AIM 5.5 Spyware

vkidv · Feb 27, 2004

aim 5.5 is spyware infected.. so dont install it. (wildtanget)
read http://aftermath.dyndns.org/aolhack/

wildtanget, ad aware seems to detect it :s (it was in processes [1 processes] when i installed it the same day)
spywareblaster did not stop it?

an analogx textscan results this:
notice the things in bold

Position Type Length String
77 Char 40 !This program cannot be run in DOS mode.
1520 Char 12 firstRunTime
1536 Char 13 firstInitTime
1560 Char 17 installerFilename
1580 Char 20 AIMWDInstallFilename
1604 Char 15 wtInstaller.exe
1620 Char 18 wtAimInstaller.exe
1640 Char 14 wtAimInstaller
1656 Char 75 http://aiminstaller.wildtangent.com/aimsilentinstaller/fishhookschedule.txt
1736 Char 74 http://aiminstaller.wildtangent.com/aimsilentinstaller/wtAimInstaller.wtsf
1828 Char 55 Error formatting error string for error '%s' errno =%u
1888 Char 32 found first run time : '%s'.
1924 Char 33 found first init time : '%s'.
1960 Char 26 %u registry entries found.
1992 Char 39 installer registry entry not found.
2036 Char 41 found installer registry entry: '%s'.
2080 Char 42 bootstrapper registry entry not found.
2124 Char 44 found bootstrapper registry entry: '%s'.
2172 Char 30 Checking for registry entries.
2208 Char 22 Usage: %s <options...>
2231 Char 24 where options are in
2256 Char 16 -u <url>
2274 Char 24 specifies the target URL
2299 Char 10 -s
2313 Char 65 specifies that output should be directed to standard out (stdout)
2379 Char 17 -o <file>
2398 Char 38 redirects output to the specified file
2437 Char 89 -p <milliseconds> pauise between attempts to access the internet (sleep duration)
2527 Char 47 -d debug flags should be followed with
2597 Char 32 force Download fail (true/false)
2652 Char 31 force eXecute fail (true/false)
2706 Char 47 force Network connectivity to fail (true/false)
2776 Char 47 force webdriver Installation check (true/false)
2865 Char 10 -dx f
2944 Char 32 -h displays usage (help)
2980 Char 24 Error deleting file '%s'
3028 Char 42 Software\JavaSoft\Java Runtime Environment
3072 Char 14 CurrentVersion
3088 Char 57 bad version number (was expecting minimum of %d.%d.%d.%d)
3160 Char 37 failed to locate registry entry %s %s
3212 Char 26 Software\Microsoft\Java VM
3252 Char 40 looking for class path registry entry...
3296 Char 26 dll version is %d.%d.%d.%d
3324 Char 20 failed to open dll
3348 Char 41 getting version number for MS java dll %s
3392 DLL 13 %s\msjava.dll
3408 Char 39 Failed to retrieve system directory....
3452 Char 13 CheckForJVM()
3468 Char 37 bootstrapper done at %s cleaning up.
3508 Char 29 Not connected to the internet
3540 Char 25 Connected to the internet
3568 Char 37 - local system has RAS installed.
3608 Char 66 - local system uses a proxy server to connect to the Internet.
3676 Char 38 - local system is in offline mode.
3716 Char 30 - (option no longer used.)
3748 Char 59 - local system uses a modem to connect to the Internet.
3816 Char 72 - local system uses a local area network to connect to the Internet.
3896 Char 66 - local system has a valid connection to the Internet but it
3963 Char 42 might or might not be currently connected.
4008 Char 53 Error loading InternetGetConnectedStateEx() function.
4064 Char 27 InternetGetConnectedStateEx
4092 Char 33 error loading Wininet.dll library
4128 DLL 11 wininet.dll
4140 Char 23 - network is alive.
4168 Char 60 - this flag is only valid in Windows 95 and Windows 98.
4231 Char 48 Indicates the computer is connected to AOL
4284 Char 58 - the computer has one or more active RAS connections.
4344 Char 61 - the computer has one or more LAN cards that are active.
4408 Char 27 - network is NOT alive.
4440 Char 45 error loading IsNetworkAliveProcType function
4488 Char 14 IsNetworkAlive
4504 Char 33 error loading Sensapi.dll library
4540 DLL 11 Sensapi.dll
4552 Char 40 Checking for internet connectivity......
4608 Char 56 Bad argument following -d option: one of d x n expected.
4668 Char 50 setting forceInternetConnectivityToFail to %c.
4720 Char 29 argument expected to flag -dn
4752 Char 37 setting forceExceuteToFail to %c.
4792 Char 29 argument expected to flag -dx
4824 Char 38 setting forceDownloadToFail to %c.
4864 Char 30 argument expected for flag -dd
4896 Char 29 argument expected for flag -o
4928 Char 36 setting pause duration to %u ms.
4968 Char 29 argument expected for flag -p
5000 Char 30 Forcing output to standard out
5032 Char 30 Opps error opening stderr: %u
5064 Char 30 Opps error opening stdout: %u
5108 Char 29 Opps error opening stdin: %u
5152 Char 20 URL set to '%s'.
5176 Char 29 argument expected for flag -u
5208 Char 12 Bad argument
5236 Char 33 Installer '%s' failed validation.
5272 Char 25 Installer '%s' validated.
5300 Char 26 - execute permissions.
5328 Char 24 - write permissions.
5356 Char 23 - read permissions.
5384 Char 29 - file is a regular file.
5416 Char 42 - file is a FIFO file cannot execute.
5460 Char 47 - file is a character file cannot execute.
5512 Char 42 - file is a directory cannot execute.
5556 Char 26 Error getting stat on file
5584 Char 28 Validating installer '%s'...
5616 Char 52 Installer file found in %s; will install from there.
5688 Char 20 Software\WildTangent
5712 Char 11 WTDirectory
5724 Char 54 first scheduled run time has passed we're good to go.
5780 Char 42 Checking scheduled first run time at %s...
5824 Char 38 time is %s sleeping for %d minutes...
5864 Char 88 first scheduled run time is %d days %d hours %d minutes and %d seconds in the future.
5964 Char 27 scheduling first run for %s
5996 Char 28 schedule file contents: '%s'
6028 Char 27 Error reading schedule file
6056 Char 27 Error opening schedule file
6088 Char 41 schedule file downloaded reading data...
6132 Char 32 Error downloading schedule file.
6168 Char 36 No internet connectivity pausing...
6208 Char 46 Downloading schedule file '%s' to file '%s'...
6260 Char 40 error loading UrlDownloadToFile function
6304 Char 18 URLDownloadToFileA
6324 Char 32 error loading Urlmon.dll library
6360 DLL 10 Urlmon.dll
6372 Char 35 Need to download the schedule file.
6412 Char 39 Attempting to download installer %s: %s
6456 Char 47 failed to extract installer from temporary file
6504 Char 31 Extracting file '%s' from '%s'.
6552 Char 22 Error downloading file
6576 Char 24 Downloading file '%s'...
6604 Char 34 Failed to build installer filename
6640 Char 34 Failed to build temporary filename
6676 Char 38 AIMWDInstall instance already running.
6728 Char 23 Process %4u (0x%04x) %s
6756 Char 18 found %u processes
6776 Char 27 Error enumerating processes
6808 Char 25 checkForRunningInstance()
6836 Char 48 Checking for running instance of bootstrapper...
6888 Char 23 Shared module conflict.
6920 Char 64 running webdriver instance or shared module conflict not found.
6988 Char 22 Process %4u (0%04x) %s
7016 Char 62 checkForRunningWebdriver() - checking for shared module usage.
7080 Char 36 Installer exited with return code %u
7120 Char 29 Error executing installer: %s
7152 Char 23 Executing exe '%s': %s.
7184 Char 94 Either an instance of the webdriver is running or a module that we need to update is in use.
7279 Char 25 Cannot execute installer.
7308 Char 48 WebDriver already installed by another process!.
7360 Char 33 WebDriver successfully installed.
7396 Char 20 Installation failed.
7420 Char 38 checking for webdriver installation...
7460 Char 45 failed to download schedule...... sleeping...
7508 Char 47 detected WebDriver installation nothing to do!
7560 Char 48 pre-check for existing webdriver installation...
7612 Char 39 Thanks for flying WildTangent airlines!
7656 Char 51 Bootstrap hibernation period will be %u ms (%f sec)
7715 Char 16 <%s started : %s
7736 Char 24 Unable to initialize COM
7764 Char 24 Press any key to exit...
7792 Char 30 Failed to detect JVM exiting.
7824 Char 23 Checking for valid JVM.
7852 Char 48 an instance of me is already running... aborting
7904 Char 19 IE version %d OK...
7928 Char 33 We do not support this IE version
7964 Char 23 version detected is %d.
7988 Char 25 Testing for IE version...
8016 Char 34 We do not support this OS version.
8052 Char 17 OS detected as %s
8072 Char 25 Testing for OS version...
8100 Char 11 Starting %s
8116 Char 22 Error in argument list
8160 Char 17 Pausing for %u ms
8180 Char 29 Sleeping for %u ms (%f.2 sec)
8212 Char 28 pausing for %u ms (%.2f sec)
8256 Char 28 Future time in UTC is %s %s.
8288 Char 32 Future midnight in PST is %s %s.
8324 Char 28 Future time in PST is %s %s.
8356 Char 29 Current time in PST is %s %s.
8388 Char 35 getting future time interval = %d.
8428 Char 28 System time in UTC is %s %s.
8460 Char 15 hh':'mm':'ss tt
8476 Char 31 ScheduleInfo::setSchedule done.
8512 Char 41 setSchedule(): first run time set to '%s'
8556 Char 54 setSchedule(): offsetting to %d minutes after midnight
8612 Char 55 setSchedule(): offsetting to %d minutes before midnight
8672 Char 34 setSchedule(): minute offset is %d
8708 Char 39 setSchedule(): first run midnight: '%s'
8752 Char 45 setSchedule(): randomly selected days now %d.
8800 Char 36 setSchedule(): firstInitTime is '%s'
8840 Char 59 setSchedule(): days and minutes are 0 can run immediately.
8904 Char 63 ScheduleInfo::setSchedule() called with %d days and %d minutes.
8972 Char 16 AIMWDInstall.log
9060 Char 36 SOFTWARE\Microsoft\Internet Explorer
9100 Char 37 Error opening file '%s' for log: '%s'
9152 DLL 13 wthostctl.dll
9168 Char 10 wthost.exe
9180 DLL 12 wdengine.dll
9196 DLL 11 rdriver.dll
9220 DLL 12 wtwmplug.dll
9236 Char 11 wtwmplug.ax
9260 DLL 12 npwthost.dll
9276 DLL 13 webdriver.dll
9292 Char 16 list<T> too long
9312 Char 11 %s: %u (%s)
9324 Char 11 <not found>
9336 DLL 45 Error getting procs from library Advapi32.dll
9384 Char 32 Error adjusting token privileges
9420 Char 60 Error in token privilege lookup (security access non-fatal)
9484 Char 16 SeDebugPrivilege
9504 Char 63 Error opening process handle token (security access non-fatal)
9568 Char 21 AdjustTokenPrivileges
9592 Char 21 LookupPrivilegeValueA
9616 Char 16 OpenProcessToken
9636 DLL 34 Error loading library Advapi32.dll
9672 DLL 12 Advapi32.dll
9688 Char 40 %u processes found to use webdriver dll.
9732 Char 34 Error loading procs from PsApi dll
9768 Char 16 - module: %s
9788 Char 45 - module: %s uses %s dll inUse conflict.
9836 Char 20 uses %u modules:
9860 Char 11 Process: %s
9900 Char 42 Error enumerating processes from PsApi dll
9944 Char 26 Error allocating from heap
9972 Char 20 GetModuleFileNameExA
9996 Char 18 EnumProcessModules
10016 Char 13 EnumProcesses
10044 Char 21 enumProcesses_PsApi()
10068 Char 34 Unable to load ToolHelp functions.
10104 Char 13 module %s
10120 Char 51 Error %u on Module32First() (%s) for process ID %u.
10176 Char 54 Error %u getting first module (%s) on process %u (%s).
10232 Char 36 process id whacked (was %u now %u?]
10272 Char 10 Process %s
10284 Char 27 Error getting first process
10312 Char 30 Error getting process snapshot
10344 Char 33 Failed to set proc name privilege
10380 Char 13 Module32First
10396 Char 12 Module32Next
10412 Char 13 Process32Next
10428 Char 14 Process32First
10444 Char 24 CreateToolhelp32Snapshot
10472 DLL 12 kernel32.dll
10488 Char 24 enumProcesses_ToolHelp()
10516 Char 45 Software\Microsoft\Windows\CurrentVersion\Run
10564 Char 33 Software\WildTangent\AIMWDInstall
10600 Char 12 AIMWDInstall
10616 Char 14 VerQueryValueA
10632 Char 23 GetFileVersionInfoSizeA
10656 Char 19 GetFileVersionInfoA
10676 Char 36 FA13A9FA-CA9B-11D2-9780-00104B242EA3
10716 Char 47 Error querying fileversion from VerQueryValue()
10764 Char 36 \StringFileInfo\%04x%04x\FileVersion
10804 Char 33 Error calling VerQueryValue proc.
10840 Char 24 \VarFileInfo\Translation
10868 Char 61 Error retrieving file version info from GetFileVersionInfo().
10932 Char 25 Error loading version.dll
10960 DLL 11 version.dll
10972 Char 54 does not meet min required version of %d.%d.%d.%d
11028 Char 45 meets min required version of %d.%d.%d.%d
11076 Char 29 %s is version %d.%d.%d.%d
11108 Char 38 checkDllVersion(): could not open '%s'
11148 Char 17 checkDllVersion()
11168 Char 37 webdriver dll '%s' failed validation.
11208 Char 29 webdriver dll '%s' validated.
11240 Char 34 Validating webdriver dll ('%s')...
11280 Char 25 CLSID\{%s}\InProcServer32
11352 Char 16 0123456789abcdef
11408 Char 23 invalid string position
11432 Char 15 string too long
11460 Char 14 bad allocation
11532 Char 14 CorExitProcess
11548 DLL 11 mscoree.dll
11612 Char 17 Unknown exception
11678 Char 27 GAIsProcessorFeaturePresent
11720 Char 36 Microsoft Visual C++ Runtime Library
11780 Char 22 <program name unknown>
11808 Char 68 A buffer overrun has been detected which has corrupted the program's
11877 Char 70 internal state. The program cannot safely continue execution and must
11948 Char 18 now be terminated.
11968 Char 24 Buffer overrun detected!
12000 Char 61 A security error of unknown cause has been detected which has
12062 Char 66 corrupted the program's internal state. The program cannot safely
12129 Char 46 continue execution and must now be terminated.
12180 Char 34 Unknown security failure detected!
13836 Char 21 Illegal byte sequence
13860 Char 19 Directory not empty
13880 Char 24 Function not implemented
13908 Char 18 No locks available
13928 Char 17 Filename too long
13948 Char 25 Resource deadlock avoided
13976 Char 16 Result too large
13996 Char 12 Domain error
14012 Char 11 Broken pipe
14024 Char 14 Too many links
14040 Char 21 Read-only file system
14064 Char 12 Invalid seek
14080 Char 23 No space left on device
14104 Char 14 File too large
14120 Char 35 Inappropriate I/O control operation
14156 Char 19 Too many open files
14176 Char 29 Too many open files in system
14208 Char 16 Invalid argument
14228 Char 14 Is a directory
14244 Char 15 Not a directory
14260 Char 14 No such device
14276 Char 13 Improper link
14292 Char 11 File exists
14304 Char 15 Resource device
14320 Char 13 Unknown error
14336 Char 11 Bad address
14348 Char 17 Permission denied
14368 Char 16 Not enough space
14388 Char 32 Resource temporarily unavailable
14424 Char 18 No child processes
14444 Char 19 Bad file descriptor
14464 Char 17 Exec format error
14484 Char 17 Arg list too long
14504 Char 25 No such device or address
14532 Char 18 Input/output error
14552 Char 25 Interrupted function call
14580 Char 15 No such process
14596 Char 25 No such file or directory
14624 Char 23 Operation not permitted
14664 Char 21 SunMonTueWedThuFriSat
14688 Char 36 JanFebMarAprMayJunJulAugSepOctNovDec
14732 Char 14 runtime error
14752 Char 11 TLOSS error
14768 Char 10 SING error
14784 Char 12 DOMAIN error
14807 Char 84 - This application cannot run using the active version of the Microsoft .NET Runtime
14892 Char 67 Please contact the application's support team for more information.
14971 Char 27 #NAME?
15011 Char 43 #NAME?
15067 Char 43 #NAME?
15123 Char 28 #NAME?
15163 Char 43 #NAME?
15219 Char 31 #NAME?
15263 Char 23 #NAME?
15299 Char 35 #NAME?
15347 Char 34 #NAME?
15386 Char 77 This application has requested the Runtime to terminate it in an unusual way.
15464 Char 67 Please contact the application's support team for more information.
15543 Char 34 #NAME?
15587 Char 32 #NAME?
15631 Char 27 #NAME?
15664 Char 14 Runtime Error!
15708 Char 23 GetProcessWindowStation
15732 Char 25 GetUserObjectInformationA
15760 Char 18 GetLastActivePopup
15780 Char 15 GetActiveWindow
15796 Char 11 MessageBoxA
15808 DLL 10 user32.dll
16489 Unichar 40 ;T^h<U_i=V`j>Wak?Xbl@YcmAZdnB[eoC\fpD]gq
19610 Function 26 CertFreeCertificateContext
19640 Function 33 CertGetIssuerCertificateFromStore
19676 Function 26 CertCompareCertificateName
19706 Function 14 CertCloseStore
19724 Function 26 CertFindCertificateInStore
19754 Function 13 CertOpenStore
19770 Function 27 CryptVerifyMessageSignature
19798 DLL 11 CRYPT32.dll
19824 Function 12 GetLastError
19840 Function 14 FormatMessageA
19858 Function 11 DeleteFileA
19872 Function 19 GetSystemDirectoryA
19894 Function 11 FreeLibrary
19908 Function 14 GetProcAddress
19926 Function 12 LoadLibraryA
19942 Function 12 AllocConsole
19958 Function 20 GetWindowsDirectoryA
19990 Function 16 GetTempFileNameA
20010 Function 12 GetTempPathA
20026 Function 12 SetLastError
20042 Function 19 GetCurrentProcessId
20064 Function 20 FileTimeToSystemTime
20088 Function 20 SystemTimeToFileTime
20112 Function 14 GetTimeFormatA
20130 Function 14 GetDateFormatA
20148 Function 13 GetSystemTime
20164 Function 13 GetVersionExA
20180 Function 18 GetModuleFileNameA
20202 Function 16 GetModuleHandleA
20222 Function 11 CloseHandle
20236 Function 17 GetCurrentProcess
20256 Function 11 OpenProcess
20294 Function 14 GetProcessHeap
20324 Function 11 CreateFileA
20350 Function 14 SetFilePointer
20366 DLL 12 KERNEL32.dll
20382 Function 11 RegCloseKey
20396 Function 16 RegQueryValueExA
20416 Function 13 RegOpenKeyExA
20432 Function 14 RegSetValueExA
20450 Function 15 RegCreateKeyExA
20468 Function 15 RegDeleteValueA
20486 Function 11 RegOpenKeyA
20500 Function 13 RegDeleteKeyA
20516 Function 19 CryptReleaseContext
20538 Function 15 CryptCreateHash
20556 Function 20 CryptAcquireContextA
20580 Function 16 CryptDestroyHash
20600 Function 13 CryptHashData
20616 Function 17 CryptGetHashParam
20634 DLL 12 ADVAPI32.dll
20650 Function 14 CoUninitialize
20668 Function 12 CoInitialize
20694 Function 11 ExitProcess
20708 Function 14 RaiseException
20738 Function 16 TerminateProcess
20770 Function 23 FileTimeToLocalFileTime
20796 Function 13 GetDriveTypeA
20812 Function 14 FindFirstFileA
20830 Function 23 GetSystemTimeAsFileTime
20856 Function 12 GetLocalTime
20872 Function 15 GetStartupInfoA
20890 Function 15 GetCommandLineA
20908 Function 14 SetHandleCount
20926 Function 12 GetStdHandle
20942 Function 11 GetFileType
20956 Function 23 QueryPerformanceCounter
20982 Function 12 GetTickCount
20998 Function 18 GetCurrentThreadId
21020 Function 27 SetUnhandledExceptionFilter
21050 Function 12 LCMapStringA
21066 Function 19 WideCharToMultiByte
21088 Function 19 MultiByteToWideChar
21110 Function 12 LCMapStringW
21126 Function 16 GetFullPathNameA
21146 Function 20 GetCurrentDirectoryA
21170 Function 11 HeapReAlloc
21196 Function 22 GetTimeZoneInformation
21222 Function 16 FlushFileBuffers
21276 Function 24 UnhandledExceptionFilter
21304 Function 23 FreeEnvironmentStringsA
21330 Function 21 GetEnvironmentStrings
21354 Function 23 FreeEnvironmentStringsW
21380 Function 22 GetEnvironmentStringsW
21406 Function 11 HeapDestroy
21420 Function 10 HeapCreate
21434 Function 11 VirtualFree
21448 Function 12 VirtualAlloc
21464 Function 13 IsBadWritePtr
21480 Function 12 SetStdHandle
21496 Function 14 GetStringTypeA
21514 Function 14 GetStringTypeW
21532 Function 19 InterlockedExchange
21554 Function 12 VirtualQuery
21570 Function 12 IsBadReadPtr
21586 Function 12 IsBadCodePtr
21602 Function 14 GetLocaleInfoA
21620 Function 14 VirtualProtect
21638 Function 13 GetSystemInfo
21654 Function 18 GetExitCodeProcess
21676 Function 19 WaitForSingleObject
21698 Function 14 CreateProcessA
21716 Function 18 GetFileAttributesA
21738 Function 12 SetEndOfFile
21754 Function 14 CompareStringA
21772 Function 14 CompareStringW
21790 Function 23 SetEnvironmentVariableA
21816 Function 17 ReadConsoleInputA
21836 Function 14 SetConsoleMode
21854 Function 14 GetConsoleMode
22148 Char 22 .?AV_String_base@std@@
22180 Char 45 .?AV?$_String_val@DV?$allocator@D@std@@@std@@
22240 Char 65 .?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@
22316 Char 17 .?AVMyException@@
22396 Char 15 .?AVexception@@
22420 Char 21 .?AVlogic_error@std@@
22452 Char 22 .?AVlength_error@std@@
22584 Unichar 36 d07ff2c7-c583-425c-846b-791d15f76e0b
22664 Unichar 39 Microsoft Strong Cryptographic Provider
22847 Char 20 WildTangentSubAuth10
22870 Char 13 021112222223Z
22885 Char 14 391231235959Z0
23127 Char 11 WildTangent
23343 Unichar 36 3eeada2c-3ebc-40d6-987c-f5fa3c12a3f4
23423 Unichar 39 Microsoft Strong Cryptographic Provider
23606 Char 20 WildTangentSubAuth10
23629 Char 13 021112222158Z
23644 Char 14 391231235959Z0
23885 Char 11 WildTangent
24101 Unichar 36 59ade48c-0d45-4606-a64f-018b4ab00968
24181 Unichar 39 Microsoft Strong Cryptographic Provider
24364 Char 20 WildTangentSubAuth10
24387 Char 13 021112222148Z
24402 Char 14 391231235959Z0
24645 Char 11 WildTangent
24861 Unichar 36 8762ca1a-e749-4eff-bb4d-7d445eaa4e75
24941 Unichar 39 Microsoft Strong Cryptographic Provider
25124 Char 20 WildTangentSubAuth10
25147 Char 13 021112222126Z
25162 Char 14 391231235959Z0
25405 Char 11 WildTangent
25621 Unichar 36 939deed3-4cd4-446e-a953-30d3faeb9cb7
25701 Unichar 39 Microsoft Strong Cryptographic Provider
25884 Char 20 WildTangentSubAuth10
25907 Char 13 021112222102Z
25922 Char 14 391231235959Z0
25948 Char 11 Operations0
26168 Char 11 WildTangent
26384 Unichar 36 5359d4d4-2167-4326-8b52-5a78fdf0259a
26464 Unichar 39 Microsoft Strong Cryptographic Provider
26647 Char 20 WildTangentSubAuth10
26670 Char 13 021112222052Z
26685 Char 14 391231235959Z0
26711 Char 12 Engineering0
26932 Char 11 WildTangent
27148 Unichar 36 7c3c6300-2cc7-4cb9-a7bd-5a4a6729b7be
27228 Unichar 39 Microsoft Strong Cryptographic Provider
27411 Char 20 WildTangentSubAuth10
27434 Char 13 021112222037Z
27449 Char 14 391231235959Z0
27692 Char 11 WildTangent
27908 Unichar 36 bd6e54b9-5d0a-4934-92d3-6ed88a79b69b
27988 Unichar 39 Microsoft Strong Cryptographic Provider
28171 Char 20 WildTangentSubAuth10
28194 Char 13 021112221915Z
28209 Char 14 391231235959Z0
28235 Char 10 Marketing0
28454 Char 11 WildTangent
28670 Unichar 36 36b148a2-d092-4e76-9517-45d680f23862
28750 Unichar 39 Microsoft Strong Cryptographic Provider
28933 Char 12 WildTangent0
28948 Char 13 021112221207Z
28963 Char 14 391231235959Z0
28989 Char 20 WildTangentSubAuth10
29218 Char 11 WildTangent
29522 Unichar 36 a5936e13-c54b-4141-80bc-bcb4f49869e8
29602 Unichar 39 Microsoft Strong Cryptographic Provider
29785 Char 12 WildTangent0
29800 Char 13 021112220034Z
29815 Char 14 391231235959Z0
29841 Char 12 WildTangent0
30062 Char 11 WildTangent
30260 Char 22 .?AVout_of_range@std@@
30292 Char 19 .?AVbad_alloc@std@@
31020 Char 15 .?AVtype_info@@
37142 Char 10 tvHHt'hX @
79815 Char 10 VVVVVUWUUj
101478 Unichar 15 VS_VERSION_INFO
101570 Unichar 14 StringFileInfo
101630 Unichar 11 CompanyName
101656 Unichar 12 Wild Tangent
101690 Unichar 15 FileDescription
101724 Unichar 16 AIM WD installer
101766 Unichar 11 FileVersion
101818 Unichar 14 LegalCopyright
101848 Unichar 18 Copyright (C) 2003
101894 Unichar 14 ProductVersion
101950 Unichar 11 VarFileInfo
101982 Unichar 11 Translation
Click to expand...

the bolded CLSIDs are these OK? Should i add them to spywareblaster?

well, what do you think? ive just used the aim hack thing to stop the spyware from reinstallating itself ecetera.

Log in or Sign up

AIM 5.5 Spyware

vkidv Registered Member

Log in or Sign up

AIM 5.5 Spyware

vkidv Registered Member

Useful Searches