Bazooka Adware and Spyware Scanner Log 1144

****************************************
Bazooka Scanner v1.13.02
http://www.kephyr.com/spywarescanner/
http://www.kephyr.com/spywarescanner/library/
Log created 09:53:07.
OS: Windows NT 4.0
Database version: 2.220000
Database format version: 1.020000
Database date: 20040806
Current date: 2004-08-24 09:53


****************************************
Result when scanning:

2ndthought Adware 544.644.002 %SystemDir%\stcloader.exe
C:\WINNT\System32\\stcloader.exe
http://www.kephyr.com/spywarescanner/library/2ndthoughtadware/index.phtml

A Better Internet.B 778.000.000 %WinDir%\Belt.exe
C:\WINNT\Belt.exe
http://www.kephyr.com/spywarescanner/library/abetterinternet.b/index.phtml

Alchem 432.222.001 %WinDir%\alchem.exe
C:\WINNT\alchem.exe
http://www.kephyr.com/spywarescanner/library/alchem/index.phtml

Bubba.wintools 243.343.100 WinTools
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\WinTools
http://www.kephyr.com/spywarescanner/library/bubba.wintools/index.phtml

Bubba.wintools 243.343.101 {87766247-311C-43B4-8499-3D5FEC94A183}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{87766247-311C-43B4-8499-3D5FEC94A183}
http://www.kephyr.com/spywarescanner/library/bubba.wintools/index.phtml

IGetNet 692.118.540 %SystemDir%\stcloader.exe
C:\WINNT\System32\\stcloader.exe
http://www.kephyr.com/spywarescanner/library/igetnet/index.phtml

Look2Me 349.000.001 %SystemDir%\msg117.dll
C:\WINNT\System32\\msg117.dll
http://www.kephyr.com/spywarescanner/library/look2me/index.phtml

MediaLoads 132.927.946 %ProgramsDir%\Support Software\
C:\Program Files\Support Software\
http://www.kephyr.com/spywarescanner/library/medialoads/index.phtml

MS Media Player GUID 404.888.000
HKEY_CURRENT_USER\Software\Microsoft\MediaPlayer\Player\Settings\Client ID
http://www.kephyr.com/spywarescanner/library/msmediaplayerguid/index.phtml

SeekSeek 394.200.001 %ProgramsDir%\Common Files\slmss\
C:\Program Files\Common Files\slmss\
http://www.kephyr.com/spywarescanner/library/seekseek/index.phtml

****************************************
Auto start entries:

****************************************
Run entries:
WinTools C:\Program Files\Common Files\WinTools\WToolsA.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\WinTools

SpySweeper d:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe /0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\SpySweeper


Go here to analyse the run entries and the associated files:
http://www.kephyr.com/filedb/index.php

****************************************
Browser helper objects:

{87766247-311C-43B4-8499-3D5FEC94A183} not set C:\PROGRA~1\COMMON~1\WinTools\WToolsB.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{87766247-311C-43B4-8499-3D5FEC94A183}


****************************************
Toolbars:

{01E04581-4EEE-11D0-BFE9-00AA005B4383} C:\WINNT\System32\browseui.dll
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{01E04581-4EEE-11D0-BFE9-00AA005B4383}

{0E5CBF21-D15F-11D0-8301-00AA005B4383} C:\WINNT\System32\browseui.dll
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{0E5CBF21-D15F-11D0-8301-00AA005B4383}

{000007AB-7059-463E-BD44-101A1750D732} C:\RECYCLED\DC6\Sidesearch\sidesearch1400.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{000007AB-7059-463E-BD44-101A1750D732}

{4D5C8C25-D075-11d0-B416-00C04FB90376} C:\WINNT\System32\shdocvw.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{4D5C8C25-D075-11d0-B416-00C04FB90376}

{9455301C-CF6B-11D3-A266-00C04F689C50} C:\Program Files\Common Files\Microsoft Shared\Reference 2001\EROProj.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{9455301C-CF6B-11D3-A266-00C04F689C50}

{32683183-48a0-441b-a342-7c2a440a9478} C:\WINNT\System32\browseui.dll
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{32683183-48a0-441b-a342-7c2a440a9478}


****************************************
All processes:


Go here to analyse the running processes:
http://www.kephyr.com/filedb/index.php

****************************************
Internet Explorer Settings:

Default_Page_URL http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL

Start Page http://www.yahoo.com
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page

SearchAssistant http://www.websearch.com/ie.aspx?tb_id=50019
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant

CustomizeSearch http://www.websearch.com/ie.aspx?tb_id=50019
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch

http://
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix\

www http://
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\www

provider
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\provider

Local Page C:\WINNT\System32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page

Search Bar http://www.websearch.com/ie.aspx?tb_id=50019
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar

Start Page http://www.yahoo.com
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page

Use Search Asst no
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Use Search Asst


****************************************




Related links

Bazooka - Free scan for spyware, adware, trojan horses, keyloggers, etc. Detects more than 500 potentially unwanted applications. Freeware!

The File Database - Search the file database for more information. Free!

PopUp Blocker Test - Find out if your pop-up killer can handle all pop-ups. Free!

Kephyr Labs - Find out what is going on at Kephyr. Try products in an early stage of development.



FreeFixer
Read more about FreeFixer, Kephyr's latest spyware removal tool.
Home & Products |  Legal |  Privacy |  Search

© Kephyr, 2003-2012. HtmlTidy, HTML 4.01, CSS andy@kephyr.com