We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
internet explorer wont launch
Comments
-
"combofix.txt" should be there just as you open C drive:idea:0
-
this is 2nd half of print out posted !!!! ways
+ 2007-11-07 01:19:20 . 2007-11-07 01:19:20 54272 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_ecc42bd1\vcomp90.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 62976 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90rus.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 46080 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90kor.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 46592 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90jpn.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 64512 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90ita.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 66048 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90fra.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 65024 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esp.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 65024 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90esn.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 56832 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90enu.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 66560 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90deu.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 39936 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90cht.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 38912 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_b0db7d03\mfc90chs.dll
+ 2008-07-29 05:07:42 . 2008-07-29 05:07:42 59904 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90u.dll
+ 2008-07-29 05:07:42 . 2008-07-29 05:07:42 59904 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfcm90.dll
+ 2009-06-30 06:13:48 . 2009-06-30 06:13:48 16384 C:\WINDOWS\Temp\Perflib_Perfdata_d0.dat
+ 2009-06-30 05:26:21 . 2009-06-30 05:26:21 16384 C:\WINDOWS\Temp\Perflib_Perfdata_c90.dat
+ 2009-06-30 06:15:32 . 2009-06-30 06:15:32 16384 C:\WINDOWS\Temp\Perflib_Perfdata_7cc.dat
+ 2009-06-30 00:03:05 . 2009-05-11 09:12:24 28520 C:\WINDOWS\system32\drivers\ssmdrv.sys
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 655872 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 572928 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll
+ 2008-07-29 02:54:08 . 2008-07-29 02:54:08 225280 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcm90.dll
+ 2008-07-29 07:05:06 . 2008-07-29 07:05:06 161784 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_d01483b2\atl90.dll
- 2008-11-27 20:11:10 . 2008-11-27 20:11:10 307200 C:\WINDOWS\Installer\{582D2A53-F426-4C5E-A2E6-43C1AB36B907}\SafariIco.exe
+ 2008-11-27 20:11:10 . 2009-06-29 23:42:54 307200 C:\WINDOWS\Installer\{582D2A53-F426-4C5E-A2E6-43C1AB36B907}\SafariIco.exe
+ 2009-06-30 00:34:42 . 2009-06-30 00:34:42 364726 C:\WINDOWS\Installer\{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}\SkypeIcon.exe
+ 2008-07-29 07:05:10 . 2008-07-29 07:05:10 3783672 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90u.dll
+ 2008-07-29 07:05:08 . 2008-07-29 07:05:08 3768312 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_405b0943\mfc90.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 03:00:00 15360]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" [2008-07-02 15:16:20 393216]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2008-12-02 22:41:54 3882312]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2009-06-02 10:56:00 24264488]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ePower_DMC"="C:\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2007-07-04 11:44:00 475136]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2005-12-16 23:32:58 761945]
"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe" [2008-12-20 23:35:55 136600]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2007-01-09 05:26:08 68640]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-11-04 10:30:50 413696]
"Preload"="C:\Windows\RUNXMLPL.exe" [2007-04-21 00:56:22 20480]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-05 03:00:00 455168]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-05 03:00:00 455168]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [2007-06-13 19:55:56 138008]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-05 03:00:00 59392]
"LManager"="C:\PROGRA~1\LAUNCH~1\LManager.exe" [2007-06-14 18:21:00 850704]
"LanguageShortcut"="C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" [2007-01-09 05:17:42 52256]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-11-20 13:20:54 290088]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" [2004-08-05 03:00:00 208952]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2007-06-13 19:56:06 142104]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-03-21 20:00:00 174872]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2007-06-13 19:55:46 162584]
"eRecoveryService"="C:\Acer\Empowering Technology\eRecovery\eRAgent.exe" [2007-07-11 14:07:46 421888]
"eDataSecurity Loader"="C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2007-05-28 15:56:16 342528]
"Boot"="C:\Acer\Empowering Technology\ePower\Boot.exe" [2006-03-15 22:12:24 579584]
"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" [2005-06-12 02:51:54 53248]
"AppleSyncNotifier"="C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-11-07 14:16:58 111936]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 21:16:38 39792]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [2005-06-06 23:46:24 57344]
"Acer ePresentation HPD"="C:\Acer\Empowering Technology\ePresentation\ePresentation.exe" [2007-03-02 11:25:08 208896]
"avgnt"="C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 12:08:47 209153]
"RTHDCPL"="RTHDCPL.EXE" - C:\WINDOWS\RTHDCPL.exe [2007-05-28 23:32:36 16132608]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-05 03:00:00 15360]
"DWQueuedReporting"="C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-08-24 02:18:18 437160]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Acer Empowering Technology.lnk - C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe [2008-1-24 45056]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Authentication Packages REG_MULTI_SZ msv1_0 nwprovau
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;C:\Program Files\Avira\AntiVir Desktop\sched.exe [30/06/2009 01:03:04 108289]
R2 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service;C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [11/01/2008 18:50:16 30312]
R2 fssfltr;FssFltr;C:\WINDOWS\system32\drivers\fssfltr_tdi.sys [09/01/2009 18:43:43 55136]
S3 fsssvc;Windows Live Family Safety;C:\Program Files\Windows Live\Family Safety\fsssvc.exe [08/12/2008 18:01:58 533344]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ);C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [10/02/2007 05:29:54 29178224]
S3 NTPASp50;NTPASp50 NDIS Protocol Driver;C:\WINDOWS\system32\drivers\NtpaSp50.sys [24/01/2008 10:13:00 17536]
S3 s916bus;Sony Ericsson Device 916 driver (WDM);C:\WINDOWS\system32\drivers\s916bus.sys [14/11/2008 22:14:34 83496]
S3 s916mdfl;Sony Ericsson Device 916 USB WMC Modem Filter;C:\WINDOWS\system32\drivers\s916mdfl.sys [14/11/2008 22:14:35 15016]
S3 s916mdm;Sony Ericsson Device 916 USB WMC Modem Driver;C:\WINDOWS\system32\drivers\s916mdm.sys [14/11/2008 22:14:35 109992]
S3 s916mgmt;Sony Ericsson Device 916 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\drivers\s916mgmt.sys [14/11/2008 22:14:36 103976]
S3 s916obex;Sony Ericsson Device 916 USB WMC OBEX Interface;C:\WINDOWS\system32\drivers\s916obex.sys [14/11/2008 22:14:35 100008]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contents of the 'Scheduled Tasks' folder
2009-06-29 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 16:57:18 . 2008-07-30 11:34:12]
.
.
Supplementary Scan
.
uStart Page = hxxp://uk.yahoo.com/
uInternet Settings,ProxyOverride = *.local;<local>
uInternet Settings,ProxyServer = http=127.0.0.1:9090
FF - ProfilePath - C:\Documents and Settings\Shell\Application Data\Mozilla\Firefox\Profiles\1ofu8zf6.default\
FF - prefs.js: browser.startup.homepage - hxxp://ie.yahoo.com/
FF - plugin: C:\Program Files\Microsoft\Office Live\npOLW.dll
FF - plugin: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
.WAS DEBT FREE & STILL BAAARRRRRKING :cool:
hello my name is shaun,,,and im not so addicted to farmville,still addicted to football:o:o
BAAAARRRRRRRRRRKING er insanely so
0 -
and 1st half report,,,,to big for single post :j:j:j my bigest ever:o:oComboFix 09-06-26.02 - Shell 30/06/2009 7:06:30.4 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.502.194 [GMT 1:00]
Running from: F:\ComboFix.exe
Command switches used :: C:\Documents and Settings\Shell\Desktop\CFScript.txt
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
FILE ::
"c:\docume~1\Shell\LOCALS~1\Temp\RtkBtMnt.exe"
"c:\windows\system32\CatRoot_bak"
"c:\windows\system32\d3d8caps.dat"
"c:\windows\system32\drivers\fssflt r_tdi.sys"
"c:\windows\system32\msiexec.exe"
"c:\windows\system32\SymNeti.dll"
"c:\windows\system32\wbem\wmiapsrv.exe"
"c:\windows\system32\wscntfy.exe"
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\docume~1\Shell\LOCALS~1\Temp\RtkBtMnt.exe
c:\windows\system32\d3d8caps.dat
c:\windows\system32\msiexec.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
.
((((((((((((((((((((((((( Files Created from 2009-05-28 to 2009-06-30 )))))))))))))))))))))))))))))))
.
2009-06-30 00:39:57 . 2009-06-30 00:39:57 56 ---ha-w- C:\WINDOWS\system32\ezsidmv.dat
2009-06-30 00:39:56 . 2009-06-30 00:39:56 0 d
w- C:\Documents and Settings\Shell\Application Data\skypePM
2009-06-30 00:35:03 . 2009-06-30 06:16:57 0 d
w- C:\Documents and Settings\Shell\Application Data\Skype
2009-06-30 00:34:34 . 2009-06-30 00:34:34 0 d
w- C:\Program Files\Common Files\Skype
2009-06-30 00:34:30 . 2009-06-30 00:34:36 0 d
r- C:\Program Files\Skype
2009-06-30 00:34:15 . 2009-06-30 00:34:34 0 d
w- C:\Documents and Settings\All Users\Application Data\Skype
2009-06-30 00:03:05 . 2009-03-30 09:33:07 96104 ----a-w- C:\WINDOWS\system32\drivers\avipbb.sys
2009-06-30 00:03:05 . 2009-03-24 15:08:22 55640 ----a-w- C:\WINDOWS\system32\drivers\avgntflt.sys
2009-06-30 00:03:05 . 2009-02-13 11:29:11 22360 ----a-w- C:\WINDOWS\system32\drivers\avgntmgr.sys
2009-06-30 00:03:05 . 2009-02-13 11:17:49 45416 ----a-w- C:\WINDOWS\system32\drivers\avgntdd.sys
2009-06-30 00:02:59 . 2009-06-30 00:03:00 0 d
w- C:\Program Files\Avira
2009-06-29 23:55:05 . 2009-06-29 23:55:13 0 d
w- C:\Program Files\DVD Decrypter
2009-06-29 23:54:34 . 2009-06-29 23:54:34 0 d
w- C:\Documents and Settings\All Users\Application Data\DVD Shrink
2009-06-29 23:54:33 . 2009-06-29 23:54:33 0 d
w- C:\Program Files\DVD Shrink
2009-06-29 23:29:54 . 2009-06-29 23:29:54 0 d
w- C:\Program Files\VS Revo Group
2009-06-29 23:24:25 . 2009-06-29 23:24:25 0 ----a-w- C:\WINDOWS\nsreg.dat
2009-06-29 23:24:18 . 2009-06-29 23:24:18 0 d
w- C:\Documents and Settings\Shell\Local Settings\Application Data\Mozilla
2009-06-29 23:00:43 . 2009-06-29 23:00:44 0 d
w- C:\Program Files\CCleaner
2009-06-29 22:26:46 . 2009-06-29 22:26:46 0 d
w- C:\WINDOWS\system32\dllcache\cache
2009-06-29 15:27:54 . 2009-06-29 15:27:54 0 d-sh--w- C:\Documents and Settings\NetworkService\IETldCache
2009-06-29 10:16:15 . 2009-06-29 10:16:15 0 d
w- C:\WINDOWS\ie8updates
2009-06-29 09:59:46 . 2009-06-29 09:59:46 0 d-sh--w- C:\Documents and Settings\Shell\IECompatCache
2009-06-29 09:58:55 . 2009-06-29 09:58:55 0 d-sh--w- C:\Documents and Settings\Shell\PrivacIE
2009-06-29 09:10:41 . 2009-06-29 09:10:41 0 d
w- C:\Program Files\Trend Micro
2009-06-29 08:33:56 . 2009-04-30 21:22:34 12800
w- C:\WINDOWS\system32\dllcache\xpshims.dll
2009-06-29 08:33:56 . 2009-04-30 21:22:31 246272
w- C:\WINDOWS\system32\dllcache\ieproxy.dll
2009-06-29 08:21:44 . 2009-06-29 08:21:44 0 d-sh--w- C:\Documents and Settings\LocalService\IETldCache
2009-06-29 08:21:09 . 2009-06-29 08:21:09 0 d-sh--w- C:\Documents and Settings\Shell\IETldCache
2009-06-28 13:10:49 . 2009-06-28 13:11:35 0 dc-h--w- C:\WINDOWS\ie8
2009-06-28 11:48:45 . 2009-06-28 12:12:43 0 d
w- C:\WINDOWS\system32\CatRoot_bak
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-30 06:06:24 . 2004-08-05 03:00:00 13824 -c--a-w- C:\WINDOWS\system32\wscntfy.exe.tmp
2009-06-30 06:06:22 . 2004-08-05 03:00:00 126464 ----a-w- C:\WINDOWS\system32\wbem\wmiapsrv.exe.tmp
2009-06-30 05:33:22 . 2007-08-07 22:02:28 0 d
w- C:\Program Files\Microsoft SQL Server
2009-06-30 05:27:14 . 2008-11-14 21:14:59 0 d
w- C:\Program Files\Avanquest update
2009-06-30 00:03:00 . 2009-03-29 09:05:21 0 d
w- C:\Documents and Settings\All Users\Application Data\Avira
2009-06-29 15:17:35 . 2007-08-07 22:11:34 0 d
w- C:\Program Files\Common Files\Symantec Shared
2009-06-29 10:35:46 . 2009-01-09 17:44:30 0 d
w- C:\Program Files\Microsoft Silverlight
2009-06-29 10:17:57 . 2007-08-07 21:58:20 0 d
w- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-05-13 05:15:55 . 2007-04-18 12:31:40 915456 ----a-w- C:\WINDOWS\system32\wininet.dll
2009-05-07 15:44:00 . 2004-08-05 03:00:00 344064 ----a-w- C:\WINDOWS\system32\localspl.dll
2009-04-17 09:58:57 . 2007-03-08 13:47:48 1846656 ----a-w- C:\WINDOWS\system32\win32k.sys
2009-04-15 15:11:19 . 2004-08-05 03:00:00 584192 ----a-w- C:\WINDOWS\system32\rpcrt4.dll
.
Sigcheck
[-] 2008-04-14 00:12:36 14336 27C6D03BCDB8CFEB96B716F3D8BE3E18 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\svchost.exe
[7] 2004-08-05 03:00:00 14336 8F078AE4ED187AAABC0A305146DE6716 C:\WINDOWS\system32\svchost.exe
[7] 2004-08-04 20:00:00 14336 8F078AE4ED187AAABC0A305146DE6716 C:\WINDOWS\system32\dllcache\svchost.exe
[7] 2004-08-05 03:00:00 14336 8F078AE4ED187AAABC0A305146DE6716 C:\WINDOWS\system32\dllcache\cache\svchost.exe
[7] 2005-03-02 18:19:56 577024 1800F293BCCC8EDE8A70E12B88D80036 C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\user32.dll
[7] 2007-03-08 15:48:36 578048 7AA4F6C00405DFC4B70ED4214E7D687B C:\WINDOWS\$hf_mig$\KB925902\SP2QFE\user32.dll
[7] 2004-08-05 03:00:00 577024 C72661F8552ACE7C5C85E16A3CF505C4 C:\WINDOWS\$NtUninstallKB925902$\user32.dll
[-] 2008-04-14 00:12:08 578560 B26B135FF1B9F60C9388B4A7D16F600B C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\user32.dll
[7] 2007-03-08 15:36:28 577536 B409909F6E2E8A7067076ED748ABF1E7 C:\WINDOWS\system32\user32.dll
[7] 2007-03-08 15:36:28 577536 B409909F6E2E8A7067076ED748ABF1E7 C:\WINDOWS\system32\dllcache\user32.dll
[7] 2007-03-08 15:36:28 577536 B409909F6E2E8A7067076ED748ABF1E7 C:\WINDOWS\system32\dllcache\cache\user32.dll
[-] 2008-04-14 00:12:10 82432 2CCC474EB85CEAA3E1FA1726580A3E5A C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ws2_32.dll
[7] 2004-08-05 03:00:00 82944 2ED0B7F12A60F90092081C50FA0EC2B2 C:\WINDOWS\system32\ws2_32.dll
[7] 2004-08-04 20:00:00 82944 2ED0B7F12A60F90092081C50FA0EC2B2 C:\WINDOWS\system32\dllcache\ws2_32.dll
[7] 2004-08-05 03:00:00 82944 2ED0B7F12A60F90092081C50FA0EC2B2 C:\WINDOWS\system32\dllcache\cache\ws2_32.dll
[7] 2006-01-09 18:02:00 662016 DDE9597A3311748C1519444E2BC147BD C:\WINDOWS\$hf_mig$\KB912945\SP2QFE\wininet.dll
[7] 2007-02-20 09:52:18 665600 B258C922D22DEEC880B60720531D7627 C:\WINDOWS\$hf_mig$\KB931768\SP2QFE\wininet.dll
[7] 2007-04-18 12:46:28 665600 4261BA03AFD659DE04F0A17DFBDD454D C:\WINDOWS\$hf_mig$\KB933566\SP2QFE\wininet.dll
[7] 2007-10-11 05:57:41 666112 80D660A49E0D118144423099B2A9F5DA C:\WINDOWS\$hf_mig$\KB942615\SP2QFE\wininet.dll
[7] 2007-12-07 00:44:39 666112 085A7C37F9C6EDE1BA870B7DBEC06399 C:\WINDOWS\$hf_mig$\KB944533\SP2QFE\wininet.dll
[7] 2008-02-16 09:32:09 666112 BB1EACD6AB47E78EBCA02EB781550D55 C:\WINDOWS\$hf_mig$\KB947864\SP2QFE\wininet.dll
[7] 2008-04-21 06:56:59 666624 2E7DE1BF9418B071799EB53DE8CC22F5 C:\WINDOWS\$hf_mig$\KB950759\SP2QFE\wininet.dll
[7] 2008-04-21 06:44:29 666112 2B0C24AA747A93A28987B6D65A4A74BC C:\WINDOWS\$hf_mig$\KB950759\SP3GDR\wininet.dll
[7] 2008-04-21 06:24:02 666624 26F240C250E5B4B395CB4B178BA75437 C:\WINDOWS\$hf_mig$\KB950759\SP3QFE\wininet.dll
[7] 2008-06-23 16:12:08 667136 611ACE3F4201E9610AF8452F7C268995 C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\wininet.dll
[7] 2008-06-23 15:09:27 666112 F12FBB673DE9CC802C5DC518FE99AA2F C:\WINDOWS\$hf_mig$\KB953838\SP3GDR\wininet.dll
[7] 2008-06-23 14:54:47 666624 972299B7241EC325D8C7E5638C884925 C:\WINDOWS\$hf_mig$\KB953838\SP3QFE\wininet.dll
[7] 2008-08-20 05:33:19 667648 C91E3A6EF094202F6B5CA8960DFCF243 C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\wininet.dll
[7] 2008-08-20 05:30:51 666112 9AF5F25124FBDC36E2B510729CBA2674 C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\wininet.dll
[7] 2008-08-20 04:58:48 666624 94418F53D2612C26DBADC04DAFBC197C C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\wininet.dll
[7] 2008-10-16 10:20:49 667648 93C9D0A216498EE14EB9B26119BB95EE C:\WINDOWS\$hf_mig$\KB958215\SP2QFE\wininet.dll
[7] 2008-10-16 01:00:11 666112 1576318BF08D28CC61D1278114AD8D5B C:\WINDOWS\$hf_mig$\KB958215\SP3GDR\wininet.dll
[7] 2008-10-16 01:04:06 667136 E8FCE58A470999350F64C591557F9E42 C:\WINDOWS\$hf_mig$\KB958215\SP3QFE\wininet.dll
[7] 2008-12-20 23:56:00 827904 044E0A4E9FE97C0FB9AFE9C89E2A82E6 C:\WINDOWS\$hf_mig$\KB961260-IE7\SP2QFE\wininet.dll
[7] 2009-04-29 04:49:30 828928 62CCA075F44015147B8971DAFFBCFF76 C:\WINDOWS\$hf_mig$\KB969897-IE7\SP3QFE\wininet.dll
[7] 2009-05-13 05:10:01 915456 C0EB6850C8A02A154281749DC61FAF22 C:\WINDOWS\$hf_mig$\KB969897-IE8\SP3QFE\wininet.dll
[7] 2004-08-05 03:00:00 656384 C0823FC5469663BA63E7DB88F9919D70 C:\WINDOWS\$NtUninstallKB912945$\wininet.dll
[7] 2006-01-09 18:08:42 658432 D9E3F8440D208698B3F0E5CFAC26DAA1 C:\WINDOWS\$NtUninstallKB931768$\wininet.dll
[7] 2007-02-20 09:48:18 658944 30D1C47E40EFBB792FF8D3C3B51CE507 C:\WINDOWS\$NtUninstallKB933566$\wininet.dll
[7] 2007-04-18 12:31:40 658944 B7156CD97E739F3014BC4D61758F868A C:\WINDOWS\$NtUninstallKB942615$\wininet.dll
[7] 2007-10-11 06:13:45 659456 2005AD86A22AEE68E21EE59F9CCB77F2 C:\WINDOWS\$NtUninstallKB944533$\wininet.dll
[7] 2007-12-07 01:07:14 659456 57D1B5150CF6331FAC6B3E04C1FCB966 C:\WINDOWS\$NtUninstallKB947864$\wininet.dll
[7] 2008-02-16 08:59:39 659456 0C690E77C0E924C45B4D7045B182FFF1 C:\WINDOWS\$NtUninstallKB950759$\wininet.dll
[7] 2008-04-21 07:04:00 659456 1EFB8A3EA8454AEC1BB8A240A2845598 C:\WINDOWS\$NtUninstallKB953838$\wininet.dll
[7] 2008-06-23 15:38:34 659456 9EEA04BC4C3FA521D256D89940FAB4DB C:\WINDOWS\$NtUninstallKB956390$\wininet.dll
[7] 2008-08-20 05:38:43 659456 87E694D09893978F22024FEEEDF35342 C:\WINDOWS\$NtUninstallKB958215$\wininet.dll
[7] 2008-10-16 10:37:03 659456 6F1E4BFD78C4E0D05FF3725D59B72925 C:\WINDOWS\ie7\wininet.dll
[7] 2007-08-13 18:54:10 818688 A4A0FC92358F39538A6494C42EF99FE9 C:\WINDOWS\ie7updates\KB961260-IE7\wininet.dll
[7] 2008-12-20 23:15:41 826368 A82935D32D0672E8FF4E91AE398E901C C:\WINDOWS\ie7updates\KB969897-IE7\wininet.dll
[7] 2009-04-29 04:56:02 827392 8E2D471157B0DF329D8D0EA5D83B0DDB C:\WINDOWS\ie8\wininet.dll
[7] 2009-03-08 03:34:58 914944 6CE32F7778061CCC5814D5E0F282D369 C:\WINDOWS\ie8updates\KB969897-IE8\wininet.dll
[7] 2009-04-29 04:56:02 827392 8E2D471157B0DF329D8D0EA5D83B0DDB C:\WINDOWS\SoftwareDistribution\Download\82c738ec00f0f07f8ea182bc95439593\sp3gdr\wininet.dll
[7] 2009-04-29 04:49:30 828928 62CCA075F44015147B8971DAFFBCFF76 C:\WINDOWS\SoftwareDistribution\Download\82c738ec00f0f07f8ea182bc95439593\sp3qfe\wininet.dll
[-] 2008-04-14 00:12:08 666112 7A4F775ABB2F1C97DEF3E73AFA2FAEDD C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\wininet.dll
[7] 2009-05-13 05:15:55 915456 366C72AF6970DB7BB39AB0142BF09DB5 C:\WINDOWS\SoftwareDistribution\Download\acef69c5a8a4846ded0fc4ea93f74166\SP3GDR\wininet.dll
[7] 2009-05-13 05:10:01 915456 C0EB6850C8A02A154281749DC61FAF22 C:\WINDOWS\SoftwareDistribution\Download\acef69c5a8a4846ded0fc4ea93f74166\SP3QFE\wininet.dll
[7] 2009-05-13 05:15:55 915456 366C72AF6970DB7BB39AB0142BF09DB5 C:\WINDOWS\system32\wininet.dll
[7] 2009-05-13 05:15:55 915456 366C72AF6970DB7BB39AB0142BF09DB5 C:\WINDOWS\system32\dllcache\wininet.dll
[7] 2009-05-13 05:15:55 915456 366C72AF6970DB7BB39AB0142BF09DB5 C:\WINDOWS\system32\dllcache\cache\wininet.dll
[7] 2007-10-30 16:53:32 360832 64798ECFA43D78C7178375FCDD16D8C8 C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[7] 2008-06-20 10:44:42 360960 744E57C99232201AE98C49168B918F48 C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[7] 2008-06-20 11:51:12 361600 9AEFA14BD6B182D61E3119FA5F436D3D C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[7] 2008-06-20 11:59:02 361600 AD978A1B783B5719720CFF204B666C8E C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[7] 2004-08-05 03:00:00 359040 9F4B36614A0FC234525BA224957DE55C C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[7] 2007-10-30 17:20:55 360064 90CAFF4B094573449A0872A0F919B178 C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[-] 2008-04-13 19:20:16 361344 93EA8D04EC73A85DB02EB8805988F733 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\tcpip.sys
[7] 2008-06-20 10:45:13 360320 2A5554FC5B1E04E131230E3CE035C3F9 C:\WINDOWS\system32\dllcache\tcpip.sys
[7] 2008-06-20 10:45:13 360320 2A5554FC5B1E04E131230E3CE035C3F9 C:\WINDOWS\system32\dllcache\cache\tcpip.sys
[7] 2008-06-20 10:45:13 360320 2A5554FC5B1E04E131230E3CE035C3F9 C:\WINDOWS\system32\drivers\tcpip.sys
[-] 2008-04-14 00:12:39 507904 ED0EF0A136DEC83DF69F04118870003E C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\winlogon.exe
[7] 2004-08-05 03:00:00 502272 01C3346C241652F43AED8E2149881BFE C:\WINDOWS\system32\winlogon.exe
[7] 2004-08-04 20:00:00 502272 01C3346C241652F43AED8E2149881BFE C:\WINDOWS\system32\dllcache\winlogon.exe
[7] 2004-08-05 03:00:00 502272 01C3346C241652F43AED8E2149881BFE C:\WINDOWS\system32\dllcache\cache\winlogon.exe
[-] 2008-04-13 19:20:37 182656 1DF7F42665C94B825322FAE71721130D C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ndis.sys
[7] 2004-08-05 03:00:00 182912 558635D3AF1C7546D26067D5D9B6959E C:\WINDOWS\system32\dllcache\ndis.sys
[7] 2004-08-05 03:00:00 182912 558635D3AF1C7546D26067D5D9B6959E C:\WINDOWS\system32\dllcache\cache\ndis.sys
[7] 2004-08-05 03:00:00 182912 558635D3AF1C7546D26067D5D9B6959E C:\WINDOWS\system32\drivers\ndis.sys
[-] 2008-04-13 18:53:34 36608 3BB22519A194418D5FEC05D800A19AD0 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ip6fw.sys
[7] 2004-08-05 03:00:00 29056 4448006B6BC60E6C027932CFC38D6855 C:\WINDOWS\system32\dllcache\ip6fw.sys
[7] 2004-08-05 03:00:00 29056 4448006B6BC60E6C027932CFC38D6855 C:\WINDOWS\system32\dllcache\cache\ip6fw.sys
[7] 2004-08-05 03:00:00 29056 4448006B6BC60E6C027932CFC38D6855 C:\WINDOWS\system32\drivers\ip6fw.sys
ComboFix 09-06-26.02 - Shell 30/06/2009 7:06:30.4 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.502.194 [GMT 1:00]
Running from: F:\ComboFix.exe
Command switches used :: C:\Documents and Settings\Shell\Desktop\CFScript.txt
AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}
FILE ::
"c:\docume~1\Shell\LOCALS~1\Temp\RtkBtMnt.exe"
"c:\windows\system32\CatRoot_bak"
"c:\windows\system32\d3d8caps.dat"
"c:\windows\system32\drivers\fssflt r_tdi.sys"
"c:\windows\system32\msiexec.exe"
"c:\windows\system32\SymNeti.dll"
"c:\windows\system32\wbem\wmiapsrv.exe"
"c:\windows\system32\wscntfy.exe"
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\docume~1\Shell\LOCALS~1\Temp\RtkBtMnt.exe
c:\windows\system32\d3d8caps.dat
c:\windows\system32\msiexec.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
.
((((((((((((((((((((((((( Files Created from 2009-05-28 to 2009-06-30 )))))))))))))))))))))))))))))))
.
2009-06-30 00:39:57 . 2009-06-30 00:39:57 56 ---ha-w- C:\WINDOWS\system32\ezsidmv.dat
2009-06-30 00:39:56 . 2009-06-30 00:39:56 0 d
w- C:\Documents and Settings\Shell\Application Data\skypePM
2009-06-30 00:35:03 . 2009-06-30 06:16:57 0 d
w- C:\Documents and Settings\Shell\Application Data\Skype
2009-06-30 00:34:34 . 2009-06-30 00:34:34 0 d
w- C:\Program Files\Common Files\Skype
2009-06-30 00:34:30 . 2009-06-30 00:34:36 0 d
r- C:\Program Files\Skype
2009-06-30 00:34:15 . 2009-06-30 00:34:34 0 d
w- C:\Documents and Settings\All Users\Application Data\Skype
2009-06-30 00:03:05 . 2009-03-30 09:33:07 96104 ----a-w- C:\WINDOWS\system32\drivers\avipbb.sys
2009-06-30 00:03:05 . 2009-03-24 15:08:22 55640 ----a-w- C:\WINDOWS\system32\drivers\avgntflt.sys
2009-06-30 00:03:05 . 2009-02-13 11:29:11 22360 ----a-w- C:\WINDOWS\system32\drivers\avgntmgr.sys
2009-06-30 00:03:05 . 2009-02-13 11:17:49 45416 ----a-w- C:\WINDOWS\system32\drivers\avgntdd.sys
2009-06-30 00:02:59 . 2009-06-30 00:03:00 0 d
w- C:\Program Files\Avira
2009-06-29 23:55:05 . 2009-06-29 23:55:13 0 d
w- C:\Program Files\DVD Decrypter
2009-06-29 23:54:34 . 2009-06-29 23:54:34 0 d
w- C:\Documents and Settings\All Users\Application Data\DVD Shrink
2009-06-29 23:54:33 . 2009-06-29 23:54:33 0 d
w- C:\Program Files\DVD Shrink
2009-06-29 23:29:54 . 2009-06-29 23:29:54 0 d
w- C:\Program Files\VS Revo Group
2009-06-29 23:24:25 . 2009-06-29 23:24:25 0 ----a-w- C:\WINDOWS\nsreg.dat
2009-06-29 23:24:18 . 2009-06-29 23:24:18 0 d
w- C:\Documents and Settings\Shell\Local Settings\Application Data\Mozilla
2009-06-29 23:00:43 . 2009-06-29 23:00:44 0 d
w- C:\Program Files\CCleaner
2009-06-29 22:26:46 . 2009-06-29 22:26:46 0 d
w- C:\WINDOWS\system32\dllcache\cache
2009-06-29 15:27:54 . 2009-06-29 15:27:54 0 d-sh--w- C:\Documents and Settings\NetworkService\IETldCache
2009-06-29 10:16:15 . 2009-06-29 10:16:15 0 d
w- C:\WINDOWS\ie8updates
2009-06-29 09:59:46 . 2009-06-29 09:59:46 0 d-sh--w- C:\Documents and Settings\Shell\IECompatCache
2009-06-29 09:58:55 . 2009-06-29 09:58:55 0 d-sh--w- C:\Documents and Settings\Shell\PrivacIE
2009-06-29 09:10:41 . 2009-06-29 09:10:41 0 d
w- C:\Program Files\Trend Micro
2009-06-29 08:33:56 . 2009-04-30 21:22:34 12800
w- C:\WINDOWS\system32\dllcache\xpshims.dll
2009-06-29 08:33:56 . 2009-04-30 21:22:31 246272
w- C:\WINDOWS\system32\dllcache\ieproxy.dll
2009-06-29 08:21:44 . 2009-06-29 08:21:44 0 d-sh--w- C:\Documents and Settings\LocalService\IETldCache
2009-06-29 08:21:09 . 2009-06-29 08:21:09 0 d-sh--w- C:\Documents and Settings\Shell\IETldCache
2009-06-28 13:10:49 . 2009-06-28 13:11:35 0 dc-h--w- C:\WINDOWS\ie8
2009-06-28 11:48:45 . 2009-06-28 12:12:43 0 d
w- C:\WINDOWS\system32\CatRoot_bak
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.WAS DEBT FREE & STILL BAAARRRRRKING :cool:
hello my name is shaun,,,and im not so addicted to farmville,still addicted to football:o:o
BAAAARRRRRRRRRRKING er insanely so0 -
2009-06-30 06:06:24 . 2004-08-05 03:00:00 13824 -c--a-w- C:\WINDOWS\system32\wscntfy.exe.tmp
2009-06-30 06:06:22 . 2004-08-05 03:00:00 126464 ----a-w- C:\WINDOWS\system32\wbem\wmiapsrv.exe.tmp
2009-06-30 05:33:22 . 2007-08-07 22:02:28 0 d
w- C:\Program Files\Microsoft SQL Server
2009-06-30 05:27:14 . 2008-11-14 21:14:59 0 d
w- C:\Program Files\Avanquest update
2009-06-30 00:03:00 . 2009-03-29 09:05:21 0 d
w- C:\Documents and Settings\All Users\Application Data\Avira
2009-06-29 15:17:35 . 2007-08-07 22:11:34 0 d
w- C:\Program Files\Common Files\Symantec Shared
2009-06-29 10:35:46 . 2009-01-09 17:44:30 0 d
w- C:\Program Files\Microsoft Silverlight
2009-06-29 10:17:57 . 2007-08-07 21:58:20 0 d
w- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-05-13 05:15:55 . 2007-04-18 12:31:40 915456 ----a-w- C:\WINDOWS\system32\wininet.dll
2009-05-07 15:44:00 . 2004-08-05 03:00:00 344064 ----a-w- C:\WINDOWS\system32\localspl.dll
2009-04-17 09:58:57 . 2007-03-08 13:47:48 1846656 ----a-w- C:\WINDOWS\system32\win32k.sys
2009-04-15 15:11:19 . 2004-08-05 03:00:00 584192 ----a-w- C:\WINDOWS\system32\rpcrt4.dll
.
Sigcheck
[-] 2008-04-14 00:12:36 14336 27C6D03BCDB8CFEB96B716F3D8BE3E18 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\svchost.exe
[7] 2004-08-05 03:00:00 14336 8F078AE4ED187AAABC0A305146DE6716 C:\WINDOWS\system32\svchost.exe
[7] 2004-08-04 20:00:00 14336 8F078AE4ED187AAABC0A305146DE6716 C:\WINDOWS\system32\dllcache\svchost.exe
[7] 2004-08-05 03:00:00 14336 8F078AE4ED187AAABC0A305146DE6716 C:\WINDOWS\system32\dllcache\cache\svchost.exe
[7] 2005-03-02 18:19:56 577024 1800F293BCCC8EDE8A70E12B88D80036 C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\user32.dll
[7] 2007-03-08 15:48:36 578048 7AA4F6C00405DFC4B70ED4214E7D687B C:\WINDOWS\$hf_mig$\KB925902\SP2QFE\user32.dll
[7] 2004-08-05 03:00:00 577024 C72661F8552ACE7C5C85E16A3CF505C4 C:\WINDOWS\$NtUninstallKB925902$\user32.dll
[-] 2008-04-14 00:12:08 578560 B26B135FF1B9F60C9388B4A7D16F600B C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\user32.dll
[7] 2007-03-08 15:36:28 577536 B409909F6E2E8A7067076ED748ABF1E7 C:\WINDOWS\system32\user32.dll
[7] 2007-03-08 15:36:28 577536 B409909F6E2E8A7067076ED748ABF1E7 C:\WINDOWS\system32\dllcache\user32.dll
[7] 2007-03-08 15:36:28 577536 B409909F6E2E8A7067076ED748ABF1E7 C:\WINDOWS\system32\dllcache\cache\user32.dll
[-] 2008-04-14 00:12:10 82432 2CCC474EB85CEAA3E1FA1726580A3E5A C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ws2_32.dll
[7] 2004-08-05 03:00:00 82944 2ED0B7F12A60F90092081C50FA0EC2B2 C:\WINDOWS\system32\ws2_32.dll
[7] 2004-08-04 20:00:00 82944 2ED0B7F12A60F90092081C50FA0EC2B2 C:\WINDOWS\system32\dllcache\ws2_32.dll
[7] 2004-08-05 03:00:00 82944 2ED0B7F12A60F90092081C50FA0EC2B2 C:\WINDOWS\system32\dllcache\cache\ws2_32.dll
[7] 2006-01-09 18:02:00 662016 DDE9597A3311748C1519444E2BC147BD C:\WINDOWS\$hf_mig$\KB912945\SP2QFE\wininet.dll
[7] 2007-02-20 09:52:18 665600 B258C922D22DEEC880B60720531D7627 C:\WINDOWS\$hf_mig$\KB931768\SP2QFE\wininet.dll
[7] 2007-04-18 12:46:28 665600 4261BA03AFD659DE04F0A17DFBDD454D C:\WINDOWS\$hf_mig$\KB933566\SP2QFE\wininet.dll
[7] 2007-10-11 05:57:41 666112 80D660A49E0D118144423099B2A9F5DA C:\WINDOWS\$hf_mig$\KB942615\SP2QFE\wininet.dll
[7] 2007-12-07 00:44:39 666112 085A7C37F9C6EDE1BA870B7DBEC06399 C:\WINDOWS\$hf_mig$\KB944533\SP2QFE\wininet.dll
[7] 2008-02-16 09:32:09 666112 BB1EACD6AB47E78EBCA02EB781550D55 C:\WINDOWS\$hf_mig$\KB947864\SP2QFE\wininet.dll
[7] 2008-04-21 06:56:59 666624 2E7DE1BF9418B071799EB53DE8CC22F5 C:\WINDOWS\$hf_mig$\KB950759\SP2QFE\wininet.dll
[7] 2008-04-21 06:44:29 666112 2B0C24AA747A93A28987B6D65A4A74BC C:\WINDOWS\$hf_mig$\KB950759\SP3GDR\wininet.dll
[7] 2008-04-21 06:24:02 666624 26F240C250E5B4B395CB4B178BA75437 C:\WINDOWS\$hf_mig$\KB950759\SP3QFE\wininet.dll
[7] 2008-06-23 16:12:08 667136 611ACE3F4201E9610AF8452F7C268995 C:\WINDOWS\$hf_mig$\KB953838\SP2QFE\wininet.dll
[7] 2008-06-23 15:09:27 666112 F12FBB673DE9CC802C5DC518FE99AA2F C:\WINDOWS\$hf_mig$\KB953838\SP3GDR\wininet.dll
[7] 2008-06-23 14:54:47 666624 972299B7241EC325D8C7E5638C884925 C:\WINDOWS\$hf_mig$\KB953838\SP3QFE\wininet.dll
[7] 2008-08-20 05:33:19 667648 C91E3A6EF094202F6B5CA8960DFCF243 C:\WINDOWS\$hf_mig$\KB956390\SP2QFE\wininet.dll
[7] 2008-08-20 05:30:51 666112 9AF5F25124FBDC36E2B510729CBA2674 C:\WINDOWS\$hf_mig$\KB956390\SP3GDR\wininet.dll
[7] 2008-08-20 04:58:48 666624 94418F53D2612C26DBADC04DAFBC197C C:\WINDOWS\$hf_mig$\KB956390\SP3QFE\wininet.dll
[7] 2008-10-16 10:20:49 667648 93C9D0A216498EE14EB9B26119BB95EE C:\WINDOWS\$hf_mig$\KB958215\SP2QFE\wininet.dll
[7] 2008-10-16 01:00:11 666112 1576318BF08D28CC61D1278114AD8D5B C:\WINDOWS\$hf_mig$\KB958215\SP3GDR\wininet.dll
[7] 2008-10-16 01:04:06 667136 E8FCE58A470999350F64C591557F9E42 C:\WINDOWS\$hf_mig$\KB958215\SP3QFE\wininet.dll
[7] 2008-12-20 23:56:00 827904 044E0A4E9FE97C0FB9AFE9C89E2A82E6 C:\WINDOWS\$hf_mig$\KB961260-IE7\SP2QFE\wininet.dll
[7] 2009-04-29 04:49:30 828928 62CCA075F44015147B8971DAFFBCFF76 C:\WINDOWS\$hf_mig$\KB969897-IE7\SP3QFE\wininet.dll
[7] 2009-05-13 05:10:01 915456 C0EB6850C8A02A154281749DC61FAF22 C:\WINDOWS\$hf_mig$\KB969897-IE8\SP3QFE\wininet.dll
[7] 2004-08-05 03:00:00 656384 C0823FC5469663BA63E7DB88F9919D70 C:\WINDOWS\$NtUninstallKB912945$\wininet.dll
[7] 2006-01-09 18:08:42 658432 D9E3F8440D208698B3F0E5CFAC26DAA1 C:\WINDOWS\$NtUninstallKB931768$\wininet.dll
[7] 2007-02-20 09:48:18 658944 30D1C47E40EFBB792FF8D3C3B51CE507 C:\WINDOWS\$NtUninstallKB933566$\wininet.dll
[7] 2007-04-18 12:31:40 658944 B7156CD97E739F3014BC4D61758F868A C:\WINDOWS\$NtUninstallKB942615$\wininet.dll
[7] 2007-10-11 06:13:45 659456 2005AD86A22AEE68E21EE59F9CCB77F2 C:\WINDOWS\$NtUninstallKB944533$\wininet.dll
[7] 2007-12-07 01:07:14 659456 57D1B5150CF6331FAC6B3E04C1FCB966 C:\WINDOWS\$NtUninstallKB947864$\wininet.dll
[7] 2008-02-16 08:59:39 659456 0C690E77C0E924C45B4D7045B182FFF1 C:\WINDOWS\$NtUninstallKB950759$\wininet.dll
[7] 2008-04-21 07:04:00 659456 1EFB8A3EA8454AEC1BB8A240A2845598 C:\WINDOWS\$NtUninstallKB953838$\wininet.dll
[7] 2008-06-23 15:38:34 659456 9EEA04BC4C3FA521D256D89940FAB4DB C:\WINDOWS\$NtUninstallKB956390$\wininet.dll
[7] 2008-08-20 05:38:43 659456 87E694D09893978F22024FEEEDF35342 C:\WINDOWS\$NtUninstallKB958215$\wininet.dll
[7] 2008-10-16 10:37:03 659456 6F1E4BFD78C4E0D05FF3725D59B72925 C:\WINDOWS\ie7\wininet.dll
[7] 2007-08-13 18:54:10 818688 A4A0FC92358F39538A6494C42EF99FE9 C:\WINDOWS\ie7updates\KB961260-IE7\wininet.dll
[7] 2008-12-20 23:15:41 826368 A82935D32D0672E8FF4E91AE398E901C C:\WINDOWS\ie7updates\KB969897-IE7\wininet.dll
[7] 2009-04-29 04:56:02 827392 8E2D471157B0DF329D8D0EA5D83B0DDB C:\WINDOWS\ie8\wininet.dll
[7] 2009-03-08 03:34:58 914944 6CE32F7778061CCC5814D5E0F282D369 C:\WINDOWS\ie8updates\KB969897-IE8\wininet.dll
[7] 2009-04-29 04:56:02 827392 8E2D471157B0DF329D8D0EA5D83B0DDB C:\WINDOWS\SoftwareDistribution\Download\82c738ec00f0f07f8ea182bc95439593\sp3gdr\wininet.dll
[7] 2009-04-29 04:49:30 828928 62CCA075F44015147B8971DAFFBCFF76 C:\WINDOWS\SoftwareDistribution\Download\82c738ec00f0f07f8ea182bc95439593\sp3qfe\wininet.dll
[-] 2008-04-14 00:12:08 666112 7A4F775ABB2F1C97DEF3E73AFA2FAEDD C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\wininet.dll
[7] 2009-05-13 05:15:55 915456 366C72AF6970DB7BB39AB0142BF09DB5 C:\WINDOWS\SoftwareDistribution\Download\acef69c5a8a4846ded0fc4ea93f74166\SP3GDR\wininet.dll
[7] 2009-05-13 05:10:01 915456 C0EB6850C8A02A154281749DC61FAF22 C:\WINDOWS\SoftwareDistribution\Download\acef69c5a8a4846ded0fc4ea93f74166\SP3QFE\wininet.dll
[7] 2009-05-13 05:15:55 915456 366C72AF6970DB7BB39AB0142BF09DB5 C:\WINDOWS\system32\wininet.dll
[7] 2009-05-13 05:15:55 915456 366C72AF6970DB7BB39AB0142BF09DB5 C:\WINDOWS\system32\dllcache\wininet.dll
[7] 2009-05-13 05:15:55 915456 366C72AF6970DB7BB39AB0142BF09DB5 C:\WINDOWS\system32\dllcache\cache\wininet.dll
[7] 2007-10-30 16:53:32 360832 64798ECFA43D78C7178375FCDD16D8C8 C:\WINDOWS\$hf_mig$\KB941644\SP2QFE\tcpip.sys
[7] 2008-06-20 10:44:42 360960 744E57C99232201AE98C49168B918F48 C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\tcpip.sys
[7] 2008-06-20 11:51:12 361600 9AEFA14BD6B182D61E3119FA5F436D3D C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\tcpip.sys
[7] 2008-06-20 11:59:02 361600 AD978A1B783B5719720CFF204B666C8E C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[7] 2004-08-05 03:00:00 359040 9F4B36614A0FC234525BA224957DE55C C:\WINDOWS\$NtUninstallKB941644$\tcpip.sys
[7] 2007-10-30 17:20:55 360064 90CAFF4B094573449A0872A0F919B178 C:\WINDOWS\$NtUninstallKB951748$\tcpip.sys
[-] 2008-04-13 19:20:16 361344 93EA8D04EC73A85DB02EB8805988F733 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\tcpip.sys
[7] 2008-06-20 10:45:13 360320 2A5554FC5B1E04E131230E3CE035C3F9 C:\WINDOWS\system32\dllcache\tcpip.sys
[7] 2008-06-20 10:45:13 360320 2A5554FC5B1E04E131230E3CE035C3F9 C:\WINDOWS\system32\dllcache\cache\tcpip.sys
[7] 2008-06-20 10:45:13 360320 2A5554FC5B1E04E131230E3CE035C3F9 C:\WINDOWS\system32\drivers\tcpip.sys
[-] 2008-04-14 00:12:39 507904 ED0EF0A136DEC83DF69F04118870003E C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\winlogon.exe
[7] 2004-08-05 03:00:00 502272 01C3346C241652F43AED8E2149881BFE C:\WINDOWS\system32\winlogon.exe
[7] 2004-08-04 20:00:00 502272 01C3346C241652F43AED8E2149881BFE C:\WINDOWS\system32\dllcache\winlogon.exe
[7] 2004-08-05 03:00:00 502272 01C3346C241652F43AED8E2149881BFE C:\WINDOWS\system32\dllcache\cache\winlogon.exe
[-] 2008-04-13 19:20:37 182656 1DF7F42665C94B825322FAE71721130D C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ndis.sys
[7] 2004-08-05 03:00:00 182912 558635D3AF1C7546D26067D5D9B6959E C:\WINDOWS\system32\dllcache\ndis.sys
[7] 2004-08-05 03:00:00 182912 558635D3AF1C7546D26067D5D9B6959E C:\WINDOWS\system32\dllcache\cache\ndis.sys
[7] 2004-08-05 03:00:00 182912 558635D3AF1C7546D26067D5D9B6959E C:\WINDOWS\system32\drivers\ndis.sys
[-] 2008-04-13 18:53:34 36608 3BB22519A194418D5FEC05D800A19AD0 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ip6fw.sys
[7] 2004-08-05 03:00:00 29056 4448006B6BC60E6C027932CFC38D6855 C:\WINDOWS\system32\dllcache\ip6fw.sys
[7] 2004-08-05 03:00:00 29056 4448006B6BC60E6C027932CFC38D6855 C:\WINDOWS\system32\dllcache\cache\ip6fw.sys
[7] 2004-08-05 03:00:00 29056 4448006B6BC60E6C027932CFC38D6855 C:\WINDOWS\system32\drivers\ip6fw.sys
[7] 2005-03-02 00:36:40 2056832 D8ABA3EAB509627E707A3B14F00FBB6B C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\ntkrnlpa.exe
[7] 2009-02-07 18:02:58 2066048 5BA7F2141BC6DB06100D0E5A732C617A C:\WINDOWS\$hf_mig$\KB956572\SP3GDR\ntkrnlpa.exe
[7] 2009-02-06 10:30:40 2066176 607352B9CB3D708C67F6039097801B5A C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\ntkrnlpa.exe
[7] 2008-08-14 09:33:16 2066048 4AC58F03EB94A72809949D757FC39D80 C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntkrnlpa.exe
[7] 2008-08-14 14:39:46 2066048 A25E9B86EFFB2AF33BF51E676B68BFB0 C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe
[7] 2004-08-04 05:59:02 2015232 FB142B7007CA2EEA76966C6C5CC12150 C:\WINDOWS\$NtUninstallKB896256$\ntkrnlpa.exe
[7] 2005-09-28 23:35:22 2015744 48472D224E1703882B4DE0E28E205E9B C:\WINDOWS\$NtUninstallKB929338$\ntkrnlpa.exe
[7] 2006-12-19 16:12:20 2017280 FA64F313F5237C53A909906113ACAE7D C:\WINDOWS\$NtUninstallKB931784$\ntkrnlpa.exe
[7] 2008-08-14 09:18:46 2020864 501FDE895F35DF1DAE49FD54BBF9D396 C:\WINDOWS\$NtUninstallKB956572$\ntkrnlpa.exe
[7] 2007-02-28 09:16:00 2017280 2DFB215E291E3D9B1CF9A6739B3BF16C C:\WINDOWS\$NtUninstallKB956841$\ntkrnlpa.exe
[7] 2009-02-06 09:49:25 2062976 9D832AF3FD1917DB0E1E8B2F000A2E3A C:\WINDOWS\Driver Cache\i386\ntkrnlpa.exe
[7] 2009-02-06 16:49:02 2057728 3006410E24772CC6953F0B5C01BEB35F C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP2GDR\ntkrnlpa.exe
[7] 2009-02-06 09:49:25 2062976 9D832AF3FD1917DB0E1E8B2F000A2E3A C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP2QFE\ntkrnlpa.exe
[7] 2009-02-07 18:02:58 2066048 5BA7F2141BC6DB06100D0E5A732C617A C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP3GDR\ntkrnlpa.exe
[7] 2009-02-06 10:30:40 2066176 607352B9CB3D708C67F6039097801B5A C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP3QFE\ntkrnlpa.exe
[-] 2008-04-13 18:31:21 2065792 109F8E3E3C82E337BB71B6BC9B895D61 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ntkrnlpa.exe
[7] 2009-02-06 09:49:26 2020864 243223E3FB74B68DFFBB41989F33DFB3 C:\WINDOWS\system32\ntkrnlpa.exe
[7] 2009-02-06 09:49:25 2062976 9D832AF3FD1917DB0E1E8B2F000A2E3A C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
[7] 2009-02-06 09:49:26 2020864 243223E3FB74B68DFFBB41989F33DFB3 C:\WINDOWS\system32\dllcache\cache\ntkrnlpa.exe
[7] 2005-03-02 01:04:22 2179456 28187802B7C368C0D3AEF7D4C382AABB C:\WINDOWS\$hf_mig$\KB890859\SP2QFE\ntoskrnl.exe
[7] 2009-02-06 11:08:19 2189056 7A95B10A73737EBF24139AAA63F5212B C:\WINDOWS\$hf_mig$\KB956572\SP3GDR\ntoskrnl.exe
[7] 2009-02-07 18:35:26 2189184 EFE8EACE83EAAD5849A7A548FB75B584 C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\ntoskrnl.exe
[7] 2008-08-14 10:11:02 2189184WAS DEBT FREE & STILL BAAARRRRRKING :cool:
hello my name is shaun,,,and im not so addicted to farmville,still addicted to football:o:o
BAAAARRRRRRRRRRKING er insanely so0 -
EEAF32F8E15A24F62BECB1BD403BB5C5 C:\WINDOWS\$hf_mig$\KB956841\SP3GDR\ntoskrnl.exe
[7] 2008-08-14 15:11:10 2189184 31914172342BFF330063F343AC6958FE C:\WINDOWS\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe
[7] 2004-08-04 06:18:32 2148352 626309040459C3915997EF98EC1C8D40 C:\WINDOWS\$NtUninstallKB896256$\ntoskrnl.exe
[7] 2005-09-29 00:02:42 2136064 25C36DBC46E8EFF2A811769A60715AC5 C:\WINDOWS\$NtUninstallKB929338$\ntoskrnl.exe
[7] 2006-12-19 16:49:02 2137600 57B9D140E1EB8B0EA06DF927B63B0EEE C:\WINDOWS\$NtUninstallKB931784$\ntoskrnl.exe
[7] 2008-08-14 09:55:01 2142720 60794EA12961B7341AD54C731B50AE15 C:\WINDOWS\$NtUninstallKB956572$\ntoskrnl.exe
[7] 2007-02-28 09:53:04 2137600 E6679C3023B17D8B78946BC5DF53FA20 C:\WINDOWS\$NtUninstallKB956841$\ntoskrnl.exe
[7] 2009-02-06 10:32:03 2186112 6A936E9D7BADAF3CAAEED1E1966EC1B0 C:\WINDOWS\Driver Cache\i386\ntoskrnl.exe
[7] 2009-02-06 17:24:35 2180480 FACEBB0CA3154F77009CDFEE78A00BBB C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP2GDR\ntoskrnl.exe
[7] 2009-02-06 10:32:03 2186112 6A936E9D7BADAF3CAAEED1E1966EC1B0 C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP2QFE\ntoskrnl.exe
[7] 2009-02-06 11:08:19 2189056 7A95B10A73737EBF24139AAA63F5212B C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP3GDR\ntoskrnl.exe
[7] 2009-02-07 18:35:26 2189184 EFE8EACE83EAAD5849A7A548FB75B584 C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP3QFE\ntoskrnl.exe
[-] 2008-04-13 19:27:53 2188928 0C89243C7C3EE199B96FCC16990E0679 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ntoskrnl.exe
[7] 2009-02-06 10:29:47 2142720 19A791C5DFE59AA9BB1461C4957004F6 C:\WINDOWS\system32\ntoskrnl.exe
[7] 2009-02-06 10:32:03 2186112 6A936E9D7BADAF3CAAEED1E1966EC1B0 C:\WINDOWS\system32\dllcache\ntoskrnl.exe
[7] 2009-02-06 10:29:47 2142720 19A791C5DFE59AA9BB1461C4957004F6 C:\WINDOWS\system32\dllcache\cache\ntoskrnl.exe
[7] 2007-06-13 10:23:07 1033216 97BD6515465659FF8F3B7BE375B2EA87 C:\WINDOWS\explorer.exe
[7] 2007-06-13 11:26:03 1033216 7712DF0CDDE3A5AC89843E61CD5B3658 C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
[7] 2004-08-05 03:00:00 1032192 A0732187050030AE399B241436565E64 C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
[-] 2008-04-14 00:12:19 1033728 12896823FB95BFB3DC9B46BCAEDC9923 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\explorer.exe
[7] 2007-06-13 10:23:07 1033216 97BD6515465659FF8F3B7BE375B2EA87 C:\WINDOWS\system32\dllcache\explorer.exe
[7] 2007-06-13 10:23:07 1033216 97BD6515465659FF8F3B7BE375B2EA87 C:\WINDOWS\system32\dllcache\cache\explorer.exe
[7] 2009-02-06 11:11:05 110592 65DF52F5B8B6E9BBD183505225C37315 C:\WINDOWS\$hf_mig$\KB956572\SP3GDR\services.exe
[7] 2009-02-06 11:06:24 110592 020CEAAEDC8EB655B6506B8C70D53BB6 C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\services.exe
[7] 2004-08-05 03:00:00 108032 C6CE6EEC82F187615D1002BB3BB50ED4 C:\WINDOWS\$NtUninstallKB956572$\services.exe
[7] 2009-02-06 17:14:03 110592 37561F8D4160D62DA86D24AE41FAE8DE C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP2GDR\services.exe
[7] 2009-02-06 10:22:21 110592 4712531AB7A01B7EE059853CA17D39BD C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP2QFE\services.exe
[7] 2009-02-06 11:11:05 110592 65DF52F5B8B6E9BBD183505225C37315 C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP3GDR\services.exe
[7] 2009-02-06 11:06:24 110592 020CEAAEDC8EB655B6506B8C70D53BB6 C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP3QFE\services.exe
[-] 2008-04-14 00:12:34 108544 0E776ED5F7CC9F94299E70461B7B8185 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\services.exe
[7] 2009-02-06 10:22:21 110592 4712531AB7A01B7EE059853CA17D39BD C:\WINDOWS\system32\services.exe
[7] 2009-02-06 10:22:21 110592 4712531AB7A01B7EE059853CA17D39BD C:\WINDOWS\system32\dllcache\services.exe
[7] 2009-02-06 10:22:21 110592 4712531AB7A01B7EE059853CA17D39BD C:\WINDOWS\system32\dllcache\cache\services.exe
[-] 2008-04-14 00:12:24 13312 BF2466B3E18E970D8A976FB95FC1CA85 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\lsass.exe
[7] 2004-08-05 03:00:00 13312 84885F9B82F4D55C6146EBF6065D75D2 C:\WINDOWS\system32\lsass.exe
[7] 2004-08-04 20:00:00 13312 84885F9B82F4D55C6146EBF6065D75D2 C:\WINDOWS\system32\dllcache\lsass.exe
[7] 2004-08-05 03:00:00 13312 84885F9B82F4D55C6146EBF6065D75D2 C:\WINDOWS\system32\dllcache\cache\lsass.exe
[-] 2008-04-14 00:12:16 15360 5F1D5F88303D4A4DBC8E5F97BA967CC3 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ctfmon.exe
[7] 2004-08-05 03:00:00 15360 24232996A38C0B0CF151C2140AE29FC8 C:\WINDOWS\system32\ctfmon.exe
[7] 2004-08-05 03:00:00 15360 24232996A38C0B0CF151C2140AE29FC8 C:\WINDOWS\system32\dllcache\ctfmon.exe
[7] 2004-08-05 03:00:00 15360 24232996A38C0B0CF151C2140AE29FC8 C:\WINDOWS\system32\dllcache\cache\ctfmon.exe
[7] 2005-06-11 00:17:13 57856 AD3D9D191AEA7B5445FE1D82FFBB4788 C:\WINDOWS\$hf_mig$\KB896423\SP2QFE\spoolsv.exe
[7] 2004-08-05 03:00:00 57856 7435B108B935E42EA92CA94F59C8E717 C:\WINDOWS\$NtUninstallKB896423$\spoolsv.exe
[-] 2008-04-14 00:12:36 57856 D8E14A61ACC1D4A6CD0D38AEBAC7FA3B C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\spoolsv.exe
[7] 2005-06-10 23:53:32 57856 DA81EC57ACD4CDC3D4C51CF3D409AF9F C:\WINDOWS\system32\spoolsv.exe
[7] 2005-06-10 23:53:32 57856 DA81EC57ACD4CDC3D4C51CF3D409AF9F C:\WINDOWS\system32\dllcache\spoolsv.exe
[7] 2005-06-10 23:53:32 57856 DA81EC57ACD4CDC3D4C51CF3D409AF9F C:\WINDOWS\system32\dllcache\cache\spoolsv.exe
[-] 2008-04-14 00:12:41 111104 ED7262E52C31CF1625B65039102BC16C C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\wuauclt.exe
[7] 2008-10-16 14:09:44 51224 E654B78D2F1D791B30D0ED9A8195EC22 C:\WINDOWS\system32\wuauclt.exe
[7] 2008-10-16 14:09:44 51224 E654B78D2F1D791B30D0ED9A8195EC22 C:\WINDOWS\system32\dllcache\wuauclt.exe
[7] 2008-10-16 14:09:44 51224 E654B78D2F1D791B30D0ED9A8195EC22 C:\WINDOWS\system32\dllcache\cache\wuauclt.exe
[-] 2008-04-14 00:12:38 26112 A93AEE1928A9D7CE3E16D24EC7380F89 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\userinit.exe
[7] 2004-08-05 03:00:00 24576 39B1FFB03C2296323832ACBAE50D2AFF C:\WINDOWS\system32\userinit.exe
[7] 2004-08-05 03:00:00 24576 39B1FFB03C2296323832ACBAE50D2AFF C:\WINDOWS\system32\dllcache\userinit.exe
[7] 2004-08-05 03:00:00 24576 39B1FFB03C2296323832ACBAE50D2AFF C:\WINDOWS\system32\dllcache\cache\userinit.exe
[-] 2008-04-14 00:12:07 295424 FF3477C03BE7201C294C35F684B3479F C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\termsrv.dll
[7] 2004-08-05 03:00:00 295424 B60C877D16D9C880B952FDA04ADF16E6 C:\WINDOWS\system32\termsrv.dll
[7] 2004-08-05 03:00:00 295424 B60C877D16D9C880B952FDA04ADF16E6 C:\WINDOWS\system32\dllcache\termsrv.dll
[7] 2004-08-05 03:00:00 295424 B60C877D16D9C880B952FDA04ADF16E6 C:\WINDOWS\system32\dllcache\cache\termsrv.dll
[7] 2007-04-16 16:07:28 986112 09F7CB3687F86EDAA4CA081F7AB66C03 C:\WINDOWS\$hf_mig$\KB935839\SP2QFE\kernel32.dll
[7] 2009-03-21 13:54:07 989184 80202858D245FF07DAA1739C57A3E19B C:\WINDOWS\$hf_mig$\KB959426\SP2QFE\kernel32.dll
[7] 2009-03-21 14:06:58 989696 B921FB870C9AC0D509B2CCABBBBE95F3 C:\WINDOWS\$hf_mig$\KB959426\SP3GDR\kernel32.dll
[7] 2009-03-21 13:59:23 991744 DA11D9D6ECBDF0F93436A4B7C13F7BEC C:\WINDOWS\$hf_mig$\KB959426\SP3QFE\kernel32.dll
[7] 2004-08-05 03:00:00 983552 888190E31455FAD793312F8D087146EB C:\WINDOWS\$NtUninstallKB935839$\kernel32.dll
[7] 2007-04-16 15:52:54 984576 A01F9CA902A88F7CED06884174D6419D C:\WINDOWS\$NtUninstallKB959426$\kernel32.dll
[7] 2009-03-21 14:18:57 986112 B6ACAED7588295129791E0E6A2B0FADE C:\WINDOWS\SoftwareDistribution\Download\022593ca08eb4cd8e9681a7116f902d9\sp2gdr\kernel32.dll
[7] 2009-03-21 13:54:07 989184 80202858D245FF07DAA1739C57A3E19B C:\WINDOWS\SoftwareDistribution\Download\022593ca08eb4cd8e9681a7116f902d9\sp2qfe\kernel32.dll
[7] 2009-03-21 14:06:58 989696 B921FB870C9AC0D509B2CCABBBBE95F3 C:\WINDOWS\SoftwareDistribution\Download\022593ca08eb4cd8e9681a7116f902d9\sp3gdr\kernel32.dll
[7] 2009-03-21 13:59:23 991744 DA11D9D6ECBDF0F93436A4B7C13F7BEC C:\WINDOWS\SoftwareDistribution\Download\022593ca08eb4cd8e9681a7116f902d9\sp3qfe\kernel32.dll
[-] 2008-04-14 00:11:56 989696 C24B983D211C34DA8FCC1AC38477971D C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\kernel32.dll
[7] 2009-03-21 14:18:57 986112 B6ACAED7588295129791E0E6A2B0FADE C:\WINDOWS\system32\kernel32.dll
[7] 2009-03-21 14:18:57 986112 B6ACAED7588295129791E0E6A2B0FADE C:\WINDOWS\system32\dllcache\kernel32.dll
[7] 2009-03-21 14:18:57 986112 B6ACAED7588295129791E0E6A2B0FADE C:\WINDOWS\system32\dllcache\cache\kernel32.dll
[-] 2008-04-14 00:12:03 17408 50A166237A0FA771261275A405646CC0 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\powrprof.dll
[7] 2004-08-05 03:00:00 17408 1B5F6923ABB450692E9FE0672C897AED C:\WINDOWS\system32\powrprof.dll
[7] 2004-08-04 20:00:00 17408 1B5F6923ABB450692E9FE0672C897AED C:\WINDOWS\system32\dllcache\powrprof.dll
[7] 2004-08-05 03:00:00 17408 1B5F6923ABB450692E9FE0672C897AED C:\WINDOWS\system32\dllcache\cache\powrprof.dll
[-] 2008-04-14 00:11:54 110080 0DA85218E92526972A821587E6A8BF8F C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\imm32.dll
[7] 2004-08-05 03:00:00 110080 87CA7CE6469577F059297B9D6556D66D C:\WINDOWS\system32\imm32.dll
[7] 2004-08-04 20:00:00 110080 87CA7CE6469577F059297B9D6556D66D C:\WINDOWS\system32\dllcache\imm32.dll
[7] 2004-08-05 03:00:00 110080 87CA7CE6469577F059297B9D6556D66D C:\WINDOWS\system32\dllcache\cache\imm32.dll
[-] 2008-04-14 00:12:05 1614848 9DD07AF82244867CA36681EA2D29CE79 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\sfcfiles.dll
[7] 2004-08-05 03:00:00 1580544 30A609E00BD1D4FFC49D6B5A432BE7F2 C:\WINDOWS\system32\sfcfiles.dll
[7] 2004-08-04 20:00:00 1580544 30A609E00BD1D4FFC49D6B5A432BE7F2 C:\WINDOWS\system32\dllcache\sfcfiles.dll
[7] 2004-08-05 03:00:00 1580544 30A609E00BD1D4FFC49D6B5A432BE7F2 C:\WINDOWS\system32\dllcache\cache\sfcfiles.dll
[-] 2008-04-14 00:11:49 167936 D8849F77C0B66226335A59D26CB4EDC6 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\appmgmts.dll
[7] 2004-08-05 03:00:00 167936 9C3C12975C97119412802B181FBEEFFE C:\WINDOWS\system32\appmgmts.dll
[7] 2004-08-05 03:00:00 167936 9C3C12975C97119412802B181FBEEFFE C:\WINDOWS\system32\dllcache\appmgmts.dll
[7] 2004-08-05 03:00:00 167936 9C3C12975C97119412802B181FBEEFFE C:\WINDOWS\system32\dllcache\cache\appmgmts.dll
[-] 2008-04-13 18:39:47 24576 463C1EC80CD17420A542B7F36A36F128 C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\kbdclass.sys
[7] 2004-08-04 05:58:34 24576 EBDEE8A2EE5393890A1ACEE971C4C246 C:\WINDOWS\system32\dllcache\kbdclass.sys
[7] 2004-08-04 05:58:34 24576 EBDEE8A2EE5393890A1ACEE971C4C246 C:\WINDOWS\system32\dllcache\cache\kbdclass.sys
[7] 2004-08-04 05:58:34 24576 EBDEE8A2EE5393890A1ACEE971C4C246 C:\WINDOWS\system32\drivers\kbdclass.sys
[7] 2004-08-04 05:58:34 24576 EBDEE8A2EE5393890A1ACEE971C4C246 C:\WINDOWS\system32\ReinstallBackups\0017\DriverFiles\i386\kbdclass.sys
.WAS DEBT FREE & STILL BAAARRRRRKING :cool:
hello my name is shaun,,,and im not so addicted to farmville,still addicted to football:o:o
BAAAARRRRRRRRRRKING er insanely so0 -
something tells me this is way too big for what your looking for??
start of report is in post 2..3. 4 should be in order
and 1st post is the 2nd half of the report
messy!!WAS DEBT FREE & STILL BAAARRRRRKING :cool:
hello my name is shaun,,,and im not so addicted to farmville,still addicted to football:o:o
BAAAARRRRRRRRRRKING er insanely so0 -
Im way too tired to go through this tonight. But your definitely still infected
For now ~
run a KASPERSKY ONLINE SCAN (click to scan 'MY COMPUTER')
http://www.kaspersky.com/kos/eng/partner/default/pages/default/check.html?n=1245225406761
Please post the complete log it creates (This only SCANS it DOESNT delete anything, so we'd need to see anything it finds)
The scan will likely take anywhere from 5 to 12 hours to complete!
Once you post that log ill attempt to kill everything in one go:idea:0 -
WILL DO THAT LET IT RUN OVER NIGHT ...:cool:
shouting in case you've fallen asleep:rotfl:
thanks againWAS DEBT FREE & STILL BAAARRRRRKING :cool:
hello my name is shaun,,,and im not so addicted to farmville,still addicted to football:o:o
BAAAARRRRRRRRRRKING er insanely so0 -
KASPERSKY ONLINE SCANNER 7.0 REPORT Wednesday, July 1, 2009
Operating System: Microsoft Windows XP Professional Service Pack 2 (build 2600)
Kaspersky Online Scanner version: 7.0.26.13
Program database last update: Tuesday, June 30, 2009 01:53:39
Records in database: 2403315
Scan settings Scan using the following database extended Scan archives yes Scan mail databases yes
Scan area My Computer C:\
\
E:\
Scan statistics Files scanned 69173 Threat name 6 Infected objects 12 Suspicious objects 0 Duration of the scan 01:18:06
File name Threat name Threats count C:\Documents and Settings\Shell\Incomplete\T-3545425-lady gaga pokerface.mp3Infected: Trojan-Downloader.WMA.GetCodec.c1
C:\Documents and Settings\Shell\Incomplete\T-3545427-moro boconoig (high bitrate).mp3Infected: Trojan-Downloader.WMA.GetCodec.u1
C:\Documents and Settings\Shell\Incomplete\T-5088466-moro boconoig[high quality].sndInfected: Trojan-Downloader.WMA.GetCodec.s1
C:\Documents and Settings\Shell\Incomplete\T-5745425-lady gaga pokerface.mp3Infected: Trojan-Downloader.WMA.GetCodec.c1
C:\Documents and Settings\Shell\Share\brian adams cloud no9.mp3Infected: Trojan-Downloader.WMA.GetCodec.c1
C:\Documents and Settings\Shell\Share\Crazytown - Skulls and stars.mp3Infected: Trojan-Downloader.WMA.GetCodec.w1
C:\Documents and Settings\Shell\Share\Culture Beat - Mr. Vain Recall (C.J.Stone Mix with rap)).mp3Infected: Trojan-Downloader.WMA.GetCodec.c1
C:\Documents and Settings\Shell\Share\god save queen sex pistols.mp3Infected: Trojan-Downloader.WMA.GetCodec.c1
C:\Documents and Settings\Shell\Share\moro boconoig.mp3Infected: Trojan-Downloader.WMA.GetCodec.c1
C:\Documents and Settings\Shell\Share\so fine guns n roses use your [cd rip].mp3Infected: Trojan-Downloader.WMA.GetCodec.u1
C:\Program Files\MSN Messenger\msimg32.dllInfected: not-a-virus:WebToolbar.Win32.MyWebSearch.au1
C:\WINDOWS\che3.exeInfected: Trojan.Win32.Agent.alvm1
The selected area was scanned.WAS DEBT FREE & STILL BAAARRRRRKING :cool:
hello my name is shaun,,,and im not so addicted to farmville,still addicted to football:o:o
BAAAARRRRRRRRRRKING er insanely so0 -
bump,,,,bump for aliEnRIKWAS DEBT FREE & STILL BAAARRRRRKING :cool:
hello my name is shaun,,,and im not so addicted to farmville,still addicted to football:o:o
BAAAARRRRRRRRRRKING er insanely so0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 351.4K Banking & Borrowing
- 253.3K Reduce Debt & Boost Income
- 453.8K Spending & Discounts
- 244.4K Work, Benefits & Business
- 599.6K Mortgages, Homes & Bills
- 177.1K Life & Family
- 257.9K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.2K Discuss & Feedback
- 37.6K Read-Only Boards