Update 26
LEGO Digital Designer
LEGO LOCO
LibUSB-Win32-1.2.3.0
LiveUpdate (Symantec Corporation)
LiveUpdate BVRP Software
LSI PCI-SV92PP Soft Modem
Malwarebytes Anti-Malware version 1.60.1.1000
Mathematics Worksheet Factory Lite 2.0
Mavis Beacon Teaches Typing 18
McAfee Security Scan Plus
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft GIF Animator
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
mobile PhoneTools
Movie DVD Maker 2.7.1021
Mp3 Stream Recorder
MusicReading
My DVD Maker 5.8
NETGEAR WG111v3 wireless USB 2.0 adapter
NI LabVIEW Run-Time Engine 5.1
Noah's Ark Deluxe 1.1
Norton 360
Norton 360 (Symantec Corporation)
Norton 360 HTMLHelp
Norton Confidential Core
NVIDIA Drivers
OGA Notifier 2.0.0048.0
OpenOffice.org 3.3
Phonics Made Easy
Picturetrail Photo Editor 2.1.0.0
PVSonyDll
Python 3.2
Quicken for Windows 6 Deluxe
QuickTime
Realtek High Definition Audio Driver
Rhapsody
Rhapsody Player Engine
Rosetta Stone 2.1.5.1Asms
Sansa Media Converter
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB2553089)
Security Update for 2007 Microsoft Office System (KB2553090)
Security Update for 2007 Microsoft Office System (KB2584063)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Sothink Movie DVD Maker
SPBBC 32bit
Student Management System v3.0.2hs
SumatraPDF
SUPERAntiSpyware
Symantec Real Time Storage Protection Component
Symantec Technical Support Controls
SymNet
TI-Black Link
TI-Graph Link 82
TI Connect 1.6
Ultimate Ride Coaster Deluxe
Unity Web Player (All users)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
USDA-HealtheTech Search SR-20
Verizon Wireless AC30 Firmware Updates
VZAccess Manager
West Point Bridge Designer 2010 (2nd Edition) (remove only)
Windows Mobile Device Updater Component
Yahoo! Toolbar
ZTE USB Drivers
Zune
Zune Language Pack (DEU)
Zune Language Pack (ESP)
Zune Language Pack (FRA)
Zune Language Pack (ITA)
Zune Language Pack (NLD)
Zune Language Pack (PTB)
Zune Language Pack (PTG)
.