Microsoft Windows Vista Home Edition (6.0.6001) Service Pack 1 C:\ [Fixed] - NTFS - (Total:225594 Mo/Free:2197 Mo) D:\ [Fixed] - NTFS - (Total:10239 Mo/Free:2189 Mo) E:\ [CD-Rom] (Total:0 Mo/Free:0 Mo) Tue 03/31/2009|15:24 ----------------------\\ Processes.. --Locked-- [System Process] --Locked-- System ---------- \SystemRoot\System32\smss.exe ---------- C:\Windows\system32\csrss.exe ---------- C:\Windows\system32\wininit.exe ---------- C:\Windows\system32\csrss.exe ---------- C:\Windows\system32\services.exe ---------- C:\Windows\system32\winlogon.exe ---------- C:\Windows\system32\lsass.exe ---------- C:\Windows\system32\lsm.exe ---------- C:\Windows\system32\svchost.exe ---------- C:\Windows\system32\svchost.exe ---------- C:\Windows\System32\svchost.exe ---------- C:\Windows\System32\svchost.exe ---------- C:\Windows\System32\svchost.exe ---------- C:\Windows\system32\svchost.exe --Locked-- audiodg.exe ---------- C:\Windows\system32\SLsvc.exe ---------- C:\Windows\system32\svchost.exe ---------- C:\Windows\system32\svchost.exe ---------- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe ---------- C:\Windows\system32\WLANExt.exe ---------- C:\Program Files\Alwil Software\Avast4\ashServ.exe ---------- C:\Windows\system32\Dwm.exe ---------- C:\Windows\Explorer.EXE ---------- C:\Windows\System32\spoolsv.exe ---------- C:\Windows\system32\svchost.exe ---------- C:\Windows\system32\taskeng.exe ---------- C:\Windows\system32\taskeng.exe ---------- C:\Windows\system32\aestsrv.exe ---------- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe ---------- C:\Program Files\Bonjour\mDNSResponder.exe ---------- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe ---------- C:\Program Files\MozyHome\mozybackup.exe ---------- C:\Windows\System32\svchost.exe ---------- C:\Windows\System32\svchost.exe ---------- C:\Windows\system32\svchost.exe ---------- C:\Windows\system32\rpcnet.exe ---------- C:\Program Files\Dell Support Center\bin\sprtsvc.exe ---------- C:\Windows\system32\STacSV.exe ---------- C:\Program Files\MozyHome\mozybackup.exe ---------- C:\Windows\system32\svchost.exe ---------- C:\Windows\System32\svchost.exe ---------- C:\Windows\system32\SearchIndexer.exe ---------- C:\Windows\system32\DRIVERS\xaudio.exe ---------- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe ---------- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe ---------- C:\Program Files\DellTPad\Apoint.exe ---------- C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe ---------- C:\Program Files\Google\Gmail Notifier\gnotify.exe ---------- C:\Program Files\Dell Support Center\bin\sprtcmd.exe ---------- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe ---------- C:\Program Files\iTunes\iTunesHelper.exe ---------- C:\Program Files\Java\jre6\bin\jusched.exe ---------- C:\Program Files\Alwil Software\Avast4\ashDisp.exe ---------- C:\Windows\ehome\ehtray.exe ---------- C:\Program Files\Digital Line Detect\DLG.exe ---------- C:\Program Files\MozyHome\mozystat.exe ---------- C:\Program Files\Dell\QuickSet\quickset.exe ---------- C:\Windows\system32\wbem\unsecapp.exe ---------- C:\Program Files\ZyDAS Technology Corporation\ZyDAS_802.11g_Utility\ZDWlan.exe ---------- C:\Windows\system32\wbem\wmiprvse.exe ---------- C:\Program Files\OpenOffice.org 3\program\soffice.exe ---------- C:\Program Files\OpenOffice.org 3\program\soffice.bin ---------- C:\Program Files\DellTPad\ApMsgFwd.exe ---------- C:\Program Files\DellTPad\Apntex.exe ---------- C:\Program Files\DellTPad\HidFind.exe ---------- C:\Windows\system32\DllHost.exe ---------- C:\Windows\ehome\ehmsas.exe ---------- C:\Windows\System32\mobsync.exe ---------- C:\Program Files\iPod\bin\iPodService.exe ---------- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe ---------- C:\Program Files\Internet Explorer\iexplore.exe ---------- C:\Program Files\uTorrent\uTorrent.exe ---------- C:\Windows\system32\SearchProtocolHost.exe ---------- C:\Windows\System32\notepad.exe ---------- C:\Program Files\Mozilla Firefox\firefox.exe ---------- C:\Program Files\CCleaner\CCleaner.exe ---------- C:\Windows\system32\cmd.exe ---------- C:\Windows\system32\SearchFilterHost.exe ---------- C:\Rooter$\RK.exe ----------------------\\ Search.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters] NameServer REG_SZ 85.255.112.152,85.255.112.158 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Tcpip\Parameters] NameServer REG_SZ 85.255.112.152,85.255.112.158 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters] NameServer REG_SZ 85.255.112.152,85.255.112.158 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\..\{12F7FCC8-4419-449B-9499-94C2D8956E58}] NameServer REG_SZ 85.255.112.152,85.255.112.158 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\..\{26FD3A0D-991C-4025-8093-2B003BB81111}] NameServer REG_SZ 85.255.112.152,85.255.112.158 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\..\{26FD3A0D-991C-4025-8093-2B003BB81111}] DhcpNameServer REG_SZ 85.255.112.152,85.255.112.158 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\..\{12F7FCC8-4419-449B-9499-94C2D8956E58}] NameServer REG_SZ 85.255.112.152,85.255.112.158 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\..\{26FD3A0D-991C-4025-8093-2B003BB81111}] NameServer REG_SZ 85.255.112.152,85.255.112.158 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\..\{26FD3A0D-991C-4025-8093-2B003BB81111}] DhcpNameServer REG_SZ 85.255.112.152,85.255.112.158 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\..\{12F7FCC8-4419-449B-9499-94C2D8956E58}] NameServer REG_SZ 85.255.112.152,85.255.112.158 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\..\{26FD3A0D-991C-4025-8093-2B003BB81111}] NameServer REG_SZ 85.255.112.152,85.255.112.158 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\..\{26FD3A0D-991C-4025-8093-2B003BB81111}] DhcpNameServer REG_SZ 85.255.112.152,85.255.112.158 [b]==> WAREOUT <==[/b] ----------------------\\ ROOTKIT !! ----------------------\\ Cracks & Keygens.. C:\Users\Freda\TV & Movie Downloads\Software\Adobe.Dreamweaver.CS4.v10.0.Multilingual.Incl.Keymaker.and.Crack.rar 1 - "C:\Rooter$\Rooter_1.txt" - Tue 03/31/2009|15:28 ----------------------\\ Scan completed at 15:28