Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Do I have a Trojan?


  • This topic is locked This topic is locked
2 replies to this topic

#1 CAPT100LL

CAPT100LL

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:08:29 PM

Posted 09 February 2009 - 09:16 PM

DDS (Ver_09-02-01.01) - NTFSx86
Run by Annette Doggett at 19:45:58.00 on Mon 02/09/2009
Internet Explorer: 8.0.6001.18372 BrowserJavaVersion: 1.6.0_11
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2045.613 [GMT -6:00]

AV: Kaspersky Internet Security *On-access scanning enabled* (Updated)
FW: Kaspersky Internet Security *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe
C:\PROGRA~1\VIRTUA~1\SMARTB~1\SprintDSLAlert.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\CTXFIHLP.EXE
C:\WINDOWS\CTHELPER.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Creative\Sound Blaster X-Fi\DVDAudio\CTDVDDET.EXE
C:\Program Files\Zamaan's Software\Browser Hijack Retaliator 4.1\BHR4.1.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe
C:\Program Files\M-Audio\Fast Track USB\MAUSBFTInst.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\PROGRA~1\SIMPLE~1\PHOTOS~2\data\xtras\mssysmgr.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\Registry Mechanic\RegMech.exe
C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Troopmaster Software\AutoMailer\AutoMailer.exe
C:\Program Files\Virtual Assistant\bin\mpbtn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\UStorSrv.exe
C:\Program Files\RealVNC\VNC4\WinVNC4.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Memeo\AutoBackup\MemeoBackup.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\Annette Doggett\Desktop\windows-kb890830-v2.6.exe
j:\289ef842b6b45e2322\mrtstub.exe
C:\WINDOWS\system32\MRT.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\DAEMON Tools Pro\DTProShellHlp.exe
C:\Program Files\Safari\Safari.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Annette Doggett\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.msn.com
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = 127.0.0.1;*.local
uURLSearchHooks: H - No File
mURLSearchHooks: H - No File
mWinlogon: System=csgjn.exe
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: NoExplorer - No File
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - c:\program files\kaspersky lab\kaspersky internet security 2009\ievkbd.dll
BHO: {6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} - c:\windows\system32\cbXRHbyV.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\program files\bae\BAE.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: Veoh Browser Plug-in: {d0943516-5076-4020-a3b5-aefaf26ab263} - c:\program files\veoh networks\veoh\plugins\reg\VeohToolbar.dll
TB: {C7768536-96F8-4001-B1A2-90EE21279187} - No File
TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File
TB: {4E7BD74F-2B8D-469E-92BE-BF2DFE9AAE2C} - No File
TB: {724D43A0-0D85-11D4-9908-00400523E39A} - No File
TB: {07B18EA9-A523-4961-B6BB-170DE4475CCA} - No File
uRun: [_ctcp] NSYSCPLSTR.exe
uRun: [Veoh] "c:\program files\veoh networks\veoh\VeohClient.exe" /VeohHide
uRun: [SysSupport] browsebar.exe
uRun: [PhotoShow Deluxe Media Manager] c:\progra~1\simple~1\photos~2\data\xtras\mssysmgr.exe
uRun: [forces_elite] AppMasterCenter.exe
uRun: [DW6] "c:\program files\the weather channel fw\desktop\DesktopWeather.exe"
uRun: [DellSupport] "c:\program files\dellsupport\DSAgnt.exe" /startup
uRun: [<NO NAME>]
uRun: [BitTorrent DNA] "c:\program files\dna\btdna.exe"
uRun: [fsm]
uRun: [CubeDesktop]
uRun: [DAEMON Tools Pro Agent] "c:\program files\daemon tools pro\DTProAgent.exe" -autorun
uRun: [AntivirusXP.exe] c:\program files\antivirusxp\AntivirusXP.exe
uRun: [AdwareAlert] c:\program files\adwarealert\AdwareAlert.exe -boot
uRun: [RegistryMechanic] c:\program files\registry mechanic\RegMech.exe /H
mRun: [AudioDrvEmulator] "c:\program files\creative\shared files\module loader\dllml.exe" -1 audiodrvemulator "c:\program files\creative\shared files\module loader\audio emulator\AudDrvEm.dll"
mRun: [DellSupportCenter] "c:\program files\dell support center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [VolPanel] "c:\program files\creative\sound blaster x-fi\volume panel\VolPanel.exe" /r
mRun: [UpdReg] c:\windows\UpdReg.EXE
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [RoxioEngineUtility] "c:\program files\common files\roxio shared\system\EngUtil.exe"
mRun: [RoxioDragToDisc] "c:\program files\roxio\easy cd creator 6\dragtodisc\DrgToDsc.exe"
mRun: [RoxioAudioCentral] "c:\program files\roxio\easy cd creator 6\audiocentral\RxMon.exe"
mRun: [nwiz] nwiz.exe /install
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [Motive SmartBridge] c:\progra~1\virtua~1\smartb~1\SprintDSLAlert.exe
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [ISUSPM Startup] "c:\program files\common files\installshield\updateservice\isuspm.exe" -startup
mRun: [hpqSRMon] c:\program files\hp\digital imaging\bin\hpqSRMon.exe
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [hcsystray] c:\program files\kuma games\hcsystray\hc_tray.exe
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [dscactivate] "c:\program files\dell support center\gs_agent\custom\dsca.exe"
mRun: [CTxfiHlp] CTXFIHLP.EXE
mRun: [CTHelper] CTHELPER.EXE
mRun: [CTDVDDET] "c:\program files\creative\sound blaster x-fi\dvdaudio\CTDVDDET.EXE"
mRun: [BHR4.1] c:\program files\zamaan's software\browser hijack retaliator 4.1\BHR4.1.exe
mRun: [Adobe Photo Downloader] "c:\program files\adobe\photoshop album starter edition\3.2\apps\apdproxy.exe"
mRun: [MyWebSearch Email Plugin] c:\progra~1\mywebs~1\bar\4.bin\mwsoemon.exe
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\bin\AppleSyncNotifier.exe
mRun: [My Web Search Bar Search Scope Monitor] "c:\progra~1\mywebs~1\bar\4.bin\m3SrchMn.exe" /m=2 /w
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [Framework Windows] frmwrk32.exe
mRun: [Hlohiqexe] rundll32.exe "c:\windows\isijefifinohazoz.dll",e
mRun: [AVP] "c:\program files\kaspersky lab\kaspersky internet security 2009\avp.exe"
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
StartupFolder: c:\docume~1\annett~1\startm~1\programs\startup\automa~1.lnk - c:\troopmaster software\automailer\AutoMailer.exe
StartupFolder: c:\docume~1\annett~1\startm~1\programs\startup\hamachi.lnk - c:\program files\hamachi\hamachi.exe
StartupFolder: c:\docume~1\annett~1\startm~1\programs\startup\memeoa~1.lnk - c:\docume~1\annett~1\applic~1\microsoft\installer\{39a908fd-7322-41ae-b374-c7a076b2fc97}\NewShortcut4_51A847D327C24F7797772AF2A4E486ED.exe
StartupFolder: c:\docume~1\annett~1\startm~1\programs\startup\memeoa~2.lnk - c:\program files\memeo\autosync\MemeoLauncher.exe
StartupFolder: c:\docume~1\annett~1\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\virtua~1.lnk - c:\program files\virtual assistant\bin\matcli.exe
uPolicies-explorer: NoSetActiveDesktop = 1 (0x1)
uPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-explorer: NoSetActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
dPolicies-explorer: NoSetActiveDesktop = 1 (0x1)
dPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
dPolicies-system: DisableTaskMgr = 1 (0x1)
IE: &Search - http://edits.mywebsearch.com/toolbaredits/...html?p=ZRman000
IE: Add to Banner Ad Blocker - c:\program files\kaspersky lab\kaspersky internet security 2009\ie_banner_deny.htm
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office12\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - {85E0B171-04FA-11D1-B7DA-00A0C90348D6} - c:\program files\kaspersky lab\kaspersky internet security 2009\SCIEPlgn.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\mi1933~1\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office12\REFIEBAR.DLL
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} - hxxp://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
DPF: {3A7FE611-1994-4EF1-A09F-99456752289D} - hxxp://install.wildtangent.com/ActiveLauncher/ActiveLauncher.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - hxxp://zone.msn.com/bingame/popcaploader_v10.cab
Notify: cbXRHbyV - cbXRHbyV.dll
Notify: klogon - c:\windows\system32\klogon.dll
AppInit_DLLs: biyzza.dll wdjniu.dll rsikgd.dll upthhd.dll tdwtuk.dll dxjpbg.dll wzstjs.dll yorzzb.dll bigrun.dll zwjdhu.dll bnndtj.dll lydthl.dll mjqicz.dll ersiyh.dll hzvnrp.dll nkxyky.dll dybyqf.dll kgpvjv.dll ixezlg.dll oqrzwn.dll neweoc.dll zaihwj.dll vfmidc.dll bqvuhg.dll cozlxu.dll loqota.dll idtvqr.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: {6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} - c:\windows\system32\cbXRHbyV.dll
LSA: Authentication Packages = msv1_0 nwprovau

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\annett~1\applic~1\mozilla\firefox\profiles\j9fwletg.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.msn.com/
FF - plugin: c:\program files\mozilla firefox\plugins\np32neur.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npbittorrent.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npCouponPrinter.dll
FF - plugin: c:\program files\mozilla firefox\plugins\NPInfotl.dll
FF - plugin: c:\program files\mozilla firefox\plugins\NPMyWebS.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npracplug.dll
FF - plugin: c:\program files\opera\program\plugins\np32neur.dll
FF - plugin: c:\program files\opera\program\plugins\npdivx32.dll
FF - plugin: c:\program files\photosynth\npPhotosynthMozilla.dll
FF - plugin: c:\program files\real\realarcade\plugins\mozilla\npracplug.dll
FF - plugin: c:\program files\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\program files\veoh networks\veoh\plugins\noreg\NPVeohVersion.dll
FF - plugin: c:\program files\virtual earth 3d\npVE3D.dll
FF - HiddenExtension: XUL Cache: {ABF47FB8-77FA-4A47-B39A-DC960B5FCF64} - c:\documents and settings\annette doggett\local settings\application data\{ABF47FB8-77FA-4A47-B39A-DC960B5FCF64}

---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - true
============= SERVICES / DRIVERS ===============

R0 kl1;Kl1;c:\windows\system32\drivers\kl1.sys [2008-7-21 121872]
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-1-29 33808]
R1 KLIF;Kaspersky Lab Driver;c:\windows\system32\drivers\klif.sys [2009-1-23 213520]
R1 NEOFLTR_550_11905;Juniper Networks TDI Filter Driver (NEOFLTR_550_11905);c:\windows\system32\drivers\NEOFLTR_550_11905.sys [2007-6-22 63008]
R2 AVP;Kaspersky Internet Security;c:\program files\kaspersky lab\kaspersky internet security 2009\avp.exe [2008-7-29 206088]
R2 IntuitUpdateService;Intuit Update Service;c:\program files\common files\intuit\update service\IntuitUpdateService.exe [2008-10-10 13088]
R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
R2 MSSQL$KINGSCHOOLSKTC;SQL Server (KINGSCHOOLSKTC);c:\program files\microsoft sql server\mssql.2\mssql\binn\sqlservr.exe [2008-11-24 29263712]
R2 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ);c:\program files\microsoft sql server\mssql.1\mssql\binn\sqlservr.exe [2008-11-24 29263712]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2008-9-2 99376]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\drivers\klfltdev.sys [2008-3-13 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2008-4-30 24592]
S3 BRGSp50;BRGSp50 NDIS Protocol Driver;c:\windows\system32\drivers\BRGSp50.sys [2007-3-16 20608]
S3 BW2NDIS5;BW2NDIS5;c:\windows\system32\drivers\bw2ndis5.sys --> c:\windows\system32\drivers\BW2NDIS5.sys [?]
S3 cpuz130;cpuz130;\??\c:\docume~1\annett~1\locals~1\temp\cpuz130\cpuz_x32.sys --> c:\docume~1\annett~1\locals~1\temp\cpuz130\cpuz_x32.sys [?]
S3 iJoyKB;ZooZ Control Keyboard;c:\windows\system32\drivers\ijoykb.sys --> c:\windows\system32\drivers\iJoyKB.sys [?]
S3 iJoyM;ZooZ Control Mouse;c:\windows\system32\drivers\iJoyM.sys [2008-12-11 5504]
S3 MAUSBFT;Service for M-Audio Fast Track USB (WDM);c:\windows\system32\drivers\mausbft.sys [2007-1-5 106112]
S3 NAVENG;NAVENG;c:\progra~1\common~1\symant~1\virusd~1\20090123.003\NAVENG.SYS [2009-1-23 89104]
S3 NAVEX15;NAVEX15;c:\progra~1\common~1\symant~1\virusd~1\20090123.003\NAVEX15.SYS [2009-1-23 876112]
S3 vhidmini;ZooZ Control Joystick;c:\windows\system32\drivers\iJoy.sys [2008-12-11 5632]

=============== Created Last 30 ================

2009-02-09 19:37 129,024 a------- c:\windows\system32\qwzvje.dll
2009-02-09 19:37 129,024 a------- c:\windows\system32\awtqnkjG.dll
2009-02-09 19:12 <DIR> --d----- c:\program files\Trend Micro
2009-02-09 19:04 <DIR> --d----- c:\docume~1\annett~1\applic~1\Uniblue
2009-02-09 19:04 <DIR> --d----- c:\docume~1\alluse~1\applic~1\DriverScanner
2009-02-09 19:03 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\~0
2009-02-09 17:52 129,024 a------- c:\windows\system32\fpxsmi.dll
2009-02-09 17:52 129,024 a------- c:\windows\system32\nnnkHwuU.dll
2009-02-09 16:52 129,024 a------- c:\windows\system32\zlzshk.dll
2009-02-09 16:52 129,024 a------- c:\windows\system32\opnnoMGX.dll
2009-02-09 15:52 129,024 a------- c:\windows\system32\opnNfcCU.dll
2009-02-09 15:52 129,024 a------- c:\windows\system32\lsvlqp.dll
2009-02-09 14:51 129,024 a------- c:\windows\system32\npovrw.dll
2009-02-09 14:51 129,024 a------- c:\windows\system32\pmNefcdA.dll
2009-02-09 13:50 129,024 a------- c:\windows\system32\nzuvxx.dll
2009-02-09 13:50 129,024 a------- c:\windows\system32\efcYQHWq.dll
2009-02-09 12:50 129,024 a------- c:\windows\system32\qhaggb.dll
2009-02-09 12:50 129,024 a------- c:\windows\system32\geBropNg.dll
2009-02-09 11:49 129,024 a------- c:\windows\system32\rmctky.dll
2009-02-09 11:49 129,024 a------- c:\windows\system32\geBqnnKc.dll
2009-02-09 10:48 129,024 a------- c:\windows\system32\jvjsjk.dll
2009-02-09 10:48 129,024 a------- c:\windows\system32\jkkKbxwX.dll
2009-02-09 09:47 129,024 a------- c:\windows\system32\jxasjd.dll
2009-02-09 09:47 129,024 a------- c:\windows\system32\tuvTlkjK.dll
2009-02-09 08:47 129,024 a------- c:\windows\system32\vexlek.dll
2009-02-09 08:47 129,024 a------- c:\windows\system32\ljJDVpqR.dll
2009-02-09 07:47 129,024 a------- c:\windows\system32\uuvrxe.dll
2009-02-09 07:47 129,024 a------- c:\windows\system32\rqRHbCur.dll
2009-02-09 06:46 129,024 a------- c:\windows\system32\oweonj.dll
2009-02-09 06:46 129,024 a------- c:\windows\system32\wvUlkIcd.dll
2009-02-09 06:33 <DIR> -cd-h--- c:\windows\ie8
2009-02-08 21:06 129,024 a------- c:\windows\system32\gnwtbf.dll
2009-02-08 21:06 129,024 a------- c:\windows\system32\jkkijgeE.dll
2009-02-08 20:05 129,024 a------- c:\windows\system32\gxblhg.dll
2009-02-08 20:05 129,024 a------- c:\windows\system32\tuVnKeET.dll
2009-02-08 19:05 129,024 a------- c:\windows\system32\vhrexn.dll
2009-02-08 19:05 129,024 a------- c:\windows\system32\vtUlLCvw.dll
2009-02-08 18:05 129,024 a------- c:\windows\system32\btltes.dll
2009-02-08 18:05 129,024 a------- c:\windows\system32\awTkkjgh.dll
2009-02-08 16:05 129,024 a------- c:\windows\system32\jljgyo.dll
2009-02-08 16:05 129,024 a------- c:\windows\system32\opnLDwvs.dll
2009-02-08 15:04 129,024 a------- c:\windows\system32\ndjube.dll
2009-02-08 15:04 129,024 a------- c:\windows\system32\jkklmJdD.dll
2009-02-08 14:04 129,024 a------- c:\windows\system32\cpcmtb.dll
2009-02-08 14:04 129,024 a------- c:\windows\system32\yaYrrOgF.dll
2009-02-08 13:04 129,024 a------- c:\windows\system32\bnkzas.dll
2009-02-08 13:04 129,024 a------- c:\windows\system32\xXPhHxXq.dll
2009-02-08 12:04 129,024 a------- c:\windows\system32\sphjvi.dll
2009-02-08 12:04 129,024 a------- c:\windows\system32\geBtQHwx.dll
2009-02-08 10:14 129,024 a------- c:\windows\system32\vhfsnu.dll
2009-02-08 10:14 129,024 a------- c:\windows\system32\efcYSiIy.dll
2009-02-08 09:14 129,024 a------- c:\windows\system32\zvvcbe.dll
2009-02-08 09:14 129,024 a------- c:\windows\system32\opnmMfee.dll
2009-02-08 08:14 129,024 a------- c:\windows\system32\oixofx.dll
2009-02-08 08:13 129,024 a------- c:\windows\system32\rqRLecbY.dll
2009-02-08 07:13 129,024 a------- c:\windows\system32\gkpnza.dll
2009-02-08 07:13 129,024 a------- c:\windows\system32\ssqPhIcA.dll
2009-02-08 06:12 129,024 a------- c:\windows\system32\iwxfgp.dll
2009-02-08 06:12 129,024 a------- c:\windows\system32\tuvVPhIB.dll
2009-02-08 05:11 129,024 a------- c:\windows\system32\jbasvg.dll
2009-02-08 05:11 129,024 a------- c:\windows\system32\xxyawxvS.dll
2009-02-08 04:11 129,024 a------- c:\windows\system32\wulhaz.dll
2009-02-08 04:10 129,024 a------- c:\windows\system32\jkkJyYPF.dll
2009-02-08 03:10 129,024 a------- c:\windows\system32\zyseiq.dll
2009-02-08 03:10 129,024 a------- c:\windows\system32\qoMeDWmN.dll
2009-02-08 02:09 129,024 a------- c:\windows\system32\pfitbp.dll
2009-02-08 02:09 129,024 a------- c:\windows\system32\ljJCvUKc.dll
2009-02-08 01:08 129,024 a------- c:\windows\system32\mtubaw.dll
2009-02-08 01:08 129,024 a------- c:\windows\system32\xxyxYOIB.dll
2009-02-08 00:07 129,024 a------- c:\windows\system32\cdwdny.dll
2009-02-08 00:07 129,024 a------- c:\windows\system32\ssqNFUNH.dll
2009-02-07 23:07 129,024 a------- c:\windows\system32\npbvph.dll
2009-02-07 23:07 129,024 a------- c:\windows\system32\vtUnoLDT.dll
2009-02-07 22:06 129,024 a------- c:\windows\system32\fccYOHxU.dll
2009-02-07 22:06 129,024 a------- c:\windows\system32\eblsgf.dll
2009-02-07 22:03 337,408 -------- c:\windows\system32\dllcache\netapi32.dll
2009-02-07 21:06 129,024 a------- c:\windows\system32\qguduq.dll
2009-02-07 21:06 129,024 a------- c:\windows\system32\mlJcbaXo.dll
2009-02-07 20:06 129,024 a------- c:\windows\system32\uuxnrb.dll
2009-02-07 20:06 129,024 a------- c:\windows\system32\vtUomLef.dll
2009-02-07 19:05 129,024 a------- c:\windows\system32\ncraig.dll
2009-02-07 19:05 129,024 a------- c:\windows\system32\xxywWpnn.dll
2009-02-07 18:05 129,024 a------- c:\windows\system32\teiyst.dll
2009-02-07 18:05 129,024 a------- c:\windows\system32\rqRLefFV.dll
2009-02-07 17:10 <DIR> --d----- c:\docume~1\annett~1\applic~1\Abacus
2009-02-07 17:04 129,024 a------- c:\windows\system32\xpkgmt.dll
2009-02-07 17:04 129,024 a------- c:\windows\system32\geBstRIx.dll
2009-02-07 16:04 129,024 a------- c:\windows\system32\mudvzn.dll
2009-02-07 16:04 129,024 a------- c:\windows\system32\mlJDwXpp.dll
2009-02-07 15:04 129,024 a------- c:\windows\system32\yfdfmh.dll
2009-02-07 15:04 129,024 a------- c:\windows\system32\iifgEwvU.dll
2009-02-07 14:04 129,024 a------- c:\windows\system32\qglogd.dll
2009-02-07 14:04 129,024 a------- c:\windows\system32\tuvWnKee.dll
2009-02-07 13:03 129,024 a------- c:\windows\system32\widrji.dll
2009-02-07 13:03 129,024 a------- c:\windows\system32\ssqOGARL.dll
2009-02-07 12:03 129,024 a------- c:\windows\system32\yfbult.dll
2009-02-07 12:03 129,024 a------- c:\windows\system32\wvUmlkiG.dll
2009-02-07 11:03 129,024 a------- c:\windows\system32\uqpfig.dll
2009-02-07 11:03 129,024 a------- c:\windows\system32\mlJDutqp.dll
2009-02-07 10:29 <DIR> --d----- c:\docume~1\annett~1\applic~1\AdwareAlert
2009-02-07 10:03 129,024 a------- c:\windows\system32\mcaikm.dll
2009-02-07 10:03 129,024 a------- c:\windows\system32\qoMdBQGX.dll
2009-02-07 09:02 129,024 a------- c:\windows\system32\mhcvvj.dll
2009-02-07 09:02 129,024 a------- c:\windows\system32\urqOIccD.dll
2009-02-07 08:01 129,024 a------- c:\windows\system32\jwokaw.dll
2009-02-07 08:01 129,024 a------- c:\windows\system32\urqQgDWQ.dll
2009-02-07 07:00 129,024 a------- c:\windows\system32\hgpfwz.dll
2009-02-07 07:00 129,024 a------- c:\windows\system32\opnmMcaa.dll
2009-02-06 22:31 129,024 a------- c:\windows\system32\qkqjkn.dll
2009-02-06 22:31 129,024 a------- c:\windows\system32\ssqNDuRJ.dll
2009-02-06 21:30 129,024 a------- c:\windows\system32\mcfkld.dll
2009-02-06 21:30 129,024 a------- c:\windows\system32\iiFWqPIX.dll
2009-02-06 20:30 129,024 a------- c:\windows\system32\zmgayl.dll
2009-02-06 20:30 129,024 a------- c:\windows\system32\urqOIabB.dll
2009-02-06 19:29 129,024 a------- c:\windows\system32\nbumdq.dll
2009-02-06 19:29 129,024 a------- c:\windows\system32\byxUKdbC.dll
2009-02-06 18:28 129,024 a------- c:\windows\system32\cgxvql.dll
2009-02-06 18:28 129,024 a------- c:\windows\system32\iifdbXRH.dll
2009-02-06 17:27 129,024 a------- c:\windows\system32\kmeehy.dll
2009-02-06 17:27 129,024 a------- c:\windows\system32\efcCttTm.dll
2009-02-06 16:27 129,024 a------- c:\windows\system32\ewsdcz.dll
2009-02-06 16:27 129,024 a------- c:\windows\system32\awtuuUkj.dll
2009-02-06 15:27 129,024 a------- c:\windows\system32\dxazna.dll
2009-02-06 15:27 129,024 a------- c:\windows\system32\wvUlLeEV.dll
2009-02-06 14:26 129,024 a------- c:\windows\system32\mqzbek.dll
2009-02-06 14:26 129,024 a------- c:\windows\system32\khfEtuUM.dll
2009-02-06 13:26 129,024 a------- c:\windows\system32\jkcatu.dll
2009-02-06 13:26 129,024 a------- c:\windows\system32\iifdbYQJ.dll
2009-02-06 12:25 129,024 a------- c:\windows\system32\msnhsg.dll
2009-02-06 12:25 129,024 a------- c:\windows\system32\pmnkIAts.dll
2009-02-06 11:25 129,024 a------- c:\windows\system32\gzqblu.dll
2009-02-06 11:25 129,024 a------- c:\windows\system32\pmnmmNgG.dll
2009-02-06 10:25 129,024 a------- c:\windows\system32\idtvqr.dll
2009-02-06 10:25 129,024 a------- c:\windows\system32\jkkKbYpO.dll
2009-02-06 09:24 129,024 a------- c:\windows\system32\loqota.dll
2009-02-06 09:24 129,024 a------- c:\windows\system32\mlJcARKb.dll
2009-02-06 08:24 129,024 a------- c:\windows\system32\cozlxu.dll
2009-02-06 08:24 129,024 a------- c:\windows\system32\yayvwTNH.dll
2009-02-06 07:23 129,024 a------- c:\windows\system32\bqvuhg.dll
2009-02-06 07:23 129,024 a------- c:\windows\system32\rqRJYoOg.dll
2009-02-05 21:04 129,024 a------- c:\windows\system32\vfmidc.dll
2009-02-05 21:04 129,024 a------- c:\windows\system32\vtUmLcAs.dll
2009-02-05 20:03 129,024 a------- c:\windows\system32\zaihwj.dll
2009-02-05 20:03 129,024 a------- c:\windows\system32\qoMffDvu.dll
2009-02-05 19:03 129,024 a------- c:\windows\system32\neweoc.dll
2009-02-05 19:03 129,024 a------- c:\windows\system32\urqRHyYp.dll
2009-02-05 18:02 129,024 a------- c:\windows\system32\oqrzwn.dll
2009-02-05 18:02 129,024 a------- c:\windows\system32\tuvuTlIb.dll
2009-02-05 17:02 129,024 a------- c:\windows\system32\ixezlg.dll
2009-02-05 17:02 129,024 a------- c:\windows\system32\ddcCSkiG.dll
2009-02-05 16:02 129,024 a------- c:\windows\system32\kgpvjv.dll
2009-02-05 16:02 129,024 a------- c:\windows\system32\hgGaaAQh.dll
2009-02-05 15:02 129,024 a------- c:\windows\system32\dybyqf.dll
2009-02-05 15:02 129,024 a------- c:\windows\system32\ddcYoNfC.dll
2009-02-05 14:01 129,024 a------- c:\windows\system32\nkxyky.dll
2009-02-05 14:01 129,024 a------- c:\windows\system32\geBspqRK.dll
2009-02-05 13:01 129,024 a------- c:\windows\system32\txzewv.dll
2009-02-05 13:01 129,024 a------- c:\windows\system32\yayAqrrQ.dll
2009-02-05 12:00 129,024 a------- c:\windows\system32\egsdbs.dll
2009-02-05 12:00 129,024 a------- c:\windows\system32\yaywtsPH.dll
2009-02-05 11:00 129,024 a------- c:\windows\system32\cjtydj.dll
2009-02-05 11:00 129,024 a------- c:\windows\system32\geBrPgGx.dll
2009-02-05 09:59 129,024 a------- c:\windows\system32\kovlgg.dll
2009-02-05 09:59 129,024 a------- c:\windows\system32\qoMcAspP.dll
2009-02-05 08:58 129,024 a------- c:\windows\system32\hzvnrp.dll
2009-02-05 08:58 129,024 a------- c:\windows\system32\tuvSljiH.dll
2009-02-05 07:57 129,024 a------- c:\windows\system32\ersiyh.dll
2009-02-05 07:57 129,024 a------- c:\windows\system32\ssqRHbaa.dll
2009-02-04 20:45 129,024 a------- c:\windows\system32\npjedc.dll
2009-02-04 20:45 129,024 a------- c:\windows\system32\iiffCtQH.dll
2009-02-04 19:44 129,024 a------- c:\windows\system32\atcjyf.dll
2009-02-04 19:44 129,024 a------- c:\windows\system32\aWOICSLB.dll
2009-02-04 18:44 129,024 a------- c:\windows\system32\ztcmrc.dll
2009-02-04 18:44 129,024 a------- c:\windows\system32\mlJdCVMg.dll
2009-02-04 18:36 <DIR> --d----- c:\program files\Ventrilo
2009-02-04 18:36 262 a------- c:\windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
2009-02-04 18:33 25,280 a------- c:\windows\system32\drivers\hamachi.sys
2009-02-04 18:33 <DIR> --d----- c:\program files\Hamachi
2009-02-04 17:44 129,024 a------- c:\windows\system32\mjqicz.dll
2009-02-04 17:44 129,024 a------- c:\windows\system32\ssqRLcYP.dll
2009-02-04 16:43 129,024 a------- c:\windows\system32\lydthl.dll
2009-02-04 16:43 129,024 a------- c:\windows\system32\khfEtrqr.dll
2009-02-04 15:33 129,024 a------- c:\windows\system32\bnndtj.dll
2009-02-04 15:33 129,024 a------- c:\windows\system32\xxyxUKca.dll
2009-02-04 14:33 129,024 a------- c:\windows\system32\zwjdhu.dll
2009-02-04 14:33 129,024 a------- c:\windows\system32\wvUnOiGx.dll
2009-02-04 13:33 129,024 a------- c:\windows\system32\bigrun.dll
2009-02-04 13:33 129,024 a------- c:\windows\system32\mlJDutqq.dll
2009-02-04 12:32 129,024 a------- c:\windows\system32\yorzzb.dll
2009-02-04 12:32 129,024 a------- c:\windows\system32\wvUnLFUk.dll
2009-02-04 11:31 129,024 a------- c:\windows\system32\wzstjs.dll
2009-02-04 11:31 129,024 a------- c:\windows\system32\wvUllLfG.dll
2009-02-04 10:31 129,024 a------- c:\windows\system32\dxjpbg.dll
2009-02-04 10:31 129,024 a------- c:\windows\system32\qoMcDtQG.dll
2009-02-04 09:30 129,024 a------- c:\windows\system32\tdwtuk.dll
2009-02-04 09:30 129,024 a------- c:\windows\system32\nnnmMDtQ.dll
2009-02-04 08:30 129,024 a------- c:\windows\system32\upthhd.dll
2009-02-04 08:30 129,024 a------- c:\windows\system32\vtUnNfCU.dll
2009-02-04 07:30 129,024 a------- c:\windows\system32\rsikgd.dll
2009-02-04 07:30 129,024 a------- c:\windows\system32\efcyYqpP.dll
2009-02-04 06:29 129,024 a------- c:\windows\system32\wdjniu.dll
2009-02-04 06:29 129,024 a------- c:\windows\system32\opnmJaxy.dll
2009-02-03 20:54 129,024 a------- c:\windows\system32\biyzza.dll
2009-02-03 20:54 129,024 a------- c:\windows\system32\wvUmJbBt.dll
2009-02-03 19:53 129,024 a------- c:\windows\system32\ionddq.dll
2009-02-03 19:53 129,024 a------- c:\windows\system32\iifddApq.dll
2009-02-03 18:53 129,024 a------- c:\windows\system32\vhzauv.dll
2009-02-03 18:53 129,024 a------- c:\windows\system32\hgGyabAS.dll
2009-02-03 17:52 129,024 a------- c:\windows\system32\xwxmnv.dll
2009-02-03 17:52 129,024 a------- c:\windows\system32\vtUnoPFX.dll
2009-02-03 16:52 129,024 a------- c:\windows\system32\cojpih.dll
2009-02-03 16:52 129,024 a------- c:\windows\system32\urqPjGaW.dll
2009-02-03 15:51 129,024 a------- c:\windows\system32\tbeqyh.dll
2009-02-03 15:51 129,024 a------- c:\windows\system32\hgGxXqRI.dll
2009-02-03 14:51 129,024 a------- c:\windows\system32\rwecjo.dll
2009-02-03 14:51 129,024 a------- c:\windows\system32\iiffGXOE.dll
2009-02-03 13:50 129,024 a------- c:\windows\system32\dspiqx.dll
2009-02-03 13:50 129,024 a------- c:\windows\system32\nnnnMFur.dll
2009-02-03 12:50 129,024 a------- c:\windows\system32\jyvaqr.dll
2009-02-03 12:50 129,024 a------- c:\windows\system32\vtUkhhih.dll
2009-02-03 11:49 129,024 a------- c:\windows\system32\heikkc.dll
2009-02-03 11:49 129,024 a------- c:\windows\system32\geBtSJyX.dll
2009-02-03 10:49 129,024 a------- c:\windows\system32\niwcbg.dll
2009-02-03 10:49 129,024 a------- c:\windows\system32\xxyxWMGA.dll
2009-02-03 09:48 129,024 a------- c:\windows\system32\vulnio.dll
2009-02-03 09:48 129,024 a------- c:\windows\system32\byXQKDwu.dll
2009-02-03 08:28 129,024 a------- c:\windows\system32\canesf.dll
2009-02-03 08:28 129,024 a------- c:\windows\system32\jkkKeDWQ.dll
2009-02-03 07:27 129,024 a------- c:\windows\system32\iakuss.dll
2009-02-03 07:27 129,024 a------- c:\windows\system32\tuvTjigE.dll
2009-02-03 06:27 129,024 a------- c:\windows\system32\huqdgb.dll
2009-02-03 06:27 129,024 a------- c:\windows\system32\xxyxYOgD.dll
2009-02-02 21:28 129,024 a------- c:\windows\system32\wlgksa.dll
2009-02-02 21:28 129,024 a------- c:\windows\system32\fccbYRkk.dll
2009-02-02 20:27 129,024 a------- c:\windows\system32\mwimoc.dll
2009-02-02 20:27 129,024 a------- c:\windows\system32\geBsrSll.dll
2009-02-02 19:27 129,024 a------- c:\windows\system32\rgihqu.dll
2009-02-02 19:27 129,024 a------- c:\windows\system32\opnkhIXN.dll
2009-02-02 18:26 129,024 a------- c:\windows\system32\rtguzz.dll
2009-02-02 18:26 129,024 a------- c:\windows\system32\mlJYpMfd.dll
2009-02-02 17:26 129,024 a------- c:\windows\system32\tqguvc.dll
2009-02-02 17:26 129,024 a------- c:\windows\system32\iifcbXpm.dll
2009-02-02 16:25 129,024 a------- c:\windows\system32\apynpv.dll
2009-02-02 16:25 129,024 a------- c:\windows\system32\urqPFyXp.dll
2009-02-02 15:25 129,024 a------- c:\windows\system32\oroqro.dll
2009-02-02 15:25 129,024 a------- c:\windows\system32\efcApQhF.dll
2009-02-02 14:24 129,024 a------- c:\windows\system32\wmdlvo.dll
2009-02-02 14:24 129,024 a------- c:\windows\system32\khfETnlI.dll
2009-02-02 13:24 129,024 a------- c:\windows\system32\tsosic.dll
2009-02-02 13:24 129,024 a------- c:\windows\system32\cbXqnKaX.dll
2009-02-02 12:23 129,024 a------- c:\windows\system32\radihp.dll
2009-02-02 12:23 129,024 a------- c:\windows\system32\ddcAqRjH.dll
2009-02-02 11:22 129,024 a------- c:\windows\system32\wsacph.dll
2009-02-02 11:22 129,024 a------- c:\windows\system32\urqNDtsS.dll
2009-02-02 10:21 129,024 a------- c:\windows\system32\uvaxzq.dll
2009-02-02 10:21 129,024 a------- c:\windows\system32\vtUlKAPH.dll
2009-02-02 09:21 129,024 a------- c:\windows\system32\maekog.dll
2009-02-02 09:21 129,024 a------- c:\windows\system32\cbXPhhGX.dll
2009-02-02 08:20 129,024 a------- c:\windows\system32\kopzbu.dll
2009-02-02 08:20 129,024 a------- c:\windows\system32\pmnllkif.dll
2009-02-02 07:20 129,024 a------- c:\windows\system32\rivaqd.dll
2009-02-02 07:20 129,024 a------- c:\windows\system32\ddcAsqPj.dll
2009-02-02 06:19 129,024 a------- c:\windows\system32\rzjvna.dll
2009-02-02 06:19 129,024 a------- c:\windows\system32\rqRlKBQH.dll
2009-02-01 23:18 129,024 a------- c:\windows\system32\txwzut.dll
2009-02-01 23:18 129,024 a------- c:\windows\system32\ddcAqqNh.dll
2009-02-01 22:18 129,024 a------- c:\windows\system32\iohcva.dll
2009-02-01 22:18 129,024 a------- c:\windows\system32\yayApQJc.dll
2009-02-01 21:17 129,024 a------- c:\windows\system32\sxxrpv.dll
2009-02-01 21:17 129,024 a------- c:\windows\system32\geBurpPf.dll
2009-02-01 20:17 129,024 a------- c:\windows\system32\srorpn.dll
2009-02-01 20:17 129,024 a------- c:\windows\system32\cbxwwVPF.dll
2009-02-01 19:16 129,024 a------- c:\windows\system32\vakotq.dll
2009-02-01 19:16 129,024 a------- c:\windows\system32\kHAQihEV.dll
2009-02-01 18:15 129,024 a------- c:\windows\system32\dubvur.dll
2009-02-01 18:15 129,024 a------- c:\windows\system32\pmnnMgDu.dll
2009-02-01 17:15 129,024 a------- c:\windows\system32\wvvbgd.dll
2009-02-01 17:15 129,024 a------- c:\windows\system32\rqRHbxXR.dll
2009-02-01 16:14 129,024 a------- c:\windows\system32\sdcmhh.dll
2009-02-01 16:14 129,024 a------- c:\windows\system32\awtrQjih.dll
2009-02-01 15:14 129,024 a------- c:\windows\system32\siwyke.dll
2009-02-01 15:13 129,024 a------- c:\windows\system32\fccYSMDu.dll
2009-02-01 14:13 129,024 a------- c:\windows\system32\vqcjti.dll
2009-02-01 14:13 129,024 a------- c:\windows\system32\ljJyyAst.dll
2009-02-01 13:13 129,024 a------- c:\windows\system32\zupznp.dll
2009-02-01 13:12 129,024 a------- c:\windows\system32\awtQGWOf.dll
2009-02-01 12:12 129,024 a------- c:\windows\system32\nirkrz.dll
2009-02-01 12:12 129,024 a------- c:\windows\system32\nnnoOghg.dll
2009-02-01 11:12 129,024 a------- c:\windows\system32\xumlzz.dll
2009-02-01 11:12 129,024 a------- c:\windows\system32\yayyvVno.dll
2009-02-01 10:18 <DIR> --d----- c:\program files\Photosynth
2009-02-01 10:12 129,024 a------- c:\windows\system32\dsdzrv.dll
2009-02-01 10:12 129,024 a------- c:\windows\system32\cbXQkkJA.dll
2009-02-01 09:11 129,024 a------- c:\windows\system32\bssoqa.dll
2009-02-01 09:11 129,024 a------- c:\windows\system32\urqOIyxW.dll
2009-01-31 21:02 129,024 a------- c:\windows\system32\cazrsb.dll
2009-01-31 21:02 129,024 a------- c:\windows\system32\iifefGwW.dll
2009-01-31 20:01 129,024 a------- c:\windows\system32\fthwqd.dll
2009-01-31 20:01 129,024 a------- c:\windows\system32\ljJCtsQi.dll
2009-01-31 19:00 129,024 a------- c:\windows\system32\kxfmwu.dll
2009-01-31 19:00 129,024 a------- c:\windows\system32\khfEWNhH.dll
2009-01-31 18:00 129,024 a------- c:\windows\system32\umnelr.dll
2009-01-31 18:00 129,024 a------- c:\windows\system32\iifgGVNe.dll
2009-01-31 17:00 129,024 a------- c:\windows\system32\qpcicz.dll
2009-01-31 17:00 129,024 a------- c:\windows\system32\yayyYQHB.dll
2009-01-31 15:59 129,024 a------- c:\windows\system32\nsdcmi.dll
2009-01-31 15:59 129,024 a------- c:\windows\system32\rqRKETlM.dll
2009-01-31 14:58 129,024 a------- c:\windows\system32\ldlfoa.dll
2009-01-31 14:58 129,024 a------- c:\windows\system32\hgGabYQH.dll
2009-01-31 13:58 129,024 a------- c:\windows\system32\lxcfps.dll
2009-01-31 13:58 129,024 a------- c:\windows\system32\geBtQkLb.dll
2009-01-31 13:52 35,328 a------- c:\windows\system32\cbXRHbyV.dll
2009-01-29 11:13 597,504 -------- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-01-29 11:13 575,488 -------- c:\windows\system32\dllcache\xpsshhdr.dll
2009-01-29 11:13 89,088 -------- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-01-29 11:13 1,676,288 -------- c:\windows\system32\dllcache\xpssvcs.dll
2009-01-29 11:12 <DIR> --d----- c:\windows\SxsCaPendDel
2009-01-29 10:31 <DIR> --dsh--- c:\documents and settings\annette doggett\IECompatCache
2009-01-28 20:28 <DIR> --d----- c:\program files\Real Environment Xtreme
2009-01-27 18:23 26 a------- c:\windows\Zone.Identifier
2009-01-27 16:08 <DIR> --d----- c:\docume~1\annett~1\applic~1\BitTorrent
2009-01-27 16:07 <DIR> --d----- c:\program files\BitTorrent
2009-01-27 07:40 <DIR> --dsh--- c:\documents and settings\annette doggett\PrivacIE
2009-01-27 07:40 <DIR> --dsh--- c:\documents and settings\annette doggett\IETldCache
2009-01-26 22:06 79,360 -------- c:\windows\system32\dllcache\iecompat.dll
2009-01-25 16:46 8 a------- c:\windows\system32\nvModes.dat
2009-01-25 16:41 27,672 a----r-- c:\windows\system32\drivers\Entech.sys
2009-01-25 16:41 <DIR> --d----- c:\windows\system32\Futuremark
2009-01-25 16:41 <DIR> --d----- c:\program files\common files\Futuremark Shared
2009-01-25 16:40 206,793 a------- c:\windows\system32\nvapps.nvb
2009-01-25 11:23 <DIR> --dsh--- c:\windows\system32\twain32
2009-01-25 11:16 <DIR> --d----- c:\docume~1\alluse~1\applic~1\VistaCodecs
2009-01-25 11:01 754 a------- c:\windows\WORDPAD.INI
2009-01-24 16:18 4,389 a------- c:\windows\system32\%LocalXml%
2009-01-23 21:40 101,287 a------- c:\windows\system32\drivers\klin.dat
2009-01-23 21:40 89,601 a------- c:\windows\system32\drivers\klick.dat
2009-01-23 21:39 <DIR> --d----- c:\program files\Kaspersky Lab
2009-01-23 21:39 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Kaspersky Lab
2009-01-23 20:55 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Kaspersky Lab Setup Files
2009-01-23 17:44 <DIR> --d-h--- c:\windows\system32\GroupPolicy
2009-01-23 14:28 6,542,798 a------- c:\windows\setupapi.log.0.old
2009-01-23 12:50 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2009-01-23 12:50 <DIR> --d----- c:\program files\SUPERAntiSpyware
2009-01-23 11:42 133,120 a------- c:\windows\isijefifinohazoz.dll
2009-01-23 10:52 527 a------- c:\windows\system32\win32hlp.cnf
2009-01-23 10:51 1 a------- c:\windows\system32\uniq.tll
2009-01-23 10:51 1 a------- c:\windows\system32\test.ttt
2009-01-23 10:51 25,088 a------- c:\windows\system32\303350.exe
2009-01-18 17:46 <DIR> --d----- c:\docume~1\annett~1\applic~1\Autodesk
2009-01-18 17:36 <DIR> --d----- c:\program files\Autodesk
2009-01-18 17:05 <DIR> --d----- C:\Autodesk
2009-01-18 15:20 <DIR> --d----- c:\program files\common files\eSellerate
2009-01-18 15:19 <DIR> --d----- c:\program files\Memeo
2009-01-18 15:19 <DIR> --ds---- c:\docume~1\alluse~1\applic~1\Memeo
2009-01-18 15:18 <DIR> --d----- c:\program files\Western Digital Technologies
2009-01-15 08:19 1,253,376 a------- c:\windows\system32\NvPVEnc.ax
2009-01-15 02:22 49,152 -------- c:\windows\system32\msrating.dll.mui
2009-01-15 02:21 2,560 -------- c:\windows\system32\mshta.exe.mui
2009-01-15 02:19 4,096 -------- c:\windows\system32\ie4uinit.exe.mui
2009-01-15 02:19 81,920 -------- c:\windows\system32\iedkcs32.dll.mui
2009-01-15 02:17 636,264 -------- c:\windows\system32\dllcache\iexplore.exe
2009-01-15 02:17 392,040 -------- c:\windows\system32\dllcache\iedkcs32.dll
2009-01-15 02:13 5,888,512 -------- c:\windows\system32\dllcache\mshtml.dll
2009-01-15 02:06 1,182,720 -------- c:\windows\system32\dllcache\urlmon.dll
2009-01-15 02:06 1,467,392 -------- c:\windows\system32\dllcache\inetcpl.cpl
2009-01-15 02:06 236,544 -------- c:\windows\system32\dllcache\webcheck.dll
2009-01-15 02:06 105,984 -------- c:\windows\system32\dllcache\url.dll
2009-01-15 02:05 911,872 -------- c:\windows\system32\dllcache\wininet.dll
2009-01-15 02:05 193,536 -------- c:\windows\system32\dllcache\msrating.dll
2009-01-15 02:05 109,056 -------- c:\windows\system32\dllcache\occache.dll
2009-01-15 02:05 43,008 -------- c:\windows\system32\dllcache\licmgr10.dll
2009-01-15 02:04 755,200 -------- c:\windows\system32\dllcache\VGX.dll
2009-01-15 02:04 18,944 -------- c:\windows\system32\dllcache\corpol.dll
2009-01-15 02:04 25,600 -------- c:\windows\system32\dllcache\jsproxy.dll
2009-01-15 02:03 724,992 -------- c:\windows\system32\dllcache\jscript.dll
2009-01-15 02:03 228,352 -------- c:\windows\system32\dllcache\ieaksie.dll
2009-01-15 02:03 125,952 -------- c:\windows\system32\dllcache\ieakeng.dll
2009-01-15 02:03 420,352 -------- c:\windows\system32\dllcache\vbscript.dll
2009-01-15 02:03 72,704 -------- c:\windows\system32\dllcache\admparse.dll
2009-01-15 02:03 172,544 -------- c:\windows\system32\dllcache\ie4uinit.exe
2009-01-15 02:03 163,840 -------- c:\windows\system32\dllcache\ieakui.dll
2009-01-15 02:03 71,680 -------- c:\windows\system32\dllcache\iesetup.dll
2009-01-15 02:03 94,720 -------- c:\windows\system32\dllcache\inseng.dll
2009-01-15 02:03 55,808 -------- c:\windows\system32\dllcache\iernonce.dll
2009-01-15 02:03 128,512 -------- c:\windows\system32\dllcache\advpack.dll
2009-01-15 02:02 611,840 -------- c:\windows\system32\dllcache\mstime.dll
2009-01-15 02:01 183,808 -------- c:\windows\system32\dllcache\iepeers.dll
2009-01-15 02:01 34,304 -------- c:\windows\system32\dllcache\imgutil.dll
2009-01-15 02:01 348,160 -------- c:\windows\system32\dllcache\dxtmsft.dll
2009-01-15 02:01 46,592 -------- c:\windows\system32\dllcache\pngfilt.dll
2009-01-15 02:01 216,064 -------- c:\windows\system32\dllcache\dxtrans.dll
2009-01-15 02:01 66,560 -------- c:\windows\system32\dllcache\mshtmled.dll
2009-01-15 02:00 48,128 -------- c:\windows\system32\dllcache\mshtmler.dll
2009-01-15 02:00 1,639,936 -------- c:\windows\system32\dllcache\mshtml.tlb
2009-01-15 02:00 45,568 -------- c:\windows\system32\dllcache\mshta.exe
2009-01-15 02:00 66,560 -------- c:\windows\system32\dllcache\tdc.ocx
2009-01-15 01:53 68,608 -------- c:\windows\system32\dllcache\hmmapi.dll
2009-01-15 01:50 156,160 -------- c:\windows\system32\dllcache\msls31.dll
2009-01-14 15:55 <DIR> --d----- c:\documents and settings\annette doggett\IGC
2009-01-14 15:53 245,408 -----r-- c:\windows\system32\unicows.dll
2009-01-14 15:53 <DIR> --d----- c:\program files\IGC
2009-01-13 16:47 <DIR> --d----- c:\program files\common files\AnswerWorks 5.0
2009-01-13 16:06 <DIR> --d----- c:\program files\FriendBlasterPro

==================== Find3M ====================

2009-02-08 18:32 112,336 ac--h--- c:\windows\system32\mlfcache.dat
2009-02-04 08:45 33,808 a------- c:\windows\system32\drivers\klbg.sys
2009-01-23 10:52 125,440 a------- c:\windows\system32\userinit.exe
2009-01-15 02:05 911,872 a------- c:\windows\system32\wininet.dll
2009-01-15 02:05 43,008 a------- c:\windows\system32\licmgr10.dll
2009-01-15 02:04 18,944 a------- c:\windows\system32\corpol.dll
2009-01-15 02:03 420,352 a------- c:\windows\system32\vbscript.dll
2009-01-15 02:03 72,704 a------- c:\windows\system32\admparse.dll
2009-01-15 02:03 71,680 a------- c:\windows\system32\iesetup.dll
2009-01-15 02:01 34,304 a------- c:\windows\system32\imgutil.dll
2009-01-15 02:00 48,128 a------- c:\windows\system32\mshtmler.dll
2009-01-15 02:00 45,568 a------- c:\windows\system32\mshta.exe
2009-01-15 01:50 156,160 a------- c:\windows\system32\msls31.dll
2009-01-08 20:40 124,464 ac------ c:\windows\system32\drivers\SYMEVENT.SYS
2009-01-08 20:40 60,808 ac------ c:\windows\system32\S32EVNT1.DLL
2009-01-08 20:40 10,635 ac------ c:\windows\system32\drivers\SYMEVENT.CAT
2009-01-08 20:40 806 ac------ c:\windows\system32\drivers\SYMEVENT.INF
2009-01-07 11:28 453,152 ac------ c:\windows\system32\NVUNINST.EXE
2008-12-28 18:06 717,296 a------- c:\windows\system32\drivers\sptd.sys
2008-12-18 06:28 410,984 a------- c:\windows\system32\deploytk.dll
2008-12-12 11:18 87,336 a------- c:\windows\system32\dns-sd.exe
2008-12-12 11:11 61,440 a------- c:\windows\system32\dnssd.dll
2008-11-24 22:31 2,248,544 a------- c:\windows\system32\sqlncli.dll
2008-11-24 22:31 65,888 a------- c:\windows\system32\sqlctr90.dll
2008-03-26 12:36 39,744 ac------ c:\docume~1\annett~1\applic~1\wklnhst.dat
2007-01-28 18:38 83,888 ac------ c:\docume~1\annett~1\applic~1\GDIPFONTCACHEV1.DAT
2006-06-27 14:51 774,144 ac------ c:\program files\RngInterstitial.dll
2006-04-12 09:24 251 ac------ c:\program files\wt3d.ini
2008-08-31 08:15 32,768 ac-sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008083120080901\index.dat

============= FINISH: 19:50:10.76 ===============

BC AdBot (Login to Remove)

 


#2 fenzodahl512

fenzodahl512

  • Members
  • 6,738 posts
  • OFFLINE
  •  
  • Local time:08:29 AM

Posted 11 February 2009 - 03:36 AM

Do I have a Trojan?


No.. Your computer has lots of Trojans :thumbup2:


Please download Malwarebytes' Anti-Malware from HERE or HERE

Note: If you already have Malwarebytes' Anti-Malware, just run and update it.. Then do a "Perform Full Scan"

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Full Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.




NEXT


Please download RSIT by random/random and save it to your Desktop.
  • Double click on RSIT.exe to run RSIT
  • Before you click "Continue", make sure you change the List files/folders created or modified in the last 3 months
  • Click Continue at the disclaimer screen.
  • Once it has finished, two logs will open. Please post the contents of both log.txt and info.txt in your next reply.



NEXT


Please download GMER and unzip it to your Desktop.
  • Open the program and click on the Rootkit tab.
  • Make sure all the boxes on the right of the screen are checked, EXCEPT for ‘Show All’.
  • Click on Scan.
  • When the scan has run click Copy and paste the results into a Notepad >> save it and attach in this thread.


Post me these logs in your next reply.. Post each log in separate post..

1. Malwarebytes'
2. RSIT log.txt
3. RSIT info.txt
4. Attach GMER result..

Keep calm, make it simple, use your brain, don't freak out, and you'll be just fine..
Awesomeness: When I get sad, I stop being sad and be awesome instead.. True story - Barney Stinson
Posted Image Posted Image
Its gonna be legen.. wait for it.. dary! Cherish the pain, it means you're still alive


#3 fenzodahl512

fenzodahl512

  • Members
  • 6,738 posts
  • OFFLINE
  •  
  • Local time:08:29 AM

Posted 18 February 2009 - 06:02 AM

Due to the lack of feedback this Topic is closed.

If you need this topic reopened, please request this by sending the moderating team a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic

Keep calm, make it simple, use your brain, don't freak out, and you'll be just fine..
Awesomeness: When I get sad, I stop being sad and be awesome instead.. True story - Barney Stinson
Posted Image Posted Image
Its gonna be legen.. wait for it.. dary! Cherish the pain, it means you're still alive





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users