Cannot delete MoviePass.tv from my PC
MoviePass.tv has somehow installed itself on my PC and I have tried everything to remove it. It's a popup that will not go away, and that tells you that you owe a fee, b/c you went through 4 installation steps to install the product. Most people I have talked with never even went to their website, me included.
I have used Ad-Aware SE to scan/remove all objects at risk (I have included my latest quarantine list), and it is still on my system. After searching on this horrible adware, I have found that many people have been infected with it, and are having the same problem. I have gone through every set of directions from many different postings I have found, but nothing has worked.
Can anyone help me get this off my PC?
ArchiveData(auto-quarantine- 2006-05-08 07-45-08.bckp)
Referencefile : SE1R105 26.04.2006
======================================================
MRU LIST
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[0]=MRU FileReference : C:\Documents and Settings\Beth\Application Data\microsoft\office\recent\01129456.dot.LNK
obj[1]=MRU FileReference : C:\Documents and Settings\Beth\recent\01129456.dot.lnk
obj[2]=MRU FileReference : C:\Documents and Settings\Beth\recent\0409.lnk
obj[3]=MRU FileReference : C:\Documents and Settings\Beth\recent\2004_Christmas_Card_List.xls.lnk
obj[4]=MRU FileReference : C:\Documents and Settings\Beth\recent\2005-09 (Sep).lnk
obj[5]=MRU FileReference : C:\Documents and Settings\Beth\recent\9-25 BW Kids.jpg.lnk
obj[6]=MRU FileReference : C:\Documents and Settings\Beth\recent\Address from Bureau Report for IVR apps.doc.lnk
obj[7]=MRU FileReference : C:\Documents and Settings\Beth\recent\adobe.doc.lnk
obj[8]=MRU FileReference : C:\Documents and Settings\Beth\recent\Beach Trip Availability-06.doc.lnk
obj[9]=MRU FileReference : C:\Documents and Settings\Beth\recent\BHarrodResume.doc.lnk
obj[10]=MRU FileReference : C:\Documents and Settings\Beth\recent\BHarrodResume2004.doc.lnk
obj[11]=MRU FileReference : C:\Documents and Settings\Beth\recent\Brunswick Weather.bmp.lnk
obj[12]=MRU FileReference : C:\Documents and Settings\Beth\recent\BUNCO_LIST[1].doc.lnk
obj[13]=MRU FileReference : C:\Documents and Settings\Beth\recent\Bunco_Schedule_2006.doc.lnk
obj[14]=MRU FileReference : C:\Documents and Settings\Beth\recent\CC 4.x-5.1 MF Upgrade Guide.book.lnk
obj[15]=MRU FileReference : C:\Documents and Settings\Beth\recent\CC 5.1 AS400 User Guide.book.lnk
obj[16]=MRU FileReference : C:\Documents and Settings\Beth\recent\CC 5.1 AS400 User Guide.pdf.lnk
obj[17]=MRU FileReference : C:\Documents and Settings\Beth\recent\CC 5.1 Data Provider Access Guide.book.lnk
obj[18]=MRU FileReference : C:\Documents and Settings\Beth\recent\CC 5.1 Data Provider Access Guide.pdf.lnk
obj[19]=MRU FileReference : C:\Documents and Settings\Beth\recent\CC 5.1 DPAG.book.lnk
obj[20]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru\*
obj[21]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.bmp
obj[22]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.book
obj[23]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.chm
obj[24]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.doc
obj[25]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.dot
obj[26]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.fm
obj[27]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.gif
obj[28]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.hta
obj[29]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.htm
obj[30]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.ini
obj[31]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.joboptions
obj[32]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.jpg
obj[33]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.pdf
obj[34]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.ppt
obj[35]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.rtf
obj[36]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.xls
obj[37]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\.xpj
obj[38]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\recentdocs\Folder
obj[39]=MRU FileReference : C:\Documents and Settings\Beth\recent\DA 3.0 MF-Tandem Host Reference Guide.book.lnk
obj[40]=MRU RegReference : software\musicmatch\musicmatch jukebox\4.0\fileconv
obj[41]=MRU RegReference : .DEFAULT\software\microsoft\windows media\wmsdk\general computername
obj[42]=MRU RegReference : S-1-5-18\software\microsoft\windows media\wmsdk\general computername
obj[43]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows media\wmsdk\general computername
obj[44]=MRU FileReference : C:\Documents and Settings\Beth\recent\Design Doc Spec for Alt Score POC v1.0_Feb17.doc.lnk
obj[45]=MRU FileReference : C:\Documents and Settings\Beth\recent\Desktop.ini
obj[46]=MRU FileReference : C:\Documents and Settings\Beth\recent\Doc Test.lnk
obj[47]=MRU FileReference : C:\Documents and Settings\Beth\recent\EX-GND-APPL-DOB.doc.lnk
obj[48]=MRU FileReference : C:\Documents and Settings\Beth\recent\EX-GND-APPL-NAME.doc.lnk
obj[49]=MRU FileReference : C:\Documents and Settings\Beth\recent\EX-GND-SPOUSE-DOB.doc.lnk
obj[50]=MRU FileReference : C:\Documents and Settings\Beth\recent\EX-GND-SPOUSE-NAME.doc.lnk
obj[51]=MRU FileReference : C:\Documents and Settings\Beth\recent\EX-INQ-MEMBER-NUMBER-1-3.doc.lnk
obj[52]=MRU FileReference : C:\Documents and Settings\Beth\recent\EX-TRD-ALPHA-DUAL.doc.lnk
obj[53]=MRU FileReference : C:\Documents and Settings\Beth\recent\EX-TRD-BANK-REVOLVING.doc.lnk
obj[54]=MRU FileReference : C:\Documents and Settings\Beth\recent\EX-TRD-DISPUTE-DUAL-FLG.doc.lnk
obj[55]=MRU FileReference : C:\Documents and Settings\Beth\recent\FICO Score Information.doc.lnk
obj[56]=MRU FileReference : C:\Documents and Settings\Beth\recent\Flynn.doc.lnk
obj[57]=MRU FileReference : C:\Documents and Settings\Beth\recent\Flynn_Birth_Announcment_Address_List.xls.lnk
obj[58]=MRU FileReference : C:\Documents and Settings\Beth\recent\FrameMaker Files.lnk
obj[59]=MRU FileReference : C:\Documents and Settings\Beth\recent\FrameMaker.lnk
obj[60]=MRU FileReference : C:\Documents and Settings\Beth\recent\Fraud-App-CBR Age Difference.doc.lnk
obj[61]=MRU FileReference : C:\Documents and Settings\Beth\recent\GE Attribute Specifications.doc.lnk
obj[62]=MRU FileReference : C:\Documents and Settings\Beth\recent\Harrod, B. 010606.pdf.lnk
obj[63]=MRU FileReference : C:\Documents and Settings\Beth\recent\Installing RapUP PC 2.2.pdf.lnk
obj[64]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics 007.jpg.lnk
obj[65]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics 011.jpg.lnk
obj[66]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics 013.jpg.lnk
obj[67]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics 017.jpg.lnk
obj[68]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics 024.jpg.lnk
obj[69]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics 049.jpg.lnk
obj[70]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics 053.jpg.lnk
obj[71]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics 069.jpg.lnk
obj[72]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics 075.jpg.lnk
obj[73]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics 077.jpg.lnk
obj[74]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics 087.jpg.lnk
obj[75]=MRU FileReference : C:\Documents and Settings\Beth\recent\Jan 2006 kid pics.lnk
obj[76]=MRU FileReference : C:\Documents and Settings\Beth\recent\List of New Variables.doc.lnk
obj[77]=MRU FileReference : C:\Documents and Settings\Beth\recent\local GE Attribute Specifications.doc.lnk
obj[78]=MRU FileReference : C:\Documents and Settings\Beth\recent\Magnum doc for MISMO.doc.lnk
obj[79]=MRU FileReference : C:\Documents and Settings\Beth\recent\Master Specs.lnk
obj[80]=MRU FileReference : C:\Documents and Settings\Beth\recent\MISC.lnk
obj[81]=MRU FileReference : C:\Documents and Settings\Beth\recent\moviemk.chm.lnk
obj[82]=MRU FileReference : C:\Documents and Settings\Beth\recent\OPTION 1 SPECIFICATIONS.pdf.lnk
obj[83]=MRU FileReference : C:\Documents and Settings\Beth\recent\Option One Attribute Specifications.lnk
obj[84]=MRU FileReference : C:\Documents and Settings\Beth\recent\Option One Attribute Specs.book.lnk
obj[85]=MRU FileReference : C:\Documents and Settings\Beth\recent\Option One Attribute Specs.fm.lnk
obj[86]=MRU FileReference : C:\Documents and Settings\Beth\recent\Option One Attribute Specs.pdf.lnk
obj[87]=MRU FileReference : C:\Documents and Settings\Beth\recent\Option One Attribute Specs_Cover.fm.lnk
obj[88]=MRU FileReference : C:\Documents and Settings\Beth\recent\OPTION ONE Output File_v14.doc.lnk
obj[89]=MRU FileReference : C:\Documents and Settings\Beth\recent\OPTION ONE Output File_v14.pdf.lnk
obj[90]=MRU FileReference : C:\Documents and Settings\Beth\recent\OPTION ONE SPECIFICATIONS.doc.lnk
obj[91]=MRU FileReference : C:\Documents and Settings\Beth\recent\OPTION ONE SPECIFICATIONS_v14.pdf.lnk
obj[92]=MRU FileReference : C:\Documents and Settings\Beth\recent\Option One Specs.book.lnk
obj[93]=MRU FileReference : C:\Documents and Settings\Beth\recent\Option One Specs.fm.lnk
obj[94]=MRU FileReference : C:\Documents and Settings\Beth\recent\OPTION1 SPECIFICATIONS.doc.lnk
obj[95]=MRU FileReference : C:\Documents and Settings\Beth\recent\OPTION1 SPECIFICATIONS.pdf.lnk
obj[96]=MRU FileReference : C:\Documents and Settings\Beth\recent\Original GE Master.lnk
obj[97]=MRU FileReference : C:\Documents and Settings\Beth\recent\P0121004.rtf.lnk
obj[98]=MRU FileReference : C:\Documents and Settings\Beth\recent\P0211688 Transaction Class Status.doc.lnk
obj[99]=MRU FileReference : C:\Documents and Settings\Beth\recent\PDF.lnk
obj[100]=MRU FileReference : C:\Documents and Settings\Beth\recent\Press.joboptions.1.joboptions.lnk
obj[101]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP 2.2 1st QTR 2006 Updates.fm.lnk
obj[102]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP 2.2 1st QTR 2006 Updates.lnk
obj[103]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP 2.2 1st QTR 2006 Updates.pdf.lnk
obj[104]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP 2.2 Build 20060131.1.fm.lnk
obj[105]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP 2.2 Build 20060131.1.pdf.lnk
obj[106]=MRU FileReference : C:\Documents and Settings\Beth\recent\RAPUP 2.2.lnk
obj[107]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP 22.xpj.lnk
obj[108]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP API User Information.pdf.lnk
obj[109]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP API.book.lnk
obj[110]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP Batch Utility MF-Tandem Product Guide_2.1.book.lnk
obj[111]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP Batch Utility MF-Tandem Product Guide_2.3-DRAFT.pdf.lnk
obj[112]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP Batch Utility MF-Tandem Product Guide_2.3.book.lnk
obj[113]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP New Functionality Summary.lnk
obj[114]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP PC 2.2 Export Updates.lnk
obj[115]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP PC 2.2 Release Letter.doc.lnk
obj[116]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP PC 2.2 Upgrade Instructions CH_1.fm.lnk
obj[117]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP PC Upgrade Guide 2.0.x-2.2.book.lnk
obj[118]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUP PC Upgrade Guide-2.0.x to 2.2.pdf.lnk
obj[119]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUPAPI DocChanges-DV050106.doc.lnk
obj[120]=MRU FileReference : C:\Documents and Settings\Beth\recent\RapUPTSQ.rtf.lnk
obj[121]=MRU FileReference : C:\Documents and Settings\Beth\recent\Redo_RUPC InstallGuide.doc.lnk
obj[122]=MRU FileReference : C:\Documents and Settings\Beth\recent\Rename SBE to ECIS and add 2.1.7 P0211658.doc.lnk
obj[123]=MRU FileReference : C:\Documents and Settings\Beth\recent\RU 2.2 Host Mainframe-Tandem User Guide.book.lnk
obj[124]=MRU FileReference : C:\Documents and Settings\Beth\recent\RU 2.2 Host Mainframe-Tandem User Guide.pdf.lnk
obj[125]=MRU FileReference : C:\Documents and Settings\Beth\recent\RU 2.2 Mainframe-Tandem User_Ch_6.fm.lnk
obj[126]=MRU FileReference : C:\Documents and Settings\Beth\recent\RU 2.2 User Guide.book.lnk
obj[127]=MRU FileReference : C:\Documents and Settings\Beth\recent\RU 2.2 User_CH_02.fm.lnk
obj[128]=MRU FileReference : C:\Documents and Settings\Beth\recent\RU 2.2 User_CH_14.fm.lnk
obj[129]=MRU FileReference : C:\Documents and Settings\Beth\recent\RU PC 2.2 Release Letter.doc.lnk
obj[130]=MRU FileReference : C:\Documents and Settings\Beth\recent\RU PC 2.2 User Guide.pdf.lnk
obj[131]=MRU FileReference : C:\Documents and Settings\Beth\recent\RUB22 Doc Change.doc.lnk
obj[132]=MRU FileReference : C:\Documents and Settings\Beth\recent\Ryan-Cover Letter.doc.lnk
obj[133]=MRU FileReference : C:\Documents and Settings\Beth\recent\RYAN_HARROD.rtf.lnk
obj[134]=MRU FileReference : C:\Documents and Settings\Beth\recent\salesperson.doc.lnk
obj[135]=MRU FileReference : C:\Documents and Settings\Beth\recent\salesperson.pdf.lnk
obj[136]=MRU FileReference : C:\Documents and Settings\Beth\recent\Schedule.fm.lnk
obj[137]=MRU FileReference : C:\Documents and Settings\Beth\recent\Scoring Brochure - Small Business 010506.ppt.lnk
obj[138]=MRU FileReference : C:\Documents and Settings\Beth\recent\SCREENS.lnk
obj[139]=MRU FileReference : C:\Documents and Settings\Beth\recent\Settings.lnk
obj[140]=MRU FileReference : C:\Documents and Settings\Beth\recent\Specs OK.lnk
obj[141]=MRU FileReference : C:\Documents and Settings\Beth\recent\STAGG Select P0211654.doc.lnk
obj[142]=MRU FileReference : C:\Documents and Settings\Beth\recent\Start RapUP option and move CB707 call P0211687.doc.lnk
obj[143]=MRU FileReference : C:\Documents and Settings\Beth\recent\TIME OFF REQ-040606.doc.lnk
obj[144]=MRU FileReference : C:\Documents and Settings\Beth\recent\Time Off Request Form.dot.lnk
obj[145]=MRU FileReference : C:\Documents and Settings\Beth\recent\Tranclass.rtf.lnk
obj[146]=MRU FileReference : C:\Documents and Settings\Beth\recent\Update text.bmp.lnk
obj[147]=MRU FileReference : C:\Documents and Settings\Beth\recent\UPDATE to CC 6.doc.lnk
obj[148]=MRU FileReference : C:\Documents and Settings\Beth\recent\Updates for Vol_Test Doc.doc.lnk
obj[149]=MRU FileReference : C:\Documents and Settings\Beth\recent\Volume Test Comparison of Attribute Results-GENASYS to RapUP.pdf.lnk
obj[150]=MRU FileReference : C:\Documents and Settings\Beth\recent\Volume Testing for Genasys to RapUP Comparison.book.lnk
obj[151]=MRU FileReference : C:\Documents and Settings\Beth\recent\WebHelp_Pro.lnk
obj[152]=MRU FileReference : C:\Documents and Settings\Beth\recent\Word.lnk
obj[154]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\direct3d\mostrecentapplication name
obj[155]=MRU RegReference : software\microsoft\direct3d\mostrecentapplication name
obj[156]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\direct3d\mostrecentapplication name
obj[157]=MRU RegReference : software\microsoft\direct3d\mostrecentapplication name
obj[158]=MRU RegReference : software\microsoft\directdraw\mostrecentapplication name
obj[159]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\internet explorer download directory
obj[160]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\internet explorer\typedurls
obj[161]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\mediaplayer\player\recentfilelist
obj[162]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\mediaplayer\preferences lastplaylistindex
obj[163]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\mediaplayer\preferences lastplaylist
obj[164]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\office\10.0\common\open find\microsoft powerpoint\settings\save as\file name mru value
obj[165]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\office\10.0\common\open find\microsoft word\settings\open\file name mru value
obj[166]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\office\10.0\common\open find\microsoft word\settings\save as\file name mru value
obj[167]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\office\10.0\excel\recent files
obj[168]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\office\10.0\powerpoint\recent file list
obj[169]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\applets\regedit lastkey
obj[170]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\applets\wordpad\recent file list
obj[171]=MRU RegReference : S-1-5-21-3125719873-2189246704-3068007056-1005\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
TRACKING COOKIE
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[26]=IECache Entry : Cookie:beth@doubleclick.net/
obj[27]=IECache Entry : Cookie:beth@statcounter.com/
obj[28]=IECache Entry : Cookie:beth@realmedia.com/
obj[29]=IECache Entry : Cookie:beth@ehg-comcast.hitbox.com/
obj[30]=IECache Entry : Cookie:beth@z1.adserver.com/
obj[31]=IECache Entry : Cookie:beth@atdmt.com/
obj[32]=IECache Entry : Cookie:beth@2o7.net/
obj[33]=IECache Entry : Cookie:beth@questionmarket.com/
obj[34]=IECache Entry : Cookie:beth@advertising.com/
obj[35]=IECache Entry : Cookie:beth@twci.coremetrics.com/
obj[36]=IECache Entry : Cookie:beth@www.movieland.com/
obj[37]=IECache Entry : Cookie:beth@ads.vitalix.net/
obj[38]=IECache Entry : Cookie:beth@clickbank.net/
obj[39]=IECache Entry : Cookie:beth@data.coremetrics.com/
obj[40]=IECache Entry : Cookie:beth@adtech.de/
-
bethh,
we need you to do use the WebUpDate to get the latest Definition file
(SE1R106 02.05.2006) then to do a "Full Scan" and then post your Logfile here by using the "Add-reply" feature
If needed here how to post your Ad-aware Logfile
As Logs are stored in :
C:\Documents and Settings\USERNAME\Application Data\Lavasoft\Ad-aware\Logs\.
An easy way to get there is to
click Start,
click Run
And type in and press ENTER: %appdata%
then click Lavasoft
then Ad-Aware
and then Logs.
scroll down to find the latest one that you have
(by date & time)
and open it right Click select all
copy and then paste the contents of it here.
(Make sure that all of your Logfile has been posted, sometimes it will require two post's to get it all)
I recommend that you use the WebUpDate just before you scan that way you will always be up to date.
(note The Application Data is a hidden folder, so you will need to show hidden files and folders
and for Windows 98/ME users your logs are stored in
C:\WINDOWS\All Users\Application Data\ ) by default.
GRAFX
0 -
I am having the same problem with moviepass.tv and I followed you directions. Here is my last log:
Ad-Aware SE Build 1.05
Logfile Created on:Tuesday, May 09, 2006 11:23:45 PM
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R107 09.05.2006
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
IBIS Toolbar(TAC index:5):2 total references
MRU List(TAC index:0):82 total references
Tracking Cookie(TAC index:3):22 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file
Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects
5-9-2006 11:23:45 PM - Scan started. (Full System Scan)
MRU List Object Recognized!
Location: : C:\Documents and Settings\Bill\Application Data\microsoft\office\recent
Description : list of recently opened documents using microsoft office
MRU List Object Recognized!
Location: : C:\Documents and Settings\Bill\recent
Description : list of recently opened documents
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\adobe\photoshop\7.0\visiteddirs
Description : adobe photoshop 7 recent work folders
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\creative tech\creative wavestudio\settings
Description : list of recently used directories in creative wavestudio
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\jasc\animation shop 3\fileopendialog
Description : list of recently opened files in jasc animation shop
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\jasc\animation shop 3\recent file list
Description : list of recently used files in jasc animation shop
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\jasc\animation shop 3\saveasdialog
Description : list of recently saved files in jasc animation shop
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d
MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X
MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X
MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\internet explorer\main
Description : last save directory used in microsoft internet explorer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\mediaplayer\medialibraryui
Description : last selected node in the microsoft windows media player media library
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\mediaplayer\medialibraryui
Description : last selected node in the microsoft windows media player media library
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\mediaplayer\player\recentfilelist
Description : list of recently used files in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\mediaplayer\player\recentfilelist
Description : list of recently used files in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\mediaplayer\player\settings
Description : last save as directory used in jasc paint shop pro
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\mediaplayer\player\settings
Description : last open directory used in jasc paint shop pro
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\mediaplayer\preferences
Description : last playlist index loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\mediaplayer\preferences
Description : last playlist index loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\mediaplayer\preferences
Description : last playlist index loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\microsoft management console\recent file list
Description : list of recent snap-ins used in the microsoft management console
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\microsoft management console\recent file list
Description : list of recent snap-ins used in the microsoft management console
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\office\10.0\clip organizer\search\last query
Description : last query in microsoft clip organizer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\office\10.0\clip organizer\search\last query
Description : last query in microsoft clip organizer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\office\10.0\common\general
Description : list of recently used symbols in microsoft office
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\office\10.0\common\open find\microsoft powerpoint\settings\save as\file name mru
Description : list of recent documents saved by microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\office\10.0\common\open find\microsoft word\settings\open\file name mru
Description : list of recent documents opened by microsoft word
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\office\10.0\common\open find\microsoft word\settings\open\file name mru
Description : list of recent documents opened by microsoft word
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\office\10.0\common\open find\microsoft word\settings\open\file name mru
Description : list of recent documents opened by microsoft word
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\office\10.0\common\open find\microsoft word\settings\save as\file name mru
Description : list of recent documents saved by microsoft word
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\office\10.0\common\open find\microsoft word\settings\save as\file name mru
Description : list of recent documents saved by microsoft word
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\office\10.0\common\open find\microsoft word\settings\save as\file name mru
Description : list of recent documents saved by microsoft word
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\office\10.0\excel\recent files
Description : list of recent files used by microsoft excel
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\office\10.0\excel\recent files
Description : list of recent files used by microsoft excel
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\office\10.0\powerpoint\recent file list
Description : list of recent files used by microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\windows\currentversion\applets\paint\recent file list
Description : list of files recently opened using microsoft paint
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\windows\currentversion\applets\paint\recent file list
Description : list of files recently opened using microsoft paint
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\windows\currentversion\applets\paint\recent file list
Description : list of files recently opened using microsoft paint
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\windows\currentversion\applets\wordpad\recent file list
Description : list of recent files opened using wordpad
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\windows\currentversion\explorer\runmru
Description : mru list for items opened in start | run
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\nico mak computing\winzip\filemenu
Description : winzip recently used archives
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\nico mak computing\winzip\filemenu
Description : winzip recently used archives
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\realnetworks\realplayer\6.0\preferences
Description : list of recent skins in realplayer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\realnetworks\realplayer\6.0\preferences
Description : list of recent skins in realplayer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\realnetworks\realplayer\6.0\preferences
Description : list of recent skins in realplayer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\realnetworks\realplayer\6.0\preferences
Description : list of recent clips in realplayer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\realnetworks\realplayer\6.0\preferences
Description : list of recent clips in realplayer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\realnetworks\realplayer\6.0\preferences
Description : list of recent clips in realplayer
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\realnetworks\realplayer\6.0\preferences
Description : last login time in realplayer
MRU List Object Recognized!
Location: : .DEFAULT\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
MRU List Object Recognized!
Location: : S-1-5-18\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1004\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1006\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
MRU List Object Recognized!
Location: : S-1-5-21-1482476501-1454471165-725345543-1007\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 572
ThreadCreationTime : 5-7-2006 9:29:31 PM
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 636
ThreadCreationTime : 5-7-2006 9:29:32 PM
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 660
ThreadCreationTime : 5-7-2006 9:29:33 PM
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 704
ThreadCreationTime : 5-7-2006 9:29:33 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : services.exe
#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 716
ThreadCreationTime : 5-7-2006 9:29:33 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe
#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 868
ThreadCreationTime : 5-7-2006 9:29:34 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 944
ThreadCreationTime : 5-7-2006 9:29:34 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1036
ThreadCreationTime : 5-7-2006 9:29:35 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:9 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1092
ThreadCreationTime : 5-7-2006 9:29:35 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:10 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1228
ThreadCreationTime : 5-7-2006 9:29:35 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:11 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1388
ThreadCreationTime : 5-7-2006 9:29:37 PM
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe
#:12 [avgamsvr.exe]
FilePath : C:\PROGRA~1\Grisoft\AVGFRE~1\
ProcessID : 1552
ThreadCreationTime : 5-7-2006 9:30:12 PM
BasePriority : Normal
FileVersion : 7,1,0,365
ProductVersion : 7.1.0.365
ProductName : AVG Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG Alert Manager
InternalName : avgamsvr
LegalCopyright : Copyright © 2005, GRISOFT, s.r.o.
OriginalFilename : avgamsvr.EXE
#:13 [avgupsvc.exe]
FilePath : C:\PROGRA~1\Grisoft\AVGFRE~1\
ProcessID : 1568
ThreadCreationTime : 5-7-2006 9:30:12 PM
BasePriority : Normal
FileVersion : 7,1,0,349
ProductVersion : 7.1.0.349
ProductName : AVG 7.0 Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG Update Service
InternalName : avgupsvc
LegalCopyright : Copyright © 2005, GRISOFT, s.r.o.
OriginalFilename : avgupdsvc.EXE
#:14 [ctsvccda.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1580
ThreadCreationTime : 5-7-2006 9:30:12 PM
BasePriority : Normal
FileVersion : 1.0.1.0
ProductVersion : 1.0.0.0
ProductName : Creative Service for CDROM Access
CompanyName : Creative Technology Ltd
FileDescription : Creative Service for CDROM Access
InternalName : CTsvcCDAEXE
LegalCopyright : Copyright © Creative Technology Ltd., 1999. All rights reserved.
OriginalFilename : CTsvcCDA.EXE
#:15 [nvsvc32.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1656
ThreadCreationTime : 5-7-2006 9:30:12 PM
BasePriority : Normal
FileVersion : 6.14.10.5216
ProductVersion : 6.14.10.5216
ProductName : NVIDIA Driver Helper Service, Version 52.16
CompanyName : NVIDIA Corporation
FileDescription : NVIDIA Driver Helper Service, Version 52.16
InternalName : NVSVC
LegalCopyright : © NVIDIA Corporation. All rights reserved.
OriginalFilename : nvsvc32.exe
#:16 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1812
ThreadCreationTime : 5-7-2006 9:30:16 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:17 [wdfmgr.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1832
ThreadCreationTime : 5-7-2006 9:30:16 PM
BasePriority : Normal
FileVersion : 5.2.3790.1230 built by: DNSRV(bld4act)
ProductVersion : 5.2.3790.1230
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows User Mode Driver Manager
InternalName : WdfMgr
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : WdfMgr.exe
#:18 [mspmspsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1888
ThreadCreationTime : 5-7-2006 9:30:16 PM
BasePriority : Normal
FileVersion : 7.00.00.1954
ProductVersion : 7.00.00.1954
ProductName : Microsoft ® DRM
CompanyName : Microsoft Corporation
FileDescription : WMDM PMSP Service
InternalName : MSPMSPSV.EXE
LegalCopyright : Copyright © Microsoft Corp. 1981-2000
OriginalFilename : MSPMSPSV.EXE
#:19 [alg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 228
ThreadCreationTime : 5-7-2006 9:30:16 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe
#:20 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1344
ThreadCreationTime : 5-7-2006 9:34:03 PM
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : EXPLORER.EXE
#:21 [directcd.exe]
FilePath : C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\
ProcessID : 1620
ThreadCreationTime : 5-7-2006 9:34:06 PM
BasePriority : Normal
FileVersion : 5.3.4.21
ProductVersion : 5.3.4.21
ProductName : DirectCD
CompanyName : Roxio
FileDescription : DirectCD Application
InternalName : DirectCD
LegalCopyright : Copyright © 2001,2002, Roxio, Inc.
OriginalFilename : Directcd.exe
#:22 [avgcc.exe]
FilePath : C:\PROGRA~1\Grisoft\AVGFRE~1\
ProcessID : 1756
ThreadCreationTime : 5-7-2006 9:34:07 PM
BasePriority : Normal
FileVersion : 7,1,0,381
ProductVersion : 7.1.0.381
ProductName : AVG Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG Control Center
InternalName : AvgCC
LegalCopyright : Copyright © 2006, GRISOFT, s.r.o.
OriginalFilename : AvgCC.EXE
#:23 [avgemc.exe]
FilePath : C:\PROGRA~1\Grisoft\AVGFRE~1\
ProcessID : 164
ThreadCreationTime : 5-7-2006 9:34:07 PM
BasePriority : Normal
FileVersion : 7,1,0,371
ProductVersion : 7.1.0.371
ProductName : AVG Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG E-Mail Scanner
InternalName : avgemc
LegalCopyright : Copyright © 2005, GRISOFT, s.r.o.
OriginalFilename : avgemc.exe
#:24 [aolsoftware.exe]
FilePath : C:\Program Files\Common Files\AOL\1132885810\ee\
ProcessID : 280
ThreadCreationTime : 5-7-2006 9:34:08 PM
BasePriority : Normal
FileVersion : 1.4.9.1
ProductVersion : 1.4.9.1
ProductName : AOL Service Libraries
CompanyName : America Online, Inc.
FileDescription : AOL
InternalName : AOLSoftware
LegalCopyright : © 2005 America Online, Inc.
OriginalFilename : AOLSoftware.exe
#:25 [qttask.exe]
FilePath : C:\Program Files\QuickTime\
ProcessID : 288
ThreadCreationTime : 5-7-2006 9:34:08 PM
BasePriority : Normal
FileVersion : 7.0.4
ProductVersion : QuickTime 7.0.4
ProductName : QuickTime
CompanyName : Apple Computer, Inc.
FileDescription : QuickTime Task
InternalName : QuickTime Task
LegalCopyright : Copyright Apple Computer, Inc. 1989-2006
OriginalFilename : QTTask.exe
#:26 [ituneshelper.exe]
FilePath : C:\Program Files\iTunes\
ProcessID : 296
ThreadCreationTime : 5-7-2006 9:34:08 PM
BasePriority : Normal
FileVersion : 6.0.4.2
ProductVersion : 6.0.4.2
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iTunesHelper Module
InternalName : iTunesHelper
LegalCopyright : © 2003-2006 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iTunesHelper.exe
#:27 [msmsgs.exe]
FilePath : C:\Program Files\Messenger\
ProcessID : 308
ThreadCreationTime : 5-7-2006 9:34:08 PM
BasePriority : Normal
FileVersion : 4.7.3001
ProductVersion : Version 4.7.3001
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Windows Messenger
InternalName : msmsgs
LegalCopyright : Copyright © Microsoft Corporation 2004
LegalTrademarks : Microsoft® is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msmsgs.exe
#:28 [aim.exe]
FilePath : C:\Program Files\AIM\
ProcessID : 428
ThreadCreationTime : 5-7-2006 9:34:09 PM
BasePriority : Normal
FileVersion : 5.9.3861
ProductVersion : 5.9.3861
ProductName : AOL Instant Messenger
CompanyName : America Online, Inc.
FileDescription : AOL Instant Messenger
InternalName : AIM
LegalCopyright : Copyright © 1996-2005 America Online, Inc.
OriginalFilename : AIM.EXE
#:29 [ipodservice.exe]
FilePath : C:\Program Files\iPod\bin\
ProcessID : 1612
ThreadCreationTime : 5-7-2006 9:34:10 PM
BasePriority : Normal
FileVersion : 6.0.4.2
ProductVersion : 6.0.4.2
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iPodService Module
InternalName : iPodService
LegalCopyright : © 2003-2006 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iPodService.exe
#:30 [wzqkpick.exe]
FilePath : C:\Program Files\WinZip\
ProcessID : 1244
ThreadCreationTime : 5-7-2006 9:34:13 PM
BasePriority : Normal
FileVersion : 1.0 (32-bit)
ProductVersion : 9.0 (6224)
ProductName : WinZip
CompanyName : WinZip Computing, Inc.
FileDescription : WinZip Executable
InternalName : WZQKPICK.EXE
LegalCopyright : Copyright © WinZip Computing, Inc. 1991-2004 - All Rights Reserved
LegalTrademarks : WinZip is a registered trademark of WinZip Computing, Inc
OriginalFilename : WZQKPICK.EXE
Comments : StringFileInfo: U.S. English
#:31 [diagent.exe]
FilePath : C:\Program Files\Creative\SBLive\Diagnostics\
ProcessID : 884
ThreadCreationTime : 5-7-2006 9:34:14 PM
BasePriority : Normal
FileVersion : 1, 1, 4, 0
ProductVersion : 1.01.04
ProductName : Creative Diagnostics Agent
CompanyName : Creative Technology Ltd
FileDescription : Creative Diagnostics Agent
InternalName : Creative Diagnostics Agent
LegalCopyright : Copyright © 2002 Creative Technology Ltd
OriginalFilename : diagent.exe
#:32 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 2016
ThreadCreationTime : 5-7-2006 11:22:27 PM
BasePriority : Normal
#:33 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 504
ThreadCreationTime : 5-7-2006 11:22:27 PM
BasePriority : High
#:34 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 592
ThreadCreationTime : 5-7-2006 11:22:32 PM
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : EXPLORER.EXE
#:35 [directcd.exe]
FilePath : C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\
ProcessID : 1416
ThreadCreationTime : 5-7-2006 11:22:35 PM
BasePriority : Normal
FileVersion : 5.3.4.21
ProductVersion : 5.3.4.21
ProductName : DirectCD
CompanyName : Roxio
FileDescription : DirectCD Application
InternalName : DirectCD
LegalCopyright : Copyright © 2001,2002, Roxio, Inc.
OriginalFilename : Directcd.exe
#:36 [avgcc.exe]
FilePath : C:\PROGRA~1\Grisoft\AVGFRE~1\
ProcessID : 3960
ThreadCreationTime : 5-7-2006 11:22:35 PM
BasePriority : Normal
FileVersion : 7,1,0,381
ProductVersion : 7.1.0.381
ProductName : AVG Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG Control Center
InternalName : AvgCC
LegalCopyright : Copyright © 2006, GRISOFT, s.r.o.
OriginalFilename : AvgCC.EXE
#:37 [avgemc.exe]
FilePath : C:\PROGRA~1\Grisoft\AVGFRE~1\
ProcessID : 2440
ThreadCreationTime : 5-7-2006 11:22:35 PM
BasePriority : Normal
FileVersion : 7,1,0,371
ProductVersion : 7.1.0.371
ProductName : AVG Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG E-Mail Scanner
InternalName : avgemc
LegalCopyright : Copyright © 2005, GRISOFT, s.r.o.
OriginalFilename : avgemc.exe
#:38 [aolsoftware.exe]
FilePath : C:\Program Files\Common Files\AOL\1132885810\ee\
ProcessID : 2364
ThreadCreationTime : 5-7-2006 11:22:35 PM
BasePriority : Normal
FileVersion : 1.4.9.1
ProductVersion : 1.4.9.1
ProductName : AOL Service Libraries
CompanyName : America Online, Inc.
FileDescription : AOL
InternalName : AOLSoftware
LegalCopyright : © 2005 America Online, Inc.
OriginalFilename : AOLSoftware.exe
#:39 [qttask.exe]
FilePath : C:\Program Files\QuickTime\
ProcessID : 1548
ThreadCreationTime : 5-7-2006 11:22:35 PM
BasePriority : Normal
FileVersion : 7.0.4
ProductVersion : QuickTime 7.0.4
ProductName : QuickTime
CompanyName : Apple Computer, Inc.
FileDescription : QuickTime Task
InternalName : QuickTime Task
LegalCopyright : Copyright Apple Computer, Inc. 1989-2006
OriginalFilename : QTTask.exe
#:40 [aim.exe]
FilePath : C:\Program Files\AIM\
ProcessID : 172
ThreadCreationTime : 5-7-2006 11:22:35 PM
BasePriority : Normal
FileVersion : 5.9.3861
ProductVersion : 5.9.3861
ProductName : AOL Instant Messenger
CompanyName : America Online, Inc.
FileDescription : AOL Instant Messenger
InternalName : AIM
LegalCopyright : Copyright © 1996-2005 America Online, Inc.
OriginalFilename : AIM.EXE
#:41 [msmsgs.exe]
FilePath : C:\Program Files\Messenger\
ProcessID : 2496
ThreadCreationTime : 5-7-2006 11:22:35 PM
BasePriority : Normal
FileVersion : 4.7.3001
ProductVersion : Version 4.7.3001
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Windows Messenger
InternalName : msmsgs
LegalCopyright : Copyright © Microsoft Corporation 2004
LegalTrademarks : Microsoft® is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msmsgs.exe
#:42 [wzqkpick.exe]
FilePath : C:\Program Files\WinZip\
ProcessID : 536
ThreadCreationTime : 5-7-2006 11:22:39 PM
BasePriority : Normal
FileVersion : 1.0 (32-bit)
ProductVersion : 9.0 (6224)
ProductName : WinZip
CompanyName : WinZip Computing, Inc.
FileDescription : WinZip Executable
InternalName : WZQKPICK.EXE
LegalCopyright : Copyright © WinZip Computing, Inc. 1991-2004 - All Rights Reserved
LegalTrademarks : WinZip is a registered trademark of WinZip Computing, Inc
OriginalFilename : WZQKPICK.EXE
Comments : StringFileInfo: U.S. English
#:43 [hotsync.exe]
FilePath : C:\Program Files\palmOne\
ProcessID : 2708
ThreadCreationTime : 5-7-2006 11:22:39 PM
BasePriority : Normal
FileVersion : 4.0.4
ProductVersion : 4.1.0
ProductName : HotSync® Manager, Palm Desktop
CompanyName : Palm, Inc.
FileDescription : HotSync® Manager Application
InternalName : HotSync®
LegalCopyright : Copyright © 1995-2001 Palm, Inc.
LegalTrademarks : HotSync® is a registered trademark of Palm, Inc.
OriginalFilename : Hotsync.exe
#:44 [diagent.exe]
FilePath : C:\Program Files\Creative\SBLive\Diagnostics\
ProcessID : 2892
ThreadCreationTime : 5-7-2006 11:22:40 PM
BasePriority : Normal
FileVersion : 1, 1, 4, 0
ProductVersion : 1.01.04
ProductName : Creative Diagnostics Agent
CompanyName : Creative Technology Ltd
FileDescription : Creative Diagnostics Agent
InternalName : Creative Diagnostics Agent
LegalCopyright : Copyright © 2002 Creative Technology Ltd
OriginalFilename : diagent.exe
#:45 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 3736
ThreadCreationTime : 5-8-2006 1:38:54 AM
BasePriority : Normal
#:46 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 3544
ThreadCreationTime : 5-8-2006 1:38:55 AM
BasePriority : High
#:47 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 3172
ThreadCreationTime : 5-8-2006 1:39:01 AM
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : EXPLORER.EXE
#:48 [directcd.exe]
FilePath : C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\
ProcessID : 3948
ThreadCreationTime : 5-8-2006 1:39:06 AM
BasePriority : Normal
FileVersion : 5.3.4.21
ProductVersion : 5.3.4.21
ProductName : DirectCD
CompanyName : Roxio
FileDescription : DirectCD Application
InternalName : DirectCD
LegalCopyright : Copyright © 2001,2002, Roxio, Inc.
OriginalFilename : Directcd.exe
#:49 [avgcc.exe]
FilePath : C:\PROGRA~1\Grisoft\AVGFRE~1\
ProcessID : 3608
ThreadCreationTime : 5-8-2006 1:39:07 AM
BasePriority : Normal
FileVersion : 7,1,0,381
ProductVersion : 7.1.0.381
ProductName : AVG Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG Control Center
InternalName : AvgCC
LegalCopyright : Copyright © 2006, GRISOFT, s.r.o.
OriginalFilename : AvgCC.EXE
#:50 [avgemc.exe]
FilePath : C:\PROGRA~1\Grisoft\AVGFRE~1\
ProcessID : 1424
ThreadCreationTime : 5-8-2006 1:39:07 AM
BasePriority : Normal
FileVersion : 7,1,0,371
ProductVersion : 7.1.0.371
ProductName : AVG Anti-Virus System
CompanyName : GRISOFT, s.r.o.
FileDescription : AVG E-Mail Scanner
InternalName : avgemc
LegalCopyright : Copyright © 2005, GRISOFT, s.r.o.
OriginalFilename : avgemc.exe
#:51 [aolsoftware.exe]
FilePath : C:\Program Files\Common Files\AOL\1132885810\ee\
ProcessID : 2136
ThreadCreationTime : 5-8-2006 1:39:09 AM
BasePriority : Normal
FileVersion : 1.4.9.1
ProductVersion : 1.4.9.1
ProductName : AOL Service Libraries
CompanyName : America Online, Inc.
FileDescription : AOL
InternalName : AOLSoftware
LegalCopyright : © 2005 America Online, Inc.
OriginalFilename : AOLSoftware.exe
#:52 [qttask.exe]
FilePath : C:\Program Files\QuickTime\
ProcessID : 444
ThreadCreationTime : 5-8-2006 1:39:09 AM
BasePriority : Normal
FileVersion : 7.0.4
ProductVersion : QuickTime 7.0.4
ProductName : QuickTime
CompanyName : Apple Computer, Inc.
FileDescription : QuickTime Task
InternalName : QuickTime Task
LegalCopyright : Copyright Apple Computer, Inc. 1989-2006
OriginalFilename : QTTask.exe
#:53 [msmsgs.exe]
FilePath : C:\Program Files\Messenger\
ProcessID : 244
ThreadCreationTime : 5-8-2006 1:39:10 AM
BasePriority : Normal
FileVersion : 4.7.3001
ProductVersion : Version 4.7.3001
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Windows Messenger
InternalName : msmsgs
LegalCopyright : Copyright © Microsoft Corporation 2004
LegalTrademarks : Microsoft® is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msmsgs.exe
#:54 [rundll32.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1120
ThreadCreationTime : 5-8-2006 1:39:10 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Run a DLL as an App
InternalName : rundll
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : RUNDLL.EXE
#:55 [camnotifier.exe]
FilePath : C:\Program Files\247Cams\
ProcessID : 2328
ThreadCreationTime : 5-8-2006 1:39:15 AM
BasePriority : Normal
#:56 [diagent.exe]
FilePath : C:\Program Files\Creative\SBLive\Diagnostics\
ProcessID : 1004
ThreadCreationTime : 5-8-2006 1:39:15 AM
BasePriority : Normal
FileVersion : 1, 1, 4, 0
ProductVersion : 1.01.04
ProductName : Creative Diagnostics Agent
CompanyName : Creative Technology Ltd
FileDescription : Creative Diagnostics Agent
InternalName : Creative Diagnostics Agent
LegalCopyright : Copyright © 2002 Creative Technology Ltd
OriginalFilename : diagent.exe
#:57 [license_manager.exe]
FilePath : C:\Program Files\License_Manager\
ProcessID : 208
ThreadCreationTime : 5-8-2006 1:39:16 AM
BasePriority : Normal
FileVersion : 20.464.0.19
ProductVersion : 20.464.0.19
ProductName : Notifier
FileDescription : Notifier
LegalCopyright : Copyright © 2004 Notifier
0 -
Second half - someone help please
#:58 [wzqkpick.exe]
FilePath : C:\Program Files\WinZip\
ProcessID : 756
ThreadCreationTime : 5-8-2006 1:39:19 AM
BasePriority : Normal
FileVersion : 1.0 (32-bit)
ProductVersion : 9.0 (6224)
ProductName : WinZip
CompanyName : WinZip Computing, Inc.
FileDescription : WinZip Executable
InternalName : WZQKPICK.EXE
LegalCopyright : Copyright © WinZip Computing, Inc. 1991-2004 - All Rights Reserved
LegalTrademarks : WinZip is a registered trademark of WinZip Computing, Inc
OriginalFilename : WZQKPICK.EXE
Comments : StringFileInfo: U.S. English
#:59 [itunes.exe]
FilePath : C:\Program Files\iTunes\
ProcessID : 3832
ThreadCreationTime : 5-8-2006 7:11:15 PM
BasePriority : Normal
FileVersion : 6.0.4.2
ProductVersion : 6.0.4.2
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iTunes
InternalName : iTunes
LegalCopyright : © 2003-2006 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iTunes.exe
#:60 [wuauclt.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1952
ThreadCreationTime : 5-10-2006 3:20:47 AM
BasePriority : Normal
FileVersion : 5.8.0.2469 built by: lab01_n(wmbla)
ProductVersion : 5.8.0.2469
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Automatic Updates
InternalName : wuauclt.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : wuauclt.exe
#:61 [ad-aware.exe]
FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\
ProcessID : 2228
ThreadCreationTime : 5-10-2006 3:23:07 AM
BasePriority : Normal
FileVersion : 6.2.0.206
ProductVersion : VI.Second Edition
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
#:62 [iexplore.exe]
FilePath : C:\Program Files\Internet Explorer\
ProcessID : 860
ThreadCreationTime : 5-10-2006 3:23:25 AM
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : IEXPLORE.EXE
Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 82
Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 82
Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 82
Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : bill@atdmt[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:bill@atdmt.com/
Expires : 5-7-2011 8:00:00 PM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : bill@www.movieland[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:bill@www.movieland.com/
Expires : 5-9-2007 2:54:12 PM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : bill@ads.vitalix[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:bill@ads.vitalix.net/
Expires : 5-9-2007 2:54:12 PM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : bill@doubleclick[1].txt
Category : Data Miner
Comment : Hits:4
Value : Cookie:bill@doubleclick.net/
Expires : 5-8-2009 2:35:22 PM
LastSync : Hits:4
UseCount : 0
Hits : 4
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : bill@advertising[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:bill@advertising.com/
Expires : 9-15-2047 9:22:06 AM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : bill@zedo[2].txt
Category : Data Miner
Comment : Hits:6
Value : Cookie:bill@zedo.com/
Expires : 5-6-2016 2:40:28 PM
LastSync : Hits:6
UseCount : 0
Hits : 6
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : bill@realmedia[2].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:bill@realmedia.com/
Expires : 12-31-2020 8:00:00 PM
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 7
Objects found so far: 89
Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : austin@2o7[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Austin\Cookies\austin@2o7[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : austin@atdmt[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Austin\Cookies\austin@atdmt[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : austin@doubleclick[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Austin\Cookies\austin@doubleclick[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@adrevolver[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@adrevolver[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@adrevolver[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@adrevolver[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@ads.pointroll[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@ads.pointroll[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@adserver.livejournal[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@adserver.livejournal[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@atdmt[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@atdmt[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@bfast[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@bfast[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@fastclick[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@fastclick[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@mediaplex[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@mediaplex[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@questionmarket[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@questionmarket[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@realmedia[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@realmedia[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@statcounter[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@statcounter[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : kirin@tribalfusion[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Kirin\Cookies\kirin@tribalfusion[1].txt
IBIS Toolbar Object Recognized!
Type : File
Data : A0050307.DLL
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{E3013DCA-4B13-4067-B1F4-25308433A453}\RP440\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Fun Web Products Easy Installer for Internet Explorer
CompanyName : FunWebProducts.com
FileDescription : Fun Web Products Easy Installer
InternalName : f3EzSetp
LegalCopyright : Copyright © 2003, 2004
OriginalFilename : f3EzSetp.DLL
Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 105
Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 105
Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
IBIS Toolbar Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\northcode inc
Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 106
11:41:28 PM Scan Complete
Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:17:43.0
Objects scanned:209136
Objects identified:24
Objects ignored:0
New critical objects:24
0 -
Bill Jr,
Please See Completely Remove MoviePass Mediapipe Software From Your Computer
*note* If you do not cancel your account with Movie Pass / Media Pipe, you will be billed for an entire year of service (the price varies, but could be as much as $359.88 USD). Further, reports indicate that if you refuse to pay, dispute the charges on your credit card, or cancel in any way that is not in accordance with the MoviePass / Media Pipe cancellation policy, that you will be threatened with bad marks on your credit report. If you have already paid money to this company, it is IMPERATIVE that you follow their directions and cancel your account immediately. To cancel your account, please call Movie Pass about their Media Pipe software toll free at: (866) 431-7720.
so to start with can you cancel your account with Movie Pass / Media Pipe
then once you have done that clear out your cache folder ie: temporary internet folder There are some free programs that you can use that will do that for you if needed like
(Note in CCleaner: go to >options > advanced > Uncheck "Only delete files in Windows Temp folders older than 48 hours"). but see CCleaner Set up
also you need to update your version of Ad-aware as you have version 105 please update to Ad-aware SE Build 106
once you have done that use the WebUpDate
to get the latest Definition file
(SE1R107 09.05.2006)
then please can you make sure that you still have “Ticks by these :
"Unload recognized processes during scanning",
"Let Windows remove files in use after reboot."
to do this Open Ad-aware SE
Click “settings� (the Gear)
then Click “Tweaks“,
then click “Scanning Engine�
Tick ."Unload recognized processes during scanning"
Then Click “Cleaning Engine�
And Tick
"Let Windows remove files in use after reboot."
then Click “proceed�.
now use the WebUpDate
(to make sure you are upto date) if you want to clean your PC then scan by doing a "Full Scan" then and once the scan has finished
mark and remove the items then Reboot (ie: Re-start your PC)
Then re-scan doing a "Full Scan" and then post your logfile here by using the Add-Reply Feature .
Also It would seem that you have a cookie problem.
Since you are using Ad-Aware SE Personal, it does not have Ad-Watch which would block them before they had a chance to download into your system.
Here is a link to another excellent program
for you to take a look at Analog X's CookieWall
It is a highly recommended free cookie manager.
You will like it as it allows you to keep/ ignore or always delete cookies from your system.
Once you set it up and got it configured to your preferences and get the "feel" of this program you won't be bothered by cookies again.
GRAFX
0 -
When threads such as these are resolved, we may move them to the infection knowledge base, under an item. We may then also give people the chance make posts inside the appropriate family topic, to describe their experiences with a certain family. This is important for other users when diagnosing a problem, but it is also important for us to establish the level of concern by our users about a particular infection. Moviepass / Movieland had been modifying their software according to recommendations from Lavasoft on where they were going wrong... but it seems to me from this topic that there is still a long way to go....
//Steve
0 -
MoviePass is rather annoying to get rid of, like GRAFX said, you have to start by cancelling your account.
I found a website that might help people remove moviepass, http://removemoviepass.com
0 -
I was researching the latest variant to remove MoviePass for one of my customers. I went to their website and read the terms of service (I had looked at them a few months ago) and they changed! They took down their toll-free number and created a subscription cancellation page.
They didn't even make it a link, so you have to copy and paste it into your browser window. Then if you have a clean system it tells you access is denied, and asks you to reinstall MoviePass!
If you have an infected system, it lets you in.
Whatever you do, do not reinstall MoviePass. You don't have to pay these people a dime. Remove Moviepass and then report these jerks to the FTC!!! This is such a SCAM!
0 -
Moviepass is very hard to get rid of. Because it's a bunch of programs it's not normally detected by virus, adware and spyware removing software and to date there's only a couple of programs I know of that will detect and remove Moviepass. I know that Norton and McAfee are aware of Moviepass and are working in it and I'm sure Lavasoft and others will be also.
Assuming that you've tried using Lavasoft and any other security programs you have and are still stuck with Moviepass then the only remaining option is to manually remove it - using Add/Remove programs doesn't work as you'll be directed to the Moviepass website and asked to pay a monthly subscription charge.
Whichever version of Moviepass has been installed on your computer you'll be getting an ever more frequent pop-up style window demanding payment and threatening to impair your credit rating and take legal action if payment isn't forthcoming. This pop-up may or may not include e-mail, phone and text options to cancel your account. My advice would be to ignore them - I'm advised that the e-mail address is invalid and the phone number is a premium rate one where you may be on the phone for a considerable time. The text option is a new variation and as yet I haven't had chance to investigate it.
If you go to the How to Remove Moviepass website there's a toll free number to use to phone them and cancel your account (you might not realise you have an account but if you have the program you also have an account). The site also has free step by step removal instuctions - it's easier to print out one of the printable sets of instructions and work from them.
Hope this helps and you're able to remove Moviepass from your computer.
0 -
The people behind MoviePass have bottled up their software under a new name - popcorn.net. Popcorn.net is just as hard to remove as moviepass, but luckily all of the file names are almost identical. They dropped the mediaPipe name and replaced it with the more generic Download Manager. Removal instructions are available at http://www.schrockinnovations.com/removepopcorn.php
0
Please sign in to leave a comment.
Comments
9 comments