Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

When I use a search engine, the links give me wrong pages.... HELP


  • This topic is locked This topic is locked
6 replies to this topic

#1 imabitdizzy

imabitdizzy

  • Members
  • 58 posts
  • OFFLINE
  •  
  • Location:Killeen TX
  • Local time:04:02 PM

Posted 05 December 2008 - 05:23 PM

When I use any search engine I get results but they take FOREVER to load. Then when I click on ANY of the links, it will bring me all sorts of different places that were not what I was clicking on. Im not sure what to do. I have used ad-aware, but it didnt work at all. Ive cleared temp files using ATF-cleaner, as well as CCleaner. So, not too sure what to do at this point.



Logfile of random's system information tool 1.04 (written by random/random)
Run by kayla at 2008-12-05 16:03:18
Microsoft Windows XP Professional Service Pack 3
System drive C: has 37 GB (48%) free of 76 GB
Total RAM: 511 MB (53% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:03:49 PM, on 12/5/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\WINDOWS\tsnpstd3.exe
C:\WINDOWS\vsnpstd3.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Palm\Hotsync.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\Program Files\AIM6\aim6.exe
C:\Program Files\AIM6\aolsoftware.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\tinyproxy\tinyproxy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\kayla.KAYLASHEPHERD\Desktop\RSIT.exe
C:\Program Files\trend micro\kayla.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.myspace.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:9090
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [DW6] "C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe"
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1100465 -"Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.0.4) Gecko/2008102920 Firefox/3.0.4" -"http://mplayer27.slingo.com/shockscreen2.asp?shost=mplayer27.slingo.com&sport=45087&susername=chainlinx04&spassword=a0018235143&roomname=Max%20Payout&gameid=217"
O4 - HKUS\S-1-5-19\..\Run: [OE] C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OE] C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [OE] C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [OE] C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe (User 'Default user')
O4 - Global Startup: HOTSYNCSHORTCUTNAME.lnk = C:\Program Files\Palm\Hotsync.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1221072448061
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1221074566265
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl.sun.com/webapps/download/AutoDL?BundleId=23100
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: getPlus® Helper - Unknown owner - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe (file missing)
O23 - Service: Help and Support (helpsvc) - Unknown owner - C:\Program Files\tinyproxy\tinyproxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Unknown owner - C:\WINDOWS\system32\drivers\KodakCCS.exe (file missing)

--
End of file - 6254 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"tsnpstd3"=C:\WINDOWS\tsnpstd3.exe [2006-11-29 262144]
"snpstd3"=C:\WINDOWS\vsnpstd3.exe [2006-09-18 843776]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-11-20 290088]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
"Aim6"= []
"Messenger (Yahoo!)"=C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe [2008-09-19 4347120]
"DW6"=C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater"=C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE [2008-08-06 447928]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aim6]
C:\Program Files\AIM6\aim6.exe [2008-08-06 50472]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Messenger (Yahoo!)]
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe [2008-09-19 4347120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MySpaceIM]
C:\Program Files\MySpace\IM\MySpaceIM.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2008-09-06 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Start Menu^Programs^Startup^Kodak EasyShare software.lnk]
C:\PROGRA~1\Kodak\KODAKE~1\bin\EASYSH~1.EXE [2008-07-07 282624]

C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup
HOTSYNCSHORTCUTNAME.lnk - C:\Program Files\Palm\Hotsync.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="NVDESK32.DLL"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoDrives"=
"NoDriveAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"C:\Program Files\AIM6\aim6.exe"="C:\Program Files\AIM6\aim6.exe:*:Enabled:AIM"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe"="C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe:*:Enabled:EasyShare"
"C:\Program Files\MySpace\IM\MySpaceIM.exe"="C:\Program Files\MySpace\IM\MySpaceIM.exe:*:Enabled:MySpace Instant Messenger"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\tinyproxy\tinyproxy.exe"="C:\Program Files\tinyproxy\tinyproxy.exe:*:Enabled:tinyproxy"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 3 months======

2008-12-04 12:29:33 ----D---- C:\Program Files\tinyproxy
2008-12-04 11:20:37 ----H---- C:\WINDOWS\bolivar28.exe
2008-12-03 21:56:05 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Flood Light Games
2008-12-03 21:56:05 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Flood Light Games
2008-11-25 17:06:53 ----A---- C:\WINDOWS\system32\GEARAspi.dll
2008-11-25 17:06:21 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-11-25 17:05:58 ----D---- C:\Program Files\Bonjour
2008-11-25 12:02:50 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Help
2008-11-19 23:54:03 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-11-19 22:50:44 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\LimeWire
2008-11-16 00:37:07 ----D---- C:\Program Files\AskPBar
2008-11-16 00:36:08 ----D---- C:\Program Files\Trillian
2008-11-13 10:18:20 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\FloodLightGames
2008-11-13 10:18:20 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\FloodLightGames
2008-11-09 20:09:22 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\WildTangent
2008-11-05 22:24:55 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Nikon
2008-11-05 22:20:54 ----D---- C:\Program Files\Common Files\Nikon
2008-11-05 22:20:49 ----D---- C:\Program Files\Nikon
2008-11-05 22:20:24 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Ultima_T15
2008-11-05 22:20:24 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\EnterNHelp
2008-10-28 16:22:49 ----D---- C:\Program Files\Common Files\Oberon Media
2008-10-28 16:22:48 ----D---- C:\Program Files\MySpace Games
2008-10-23 21:00:21 ----D---- C:\Program Files\Common Files\Adobe AIR
2008-10-23 20:54:42 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\NOS
2008-10-13 13:40:18 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Apple Computer
2008-10-13 13:37:02 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Apple Computer
2008-10-13 13:34:22 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Apple
2008-10-06 15:28:54 ----D---- C:\ComboFix
2008-10-06 00:36:48 ----A---- C:\WINDOWS\system32\xerces-c_2_7.dll
2008-10-06 00:36:48 ----A---- C:\WINDOWS\system32\KPDLM.dll
2008-10-06 00:36:48 ----A---- C:\WINDOWS\system32\KPDDynCC.DLL
2008-10-05 21:35:48 ----D---- C:\kodak
2008-10-05 21:14:55 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Skinux
2008-10-05 18:02:17 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-10-05 18:00:59 ----A---- C:\WINDOWS\system32\ptpusb.dll
2008-10-05 18:00:55 ----A---- C:\WINDOWS\system32\ptpusd.dll
2008-10-05 17:51:21 ----RSD---- C:\WINDOWS\assembly
2008-10-05 17:50:07 ----D---- C:\WINDOWS\Microsoft.NET
2008-10-05 17:44:30 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Kodak
2008-10-02 18:23:35 ----SHD---- C:\RECYCLER
2008-10-01 13:06:45 ----D---- C:\WINDOWS\temp
2008-10-01 13:06:39 ----A---- C:\ComboFix.txt
2008-09-29 19:12:08 ----D---- C:\Program Files\Photo Pos Pro
2008-09-29 15:54:12 ----A---- C:\Boot.bak
2008-09-29 15:54:05 ----D---- C:\cmdcons
2008-09-29 15:52:19 ----D---- C:\WINDOWS\erdnt
2008-09-29 13:51:40 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Malwarebytes
2008-09-29 13:51:32 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Malwarebytes
2008-09-29 13:20:02 ----D---- C:\Program Files\Shockwave.com
2008-09-28 18:03:42 ----D---- C:\rsit
2008-09-27 19:32:43 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Google
2008-09-27 19:28:09 ----A---- C:\WINDOWS\system32\msvcr71.dll
2008-09-27 19:28:07 ----A---- C:\WINDOWS\system32\msvcp71.dll
2008-09-27 19:27:55 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Google
2008-09-27 19:26:29 ----D---- C:\WINDOWS\system32\Adobe
2008-09-25 11:52:49 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Enigma
2008-09-25 05:41:34 ----A---- C:\WINDOWS\DCEBoot.exe
2008-09-24 20:14:46 ----D---- C:\WINDOWS\pss
2008-09-24 20:02:10 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Trend Micro
2008-09-23 22:56:11 ----D---- C:\WINDOWS\system32\LogFiles
2008-09-23 19:07:55 ----D---- C:\Program Files\Panda Security
2008-09-23 10:56:26 ----D---- C:\WINDOWS\BDOSCAN8
2008-09-23 10:09:40 ----A---- C:\WINDOWS\wininit.ini
2008-09-22 19:28:37 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-09-22 19:28:37 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy
2008-09-22 19:25:31 ----D---- C:\Program Files\Lavasoft
2008-09-22 19:25:27 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Lavasoft
2008-09-22 18:58:42 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\avg8
2008-09-22 15:52:21 ----D---- C:\games
2008-09-22 15:01:14 ----A---- C:\WINDOWS\system32\9f2b18f9-.txt
2008-09-21 16:46:28 ----D---- C:\WINDOWS\Azada 2 Ancient Magic
2008-09-21 15:05:59 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Big Fish Games
2008-09-21 15:05:46 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Trymedia
2008-09-21 13:46:55 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\iWin
2008-09-21 11:55:08 ----D---- C:\Program Files\Dream Chronicles 2
2008-09-21 11:51:10 ----D---- C:\Program Files\Dream Chronicles
2008-09-20 19:56:37 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\PlayFirst
2008-09-20 19:56:37 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\PlayFirst
2008-09-20 19:55:53 ----AD---- C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP
2008-09-17 05:34:51 ----A---- C:\WINDOWS\system32\PosIpLiB.dll
2008-09-16 19:58:59 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\ZapSpot
2008-09-16 19:58:25 ----D---- C:\Program Files\Common Files\EverAd Shared
2008-09-16 04:38:03 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2008-09-14 22:01:10 ----D---- C:\WINDOWS\SxsCaPendDel
2008-09-14 02:00:37 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2008-09-13 19:33:31 ----D---- C:\WINDOWS\Prefetch
2008-09-13 18:39:33 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2008-09-13 18:39:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2008-09-13 18:39:16 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2008-09-13 18:39:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2008-09-13 18:38:59 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2008-09-13 18:38:48 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2008-09-13 18:38:39 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2008-09-13 18:38:32 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2008-09-13 18:38:24 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2008-09-13 18:38:16 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2008-09-13 18:31:13 ----D---- C:\WINDOWS\system32\scripting
2008-09-13 18:31:12 ----D---- C:\WINDOWS\system32\en
2008-09-13 18:31:12 ----D---- C:\WINDOWS\l2schemas
2008-09-13 11:37:57 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2008-09-13 11:37:48 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2008-09-13 11:37:39 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
2008-09-13 11:37:30 ----HDC---- C:\WINDOWS\$NtUninstallKB953839$
2008-09-13 11:36:51 ----D---- C:\WINDOWS\ie7updates
2008-09-13 11:35:31 ----D---- C:\WINDOWS\WBEM
2008-09-13 11:35:30 ----D---- C:\WINDOWS\system32\en-US
2008-09-13 11:34:05 ----HDC---- C:\WINDOWS\ie7
2008-09-13 11:33:48 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2008-09-13 11:33:21 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2008-09-13 11:32:52 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2008-09-13 11:32:44 ----A---- C:\WINDOWS\system32\xmllite.dll
2008-09-13 11:31:15 ----D---- C:\WINDOWS\network diagnostic
2008-09-13 11:31:12 ----HDC---- C:\WINDOWS\$NtUninstallKB914440$
2008-09-13 11:30:52 ----HDC---- C:\WINDOWS\$NtUninstallKB904942$
2008-09-13 11:10:30 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2008-09-13 11:10:20 ----HDC---- C:\WINDOWS\$NtUninstallKB951698_0$
2008-09-13 11:10:08 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
2008-09-13 11:09:59 ----HDC---- C:\WINDOWS\$NtUninstallKB951072-v2$
2008-09-13 11:09:50 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2008-09-13 11:09:41 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$
2008-09-13 11:09:15 ----HDC---- C:\WINDOWS\$NtUninstallKB953838$
2008-09-13 11:09:01 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
2008-09-13 11:08:35 ----HDC---- C:\WINDOWS\$NtUninstallKB950749$
2008-09-13 11:08:25 ----HDC---- C:\WINDOWS\$NtUninstallKB938464_0$
2008-09-13 11:08:13 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2008-09-13 10:21:40 ----A---- C:\WINDOWS\system32\wmphoto.dll
2008-09-13 10:21:36 ----A---- C:\WINDOWS\system32\wlanapi.dll
2008-09-13 10:21:33 ----A---- C:\WINDOWS\system32\windowscodecsext.dll
2008-09-13 10:21:33 ----A---- C:\WINDOWS\system32\windowscodecs.dll
2008-09-13 10:21:30 ----A---- C:\WINDOWS\system32\verclsid.exe
2008-09-13 10:21:26 ----A---- C:\WINDOWS\system32\tspkg.dll
2008-09-13 10:21:26 ----A---- C:\WINDOWS\system32\tsgqec.dll
2008-09-13 10:21:11 ----A---- C:\WINDOWS\system32\setupn.exe
2008-09-13 10:21:08 ----A---- C:\WINDOWS\system32\rhttpaa.dll
2008-09-13 10:21:05 ----A---- C:\WINDOWS\system32\rasqec.dll
2008-09-13 10:21:05 ----A---- C:\WINDOWS\system32\qutil.dll
2008-09-13 10:21:05 ----A---- C:\WINDOWS\system32\qcliprov.dll
2008-09-13 10:21:04 ----A---- C:\WINDOWS\system32\qagentrt.dll
2008-09-13 10:21:04 ----A---- C:\WINDOWS\system32\qagent.dll
2008-09-13 10:21:02 ----A---- C:\WINDOWS\system32\photometadatahandler.dll
2008-09-13 10:20:59 ----A---- C:\WINDOWS\system32\onex.dll
2008-09-13 10:20:49 ----A---- C:\WINDOWS\system32\napstat.exe
2008-09-13 10:20:48 ----A---- C:\WINDOWS\system32\napmontr.dll
2008-09-13 10:20:48 ----A---- C:\WINDOWS\system32\napipsec.dll
2008-09-13 10:20:47 ----A---- C:\WINDOWS\system32\msxml6r.dll
2008-09-13 10:20:47 ----A---- C:\WINDOWS\system32\msxml6.dll
2008-09-13 10:20:44 ----A---- C:\WINDOWS\system32\msshavmsg.dll
2008-09-13 10:20:44 ----A---- C:\WINDOWS\system32\mssha.dll
2008-09-13 10:20:26 ----A---- C:\WINDOWS\system32\mmcperf.exe
2008-09-13 10:20:26 ----A---- C:\WINDOWS\system32\mmcfxcommon.dll
2008-09-13 10:20:26 ----A---- C:\WINDOWS\system32\mmcex.dll
2008-09-13 10:20:26 ----A---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2008-09-13 10:20:13 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2008-09-13 10:20:12 ----A---- C:\WINDOWS\system32\kmsvc.dll
2008-09-13 10:20:12 ----A---- C:\WINDOWS\system32\kbdpash.dll
2008-09-13 10:20:12 ----A---- C:\WINDOWS\system32\kbdnepr.dll
2008-09-13 10:20:12 ----A---- C:\WINDOWS\system32\kbdiultn.dll
2008-09-13 10:20:12 ----A---- C:\WINDOWS\system32\kbdbhc.dll
2008-09-13 10:20:00 ----A---- C:\WINDOWS\system32\smtpapi.dll
2008-09-13 10:19:59 ----A---- C:\WINDOWS\system32\rwnh.dll
2008-09-13 10:19:46 ----A---- C:\WINDOWS\005557_.tmp
2008-09-13 10:19:42 ----A---- C:\WINDOWS\system32\eapsvc.dll
2008-09-13 10:19:42 ----A---- C:\WINDOWS\system32\eapqec.dll
2008-09-13 10:19:42 ----A---- C:\WINDOWS\system32\eappprxy.dll
2008-09-13 10:19:42 ----A---- C:\WINDOWS\system32\eapphost.dll
2008-09-13 10:19:42 ----A---- C:\WINDOWS\system32\eappgnui.dll
2008-09-13 10:19:42 ----A---- C:\WINDOWS\system32\eappcfg.dll
2008-09-13 10:19:42 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2008-09-13 10:19:42 ----A---- C:\WINDOWS\system32\eapolqec.dll
2008-09-13 10:19:40 ----A---- C:\WINDOWS\system32\dot3ui.dll
2008-09-13 10:19:39 ----A---- C:\WINDOWS\system32\dot3svc.dll
2008-09-13 10:19:39 ----A---- C:\WINDOWS\system32\dot3msm.dll
2008-09-13 10:19:39 ----A---- C:\WINDOWS\system32\dot3gpclnt.dll
2008-09-13 10:19:39 ----A---- C:\WINDOWS\system32\dot3dlg.dll
2008-09-13 10:19:39 ----A---- C:\WINDOWS\system32\dot3cfg.dll
2008-09-13 10:19:39 ----A---- C:\WINDOWS\system32\dot3api.dll
2008-09-13 10:19:38 ----A---- C:\WINDOWS\system32\dimsroam.dll
2008-09-13 10:19:38 ----A---- C:\WINDOWS\system32\dimsntfy.dll
2008-09-13 10:19:37 ----A---- C:\WINDOWS\system32\dhcpqec.dll
2008-09-13 10:19:33 ----A---- C:\WINDOWS\system32\credssp.dll
2008-09-13 10:19:27 ----A---- C:\WINDOWS\system32\bitsprx4.dll
2008-09-13 10:19:27 ----A---- C:\WINDOWS\system32\azroles.dll
2008-09-13 10:19:18 ----A---- C:\WINDOWS\system32\aaclient.dll
2008-09-13 09:57:29 ----D---- C:\WINDOWS\system32\PreInstall
2008-09-13 09:57:26 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2008-09-13 09:57:26 ----HD---- C:\WINDOWS\$hf_mig$
2008-09-13 02:04:52 ----SD---- C:\WINDOWS\system32\Microsoft
2008-09-13 01:35:53 ----D---- C:\WINDOWS\peernet
2008-09-13 01:35:51 ----D---- C:\WINDOWS\provisioning
2008-09-13 01:32:53 ----D---- C:\WINDOWS\ServicePackFiles
2008-09-13 01:27:51 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2008-09-13 01:24:28 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2008-09-13 01:24:24 ----D---- C:\WINDOWS\EHome
2008-09-13 00:43:28 ----A---- C:\WINDOWS\system32\spnpinst.exe
2008-09-11 23:49:09 ----A---- C:\WINDOWS\system32\wmpns.dll
2008-09-11 23:49:05 ----A---- C:\WINDOWS\system32\wmpshell.dll
2008-09-11 23:49:05 ----A---- C:\WINDOWS\system32\wmploc.dll
2008-09-11 23:49:05 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2008-09-11 23:49:05 ----A---- C:\WINDOWS\system32\wmpasf.dll
2008-09-11 23:49:05 ----A---- C:\WINDOWS\system32\wmp.dll
2008-09-11 23:49:05 ----A---- C:\WINDOWS\system32\wmerror.dll
2008-09-11 23:49:05 ----A---- C:\WINDOWS\system32\asferror.dll
2008-09-11 23:49:04 ----A---- C:\WINDOWS\system32\wmpcore.dll
2008-09-11 23:49:04 ----A---- C:\WINDOWS\system32\wmpcd.dll
2008-09-11 23:49:03 ----A---- C:\WINDOWS\system32\wmpui.dll
2008-09-11 23:48:52 ----A---- C:\WINDOWS\system32\wmdmps.dll
2008-09-11 23:48:52 ----A---- C:\WINDOWS\system32\wmdmlog.dll
2008-09-11 23:48:52 ----A---- C:\WINDOWS\system32\msscp.dll
2008-09-11 23:48:52 ----A---- C:\WINDOWS\system32\mspmsp.dll
2008-09-11 23:48:52 ----A---- C:\WINDOWS\system32\mspmsnsv.dll
2008-09-11 23:48:52 ----A---- C:\WINDOWS\system32\cewmdm.dll
2008-09-11 23:48:51 ----A---- C:\WINDOWS\system32\mswmdm.dll
2008-09-11 23:48:49 ----A---- C:\WINDOWS\system32\mpg4dmod.dll
2008-09-11 23:48:49 ----A---- C:\WINDOWS\system32\mp4sdmod.dll
2008-09-11 23:48:49 ----A---- C:\WINDOWS\system32\mp43dmod.dll
2008-09-11 23:48:48 ----A---- C:\WINDOWS\system32\wmvdmod.dll
2008-09-11 23:48:48 ----A---- C:\WINDOWS\system32\wmspdmod.dll
2008-09-11 23:48:47 ----A---- C:\WINDOWS\system32\wmvdmoe2.dll
2008-09-11 23:48:47 ----A---- C:\WINDOWS\system32\wmspdmoe.dll
2008-09-11 23:48:47 ----A---- C:\WINDOWS\system32\wmsdmoe2.dll
2008-09-11 23:48:47 ----A---- C:\WINDOWS\system32\wmsdmod.dll
2008-09-11 23:48:47 ----A---- C:\WINDOWS\system32\wmadmoe.dll
2008-09-11 23:48:47 ----A---- C:\WINDOWS\system32\wmadmod.dll
2008-09-11 23:48:47 ----A---- C:\WINDOWS\system32\qasf.dll
2008-09-11 23:48:47 ----A---- C:\WINDOWS\system32\logagent.exe
2008-09-11 23:48:47 ----A---- C:\WINDOWS\system32\laprxy.dll
2008-09-11 23:48:46 ----A---- C:\WINDOWS\system32\wmnetmgr.dll
2008-09-11 23:48:46 ----A---- C:\WINDOWS\system32\wmidx.dll
2008-09-11 23:48:44 ----A---- C:\WINDOWS\system32\msnetobj.dll
2008-09-11 23:48:44 ----A---- C:\WINDOWS\system32\drmv2clt.dll
2008-09-11 23:48:44 ----A---- C:\WINDOWS\system32\drmstor.dll
2008-09-11 23:48:44 ----A---- C:\WINDOWS\system32\drmclien.dll
2008-09-11 23:48:44 ----A---- C:\WINDOWS\system32\blackbox.dll
2008-09-11 21:41:30 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\BitZipper
2008-09-11 12:37:35 ----A---- C:\WINDOWS\QuickInstall.INI
2008-09-11 09:25:38 ----RA---- C:\WINDOWS\PalmDevC.dll
2008-09-11 09:13:25 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2008-09-11 09:13:25 ----A---- C:\WINDOWS\system32\mucltui.dll
2008-09-11 09:05:43 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Leadertech
2008-09-11 09:05:13 ----A---- C:\HSW_Log.txt
2008-09-11 09:01:41 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\HotSync
2008-09-11 08:55:31 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\HotSync
2008-09-11 08:53:20 ----A---- C:\HuskyInstallerLog.txt
2008-09-11 08:52:32 ----D---- C:\WINDOWS\Downloaded Installations
2008-09-11 07:59:22 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\MySpace
2008-09-11 07:56:25 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\acccore
2008-09-11 07:55:51 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Viewpoint
2008-09-11 07:55:50 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\acccore
2008-09-11 07:55:40 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\AOL OCP
2008-09-11 07:55:40 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\AOL
2008-09-10 21:04:57 ----A---- C:\WINDOWS\system32\csnpstd3.dll
2008-09-10 21:04:15 ----D---- C:\WINDOWS\RegisteredPackages
2008-09-10 21:02:29 ----A---- C:\WINDOWS\system32\wstdecod.dll
2008-09-10 21:02:29 ----A---- C:\WINDOWS\system32\psisdecd.dll
2008-09-10 21:02:28 ----A---- C:\WINDOWS\system32\msyuv.dll
2008-09-10 21:02:28 ----A---- C:\WINDOWS\system32\msvidctl.dll
2008-09-10 21:02:26 ----A---- C:\WINDOWS\system32\ksuser.dll
2008-09-10 21:02:25 ----A---- C:\WINDOWS\system32\quartz.dll
2008-09-10 21:02:25 ----A---- C:\WINDOWS\system32\qedwipes.dll
2008-09-10 21:02:25 ----A---- C:\WINDOWS\system32\qedit.dll
2008-09-10 21:02:25 ----A---- C:\WINDOWS\system32\mswebdvd.dll
2008-09-10 21:02:25 ----A---- C:\WINDOWS\system32\msdmo.dll
2008-09-10 21:02:24 ----A---- C:\WINDOWS\system32\qdvd.dll
2008-09-10 21:02:24 ----A---- C:\WINDOWS\system32\qdv.dll
2008-09-10 21:02:24 ----A---- C:\WINDOWS\system32\qcap.dll
2008-09-10 21:02:24 ----A---- C:\WINDOWS\system32\mciqtz32.dll
2008-09-10 21:02:24 ----A---- C:\WINDOWS\system32\encapi.dll
2008-09-10 21:02:24 ----A---- C:\WINDOWS\system32\devenum.dll
2008-09-10 21:02:24 ----A---- C:\WINDOWS\system32\amstream.dll
2008-09-10 21:02:23 ----A---- C:\WINDOWS\system32\dswave.dll
2008-09-10 21:02:23 ----A---- C:\WINDOWS\system32\dmusic.dll
2008-09-10 21:02:23 ----A---- C:\WINDOWS\system32\dmsynth.dll
2008-09-10 21:02:23 ----A---- C:\WINDOWS\system32\dmstyle.dll
2008-09-10 21:02:23 ----A---- C:\WINDOWS\system32\dmscript.dll
2008-09-10 21:02:23 ----A---- C:\WINDOWS\system32\dmloader.dll
2008-09-10 21:02:23 ----A---- C:\WINDOWS\system32\dmime.dll
2008-09-10 21:02:23 ----A---- C:\WINDOWS\system32\dmcompos.dll
2008-09-10 21:02:23 ----A---- C:\WINDOWS\system32\dmband.dll
2008-09-10 21:02:23 ----A---- C:\WINDOWS\system32\dinput8.dll
2008-09-10 21:02:23 ----A---- C:\WINDOWS\system32\d3d9.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\pid.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dxdllreg.exe
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dxdiag.exe
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dx8vb.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dsdmoprp.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dsdmo.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dpvvox.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dpvsetup.exe
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dpvoice.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dpvacm.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dpnet.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2008-09-10 21:02:22 ----A---- C:\WINDOWS\system32\d3d8.dll
2008-09-10 21:02:21 ----A---- C:\WINDOWS\system32\dx7vb.dll
2008-09-10 21:02:21 ----A---- C:\WINDOWS\system32\dsound3d.dll
2008-09-10 21:02:21 ----A---- C:\WINDOWS\system32\dsound.dll
2008-09-10 21:02:21 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2008-09-10 21:02:21 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2008-09-10 21:02:21 ----A---- C:\WINDOWS\system32\dplayx.dll
2008-09-10 21:02:21 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2008-09-10 21:02:21 ----A---- C:\WINDOWS\system32\dinput.dll
2008-09-10 21:02:21 ----A---- C:\WINDOWS\system32\d3dim700.dll
2008-09-10 21:02:03 ----D---- C:\Program Files\Ezonics
2008-09-10 21:01:57 ----A---- C:\WINDOWS\system32\vsnpstd3.dll
2008-09-10 21:01:56 ----D---- C:\Program Files\Common Files\EZVGACam
2008-09-10 21:01:56 ----A---- C:\WINDOWS\tsnpstd3.exe
2008-09-10 21:01:56 ----A---- C:\WINDOWS\system32\rsnpstd3.dll
2008-09-10 21:01:56 ----A---- C:\WINDOWS\snpstd3.ini
2008-09-10 21:01:56 ----A---- C:\WINDOWS\amcap.exe
2008-09-10 21:01:43 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\InstallShield
2008-09-10 20:59:38 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe
2008-09-10 20:58:41 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2008-09-10 20:21:45 ----D---- C:\WINDOWS\Sun
2008-09-10 20:21:45 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Sun
2008-09-10 20:21:36 ----D---- C:\Program Files\Three Rings Design
2008-09-10 20:21:23 ----A---- C:\WINDOWS\system32\javaws.exe
2008-09-10 20:21:23 ----A---- C:\WINDOWS\system32\javaw.exe
2008-09-10 20:21:23 ----A---- C:\WINDOWS\system32\java.exe
2008-09-10 20:10:10 ----D---- C:\BassFix
2008-09-10 19:24:06 ----D---- C:\Program Files\Dell
2008-09-10 19:24:05 ----D---- C:\WINDOWS\system32\Dell
2008-09-10 17:08:51 ----D---- C:\ATI
2008-09-10 13:45:25 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2008-09-10 13:45:25 ----A---- C:\WINDOWS\system32\tsbyuv.dll
2008-09-10 13:45:23 ----A---- C:\WINDOWS\system32\iyuv_32.dll
2008-09-10 13:45:01 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-09-10 13:44:59 ----A---- C:\WINDOWS\system32\IntelCci.dll
2008-09-10 13:43:14 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Yahoo!
2008-09-10 13:38:17 ----A---- C:\WINDOWS\system32\MRT.exe
2008-09-10 13:38:07 ----HDC---- C:\WINDOWS\$NtUninstallQ329834$
2008-09-10 13:37:55 ----HDC---- C:\WINDOWS\$NtUninstallKB823559$
2008-09-10 13:37:09 ----HDC---- C:\WINDOWS\$NtUninstallQ329048$
2008-09-10 13:36:55 ----HDC---- C:\WINDOWS\$NtUninstallQ810577$
2008-09-10 13:36:20 ----HDC---- C:\WINDOWS\$NtUninstallQ810833$
2008-09-10 13:35:05 ----HDC---- C:\WINDOWS\$NtUninstallQ815021$
2008-09-10 13:34:30 ----HDC---- C:\WINDOWS\$NtUninstallQ329441$
2008-09-10 13:33:58 ----A---- C:\WINDOWS\system32\srrstr.dll
2008-09-10 13:33:44 ----HDC---- C:\WINDOWS\$NtUninstallQ329170$
2008-09-10 13:32:52 ----HDC---- C:\WINDOWS\$NtUninstallQ329115$
2008-09-10 13:32:38 ----HDC---- C:\WINDOWS\$NtUninstallQ329390$
2008-09-10 13:32:37 ----HDC---- C:\WINDOWS\$xpsp1hfm$
2008-09-10 13:32:37 ----A---- C:\WINDOWS\system32\xpsp1hfm.exe
2008-09-10 13:31:41 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Windows Genuine Advantage
2008-09-10 13:26:42 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Macromedia
2008-09-10 13:26:25 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Yahoo!
2008-09-10 13:08:17 ----D---- C:\WINDOWS\system32\appmgmt
2008-09-10 12:58:05 ----D---- C:\WINDOWS\system32\bits
2008-09-10 12:58:00 ----A---- C:\WINDOWS\system32\spmsg.dll
2008-09-10 12:57:56 ----HDC---- C:\WINDOWS\$NtUninstallKB842773$
2008-09-10 12:56:54 ----A---- C:\WINDOWS\system32\xpob2res.dll
2008-09-10 12:56:54 ----A---- C:\WINDOWS\system32\winhttp.dll
2008-09-10 12:56:54 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2008-09-10 12:56:54 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2008-09-10 12:56:54 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2008-09-10 12:48:50 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Mozilla
2008-09-10 12:48:18 ----A---- C:\WINDOWS\system32\wups2.dll
2008-09-10 12:48:18 ----A---- C:\WINDOWS\system32\wups.dll
2008-09-10 12:48:18 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2008-09-10 12:48:18 ----A---- C:\WINDOWS\system32\wucltui.dll
2008-09-10 12:48:18 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2008-09-10 12:48:16 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2008-09-10 12:48:16 ----A---- C:\WINDOWS\system32\wuapi.dll
2008-09-10 12:47:39 ----D---- C:\WINDOWS\SoftwareDistribution
2008-09-10 12:18:45 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\AdobeUM
2008-09-10 12:18:35 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Adobe
2008-09-10 12:16:00 ----D---- C:\WINDOWS\Cache
2008-09-10 12:04:34 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Pure Networks
2008-09-10 11:53:48 ----SHD---- C:\WINDOWS\Installer
2008-09-10 11:53:44 ----D---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Identities
2008-09-10 11:53:30 ----ASH---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\desktop.ini
2008-09-10 11:53:29 ----SD---- C:\Documents and Settings\kayla.KAYLASHEPHERD\Application Data\Microsoft
2008-09-10 11:47:29 ----N---- C:\WINDOWS\SchedLgU.Txt
2008-09-10 11:42:32 ----D---- C:\WINDOWS\system32\xircom
2008-09-10 11:42:08 ----A---- C:\WINDOWS\control.ini
2008-09-10 11:41:47 ----A---- C:\WINDOWS\system32\mapi32.dll
2008-09-10 11:40:25 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-09-10 11:40:25 ----RD---- C:\WINDOWS\Offline Web Pages
2008-09-10 11:40:25 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2008-09-10 11:40:14 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2008-09-10 11:39:49 ----D---- C:\WINDOWS\srchasst
2008-09-10 11:39:42 ----D---- C:\WINDOWS\system32\Macromed
2008-09-10 11:39:42 ----D---- C:\WINDOWS\system32\DirectX
2008-09-10 11:39:36 ----A---- C:\WINDOWS\system32\qmgr.dll
2008-09-10 11:39:21 ----A---- C:\WINDOWS\system32\safrslv.dll
2008-09-10 11:39:21 ----A---- C:\WINDOWS\system32\safrdm.dll
2008-09-10 11:39:21 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2008-09-10 11:39:21 ----A---- C:\WINDOWS\system32\racpldlg.dll
2008-09-10 11:39:21 ----A---- C:\WINDOWS\system32\atrace.dll
2008-09-10 11:39:17 ----A---- C:\WINDOWS\system32\desktop.ini
2008-09-10 11:39:17 ----A---- C:\WINDOWS\desktop.ini
2008-09-10 11:39:12 ----D---- C:\WINDOWS\system32\Restore
2008-09-10 11:39:12 ----A---- C:\WINDOWS\system32\srsvc.dll
2008-09-10 11:39:12 ----A---- C:\WINDOWS\system32\srclient.dll
2008-09-10 11:39:12 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2008-09-10 11:39:12 ----A---- C:\WINDOWS\system32\ils.dll
2008-09-10 11:39:11 ----D---- C:\WINDOWS\PCHEALTH
2008-09-10 11:39:11 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2008-09-10 11:39:11 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2008-09-10 11:39:11 ----A---- C:\WINDOWS\system32\msoert2.dll
2008-09-10 11:39:11 ----A---- C:\WINDOWS\system32\msconf.dll
2008-09-10 11:39:11 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2008-09-10 11:39:11 ----A---- C:\WINDOWS\system32\mnmdd.dll
2008-09-10 11:39:11 ----A---- C:\WINDOWS\system32\acctres.dll
2008-09-10 11:39:10 ----A---- C:\WINDOWS\system32\msoeacct.dll
2008-09-10 11:39:10 ----A---- C:\WINDOWS\system32\inetres.dll
2008-09-10 11:39:10 ----A---- C:\WINDOWS\system32\inetcomm.dll
2008-09-10 11:39:09 ----SD---- C:\WINDOWS\Tasks
2008-09-10 11:39:09 ----A---- C:\WINDOWS\system32\schedsvc.dll
2008-09-10 11:39:09 ----A---- C:\WINDOWS\system32\mstinit.exe
2008-09-10 11:39:09 ----A---- C:\WINDOWS\system32\mstask.dll
2008-09-10 11:39:09 ----A---- C:\WINDOWS\system32\isign32.dll
2008-09-10 11:39:09 ----A---- C:\WINDOWS\system32\inetcfg.dll
2008-09-10 11:39:09 ----A---- C:\WINDOWS\system32\icwphbk.dll
2008-09-10 11:39:09 ----A---- C:\WINDOWS\system32\icwdial.dll
2008-09-10 11:39:09 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2008-09-10 11:38:16 ----A---- C:\WINDOWS\vbaddin.ini
2008-09-10 11:38:16 ----A---- C:\WINDOWS\vb.ini
2008-09-10 11:38:09 ----D---- C:\WINDOWS\Registration
2008-09-10 11:37:52 ----A---- C:\WINDOWS\system32\write.exe
2008-09-10 11:37:47 ----A---- C:\WINDOWS\system32\accwiz.exe
2008-09-10 11:37:46 ----A---- C:\WINDOWS\system32\sndvol32.exe
2008-09-10 11:37:46 ----A---- C:\WINDOWS\system32\sndrec32.exe
2008-09-10 11:37:46 ----A---- C:\WINDOWS\system32\mplay32.exe
2008-09-10 11:37:46 ----A---- C:\WINDOWS\system32\hypertrm.dll
2008-09-10 11:37:46 ----A---- C:\WINDOWS\system32\hticons.dll
2008-09-10 11:37:46 ----A---- C:\WINDOWS\system32\avwav.dll
2008-09-10 11:37:46 ----A---- C:\WINDOWS\system32\avtapi.dll
2008-09-10 11:37:46 ----A---- C:\WINDOWS\system32\avmeter.dll
2008-09-10 11:37:45 ----A---- C:\WINDOWS\system32\winchat.exe
2008-09-10 11:37:44 ----A---- C:\WINDOWS\system32\mspaint.exe
2008-09-10 11:37:40 ----A---- C:\WINDOWS\system32\getuname.dll
2008-09-10 11:37:40 ----A---- C:\WINDOWS\system32\clipbrd.exe
2008-09-10 11:37:39 ----A---- C:\WINDOWS\system32\winmine.exe
2008-09-10 11:37:39 ----A---- C:\WINDOWS\system32\spider.exe
2008-09-10 11:37:39 ----A---- C:\WINDOWS\system32\sol.exe
2008-09-10 11:37:39 ----A---- C:\WINDOWS\system32\charmap.exe
2008-09-10 11:37:39 ----A---- C:\WINDOWS\system32\calc.exe
2008-09-10 11:37:38 ----A---- C:\WINDOWS\system32\wuauserv.dll
2008-09-10 11:37:38 ----A---- C:\WINDOWS\system32\wuaueng.dll
2008-09-10 11:37:38 ----A---- C:\WINDOWS\system32\wuauclt.exe
2008-09-10 11:37:38 ----A---- C:\WINDOWS\system32\mshearts.exe
2008-09-10 11:37:38 ----A---- C:\WINDOWS\system32\freecell.exe
2008-09-10 11:37:37 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2008-09-10 11:37:37 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2008-09-10 11:37:37 ----A---- C:\WINDOWS\system32\sessmgr.exe
2008-09-10 11:37:37 ----A---- C:\WINDOWS\system32\reset.exe
2008-09-10 11:37:37 ----A---- C:\WINDOWS\system32\remotepg.dll
2008-09-10 11:37:37 ----A---- C:\WINDOWS\system32\rdshost.exe
2008-09-10 11:37:37 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2008-09-10 11:37:37 ----A---- C:\WINDOWS\system32\rdchost.dll
2008-09-10 11:37:37 ----A---- C:\WINDOWS\system32\mstscax.dll
2008-09-10 11:37:37 ----A---- C:\WINDOWS\system32\mstsc.exe
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\tslabels.ini
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\tskill.exe
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\tscon.exe
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\termsrv.dll
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\shadow.exe
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\rwinsta.exe
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\regini.exe
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\rdpclip.exe
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2008-09-10 11:37:36 ----A---- C:\WINDOWS\system32\qwinsta.exe
2008-09-10 11:37:35 ----D---- C:\WINDOWS\system32\MsDtc
2008-09-10 11:37:35 ----A---- C:\WINDOWS\system32\qprocess.exe
2008-09-10 11:37:35 ----A---- C:\WINDOWS\system32\qappsrv.exe
2008-09-10 11:37:35 ----A---- C:\WINDOWS\system32\mtxoci.dll
2008-09-10 11:37:35 ----A---- C:\WINDOWS\system32\msg.exe
2008-09-10 11:37:35 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2008-09-10 11:37:35 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2008-09-10 11:37:35 ----A---- C:\WINDOWS\system32\logoff.exe
2008-09-10 11:37:35 ----A---- C:\WINDOWS\system32\icaapi.dll
2008-09-10 11:37:35 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2008-09-10 11:37:35 ----A---- C:\WINDOWS\system32\cdmodem.dll
2008-09-10 11:37:34 ----A---- C:\WINDOWS\system32\xolehlp.dll
2008-09-10 11:37:34 ----A---- C:\WINDOWS\system32\msdtctm.dll
2008-09-10 11:37:34 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2008-09-10 11:37:34 ----A---- C:\WINDOWS\system32\msdtclog.dll
2008-09-10 11:37:34 ----A---- C:\WINDOWS\system32\msdtc.exe
2008-09-10 11:37:33 ----D---- C:\WINDOWS\system32\Com
2008-09-10 11:37:33 ----A---- C:\WINDOWS\system32\stclient.dll
2008-09-10 11:37:33 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2008-09-10 11:37:33 ----A---- C:\WINDOWS\system32\mtxex.dll
2008-09-10 11:37:33 ----A---- C:\WINDOWS\system32\mtxdm.dll
2008-09-10 11:37:33 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2008-09-10 11:37:33 ----A---- C:\WINDOWS\system32\comrepl.dll
2008-09-10 11:37:33 ----A---- C:\WINDOWS\system32\comaddin.dll
2008-09-10 11:37:33 ----A---- C:\WINDOWS\system32\colbact.dll
2008-09-10 11:37:33 ----A---- C:\WINDOWS\system32\catsrvps.dll
2008-09-10 11:37:32 ----A---- C:\WINDOWS\system32\comuid.dll
2008-09-10 11:37:32 ----A---- C:\WINDOWS\system32\comsvcs.dll
2008-09-10 11:37:32 ----A---- C:\WINDOWS\system32\comsnap.dll
2008-09-10 11:37:32 ----A---- C:\WINDOWS\system32\clbcatq.dll
2008-09-10 11:37:32 ----A---- C:\WINDOWS\system32\clbcatex.dll
2008-09-10 11:37:32 ----A---- C:\WINDOWS\system32\catsrvut.dll
2008-09-10 11:37:32 ----A---- C:\WINDOWS\system32\catsrv.dll
2008-09-10 11:37:23 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2008-09-10 11:37:22 ----A---- C:\WINDOWS\system32\servdeps.dll
2008-09-10 11:37:22 ----A---- C:\WINDOWS\system32\mmfutil.dll
2008-09-10 11:37:22 ----A---- C:\WINDOWS\system32\licwmi.dll
2008-09-10 11:37:22 ----A---- C:\WINDOWS\system32\cmprops.dll
2008-09-10 06:36:09 ----A---- C:\WINDOWS\system32\h323log.txt
2008-09-10 05:58:19 ----A---- C:\WINDOWS\system32\usbui.dll
2008-09-10 05:55:50 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-09-10 05:55:49 ----A---- C:\WINDOWS\ODBCINST.INI
2008-09-10 05:55:44 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2008-09-10 05:55:44 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2008-09-10 05:55:44 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2008-09-10 05:55:43 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2008-09-10 05:55:43 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2008-09-10 05:55:43 ----RA---- C:\WINDOWS\system32\kbdur.dll
2008-09-10 05:55:43 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2008-09-10 05:55:43 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2008-09-10 05:55:43 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2008-09-10 05:55:43 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2008-09-10 05:55:43 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2008-09-10 05:55:42 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2008-09-10 05:55:42 ----RA---- C:\WINDOWS\system32\kbdru.dll
2008-09-10 05:55:42 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2008-09-10 05:55:42 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2008-09-10 05:55:41 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2008-09-10 05:55:41 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2008-09-10 05:55:41 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2008-09-10 05:55:41 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2008-09-10 05:55:41 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2008-09-10 05:55:41 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2008-09-10 05:55:41 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2008-09-10 05:55:40 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2008-09-10 05:55:40 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2008-09-10 05:55:40 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2008-09-10 05:55:40 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2008-09-10 05:55:40 ----RA---- C:\WINDOWS\system32\kbdest.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdro.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2008-09-10 05:55:38 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2008-09-10 05:55:36 ----A---- C:\WINDOWS\system32\irclass.dll
2008-09-10 05:55:35 ----A---- C:\WINDOWS\system32\spxcoins.dll
2008-09-10 05:55:35 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2008-09-10 05:55:35 ----A---- C:\WINDOWS\system32\dgsetup.dll
2008-09-10 05:55:35 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2008-09-10 05:55:35 ----A---- C:\WINDOWS\system32\batt.dll
2008-09-10 05:55:33 ----A---- C:\WINDOWS\TASKMAN.EXE
2008-09-10 05:55:33 ----A---- C:\WINDOWS\system32\storprop.dll
2008-09-10 05:55:33 ----A---- C:\WINDOWS\system32\CONFIG.TMP
2008-09-10 05:55:33 ----A---- C:\WINDOWS\notepad.exe
2008-09-10 05:55:23 ----ASH---- C:\Documents and Settings\All Users.WINDOWS\Application Data\desktop.ini
2008-09-10 05:55:19 ----RA---- C:\WINDOWS\SET7.tmp
2008-09-10 05:55:16 ----RA---- C:\WINDOWS\SET3.tmp
2008-09-10 05:55:10 ----D---- C:\WINDOWS\system32\CatRoot2
2008-09-10 05:55:10 ----D---- C:\WINDOWS\system32\CatRoot
2008-09-10 05:55:04 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft
2008-09-10 05:49:58 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-09-10 05:49:58 ----RSD---- C:\WINDOWS\Fonts
2008-09-10 05:49:58 ----RD---- C:\WINDOWS\Web
2008-09-10 05:49:58 ----HD---- C:\WINDOWS\inf
2008-09-10 05:49:58 ----D---- C:\WINDOWS\WinSxS
2008-09-10 05:49:58 ----D---- C:\WINDOWS\twain_32
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\wins
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\wbem
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\usmt
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\spool
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\ShellExt
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\Setup
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\ras
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\oobe
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\npp
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\mui
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\inetsrv
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\IME
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\icsxml
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\ias
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\export
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\drivers
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\dhcp
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\config
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\3com_dmi
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\3076
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\2052
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\1054
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\1042
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\1041
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\1037
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\1033
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\1031
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\1028
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32\1025
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system32
2008-09-10 05:49:58 ----D---- C:\WINDOWS\system
2008-09-10 05:49:58 ----D---- C:\WINDOWS\security
2008-09-10 05:49:58 ----D---- C:\WINDOWS\Resources
2008-09-10 05:49:58 ----D---- C:\WINDOWS\repair
2008-09-10 05:49:58 ----D---- C:\WINDOWS\mui
2008-09-10 05:49:58 ----D---- C:\WINDOWS\msapps
2008-09-10 05:49:58 ----D---- C:\WINDOWS\msagent
2008-09-10 05:49:58 ----D---- C:\WINDOWS\Media
2008-09-10 05:49:58 ----D---- C:\WINDOWS\java
2008-09-10 05:49:58 ----D---- C:\WINDOWS\ime
2008-09-10 05:49:58 ----D---- C:\WINDOWS\Help
2008-09-10 05:49:58 ----D---- C:\WINDOWS\Driver Cache
2008-09-10 05:49:58 ----D---- C:\WINDOWS\Debug
2008-09-10 05:49:58 ----D---- C:\WINDOWS\Cursors
2008-09-10 05:49:58 ----D---- C:\WINDOWS\Connection Wizard
2008-09-10 05:49:58 ----D---- C:\WINDOWS\Config
2008-09-10 05:49:58 ----D---- C:\WINDOWS\AppPatch
2008-09-10 05:49:58 ----D---- C:\WINDOWS\addins
2008-09-10 05:49:58 ----D---- C:\WINDOWS
2008-09-10 00:05:29 ----D---- C:\USMT2.UNC

======List of files/folders modified in the last 3 months======

2008-12-05 16:03:48 ----D---- C:\Program Files\Trend Micro
2008-12-05 13:59:36 ----SHD---- C:\Config.Msi
2008-12-05 13:59:36 ----D---- C:\Program Files
2008-12-05 13:42:57 ----D---- C:\Program Files\Mozilla Firefox
2008-11-25 17:06:50 ----D---- C:\Program Files\iTunes
2008-11-25 17:06:25 ----D---- C:\Program Files\iPod
2008-11-25 13:00:51 ----D---- C:\Program Files\LimeWire
2008-11-19 23:54:03 ----D---- C:\Program Files\Common Files
2008-11-19 18:35:15 ----D---- C:\Program Files\MSECache
2008-11-14 17:58:04 ----D---- C:\Program Files\Common Files\Adobe
2008-11-14 17:58:04 ----D---- C:\Program Files\Adobe
2008-11-10 21:11:47 ----HD---- C:\Program Files\InstallShield Installation Information
2008-11-05 22:20:14 ----A---- C:\WINDOWS\system32\ATL71.DLL
2008-10-26 09:51:58 ----D---- C:\Program Files\NOS
2008-10-20 10:24:07 ----D---- C:\Program Files\MySpace
2008-10-20 10:08:16 ----RASH---- C:\boot.ini
2008-10-20 10:08:15 ----A---- C:\WINDOWS\win.ini
2008-10-20 10:08:15 ----A---- C:\WINDOWS\system.ini
2008-10-20 10:07:37 ----SHD---- C:\System Volume Information
2008-10-13 13:38:07 ----D---- C:\Program Files\QuickTime
2008-10-13 13:37:26 ----D---- C:\Program Files\Common Files\Apple
2008-10-06 00:34:17 ----D---- C:\Program Files\Common Files\Kodak
2008-09-29 16:01:14 ----D---- C:\Program Files\Google
2008-09-24 14:31:21 ----D---- C:\Program Files\Internet Explorer
2008-09-23 10:09:28 ----D---- C:\Program Files\Enigma Software Group
2008-09-21 11:12:58 ----D---- C:\Program Files\Windows Media Player
2008-09-21 11:12:57 ----D---- C:\Program Files\Windows Media Connect 2
2008-09-21 11:07:29 ----D---- C:\Program Files\Palm
2008-09-21 11:07:27 ----D---- C:\Program Files\NetMeeting
2008-09-21 11:07:25 ----D---- C:\Program Files\Movie Maker
2008-09-21 11:07:23 ----D---- C:\Program Files\Messenger
2008-09-13 18:26:52 ----D---- C:\Program Files\Windows NT
2008-09-13 18:26:52 ----D---- C:\Program Files\Outlook Express
2008-09-13 18:26:49 ----D---- C:\Program Files\Common Files\System
2008-09-13 01:29:48 ----RASH---- C:\NTDETECT.COM
2008-09-11 07:56:06 ----D---- C:\Program Files\AIM6
2008-09-10 20:45:52 ----D---- C:\Program Files\Yahoo!
2008-09-10 20:21:22 ----D---- C:\Program Files\Java
2008-09-10 20:10:15 ----D---- C:\DELL
2008-09-10 17:09:23 ----D---- C:\Program Files\Common Files\InstallShield
2008-09-10 13:25:55 ----A---- C:\YServer.txt
2008-09-10 12:48:20 ----HD---- C:\Program Files\WindowsUpdate
2008-09-10 11:53:29 ----D---- C:\Documents and Settings
2008-09-10 02:21:11 ----D---- C:\Program Files\MSN Messenger
2008-09-10 02:21:06 ----D---- C:\Program Files\Microsoft ActiveSync
2008-09-09 23:41:53 ----D---- C:\Program Files\Online Services
2008-09-09 23:39:34 ----D---- C:\Program Files\MSN

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R3 ac97intc;Intel® 82801 Audio Driver Install Service (WDM); C:\WINDOWS\system32\drivers\ac97intc.sys [2001-08-17 96256]
R3 FETNDISB;Dynex DX-E101 PCI Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\dxe1015b.sys [2006-09-12 43008]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntelC51;IntelC51; C:\WINDOWS\System32\DRIVERS\IntelC51.sys [2003-11-28 1313509]
R3 IntelC52;IntelC52; C:\WINDOWS\System32\DRIVERS\IntelC52.sys [2003-11-28 659065]
R3 IntelC53;IntelC53; C:\WINDOWS\System32\DRIVERS\IntelC53.sys [2003-11-28 61541]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 mohfilt;mohfilt; C:\WINDOWS\System32\DRIVERS\mohfilt.sys [2003-11-28 36984]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12160]
R3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2004-08-03 1897408]
R3 SNPSTD3;Ezonics VGA camera; C:\WINDOWS\System32\DRIVERS\snpstd3.sys [2007-01-02 10180096]
R3 usbhub;Microsoft USB Standard Hub Driver; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PalmUSBD;PalmUSBD; C:\WINDOWS\system32\drivers\PalmUSBD.sys [2007-12-04 16640]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-09-10 611664]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-11-07 132424]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 Help and Support (helpsvc) ;Help and Support (helpsvc) ; C:\Program Files\tinyproxy\tinyproxy.exe [2008-12-04 8960]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-11-20 536872]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 getPlus® Helper;getPlus® Helper; C:\Program Files\NOS\bin\getPlus_HelperSvc.exe []
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 KodakCCS;Kodak Camera Connection Software; C:\WINDOWS\system32\drivers\KodakCCS.exe []

-----------------EOF-----------------

BC AdBot (Login to Remove)

 


#2 miekiemoes

miekiemoes

    Malware Killer Dog


  • Malware Response Team
  • 19,420 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Belgium
  • Local time:11:02 PM

Posted 05 December 2008 - 06:42 PM

Hi,

I understand that you need help in order to get rid of the malware that is present on your system - But you need to help us first..
I notice that you never scanned with an Antivirus previously before starting this thread - because you don't even have an Antivirus installed!
This is somewhat suicidal in today's digital world.
That's why I want you to install one first!!

* Please install Avira Antivirus: http://www.free-av.com/
This is a free Antivirus.

Perform a full scan with Avira and let it delete everything it is finding.
Then reboot.
After reboot, open your Avira and select "reports".
There doubleclick the report from the Full scan you have done. Click the "Report File" button and copy and paste this report in your next reply together with a new HijackThislog.
Then we'll start from there, because it really makes no sense otherwise that we clean this up manually if an Antivirusscan is not present which should be able to deal with most and prevent further reinfection.

In case you lost internet access after performing above instructions:

In IE: Tools Menu -> Internet Options -> Connections Tab ->Lan Settings > uncheck "use a proxy server" or reconfigure the Proxy server again in case you have set it previously.
In Firefox in Tools Menu -> Options... -> Advanced Tab -> Network Tab -> "Settings" under Connection.
AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! My computer is slow---My Blog---Follow me on Twitter.
My help is ALWAYS FREE, but if you want to donate to help me continue my fight against malware -- click here!
Asking for help via Private Message or Mail will be ignored - So If you need help, post your problem in the forum.

#3 imabitdizzy

imabitdizzy
  • Topic Starter

  • Members
  • 58 posts
  • OFFLINE
  •  
  • Location:Killeen TX
  • Local time:04:02 PM

Posted 05 December 2008 - 07:58 PM

I JUST uninstalled my anti-virus program because it wasnt working. I am doing it all now

#4 miekiemoes

miekiemoes

    Malware Killer Dog


  • Malware Response Team
  • 19,420 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Belgium
  • Local time:11:02 PM

Posted 06 December 2008 - 01:18 AM

Hi,

Strange, because I can't see any trace of an Antivirus in your log. Even though you just uninstalled it, there should be any trace present of it in your log.

Anyway, I'll read the logs later.
AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! My computer is slow---My Blog---Follow me on Twitter.
My help is ALWAYS FREE, but if you want to donate to help me continue my fight against malware -- click here!
Asking for help via Private Message or Mail will be ignored - So If you need help, post your problem in the forum.

#5 imabitdizzy

imabitdizzy
  • Topic Starter

  • Members
  • 58 posts
  • OFFLINE
  •  
  • Location:Killeen TX
  • Local time:04:02 PM

Posted 06 December 2008 - 02:01 PM

I had AVG, but the trial was over. I dont have any idea as to why u can see traces of it, but it was just un-installed. Anyway, this is my report from Avira. Everything seems to be working well. Maybe a little on the slow side, but its all good now.

Avira AntiVir Personal
Report file date: Friday, December 05, 2008 19:58

Scanning for 1075399 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 3) [5.1.2600]
Boot mode: Normally booted
Username: SYSTEM
Computer name: KAYLASHEPHERD

Version information:
BUILD.DAT : 8.2.0.337 16934 Bytes 11/18/2008 13:05:00
AVSCAN.EXE : 8.1.4.10 315649 Bytes 11/18/2008 15:21:26
AVSCAN.DLL : 8.1.4.0 40705 Bytes 5/26/2008 14:56:40
LUKE.DLL : 8.1.4.5 164097 Bytes 6/12/2008 19:44:19
LUKERES.DLL : 8.1.4.0 12033 Bytes 5/26/2008 14:58:52
ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 10/27/2008 18:30:36
ANTIVIR1.VDF : 7.1.0.56 411136 Bytes 11/9/2008 23:57:13
ANTIVIR2.VDF : 7.1.0.160 571392 Bytes 11/30/2008 01:38:29
ANTIVIR3.VDF : 7.1.0.195 219648 Bytes 12/5/2008 01:38:32
Engineversion : 8.2.0.42
AEVDF.DLL : 8.1.0.6 102772 Bytes 10/14/2008 17:05:56
AESCRIPT.DLL : 8.1.1.17 336251 Bytes 12/6/2008 01:38:48
AESCN.DLL : 8.1.1.5 123251 Bytes 11/7/2008 22:06:41
AERDL.DLL : 8.1.1.3 438645 Bytes 11/4/2008 20:58:38
AEPACK.DLL : 8.1.3.4 393591 Bytes 11/11/2008 16:41:39
AEOFFICE.DLL : 8.1.0.32 196987 Bytes 12/6/2008 01:38:45
AEHEUR.DLL : 8.1.0.74 1519990 Bytes 12/6/2008 01:38:43
AEHELP.DLL : 8.1.2.0 119159 Bytes 12/6/2008 01:38:39
AEGEN.DLL : 8.1.1.6 323955 Bytes 12/6/2008 01:38:37
AEEMU.DLL : 8.1.0.9 393588 Bytes 10/14/2008 17:05:56
AECORE.DLL : 8.1.5.2 172405 Bytes 12/6/2008 01:38:35
AEBB.DLL : 8.1.0.3 53618 Bytes 10/14/2008 17:05:56
AVWINLL.DLL : 1.0.0.12 15105 Bytes 7/9/2008 15:40:05
AVPREF.DLL : 8.0.2.0 38657 Bytes 5/16/2008 16:28:01
AVREP.DLL : 8.0.0.2 98344 Bytes 7/31/2008 19:02:15
AVREG.DLL : 8.0.0.1 33537 Bytes 5/9/2008 18:26:40
AVARKT.DLL : 1.0.0.23 307457 Bytes 2/12/2008 15:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 6/12/2008 19:27:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 1/23/2008 00:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 6/12/2008 19:49:40
NETNT.DLL : 8.0.0.1 7937 Bytes 1/25/2008 19:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 6/12/2008 20:48:07
RCTEXT.DLL : 8.0.52.0 86273 Bytes 6/27/2008 20:34:37

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: Friday, December 05, 2008 19:58

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'firefox.exe' - '1' Module(s) have been scanned
Scan process 'tinyproxy.exe' - '1' Module(s) have been scanned
Module is infected -> 'C:\Program Files\tinyproxy\tinyproxy.exe'
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'aolsoftware.exe' - '1' Module(s) have been scanned
Scan process 'aim6.exe' - '1' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
Scan process 'YahooMessenger.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'wscntfy.exe' - '1' Module(s) have been scanned
Scan process 'iPodService.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '1' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'Hotsync.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'iTunesHelper.exe' - '1' Module(s) have been scanned
Scan process 'vsnpstd3.exe' - '1' Module(s) have been scanned
Scan process 'tsnpstd3.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'aawservice.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
Process 'tinyproxy.exe' has been terminated
C:\Program Files\tinyproxy\tinyproxy.exe
[DETECTION] Is the TR/Crypt.PEPM.Gen Trojan
[NOTE] The file was moved to '49a7dc9f.qua'!

38 processes with 37 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!

Starting to scan the registry.

The registry was scanned ( '53' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\Administrator\Shared\04 Track 4.wma
[DETECTION] Is the TR/Wimad.A.Gen Trojan
[NOTE] The file was moved to '4959df39.qua'!
C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy\Recovery\ZapSpot.zip
[DETECTION] Contains suspicious code GEN/PwdZIP
[NOTE] The detection was classified as suspicious.
[NOTE] The file was moved to '49a9f443.qua'!
C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy\Recovery\ZapSpot2.zip
[DETECTION] Contains suspicious code GEN/PwdZIP
[NOTE] The detection was classified as suspicious.
[NOTE] The file was moved to '49a9f446.qua'!
C:\System Volume Information\_restore{294ECC44-F92B-40BD-9362-B3DA5A803446}\RP36\A0002829.exe
[DETECTION] Contains a recognition pattern of the (harmful) BDS/Generic.129483 back-door program
[NOTE] The file was moved to '496a0105.qua'!
C:\System Volume Information\_restore{294ECC44-F92B-40BD-9362-B3DA5A803446}\RP58\A0004039.exe
[DETECTION] Is the TR/Crypt.PEPM.Gen Trojan
[NOTE] The file was moved to '496a01ed.qua'!
C:\WINDOWS\bolivar28.exe
[DETECTION] Is the TR/Dldr.Agent.atbf.1 Trojan
[NOTE] The file was moved to '49a60441.qua'!


End of the scan: Friday, December 05, 2008 23:04
Used time: 3:06:27 Hour(s)

The scan has been done completely.

8792 Scanning directories
362346 Files were scanned
6 viruses and/or unwanted programs were found
2 Files were classified as suspicious:
0 files were deleted
0 files were repaired
7 files were moved to quarantine
0 files were renamed
1 Files cannot be scanned
362337 Files not concerned
2398 Archives were scanned
1 Warnings
7 Notes

#6 miekiemoes

miekiemoes

    Malware Killer Dog


  • Malware Response Team
  • 19,420 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Belgium
  • Local time:11:02 PM

Posted 06 December 2008 - 02:33 PM

Hi,

* Please visit this webpage for instructions for downloading and running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Post the log from ComboFix when you've accomplished that, along with a new HijackThis log.
AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! My computer is slow---My Blog---Follow me on Twitter.
My help is ALWAYS FREE, but if you want to donate to help me continue my fight against malware -- click here!
Asking for help via Private Message or Mail will be ignored - So If you need help, post your problem in the forum.

#7 miekiemoes

miekiemoes

    Malware Killer Dog


  • Malware Response Team
  • 19,420 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Belgium
  • Local time:11:02 PM

Posted 15 December 2008 - 06:39 AM

Due to the lack of feedback, this Topic is closed.
If you need this topic reopened for continuations of existing problems, please request this by sending me a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.
AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! My computer is slow---My Blog---Follow me on Twitter.
My help is ALWAYS FREE, but if you want to donate to help me continue my fight against malware -- click here!
Asking for help via Private Message or Mail will be ignored - So If you need help, post your problem in the forum.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users