Combofix log
also it says this computer doesn't have a recovery console.
ComboFix 08-02-25 - Owner 2008-02-24 17:04:43.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.553 [GMT -6:00]
Running from: C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\LTCDZZBB\ComboFix[1].exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\All Users\Application Data\salesmonitor
C:\Documents and Settings\All Users\Application Data\Starware
C:\Documents and Settings\All Users\Application Data\Starware\buttons\cursorcafe.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\cursorcafeA.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\FindIt.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\FindItHot.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\findithotxp.png
C:\Documents and Settings\All Users\Application Data\Starware\buttons\finditxp.png
C:\Documents and Settings\All Users\Application Data\Starware\buttons\games.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\gamesA.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\Highlight.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\HighlightHot.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\highlighthotxp.png
C:\Documents and Settings\All Users\Application Data\Starware\buttons\highlightxp.png
C:\Documents and Settings\All Users\Application Data\Starware\buttons\logo.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\logoxp.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\moviesA.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\PopupBlocker.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\PopupBlockerHot.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\popupblockerhotxp.png
C:\Documents and Settings\All Users\Application Data\Starware\buttons\popupblockerxp.png
C:\Documents and Settings\All Users\Application Data\Starware\buttons\Reference.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\ReferenceHot.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\referencehotxp.png
C:\Documents and Settings\All Users\Application Data\Starware\buttons\referencexp.png
C:\Documents and Settings\All Users\Application Data\Starware\buttons\screensaver.bmp
C:\Documents and Settings\All Users\Application Data\Starware\buttons\screensaverA.bmp
C:\Documents and Settings\All Users\Application Data\Starware\contexts\error.xml
C:\Documents and Settings\All Users\Application Data\Starware\contexts\related.xml
C:\Documents and Settings\All Users\Application Data\Starware\contexts\travel.xml
C:\Documents and Settings\All Users\Application Data\Starware\contexts\Travel.xml.backup
C:\Documents and Settings\All Users\Application Data\Starware\SimpleUpdate\ProductMessagingConfig.xml
C:\Documents and Settings\All Users\Application Data\Starware\SimpleUpdate\ProductMessagingConfig.xml.backup
C:\Documents and Settings\All Users\Application Data\Starware\SimpleUpdate\SimpleUpdateConfig.xml
C:\Documents and Settings\All Users\Application Data\Starware\SimpleUpdate\SimpleUpdateConfig.xml.backup
C:\Documents and Settings\All Users\Application Data\Starware\SimpleUpdate\TimerManagerConfig.xml
C:\Documents and Settings\All Users\Application Data\Starware\SimpleUpdate\TimerManagerConfig.xml.backup
C:\Documents and Settings\All Users\Application Data\Starware316
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\FindIt.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\FindItHot.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\findithotxp.png
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\finditxp.png
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\Highlight.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\HighlightHot.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\highlighthotxp.png
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\highlightxp.png
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\logo.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\logoxp.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\Reference.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\ReferenceHot.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\referencehotxp.png
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\referencexp.png
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\screensaver.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\Screensavers0.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\Weather.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\weatherhotxp.png
C:\Documents and Settings\All Users\Application Data\Starware316\buttons\weatherxp.png
C:\Documents and Settings\All Users\Application Data\Starware316\contexts\error.xml
C:\Documents and Settings\All Users\Application Data\Starware316\contexts\related.xml
C:\Documents and Settings\All Users\Application Data\Starware316\contexts\travel.xml
C:\Documents and Settings\All Users\Application Data\Starware316\Games\images\active\Games0.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\images\walertXP.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\Movies\images\active\Movies0.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\ScreensaversMarketingSitePager\images\active\ScreensaversMarketingSitePager0.bmp
C:\Documents and Settings\All Users\Application Data\Starware316\SimpleUpdate\ProductMessagingConfig.xml
C:\Documents and Settings\All Users\Application Data\Starware316\SimpleUpdate\ProductMessagingConfig.xml.backup
C:\Documents and Settings\All Users\Application Data\Starware316\SimpleUpdate\SimpleUpdateConfig.xml
C:\Documents and Settings\All Users\Application Data\Starware316\SimpleUpdate\SimpleUpdateConfig.xml.backup
C:\Documents and Settings\All Users\Application Data\Starware316\SimpleUpdate\TimerManagerConfig.xml
C:\Documents and Settings\All Users\Application Data\Starware316\SimpleUpdate\TimerManagerConfig.xml.backup
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007\Data\Abbr
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007\Data\ActivationCode
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2007\Data\ProductCode
C:\Documents and Settings\Danielle\Application Data\macromedia\Flash Player\#SharedObjects\TCRS49SF\www.broadcaster.com
C:\Documents and Settings\Danielle\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.broadcaster.com
C:\Documents and Settings\Danielle\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.broadcaster.com\settings.sol
C:\Documents and Settings\Donald Robertson\Application Data\FunWebProducts
C:\Documents and Settings\Donald Robertson\Application Data\FunWebProducts\Data\Donald Robertson\avatar.dat
C:\Documents and Settings\Donald Robertson\Application Data\FunWebProducts\Data\Donald Robertson\register.dat
C:\Documents and Settings\Donald Robertson\Application Data\macromedia\Flash Player\#SharedObjects\DTWJGEYG\www.broadcaster.com
C:\Documents and Settings\Donald Robertson\Application Data\macromedia\Flash Player\#SharedObjects\DTWJGEYG\www.broadcaster.com\played_list.sol
C:\Documents and Settings\Donald Robertson\Application Data\macromedia\Flash Player\#SharedObjects\DTWJGEYG\www.broadcaster.com\video_queue.sol
C:\Documents and Settings\Donald Robertson\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.broadcaster.com
C:\Documents and Settings\Donald Robertson\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.broadcaster.com\settings.sol
C:\Documents and Settings\Donald Robertson\Application Data\Starware316
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\BrowserSearch\BrowserSearch.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\BrowserSearch\BrowserSearch.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Configurator\Configurator.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Configurator\Configurator.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\ErrorSearch\ErrorSearchOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\ErrorSearch\ErrorSearchOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Games\GamesOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Games\GamesOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Layouts\PitchLayout.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Layouts\PitchLayout.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Layouts\ToolbarLayout.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Layouts\ToolbarLayout.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Manager\ManagerOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Manager\ManagerOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Movies\MoviesOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Movies\MoviesOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Reference\ReferenceOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Reference\ReferenceOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\RelatedSearch\RelatedSearchOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\RelatedSearch\RelatedSearchOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Screensavers\ScreensaversOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Screensavers\ScreensaversOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\SearchAssistPlus\SearchAssistPlusOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\SearchAssistPlus\SearchAssistPlusOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\SearchMatch\SearchMatchOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\SearchMatch\SearchMatchOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Toolbar\TBProductsOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Toolbar\TBProductsOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\ToolbarLogo\ToolbarLogoOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\ToolbarLogo\ToolbarLogoOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\ToolbarSearch\ToolbarSearchOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\ToolbarSearch\ToolbarSearchOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\TravelSearch\TravelSearchOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\TravelSearch\TravelSearchOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Weather\AlertArchive.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Weather\WeatherOptions.xml
C:\Documents and Settings\Donald Robertson\Application Data\Starware316\Weather\WeatherOptions.xml.backup
C:\Documents and Settings\Donald Robertson\Application Data\tmp90F.tmp.exe
C:\Documents and Settings\Donald Robertson\Application Data\tmpABB.tmp.exe
C:\Documents and Settings\Donald Robertson\Application Data\tmpABF.tmp.exe
C:\Documents and Settings\Donald Robertson\err.log
C:\Documents and Settings\Donald Robertson\ResErrors.log
C:\Documents and Settings\Donald Robertson\Start Menu\crazy girls.lnk
C:\Documents and Settings\Donald Robertson\Start Menu\Programs\Internet Speed Monitor
C:\Documents and Settings\Donald Robertson\Start Menu\Programs\Internet Speed Monitor\Check Now.lnk
C:\Documents and Settings\Donald Robertson\Start Menu\Programs\Internet Speed Monitor\Uninstall.lnk
C:\Documents and Settings\Donald Robertson\Start Menu\Programs\Outerinfo
C:\Documents and Settings\Donald Robertson\Start Menu\Programs\Outerinfo\Terms.lnk
C:\Documents and Settings\Donald Robertson\Start Menu\Programs\Outerinfo\Uninstall.lnk
C:\Documents and Settings\LocalService\Application Data\Starware
C:\Documents and Settings\LocalService\Application Data\Starware\BrowserSearch\BrowserSearch.xml
C:\Documents and Settings\LocalService\Application Data\Starware\BrowserSearch\BrowserSearch.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\ErrorSearch\ErrorSearchOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\ErrorSearch\ErrorSearchOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\Games\GamesOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\Games\GamesOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\Layouts\PreferencesLayout.xml
C:\Documents and Settings\LocalService\Application Data\Starware\Layouts\PreferencesLayout.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\Layouts\ToolbarLayout.xml
C:\Documents and Settings\LocalService\Application Data\Starware\Layouts\ToolbarLayout.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\Manager\ManagerOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\Manager\ManagerOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\Movies\MoviesOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\Movies\MoviesOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\PopupBlocker\PopupBlockerOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\PopupBlocker\PopupBlockerOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\Reference\ReferenceOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\Reference\ReferenceOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\RelatedSearch\RelatedSearchOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\RelatedSearch\RelatedSearchOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\Screensavers\ScreensaversOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\Screensavers\ScreensaversOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\SearchAssistPlus\SearchAssistPlusOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\SearchAssistPlus\SearchAssistPlusOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\SearchMatch\SearchMatchOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\SearchMatch\SearchMatchOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\Toolbar\TBProductsOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\Toolbar\TBProductsOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\ToolbarLogo\ToolbarLogoOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\ToolbarLogo\ToolbarLogoOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\ToolbarSearch\ToolbarSearchOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\ToolbarSearch\ToolbarSearchOptions.xml.backup
C:\Documents and Settings\LocalService\Application Data\Starware\TravelSearch\TravelSearchOptions.xml
C:\Documents and Settings\LocalService\Application Data\Starware\TravelSearch\TravelSearchOptions.xml.backup
C:\Documents and Settings\Owner\Application Data\FunWebProducts
C:\Documents and Settings\Owner\Application Data\FunWebProducts\Data\Owner\avatar.dat
C:\Documents and Settings\Owner\Application Data\macromedia\Flash Player\#SharedObjects\EU4Z8SRA\www.broadcaster.com
C:\Documents and Settings\Owner\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.broadcaster.com
C:\Documents and Settings\Owner\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.broadcaster.com\settings.sol
C:\Documents and Settings\Owner\Application Data\Starware316
C:\Documents and Settings\Owner\Application Data\Starware316\BrowserSearch\BrowserSearch.xml
C:\Documents and Settings\Owner\Application Data\Starware316\BrowserSearch\BrowserSearch.xml.backup
C:\Documents and Settings\Owner\Application Data\Starware316\Manager\ManagerOptions.xml
C:\Documents and Settings\Owner\Application Data\Starware316\Manager\ManagerOptions.xml.backup
C:\Documents and Settings\Owner\Application Data\tmp104.tmp.exe
C:\Documents and Settings\Owner\Application Data\tmp105.tmp.exe
C:\Documents and Settings\Owner\Desktop\Security Updates.URL
C:\Documents and Settings\Owner\Start Menu\crazy girls.lnk
C:\Documents and Settings\Owner\Start Menu\Programs\Internet Speed Monitor
C:\Documents and Settings\Owner\Start Menu\Programs\Internet Speed Monitor\Check Now.lnk
C:\Documents and Settings\Owner\Start Menu\Programs\Internet Speed Monitor\Uninstall.lnk
C:\Documents and Settings\Owner\Start Menu\Programs\Outerinfo
C:\Documents and Settings\Owner\Start Menu\Programs\Outerinfo\Terms.lnk
C:\Documents and Settings\Owner\Start Menu\Programs\Outerinfo\Uninstall.lnk
C:\Program Files\Common Files\{346C0~1
C:\Program Files\Common Files\{846C0~1
C:\Program Files\Common Files\companion wizard
C:\Program Files\Common Files\companion wizard\compwiz.exe
C:\Program Files\Common Files\companion wizard\WapCHK.dll
C:\Program Files\Common Files\Yazzle1552OinAdmin.exe
C:\Program Files\Common Files\Yazzle1552OinUninstaller.exe
C:\Program Files\FunWebProducts
C:\Program Files\FunWebProducts\ScreenSaver\Images\
000A6408.urr
C:\Program Files\FunWebProducts\ScreenSaver\Images\
0018D1C2.urr
C:\Program Files\FunWebProducts\ScreenSaver\Images\
004BFDAC.urr
C:\Program Files\FunWebProducts\ScreenSaver\Images\
0274B8F1.urr
C:\Program Files\FunWebProducts\Shared\
0129C8C9.dat
C:\Program Files\FunWebProducts\Shared\Cache\AvatarSmallBtn.html
C:\Program Files\FunWebProducts\Shared\Cache\CursorManiaBtn.html
C:\Program Files\FunWebProducts\Shared\Cache\FunBuddyIconBtn.html
C:\Program Files\FunWebProducts\Shared\Cache\MailStampBtn.html
C:\Program Files\FunWebProducts\Shared\Cache\MyFunCardsIMBtn.html
C:\Program Files\FunWebProducts\Shared\Cache\MySignatureInsertBtn.html
C:\Program Files\FunWebProducts\Shared\Cache\MySignaturePreviewBtn.html
C:\Program Files\FunWebProducts\Shared\Cache\MyStationeryBtn.html
C:\Program Files\FunWebProducts\Shared\Cache\SmileyCentralBtn.html
C:\Program Files\icroso~1.net
C:\Program Files\internet explorer\msimg32.dll
C:\Program Files\internetgamebox
C:\Program Files\internetgamebox\InternetGameBox.exe
C:\Program Files\internetgamebox\InternetGameBox.url
C:\Program Files\internetgamebox\language
C:\Program Files\internetgamebox\ressources\AttenteOff.html
C:\Program Files\internetgamebox\ressources\AttenteOn.html
C:\Program Files\internetgamebox\ressources\configv3_en.xml
C:\Program Files\internetgamebox\ressources\configv3_es.xml
C:\Program Files\internetgamebox\ressources\configv3_fr.xml
C:\Program Files\internetgamebox\ressources\favoris\defaultv2.swf
C:\Program Files\internetgamebox\ressources\NoS2F.bin
C:\Program Files\internetgamebox\skins\skinv3.skn
C:\Program Files\internetgamebox\uninst.exe
C:\Program Files\ISM
C:\Program Files\ISM\bndloader.exe
C:\Program Files\ISM\dictionary.gz
C:\Program Files\ISM\kazooupd.exe
C:\Program Files\ISM\syncupd.exe
C:\Program Files\ISM\targets.gz
C:\Program Files\ISM\Uninstall.exe
C:\Program Files\MyWebSearch
C:\Program Files\MyWebSearch\bar\4.bin\MWSBAR.DLL
C:\Program Files\MyWebSearch\bar\4.bin\MWSOEMON.EXE
C:\Program Files\MyWebSearch\bar\4.bin\MWSOESTB.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3BKGERR.JPG
C:\Program Files\MyWebSearch\bar\5.bin\F3BROVLY.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3CJPEG.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3DTACTL.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3HISTSW.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3HTMLMU.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3HTTPCT.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3IMSTUB.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3POPSWT.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3PSSAVR.SCR
C:\Program Files\MyWebSearch\bar\5.bin\F3REPROX.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3RESTUB.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3SCHMON.EXE
C:\Program Files\MyWebSearch\bar\5.bin\F3SCRCTR.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3SHLLVW.DLL
C:\Program Files\MyWebSearch\bar\5.bin\F3SPACER.WMV
C:\Program Files\MyWebSearch\bar\5.bin\F3WALLPP.DAT
C:\Program Files\MyWebSearch\bar\5.bin\F3WPHOOK.DLL
C:\Program Files\MyWebSearch\bar\5.bin\M3FFXTBR.JAR
C:\Program Files\MyWebSearch\bar\5.bin\M3FFXTBR.MANIFEST
C:\Program Files\MyWebSearch\bar\5.bin\M3HTML.DLL
C:\Program Files\MyWebSearch\bar\5.bin\M3IDLE.DLL
C:\Program Files\MyWebSearch\bar\5.bin\M3IMPIPE.EXE
C:\Program Files\MyWebSearch\bar\5.bin\M3MSG.DLL
C:\Program Files\MyWebSearch\bar\5.bin\M3NTSTBR.JAR
C:\Program Files\MyWebSearch\bar\5.bin\M3NTSTBR.MANIFEST
C:\Program Files\MyWebSearch\bar\5.bin\M3OUTLCN.DLL
C:\Program Files\MyWebSearch\bar\5.bin\M3PLUGIN.DLL
C:\Program Files\MyWebSearch\bar\5.bin\M3SKIN.DLL
C:\Program Files\MyWebSearch\bar\5.bin\M3SKPLAY.EXE
C:\Program Files\MyWebSearch\bar\5.bin\M3SLSRCH.EXE
C:\Program Files\MyWebSearch\bar\5.bin\M3SRCHMN.EXE
C:\Program Files\MyWebSearch\bar\5.bin\MWSOEMON.EXE
C:\Program Files\MyWebSearch\bar\5.bin\MWSOEPLG.DLL
C:\Program Files\MyWebSearch\bar\5.bin\MWSOESTB.DLL
C:\Program Files\MyWebSearch\bar\5.bin\NPMYWEBS.DLL
C:\Program Files\MyWebSearch\bar\Avatar\COMMON.F3S
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\avatar.htm
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\bgfadel.gif
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\bgfader.gif
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\close.gif
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\common-x.css
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\common.css
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\cornerbl.gif
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\cornerbr.gif
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\htmlctrl.js
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\include.js
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\index.htm
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\loading.gif
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\login.htm
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\logo.gif
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\max.gif
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\min.gif
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\noflash.htm
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\spacer.gif
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\spacer.swf
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\unmax.gif
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\wardrobe.htm
C:\Program Files\MyWebSearch\bar\Avatar\COMMON\window.ico
C:\Program Files\MyWebSearch\bar\Cache\
000733A0
C:\Program Files\MyWebSearch\bar\Cache\
00095603
C:\Program Files\MyWebSearch\bar\Cache\
000BAFA3.bin
C:\Program Files\MyWebSearch\bar\Cache\
000BE26B.bin
C:\Program Files\MyWebSearch\bar\Cache\
000CA492.bin
C:\Program Files\MyWebSearch\bar\Cache\
000CAE95.bin
C:\Program Files\MyWebSearch\bar\Cache\
0019745B.bin
C:\Program Files\MyWebSearch\bar\Cache\
001AB373.bin
C:\Program Files\MyWebSearch\bar\Cache\
002A8CD2.bin
C:\Program Files\MyWebSearch\bar\Cache\
002E8ABB
C:\Program Files\MyWebSearch\bar\Cache\
0031665C
C:\Program Files\MyWebSearch\bar\Cache\
0031809B
C:\Program Files\MyWebSearch\bar\Cache\
004A3168.bin
C:\Program Files\MyWebSearch\bar\Cache\
00573E79
C:\Program Files\MyWebSearch\bar\Cache\
005C6FB2.bin
C:\Program Files\MyWebSearch\bar\Cache\
00656314
C:\Program Files\MyWebSearch\bar\Cache\
00D68F9C.bin
C:\Program Files\MyWebSearch\bar\Cache\
00D69A3B.bin
C:\Program Files\MyWebSearch\bar\Cache\
00FB337E
C:\Program Files\MyWebSearch\bar\Cache\
00FB728B.bin
C:\Program Files\MyWebSearch\bar\Cache\
00FC9A81.bin
C:\Program Files\MyWebSearch\bar\Cache\
00FCB8B7.bin
C:\Program Files\MyWebSearch\bar\Cache\
00FCC941.bin
C:\Program Files\MyWebSearch\bar\Cache\
00FCDC5C.bin
C:\Program Files\MyWebSearch\bar\Cache\
00FCED06.bin
C:\Program Files\MyWebSearch\bar\Cache\
00FCFDEE.bin
C:\Program Files\MyWebSearch\bar\Cache\
00FD0A13.bin
C:\Program Files\MyWebSearch\bar\Cache\
017A7CC2
C:\Program Files\MyWebSearch\bar\Cache\
01AD4688
C:\Program Files\MyWebSearch\bar\Cache\
01B6242F.bin
C:\Program Files\MyWebSearch\bar\Cache\
01B628D2.bin
C:\Program Files\MyWebSearch\bar\Cache\
01B62AB7.bin
C:\Program Files\MyWebSearch\bar\Cache\
01BE3128
C:\Program Files\MyWebSearch\bar\Cache\
01C1FB21
C:\Program Files\MyWebSearch\bar\Cache\
0218694A
C:\Program Files\MyWebSearch\bar\Cache\
0229AD84
C:\Program Files\MyWebSearch\bar\Cache\
02918CF2
C:\Program Files\MyWebSearch\bar\Cache\
029B8CB3.bin
C:\Program Files\MyWebSearch\bar\Cache\
02D70D9C
C:\Program Files\MyWebSearch\bar\Cache\
02F73FFB
C:\Program Files\MyWebSearch\bar\Cache\files.ini
C:\Program Files\MyWebSearch\bar\Game\CHECKERS.F3S
C:\Program Files\MyWebSearch\bar\Game\CHESS.F3S
C:\Program Files\MyWebSearch\bar\Game\REVERSI.F3S
C:\Program Files\MyWebSearch\bar\History\search2
C:\Program Files\MyWebSearch\bar\icons\CM.ICO
C:\Program Files\MyWebSearch\bar\icons\MFC.ICO
C:\Program Files\MyWebSearch\bar\icons\PSS.ICO
C:\Program Files\MyWebSearch\bar\icons\SMILEY.ICO
C:\Program Files\MyWebSearch\bar\icons\WB.ICO
C:\Program Files\MyWebSearch\bar\icons\ZWINKY.ICO
C:\Program Files\MyWebSearch\bar\Message\COMMON.F3S
C:\Program Files\MyWebSearch\bar\Notifier\COMMON.F3S
C:\Program Files\MyWebSearch\bar\Notifier\DOG.F3S
C:\Program Files\MyWebSearch\bar\Notifier\FISH.F3S
C:\Program Files\MyWebSearch\bar\Notifier\KUNGFU.F3S
C:\Program Files\MyWebSearch\bar\Notifier\LIFEGARD.F3S
C:\Program Files\MyWebSearch\bar\Notifier\MAID.F3S
C:\Program Files\MyWebSearch\bar\Notifier\MAILBOX.F3S
C:\Program Files\MyWebSearch\bar\Notifier\OPERA.F3S
C:\Program Files\MyWebSearch\bar\Notifier\ROBOT.F3S
C:\Program Files\MyWebSearch\bar\Notifier\SEDUCT.F3S
C:\Program Files\MyWebSearch\bar\Notifier\SURFER.F3S
C:\Program Files\MyWebSearch\bar\Search\COMMON.F3S
C:\Program Files\MyWebSearch\bar\Settings\prevcfg2.htm
C:\Program Files\MyWebSearch\bar\Settings\s_pid.dat
C:\Program Files\MyWebSearch\bar\Settings\setting2.htm
C:\Program Files\MyWebSearch\bar\Settings\setting2.htm.bak
C:\Program Files\MyWebSearch\bar\Settings\settings.dat
C:\Program Files\MyWebSearch\bar\Settings\settings.dat.bak
C:\Program Files\MyWebSearch\SrchAstt\4.bin\MWSSRCAS.DLL
C:\Program Files\MyWebSearch\SrchAstt\5.bin\MWSSRCAS.DLL
C:\Program Files\outlook
C:\Program Files\outlook\p.zip
C:\Program Files\outlook\v.tmp
C:\Program Files\screensavers.com
C:\Program Files\screensavers.com\SSSInst\bin\iebyterange.xml
C:\Program Files\screensavers.com\SSSInst\bin\iebyterange.xml.backup
C:\Program Files\screensavers.com\SSSInst\bin\SSSUninst.exe
C:\Program Files\screensavers.com\Wallpaper\swpstart.exe
C:\Program Files\spycrush 3.2
C:\Program Files\spycrush 3.2\sd.ini
C:\Program Files\spycrush 3.2\SpyCrush 3.2.exe
C:\Program Files\Starware316
C:\Program Files\Starware316\brand.bmp
C:\Program Files\Starware316\Starware316Config.xml
C:\Program Files\VirusProtectPro 3.4
C:\Program Files\VirusProtectPro 3.4\blacklist.txt
C:\Program Files\VirusProtectPro 3.4\ignored.lst
C:\Program Files\VirusProtectPro 3.4\Lang\English.ini
C:\Program Files\VirusProtectPro 3.4\msvcp71.dll
C:\Program Files\VirusProtectPro 3.4\msvcr71.dll
C:\Program Files\VirusProtectPro 3.4\uninst.exe
C:\Program Files\VirusProtectPro 3.4\VirusProtectPro 3.4.exe
C:\Program Files\VirusProtectPro 3.4\VirusProtectPro 3.4.url
C:\Program Files\VirusProtectPro 3.4\vpp.dat
C:\Program Files\VirusProtectPro 3.4\vpp.ini
C:\Program Files\vsadd-in
C:\WINDOWS\cookies.ini
C:\WINDOWS\Fonts\a.zip
C:\WINDOWS\Fonts\Crack.exe
C:\WINDOWS\IA
C:\WINDOWS\mbols~1
C:\WINDOWS\mbols~1\??mbols\
C:\WINDOWS\pack.epk
C:\WINDOWS\sks~1
C:\WINDOWS\sks~1\??sks\
C:\WINDOWS\svchost.exe
C:\WINDOWS\system32\ace16win.dll
C:\WINDOWS\system32\bbesnicl.ini
C:\WINDOWS\system32\bdeeg.ini
C:\WINDOWS\system32\bdeeg.ini2
C:\WINDOWS\system32\bszip.dll
C:\WINDOWS\system32\clleimck.ini
C:\WINDOWS\system32\cmd.com
C:\WINDOWS\system32\datacle.dll
C:\WINDOWS\system32\dcjojlsb.ini
C:\WINDOWS\system32\din.ip
C:\WINDOWS\system32\dklexg.dat
C:\WINDOWS\system32\dklexg.exe
c:\WINDOWS\system32\dklexg_nav.dat
c:\WINDOWS\system32\dklexg_navps.dat
C:\WINDOWS\system32\dn846c0a55.dat
C:\WINDOWS\system32\dpvvo.dll
C:\WINDOWS\system32\drivers\bg_bg.gif
C:\WINDOWS\system32\drivers\blank.gif
C:\WINDOWS\system32\drivers\box_1.gif
C:\WINDOWS\system32\drivers\box_2.gif
C:\WINDOWS\system32\drivers\box_3.gif
C:\WINDOWS\system32\drivers\button_buynow.gif
C:\WINDOWS\system32\drivers\button_freescan.gif
C:\WINDOWS\system32\drivers\cell_bg.gif
C:\WINDOWS\system32\drivers\cell_footer.gif
C:\WINDOWS\system32\drivers\cell_header_block.gif
C:\WINDOWS\system32\drivers\cell_header_remove.gif
C:\WINDOWS\system32\drivers\cell_header_scan.gif
C:\WINDOWS\system32\drivers\close_ico.gif
C:\WINDOWS\system32\drivers\detect.htm
C:\WINDOWS\system32\drivers\download_box.gif
C:\WINDOWS\system32\drivers\download_btn.jpg
C:\WINDOWS\system32\drivers\download_now_btn.gif
C:\WINDOWS\system32\drivers\footer_back.jpg
C:\WINDOWS\system32\drivers\fopf.sys
C:\WINDOWS\system32\drivers\header_1.gif
C:\WINDOWS\system32\drivers\header_2.gif
C:\WINDOWS\system32\drivers\header_3.gif
C:\WINDOWS\system32\drivers\header_4.gif
C:\WINDOWS\system32\drivers\header_red_bg.gif
C:\WINDOWS\system32\drivers\header_red_free_scan.gif
C:\WINDOWS\system32\drivers\header_red_free_scan_bg.gif
C:\WINDOWS\system32\drivers\header_red_protect_your_pc.gif
C:\WINDOWS\system32\drivers\icon_warning_big.gif
C:\WINDOWS\system32\drivers\infected.gif
C:\WINDOWS\system32\drivers\main_back.gif
C:\WINDOWS\system32\drivers\perfect_cleaner_box.jpg
C:\WINDOWS\system32\drivers\product_1_header.gif
C:\WINDOWS\system32\drivers\product_1_name_small.gif
C:\WINDOWS\system32\drivers\product_2_header.gif
C:\WINDOWS\system32\drivers\product_2_name_small.gif
C:\WINDOWS\system32\drivers\product_3_header.gif
C:\WINDOWS\system32\drivers\product_3_name_small.gif
C:\WINDOWS\system32\drivers\product_features.gif
C:\WINDOWS\system32\drivers\pt.htm
C:\WINDOWS\system32\drivers\rating.gif
C:\WINDOWS\system32\drivers\remove_spyware_header.gif
C:\WINDOWS\system32\drivers\s_detect.htm
C:\WINDOWS\system32\drivers\screenshot.jpg
C:\WINDOWS\system32\drivers\sep_hor.gif
C:\WINDOWS\system32\drivers\sep_vert.gif
C:\WINDOWS\system32\drivers\shadow.jpg
C:\WINDOWS\system32\drivers\shadow_bg.gif
C:\WINDOWS\system32\drivers\spacer.gif
C:\WINDOWS\system32\drivers\spy_away_box.jpg
C:\WINDOWS\system32\drivers\spyware_detected.gif
C:\WINDOWS\system32\drivers\star.gif
C:\WINDOWS\system32\drivers\star_gray.gif
C:\WINDOWS\system32\drivers\star_gray_small.gif
C:\WINDOWS\system32\drivers\star_small.gif
C:\WINDOWS\system32\drivers\style.css
C:\WINDOWS\system32\drivers\tyawqway.dat
C:\WINDOWS\system32\drivers\v.gif
C:\WINDOWS\system32\drivers\warning_ico.gif
C:\WINDOWS\system32\drivers\warning_icon.gif
C:\WINDOWS\system32\drivers\win_logo.gif
C:\WINDOWS\system32\drivers\x.gif
C:\WINDOWS\system32\drivers\yellow_warning_ico.gif
C:\WINDOWS\system32\f3PSSavr.scr
C:\WINDOWS\system32\fxfyoeol.dll
C:\WINDOWS\system32\geedb.dll
C:\WINDOWS\system32\hgorcacv.ini
C:\WINDOWS\system32\hvivpyua.ini
C:\WINDOWS\system32\iwvwhcyt.ini
C:\WINDOWS\system32\kcmiellc.dll
C:\WINDOWS\system32\knsgpuxr.ini
C:\WINDOWS\system32\linkprd.exe
C:\WINDOWS\system32\lnaccess.exe
C:\WINDOWS\system32\lt.res
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\mhrsxjco.ini
C:\WINDOWS\system32\mljhgee.dll
C:\WINDOWS\system32\netstat.com
C:\WINDOWS\system32\nscCB69.dll
C:\WINDOWS\system32\nvs2.inf
C:\WINDOWS\system32\ping.com
C:\WINDOWS\system32\pxpphdhj.dll
C:\WINDOWS\system32\racle~1
C:\WINDOWS\system32\regedit.com
C:\WINDOWS\system32\rt25.exe
C:\WINDOWS\system32\sft.res
C:\WINDOWS\system32\stera.job
C:\WINDOWS\system32\stera.log
C:\WINDOWS\system32\stfv.bin
C:\WINDOWS\system32\sznf.ascii
C:\WINDOWS\system32\taskkill.com
C:\WINDOWS\system32\tasklist.com
C:\WINDOWS\system32\tlmfmohw.ini
C:\WINDOWS\system32\tracert.com
C:\WINDOWS\system32\tvreyiad.ini
C:\WINDOWS\system32\ufuqmoai.dll
C:\WINDOWS\system32\uiqpyocb.dll
C:\WINDOWS\system32\unsvchosts.lzma
C:\WINDOWS\system32\vgodfwvk.ini
C:\WINDOWS\system32\windows
C:\WINDOWS\system32\winticom32.exe
C:\WINDOWS\system32\wwdlfkbs.ini
C:\WINDOWS\system32\yadcpyli.ini
C:\WINDOWS\system32\ywmivqtt.dll
C:\WINDOWS\system32\ywmivqtt.dllbox
C:\WINDOWS\winh32.exe
D:\Autorun.inf
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\LEGACY_FOPF
-------\LEGACY_NETWORK_MONITOR
-------\LEGACY_POWERMANAGER
-------\LEGACY_XTZQDBUF
-------\FOPF
-------\xtzqdbuf
((((((((((((((((((((((((( Files Created from 2008-01-25 to 2008-02-25 )))))))))))))))))))))))))))))))
.
2008-02-25 17:17 . 2008-02-25 17:18 14,033 --a------ C:\posDA5E.tmp
2008-02-24 16:01 . 2008-02-24 16:01 <DIR> d-------- C:\WINDOWS\ERUNT
2008-02-24 15:45 . 2008-02-24 16:48 <DIR> d-------- C:\SDFix
2008-02-24 15:33 . 2008-02-24 15:33 <DIR> d-------- C:\WINDOWS\system32\Kaspersky Lab
2008-02-24 15:33 . 2008-02-24 15:33 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-02-24 15:31 . 2008-02-24 15:31 24,576 --a------ C:\WINDOWS\system32\VundoFixSVC.exe
2008-02-24 15:04 . 2008-02-24 15:04 <DIR> d-------- C:\Program Files\Trend Micro
2008-02-24 15:01 . 2008-02-24 15:01 <DIR> d-------- C:\VundoFix Backups
2008-02-24 07:44 . 2008-02-24 07:44 <DIR> d-------- C:\Program Files\JEDISware
2008-02-24 07:41 . 2008-02-24 07:41 833 --a------ C:\WINDOWS\ST5UNST.001
2008-02-24 07:41 . 2008-02-24 07:41 810 --a------ C:\WINDOWS\ST5UNST.002
2008-02-24 01:09 . 2008-02-24 01:14 <DIR> d-------- C:\divx
2008-02-23 05:29 . 2008-02-24 02:16 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\DivX
2008-02-23 05:27 . 2008-02-20 20:05 120,056 --------- C:\WINDOWS\system32\pxcpyi64.exe
2008-02-23 05:27 . 2008-02-20 20:05 118,520 --------- C:\WINDOWS\system32\pxinsi64.exe
2008-02-20 20:05 . 2008-02-20 20:05 3,596,288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2008-02-20 20:05 . 2008-02-20 20:05 1,044,480 --a------ C:\WINDOWS\system32\libdivx.dll
2008-02-20 20:05 . 2008-02-20 20:05 524,288 --a------ C:\WINDOWS\system32\DivXsm.exe
2008-02-20 20:05 . 2008-02-20 20:05 200,704 --a------ C:\WINDOWS\system32\ssldivx.dll
2008-02-20 20:05 . 2008-02-20 20:05 4,816 --a------ C:\WINDOWS\system32\divxsm.tlb
2008-02-20 20:03 . 2008-02-20 20:03 630,784 --a------ C:\WINDOWS\system32\divxdec.ax
2008-02-20 20:03 . 2008-02-20 20:03 352,401 --a------ C:\WINDOWS\system32\DivXMedia.ax
2008-02-20 20:03 . 2008-02-20 20:03 156,992 --a------ C:\WINDOWS\system32\DivXCodecVersionChecker.exe
2008-02-20 20:03 . 2008-02-20 20:03 12,288 --a------ C:\WINDOWS\system32\DivXWMPExtType.dll
2008-02-16 23:00 . 2008-02-16 23:00 833 --a------ C:\WINDOWS\ST5UNST.000
2008-02-16 23:00 . 2008-02-24 07:41 0 --a------ C:\WINDOWS\SETUP.LST
2008-02-16 20:10 . 2008-02-24 00:36 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\LimeWire
2008-02-16 20:09 . 2008-02-17 03:56 <DIR> d-------- C:\Program Files\LimeWire
2008-02-14 22:14 . 2008-02-14 22:14 <DIR> d-------- C:\Program Files\Red Kawa
2008-02-14 22:14 . 2008-02-14 22:14 <DIR> d-------- C:\Program Files\AviSynth 2.5
2008-02-14 20:27 . 2008-02-14 20:27 <DIR> d-------- C:\Program Files\Xilisoft
2008-02-13 21:52 . 2008-02-24 16:49 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-02-13 21:52 . 2008-02-13 21:52 1,409 --a------ C:\WINDOWS\QTFont.for
2008-02-13 21:46 . 2008-02-13 21:47 <DIR> d-------- C:\Program Files\iTunes
2008-02-13 21:46 . 2008-02-13 21:46 <DIR> d-------- C:\Program Files\iPod
2008-02-13 21:44 . 2008-02-13 21:44 <DIR> d-------- C:\Program Files\Bonjour
2008-02-13 21:29 . 2008-02-13 21:29 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE
2008-02-13 21:29 . 2008-01-15 02:39 30,464 --a------ C:\WINDOWS\system32\drivers\usbaapl.sys
2008-02-13 21:27 . 2008-02-13 21:27 <DIR> d-------- C:\Program Files\Common Files\Apple
2008-02-10 01:26 . 2008-02-10 01:30 4,214,135 ---hs---- C:\WINDOWS\system32\ggluctpg.ini
2008-02-10 01:25 . 2008-02-10 01:26 0 --a------ C:\WINDOWS\system32\vpopjxdy.tmp
2008-02-09 16:01 . 2008-02-10 01:15 4,214,645 ---hs---- C:\WINDOWS\system32\vpopjxdy.ini
2008-02-09 08:50 . 2008-02-09 15:46 4,216,541 ---hs---- C:\WINDOWS\system32\oabchcwa.ini
2008-02-07 21:04 . 2008-02-09 08:51 4,217,366 ---hs---- C:\WINDOWS\system32\uthcumqj.ini
2008-02-07 19:30 . 2008-02-07 21:00 4,218,556 ---hs---- C:\WINDOWS\system32\xqfhiqme.ini
2008-02-06 20:23 . 2008-02-06 20:40 4,219,873 ---hs---- C:\WINDOWS\system32\xgkixqvf.ini
2008-02-05 05:23 . 2008-02-06 23:25 4,220,345 ---hs---- C:\WINDOWS\system32\gamrnubn.ini
2008-02-05 04:19 . 2008-02-05 04:19 <DIR> d-------- C:\Program Files\RcvSystem
2008-02-04 02:11 . 2008-02-05 05:18 2,734,396 ---hs---- C:\WINDOWS\system32\frngxhgi.ini
2008-02-03 19:18 . 2008-02-03 23:36 <DIR> d-------- C:\Program Files\FrostWire
2008-01-31 23:13 . 2008-01-31 23:13 90,112 --a------ C:\WINDOWS\system32\QuickTimeVR.qtx
2008-01-31 23:13 . 2008-01-31 23:13 57,344 --a------ C:\WINDOWS\system32\QuickTime.qts
2008-01-30 23:57 . 2008-01-30 23:57 147,456 --a------ C:\WINDOWS\system32\vbzip10.dll
2008-01-30 02:10 . 2008-01-30 02:10 <DIR> d-------- C:\WINDOWS\update
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-24 14:16 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-23 11:27 --------- d-----w C:\Program Files\DivX
2008-02-22 08:51 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-20 08:55 --------- d-----w C:\Program Files\Lx_cats
2008-02-14 03:46 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-02-14 03:42 --------- d-----w C:\Program Files\QuickTime
2008-02-05 03:39 195,304 ----a-w C:\Documents and Settings\Donald Robertson\Application Data\install_en[1].exe
2008-02-04 12:18 --------- d-----w C:\Documents and Settings\Owner\Application Data\FrostWire
2008-02-04 12:09 --------- d-----w C:\Program Files\P2P_Energy
2008-02-01 23:43 --------- d-----w C:\Program Files\VstPlugins
2008-02-01 23:43 --------- d-----w C:\Program Files\BitTorrent
2008-01-30 08:09 --------- d-----w C:\Program Files\Ares
2008-01-22 05:30 --------- d-----w C:\Program Files\NCH Swift Sound
2008-01-19 08:50 --------- d-----w C:\Program Files\Winamp
2008-01-19 01:27 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-01-13 04:47 --------- d-----w C:\Documents and Settings\Owner\Application Data\WinMX Music
2008-01-08 09:45 --------- d-----w C:\Documents and Settings\Owner\Application Data\BitTorrent
2008-01-05 19:50 --------- d-----w C:\Program Files\Java
2008-01-05 19:36 --------- d-----w C:\Program Files\WildTangent
2008-01-04 19:43 --------- d-----w C:\Documents and Settings\Donald Robertson\Application Data\Yahoo!
2007-12-27 13:30 --------- d-----w C:\Program Files\Digidesign
2007-12-27 13:30 --------- d-----w C:\Program Files\Common Files\Digidesign
2006-11-07 06:12 0 ----a-w C:\Documents and Settings\Donald Robertson\Application Data\wklnhst.dat
2006-01-27 22:30 0 ----a-w C:\Documents and Settings\Owner\Application Data\wklnhst.dat
2005-12-26 06:25 774,144 ----a-w C:\Program Files\RngInterstitial.dll
2007-07-20 06:06 1,805,088 --sh--w C:\WINDOWS\system32\gfhkj.bak1
2007-07-21 01:17 1,806,466 --sh--w C:\WINDOWS\system32\gfhkj.bak2
2007-07-21 05:22 1,855,694 --sh--w C:\WINDOWS\system32\gfhkj.ini2
2007-05-03 16:53 1,376,955 --sh--w C:\WINDOWS\system32\mnnmp.bak1
2007-05-03 16:52 1,376,216 --sh--w C:\WINDOWS\system32\mnnmp.bak2
2007-05-03 17:28 1,378,900 --sh--w C:\WINDOWS\system32\mnnmp.ini2
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2}]
2007-10-11 20:08 66912 --a------ C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
2008-01-13 23:44 1502232 --a------ C:\Program Files\Freecorder\tbFre1.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2bae58c2-79f9-45d1-a286-81f911301c3a}]
C:\Program Files\P2P_Energy\tbP2P0.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AB5FE6E5-7C72-4B89-85D0-D57E7AEAC236}]
C:\WINDOWS\system32\oembios32.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D0652189-D3D8-4EB4-B964-B179D2CE1A7A}]
C:\WINDOWS\system32\pmnnm.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D91B4174-FB52-45FC-9BFF-99B3E1236514}]
C:\WINDOWS\system32\awtqq.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E61B9B49-2001-4b8a-97EB-F1128224DCE3}]
C:\Program Files\DeskAlerts\deskbar.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA}]
2007-10-11 20:08 267592 --a------ C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88}
{2318C2B1-4965-11D4-9B18-009027A5CD4F}
{A8FB8EB3-183B-4598-924D-86F0E5E37085}
{DE9C389F-3316-41A7-809B-AA305ED9D922}
{37B85A29-692B-4205-9CAD-2626E4993404}
{DF4E7A0C-E233-4906-B4C1-A404356541FF}
{D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A}
{1392B8D2-5C05-419F-A8F6-B9F15A596612}
{F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA}
{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
{2BAE58C2-79F9-45D1-A286-81F911301C3A}
{F8AD5AA5-D966-4667-9DAF-2561D68B2012}
[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]
[HKEY_CLASSES_ROOT\clsid\{f0d4b239-da4b-4daf-81e4-dfee4931a4aa}]
[HKEY_CLASSES_ROOT\clsid\{2bae58c2-79f9-45d1-a286-81f911301c3a}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{2BAE58C2-79F9-45D1-A286-81F911301C3A}"= C:\Program Files\P2P_Energy\tbP2P0.dll [ ]
[HKEY_CLASSES_ROOT\clsid\{2bae58c2-79f9-45d1-a286-81f911301c3a}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QdrModule9"="C:\Program Files\QdrModule\QdrModule9.exe" [ ]
"Yahoo! Pager"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [2007-03-27 14:22 4670968]
"QdrPack13"="C:\Program Files\QdrPack\QdrPack13.exe" [ ]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MPFEXE"="C:\Program Files\mcafee.com\personal firewall\MPfTray.exe" [2006-03-07 15:05 992808]
"MCUpdateExe"="c:\PROGRA~1\mcafee.com\agent\mcupdate.exe" [2006-01-11 12:05 212992]
"LXCGCATS"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCGtime.dll" [2005-07-20 11:48 73728]
"SunKistEM"="C:\Program Files\Digital Media Reader\shwiconem.exe" [2004-11-15 16:04 135168]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"sscRun"="C:\Program Files\Common Files\AOL\1151382160\ee\SSCRun.exe" [2007-01-25 15:34 153168]
"Recguard"="%WINDIR%\SMINST\RECGUARD.EXE" [ ]
"Pure Networks Port Magic"="C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe" [2004-04-05 15:33 99480]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [2005-04-25 11:32 114688]
"OASClnt"="C:\Program Files\mcafee.com\antivirus\oasclnt.exe" [2006-07-28 10:43 116272]
"NeroCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-08-06 21:03 155648]
"MPSExe"="C:\Program Files\mcafee.com\MPS\mscifapp.exe" [2006-04-10 14:37 316968]
"MCAgentExe"="c:\PROGRA~1\mcafee.com\agent\mcagent.exe" [2005-09-22 18:29 339456]
"Lexmark 5400 Series Fax Server"="C:\Program Files\Lexmark 5400 Series\fm3032.exe" [ ]
"ledpointer"="CNYHKey.exe" [2004-03-02 21:24 5576704 C:\WINDOWS\CNYHKey.exe]
"IntelAudioStudio"="C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" [2005-05-10 17:02 7122432]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2005-04-25 11:32 94208]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd
Edited by JuguarPaw, 24 February 2008 - 06:02 PM.
This topic is locked
Sign In
Create Account
