📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!

I have a serious infection

189101214

Comments

  • samdd
    samdd Posts: 1,344 Forumite
    Combofix report
    ComboFix 11-09-28.01 - Kev B 28/09/2011 18:14:41.4.2 - x86
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.2038.1036 [GMT 1:00]
    Running from: c:\users\Kev B\Desktop\ComboFix.exe
    Command switches used :: c:\users\Kev B\Desktop\CFScript.txt
    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    FILE ::
    "C:\siauh.exe"
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    C:\siauh.exe
    .
    .
    ((((((((((((((((((((((((( Files Created from 2011-08-28 to 2011-09-28 )))))))))))))))))))))))))))))))
    .
    .
    2011-09-28 17:24 . 2011-09-28 17:24
    d
    w- c:\users\Kev B\AppData\Local\temp
    2011-09-28 17:24 . 2011-09-28 17:24
    d
    w- c:\users\Default\AppData\Local\temp
    2011-09-28 15:42 . 2011-09-28 15:42
    d
    w- c:\program files\Broadcom
    2011-09-28 15:42 . 2011-09-28 15:42
    d
    w- c:\users\Kev B\AppData\Local\Broadcom
    2011-09-28 15:41 . 2011-08-04 18:19 525352 ----a-w- c:\windows\system32\drivers\btwampfl.sys
    2011-09-28 15:38 . 2011-08-04 18:19 20008 ----a-w- c:\windows\system32\btwcoins.dll
    2011-09-28 15:38 . 2011-08-04 18:19 76328 ----a-w- c:\windows\system32\drivers\btwdpan.sys
    2011-09-28 15:38 . 2011-08-04 18:19 33832 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
    2011-09-28 15:38 . 2011-08-04 18:19 18728 ----a-w- c:\windows\system32\drivers\btwrchid.sys
    2011-09-28 15:38 . 2011-08-04 18:19 148520 ----a-w- c:\windows\system32\drivers\btwavdt.sys
    2011-09-28 15:38 . 2011-08-04 18:19 140328 ----a-w- c:\windows\system32\drivers\btwaudio.sys
    2011-09-28 15:37 . 2011-09-28 15:37
    d
    w- c:\program files\WIDCOMM
    2011-09-28 15:36 . 2011-09-28 15:36
    d
    w- C:\SWSetup
    2011-09-28 15:12 . 2011-09-28 15:12 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{298E49A8-35FB-4712-AD05-D47AAE93359C}\offreg.dll
    2011-09-28 15:05 . 2010-03-16 10:14 65776
    w- c:\windows\system32\agrsmdel.exe
    2011-09-28 15:05 . 2011-09-28 15:05
    d
    w- c:\program files\LSI SoftModem
    2011-09-28 15:05 . 2011-09-28 15:05
    d
    w- c:\windows\Options
    2011-09-28 14:55 . 2011-09-28 14:55
    d
    w- c:\program files\Realtek
    2011-09-28 14:55 . 2011-09-28 14:56
    d--h--w- c:\program files\Temp
    2011-09-28 14:55 . 2011-06-28 17:08 1698408 ----a-w- c:\windows\RtlExUpd.dll
    2011-09-28 14:55 . 2006-02-07 14:39 32768 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\Objectps.dll
    2011-09-28 14:55 . 2006-02-07 14:45 757760 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll
    2011-09-28 14:55 . 2006-02-07 14:40 204800 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll
    2011-09-28 14:55 . 2006-02-07 14:40 69715 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll
    2011-09-28 14:55 . 2006-02-07 14:40 274432 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll
    2011-09-28 14:55 . 2005-11-13 22:19 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
    2011-09-28 14:55 . 2011-09-28 14:55 331908 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
    2011-09-28 14:55 . 2011-09-28 14:55 200836 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
    2011-09-28 14:33 . 2011-09-28 14:33
    d
    w- c:\users\Kev B\AppData\Roaming\Device Doctor
    2011-09-28 14:33 . 2011-09-28 14:33
    d
    w- c:\program files\Device Doctor
    2011-09-27 23:23 . 2011-09-06 20:36 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2011-09-27 23:23 . 2011-09-06 20:37 320856 ----a-w- c:\windows\system32\drivers\aswSP.sys
    2011-09-27 23:23 . 2011-09-06 20:36 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
    2011-09-27 23:23 . 2011-09-06 20:36 52568 ----a-w- c:\windows\system32\drivers\aswTdi.sys
    2011-09-27 23:23 . 2011-09-06 20:38 442200 ----a-w- c:\windows\system32\drivers\aswSnx.sys
    2011-09-27 23:23 . 2011-09-06 20:36 54616 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
    2011-09-27 23:22 . 2011-09-06 20:45 41184 ----a-w- c:\windows\avastSS.scr
    2011-09-27 23:22 . 2011-09-06 20:45 199304 ----a-w- c:\windows\system32\aswBoot.exe
    2011-09-27 23:22 . 2011-09-27 23:22
    d
    w- c:\programdata\AVAST Software
    2011-09-27 23:22 . 2011-09-27 23:22
    d
    w- c:\program files\AVAST Software
    2011-09-27 22:03 . 2011-09-27 22:03 388096 ----a-r- c:\users\Kev B\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2011-09-27 22:03 . 2011-09-27 22:03
    d
    w- c:\program files\Trend Micro
    2011-09-27 21:02 . 2011-09-23 04:44 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
    2011-09-27 19:25 . 2009-07-13 23:11 80896 ----a-w- c:\windows\system32\drivers\i8042prt.sys
    2011-09-27 15:53 . 2011-09-12 23:14 7269712 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{298E49A8-35FB-4712-AD05-D47AAE93359C}\mpengine.dll
    2011-09-26 22:11 . 2011-09-27 21:09 23624 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
    2011-09-26 22:11 . 2011-09-26 22:11
    d
    w- c:\program files\Hitman Pro 3.5
    2011-09-26 22:11 . 2011-09-26 22:11
    d
    w- c:\programdata\Hitman Pro
    2011-09-26 12:52 . 2011-09-26 12:52
    d
    w- c:\windows\Sun
    2011-09-24 11:01 . 2011-09-24 11:01
    d
    w- c:\users\Kev B\AppData\Local\WinZip
    2011-09-24 10:41 . 2011-07-08 07:31 781272 ----a-w- c:\program files\Mozilla Firefox\sqlite3.dll
    2011-09-24 10:41 . 2011-09-24 10:41
    d
    w- c:\programdata\Premium
    2011-09-24 10:41 . 2011-09-24 10:41
    d
    w- c:\programdata\InstallMate
    2011-09-24 10:14 . 2011-09-24 10:14
    d
    w- c:\program files\Adobe Media Player
    2011-09-24 10:12 . 2011-09-24 10:12
    d
    w- c:\program files\Common Files\Adobe AIR
    2011-09-23 17:38 . 2011-09-23 17:38
    d
    w- c:\users\Kev B\AppData\Roaming\Thinstall
    2011-09-23 09:15 . 2011-09-27 12:26
    d
    w- c:\windows\Downloaded Installations
    2011-09-14 00:51 . 2011-09-14 00:51
    d
    w- c:\users\Kev B\AppData\Roaming\Media Player Classic
    2011-09-09 01:10 . 2011-09-09 01:10
    d
    w- c:\programdata\Macrovision
    2011-09-09 01:10 . 2002-01-05 06:10 57344
    w- c:\windows\system32\mfc70enu.dll
    2011-09-09 01:10 . 2011-09-09 01:10
    d
    w- c:\program files\Common Files\Macromedia Shared
    2011-09-09 01:10 . 2011-09-09 01:10
    d
    w- c:\program files\Common Files\Macromedia
    2011-09-09 01:09 . 2011-09-09 01:09
    d
    w- c:\program files\Macromedia
    2011-09-05 17:04 . 2011-09-05 17:04 183696 ----a-w- c:\program files\Mozilla Firefox\plugins\nppdf32.dll
    2011-09-03 14:31 . 2011-09-03 14:31
    d
    w- c:\users\Kev B\AppData\Roaming\Birdstep Technology
    2011-09-03 14:31 . 2011-09-03 14:31
    d
    w- c:\programdata\Birdstep Technology
    2011-09-03 14:29 . 2011-09-03 14:29
    d
    w- c:\program files\3 Mobile Broadband
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-09-27 10:24 . 2011-02-24 17:16 108544 ----a-w- c:\windows\system32\drivers\cdrom.sys
    2011-09-24 09:54 . 2011-06-04 23:16 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2011-08-31 16:00 . 2010-10-14 12:15 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
    2011-07-22 04:54 . 2011-08-10 09:55 1638912 ----a-w- c:\windows\system32\mshtml.tlb
    2011-07-16 04:27 . 2011-08-10 09:55 290816 ----a-w- c:\windows\system32\KernelBase.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
    2011-07-16 02:17 . 2011-08-10 09:55 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
    2011-07-16 02:17 . 2011-08-10 09:55 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    2011-07-16 02:17 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
    2011-07-16 02:17 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
    2011-07-09 04:29 . 2011-08-24 15:35 2048 ----a-w- c:\windows\system32\tzres.dll
    2011-07-09 02:30 . 2011-08-10 09:55 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
    2011-09-23 04:44 . 2011-09-27 21:02 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2011-09-06 20:45 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "InstallIQUpdater"="c:\program files\W3i\InstallIQUpdater\InstallIQUpdater.exe" [2011-08-09 1176064]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848]
    "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592]
    "Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552]
    "SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472]
    "OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe" [2007-02-04 79400]
    "tsnpstd3"="c:\windows\tsnpstd3.exe" [2009-03-10 262144]
    "VMonitorVMUVC"="c:\program files\Vimicro Corporation\VMUVC\VMonitor.exe" [2008-03-26 135168]
    "Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
    "AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
    "AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-07-22 402432]
    "SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
    "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
    "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2011-7-23 113664]
    Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2011-8-3 1008928]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Notification Packages REG_MULTI_SZ scecli c:\program files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
    .
    [HKLM\~\startupfolder\C:^Users^Kev B^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk]
    path=c:\users\Kev B\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
    backup=c:\windows\pss\OpenOffice.org 3.2.lnk.Startup
    backupExtension=.Startup
    .
    R1 CSN5PDTS82;CSN5PDTS82 NDIS Protocol Driver;c:\windows\system32\Drivers\CSN5PDTS82.sys [x]
    R1 CSN5PDTS82x64;CSN5PDTS82x64 NDIS Protocol Driver;c:\windows\system32\Drivers\CSN5PDTS82x64.sys [x]
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
    R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-10-14 135664]
    R3 AntiZeroAccess;PrevX AntiZeroAccess Driver;c:\windows\system32\drivers\ZeroAccess.sys [x]
    R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [2011-03-23 102784]
    R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2011-03-23 11136]
    R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys [2011-03-23 353280]
    R3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-10-14 135664]
    R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2009-04-27 9216]
    R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
    R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
    R3 VMUVC;Vimicro Camera Service VMUVC;c:\windows\system32\Drivers\VMUVC.sys [2009-03-11 252032]
    R3 vvftUVC;Vimicro Camera Filter Service VMUVC;c:\windows\system32\drivers\vvftUVC.sys [2008-07-01 398720]
    R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-10-17 1343400]
    R3 ZTEusbnet;ZTE USB-NDIS miniport;c:\windows\system32\DRIVERS\ZTEusbnet.sys [2009-07-21 114688]
    S1 aswSnx;aswSnx; [x]
    S1 aswSP;aswSP; [x]
    S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
    S2 aswFsBlk;aswFsBlk; [x]
    S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-09-06 54616]
    S2 BecHelperService;BecHelperService;c:\program files\3 Mobile Broadband\3Connect\BecHelperService.exe [2011-03-23 1740696]
    S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
    S3 BTWAMPFL;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys [2011-08-04 525352]
    S3 BTWDPAN;Bluetooth Personal Area Network;c:\windows\system32\DRIVERS\btwdpan.sys [2011-08-04 76328]
    S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2011-08-04 33832]
    S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2011-03-23 73216]
    S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-08-31 22216]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
    .
    .
    Contents of the 'Scheduled Tasks' folder
    .
    2011-09-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2010-10-14 12:16]
    .
    2011-09-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2010-10-14 12:16]
    .
    .
    Supplementary Scan
    .
    uStart Page = hxxp://www.google.com/
    IE: &ieSpell Options - c:\program files\ieSpell\iespell.dll/SPELLOPTION.HTM
    IE: Check &Spelling - c:\program files\ieSpell\iespell.dll/SPELLCHECK.HTM
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
    IE: Lookup on Merriam Webster - file://c:\program files\ieSpell\Merriam Webster.HTM
    IE: Lookup on Wikipedia - file://c:\program files\ieSpell\wikipedia.HTM
    IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    TCP: DhcpNameServer = 192.168.0.1
    FF - ProfilePath - c:\users\Kev B\AppData\Roaming\Mozilla\Firefox\Profiles\ic1tlj6a.default\
    FF - prefs.js: browser.search.selectedEngine - Bing
    FF - prefs.js: browser.startup.homepage - https://www.google.com
    .
    - - - - ORPHANS REMOVED - - - -
    .
    AddRemove-LSI Soft Modem - c:\windows\agrsmdel
    .
    .
    .
    LOCKED REGISTRY KEYS
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    "MSCurrentCountry"=dword:000000b5
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    Completion time: 2011-09-28 18:28:09
    ComboFix-quarantined-files.txt 2011-09-28 17:27
    ComboFix2.txt 2011-09-28 13:18
    ComboFix3.txt 2011-09-27 20:56
    .
    Pre-Run: 107,038,949,376 bytes free
    Post-Run: 106,986,962,944 bytes free
    .
    - - End Of File - - D20C23FDE5EE8E349C1B044CEC0EBCF7
  • waddler_8
    waddler_8 Posts: 3,588 Forumite
    If everythings ok now, uninstall combofix (Disable Avast temporarily again, whilst you do it)

    Open a Run command box (Windows key + R) and copy paste this command in:

    ComboFix /uninstall

    Note the space between "ComboFix" and "/uninstall", it needs to be there.

    Let it uninstall and then re-enable Avast.
  • samdd
    samdd Posts: 1,344 Forumite
    How do i disable avast? Duhhh :mad:
  • waddler_8
    waddler_8 Posts: 3,588 Forumite
    http://www.techsupportforum.com/forums/f50/how-to-disable-your-security-applications-490111.html
  • samdd
    samdd Posts: 1,344 Forumite
    waddler_8 wrote: »
    http://www.techsupportforum.com/forums/f50/how-to-disable-your-security-applications-490111.html

    I must be missing something.. The link says:
    Avast
    • Right Click on the Avast icon in the system tray
    • Click on Program Settings...
    • Click on Troubleshooting
    • Place a tick next to Disable avast! self-defense module
    • Click OK
    • At the prompt that appears, click Yes
    • Right Click on the Avast icon in the system tray and click Stop On-Access protection
    • At the prompt that appears, click Yes
    This is a right click on Avast in the sys tray.

    Snapshot_5.jpg

    And this is when i open Avast to get to the trouble shooting options. I cant find anywhere that says; Disable avast! self-defense module.

    Snapshot_4-1.jpg
  • waddler_8
    waddler_8 Posts: 3,588 Forumite
    http://www.bleepingcomputer.com/forums/topic114351.html

    Avast shield control.
  • samdd
    samdd Posts: 1,344 Forumite
    here is what i did.

    Windows tab + r

    Snapshot_15-1.jpg

    Clicked OK and Combofix then run a scan.
  • samdd
    samdd Posts: 1,344 Forumite
    ComboFix 11-09-28.01 - Kev B 28/09/2011 21:54:03.6.2 - x86
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.2038.1345 [GMT 1:00]
    Running from: c:\users\Kev B\Desktop\ComboFix.exe
    Command switches used :: /uninstal
    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    ((((((((((((((((((((((((( Files Created from 2011-08-28 to 2011-09-28 )))))))))))))))))))))))))))))))
    .
    .
    2011-09-28 21:04 . 2011-09-28 21:04
    d
    w- c:\users\Default\AppData\Local\temp
    2011-09-28 20:31 . 2011-09-28 20:31 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{298E49A8-35FB-4712-AD05-D47AAE93359C}\offreg.dll
    2011-09-28 17:28 . 2011-09-28 21:04
    d
    w- c:\users\Kev B\AppData\Local\temp
    2011-09-28 15:42 . 2011-09-28 15:42
    d
    w- c:\program files\Broadcom
    2011-09-28 15:42 . 2011-09-28 15:42
    d
    w- c:\users\Kev B\AppData\Local\Broadcom
    2011-09-28 15:41 . 2011-08-04 18:19 525352 ----a-w- c:\windows\system32\drivers\btwampfl.sys
    2011-09-28 15:38 . 2011-08-04 18:19 20008 ----a-w- c:\windows\system32\btwcoins.dll
    2011-09-28 15:38 . 2011-08-04 18:19 76328 ----a-w- c:\windows\system32\drivers\btwdpan.sys
    2011-09-28 15:38 . 2011-08-04 18:19 33832 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
    2011-09-28 15:38 . 2011-08-04 18:19 18728 ----a-w- c:\windows\system32\drivers\btwrchid.sys
    2011-09-28 15:38 . 2011-08-04 18:19 148520 ----a-w- c:\windows\system32\drivers\btwavdt.sys
    2011-09-28 15:38 . 2011-08-04 18:19 140328 ----a-w- c:\windows\system32\drivers\btwaudio.sys
    2011-09-28 15:37 . 2011-09-28 15:37
    d
    w- c:\program files\WIDCOMM
    2011-09-28 15:36 . 2011-09-28 15:36
    d
    w- C:\SWSetup
    2011-09-28 15:05 . 2010-03-16 10:14 65776
    w- c:\windows\system32\agrsmdel.exe
    2011-09-28 15:05 . 2011-09-28 15:05
    d
    w- c:\program files\LSI SoftModem
    2011-09-28 15:05 . 2011-09-28 15:05
    d
    w- c:\windows\Options
    2011-09-28 14:55 . 2011-09-28 14:55
    d
    w- c:\program files\Realtek
    2011-09-28 14:55 . 2011-09-28 14:56
    d--h--w- c:\program files\Temp
    2011-09-28 14:55 . 2011-06-28 17:08 1698408 ----a-w- c:\windows\RtlExUpd.dll
    2011-09-28 14:55 . 2006-02-07 14:39 32768 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\Objectps.dll
    2011-09-28 14:55 . 2006-02-07 14:45 757760 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll
    2011-09-28 14:55 . 2006-02-07 14:40 204800 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll
    2011-09-28 14:55 . 2006-02-07 14:40 69715 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\ctor.dll
    2011-09-28 14:55 . 2006-02-07 14:40 274432 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll
    2011-09-28 14:55 . 2005-11-13 22:19 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
    2011-09-28 14:55 . 2011-09-28 14:55 331908 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\setup.dll
    2011-09-28 14:55 . 2011-09-28 14:55 200836 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iGdi.dll
    2011-09-28 14:33 . 2011-09-28 14:33
    d
    w- c:\users\Kev B\AppData\Roaming\Device Doctor
    2011-09-28 14:33 . 2011-09-28 14:33
    d
    w- c:\program files\Device Doctor
    2011-09-27 23:23 . 2011-09-06 20:36 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2011-09-27 23:23 . 2011-09-06 20:37 320856 ----a-w- c:\windows\system32\drivers\aswSP.sys
    2011-09-27 23:23 . 2011-09-06 20:36 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
    2011-09-27 23:23 . 2011-09-06 20:36 52568 ----a-w- c:\windows\system32\drivers\aswTdi.sys
    2011-09-27 23:23 . 2011-09-06 20:38 442200 ----a-w- c:\windows\system32\drivers\aswSnx.sys
    2011-09-27 23:23 . 2011-09-06 20:36 54616 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
    2011-09-27 23:22 . 2011-09-06 20:45 41184 ----a-w- c:\windows\avastSS.scr
    2011-09-27 23:22 . 2011-09-06 20:45 199304 ----a-w- c:\windows\system32\aswBoot.exe
    2011-09-27 23:22 . 2011-09-27 23:22
    d
    w- c:\programdata\AVAST Software
    2011-09-27 23:22 . 2011-09-27 23:22
    d
    w- c:\program files\AVAST Software
    2011-09-27 22:03 . 2011-09-27 22:03 388096 ----a-r- c:\users\Kev B\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2011-09-27 22:03 . 2011-09-27 22:03
    d
    w- c:\program files\Trend Micro
    2011-09-27 21:02 . 2011-09-23 04:44 134104 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
    2011-09-27 19:25 . 2009-07-13 23:11 80896 ----a-w- c:\windows\system32\drivers\i8042prt.sys
    2011-09-27 15:53 . 2011-09-12 23:14 7269712 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{298E49A8-35FB-4712-AD05-D47AAE93359C}\mpengine.dll
    2011-09-26 22:11 . 2011-09-27 21:09 23624 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
    2011-09-26 22:11 . 2011-09-26 22:11
    d
    w- c:\program files\Hitman Pro 3.5
    2011-09-26 22:11 . 2011-09-26 22:11
    d
    w- c:\programdata\Hitman Pro
    2011-09-26 12:52 . 2011-09-26 12:52
    d
    w- c:\windows\Sun
    2011-09-24 11:01 . 2011-09-24 11:01
    d
    w- c:\users\Kev B\AppData\Local\WinZip
    2011-09-24 10:41 . 2011-07-08 07:31 781272 ----a-w- c:\program files\Mozilla Firefox\sqlite3.dll
    2011-09-24 10:41 . 2011-09-24 10:41
    d
    w- c:\programdata\Premium
    2011-09-24 10:41 . 2011-09-24 10:41
    d
    w- c:\programdata\InstallMate
    2011-09-24 10:14 . 2011-09-24 10:14
    d
    w- c:\program files\Adobe Media Player
    2011-09-24 10:12 . 2011-09-24 10:12
    d
    w- c:\program files\Common Files\Adobe AIR
    2011-09-23 17:38 . 2011-09-23 17:38
    d
    w- c:\users\Kev B\AppData\Roaming\Thinstall
    2011-09-23 09:15 . 2011-09-27 12:26
    d
    w- c:\windows\Downloaded Installations
    2011-09-14 00:51 . 2011-09-14 00:51
    d
    w- c:\users\Kev B\AppData\Roaming\Media Player Classic
    2011-09-09 01:10 . 2011-09-09 01:10
    d
    w- c:\programdata\Macrovision
    2011-09-09 01:10 . 2002-01-05 06:10 57344
    w- c:\windows\system32\mfc70enu.dll
    2011-09-09 01:10 . 2011-09-09 01:10
    d
    w- c:\program files\Common Files\Macromedia Shared
    2011-09-09 01:10 . 2011-09-09 01:10
    d
    w- c:\program files\Common Files\Macromedia
    2011-09-09 01:09 . 2011-09-09 01:09
    d
    w- c:\program files\Macromedia
    2011-09-05 17:04 . 2011-09-05 17:04 183696 ----a-w- c:\program files\Mozilla Firefox\plugins\nppdf32.dll
    2011-09-03 14:31 . 2011-09-03 14:31
    d
    w- c:\users\Kev B\AppData\Roaming\Birdstep Technology
    2011-09-03 14:31 . 2011-09-03 14:31
    d
    w- c:\programdata\Birdstep Technology
    2011-09-03 14:29 . 2011-09-03 14:29
    d
    w- c:\program files\3 Mobile Broadband
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-09-27 10:24 . 2011-02-24 17:16 108544 ----a-w- c:\windows\system32\drivers\cdrom.sys
    2011-09-24 09:54 . 2011-06-04 23:16 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2011-08-31 16:00 . 2010-10-14 12:15 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
    2011-07-22 04:54 . 2011-08-10 09:55 1638912 ----a-w- c:\windows\system32\mshtml.tlb
    2011-07-16 04:27 . 2011-08-10 09:55 290816 ----a-w- c:\windows\system32\KernelBase.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
    2011-07-16 04:15 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
    2011-07-16 02:17 . 2011-08-10 09:55 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
    2011-07-16 02:17 . 2011-08-10 09:55 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    2011-07-16 02:17 . 2011-08-10 09:55 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
    2011-07-16 02:17 . 2011-08-10 09:55 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
    2011-07-09 04:29 . 2011-08-24 15:35 2048 ----a-w- c:\windows\system32\tzres.dll
    2011-07-09 02:30 . 2011-08-10 09:55 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
    2011-09-23 04:44 . 2011-09-27 21:02 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    .
    .
    ((((((((((((((((((((((((((((( SnapShot_2011-09-28_13.09.02 )))))))))))))))))))))))))))))))))))))))))
    .
    + 2011-09-28 15:37 . 2011-09-28 15:37 49152 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80KOR.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 49152 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80JPN.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 61440 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80ITA.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 61440 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80FRA.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 61440 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80ESP.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 57344 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80ENU.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 65536 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80DEU.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 45056 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80CHT.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 40960 c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80CHS.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 57344 c:\windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_d6c3e7af9bae13a2\mfcm80u.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 69632 c:\windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_d6c3e7af9bae13a2\mfcm80.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 95744 c:\windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_none_dc990e4797f81af1\ATL80.dll
    + 2010-10-14 11:48 . 2011-09-28 20:31 42330 c:\windows\System32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
    + 2009-07-14 04:55 . 2011-09-28 20:31 44102 c:\windows\System32\wdi\BootPerformanceDiagnostics_SystemData.bin
    + 2010-10-14 10:48 . 2011-09-28 20:31 11952 c:\windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1653054434-1350618669-3324376920-1000_UserData.bin
    - 2009-07-14 04:50 . 2011-09-23 10:13 86016 c:\windows\System32\DriverStore\infpub.dat
    + 2009-07-14 04:50 . 2011-09-28 15:41 86016 c:\windows\System32\DriverStore\infpub.dat
    + 2009-12-03 15:28 . 2009-12-03 15:28 26112 c:\windows\System32\DriverStore\FileRepository\lsimdv32.inf_x86_neutral_c7373797fc024809\agrsmsvc.exe
    + 2010-03-16 10:14 . 2010-03-16 10:14 65776 c:\windows\System32\DriverStore\FileRepository\lsimdv32.inf_x86_neutral_c7373797fc024809\agrsmdel.exe
    + 2009-12-03 15:29 . 2009-12-03 15:29 26624 c:\windows\System32\DriverStore\FileRepository\lsimdv32.inf_x86_neutral_c7373797fc024809\agrscoin.dll
    + 2011-09-28 14:55 . 2011-05-05 13:14 74080 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\SFCOM.dll
    + 2011-09-28 14:55 . 2011-05-05 13:14 68960 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\SFAPO.dll
    + 2011-09-28 14:55 . 2011-06-27 18:19 75880 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RtkCoInst.dll
    + 2011-09-28 14:55 . 2010-11-08 06:31 78680 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RTEEL32A.dll
    + 2011-09-28 14:55 . 2010-11-08 06:31 64856 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RTEEG32A.dll
    + 2011-09-28 14:55 . 2011-05-02 13:27 61272 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\R4EEG32A.dll
    + 2011-09-28 14:55 . 2011-05-02 13:27 88408 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\R4EEA32A.dll
    + 2011-09-28 14:55 . 2010-10-26 12:39 49568 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\FMAPP.exe
    + 2011-09-28 14:55 . 2009-11-17 17:15 87968 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\AERTSrv.exe
    + 2011-09-28 14:55 . 2009-11-17 17:13 96160 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\AERTARen.dll
    + 2011-09-28 15:38 . 2011-08-04 18:19 18728 c:\windows\System32\DriverStore\FileRepository\btwrchid.inf_x86_neutral_3c2d3748084d9bd7\btwrchid.sys
    + 2011-09-28 15:38 . 2011-08-04 18:19 33832 c:\windows\System32\DriverStore\FileRepository\btwl2cap.inf_x86_neutral_ae29d9ed06f284fe\btwl2cap.sys
    + 2011-09-28 15:38 . 2011-08-04 18:19 76328 c:\windows\System32\DriverStore\FileRepository\btwdpan.inf_x86_neutral_1b988debc6fe7486\btwdpan.sys
    + 2011-09-28 15:38 . 2011-08-04 18:19 20008 c:\windows\System32\DriverStore\FileRepository\bcbtumsld.inf_x86_neutral_076e7c401fc6054b\btwcoins.dll
    + 2011-09-28 15:38 . 2011-08-04 18:19 20008 c:\windows\System32\DriverStore\FileRepository\bcbtums-win7x86-brcm.inf_x86_neutral_80d83c3f561b6528\btwcoins.dll
    + 2009-12-03 15:29 . 2009-12-03 15:29 26624 c:\windows\System32\agrscoin.dll
    .
  • samdd
    samdd Posts: 1,344 Forumite
    + 2009-07-14 04:34 . 2011-09-28 19:12 91616 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
    + 2010-10-14 10:45 . 2011-09-28 20:09 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2010-10-14 10:45 . 2011-09-28 13:08 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2010-10-14 10:45 . 2011-09-28 13:08 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2010-10-14 10:45 . 2011-09-28 20:09 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2011-09-28 15:37 . 2011-09-28 15:37 46284 c:\windows\Installer\{6E7F4CA3-B2DE-413C-A7A1-43AA5BE19EA1}\ARPPRODUCTICON.exe
    + 2011-09-28 15:42 . 2011-09-28 15:42 10134 c:\windows\Installer\{57DD35E9-D9BB-4089-BB05-EF933C586CB3}\ARPPRODUCTICON.exe
    + 2010-03-16 10:14 . 2010-03-16 10:14 65776 c:\windows\agrsmdel.exe
    - 2010-10-14 10:31 . 2011-09-28 09:23 2634 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
    + 2010-10-14 10:31 . 2011-09-28 20:25 2634 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
    - 2011-09-28 09:25 . 2011-09-28 09:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    + 2011-09-28 20:29 . 2011-09-28 20:29 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    + 2011-09-28 20:29 . 2011-09-28 20:29 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    - 2011-09-28 09:25 . 2011-09-28 09:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    + 2011-09-28 15:37 . 2011-09-28 15:37 626688 c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.42_none_db5f52fb98cb24ad\msvcr80.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 548864 c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.42_none_db5f52fb98cb24ad\msvcp80.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 479232 c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.42_none_db5f52fb98cb24ad\msvcm80.dll
    - 2009-07-14 02:05 . 2011-09-26 12:24 628460 c:\windows\System32\perfh009.dat
    + 2009-07-14 02:05 . 2011-09-28 15:47 628460 c:\windows\System32\perfh009.dat
    - 2009-07-14 02:05 . 2011-09-26 12:24 110612 c:\windows\System32\perfc009.dat
    + 2009-07-14 02:05 . 2011-09-28 15:47 110612 c:\windows\System32\perfc009.dat
    - 2009-07-14 04:50 . 2011-09-23 10:13 143360 c:\windows\System32\DriverStore\infstrng.dat
    + 2009-07-14 04:50 . 2011-09-28 15:41 143360 c:\windows\System32\DriverStore\infstrng.dat
    - 2009-07-14 04:50 . 2011-09-03 14:30 143360 c:\windows\System32\DriverStore\infstor.dat
    + 2009-07-14 04:50 . 2011-09-28 15:39 143360 c:\windows\System32\DriverStore\infstor.dat
    + 2011-09-28 14:55 . 2011-04-12 15:26 432744 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\vncutil.exe
    + 2011-09-28 14:55 . 2009-11-24 08:55 140528 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\SRSWOW.dll
    + 2011-09-28 14:55 . 2009-11-24 08:55 345328 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\SRSTSXT.dll
    + 2011-09-28 14:55 . 2009-11-24 08:55 185584 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\SRSTSHD.dll
    + 2011-09-28 14:55 . 2009-11-24 08:55 173296 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\SRSHP360.dll
    + 2011-09-28 14:55 . 2011-05-05 13:14 214368 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\SFNHK.dll
    + 2011-09-28 14:55 . 2010-11-03 17:27 137832 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RTLCPAPI.dll
    + 2011-09-28 14:55 . 2010-11-03 17:26 141928 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RtkCfg.dll
    + 2011-09-28 14:55 . 2011-05-18 12:31 141928 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RtkAudioService.exe
    + 2011-09-28 14:55 . 2010-11-08 06:31 359768 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RTEEP32A.dll
    + 2011-09-28 14:55 . 2010-11-08 06:31 170840 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RTEED32A.dll
    + 2011-09-28 14:55 . 2010-11-08 06:31 295768 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RP3DHT32.dll
    + 2011-09-28 14:55 . 2010-11-08 06:31 295768 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RP3DAA32.dll
    + 2011-09-28 14:55 . 2011-05-02 13:27 103256 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\R4EEL32A.dll
    + 2011-09-28 14:55 . 2011-05-02 13:27 345944 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\R4EED32A.dll
    + 2011-09-28 14:55 . 2010-05-06 16:35 252760 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\MaxxVolumeSDAPO.dll
    + 2011-09-28 14:55 . 2010-10-03 12:45 259928 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\MaxxAudioAPO30.dll
    + 2011-09-28 14:55 . 2010-09-27 08:34 232792 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\MaxxAudioAPO20.dll
    + 2011-09-28 14:55 . 2009-12-04 14:43 132368 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\MaxxAudioAPO.dll
    + 2011-09-28 14:55 . 2011-06-10 16:35 357200 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\KAAPORT.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 601704 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSVoiceClarityDLL.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 631400 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSSymmetryDLL.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 458344 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSNeoPCDLL.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 375400 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSLimiterDLL.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 218216 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSLFXAPO.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 218728 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSGFXAPONS.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 218728 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSGFXAPO.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 389736 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSGainCompensatorDLL.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 654952 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSBassEnhancementDLL.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 173672 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSAudioService.exe
    + 2011-09-28 14:55 . 2010-07-22 15:37 175200 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\AERTACap.dll
    + 2011-09-28 15:38 . 2011-08-04 18:19 148520 c:\windows\System32\DriverStore\FileRepository\btwrchid.inf_x86_neutral_3c2d3748084d9bd7\btwavdt.sys
    + 2011-09-28 15:38 . 2011-08-04 18:19 148520 c:\windows\System32\DriverStore\FileRepository\btwavdt.inf_x86_neutral_8f58a3f1443ceb6d\btwavdt.sys
    + 2011-09-28 15:38 . 2011-08-04 18:19 148520 c:\windows\System32\DriverStore\FileRepository\btwaudio.inf_x86_neutral_66eb17fc0129f9d0\btwavdt.sys
    + 2011-09-28 15:38 . 2011-08-04 18:19 140328 c:\windows\System32\DriverStore\FileRepository\btwaudio.inf_x86_neutral_66eb17fc0129f9d0\btwaudio.sys
    + 2011-09-28 15:38 . 2011-08-04 18:19 525352 c:\windows\System32\DriverStore\FileRepository\btwampfl_svc.inf_x86_neutral_569d30d8a58f4e8c\btwampfl.sys
    + 2011-09-28 15:38 . 2011-08-04 18:19 142632 c:\windows\System32\DriverStore\FileRepository\bcbtumsld.inf_x86_neutral_076e7c401fc6054b\bcbtums.sys
    + 2011-09-28 15:38 . 2011-08-04 18:19 142632 c:\windows\System32\DriverStore\FileRepository\bcbtums-win7x86-brcm.inf_x86_neutral_80d83c3f561b6528\bcbtums.sys
    + 2010-10-14 10:37 . 2011-09-28 20:30 262144 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
    - 2010-10-14 10:37 . 2011-09-28 12:40 262144 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
    - 2010-10-14 10:33 . 2011-09-28 12:40 311296 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    + 2010-10-14 10:33 . 2011-09-28 20:30 311296 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    + 2011-09-28 18:11 . 2011-09-28 18:11 262984 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
    - 2009-07-14 04:47 . 2011-09-28 09:23 515412 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
    + 2009-07-14 04:47 . 2011-09-28 20:25 515412 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
    + 2011-09-28 15:37 . 2011-09-28 15:37 1079808 c:\windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_d6c3e7af9bae13a2\mfc80u.dll
    + 2011-09-28 15:37 . 2011-09-28 15:37 1093632 c:\windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_d6c3e7af9bae13a2\mfc80.dll
    + 2006-10-30 08:42 . 2006-10-30 08:42 1786880 c:\windows\System32\DriverStore\FileRepository\netw3.inf_x86_neutral_c928c89c683c706a\NETw3v32.sys
    + 2006-11-01 13:24 . 2006-11-01 13:24 2596864 c:\windows\System32\DriverStore\FileRepository\netw2.inf_x86_neutral_2c61fd65c28bc387\NETw2v32.sys
    + 2010-03-16 11:38 . 2010-03-16 11:38 1163680 c:\windows\System32\DriverStore\FileRepository\lsimdv32.inf_x86_neutral_c7373797fc024809\AGRSM.sys
    + 2011-09-28 14:55 . 2009-11-18 17:42 1783056 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\WavesLib.dll
    + 2011-09-28 14:55 . 2011-06-27 13:53 1725784 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\WavesGUILib.dll
    + 2011-09-28 14:55 . 2010-11-03 17:27 1833576 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\SkyTel.exe
    + 2011-09-28 14:55 . 2010-11-03 17:27 1489512 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RtlUpd.exe
    + 2011-09-28 14:55 . 2011-06-28 18:15 3525352 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RTKVHDA.sys
    + 2011-09-28 14:55 . 2011-06-28 12:17 2187368 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RtkPgExt.dll
    + 2011-09-28 14:55 . 2011-06-24 15:27 6044264 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RtkNGUI.exe
    + 2011-09-28 14:55 . 2011-06-03 13:11 1256040 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RtkApoApi.dll
    + 2011-09-28 14:55 . 2011-06-28 13:31 4160104 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RtkAPO.dll
    + 2011-09-28 14:55 . 2011-06-03 13:23 1546856 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RtHDVBg.exe
    + 2011-09-28 14:55 . 2011-05-23 16:12 1124968 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RTCOMDLL.dll
    + 2011-09-28 14:55 . 2011-06-24 10:11 1474048 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\RCoRes.dat
    + 2011-09-28 14:55 . 2011-05-02 13:27 3296600 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\R4EEP32A.dll
    + 2011-09-28 14:55 . 2011-06-27 13:53 3327320 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\MaxxAudioRealtek.dll
    + 2011-09-28 14:55 . 2009-11-18 17:42 1938704 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\MaxxAudioEQ.dll
    + 2011-09-28 14:55 . 2011-06-24 15:27 2493032 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\LightSkinImages.dll
    + 2011-09-28 14:55 . 2011-05-05 14:24 1740352 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\FMAPO.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 1509480 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSS2SpeakerDLL.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 1292904 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSS2HeadphoneDLL.dll
    + 2011-09-28 14:55 . 2011-05-31 08:42 1220200 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DTSBoostDLL.dll
    + 2011-09-28 14:55 . 2011-06-24 15:27 3025512 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\DarkSkinImages.dll
    + 2011-09-28 14:55 . 2011-06-24 15:27 3185256 c:\windows\System32\DriverStore\FileRepository\hdart.inf_x86_neutral_5373149122537d5a\BlackSkinImages.dll
    + 2006-10-30 08:42 . 2006-10-30 08:42 1786880 c:\windows\System32\drivers\NETw3v32.sys
    + 2010-03-16 11:38 . 2010-03-16 11:38 1163680 c:\windows\System32\drivers\AGRSM.sys
    + 2010-10-14 10:33 . 2011-09-28 20:30 3145728 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    - 2010-10-14 10:33 . 2011-09-28 12:40 3145728 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    - 2009-07-14 04:41 . 2011-09-28 12:40 1540096 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
  • waddler_8
    waddler_8 Posts: 3,588 Forumite
    You missed an l off - combofix /uninstall ;)
This discussion has been closed.
Meet your Ambassadors

🚀 Getting Started

Hi new member!

Our Getting Started Guide will help you get the most out of the Forum

Categories

  • All Categories
  • 351.4K Banking & Borrowing
  • 253.3K Reduce Debt & Boost Income
  • 453.8K Spending & Discounts
  • 244.4K Work, Benefits & Business
  • 599.6K Mortgages, Homes & Bills
  • 177.1K Life & Family
  • 257.9K Travel & Transport
  • 1.5M Hobbies & Leisure
  • 16.2K Discuss & Feedback
  • 37.6K Read-Only Boards

Is this how you want to be seen?

We see you are using a default avatar. It takes only a few seconds to pick a picture.
Update Your Picture