Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Search engine links are being re-directed


  • This topic is locked This topic is locked
3 replies to this topic

#1 shoylman

shoylman

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:46 AM

Posted 16 December 2009 - 07:45 AM

I recently noticed that when I click on a link in any search engine, it redirects to hxxp://newserversearch.com/?q=. On my screen the url is scrambled.. even in the search results (example: hxxp://aeervhnecwrssre.com). I was able to copy/paste to get a readable version so I could post it.

I went to google and searched for automotive

After the initial re-direct, I'm taken to sites like:

hxxp://www.adcloudmedia.com/denyPage1.html

hxxp://www.primosearch.com/jump2/?affiliate=3038&subid=94650&terms=automotive

hxxp://www.juggle.com/search/?t=V465675&q=automotives

hxxp://www.justclicklocal.com/citydir/Johnstown-OH--Automotive.html?uvx=wgXle7Wx-dQ2pQUd3HjoEHy0MLrD6Wfi0NgMJs0EIh3-p84HBgaBjSFE4kv5M7G6rF5loxaeF5YcVAOQjEDBzj6UrqLTnflL3Ekbs9XkVltCaf9-R0OzPyMxR0BJXds8mKEP9JajntYLVfjmjClntXAWBgSuO3TYE1gQxJfRH9nckAuxhg2iwg**

When I go to a search engine and do a search, when the results are displayed, Malware bytes shows a pop up box in the bottom right hand corner that says: Successfully blocked access to malicious ip 88.214.201.129

I've tried running SUPERantispyware and malwarebytes scans and they didn't find anything.


DDS (Ver_09-12-01.01) - NTFSx86
Run by Rick at 7:02:40.61 on Wed 12/16/2009
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_17
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.511.28 [GMT -5:00]

AV: Kaspersky Internet Security *On-access scanning enabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *enabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
C:\Program Files\COMODO\EasyVPN\crdphService.exe
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\rundll32.exe
c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
C:\Program Files\COMODO\EasyVPN\Vpnservice.exe
svchost.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ASTSRV.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\LVComSX.exe
C:\Program Files\COMODO\EasyVPN\EasyVPN.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\graphics\photoshop\Photoshop.exe
C:\WINDOWS\SYSTEM32\notepad.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Rick\Local Settings\Temporary Internet Files\Content.IE5\1FOEFNUG\dds[1].scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/
uWindow Title =
mWindow Title =
uInternet Connection Wizard,ShellNext = hxxp://www.dell4me.com/mywaybiz
BHO: HelperObject Class: {00c6482d-c502-44c8-8409-fce54ad9c208} - c:\program files\techsmith\snagit 8\SnagItBHO.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - c:\program files\kaspersky lab\kaspersky internet security 2009\ievkbd.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
TB: {BA52B914-B692-46c4-B683-905236F6F655} - No File
TB: SnagIt: {8ff5e183-abde-46eb-b09e-d2aab95cabe3} - c:\program files\techsmith\snagit 8\SnagItIEAddin.dll
TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File
TB: {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Skype] "c:\program files\skype\\phone\Skype.exe" /nosplash /minimized
uRun: [eyeBeam SIP Client] "c:\program files\counterpath\x-lite\x-lite.exe"
uRun: [Comodo EasyVPN] "c:\program files\comodo\easyvpn\EasyVPN.exe"
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [DVDLauncher] "c:\program files\cyberlink\powerdvd\DVDLauncher.exe"
mRun: [Acrobat Assistant 7.0] "c:\program files\adobe\acrobat 7.0\distillr\Acrotray.exe"
mRun: [Adobe Photo Downloader] "c:\program files\adobe\photoshop album starter edition\3.0\apps\apdproxy.exe"
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [LogitechCommunicationsManager] "c:\program files\common files\logishrd\lcommgr\Communications_Helper.exe"
mRun: [LogitechQuickCamRibbon] "c:\program files\logitech\quickcam10\QuickCam10.exe" /hide
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [MDS_Menu] "f:\video\mediashow5\mediashow5\muitransfer\muistartmenu.exe" "f:\video\mediashow5\mediashow5" updatewithcreateonce "software\cyberlink\mediashow\5.0"
mRun: [AtiPTA] "atiptaxx.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [AVP] "c:\program files\kaspersky lab\kaspersky internet security 2009\avp.exe"
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
dRun: [LogitechSoftwareUpdate] "c:\program files\logitech\video\ManifestEngine.exe" boot
dRunOnce: [RunNarrator] Narrator.exe
StartupFolder: c:\docume~1\rick\startm~1\programs\startup\shortc~1.lnk - c:\pd-setup-scripts\Auto Refresh.exe
IE: &Search
IE: Add to Banner Ad Blocker - c:\program files\kaspersky lab\kaspersky internet security 2009\ie_banner_deny.htm
IE: Convert link target to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - {85E0B171-04FA-11D1-B7DA-00A0C90348D6} - c:\program files\kaspersky lab\kaspersky internet security 2009\SCIEPlgn.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office11\REFIEBAR.DLL
DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} - hxxp://support.dell.com/systemprofiler/SysPro.CAB
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} - hxxp://zone.msn.com/binFrameWork/v10/StagingUI.cab55579.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab
DPF: {1A1F56AA-3401-46F9-B277-D57F3421F821} - hxxp://www.worldwinner.com/games/v47/shared/FunGamesLoader.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper200711281.dll
DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} - hxxp://zone.msn.com/BinFrameWork/v10/ZBuddy.cab55579.cab
DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} - hxxp://office.microsoft.com/officeupdate/content/opuc2.cab
DPF: {41D1977F-4161-4720-800F-EA4903983A38} - hxxp://www.worldwinner.com/games/v43/jigsaw/jigsaw.cab
DPF: {555F1BBC-6EC2-474F-84AF-633EF097FF54} - hxxp://www.worldwinner.com/games/v52/wwhearts/wwhearts.cab
DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} - hxxp://zone.msn.com/binframework/v10/ZPAChat.cab55579.cab
DPF: {61900274-3323-4446-BDCD-91548D32AF1B} - hxxp://www.worldwinner.com/games/v56/spidersolitaire/spidersolitaire.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1108961157281
DPF: {64CD313F-F079-4D93-959F-4D28B5519449} - hxxp://www.worldwinner.com/games/v56/jeopardy/jeopardy.cab
DPF: {6C6FE41A-0DA6-42A1-9AD8-792026B2B2A7} - hxxp://www.worldwinner.com/games/v41/freecell/freecell.cab
DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} - hxxp://zone.msn.com/bingame/amun/default/mjolauncher.cab
DPF: {80B626D6-BC34-4BCF-B5A1-7149E4FD9CFA} - hxxp://zone.msn.com/bingame/zpagames/GAME_UNO1.cab60096.cab
DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} - hxxp://www.worldwinner.com/games/shared/wwlaunch.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {95B5D20C-BD31-4489-8ABF-F8C8BE748463} - hxxp://zone.msn.com/bingame/zpagames/zpa_hrtz.cab67031.cab
DPF: {A5180646-FE0F-4C97-AA29-2A0F41515623} - hxxp://zone.msn.com/bingame/zpagames/ZPA_JGS2.cab61895.cab
DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab
DPF: {C86FF4B0-AA1D-46D4-8612-025FB86583C7} - hxxp://zone.msn.com/bingame/jobo/default/AstoundLauncher.cab#version=1,0,0,10
DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} - hxxp://zone.msn.com/binframework/v10/StProxy.cab55579.cab
DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} - hxxp://fdl.msn.com/zone/datafiles/heartbeat.cab
DPF: {FC4CAF5F-91BD-4DD9-ADC1-F3C737E37BC4} - hxxp://zone.msn.com/bingame/swet/default/Sweetopia.1.0.0.46.cab
Filter: text/html - {4987c55d-ac39-4462-a971-ef33a98d739b} -
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: x-excid - {9D6CC632-1337-4a33-9214-2DA092E776F4} - c:\windows\downloaded program files\mimectl.dll
Notify: AtiExtEvent - Ati2evxx.dll
Notify: IntelWireless - c:\program files\intel\wireless\bin\LgNotify.dll
Notify: klogon - c:\windows\system32\klogon.dll
AppInit_DLLs: c:\progra~1\kasper~1\kasper~1\mzvkbd3.dll,c:\progra~1\kasper~1\kasper~1\adialhk.dll,c:\progra~1\kasper~1\kasper~1\kloehk.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\rick\applic~1\mozilla\firefox\profiles\mgiyup1t.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com
FF - prefs.js: keyword.URL - hxxp://toolbar.ask.com/toolbarv/askRedirect?o=20008&gct=&gc=1&q=
FF - component: c:\documents and settings\rick\application data\mozilla\firefox\profiles\mgiyup1t.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\winnt_x86-msvc\components\ipc.dll
FF - plugin: c:\documents and settings\all users\application data\zylom\zylomgamesplayer\npzylomgamesplayer.dll
FF - plugin: c:\documents and settings\rick\application data\mozilla\firefox\profiles\mgiyup1t.default\extensions\mozilladialer1019@bueno.com\plugins\npbueno.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npitunes.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npracplug.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npzylomgamesplayer.dll
FF - plugin: c:\program files\real\realarcade\plugins\mozilla\npracplug.dll
FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);

============= SERVICES / DRIVERS ===============

R0 kl1;Kl1;c:\windows\system32\drivers\kl1.sys [2008-7-21 121872]
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-1-29 33808]
R0 PrecSim;PrecSim;c:\windows\system32\drivers\precsim.sys [2002-4-26 62688]
R1 atitray;atitray;c:\program files\radeon omega drivers\v3.8.252\ati tray tools\atitray.sys [2005-11-13 12032]
R1 KLIF;Kaspersky Lab Driver;c:\windows\system32\drivers\klif.sys [2009-8-25 226832]
R2 ACEDRV08;ACEDRV08;c:\windows\system32\drivers\ACEDRV08.sys [2007-3-15 108768]
R3 ATP;Comodo EasyVPN Miniport Driver;c:\windows\system32\drivers\cmdatp.sys [2009-12-11 17424]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\drivers\klfltdev.sys [2008-3-13 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2008-4-30 24592]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-11-30 19160]

=============== Created Last 30 ================

2009-12-16 04:24:41 0 d-----w- C:\fixwareout
2009-12-16 02:14:20 0 d-----w- c:\program files\Security Task Manager
2009-12-15 23:01:48 0 d-----w- C:\Rooter$
2009-12-15 17:13:03 3758 ----a-w- c:\windows\system32\tmp.reg
2009-12-15 15:19:50 0 ----a-w- c:\windows\system32\8104297.jun
2009-12-15 15:19:32 0 d-----w- c:\program files\Browser Hijack Recover
2009-12-15 00:06:57 158977 ----a-w- C:\MGlogs.zip
2009-12-14 21:34:03 0 d-----w- C:\mgtools
2009-12-14 21:33:04 0 d-----w- C:\fix
2009-12-14 18:49:39 0 d-----w- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2009-12-14 18:47:28 0 d-----w- c:\program files\SUPERAntiSpyware
2009-12-14 18:47:27 0 d-----w- c:\docume~1\rick\applic~1\SUPERAntiSpyware.com
2009-12-14 02:00:05 0 d-----w- c:\program files\Spybot - Search & Destroy
2009-12-14 02:00:05 0 d-----w- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2009-12-14 01:53:10 116224 ----a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2009-12-14 01:53:03 23040 ----a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2009-12-14 01:53:00 18944 ----a-w- c:\windows\system32\dllcache\xrxscnui.dll
2009-12-14 01:52:55 27648 ----a-w- c:\windows\system32\dllcache\xrxftplt.exe
2009-12-14 01:52:49 4608 ----a-w- c:\windows\system32\dllcache\xrxflnch.exe
2009-12-14 01:52:40 99865 ----a-w- c:\windows\system32\dllcache\xlog.exe
2009-12-14 01:52:28 16970 ----a-w- c:\windows\system32\dllcache\xem336n5.sys
2009-12-14 01:52:25 19455 ----a-w- c:\windows\system32\dllcache\wvchntxx.sys
2009-12-14 01:52:14 12063 ----a-w- c:\windows\system32\dllcache\wsiintxx.sys
2009-12-14 01:52:10 8192 ----a-w- c:\windows\system32\dllcache\wshirda.dll
2009-12-14 01:51:34 8832 ----a-w- c:\windows\system32\dllcache\wmiacpi.sys
2009-12-14 01:51:26 154624 ----a-w- c:\windows\system32\dllcache\wlluc48.sys
2009-12-14 01:51:21 34890 ----a-w- c:\windows\system32\dllcache\wlandrv2.sys
2009-12-14 01:51:06 771581 ----a-w- c:\windows\system32\dllcache\winacisa.sys
2009-12-14 01:49:59 48256 ----a-w- c:\windows\system32\dllcache\w32.dll
2009-12-14 01:49:54 64605 ----a-w- c:\windows\system32\dllcache\vvoice.sys
2009-12-14 01:49:45 397502 ----a-w- c:\windows\system32\dllcache\vpctcom.sys
2009-12-14 01:49:40 604253 ----a-w- c:\windows\system32\dllcache\vmodem.sys
2009-12-14 01:49:34 249402 ----a-w- c:\windows\system32\dllcache\vinwm.sys
2009-12-14 01:49:27 24576 ----a-w- c:\windows\system32\dllcache\viairda.sys
2009-12-14 01:49:10 687999 ----a-w- c:\windows\system32\dllcache\usrwdxjs.sys
2009-12-14 01:49:03 765884 ----a-w- c:\windows\system32\dllcache\usrti.sys
2009-12-14 01:48:56 113762 ----a-w- c:\windows\system32\dllcache\usrpda.sys
2009-12-14 01:48:51 7556 ----a-w- c:\windows\system32\dllcache\usroslba.sys
2009-12-14 01:48:42 224802 ----a-w- c:\windows\system32\dllcache\usr1807a.sys
2009-12-14 01:48:36 794399 ----a-w- c:\windows\system32\dllcache\usr1806v.sys
2009-12-14 01:48:31 793598 ----a-w- c:\windows\system32\dllcache\usr1806.sys
2009-12-14 01:48:14 794654 ----a-w- c:\windows\system32\dllcache\usr1801.sys
2009-12-14 01:48:08 26112 ----a-w- c:\windows\system32\dllcache\usbser.sys
2009-12-14 01:48:07 15104 ----a-w- c:\windows\system32\dllcache\usbscan.sys
2009-12-14 01:48:05 25856 ----a-w- c:\windows\system32\dllcache\usbprint.sys
2009-12-14 01:48:03 17152 ----a-w- c:\windows\system32\dllcache\usbohci.sys
2009-12-14 01:47:50 32384 ----a-w- c:\windows\system32\dllcache\usb101et.sys
2009-12-14 01:47:33 94720 ----a-w- c:\windows\system32\dllcache\umaxud32.dll
2009-12-14 01:47:28 28160 ----a-w- c:\windows\system32\dllcache\umaxu40.dll
2009-12-14 01:47:22 26624 ----a-w- c:\windows\system32\dllcache\umaxu22.dll
2009-12-14 01:47:17 69632 ----a-w- c:\windows\system32\dllcache\umaxu12.dll
2009-12-14 01:47:12 50688 ----a-w- c:\windows\system32\dllcache\umaxscan.dll
2009-12-14 01:47:07 22912 ----a-w- c:\windows\system32\dllcache\umaxpcls.sys
2009-12-14 01:47:02 50176 ----a-w- c:\windows\system32\dllcache\umaxp60.dll
2009-12-14 01:46:55 47616 ----a-w- c:\windows\system32\dllcache\umaxcam.dll
2009-12-14 01:46:48 211968 ----a-w- c:\windows\system32\dllcache\um54scan.dll
2009-12-14 01:46:42 216064 ----a-w- c:\windows\system32\dllcache\um34scan.dll
2009-12-14 01:46:35 11520 ----a-w- c:\windows\system32\dllcache\twotrack.sys
2009-12-14 01:46:34 14336 ----a-w- c:\windows\system32\dllcache\tsprof.exe
2009-12-14 01:46:25 166784 ----a-w- c:\windows\system32\dllcache\tridxpm.sys
2009-12-14 01:46:20 525568 ----a-w- c:\windows\system32\dllcache\tridxp.dll
2009-12-14 01:46:15 159232 ----a-w- c:\windows\system32\dllcache\tridkbm.sys
2009-12-14 01:46:10 440576 ----a-w- c:\windows\system32\dllcache\tridkb.dll
2009-12-14 01:46:06 222336 ----a-w- c:\windows\system32\dllcache\trid3dm.sys
2009-12-14 01:46:00 315520 ----a-w- c:\windows\system32\dllcache\trid3d.dll
2009-12-14 01:44:58 17129 ----a-w- c:\windows\system32\dllcache\tdkcd31.sys
2009-12-14 01:43:55 41472 ----a-w- c:\windows\system32\dllcache\sw_effct.dll
2009-12-14 01:43:48 155648 ----a-w- c:\windows\system32\dllcache\stlnprop.dll
2009-12-14 01:43:43 53248 ----a-w- c:\windows\system32\dllcache\stlncoin.dll
2009-12-14 01:43:39 285760 ----a-w- c:\windows\system32\dllcache\stlnata.sys
2009-12-14 01:43:33 16896 ----a-w- c:\windows\system32\dllcache\stcusb.sys
2009-12-14 01:43:19 48736 ----a-w- c:\windows\system32\dllcache\srwlnd5.sys
2009-12-14 01:43:08 99328 ----a-w- c:\windows\system32\dllcache\srusd.dll
2009-12-14 01:43:07 101376 ----a-w- c:\windows\system32\dllcache\srusbusd.dll
2009-12-14 01:41:56 147200 ----a-w- c:\windows\system32\dllcache\smidispb.dll
2009-12-14 01:40:55 157696 ----a-w- c:\windows\system32\dllcache\sisv256.dll
2009-12-14 01:40:51 50432 ----a-w- c:\windows\system32\dllcache\sisv.sys
2009-12-14 01:40:49 32768 ----a-w- c:\windows\system32\dllcache\sisnic.sys
2009-12-14 01:40:45 238592 ----a-w- c:\windows\system32\dllcache\sisgrv.dll
2009-12-14 01:40:41 104064 ----a-w- c:\windows\system32\dllcache\sisgrp.sys
2009-12-14 01:40:37 150144 ----a-w- c:\windows\system32\dllcache\sis6306v.dll
2009-12-14 01:40:33 68608 ----a-w- c:\windows\system32\dllcache\sis6306p.sys
2009-12-14 01:40:28 252032 ----a-w- c:\windows\system32\dllcache\sis300iv.dll
2009-12-14 01:40:19 101760 ----a-w- c:\windows\system32\dllcache\sis300ip.sys
2009-12-14 01:40:18 18944 ----a-w- c:\windows\system32\dllcache\simptcp.dll
2009-12-14 01:40:06 161568 ----a-w- c:\windows\system32\dllcache\sgsmusb.sys
2009-12-14 01:40:02 18400 ----a-w- c:\windows\system32\dllcache\sgsmld.sys
2009-12-14 01:38:55 75392 ----a-w- c:\windows\system32\dllcache\s3savmxm.sys
2009-12-14 01:37:59 79872 ----a-w- c:\windows\system32\dllcache\rwia330.dll
2009-12-14 01:36:57 19584 ----a-w- c:\windows\system32\dllcache\rasirda.sys
2009-12-14 01:36:44 714762 ----a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
2009-12-14 01:36:40 899146 ----a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2009-12-14 01:36:35 41472 ----a-w- c:\windows\system32\dllcache\qvusd.dll
2009-12-14 01:36:28 3328 ----a-w- c:\windows\system32\dllcache\qv2kux.sys
2009-12-14 01:36:27 16384 ----a-w- c:\windows\system32\dllcache\quser.exe
2009-12-14 01:36:22 9728 ----a-w- c:\windows\system32\dllcache\query.exe
2009-12-14 01:36:03 6016 ----a-w- c:\windows\system32\dllcache\qic157.sys
2009-12-14 01:35:49 130942 ----a-w- c:\windows\system32\dllcache\ptserlv.sys
2009-12-14 01:35:45 112574 ----a-w- c:\windows\system32\dllcache\ptserlp.sys
2009-12-14 01:35:41 128286 ----a-w- c:\windows\system32\dllcache\ptserli.sys
2009-12-14 01:35:39 159232 ----a-w- c:\windows\system32\dllcache\ptpusd.dll
2009-12-14 01:35:29 5632 ----a-w- c:\windows\system32\dllcache\ptpusb.dll
2009-12-14 01:35:27 33280 ----a-w- c:\windows\system32\dllcache\psisrndr.ax
2009-12-14 01:35:23 35328 ----a-w- c:\windows\system32\dllcache\psisload.dll
2009-12-14 01:35:21 363520 ----a-w- c:\windows\system32\dllcache\psisdecd.dll
2009-12-14 01:35:14 16128 ----a-w- c:\windows\system32\dllcache\pscr.sys
2009-12-14 01:35:06 17664 ----a-w- c:\windows\system32\dllcache\ppa3.sys
2009-12-14 01:35:02 17792 ----a-w- c:\windows\system32\dllcache\ppa.sys
2009-12-14 01:35:00 8832 ----a-w- c:\windows\system32\dllcache\powerfil.sys
2009-12-14 01:33:58 35328 ----a-w- c:\windows\system32\dllcache\pcntpci5.sys
2009-12-14 01:32:59 28032 ----a-w- c:\windows\system32\dllcache\ovcd.sys
2009-12-14 01:32:55 48000 ----a-w- c:\windows\system32\dllcache\ovcam2.sys
2009-12-14 01:32:51 25088 ----a-w- c:\windows\system32\dllcache\ovca.sys
2009-12-14 01:32:47 54186 ----a-w- c:\windows\system32\dllcache\otcsercb.sys
2009-12-14 01:32:43 43689 ----a-w- c:\windows\system32\dllcache\otceth5.sys
2009-12-14 01:32:39 27209 ----a-w- c:\windows\system32\dllcache\otc06x5.sys
2009-12-14 01:32:33 54528 ----a-w- c:\windows\system32\dllcache\opl3sax.sys
2009-12-14 01:32:13 198144 ----a-w- c:\windows\system32\dllcache\nv3.sys
2009-12-14 01:32:08 123776 ----a-w- c:\windows\system32\dllcache\nv3.dll
2009-12-14 01:30:55 91488 ----a-w- c:\windows\system32\dllcache\n9i3disp.dll
2009-12-14 01:30:51 27936 ----a-w- c:\windows\system32\dllcache\n9i3d.sys
2009-12-14 01:30:48 33088 ----a-w- c:\windows\system32\dllcache\n9i128v2.sys
2009-12-14 01:30:43 59104 ----a-w- c:\windows\system32\dllcache\n9i128v2.dll
2009-12-14 01:30:40 13664 ----a-w- c:\windows\system32\dllcache\n9i128.sys
2009-12-14 01:30:36 35392 ----a-w- c:\windows\system32\dllcache\n9i128.dll
2009-12-14 01:30:32 128000 ----a-w- c:\windows\system32\dllcache\n100325.sys
2009-12-14 01:30:28 52255 ----a-w- c:\windows\system32\dllcache\n1000nt5.sys
2009-12-14 01:30:24 75520 ----a-w- c:\windows\system32\dllcache\mxport.sys
2009-12-14 01:30:21 7168 ----a-w- c:\windows\system32\dllcache\mxport.dll
2009-12-14 01:30:17 19968 ----a-w- c:\windows\system32\dllcache\mxnic.sys
2009-12-14 01:30:13 19968 ----a-w- c:\windows\system32\dllcache\mxicfg.dll
2009-12-14 01:30:09 21888 ----a-w- c:\windows\system32\dllcache\mxcard.sys
2009-12-14 01:29:53 103296 ----a-w- c:\windows\system32\dllcache\mtxvideo.sys
2009-12-14 01:29:37 49024 ----a-w- c:\windows\system32\dllcache\mstape.sys
2009-12-14 01:29:31 12416 ----a-w- c:\windows\system32\dllcache\msriffwv.sys
2009-12-14 01:29:17 2944 ----a-w- c:\windows\system32\dllcache\msmpu401.sys
2009-12-14 01:29:14 22016 ----a-w- c:\windows\system32\dllcache\msircomm.sys
2009-12-14 01:28:59 35200 ----a-w- c:\windows\system32\dllcache\msgame.sys
2009-12-14 01:28:52 6016 ----a-w- c:\windows\system32\dllcache\msfsio.sys
2009-12-14 01:28:50 56832 ----a-w- c:\windows\system32\dllcache\msdvbnp.ax
2009-12-14 01:28:50 51200 ----a-w- c:\windows\system32\dllcache\msdv.sys
2009-12-14 01:28:03 15232 ----a-w- c:\windows\system32\dllcache\mpe.sys
2009-12-14 01:27:37 16128 ----a-w- c:\windows\system32\dllcache\modemcsa.sys
2009-12-14 01:27:11 6528 ----a-w- c:\windows\system32\dllcache\miniqic.sys
2009-12-14 01:27:05 34304 ----a-w- c:\windows\system32\dllcache\migisol.exe
2009-12-14 01:27:00 320384 ----a-w- c:\windows\system32\dllcache\mgaum.sys
2009-12-14 01:26:55 92416 ----a-w- c:\windows\system32\dllcache\mga.sys
2009-12-14 01:26:55 235648 ----a-w- c:\windows\system32\dllcache\mgaud.dll
2009-12-14 01:26:54 92032 ----a-w- c:\windows\system32\dllcache\mga.dll
2009-12-14 01:26:53 26112 ----a-w- c:\windows\system32\dllcache\memstpci.sys
2009-12-14 01:26:50 47616 ----a-w- c:\windows\system32\dllcache\memgrp.dll
2009-12-14 01:26:46 8320 ----a-w- c:\windows\system32\dllcache\memcard.sys
2009-12-14 01:26:37 164586 ----a-w- c:\windows\system32\dllcache\mdgndis5.sys
2009-12-14 01:26:20 7424 ----a-w- c:\windows\system32\dllcache\mammoth.sys
2009-12-14 01:26:18 65536 ----a-w- c:\windows\system32\dllcache\EXCH_mailmsg.dll
2009-12-14 01:26:12 48768 ----a-w- c:\windows\system32\dllcache\maestro.sys
2009-12-14 01:26:02 58880 ----a-w- c:\windows\system32\dllcache\m3092dc.dll
2009-12-14 01:25:57 58368 ----a-w- c:\windows\system32\dllcache\m3091dc.dll
2009-12-14 01:25:52 22848 ----a-w- c:\windows\system32\dllcache\lwusbhid.sys
2009-12-14 01:25:51 20864 ----a-w- c:\windows\system32\dllcache\lwadihid.sys
2009-12-14 01:25:34 797500 ----a-w- c:\windows\system32\dllcache\ltsmt.sys
2009-12-14 01:25:30 802683 ----a-w- c:\windows\system32\dllcache\ltsm.sys
2009-12-14 01:25:29 7040 ----a-w- c:\windows\system32\dllcache\ltotape.sys
2009-12-14 01:25:28 420992 ----a-w- c:\windows\system32\dllcache\ltmdmntt.sys
2009-12-14 01:25:22 576746 ----a-w- c:\windows\system32\dllcache\ltmdmntl.sys
2009-12-14 01:25:21 606684 ----a-w- c:\windows\system32\dllcache\ltmdmnt.sys
2009-12-14 01:25:16 727786 ----a-w- c:\windows\system32\dllcache\ltck000c.sys
2009-12-14 01:25:08 4992 ----a-w- c:\windows\system32\dllcache\loop.sys
2009-12-14 01:24:54 70730 ----a-w- c:\windows\system32\dllcache\lne100tx.sys
2009-12-14 01:24:50 20573 ----a-w- c:\windows\system32\dllcache\lne100.sys
2009-12-14 01:24:46 25065 ----a-w- c:\windows\system32\dllcache\lmndis3.sys
2009-12-14 01:24:41 15744 ----a-w- c:\windows\system32\dllcache\lit220p.sys
2009-12-14 01:24:26 34688 ----a-w- c:\windows\system32\dllcache\lbrtfdc.sys
2009-12-14 01:24:22 26442 ----a-w- c:\windows\system32\dllcache\lanepic5.sys
2009-12-14 01:24:12 19016 ----a-w- c:\windows\system32\dllcache\ktc111.sys
2009-12-14 01:23:50 37376 ----a-w- c:\windows\system32\dllcache\kousd.dll
2009-12-14 01:23:42 48640 ----a-w- c:\windows\system32\dllcache\kdsui.dll
2009-12-14 01:23:42 253952 ----a-w- c:\windows\system32\dllcache\kdsusd.dll
2009-12-14 01:23:40 5632 ----a-w- c:\windows\system32\dllcache\kbdusa.dll
2009-12-14 01:23:13 18432 ----a-w- c:\windows\system32\dllcache\jupiw.dll
2009-12-14 01:23:07 26624 ----a-w- c:\windows\system32\dllcache\irstusb.sys
2009-12-14 01:23:04 18688 ----a-w- c:\windows\system32\dllcache\irsir.sys
2009-12-14 01:23:03 28160 ----a-w- c:\windows\system32\dllcache\irmon.dll
2009-12-14 01:23:00 23552 ----a-w- c:\windows\system32\dllcache\irmk7.sys
2009-12-14 01:22:59 151552 ----a-w- c:\windows\system32\dllcache\irftp.exe
2009-12-14 01:22:58 88192 ----a-w- c:\windows\system32\dllcache\irda.sys
2009-12-14 01:22:49 45632 ----a-w- c:\windows\system32\dllcache\ip5515.sys
2009-12-14 01:22:46 90200 ----a-w- c:\windows\system32\dllcache\io8ports.dll
2009-12-14 01:22:42 38784 ----a-w- c:\windows\system32\dllcache\io8.sys
2009-12-14 01:22:35 13056 ----a-w- c:\windows\system32\dllcache\inport.sys
2009-12-14 01:22:04 372824 ----a-w- c:\windows\system32\dllcache\iconf32.dll
2009-12-14 01:22:00 100992 ----a-w- c:\windows\system32\dllcache\icam5usb.sys
2009-12-14 01:20:57 353184 ----a-w- c:\windows\system32\dllcache\i740dnt5.dll
2009-12-14 01:20:17 488383 ----a-w- c:\windows\system32\dllcache\hsf_v124.sys
2009-12-14 01:20:13 50751 ----a-w- c:\windows\system32\dllcache\hsf_tone.sys
2009-12-14 01:20:10 73279 ----a-w- c:\windows\system32\dllcache\hsf_spkp.sys
2009-12-14 01:20:07 44863 ----a-w- c:\windows\system32\dllcache\hsf_soar.sys
2009-12-14 01:20:03 57471 ----a-w- c:\windows\system32\dllcache\hsf_samp.sys
2009-12-14 01:18:56 101376 ----a-w- c:\windows\system32\dllcache\hpgt34.dll
2009-12-14 01:17:59 470144 ----a-w- c:\windows\system32\dllcache\g200d.dll
2009-12-14 01:16:58 16074 ----a-w- c:\windows\system32\dllcache\fa312nd5.sys
2009-12-14 01:15:57 114944 ----a-w- c:\windows\system32\dllcache\epstw2k.sys
2009-12-14 01:14:53 20992 ----a-w- c:\windows\system32\dllcache\dshowext.ax
2009-12-14 01:13:53 91305 ----a-w- c:\windows\system32\dllcache\dimaint.sys
2009-12-14 01:12:59 25600 ----a-w- c:\windows\system32\dllcache\dc210_32.dll
2009-12-14 01:11:51 20736 ----a-w- c:\windows\system32\dllcache\cmbp0wdm.sys
2009-12-14 01:10:50 10752 ----a-w- c:\windows\system32\dllcache\c_iscii.dll
2009-12-14 01:09:52 102400 ----a-w- c:\windows\system32\dllcache\binlsvc.dll
2009-12-14 01:08:59 97354 ----a-w- c:\windows\system32\dllcache\aspndis3.sys
2009-12-14 01:07:23 66048 ----a-w- c:\windows\system32\dllcache\s3legacy.dll
2009-12-12 02:59:02 17424 ----a-w- c:\windows\system32\drivers\cmdatp.sys
2009-12-12 02:58:51 0 d-----w- c:\docume~1\rick\applic~1\COMODO
2009-12-12 00:38:00 0 d-----w- c:\docume~1\rick\applic~1\atitray
2009-12-11 19:16:46 0 d-----w- c:\program files\Webroot
2009-12-11 19:15:43 164 ----a-w- c:\windows\install.dat
2009-12-11 12:28:58 132096 --sha-r- c:\windows\system32\KBDBENE7.dll
2009-12-11 10:27:48 0 d-----w- c:\program files\MSECACHE
2009-12-11 09:25:32 516096 ------w- c:\windows\system32\ati2sgag.exe
2009-12-11 09:21:12 451072 ----a-w- c:\windows\Radeon Omega Drivers v3.8.252 Uninstall.exe
2009-12-11 09:21:12 0 d-----w- c:\program files\Radeon Omega Drivers
2009-12-11 08:21:09 0 d-----w- c:\program files\MultiRes
2009-12-11 08:19:25 472576 ----a-w- c:\windows\Radeon Omega Drivers v4.8.442 Uninstall.exe
2009-12-11 07:20:58 32768 ----a-w- c:\windows\system32\dllcache\ativtmxx.dll
2009-12-11 07:20:58 32768 ----a-w- c:\windows\system32\ativtmxx.dll
2009-12-11 07:20:58 23040 ----a-w- c:\windows\system32\dllcache\ativmvxx.ax
2009-12-11 07:20:58 23040 ----a-w- c:\windows\system32\ativmvxx.ax
2009-12-08 11:39:04 696832 ----a-w- c:\windows\is-FSGKI.exe
2009-12-08 11:39:04 399 ----a-w- c:\windows\is-FSGKI.lst
2009-12-08 11:39:04 10498 ----a-w- c:\windows\is-FSGKI.msg
2009-12-07 09:26:20 80 ----a-w- c:\windows\PictureOptions.ini
2009-12-07 01:46:08 0 d-----w- c:\docume~1\rick\applic~1\Cover Expert
2009-12-07 01:46:01 0 d-----w- c:\program files\Cover Expert
2009-12-07 01:37:07 0 d-----w- C:\boxcover
2009-12-06 21:26:07 0 d-----w- C:\mcard-rap
2009-12-05 21:37:02 0 d-----w- c:\program files\Acclaim Entertainment
2009-12-05 21:33:31 0 d-----w- c:\docume~1\rick\applic~1\GetRightToGo
2009-12-05 18:00:00 0 d-----w- C:\local-email-marketing
2009-12-03 20:52:19 0 d-----w- c:\docume~1\rick\applic~1\PADGen
2009-12-03 20:51:52 0 d-----w- c:\program files\PADGen
2009-12-03 20:49:12 0 d-----w- c:\program files\PadSubmitter
2009-12-01 14:06:18 0 d-----w- c:\program files\Instant Software Builder 2.2
2009-11-30 23:29:36 0 d-----w- c:\program files\SigmaTel
2009-11-30 22:49:16 0 d-----w- c:\windows\system32\Dell
2009-11-30 11:47:32 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-11-30 11:47:29 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-11-30 11:47:29 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-11-30 09:44:34 0 d-----w- c:\windows\pss
2009-11-30 04:09:13 0 d-----w- C:\market-samurai
2009-11-28 19:45:50 164847 ----a-w- c:\windows\XSitePro2 Uninstaller.exe
2009-11-27 16:13:56 0 d-----w- c:\program files\common files\Intel
2009-11-27 16:13:45 0 d-----w- c:\program files\CounterPath
2009-11-24 20:22:06 0 d-----w- c:\program files\renaun.com
2009-11-22 11:49:18 0 d-----w- c:\docume~1\rick\applic~1\Antares
2009-11-22 11:49:17 0 d-----w- c:\program files\Steinberg
2009-11-22 11:49:16 0 d-----w- c:\program files\Antares Audio Technologies
2009-11-21 22:58:35 946227 ----a-w- C:\mCard.zip.removeme
2009-11-21 05:53:12 946227 ----a-w- C:\mCard.zip
2009-11-18 19:11:16 2260720 ----a-w- C:\your-music-folder.zip
2009-11-18 19:00:53 6042689 ----a-w- C:\biab-seminar.zip
2009-11-18 07:37:17 0 d-----w- c:\program files\Easy Icon Maker
2009-11-18 06:12:45 0 d-----w- C:\mcard
2009-11-18 06:08:44 0 d-----w- c:\windows\Aceziptemp
2009-11-18 05:59:05 569344 ----a-w- c:\windows\system32\Zip2Exe.dll
2009-11-18 05:59:05 438272 ----a-w- c:\windows\system32\ChilkatUtil.dll
2009-11-18 05:59:05 20530 ----a-w- c:\windows\system32\scrrncht.dll
2009-11-18 05:59:05 1097728 ----a-w- c:\windows\system32\chilkatZip2.dll
2009-11-18 05:59:04 28160 ----a-w- c:\windows\system32\CMDLGCHT.DLL
2009-11-18 05:59:04 102160 ----a-w- c:\windows\system32\VB6CHT.DLL
2009-11-18 05:59:04 101888 ----a-w- c:\windows\system32\VB6STKIT.DLL
2009-11-18 05:59:03 62976 ----a-w- c:\windows\system32\shdocvw.oca
2009-11-18 05:59:02 40960 ----a-w- c:\windows\system32\mspregistry.dll
2009-11-18 05:58:58 122880 ----a-w- c:\windows\system32\sgFileSys.dll
2009-11-17 11:04:05 0 d-----w- c:\program files\ZipItFree
2009-11-17 10:15:43 0 d-----w- c:\program files\Paquet Builder
2009-11-17 02:44:32 121856 ----a-w- c:\windows\UnGins.exe
2009-11-17 02:44:26 0 d-----w- c:\program files\BrowserBob 2 Free
2009-11-16 17:21:24 26432 ----a-w- c:\windows\system32\nitrolocalmon.dll
2009-11-16 17:21:24 17728 ----a-w- c:\windows\system32\nitrolocalui.dll
2009-11-16 17:08:43 0 d-----w- c:\docume~1\rick\applic~1\Downloaded Installations
2009-11-16 13:20:04 936 ----a-w- c:\windows\InstantEXE.INI

==================== Find3M ====================

2009-12-16 04:27:06 7852 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2009-12-16 04:27:06 1368096 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2009-12-16 04:27:06 12526112 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-12-16 04:27:06 102084 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-11-28 20:31:47 237203 ----a-w- c:\windows\XSite Pro Uninstaller.exe
2009-11-16 05:44:44 64828 ----a-w- c:\windows\fonts\VTIMFAN.TTF
2009-10-28 14:40:47 173056 ----a-w- c:\windows\system32\dllcache\ie4uinit.exe
2009-10-26 00:02:44 34176 ----a-w- c:\windows\fonts\Cornerstone Regular.ttf
2009-10-21 05:38:36 75776 ----a-w- c:\windows\system32\strmfilt.dll
2009-10-21 05:38:36 75776 ----a-w- c:\windows\system32\dllcache\strmfilt.dll
2009-10-21 05:38:36 25088 ----a-w- c:\windows\system32\httpapi.dll
2009-10-21 05:38:36 25088 ----a-w- c:\windows\system32\dllcache\httpapi.dll
2009-10-20 16:20:16 265728 ----a-w- c:\windows\system32\drivers\http.sys
2009-10-20 16:20:16 265728 ----a-w- c:\windows\system32\dllcache\http.sys
2009-10-13 10:30:16 270336 ----a-w- c:\windows\system32\oakley.dll
2009-10-13 10:30:16 270336 ----a-w- c:\windows\system32\dllcache\oakley.dll
2009-10-12 13:38:19 149504 ----a-w- c:\windows\system32\rastls.dll
2009-10-12 13:38:19 149504 ----a-w- c:\windows\system32\dllcache\rastls.dll
2009-10-12 13:38:18 79872 ----a-w- c:\windows\system32\raschap.dll
2009-10-12 13:38:18 79872 ----a-w- c:\windows\system32\dllcache\raschap.dll
2009-10-11 09:17:27 411368 ----a-w- c:\windows\system32\deploytk.dll
2005-09-03 03:15:11 774144 ----a-w- c:\program files\RngInterstitial.dll
2005-06-07 12:48:08 56 --sha-r- c:\windows\system32\72EDE58367.sys
2005-06-07 12:48:08 1890 --sha-w- c:\windows\system32\KGyGaAvL.sys

============= FINISH: 7:04:29.31 ===============

Attached Files


Edited by Orange Blossom, 17 December 2009 - 10:21 PM.
Deactivate links. ~ OB


BC AdBot (Login to Remove)

 


#2 thcbytes

thcbytes

  • Malware Response Team
  • 14,790 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:46 AM

Posted 28 December 2009 - 10:20 PM

Do you still desire help?
Proud member - Unified Network of Instructors and Trained Eliminators
Posted Image

I do not accept personal donations for assistance provided. I would ask that you instead consider donating the greatest gift - Organ Donation. Your organs are of no use to you when your gone. You will save a life that would otherwise be lost!

http://donatelife.net/register-now/

#3 shoylman

shoylman
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:46 AM

Posted 29 December 2009 - 04:30 AM

No,

Not any more.

Thanks

#4 thcbytes

thcbytes

  • Malware Response Team
  • 14,790 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:46 AM

Posted 29 December 2009 - 11:40 AM

Since this topic appears to be resolved, I will now close it.
If you need this topic re-opened please send me a PM.

Everyone else, please start a new topic.
Proud member - Unified Network of Instructors and Trained Eliminators
Posted Image

I do not accept personal donations for assistance provided. I would ask that you instead consider donating the greatest gift - Organ Donation. Your organs are of no use to you when your gone. You will save a life that would otherwise be lost!

http://donatelife.net/register-now/




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users