Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Please help, partially cleaned Backdoor.Bifrost and other infections


  • This topic is locked This topic is locked
1 reply to this topic

#1 PLB

PLB

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:07:55 AM

Posted 01 December 2008 - 02:51 PM

edit note: The Helper at INAG forums will be helping me finish with my infection, I guess i'll keep the body allowing admin to delete the whole post (or not) :D


Hello, I went through the cleaning process with a helper at IANAG forums and it became apparent at the end the helper thought I only had one drive and thus my computer was only cleaned as such. Unfortunately this upset the helper so much he/she didn't seem interested in continuing to help me finish the process.

the thread is here: http://forum.networktechs.com/showthread.p...41694#post41694

My computer has been unusable to me for almost two weeks now and I am extremely stressed out after the way things ended on IANAG... I am willing and ready to do whatever I need to in order to clean my computer!

Phillip





...My computer has 3 hard drives, one of them is in two partitions (C and E). The other two drives are F and H. H is empty and C has only programs and OS.

Kaspersky: I am currently running a trial version of Kaspersky 2009 internet security, a full scan didn't' find anything.

other logs:


Logfile of random's system information tool 1.04 (written by random/random)
Run by plb at 2008-12-01 12:47:19
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 74 GB (91%) free of 81 GB
Total RAM: 2046 MB (74% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:47:23 PM, on 12/1/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\System32\DeltaIITray.exe
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Vidalia Bundle\Privoxy\privoxy.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Vidalia Bundle\Tor\tor.exe
C:\WINDOWS\system32\wuauclt.exe
C:\profiles\plb\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\plb.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [M-Audio Taskbar Icon] C:\WINDOWS\System32\DeltaIITray.exe
O4 - HKLM\..\Run: [DeltaIITaskbarApp] C:\WINDOWS\system32\DeltaIITray.exe
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [Vidalia] "C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Privoxy.lnk = C:\Program Files\Vidalia Bundle\Privoxy\privoxy.exe
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase6662.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

--
End of file - 3239 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2008-07-29 206088]
"M-Audio Taskbar Icon"=C:\WINDOWS\System32\DeltaIITray.exe [2008-03-03 236040]
"DeltaIITaskbarApp"=C:\WINDOWS\system32\DeltaIITray.exe [2008-03-03 236040]
"WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2008-10-09 333120]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-08-21 981904]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Vidalia"=C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe [2008-11-11 4033618]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2008-11-12 13672448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^profiles^All Users^Start Menu^Programs^Startup^Evoluent Mouse Manager.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"Imapi Helper"=3
"idsvc"=3
"ThreatFire"=2
"NVSvc"=2
"nTuneService"=2
"ekrn"=2
"EhttpSrv"=3

C:\profiles\All Users\Start Menu\Programs\Startup
Privoxy.lnk - C:\Program Files\Vidalia Bundle\Privoxy\privoxy.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="wbsys.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-07-23 352256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2008-07-29 218376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WBSrv]
C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll [2008-09-16 174328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoSMConfigurePrograms"=1
"NoDrives"=0
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"NoDriveAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2008-12-01 12:19:03 ----D---- C:\rsit
2008-12-01 11:47:47 ----SHD---- C:\RECYCLER
2008-12-01 11:46:06 ----HD---- C:\WINDOWS\PIF
2008-11-30 20:16:19 ----D---- C:\WINDOWS\temp
2008-11-30 20:16:18 ----A---- C:\ComboFix.txt
2008-11-30 20:14:15 ----D---- C:\ComboFix
2008-11-30 18:47:36 ----D---- C:\Program Files\MindSoft
2008-11-30 04:51:04 ----D---- C:\Program Files\Microsoft Virtual PC
2008-11-30 04:47:45 ----D---- C:\Program Files\SpywareBlaster
2008-11-30 04:47:45 ----A---- C:\WINDOWS\system32\MSSTDFMT.DLL
2008-11-30 04:46:01 ----A---- C:\WINDOWS\OutLog.txt
2008-11-30 04:36:56 ----A---- C:\WINDOWS\BcdLog.txt
2008-11-30 04:34:12 ----A---- C:\WINDOWS\system32\SectorCopy.dll
2008-11-30 04:34:12 ----A---- C:\WINDOWS\system32\ResizeNTFS.dll
2008-11-30 04:34:12 ----A---- C:\WINDOWS\system32\Partition.dll
2008-11-30 04:34:12 ----A---- C:\WINDOWS\system32\NTFSLib.dll
2008-11-30 04:34:12 ----A---- C:\WINDOWS\system32\NTFSFormat.dll
2008-11-30 04:34:12 ----A---- C:\WINDOWS\system32\NTFSFileSystemAnalyser.dll
2008-11-30 04:34:12 ----A---- C:\WINDOWS\system32\NTFSCopy.dll
2008-11-30 04:34:12 ----A---- C:\WINDOWS\system32\Fixup.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\setupempdrv03.exe
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\FileSystemCheck.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\FileSystemAnalyser.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\FatResizeMove.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\FatLib.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\FatFormat.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\FATFileSystemAnalyser.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\FatCopy.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\EuEpmGdi.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\DeviceManager.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\DeviceAdapter.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\Device.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\CallbackOperator.dll
2008-11-30 04:34:11 ----A---- C:\WINDOWS\system32\BootMan.exe
2008-11-30 04:34:02 ----D---- C:\Program Files\EASEUS
2008-11-30 04:13:39 ----D---- C:\Program Files\EsetOnlineScanner
2008-11-30 04:04:08 ----D---- C:\Program Files\nLite
2008-11-30 03:51:02 ----D---- C:\Program Files\Defraggler
2008-11-30 02:32:12 ----D---- C:\Program Files\SystemRequirementsLab
2008-11-30 02:32:10 ----D---- C:\profiles\plb\Application Data\SystemRequirementsLab
2008-11-30 01:46:30 ----D---- C:\profiles\All Users\Application Data\SUPERAntiSpyware.com
2008-11-30 01:46:18 ----D---- C:\Program Files\SUPERAntiSpyware
2008-11-30 01:46:18 ----D---- C:\profiles\plb\Application Data\SUPERAntiSpyware.com
2008-11-30 01:45:36 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-11-29 11:46:41 ----D---- C:\Podcasts
2008-11-29 11:17:53 ----A---- C:\WINDOWS\zip.exe
2008-11-29 11:17:53 ----A---- C:\WINDOWS\VFIND.exe
2008-11-29 11:17:53 ----A---- C:\WINDOWS\SWXCACLS.exe
2008-11-29 11:17:53 ----A---- C:\WINDOWS\SWSC.exe
2008-11-29 11:17:53 ----A---- C:\WINDOWS\SWREG.exe
2008-11-29 11:17:53 ----A---- C:\WINDOWS\sed.exe
2008-11-29 11:17:53 ----A---- C:\WINDOWS\NIRCMD.exe
2008-11-29 11:17:53 ----A---- C:\WINDOWS\grep.exe
2008-11-29 11:17:53 ----A---- C:\WINDOWS\fdsv.exe
2008-11-29 11:17:47 ----D---- C:\Qoobox
2008-11-28 22:30:12 ----D---- C:\WINDOWS\ERUNT
2008-11-28 10:54:07 ----D---- C:\Program Files\MediaMonkey
2008-11-27 13:06:49 ----A---- C:\WINDOWS\system32\zlcommdb.dll
2008-11-27 13:06:49 ----A---- C:\WINDOWS\system32\zlcomm.dll
2008-11-27 13:06:49 ----A---- C:\WINDOWS\system32\vsregexp.dll
2008-11-27 13:06:47 ----A---- C:\WINDOWS\system32\vswmi.dll
2008-11-27 13:06:46 ----D---- C:\WINDOWS\system32\ZoneLabs
2008-11-27 13:06:46 ----D---- C:\Program Files\Zone Labs
2008-11-27 13:06:46 ----A---- C:\WINDOWS\system32\zpeng25.dll
2008-11-27 13:06:46 ----A---- C:\WINDOWS\system32\vsxml.dll
2008-11-27 13:06:46 ----A---- C:\WINDOWS\system32\vspubapi.dll
2008-11-27 13:06:46 ----A---- C:\WINDOWS\system32\vsmonapi.dll

2008-11-27 13:06:24 ----A---- C:\WINDOWS\system32\vsutil.dll
2008-11-27 13:06:24 ----A---- C:\WINDOWS\system32\vsinit.dll
2008-11-27 13:06:24 ----A---- C:\WINDOWS\system32\vsdata.dll
2008-11-27 13:06:03 ----D---- C:\WINDOWS\Internet Logs
2008-11-27 12:11:10 ----D---- C:\Program Files\Windows Live Safety Center
2008-11-27 11:41:37 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2008-11-27 11:41:23 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2008-11-27 11:41:13 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2008-11-27 11:41:02 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2008-11-27 11:40:57 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP11$
2008-11-27 01:26:46 ----A---- C:\RootkitReveal.txt
2008-11-27 00:24:33 ----A---- C:\WINDOWS\system32\tmp.txt
2008-11-27 00:24:19 ----A---- C:\rapport.txt
2008-11-27 00:22:53 ----A---- C:\WINDOWS\system32\WS2Fix.exe
2008-11-27 00:22:53 ----A---- C:\WINDOWS\system32\VCCLSID.exe
2008-11-27 00:22:53 ----A---- C:\WINDOWS\system32\SrchSTS.exe
2008-11-27 00:22:53 ----A---- C:\WINDOWS\system32\o4Patch.exe
2008-11-27 00:22:53 ----A---- C:\WINDOWS\system32\IEDFix.C.exe
2008-11-27 00:22:53 ----A---- C:\WINDOWS\system32\dumphive.exe
2008-11-27 00:22:53 ----A---- C:\WINDOWS\system32\404Fix.exe
2008-11-26 23:38:06 ----N---- C:\WINDOWS\system32\spmsg.dll
2008-11-26 23:38:03 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2008-11-26 23:37:53 ----A---- C:\WINDOWS\system32\wmpns.dll
2008-11-26 23:37:46 ----D---- C:\Program Files\Windows Media Connect 2
2008-11-26 23:37:40 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2008-11-26 23:37:13 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2008-11-26 23:36:55 ----D---- C:\WINDOWS\system32\LogFiles
2008-11-26 23:36:50 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2008-11-26 23:33:50 ----D---- C:\Program Files\Netflix
2008-11-26 18:59:09 ----D---- C:\Program Files\Cobian Backup 9
2008-11-26 18:15:28 ----N---- C:\WINDOWS\system32\javaws.exe
2008-11-26 18:15:28 ----N---- C:\WINDOWS\system32\javaw.exe
2008-11-26 18:15:28 ----N---- C:\WINDOWS\system32\java.exe
2008-11-26 18:15:21 ----D---- C:\Program Files\Java
2008-11-26 18:08:50 ----D---- C:\WINDOWS\system32\Macromed
2008-11-26 18:02:21 ----D---- C:\profiles\plb\Application Data\WinPatrol
2008-11-26 18:02:18 ----D---- C:\Program Files\BillP Studios
2008-11-26 16:40:52 ----D---- C:\profiles\plb\Application Data\Canneverbe_Limited
2008-11-26 16:39:40 ----D---- C:\Program Files\CDBurnerXP
2008-11-26 11:14:56 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2008-11-26 01:55:51 ----D---- C:\WINDOWS\Sun
2008-11-26 01:53:58 ----N---- C:\WINDOWS\system32\deploytk.dll
2008-11-26 01:52:57 ----D---- C:\profiles\plb\Application Data\Sun
2008-11-26 01:45:07 ----N---- C:\WINDOWS\system32\DeltaIITray.exe
2008-11-26 01:45:07 ----N---- C:\WINDOWS\system32\DeltaIICpl.exe
2008-11-26 01:45:06 ----N---- C:\WINDOWS\system32\pcifmdio.dll
2008-11-26 01:45:06 ----N---- C:\WINDOWS\system32\DeltaIIpnl.dll
2008-11-26 01:45:06 ----N---- C:\WINDOWS\system32\deltaIIasio.dll
2008-11-26 00:51:43 ----D---- C:\Program Files\RogueRemover FREE
2008-11-25 23:47:06 ----D---- C:\Program Files\Kaspersky Lab
2008-11-25 23:47:06 ----D---- C:\profiles\All Users\Application Data\Kaspersky Lab
2008-11-25 23:35:15 ----D---- C:\profiles\plb\Application Data\tor
2008-11-25 23:35:08 ----D---- C:\Program Files\Vidalia Bundle
2008-11-25 23:35:08 ----D---- C:\profiles\plb\Application Data\Vidalia
2008-11-25 00:42:18 ----D---- C:\profiles\plb\Application Data\Malwarebytes
2008-11-25 00:42:15 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-11-25 00:42:15 ----D---- C:\profiles\All Users\Application Data\Malwarebytes
2008-11-25 00:16:21 ----N---- C:\Boot.bak
2008-11-25 00:16:18 ----RASHD---- C:\cmdcons
2008-11-25 00:15:44 ----D---- C:\WINDOWS\ERDNT
2008-11-24 23:54:52 ----D---- C:\profiles\plb\Application Data\vlc
2008-11-24 23:44:47 ----D---- C:\profiles\All Users\Application Data\Windows Genuine Advantage
2008-11-24 22:07:23 ----D---- C:\Program Files\Trend Micro
2008-11-24 18:33:25 ----N---- C:\WINDOWS\system32\wpa.bak
2008-11-24 04:10:10 ----AD---- C:\profiles\All Users\Application Data\TEMP
2008-11-24 04:10:02 ----D---- C:\Program Files\ThreatFire
2008-11-24 04:06:50 ----N---- C:\WINDOWS\system32\ksuser.dll
2008-11-24 03:55:25 ----N---- C:\WINDOWS\system32\deltaIICoIn.dll
2008-11-24 03:49:58 ----D---- C:\profiles\plb\Application Data\ESET
2008-11-24 03:47:58 ----D---- C:\profiles\All Users\Application Data\ESET
2008-11-24 03:36:50 ----D---- C:\profiles\All Users\Application Data\Kaspersky Lab Setup Files
2008-11-24 03:34:54 ----D---- C:\profiles\plb\Application Data\Identities
2008-11-24 03:17:50 ----N---- C:\WINDOWS\WB.ini
2008-11-24 03:17:31 ----A---- C:\WINDOWS\WBlangorig.ini
2008-11-24 03:17:21 ----N---- C:\WINDOWS\system32\wbsys.dll
2008-11-24 03:17:21 ----A---- C:\WINDOWS\system32\wbload.dll
2008-11-24 03:15:23 ----D---- C:\profiles\plb\Application Data\Macromedia
2008-11-24 03:15:22 ----D---- C:\profiles\plb\Application Data\Adobe
2008-11-24 02:49:27 ----N---- C:\WINDOWS\system32\RtNicProp32.dll
2008-11-24 02:22:47 ----HD---- C:\Program Files\Uninstall Information
2008-11-24 02:19:44 ----D---- C:\profiles\plb\Application Data\Stardock
2008-11-24 02:17:45 ----D---- C:\WINDOWS\WBEM
2008-11-24 02:15:35 ----N---- C:\WINDOWS\system32\MRT.exe
2008-11-24 02:15:08 ----D---- C:\Program Files\MSXML 4.0
2008-11-24 02:11:08 ----D---- C:\Program Files\MSBuild
2008-11-24 02:11:06 ----D---- C:\WINDOWS\system32\XPSViewer
2008-11-24 02:11:04 ----D---- C:\Program Files\Reference Assemblies
2008-11-24 02:10:48 ----N---- C:\WINDOWS\system32\spmsg2.dll
2008-11-24 02:10:46 ----N---- C:\WINDOWS\system32\spupdsvc.exe
2008-11-24 02:10:23 ----RSD---- C:\WINDOWS\assembly
2008-11-24 02:10:12 ----D---- C:\WINDOWS\Microsoft.NET
2008-11-24 02:01:30 ----D---- C:\profiles\All Users\Application Data\Stardock
2008-11-24 01:42:19 ----D---- C:\Program Files\Realtek
2008-11-24 01:42:15 ----D---- C:\profiles\plb\Application Data\InstallShield
2008-11-24 01:40:47 ----D---- C:\Program Files\Mozilla Firefox
2008-11-24 01:17:56 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-11-24 01:17:56 ----D---- C:\profiles\All Users\Application Data\Spybot - Search & Destroy
2008-11-24 01:14:26 ----D---- C:\Config.Msi
2008-11-24 01:11:25 ----A---- C:\WINDOWS\ntbtlog.txt
2008-11-24 00:56:10 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-11-24 00:55:59 ----D---- C:\WINDOWS\ie7updates
2008-11-24 00:55:07 ----HDC---- C:\WINDOWS\ie7
2008-11-24 00:55:01 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2008-11-24 00:54:50 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2008-11-24 00:53:27 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2008-11-24 00:53:24 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-11-24 00:53:22 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-11-24 00:52:55 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-11-24 00:52:52 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2008-11-24 00:52:46 ----HDC---- C:\WINDOWS\$NtUninstallKB956390$
2008-11-24 00:30:19 ----D---- C:\Program Files\VideoLAN
2008-11-24 00:23:36 ----N---- C:\WINDOWS\system32\DeltaIITray(6).exe
2008-11-24 00:23:36 ----N---- C:\WINDOWS\system32\DeltaIITray(5).exe
2008-11-24 00:23:36 ----N---- C:\WINDOWS\system32\DeltaIITray(4).exe
2008-11-24 00:23:36 ----N---- C:\WINDOWS\system32\DeltaIITray(3).exe
2008-11-24 00:23:36 ----N---- C:\WINDOWS\system32\DeltaIITray(2).exe
2008-11-24 00:23:22 ----D---- C:\Program Files\M-Audio
2008-11-23 18:37:07 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2008-11-23 18:37:03 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2008-11-23 18:36:59 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2008-11-23 18:36:59 ----D---- C:\WINDOWS\$hf_mig$
2008-11-23 18:29:32 ----D---- C:\WINDOWS\OPTIONS
2008-11-23 18:27:47 ----D---- C:\profiles\plb\Application Data\Mozilla
2008-11-23 18:24:42 ----D---- C:\Program Files\Stardock
2008-11-23 18:23:01 ----D---- C:\Program Files\Mozilla Firefox(2)
2008-11-23 18:22:00 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$
2008-11-23 18:21:45 ----D---- C:\Program Files\Evoluent
2008-11-23 18:17:08 ----D---- C:\profiles\plb\Application Data\Auslogics
2008-11-23 18:14:13 ----HD---- C:\Program Files\InstallShield Installation Information
2008-11-23 18:14:11 ----D---- C:\Program Files\NVIDIA Corporation
2008-11-23 18:11:44 ----N---- C:\WINDOWS\system32\nvudisp.exe
2008-11-23 18:11:44 ----D---- C:\WINDOWS\nview
2008-11-23 18:11:36 ----N---- C:\WINDOWS\system32\NVUNINST.EXE
2008-11-23 18:09:00 ----D---- C:\profiles\plb\Application Data\WinRAR
2008-11-23 18:06:57 ----D---- C:\Program Files\WinRAR
2008-11-23 17:59:49 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-11-23 17:59:48 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-11-23 17:59:48 ----D---- C:\Program Files\Intel
2008-11-23 17:59:48 ----A---- C:\WINDOWS\system32\CSVer.dll
2008-11-23 17:59:46 ----D---- C:\Intel
2008-11-23 17:34:10 ----SH---- C:\profiles\plb\Application Data\desktop.ini
2008-11-23 17:34:10 ----SD---- C:\profiles\plb\Application Data\Microsoft
2008-11-23 17:34:06 ----SD---- C:\WINDOWS\system32\Microsoft
2008-11-23 17:34:06 ----D---- C:\WINDOWS\Prefetch
2008-11-23 17:34:05 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-11-23 17:32:29 ----D---- C:\WINDOWS\system32\xircom
2008-11-23 17:32:29 ----D---- C:\WINDOWS\system32\npp
2008-11-23 17:32:29 ----D---- C:\WINDOWS\srchasst
2008-11-23 17:32:29 ----D---- C:\Program Files\xerox
2008-11-23 17:32:29 ----D---- C:\Program Files\netmeeting
2008-11-23 17:32:29 ----D---- C:\Program Files\msn gaming zone
2008-11-23 17:32:29 ----D---- C:\Program Files\movie maker
2008-11-23 17:32:29 ----D---- C:\Program Files\microsoft frontpage
2008-11-23 17:32:29 ----D---- C:\Program Files\Common Files\speechengines
2008-11-23 17:32:24 ----N---- C:\WINDOWS\control.ini
2008-11-23 17:32:24 ----N---- C:\AUTOEXEC.BAT
2008-11-23 17:32:17 ----N---- C:\WINDOWS\OEWABLog.txt
2008-11-23 17:32:15 ----N---- C:\WINDOWS\system32\mapi32.dll
2008-11-23 17:31:51 ----RD---- C:\WINDOWS\Offline Web Pages
2008-11-23 17:31:50 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-11-23 17:31:50 ----RH---- C:\WINDOWS\system32\logonui.exe.manifest
2008-11-23 17:31:47 ----RH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2008-11-23 17:31:44 ----HD---- C:\Program Files\WindowsUpdate
2008-11-23 17:31:31 ----N---- C:\WINDOWS\system32\desktop.ini
2008-11-23 17:31:31 ----N---- C:\WINDOWS\desktop.ini
2008-11-23 17:31:25 ----N---- C:\WINDOWS\system32\acctres.dll
2008-11-23 17:31:24 ----D---- C:\Program Files\Common Files\Services
2008-11-23 17:31:21 ----SD---- C:\WINDOWS\Tasks
2008-11-23 17:31:20 ----D---- C:\Program Files\Common Files\MSSoap
2008-11-23 17:31:14 ----N---- C:\WINDOWS\system32\wuweb.dll
2008-11-23 17:31:14 ----N---- C:\WINDOWS\system32\wucltui.dll
2008-11-23 17:31:14 ----N---- C:\WINDOWS\system32\wuauserv.dll
2008-11-23 17:31:14 ----N---- C:\WINDOWS\system32\wuaueng1.dll
2008-11-23 17:31:13 ----N---- C:\WINDOWS\system32\wups.dll
2008-11-23 17:31:13 ----N---- C:\WINDOWS\system32\wuaueng.dll
2008-11-23 17:31:12 ----N---- C:\WINDOWS\system32\wuauclt1.exe
2008-11-23 17:31:12 ----N---- C:\WINDOWS\system32\wuauclt.exe
2008-11-23 17:31:12 ----N---- C:\WINDOWS\system32\wuapi.dll
2008-11-23 17:31:12 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2008-11-23 17:31:12 ----N---- C:\WINDOWS\system32\bitsprx3.dll
2008-11-23 17:31:12 ----N---- C:\WINDOWS\system32\bitsprx2.dll
2008-11-23 17:31:11 ----N---- C:\WINDOWS\system32\qmgrprxy.dll
2008-11-23 17:31:11 ----N---- C:\WINDOWS\system32\qmgr.dll
2008-11-23 17:30:42 ----N---- C:\WINDOWS\system32\fltMc.exe
2008-11-23 17:30:42 ----N---- C:\WINDOWS\system32\fltlib.dll
2008-11-23 17:30:41 ----N---- C:\WINDOWS\system32\srrstr.dll
2008-11-23 17:30:41 ----D---- C:\WINDOWS\system32\Restore
2008-11-23 17:30:40 ----N---- C:\WINDOWS\system32\srsvc.dll
2008-11-23 17:30:40 ----N---- C:\WINDOWS\system32\srclient.dll
2008-11-23 17:30:40 ----N---- C:\WINDOWS\system32\msoert2.dll
2008-11-23 17:30:40 ----N---- C:\WINDOWS\system32\msoeacct.dll
2008-11-23 17:30:38 ----N---- C:\WINDOWS\system32\inetres.dll
2008-11-23 17:30:38 ----N---- C:\WINDOWS\system32\inetcomm.dll
2008-11-23 17:30:35 ----N---- C:\WINDOWS\system32\schedsvc.dll
2008-11-23 17:30:35 ----N---- C:\WINDOWS\system32\mstinit.exe
2008-11-23 17:30:35 ----N---- C:\WINDOWS\system32\mstask.dll
2008-11-23 17:30:35 ----D---- C:\Program Files\Outlook Express
2008-11-23 17:30:27 ----D---- C:\Program Files\Common Files\System
2008-11-23 17:30:26 ----D---- C:\Program Files\Common Files\Microsoft Shared
2008-11-23 17:30:25 ----D---- C:\Program Files\Internet Explorer
2008-11-23 17:30:18 ----D---- C:\Program Files\ComPlus Applications
2008-11-23 17:30:16 ----N---- C:\WINDOWS\vbaddin.ini
2008-11-23 17:30:16 ----N---- C:\WINDOWS\vb.ini
2008-11-23 17:30:13 ----D---- C:\WINDOWS\Registration
2008-11-23 17:29:54 ----D---- C:\Program Files\Windows Media Player
2008-11-23 17:29:51 ----N---- C:\WINDOWS\system32\write.exe
2008-11-23 17:29:51 ----N---- C:\WINDOWS\system32\sndvol32.exe
2008-11-23 17:29:50 ----N---- C:\WINDOWS\system32\getuname.dll
2008-11-23 17:29:49 ----N---- C:\WINDOWS\system32\usrlogon.cmd
2008-11-23 17:29:49 ----N---- C:\WINDOWS\system32\tskill.exe
2008-11-23 17:29:49 ----N---- C:\WINDOWS\system32\reset.exe
2008-11-23 17:29:49 ----N---- C:\WINDOWS\system32\charmap.exe
2008-11-23 17:29:49 ----N---- C:\WINDOWS\system32\calc.exe
2008-11-23 17:29:48 ----N---- C:\WINDOWS\system32\tsshutdn.exe
2008-11-23 17:29:48 ----N---- C:\WINDOWS\system32\tslabels.ini
2008-11-23 17:29:48 ----N---- C:\WINDOWS\system32\tsdiscon.exe
2008-11-23 17:29:48 ----N---- C:\WINDOWS\system32\tscon.exe
2008-11-23 17:29:48 ----N---- C:\WINDOWS\system32\shadow.exe
2008-11-23 17:29:48 ----N---- C:\WINDOWS\system32\rwinsta.exe
2008-11-23 17:29:48 ----N---- C:\WINDOWS\system32\regini.exe
2008-11-23 17:29:48 ----N---- C:\WINDOWS\system32\rdpcfgex.dll
2008-11-23 17:29:48 ----N---- C:\WINDOWS\system32\qwinsta.exe
2008-11-23 17:29:47 ----N---- C:\WINDOWS\system32\qappsrv.exe
2008-11-23 17:29:47 ----N---- C:\WINDOWS\system32\msg.exe
2008-11-23 17:29:47 ----N---- C:\WINDOWS\system32\msdtcprf.ini
2008-11-23 17:29:47 ----N---- C:\WINDOWS\system32\logoff.exe
2008-11-23 17:29:47 ----N---- C:\WINDOWS\system32\cdmodem.dll
2008-11-23 17:29:39 ----N---- C:\WINDOWS\system32\wmimgmt.msc
2008-11-23 17:29:38 ----N---- C:\WINDOWS\system32\mplay32.exe
2008-11-23 17:29:38 ----D---- C:\Program Files\Windows NT
2008-11-23 17:29:37 ----N---- C:\WINDOWS\system32\clipbrd.exe
2008-11-23 17:29:37 ----D---- C:\WINDOWS\system32\en-US
2008-11-23 17:29:36 ----N---- C:\WINDOWS\system32\tsgqec.dll
2008-11-23 17:29:36 ----N---- C:\WINDOWS\system32\tscfgwmi.dll
2008-11-23 17:29:35 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2008-11-23 17:29:35 ----N---- C:\WINDOWS\system32\aaclient.dll
2008-11-23 17:29:34 ----N---- C:\WINDOWS\system32\mstscax.dll
2008-11-23 17:29:33 ----N---- C:\WINDOWS\system32\sessmgr.exe
2008-11-23 17:29:33 ----N---- C:\WINDOWS\system32\remotepg.dll
2008-11-23 17:29:33 ----N---- C:\WINDOWS\system32\rdshost.exe
2008-11-23 17:29:33 ----N---- C:\WINDOWS\system32\rdsaddin.exe
2008-11-23 17:29:33 ----N---- C:\WINDOWS\system32\mstsc.exe
2008-11-23 17:29:32 ----N---- C:\WINDOWS\system32\termsrv.dll
2008-11-23 17:29:32 ----N---- C:\WINDOWS\system32\rdpwsx.dll
2008-11-23 17:29:32 ----N---- C:\WINDOWS\system32\rdpsnd.dll
2008-11-23 17:29:32 ----N---- C:\WINDOWS\system32\rdpclip.exe
2008-11-23 17:29:32 ----N---- C:\WINDOWS\system32\rdchost.dll
2008-11-23 17:29:31 ----N---- C:\WINDOWS\system32\qprocess.exe
2008-11-23 17:29:31 ----N---- C:\WINDOWS\system32\msdtcuiu.dll
2008-11-23 17:29:31 ----N---- C:\WINDOWS\system32\icaapi.dll
2008-11-23 17:29:31 ----N---- C:\WINDOWS\system32\cfgbkend.dll
2008-11-23 17:29:31 ----D---- C:\WINDOWS\system32\MsDtc
2008-11-23 17:29:30 ----N---- C:\WINDOWS\system32\mtxoci.dll
2008-11-23 17:29:30 ----N---- C:\WINDOWS\system32\msdtctm.dll
2008-11-23 17:29:30 ----N---- C:\WINDOWS\system32\msdtcprx.dll
2008-11-23 17:29:29 ----N---- C:\WINDOWS\system32\xolehlp.dll
2008-11-23 17:29:29 ----N---- C:\WINDOWS\system32\msdtclog.dll
2008-11-23 17:29:29 ----N---- C:\WINDOWS\system32\msdtc.exe
2008-11-23 17:29:28 ----N---- C:\WINDOWS\system32\mtxlegih.dll
2008-11-23 17:29:28 ----N---- C:\WINDOWS\system32\mtxex.dll
2008-11-23 17:29:28 ----N---- C:\WINDOWS\system32\mtxdm.dll
2008-11-23 17:29:28 ----N---- C:\WINDOWS\system32\dcomcnfg.exe
2008-11-23 17:29:28 ----N---- C:\WINDOWS\system32\comaddin.dll
2008-11-23 17:29:28 ----N---- C:\WINDOWS\system32\colbact.dll
2008-11-23 17:29:28 ----D---- C:\WINDOWS\system32\Com
2008-11-23 17:29:27 ----N---- C:\WINDOWS\system32\stclient.dll
2008-11-23 17:29:27 ----N---- C:\WINDOWS\system32\comrepl.dll
2008-11-23 17:29:27 ----N---- C:\WINDOWS\system32\clbcatex.dll
2008-11-23 17:29:27 ----N---- C:\WINDOWS\system32\catsrvps.dll
2008-11-23 17:29:26 ----N---- C:\WINDOWS\system32\catsrvut.dll
2008-11-23 17:29:26 ----N---- C:\WINDOWS\system32\catsrv.dll
2008-11-23 17:29:24 ----N---- C:\WINDOWS\system32\comuid.dll
2008-11-23 17:29:24 ----N---- C:\WINDOWS\system32\comsvcs.dll
2008-11-23 17:29:23 ----N---- C:\WINDOWS\system32\comsnap.dll
2008-11-23 17:29:23 ----N---- C:\WINDOWS\system32\clbcatq.dll
2008-11-23 17:29:14 ----N---- C:\WINDOWS\system32\servdeps.dll
2008-11-23 17:29:13 ----N---- C:\WINDOWS\system32\mmfutil.dll
2008-11-23 17:29:13 ----N---- C:\WINDOWS\system32\licwmi.dll
2008-11-23 17:29:13 ----N---- C:\WINDOWS\system32\cmprops.dll
2008-11-23 10:28:35 ----N---- C:\WINDOWS\system32\h323log.txt
2008-11-23 09:46:54 ----N---- C:\WINDOWS\system32\hidserv.dll
2008-11-23 09:45:30 ----N---- C:\WINDOWS\system32\usbui.dll
2008-11-23 09:44:53 ----A---- C:\WINDOWS\imsins.BAK
2008-11-23 09:44:52 ----SHD---- C:\WINDOWS\Installer
2008-11-23 09:44:52 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-11-23 09:44:51 ----N---- C:\WINDOWS\ODBCINST.INI
2008-11-23 09:44:51 ----D---- C:\Program Files\Common Files\ODBC
2008-11-23 09:44:51 ----D---- C:\Program Files\Common Files
2008-11-23 09:44:51 ----D---- C:\Program Files
2008-11-23 09:44:44 ----N---- C:\WINDOWS\system32\irclass.dll
2008-11-23 09:44:42 ----N---- C:\WINDOWS\TASKMAN.EXE
2008-11-23 09:44:42 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2008-11-23 09:44:41 ----N---- C:\WINDOWS\system32\storprop.dll
2008-11-23 09:44:41 ----N---- C:\WINDOWS\system32\batt.dll
2008-11-23 09:44:41 ----N---- C:\WINDOWS\NOTEPAD.EXE
2008-11-23 09:44:36 ----SH---- C:\profiles\All Users\Application Data\desktop.ini
2008-11-23 09:44:30 ----R---- C:\WINDOWS\SET8.tmp
2008-11-23 09:44:28 ----R---- C:\WINDOWS\SET4.tmp
2008-11-23 09:44:26 ----R---- C:\WINDOWS\SET3.tmp
2008-11-23 09:44:22 ----D---- C:\WINDOWS\system32\CatRoot2
2008-11-23 09:44:22 ----D---- C:\WINDOWS\system32\CatRoot
2008-11-23 09:44:16 ----SD---- C:\profiles\All Users\Application Data\Microsoft
2008-11-23 09:43:50 ----N---- C:\WINDOWS\setuplog.txt
2008-11-23 09:43:48 ----SHD---- C:\System Volume Information
2008-11-23 09:43:48 ----D---- C:\profiles
2008-11-23 09:43:15 ----RSH---- C:\boot.ini
2008-11-23 09:39:13 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-11-23 09:39:13 ----RSD---- C:\WINDOWS\Fonts
2008-11-23 09:39:13 ----D---- C:\WINDOWS\WinSxS
2008-11-23 09:39:13 ----D---- C:\WINDOWS\Web
2008-11-23 09:39:13 ----D---- C:\WINDOWS\twain_32
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\wins
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\wbem
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\usmt
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\spool
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\ShellExt
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\Setup
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\scripting
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\ras
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\PreInstall
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\oobe
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\mui
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\inetsrv
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\IME
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\icsxml
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\ias
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\export
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\en
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\drivers
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\dhcp
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\config
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\3com_dmi
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\3076
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\2052
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\1054
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\1042
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\1041
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\1037
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\1033
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\1031
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\1028
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32\1025
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system32
2008-11-23 09:39:13 ----D---- C:\WINDOWS\system
2008-11-23 09:39:13 ----D---- C:\WINDOWS\SoftwareDistribution
2008-11-23 09:39:13 ----D---- C:\WINDOWS\security
2008-11-23 09:39:13 ----D---- C:\WINDOWS\Resources
2008-11-23 09:39:13 ----D---- C:\WINDOWS\repair
2008-11-23 09:39:13 ----D---- C:\WINDOWS\Provisioning
2008-11-23 09:39:13 ----D---- C:\WINDOWS\PeerNet
2008-11-23 09:39:13 ----D---- C:\WINDOWS\PCHealth
2008-11-23 09:39:13 ----D---- C:\WINDOWS\NLDRV
2008-11-23 09:39:13 ----D---- C:\WINDOWS\Network Diagnostic
2008-11-23 09:39:13 ----D---- C:\WINDOWS\mui
2008-11-23 09:39:13 ----D---- C:\WINDOWS\msapps
2008-11-23 09:39:13 ----D---- C:\WINDOWS\msagent
2008-11-23 09:39:13 ----D---- C:\WINDOWS\Media
2008-11-23 09:39:13 ----D---- C:\WINDOWS\L2Schemas
2008-11-23 09:39:13 ----D---- C:\WINDOWS\java
2008-11-23 09:39:13 ----D---- C:\WINDOWS\inf
2008-11-23 09:39:13 ----D---- C:\WINDOWS\ime
2008-11-23 09:39:13 ----D---- C:\WINDOWS\Help
2008-11-23 09:39:13 ----D---- C:\WINDOWS\Driver Cache
2008-11-23 09:39:13 ----D---- C:\WINDOWS\Debug
2008-11-23 09:39:13 ----D---- C:\WINDOWS\Cursors
2008-11-23 09:39:13 ----D---- C:\WINDOWS\Config
2008-11-23 09:39:13 ----D---- C:\WINDOWS\AppPatch
2008-11-23 09:39:13 ----D---- C:\WINDOWS\addins
2008-11-23 09:39:13 ----D---- C:\WINDOWS
2008-11-21 18:40:35 ----N---- C:\WINDOWS\system32\sfcfiles.dll
2008-11-21 18:37:31 ----N---- C:\WINDOWS\system32\syssetup.dll
2008-11-21 18:37:22 ----N---- C:\WINDOWS\system32\wups2.dll
2008-11-21 18:37:21 ----N---- C:\WINDOWS\system32\SecProc.dll
2008-11-21 18:37:21 ----N---- C:\WINDOWS\system32\rspndr.exe
2008-11-21 18:37:21 ----N---- C:\WINDOWS\system32\qfecheck.exe
2008-11-21 18:37:20 ----N---- C:\WINDOWS\system32\pintool.exe
2008-11-21 18:37:20 ----N---- C:\WINDOWS\system32\muweb.dll
2008-11-21 18:37:20 ----N---- C:\WINDOWS\system32\mucltui.dll
2008-11-21 18:37:20 ----N---- C:\WINDOWS\system32\msxml4r.dll
2008-11-21 18:37:18 ----N---- C:\WINDOWS\system32\msdrm.dll
2008-11-21 18:37:18 ----N---- C:\WINDOWS\system32\imapi2fs.dll
2008-11-21 18:37:18 ----N---- C:\WINDOWS\system32\imapi2.dll
2008-11-21 18:37:18 ----N---- C:\WINDOWS\system32\ifxcardm.dll
2008-11-21 18:37:18 ----N---- C:\WINDOWS\system32\gpprefcl.dll
2008-11-21 18:37:16 ----N---- C:\WINDOWS\system32\wzcdlg.dll
2008-11-21 18:37:16 ----N---- C:\WINDOWS\system32\bcsprsrc.dll
2008-11-21 18:37:16 ----N---- C:\WINDOWS\system32\basecsp.dll
2008-11-21 18:37:16 ----N---- C:\WINDOWS\system32\axaltocm.dll
2008-11-21 18:37:14 ----N---- C:\WINDOWS\system32\wshext.dll
2008-11-21 18:37:14 ----N---- C:\WINDOWS\system32\wscript.exe
2008-11-21 18:37:14 ----N---- C:\WINDOWS\system32\wkssvc.dll
2008-11-21 18:37:14 ----N---- C:\WINDOWS\system32\winsrv.dll
2008-11-21 18:37:14 ----N---- C:\WINDOWS\system32\wininet.dll
2008-11-21 18:37:14 ----N---- C:\WINDOWS\system32\wininet(4).dll
2008-11-21 18:37:14 ----N---- C:\WINDOWS\system32\wininet(3).dll
2008-11-21 18:37:13 ----N---- C:\WINDOWS\system32\w32tm.exe
2008-11-21 18:37:12 ----N---- C:\WINDOWS\system32\w32time.dll
2008-11-21 18:37:12 ----N---- C:\WINDOWS\system32\vbscript.dll
2008-11-21 18:37:12 ----N---- C:\WINDOWS\system32\urlmon.dll
2008-11-21 18:37:12 ----N---- C:\WINDOWS\system32\urlmon(4).dll
2008-11-21 18:37:12 ----N---- C:\WINDOWS\system32\urlmon(3).dll
2008-11-21 18:37:11 ----N---- C:\WINDOWS\system32\tzchange.exe
2008-11-21 18:37:11 ----N---- C:\WINDOWS\system32\tapisrv.dll
2008-11-21 18:37:10 ----N---- C:\WINDOWS\system32\shimeng.dll
2008-11-21 18:37:10 ----N---- C:\WINDOWS\system32\shell32.dll
2008-11-21 18:37:06 ----N---- C:\WINDOWS\system32\shdocvw.dll
2008-11-21 18:37:06 ----N---- C:\WINDOWS\system32\setupapi.dll
2008-11-21 18:37:05 ----N---- C:\WINDOWS\system32\scrrun.dll
2008-11-21 18:37:05 ----N---- C:\WINDOWS\system32\scrobj.dll
2008-11-21 18:37:05 ----N---- C:\WINDOWS\system32\quartz.dll
2008-11-21 18:37:04 ----N---- C:\WINDOWS\system32\psbase.dll
2008-11-21 18:37:04 ----N---- C:\WINDOWS\system32\ole32.dll
2008-11-21 18:37:04 ----N---- C:\WINDOWS\system32\odbc32.dll
2008-11-21 18:37:03 ----N---- C:\WINDOWS\system32\ntoskrnl.exe
2008-11-21 18:37:02 ----N---- C:\WINDOWS\system32\ntdsapi.dll
2008-11-21 18:37:02 ----N---- C:\WINDOWS\system32\netlogon.dll
2008-11-21 18:37:02 ----N---- C:\WINDOWS\system32\msxml2.dll
2008-11-21 18:37:02 ----N---- C:\WINDOWS\system32\mswsock.dll
2008-11-21 18:37:02 ----N---- C:\WINDOWS\system32\msv1_0.dll
2008-11-21 18:37:02 ----N---- C:\WINDOWS\system32\msrd2x40.dll
2008-11-21 18:37:02 ----N---- C:\WINDOWS\system32\msjet40.dll
2008-11-21 18:37:01 ----N---- C:\WINDOWS\system32\msisip.dll
2008-11-21 18:37:01 ----N---- C:\WINDOWS\system32\msimsg.dll
2008-11-21 18:37:01 ----N---- C:\WINDOWS\system32\msihnd.dll
2008-11-21 18:37:01 ----N---- C:\WINDOWS\system32\msiexec.exe
2008-11-21 18:37:01 ----N---- C:\WINDOWS\system32\msi.dll
2008-11-21 18:36:59 ----N---- C:\WINDOWS\system32\mshtml.dll
2008-11-21 18:36:58 ----N---- C:\WINDOWS\system32\msexcl40.dll
2008-11-21 18:36:58 ----N---- C:\WINDOWS\system32\MSCTF.dll
2008-11-21 18:36:58 ----N---- C:\WINDOWS\system32\mscms.dll
2008-11-21 18:36:57 ----N---- C:\WINDOWS\system32\mmcex.dll
2008-11-21 18:36:57 ----N---- C:\WINDOWS\system32\lsasrv.dll
2008-11-21 18:36:57 ----N---- C:\WINDOWS\system32\localspl.dll
2008-11-21 18:36:57 ----N---- C:\WINDOWS\system32\jscript.dll
2008-11-21 18:36:57 ----N---- C:\WINDOWS\system32\ipnathlp.dll
2008-11-21 18:36:56 ----N---- C:\WINDOWS\system32\hnetcfg.dll
2008-11-21 18:36:56 ----N---- C:\WINDOWS\system32\hal.dll
2008-11-21 18:36:56 ----N---- C:\WINDOWS\explorer.exe
2008-11-21 18:36:55 ----N---- C:\WINDOWS\system32\es.dll
2008-11-21 18:36:55 ----N---- C:\WINDOWS\system32\dsuiext.dll
2008-11-21 18:36:55 ----N---- C:\WINDOWS\system32\dnsapi.dll
2008-11-21 18:36:55 ----N---- C:\WINDOWS\system32\dhcpcsvc.dll
2008-11-21 18:36:55 ----N---- C:\WINDOWS\system32\d3d9.dll
2008-11-21 18:36:54 ----N---- C:\WINDOWS\system32\cscript.exe
2008-11-21 18:36:54 ----N---- C:\WINDOWS\system32\cscdll.dll
2008-11-21 18:36:54 ----N---- C:\WINDOWS\system32\crypt32.dll
2008-11-21 18:36:53 ----N---- C:\WINDOWS\system32\cdm.dll
2008-11-21 18:36:52 ----N---- C:\WINDOWS\system32\adsmsext.dll
2008-11-21 18:36:52 ----N---- C:\WINDOWS\system32\adsldp.dll
2008-11-21 17:43:47 ----N---- C:\WINDOWS\system32\uxtheme.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nwiz.exe
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvwss.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvwimg.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvwdmcpl.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvwddi.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvvitvs.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvsvc32.exe
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvshell.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvoglnt.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvmobls.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvmctray.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvmccss.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvmccsrs.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvmccs.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nview.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvgames.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvdspsch.exe
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvdisps.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvcuda.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvcplui.exe
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvcpl.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvcolor.exe
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvcodins.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvcod.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvappbar.exe
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nvapi.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2008-11-12 14:54:00 ----N---- C:\WINDOWS\system32\keystone.exe

======List of files/folders modified in the last 1 months======

2008-11-30 20:15:42 ----A---- C:\WINDOWS\system.ini
2008-11-26 23:37:53 ----A---- C:\WINDOWS\win.ini
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\wzcsvc.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\wzcsapi.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\wowfaxui.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\wowfax.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrvpa.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrvoica.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrv80a.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrv42a.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrsvpia.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrshuta.exe
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrsdpia.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrrtosa.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrprbda.exe
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrmlnka.exe
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrlbva.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrfaxa.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrdtea.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrdpa.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrcoina.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\usrcntra.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\tsbyuv.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\streamci.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\sprio800.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\sprio600.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\spnike.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\pjlmon.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\pid.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\paqsp.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\msyuv.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\mdwmdmsp.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\iyuv_32.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\hid.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\dvdplay.exe
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\dmutil.dll
2008-11-21 18:39:15 ----N---- C:\WINDOWS\system32\cnbjmon.dll
2008-11-21 18:37:21 ----N---- C:\WINDOWS\system32\SecProc_ssp_isv.dll
2008-11-21 18:37:21 ----N---- C:\WINDOWS\system32\SecProc_ssp.dll
2008-11-21 18:37:21 ----N---- C:\WINDOWS\system32\SecProc_isv.dll
2008-11-21 18:37:21 ----N---- C:\WINDOWS\system32\RmActivate_ssp_isv.exe
2008-11-21 18:37:21 ----N---- C:\WINDOWS\system32\RmActivate_ssp.exe
2008-11-21 18:37:21 ----N---- C:\WINDOWS\system32\RmActivate_isv.exe
2008-11-21 18:37:21 ----N---- C:\WINDOWS\system32\RmActivate.exe
2008-11-21 18:37:13 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2008-11-21 18:37:13 ----N---- C:\WINDOWS\system32\windowscodecs.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2008-11-25 213008]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 vmm;Virtual Machine Monitor; \??\C:\WINDOWS\system32\Drivers\vmm.sys []
R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-08-21 353680]
R2 rspndr;Link-Layer Topology Discovery Responder; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2008-11-21 62848]
R3 DELTAII;Service for M-Audio Delta Driver (WDM); C:\WINDOWS\system32\DRIVERS\deltaII.sys [2008-03-03 302728]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 KLFLTDEV;Kaspersky Lab KLFltDev; C:\WINDOWS\system32\DRIVERS\klfltdev.sys [2008-03-13 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2008-04-30 24592]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-11-21 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-11-12 6188320]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-10-16 115840]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-24 30336]
R3 usbhub;Microsoft USB Standard Hub Driver; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 VPCNetS2;Virtual Machine Network Services Driver; C:\WINDOWS\system32\DRIVERS\VMNetSrv.sys [2008-02-05 59960]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 epmntdrv;epmntdrv; \??\C:\WINDOWS\system32\epmntdrv.sys []
S3 EuGdiDrv;EuGdiDrv; \??\C:\WINDOWS\system32\EuGdiDrv.sys []
S3 evomouflt;Evoluent Mouse Filter Service; C:\WINDOWS\system32\DRIVERS\evomouflt.sys [2007-12-26 15872]
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 NVR0Dev;NVR0Dev; \??\C:\WINDOWS\nvoclock.sys []
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVP;Kaspersky Internet Security; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2008-07-29 206088]
R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-08-21 2405776]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S4 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S4 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-11-26 152984]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]
S4 nTuneService;Performance Service; C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe [2008-09-29 155648]
S4 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-11-12 163908]

-----------------EOF-----------------

Edited by PLB, 02 December 2008 - 01:00 AM.


BC AdBot (Login to Remove)

 


#2 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,958 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:07:55 AM

Posted 14 December 2008 - 07:06 PM

edit note: The Helper at INAG forums will be helping me finish with my infection, I guess i'll keep the body allowing admin to delete the whole post (or not) :D


Thanks for letting us know. If you experience problems with your computer again, please start a new topic. This topic is now closed.

Orange Blossom :thumbsup:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users