This topic is lockedBy the way, is there any USB device you've been using lately that you keep connecting to the system? If so, let me know so we can scan for any potential malicious files in it. Also, I strongly recommend you not use the system for your daily Internet usage while you and I are still trying to get its malware problems solved. For now, please make sure you're only using it when following my instructions here.
Slow, infected laptop
Started by
LukeMcD
, Oct 02 2011 02:01 PM
#31
Posted 01 November 2011 - 04:44 PM
Amlak
-
- Member
-
- 1,470 posts
Member 1K
By the way, is there any USB device you've been using lately that you keep connecting to the system? If so, let me know so we can scan for any potential malicious files in it. Also, I strongly recommend you not use the system for your daily Internet usage while you and I are still trying to get its malware problems solved. For now, please make sure you're only using it when following my instructions here.
#32
Posted 02 November 2011 - 07:18 AM
LukeMcD
- Topic Starter
-
- Member
-
- 102 posts
Member
it's my brothers laptop and i've told him not to use it at all whilst it is being fixed, so it has not been used for the internet. I've been using a usb memory stick to connect to the laptop to transfer logs back and forth from it to my machine. Also limewire is not installed, perhaps it left some registry files behind.Ok, waiting for my next fix to be approved. In the meantime, please uninstall Ask Toolbar and Limewire (if you haven't yet).
By the way, is there any USB device you've been using lately that you keep connecting to the system? If so, let me know so we can scan for any potential malicious files in it. Also, I strongly recommend you not use the system for your daily Internet usage while you and I are still trying to get its malware problems solved. For now, please make sure you're only using it when following my instructions here.
Edited by LukeMcD, 02 November 2011 - 07:24 AM.
#33
Posted 02 November 2011 - 06:54 PM
Amlak
-
- Member
-
- 1,470 posts
Member 1K
Nah, I didn't see any traces of Limewire in the last log which made me suspect you had already uninstalled it. Anyway, all good.
Ok, next set of instructions (please make sure you have your USB stick connected to the system to see if there's malware in it):
Step 1
Delete the current copy of ComboFix.exe that's on your system and download the latest version from here. Make sure you have it saved to the Desktop.
Open Notepad and copy the text in the box below into the file:
Save the Notepad file as CFScript.txt and make sure it's saved to the Desktop.
Make sure all windows are closed before continuing.
Referring to the image below, drag CFScript.txt into ComboFix.exe, and let the program run.
When done, paste the contents of the resultant log in your next reply.
Step 2
Please click here to download AVP Tool by Kaspersky.
After that click on Security level then choose Customize then click on the tab that says Heuristic Analyzer then choose Enable Deep rootkit search then choose ok.
Then choose OK again then you are back to the main screen.
Ok, next set of instructions (please make sure you have your USB stick connected to the system to see if there's malware in it):
Step 1
Delete the current copy of ComboFix.exe that's on your system and download the latest version from here. Make sure you have it saved to the Desktop.
Open Notepad and copy the text in the box below into the file:
KillAll:: Driver:: hdsector uhpgnoqo wbegef File:: c:\windows\system32\fterve.exe c:\windows\system32\aqrotp.exe c:\windows\system32\iqroth.exe c:\windows\system32\gtervf.exe c:\windows\system32\rqrotq.exe c:\windows\system32\ttixc.exe c:\windows\system32\wbegeg.exe c:\windows\system32\wtervf.exe c:\windows\system32\vterve.exe c:\windows\system32\etervu.exe c:\windows\system32\stixc.exe c:\windows\system32\sfinb.exe c:\windows\system32\xbegeg.exe c:\windows\system32\tsodt.exe c:\windows\system32\csodc.exe c:\windows\system32\xtervw.exe c:\windows\system32\ksodz.exe c:\windows\system32\iweryx.exe c:\windows\system32\ybegeg.exe c:\windows\system32\xweryg.exe c:\windows\system32\etixt.exe c:\windows\system32\mtixl.exe c:\windows\system32\zqroth.exe c:\windows\system32\ssodc.exe c:\windows\system32\hweryx.exe c:\windows\system32\ltixk.exe c:\windows\system32\aqrota.exe c:\windows\system32\yweryx.exe c:\windows\system32\pweryo.exe c:\windows\system32\obegeo.exe c:\windows\system32\sfinr.exe c:\windows\system32\otervn.exe c:\windows\system32\qweryp.exe c:\windows\system32\qqrotq.exe c:\windows\system32\uulmd.exe c:\windows\system32\bfinq.exe c:\windows\system32\zqrotj.exe c:\windows\system32\yweryh.exe c:\windows\system32\gbegev.exe c:\windows\system32\xweryh.exe c:\windows\system32\tsodc.exe c:\windows\system32\ttixt.exe c:\windows\system32\iqroti.exe c:\windows\system32\jfiny.exe c:\windows\system32\vtervf.exe c:\windows\system32\utixd.exe c:\windows\system32\oweryo.exe c:\windows\system32\jqroty.exe c:\windows\system32\nbegen.exe c:\windows\system32\iqrotx.exe c:\windows\system32\lulml.exe c:\windows\system32\rfina.exe c:\windows\system32\ctixc.exe c:\windows\system32\zfini.exe c:\windows\system32\mulmm.exe c:\windows\system32\xbegew.exe c:\windows\system32\csodr.exe c:\windows\system32\uulme.exe c:\windows\system32\ntervm.exe c:\windows\system32\afina.exe c:\windows\system32\ltixl.exe c:\windows\system32\pbegeo.exe c:\windows\system32\hdsector.sys c:\windows\system32\drivers\uhpgnoqo.sys c:\program files\Windows Media Player\wmpnscfg .exe c:\windows\system32\wbegef.exe
Save the Notepad file as CFScript.txt and make sure it's saved to the Desktop.
Make sure all windows are closed before continuing.
Referring to the image below, drag CFScript.txt into ComboFix.exe, and let the program run.
When done, paste the contents of the resultant log in your next reply.
Step 2
Please click here to download AVP Tool by Kaspersky.
- Save it to your desktop.
- Reboot your computer into SafeMode.
You can do this by restarting your computer and continually tapping the F8 key until a menu appears.
Use your up arrow key to highlight SafeMode then hit enter. - Double click the setup file to run it.
- Click Next to continue.
- It will by default install it to your desktop folder.Click Next.
- Hit ok at the prompt for scanning in Safe Mode.
- It will then open a box There will be a tab that says Automatic scan.
- Under Automatic scan make sure these are checked.
- System Memory
- Startup Objects
- Disk Boot Sectors.
- My Computer.
- Also any other drives (Removable that you may have)
After that click on Security level then choose Customize then click on the tab that says Heuristic Analyzer then choose Enable Deep rootkit search then choose ok.
Then choose OK again then you are back to the main screen.
- Then click on Scan at the to right hand Corner.
- It will automatically Neutralize any objects found.
- If some objects are left un-neutralized then click the button that says Neutralize all
- If it says it cannot be Neutralized then chooose The delete option when prompted.
- After that is done click on the reports button at the bottom and save it to file name it Kas.
- Save it somewhere convenient like your desktop and just post only the detected Virus\malware in the report it will be at the very top under Detected post those results in your next reply.
Note: This tool will self uninstall when you close it so please save the log before closing it.
#34
Posted 03 November 2011 - 04:06 PM
LukeMcD
- Topic Starter
-
- Member
-
- 102 posts
Member
ComboFix 11-11-03.03 - Martain 03/11/2011 20:49:13.4.1 - x86
Microsoft® Windows Vista™ Home Basic 6.0.6000.0.1252.44.1033.18.1013.241 [GMT 0:00]
Running from: c:\users\Martain\Desktop\ComboFix.exe
Command switches used :: c:\users\Martain\Desktop\CFScript.txt
.
FILE ::
"c:\program files\Windows Media Player\wmpnscfg .exe"
"c:\windows\system32\afina.exe"
"c:\windows\system32\aqrota.exe"
"c:\windows\system32\aqrotp.exe"
"c:\windows\system32\bfinq.exe"
"c:\windows\system32\csodc.exe"
"c:\windows\system32\csodr.exe"
"c:\windows\system32\ctixc.exe"
"c:\windows\system32\drivers\uhpgnoqo.sys"
"c:\windows\system32\etervu.exe"
"c:\windows\system32\etixt.exe"
"c:\windows\system32\fterve.exe"
"c:\windows\system32\gbegev.exe"
"c:\windows\system32\gtervf.exe"
"c:\windows\system32\hdsector.sys"
"c:\windows\system32\hweryx.exe"
"c:\windows\system32\iqroth.exe"
"c:\windows\system32\iqroti.exe"
"c:\windows\system32\iqrotx.exe"
"c:\windows\system32\iweryx.exe"
"c:\windows\system32\jfiny.exe"
"c:\windows\system32\jqroty.exe"
"c:\windows\system32\ksodz.exe"
"c:\windows\system32\ltixk.exe"
"c:\windows\system32\ltixl.exe"
"c:\windows\system32\lulml.exe"
"c:\windows\system32\mtixl.exe"
"c:\windows\system32\mulmm.exe"
"c:\windows\system32\nbegen.exe"
"c:\windows\system32\ntervm.exe"
"c:\windows\system32\obegeo.exe"
"c:\windows\system32\otervn.exe"
"c:\windows\system32\oweryo.exe"
"c:\windows\system32\pbegeo.exe"
"c:\windows\system32\pweryo.exe"
"c:\windows\system32\qqrotq.exe"
"c:\windows\system32\qweryp.exe"
"c:\windows\system32\rfina.exe"
"c:\windows\system32\rqrotq.exe"
"c:\windows\system32\sfinb.exe"
"c:\windows\system32\sfinr.exe"
"c:\windows\system32\ssodc.exe"
"c:\windows\system32\stixc.exe"
"c:\windows\system32\tsodc.exe"
"c:\windows\system32\tsodt.exe"
"c:\windows\system32\ttixc.exe"
"c:\windows\system32\ttixt.exe"
"c:\windows\system32\utixd.exe"
"c:\windows\system32\uulmd.exe"
"c:\windows\system32\uulme.exe"
"c:\windows\system32\vterve.exe"
"c:\windows\system32\vtervf.exe"
"c:\windows\system32\wbegef.exe"
"c:\windows\system32\wbegeg.exe"
"c:\windows\system32\wtervf.exe"
"c:\windows\system32\xbegeg.exe"
"c:\windows\system32\xbegew.exe"
"c:\windows\system32\xtervw.exe"
"c:\windows\system32\xweryg.exe"
"c:\windows\system32\xweryh.exe"
"c:\windows\system32\ybegeg.exe"
"c:\windows\system32\yweryh.exe"
"c:\windows\system32\yweryx.exe"
"c:\windows\system32\zfini.exe"
"c:\windows\system32\zqroth.exe"
"c:\windows\system32\zqrotj.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\vc71Gx4F.exe
c:\programdata\vc71Gx4F.exe_
c:\windows\system32\qfina.exe
c:\windows\Tasks\At1.job
c:\windows\Tasks\At11.job
c:\windows\Tasks\At12.job
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_HDSECTOR
-------\Service_uhpgnoqo
-------\Service_wbegef
.
.
((((((((((((((((((((((((( Files Created from 2011-10-03 to 2011-11-03 )))))))))))))))))))))))))))))))
.
.
2011-11-03 21:07 . 2011-11-03 21:07 28752 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C80A1A27-15C9-4E31-A836-B4BC3B75BCA8}\MpKsl25dbe2b8.sys
2011-11-03 21:04 . 2011-11-03 21:09 -------- d-----w- c:\users\Martain\AppData\Local\temp
2011-11-03 21:04 . 2011-11-03 21:04 -------- d-----w- c:\users\Guest\AppData\Local\temp
2011-11-03 21:04 . 2011-11-03 21:04 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-11-03 20:21 . 2011-11-03 20:21 28752 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C80A1A27-15C9-4E31-A836-B4BC3B75BCA8}\MpKsl33c1efd1.sys
2011-11-02 13:36 . 2011-11-02 13:36 41984 ----a-w- c:\windows\system32\msodj.exe
2011-11-02 13:36 . 2011-11-02 13:36 41984 ----a-w- c:\windows\system32\oulmm.exe
2011-11-02 13:36 . 2011-11-02 13:36 41984 ----a-w- c:\windows\system32\hbegex.exe
2011-11-02 13:36 . 2011-11-02 13:36 41984 ----a-w- c:\windows\system32\tqrott.exe
2011-11-02 13:36 . 2011-11-02 13:36 41984 ----a-w- c:\windows\system32\ptervn.exe
2011-11-02 13:36 . 2011-11-02 13:36 41984 ----a-w- c:\windows\system32\gweryg.exe
2011-11-02 13:35 . 2011-10-04 17:22 703824 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{84592D93-E9D8-4539-B997-106DE45195D9}\gapaengine.dll
2011-11-02 13:35 . 2011-11-02 13:35 41984 ----a-w- c:\windows\system32\vulme.exe
2011-11-02 13:30 . 2011-11-03 21:07 56200 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C80A1A27-15C9-4E31-A836-B4BC3B75BCA8}\offreg.dll
2011-11-02 13:30 . 2011-10-06 20:48 6668624 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C80A1A27-15C9-4E31-A836-B4BC3B75BCA8}\mpengine.dll
2011-10-31 21:31 . 2011-10-31 21:31 41984 ----a-w- c:\windows\system32\fterve.exe
2011-10-31 21:30 . 2011-10-31 21:30 41984 ----a-w- c:\windows\system32\aqrotp.exe
2011-10-31 21:30 . 2011-10-31 21:30 41984 ----a-w- c:\windows\system32\iqroth.exe
2011-10-31 21:30 . 2011-10-31 21:30 41984 ----a-w- c:\windows\system32\gtervf.exe
2011-10-31 21:29 . 2011-10-31 21:29 41984 ----a-w- c:\windows\system32\rqrotq.exe
2011-10-31 21:29 . 2011-10-31 21:29 41984 ----a-w- c:\windows\system32\ttixc.exe
2011-10-31 21:28 . 2011-10-31 21:28 41984 ----a-w- c:\windows\system32\wbegeg.exe
2011-10-31 21:28 . 2011-10-31 21:28 41984 ----a-w- c:\windows\system32\wtervf.exe
2011-10-31 21:28 . 2011-10-31 21:28 41984 ----a-w- c:\windows\system32\vterve.exe
2011-10-31 21:28 . 2011-10-31 21:28 41984 ----a-w- c:\windows\system32\etervu.exe
2011-10-31 21:27 . 2011-10-31 21:27 41984 ----a-w- c:\windows\system32\stixc.exe
2011-10-31 21:27 . 2011-10-31 21:27 41984 ----a-w- c:\windows\system32\sfinb.exe
2011-10-31 21:27 . 2011-10-31 21:27 41984 ----a-w- c:\windows\system32\xbegeg.exe
2011-10-31 21:27 . 2011-10-31 21:27 41984 ----a-w- c:\windows\system32\tsodt.exe
2011-10-31 21:27 . 2011-10-31 21:27 41984 ----a-w- c:\windows\system32\csodc.exe
2011-10-31 21:27 . 2011-10-31 21:27 41984 ----a-w- c:\windows\system32\xtervw.exe
2011-10-31 21:27 . 2011-10-31 21:27 41984 ----a-w- c:\windows\system32\ksodz.exe
2011-10-31 21:27 . 2011-10-31 21:27 41984 ----a-w- c:\windows\system32\iweryx.exe
2011-10-31 21:25 . 2011-10-31 21:25 41984 ----a-w- c:\windows\system32\ybegeg.exe
2011-10-31 21:25 . 2011-10-31 21:25 41984 ----a-w- c:\windows\system32\xweryg.exe
2011-10-31 21:25 . 2011-10-31 21:25 41984 ----a-w- c:\windows\system32\etixt.exe
2011-10-31 21:25 . 2011-10-31 21:25 41984 ----a-w- c:\windows\system32\mtixl.exe
2011-10-31 21:25 . 2011-10-31 21:25 41984 ----a-w- c:\windows\system32\zqroth.exe
2011-10-31 21:25 . 2011-10-31 21:25 41984 ----a-w- c:\windows\system32\ssodc.exe
2011-10-31 21:25 . 2011-10-31 21:25 41984 ----a-w- c:\windows\system32\hweryx.exe
2011-10-31 21:25 . 2011-10-31 21:25 41984 ----a-w- c:\windows\system32\ltixk.exe
2011-10-31 21:25 . 2011-10-31 21:25 41984 ----a-w- c:\windows\system32\aqrota.exe
2011-10-31 21:23 . 2011-10-31 21:23 41984 ----a-w- c:\windows\system32\yweryx.exe
2011-10-31 21:22 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\pweryo.exe
2011-10-31 21:22 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\obegeo.exe
2011-10-31 21:22 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\sfinr.exe
2011-10-31 21:22 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\otervn.exe
2011-10-31 21:22 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\qweryp.exe
2011-10-31 21:21 . 2011-10-31 21:21 41984 ----a-w- c:\windows\system32\qqrotq.exe
2011-10-31 21:21 . 2011-10-31 21:21 41984 ----a-w- c:\windows\system32\uulmd.exe
2011-10-31 21:21 . 2011-10-31 21:21 41984 ----a-w- c:\windows\system32\bfinq.exe
2011-10-31 21:20 . 2011-10-31 21:20 41984 ----a-w- c:\windows\system32\zqrotj.exe
2011-10-31 21:20 . 2011-10-31 21:20 41984 ----a-w- c:\windows\system32\yweryh.exe
2011-10-31 21:20 . 2011-10-31 21:20 41984 ----a-w- c:\windows\system32\gbegev.exe
2011-10-31 21:20 . 2011-10-31 21:20 41984 ----a-w- c:\windows\system32\xweryh.exe
2011-10-31 21:20 . 2011-10-31 21:20 41984 ----a-w- c:\windows\system32\tsodc.exe
2011-10-31 21:19 . 2011-10-31 21:19 41984 ----a-w- c:\windows\system32\ttixt.exe
2011-10-31 21:19 . 2011-10-31 21:19 41984 ----a-w- c:\windows\system32\iqroti.exe
2011-10-31 21:19 . 2011-10-31 21:19 41984 ----a-w- c:\windows\system32\jfiny.exe
2011-10-31 21:19 . 2011-10-31 21:19 41984 ----a-w- c:\windows\system32\vtervf.exe
2011-10-31 21:19 . 2011-10-31 21:19 41984 ----a-w- c:\windows\system32\utixd.exe
2011-10-31 21:19 . 2011-10-31 21:19 41984 ----a-w- c:\windows\system32\oweryo.exe
2011-10-31 21:19 . 2011-10-31 21:19 41984 ----a-w- c:\windows\system32\jqroty.exe
2011-10-31 21:19 . 2011-10-31 21:19 41984 ----a-w- c:\windows\system32\nbegen.exe
2011-10-31 21:19 . 2011-10-31 21:19 41984 ----a-w- c:\windows\system32\iqrotx.exe
2011-10-31 21:19 . 2011-10-31 21:19 41984 ----a-w- c:\windows\system32\lulml.exe
2011-10-31 21:19 . 2011-10-31 21:19 41984 ----a-w- c:\windows\system32\rfina.exe
2011-10-31 21:17 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\ctixc.exe
2011-10-31 21:16 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\zfini.exe
2011-10-31 21:16 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\mulmm.exe
2011-10-31 21:16 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\xbegew.exe
2011-10-31 21:15 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\csodr.exe
2011-10-31 21:15 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\uulme.exe
2011-10-31 21:15 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\ntervm.exe
2011-10-31 21:15 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\afina.exe
2011-10-31 21:15 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\ltixl.exe
2011-10-31 20:58 . 2011-10-31 21:22 41984 ----a-w- c:\windows\system32\pbegeo.exe
2011-10-23 17:59 . 2011-10-23 17:59 14720 ----a-w- c:\windows\system32\hdsector.sys
2011-10-07 19:24 . 2011-10-07 19:24 -------- d-----w- C:\_OTL
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-08-31 16:00 . 2011-08-02 12:11 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
.
[code]<pre>
c:\program files\iTunes\iTunesHelper .exe
c:\program files\Malwarebytes' Anti-Malware\mbamgui .exe
c:\program files\Microsoft Security Client\msseces .exe
c:\program files\QuickTime\QTTask .exe
c:\program files\Windows Media Player\WMPNSCFG .exe
</pre>[/code]
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-05-17 1490312]
.
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2011-05-17 12:29 1490312 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-05-17 1490312]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2011-05-17 1490312]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2011-10-04 147464]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
.
c:\users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Desktop Manager.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Desktop Manager.lnk
backup=c:\windows\pss\Desktop Manager.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Empowering Technology Launcher.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Empowering Technology Launcher.lnk
backup=c:\windows\pss\Empowering Technology Launcher.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TotalMedia Backup Monitor.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\TotalMedia Backup Monitor.lnk
backup=c:\windows\pss\TotalMedia Backup Monitor.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^Martain^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^LimeWire On Startup.lnk]
path=c:\users\Martain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LimeWire On Startup.lnk
backup=c:\windows\pss\LimeWire On Startup.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2007-03-08 11:38 40048 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
2011-05-17 12:29 395144 ----a-w- c:\program files\Ask.com\Updater\Updater.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Apoint]
2007-06-06 08:06 159744 ----a-w- c:\program files\Apoint2K\Apoint.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlackBerryAutoUpdate]
2009-05-12 11:36 623888 ----a-w- c:\program files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eDataSecurity Loader]
2007-04-25 23:33 573350 ------w- c:\acer\Empowering Technology\eDataSecurity\eDSLoader.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2008-01-02 17:06 166424 ----a-w- c:\windows\System32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
2008-01-02 17:07 141848 ----a-w- c:\windows\System32\igfxtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM]
2008-10-24 09:14 206112 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager]
2007-07-16 05:51 768520 ----a-w- c:\progra~1\LAUNCH~1\LManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
2011-06-15 14:16 997920 ----a-w- c:\program files\Microsoft Security Client\msseces.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMService]
2007-06-22 01:25 155648 ----a-w- c:\program files\Acer\Acer Arcade\PCMService.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
2008-01-02 17:07 133656 ----a-w- c:\windows\System32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray]
2009-04-11 14:17 236016 ----a-w- c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2007-07-06 03:06 4669440 ----a-w- c:\windows\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2009-09-08 15:48 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Symantec PIF AlertEng]
2008-01-29 17:38 583048 ----a-w- c:\program files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WarReg_PopUp]
2006-11-05 21:48 57344 ----a-w- c:\acer\WR_PopUp\WarReg_PopUp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2007-07-31 13:15 1006264 ----a-w- c:\program files\Windows Defender\MSASCui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
2011-10-04 16:50 147464 ----a-w- c:\program files\Windows Media Player\WMPNSCFG.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
R1 MpKslfd2ee29e;MpKslfd2ee29e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C80A1A27-15C9-4E31-A836-B4BC3B75BCA8}\MpKslfd2ee29e.sys [2011-11-02 28752]
R3 CFcatchme;CFcatchme;c:\combofix\CFcatchme.sys [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2008-09-02 99376]
R4 ALaunchService;ALaunch Service;c:\acer\ALaunch\ALaunchSvc.exe [2007-01-26 50688]
S1 MpKsl25dbe2b8;MpKsl25dbe2b8;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C80A1A27-15C9-4E31-A836-B4BC3B75BCA8}\MpKsl25dbe2b8.sys [2011-11-03 28752]
S1 MpKsl33c1efd1;MpKsl33c1efd1;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C80A1A27-15C9-4E31-A836-B4BC3B75BCA8}\MpKsl33c1efd1.sys [2011-11-03 28752]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60x.sys [2007-06-05 179712]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-08-31 22216]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2011-04-18 43392]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MPKSL25DBE2B8
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
.
Contents of the 'Scheduled Tasks' folder
.
.
------- Supplementary Scan -------
.
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
mStart Page = hxxp://en.uk.acer.yahoo.com
uInternet Settings,ProxyOverride = *.local
IE: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.co.uk/
FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=LMW2&o=16046&locale=en_UK&apn_uid=60DDF12B-76F8-42B5-970B-09C79539A2EF&apn_ptnrs=OE&apn_sauid=D66240B2-47E3-4EF0-A05D-DFB9CD329B50&apn_dtid=VIN007YYGB&q=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: WOT: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} - %profile%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
.
**************************************************************************
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files:
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Microsoft Security Client\Antimalware\MsMpEng.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\windows\system32\WUDFHost.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe
c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe
.
**************************************************************************
.
Completion time: 2011-11-03 21:18:14 - machine was rebooted
ComboFix-quarantined-files.txt 2011-11-03 21:18
ComboFix2.txt 2011-11-01 17:39
ComboFix3.txt 2011-10-28 13:13
.
Pre-Run: 1,688,936,448 bytes free
Post-Run: 1,734,762,496 bytes free
.
- - End Of File - - E497925FE2B735706A6B1D9B8C5EAC90
I'm attaching the Kas file because I can't find the Detected section. The way you wanted me to navigate the program must be outdated, icons and words are in different places at to what you said.
Attached Files
-
Kas.txt 284.17KB
97 downloads
#35
Posted 03 November 2011 - 07:01 PM
Amlak
-
- Member
-
- 1,470 posts
Member 1K
You're right. My instructions for the Kaspersky tool are out of date. Look, just reopen the program (just click on the downloaded setup file again to reinstall and open it) and when the main screen apears, somewhere at the top right is a document icon (if you hover the mouse cursor over it, you get the "Reports" label). Click on that icon and you should see to the left tabs for both Automatic Scan and Manual Disinfection reports. Open the first report for each tab and paste the contents here.
#36
Posted 04 November 2011 - 09:59 AM
LukeMcD
- Topic Starter
-
- Member
-
- 102 posts
Member
Automatic Scan: completed 8 minutes ago (events: 2038, objects: 1975, time: 00:04:55)
04/11/2011 15:49:08 Task completed
04/11/2011 15:49:08 OK E:\boot_area0000
04/11/2011 15:49:06 OK F:\
04/11/2011 15:49:05 OK E:\
04/11/2011 15:49:05 OK D:\
04/11/2011 15:49:05 OK C:\
04/11/2011 15:49:05 OK E:
04/11/2011 15:49:02 OK D:
04/11/2011 15:49:02 OK C:
04/11/2011 15:49:02 OK Unknown application
04/11/2011 15:49:02 OK C:\bootmgr
04/11/2011 15:49:02 OK C:\Windows\System32\drivers\etc\hosts
04/11/2011 15:49:01 OK C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\desktop.ini
04/11/2011 15:49:01 OK C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
04/11/2011 15:49:01 OK C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
04/11/2011 15:49:01 OK C:\Users\Martain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
04/11/2011 15:49:01 OK C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
04/11/2011 15:49:01 OK C:\Program Files\Bonjour\mdnsNSP.dll
04/11/2011 15:49:01 OK C:\Windows\System32\pnrpnsp.dll
04/11/2011 15:49:01 OK C:\Windows\System32\NapiNSP.dll
04/11/2011 15:49:01 OK C:\Windows\System32\winrnr.dll
04/11/2011 15:49:01 OK C:\Windows\System32\nlaapi.dll
04/11/2011 15:49:01 OK C:\Windows\System32\mswsock.dll
04/11/2011 15:49:00 OK C:\Program Files\Apple Software Update\SoftwareUpdate.exe
04/11/2011 15:49:00 OK C:\Windows\System32\browserchoice.exe
04/11/2011 15:49:00 OK C:\Program Files\Microsoft Security Client\Antimalware\MpCmdRun.exe
04/11/2011 15:49:00 OK C:\Windows\System32\bthudtask.exe
04/11/2011 15:49:00 OK C:\Windows\System32\dimsjob.dll
04/11/2011 15:48:59 OK C:\Windows\System32\wsqmcons.exe
04/11/2011 15:48:59 OK C:\Windows\System32\Defrag.exe
04/11/2011 15:48:59 OK C:\Windows\System32\HotStartUserAgent.dll
04/11/2011 15:48:59 OK C:\Windows\System32\TMM.dll
04/11/2011 15:48:59 OK C:\Windows\System32\lpremove.exe
04/11/2011 15:48:59 OK C:\Windows\System32\mcbuilder.exe
04/11/2011 15:48:59 OK C:\Windows\System32\PlaySndSrv.dll
04/11/2011 15:48:59 OK C:\Windows\System32\QAgent.dll
04/11/2011 15:48:59 OK C:\Windows\System32\RacAgent.exe
04/11/2011 15:48:59 OK C:\Windows\System32\raserver.exe
04/11/2011 15:48:59 OK C:\Windows\System32\RmClient.exe
04/11/2011 15:48:58 OK C:\Windows\System32\srrstr.dll
04/11/2011 15:48:58 OK C:\Windows\System32\ndfapi.dll
04/11/2011 15:48:58 OK C:\Windows\System32\MsCtfMonitor.dll
04/11/2011 15:48:58 OK C:\Windows\System32\sc.exe
04/11/2011 15:48:58 OK C:\Windows\System32\wermgr.exe
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWiredInfo.vbs
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWirelessInfo.vbs
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWirelessInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWirelessInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWirelessInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Windows\System32\gatherWirelessInfo.vbs/JIM
04/11/2011 15:48:58 OK C:\Program Files\Ask.com\UpdateTask.exe
04/11/2011 15:48:58 OK C:\Program Files\Microsoft Security Client\setup.exe
04/11/2011 15:48:57 OK C:\Windows\System32\pcalua.exe
04/11/2011 15:48:57 OK C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
04/11/2011 15:48:57 OK C:\Windows\System32\WS2_32.dll
04/11/2011 15:48:57 OK C:\Windows\System32\WLDAP32.dll
04/11/2011 15:48:57 OK C:\Windows\System32\WININET.dll
04/11/2011 15:48:57 OK C:\Windows\System32\USP10.dll
04/11/2011 15:48:56 OK C:\Windows\System32\USER32.dll
04/11/2011 15:48:56 OK C:\Windows\System32\SHLWAPI.dll
04/11/2011 15:48:56 OK C:\Windows\System32\setupapi.dll
04/11/2011 15:48:56 OK C:\Windows\System32\RPCRT4.dll
04/11/2011 15:48:56 OK C:\Windows\System32\OLEAUT32.dll
04/11/2011 15:48:56 OK C:\Windows\System32\NSI.dll
04/11/2011 15:48:56 OK C:\Windows\System32\Normaliz.dll
04/11/2011 15:48:56 OK C:\Windows\System32\msvcrt.dll
04/11/2011 15:48:56 OK C:\Windows\System32\MSCTF.dll
04/11/2011 15:48:56 OK C:\Windows\System32\LPK.DLL
04/11/2011 15:48:56 OK C:\Windows\System32\KERNEL32.dll
04/11/2011 15:48:55 OK C:\Windows\System32\IMM32.DLL
04/11/2011 15:48:55 OK C:\Windows\System32\imagehlp.dll
04/11/2011 15:48:55 OK C:\Windows\System32\iertutil.dll
04/11/2011 15:48:55 OK C:\Windows\System32\GDI32.dll
04/11/2011 15:48:55 OK C:\Windows\System32\ADVAPI32.dll
04/11/2011 15:48:55 OK C:\Windows\System32\ole32.dll
04/11/2011 15:48:55 OK C:\Windows\System32\CLBCatQ.DLL
04/11/2011 15:48:54 OK C:\Windows\System32\url.dll
04/11/2011 15:48:53 OK C:\Windows\regedit.exe
04/11/2011 15:48:53 OK C:\Windows\System32\notepad.exe
04/11/2011 15:48:53 OK C:\Windows\System32\mshta.exe
04/11/2011 15:48:53 OK C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll
04/11/2011 15:48:52 OK C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
04/11/2011 15:48:52 OK C:\Windows\System32\igfxpph.dll
04/11/2011 15:48:52 OK C:\Windows\System32\eDSshellExt.dll
04/11/2011 15:48:52 OK C:\Windows\System32\winsrv.dll
04/11/2011 15:48:51 OK C:\Windows\System32\basesrv.dll
04/11/2011 15:48:51 OK C:\Windows\System32\csrss.exe
04/11/2011 15:48:51 OK C:\Windows\System32\KBDUS.DLL
04/11/2011 15:48:51 OK C:\Windows\System32\KBDUK.DLL
04/11/2011 15:48:51 OK C:\Windows\System32\iprtrmgr.dll
04/11/2011 15:48:51 OK C:\Windows\System32\polstore.dll
04/11/2011 15:48:51 OK C:\Windows\System32\dot3gpclnt.dll
04/11/2011 15:48:51 OK C:\Windows\System32\srchadmin.dll
04/11/2011 15:48:51 OK C:\Windows\System32\gptext.dll
04/11/2011 15:48:51 OK C:\Windows\System32\dskquota.dll
04/11/2011 15:48:51 OK C:\Windows\System32\fdeploy.dll
04/11/2011 15:48:50 OK C:\Windows\System32\wlgpclnt.dll
04/11/2011 15:48:50 OK C:\Windows\System32\cmd.exe
04/11/2011 15:48:50 OK C:\Windows\System32\eDStoolbar.dll
04/11/2011 15:48:50 OK C:\Windows\System32\sysdm.cpl
04/11/2011 15:48:49 OK C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll
04/11/2011 15:48:49 OK C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll
04/11/2011 15:48:49 OK C:\Windows\System32\itss.dll
04/11/2011 15:48:49 OK C:\Windows\System32\MSVidCtl.dll
04/11/2011 15:48:49 OK C:\Windows\System32\urlmon.dll
04/11/2011 15:48:47 OK C:\Windows\System32\mscoree.dll
04/11/2011 15:48:47 OK C:\Program Files\Common Files\Sonic Shared\SonicMC01\sonicMP4Demux.ax
04/11/2011 15:48:47 OK C:\Program Files\Common Files\Sonic Shared\SonicMC01\sonicamrd.ax
04/11/2011 15:48:44 OK C:\Program Files\Java\jre6\bin\npjpi160_16.dll
04/11/2011 15:48:43 OK C:\Program Files\Java\jre6\bin\jp2iexp.dll
04/11/2011 15:48:43 OK C:\Windows\Downloaded Program Files\CONFLICT.1\MsnPUpld.dll
04/11/2011 15:48:43 OK C:\Windows\Downloaded Program Files\CONFLICT.1\PURen-gb.dll Object was not changed (iChecker)
04/11/2011 15:48:43 OK C:\Windows\Downloaded Program Files\MsnPUpld.dll
04/11/2011 15:48:43 OK C:\Windows\Downloaded Program Files\PURen-gb.dll
04/11/2011 15:48:43 OK C:\Windows\Downloaded Program Files\lfbmp13n.dll
04/11/2011 15:48:43 OK C:\Windows\Downloaded Program Files\lfcmp13n.dll
04/11/2011 15:48:43 OK C:\Windows\Downloaded Program Files\lffax13n.dll
04/11/2011 15:48:43 OK C:\Windows\Downloaded Program Files\lfgif13n.dll
04/11/2011 15:48:42 OK C:\Windows\Downloaded Program Files\ltclr13n.dll
04/11/2011 15:48:42 OK C:\Windows\Downloaded Program Files\ltdis13n.dll
04/11/2011 15:48:42 OK C:\Windows\Downloaded Program Files\lfpng13n.dll
04/11/2011 15:48:41 OK C:\Windows\Downloaded Program Files\lftif13n.dll
04/11/2011 15:48:41 OK C:\Windows\Downloaded Program Files\ltefx13n.dll
04/11/2011 15:48:40 OK C:\Windows\Downloaded Program Files\ltimg13n.dll
04/11/2011 15:48:40 OK C:\Windows\Downloaded Program Files\ltkrn13n.dll
04/11/2011 15:48:40 OK C:\Windows\Downloaded Program Files\lfpsd13n.dll
04/11/2011 15:48:40 OK C:\Windows\Downloaded Program Files\lftga13n.dll
04/11/2011 15:48:40 OK C:\Windows\Downloaded Program Files\lfpcd13n.dll
04/11/2011 15:48:40 OK C:\Windows\Downloaded Program Files\lfpcx13n.dll
04/11/2011 15:48:40 OK C:\Windows\Downloaded Program Files\lfeps13n.dll
04/11/2011 15:48:40 OK C:\Windows\Downloaded Program Files\ltfil13n.dll
04/11/2011 15:48:40 OK C:\Windows\Downloaded Program Files\pcdlib32.dll
04/11/2011 15:48:39 OK C:\Windows\System32\XPSViewer\XPSViewer.exe
04/11/2011 15:48:39 OK C:\Program Files\Windows NT\Accessories\wordpad.exe
04/11/2011 15:48:39 OK C:\Program Files\Windows Live\Mail\wlmail.exe
04/11/2011 15:48:39 OK C:\Program Files\Microsoft Works\wkwcestp.exe
04/11/2011 15:48:38 OK C:\Program Files\Microsoft Works\WksWP.exe
04/11/2011 15:48:38 OK C:\Program Files\Microsoft Works\wksss.exe
04/11/2011 15:48:37 OK C:\Program Files\Microsoft Works\WksSb.exe
04/11/2011 15:48:37 OK C:\Program Files\Microsoft Works\wksdb.exe
04/11/2011 15:48:37 OK C:\Program Files\Common Files\microsoft shared\Works Shared\WksCal.exe
04/11/2011 15:48:37 OK C:\Program Files\Microsoft Works\wksab.exe
04/11/2011 15:48:37 OK C:\Program Files\Microsoft Works\wkplmstp.exe
04/11/2011 15:48:37 OK C:\Program Files\WinRAR\WinRAR.exe
04/11/2011 15:48:37 OK C:\Program Files\WinRAR\WinRAR.exe/#
04/11/2011 15:48:36 OK C:\Program Files\Windows Calendar\WinCal.exe
04/11/2011 15:48:36 OK C:\Program Files\Windows Mail\wabmig.exe
04/11/2011 15:48:36 OK C:\Program Files\Windows Mail\wab.exe
04/11/2011 15:48:35 OK C:\Program Files\Roxio\VideoCore 9\VCGProxyFileManager9.exe
04/11/2011 15:48:34 OK C:\Program Files\Acer\HomeMedia\HomeMedia.exe
04/11/2011 15:48:34 OK C:\Program Files\Windows Sidebar\sidebar.exe
04/11/2011 15:48:34 OK C:\Program Files\Roxio\Audio Master 9\RxTagEdit9.exe
04/11/2011 15:48:34 OK C:\Program Files\Roxio\Audio Master 9\RXAutoMix9.exe
04/11/2011 15:48:34 OK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWizardLauncher9.exe
04/11/2011 15:48:34 OK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
04/11/2011 15:48:33 OK C:\Program Files\Common Files\Roxio Shared\Dragon\RomLauncher.exe
04/11/2011 15:48:33 OK C:\Program Files\Common Files\Roxio Shared\Dragon\RomLauncher.exe/#
04/11/2011 15:48:33 OK C:\Program Files\QuickTime\QuickTimePlayer.exe
04/11/2011 15:48:33 OK C:\Program Files\CyberLink\PowerProducer\Producer.exe
04/11/2011 15:48:33 OK C:\Program Files\Acer\Acer Arcade\Acer Arcade.exe
04/11/2011 15:48:32 OK C:\Program Files\QuickTime\PictureViewer.exe
04/11/2011 15:48:31 OK C:\Program Files\Roxio\PhotoSuite 9\PhotoSuite9.exe
04/11/2011 15:48:31 OK C:\Program Files\Microsoft Works\MSWorks.exe
04/11/2011 15:48:31 OK C:\Program Files\Windows Live\Messenger\msnmsgr.exe
04/11/2011 15:48:30 OK C:\Program Files\Windows Media Player\wmplayer.exe
04/11/2011 15:48:30 OK C:\Program Files\Movie Maker\MOVIEMK.exe
04/11/2011 15:48:30 OK C:\Program Files\Roxio\Media Manager 9\MediaManager9.exe
04/11/2011 15:48:30 OK C:\Program Files\Roxio\Media Import 9\MediaCapture9.exe
04/11/2011 15:48:28 OK C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
04/11/2011 15:48:27 OK C:\Program Files\Launch Manager\LManager.exe
04/11/2011 15:48:26 OK C:\Program Files\Java\jre6\bin\javaws.exe
04/11/2011 15:48:26 OK C:\Program Files\iTunes\iTunes.exe
04/11/2011 15:48:26 OK C:\Program Files\Internet Explorer\iexplore.exe
04/11/2011 15:48:25 OK C:\Program Files\Mozilla Firefox\firefox.exe
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0196
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0195
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0194
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0193
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0192
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0191
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0190
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0189
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0188
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0187
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0186
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0185
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0184
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0183
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0182
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0181
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0180
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0179
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0178
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0177
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0176
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0175
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0174
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0173
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0172
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0171
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0170
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0169
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0168
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0167
04/11/2011 15:48:25 OK C:\Users\Martain\Desktop\ComboFix.exe/data0166
04/11/2011 15:48:22 OK C:\Users\Martain\Desktop\ComboFix.exe/data0165
04/11/2011 15:48:22 OK C:\Users\Martain\Desktop\ComboFix.exe/data0164
04/11/2011 15:48:22 OK C:\Users\Martain\Desktop\ComboFix.exe/data0163
04/11/2011 15:48:21 OK C:\Users\Martain\Desktop\ComboFix.exe/data0162
04/11/2011 15:48:21 OK C:\Users\Martain\Desktop\ComboFix.exe/data0161
04/11/2011 15:48:21 OK C:\Users\Martain\Desktop\ComboFix.exe/data0160
04/11/2011 15:48:21 OK C:\Users\Martain\Desktop\ComboFix.exe/data0159
04/11/2011 15:48:20 OK C:\Users\Martain\Desktop\ComboFix.exe/data0158
04/11/2011 15:48:20 OK C:\Users\Martain\Desktop\ComboFix.exe/data0157
04/11/2011 15:48:20 OK C:\Users\Martain\Desktop\ComboFix.exe/data0156
04/11/2011 15:48:20 OK C:\Users\Martain\Desktop\ComboFix.exe/data0155
04/11/2011 15:48:20 OK C:\Users\Martain\Desktop\ComboFix.exe/data0154
04/11/2011 15:48:20 OK C:\Users\Martain\Desktop\ComboFix.exe/data0153
04/11/2011 15:48:20 OK C:\Users\Martain\Desktop\ComboFix.exe/data0152
04/11/2011 15:48:20 OK C:\Users\Martain\Desktop\ComboFix.exe/data0151
04/11/2011 15:48:20 OK C:\Users\Martain\Desktop\ComboFix.exe/data0150
04/11/2011 15:48:20 OK C:\Users\Martain\Desktop\ComboFix.exe/data0150/# Object was not changed (iChecker)
04/11/2011 15:48:20 OK C:\Users\Martain\Desktop\ComboFix.exe/data0150/data0000.res Object was not changed (iChecker)
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0149
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0148
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0147
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0146
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0145
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0145/PE_Patch.PECompact
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0145/PE_Patch.PECompact/PecBundle
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0145/PE_Patch.PECompact/PecBundle/PECompact
04/11/2011 15:48:19 Packed: PECompact C:\Users\Martain\Desktop\ComboFix.exe/data0145/PE_Patch.PECompact/PecBundle
04/11/2011 15:48:19 Packed: PecBundle C:\Users\Martain\Desktop\ComboFix.exe/data0145/PE_Patch.PECompact
04/11/2011 15:48:19 Packed: PE_Patch.PECompact C:\Users\Martain\Desktop\ComboFix.exe/data0145
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0144
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0144/PE_Patch.PECompact
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0144/PE_Patch.PECompact/PecBundle
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0144/PE_Patch.PECompact/PecBundle/PECompact
04/11/2011 15:48:19 Packed: PECompact C:\Users\Martain\Desktop\ComboFix.exe/data0144/PE_Patch.PECompact/PecBundle
04/11/2011 15:48:19 Packed: PecBundle C:\Users\Martain\Desktop\ComboFix.exe/data0144/PE_Patch.PECompact
04/11/2011 15:48:19 Packed: PE_Patch.PECompact C:\Users\Martain\Desktop\ComboFix.exe/data0144
04/11/2011 15:48:19 OK C:\Users\Martain\Desktop\ComboFix.exe/data0143
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0142
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0141
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0140
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0139
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0138
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0137
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0135
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0134
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0133
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0132
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0131
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0131/# Object was not changed (iChecker)
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0131/data0000.res Object was not changed (iChecker)
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0130
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0130/JIM
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0129
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0128
04/11/2011 15:48:18 OK C:\Users\Martain\Desktop\ComboFix.exe/data0127
04/11/2011 15:48:16 OK C:\Users\Martain\Desktop\ComboFix.exe/data0126
04/11/2011 15:48:16 OK C:\Users\Martain\Desktop\ComboFix.exe/data0125
04/11/2011 15:48:16 OK C:\Users\Martain\Desktop\ComboFix.exe/data0124
04/11/2011 15:48:16 OK C:\Users\Martain\Desktop\ComboFix.exe/data0124/data0003.res Object was not changed (iChecker)
04/11/2011 15:48:15 OK C:\Users\Martain\Desktop\ComboFix.exe/data0124/data0002.res Object was not changed (iChecker)
04/11/2011 15:48:15 OK C:\Users\Martain\Desktop\ComboFix.exe/data0124/data0000.res Object was not changed (iChecker)
04/11/2011 15:48:15 OK C:\Users\Martain\Desktop\ComboFix.exe/data0123
04/11/2011 15:48:15 OK C:\Users\Martain\Desktop\ComboFix.exe/data0122
04/11/2011 15:48:15 OK C:\Users\Martain\Desktop\ComboFix.exe/data0121
04/11/2011 15:48:15 OK C:\Users\Martain\Desktop\ComboFix.exe/data0120
04/11/2011 15:48:15 OK C:\Users\Martain\Desktop\ComboFix.exe/data0119
04/11/2011 15:48:14 OK C:\Users\Martain\Desktop\ComboFix.exe/data0118
04/11/2011 15:48:14 OK C:\Users\Martain\Desktop\ComboFix.exe/data0117
04/11/2011 15:48:14 OK C:\Users\Martain\Desktop\ComboFix.exe/data0116
04/11/2011 15:48:14 OK C:\Users\Martain\Desktop\ComboFix.exe/data0115
04/11/2011 15:48:14 OK C:\Users\Martain\Desktop\ComboFix.exe/data0114
04/11/2011 15:48:14 OK C:\Users\Martain\Desktop\ComboFix.exe/data0113
04/11/2011 15:48:14 OK C:\Users\Martain\Desktop\ComboFix.exe/data0112
04/11/2011 15:48:14 OK C:\Users\Martain\Desktop\ComboFix.exe/data0112/UPX
04/11/2011 15:48:14 Packed: UPX C:\Users\Martain\Desktop\ComboFix.exe/data0112
04/11/2011 15:48:14 OK C:\Users\Martain\Desktop\ComboFix.exe/data0111
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0110
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0109
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0108
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0107
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0106
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0105
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0104
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0103
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0102
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0101
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0100
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0099
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0098
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0097
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0096
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0095
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0095/JIM
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0094
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0093
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0092
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0091
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0090
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0089
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0088
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0087
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0086
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0085
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0084
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0083
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0082
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0081
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0080
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0079
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0078
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0077
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0076
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0075
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0074
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0073
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0072
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0071
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0070
04/11/2011 15:48:13 OK C:\Users\Martain\Desktop\ComboFix.exe/data0069
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0068
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0067
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0066
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0065
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0064
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0063
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0062
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0061
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0060
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0059
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0058
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0057
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0056
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0055
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0054
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0053
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0052
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0051
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0050
04/11/2011 15:48:12 OK C:\Users\Martain\Desktop\ComboFix.exe/data0049
04/11/2011 15:48:11 OK C:\Users\Martain\Desktop\ComboFix.exe/data0048
04/11/2011 15:48:11 OK C:\Users\Martain\Desktop\ComboFix.exe/data0047
04/11/2011 15:48:10 OK C:\Users\Martain\Desktop\ComboFix.exe/data0046
04/11/2011 15:48:10 OK C:\Users\Martain\Desktop\ComboFix.exe/data0045
04/11/2011 15:48:10 OK C:\Users\Martain\Desktop\ComboFix.exe/data0044
04/11/2011 15:48:10 OK C:\Users\Martain\Desktop\ComboFix.exe/data0043
04/11/2011 15:48:09 OK C:\Users\Martain\Desktop\ComboFix.exe/data0042
04/11/2011 15:48:09 OK C:\Users\Martain\Desktop\ComboFix.exe/data0042/UPX
04/11/2011 15:48:09 Packed: UPX C:\Users\Martain\Desktop\ComboFix.exe/data0042
04/11/2011 15:48:09 OK C:\Users\Martain\Desktop\ComboFix.exe/data0041
04/11/2011 15:48:08 OK C:\Users\Martain\Desktop\ComboFix.exe/data0040
04/11/2011 15:48:08 OK C:\Users\Martain\Desktop\ComboFix.exe/data0039
04/11/2011 15:48:08 OK C:\Users\Martain\Desktop\ComboFix.exe/data0038
04/11/2011 15:48:08 OK C:\Users\Martain\Desktop\ComboFix.exe/data0037
04/11/2011 15:48:08 OK C:\Users\Martain\Desktop\ComboFix.exe/data0036
04/11/2011 15:48:08 OK C:\Users\Martain\Desktop\ComboFix.exe/data0035
04/11/2011 15:48:08 OK C:\Users\Martain\Desktop\ComboFix.exe/data0034
04/11/2011 15:48:08 OK C:\Users\Martain\Desktop\ComboFix.exe/data0033
04/11/2011 15:48:08 OK C:\Users\Martain\Desktop\ComboFix.exe/data0032
04/11/2011 15:48:08 OK C:\Users\Martain\Desktop\ComboFix.exe/data0031
04/11/2011 15:48:08 OK C:\Users\Martain\Desktop\ComboFix.exe/data0030
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0030/UPX
04/11/2011 15:48:07 Packed: UPX C:\Users\Martain\Desktop\ComboFix.exe/data0030
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0029
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0028
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0027
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0026
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0025
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0024
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0023
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0022
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0021
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0020
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0019
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0018
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0017
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0016
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0015
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0014
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0013
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0012
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0011
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0010
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0009
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0008
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0007
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0006
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0005
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0004
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0003
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0002
04/11/2011 15:48:07 OK C:\Users\Martain\Desktop\ComboFix.exe/data0001
04/11/2011 15:48:05 Archive: NSIS C:\Users\Martain\Desktop\ComboFix.exe
04/11/2011 15:48:05 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX
04/11/2011 15:48:05 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0196
04/11/2011 15:48:04 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0195
04/11/2011 15:48:04 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0194
04/11/2011 15:48:04 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193
04/11/2011 15:48:04 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193/SFs.bat
04/11/2011 15:48:04 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193/SF.exe
04/11/2011 15:48:03 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193/readme.txt
04/11/2011 15:48:03 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193/LS.exe
04/11/2011 15:48:03 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193/DS.exe
04/11/2011 15:48:03 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193/CS.exe
04/11/2011 15:48:02 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193/RS.bat
04/11/2011 15:48:02 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193/FS.bat
04/11/2011 15:48:02 Archive: ZIP C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193
04/11/2011 15:48:02 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0192
04/11/2011 15:48:02 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0192/pv.txt
04/11/2011 15:48:02 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0192/pv.exe
04/11/2011 15:48:01 Archive: ZIP C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0192
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0191
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0190
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0189
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0188
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0187
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0186
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0185
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0184
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0183
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0182
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0181
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0180
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0179
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0178
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0177
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0176
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0175
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0174
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0173
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0172
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0171
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0170
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0169
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0168
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0167
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0166
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0165
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0164
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0163
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0162
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0161
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0160
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0159
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0158
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0157
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0156
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0155
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0154
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0153
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0152
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0151
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0150
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0150/#
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0150/#/PE_Patch
04/11/2011 15:48:01 Packed: PE_Patch C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0150/#
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0150/data0000.res
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0150/data0000.res/PE_Patch
04/11/2011 15:48:01 Packed: PE_Patch C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0150/data0000.res
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0149
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0148
04/11/2011 15:48:01 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0147
04/11/2011 15:47:58 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0146
04/11/2011 15:47:58 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0145
04/11/2011 15:47:58 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0145/PE_Patch.PECompact
04/11/2011 15:47:58 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0145/PE_Patch.PECompact/PecBundle
04/11/2011 15:47:58 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0145/PE_Patch.PECompact/PecBundle/PECompact
04/11/2011 15:47:58 Packed: PECompact C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0145/PE_Patch.PECompact/PecBundle
04/11/2011 15:47:57 Packed: PecBundle C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0145/PE_Patch.PECompact
04/11/2011 15:47:57 Packed: PE_Patch.PECompact C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0145
04/11/2011 15:47:57 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0144
04/11/2011 15:47:57 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0144/PE_Patch.PECompact
04/11/2011 15:47:57 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0144/PE_Patch.PECompact/PecBundle
04/11/2011 15:47:57 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0144/PE_Patch.PECompact/PecBundle/PECompact
04/11/2011 15:47:57 Packed: PECompact C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0144/PE_Patch.PECompact/PecBundle
04/11/2011 15:47:57 Packed: PecBundle C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0144/PE_Patch.PECompact
04/11/2011 15:47:57 Packed: PE_Patch.PECompact C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0144
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0143
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0142
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0141
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0140
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0139
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0138
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0137
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0135
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0134
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0133
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0132
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0131
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0131/#
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0131/#/PE_Patch
04/11/2011 15:47:56 Packed: PE_Patch C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0131/#
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0131/data0000.res
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0131/data0000.res/PE_Patch
04/11/2011 15:47:56 Packed: PE_Patch C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0131/data0000.res
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0130
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0130/JIM
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0129
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0128
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0127
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0126
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0125
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0124
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0124/data0003.res
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0124/data0002.res
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0124/data0000.res
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0124/data0000.res/data0001.res
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0123
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0122
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0121
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0120
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0119
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0118
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0117
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0116
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0115
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0114
04/11/2011 15:47:56 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0113
04/11/2011 15:47:55 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0112
04/11/2011 15:47:55 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0112/UPX
04/11/2011 15:47:54 Packed: UPX C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0112
04/11/2011 15:47:54 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0111
04/11/2011 15:47:54 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0110
04/11/2011 15:47:53 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0109
04/11/2011 15:47:53 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0108
04/11/2011 15:47:53 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0107
04/11/2011 15:47:53 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0106
04/11/2011 15:47:53 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0105
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0104
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0103
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0102
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0101
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0100
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0099
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0098
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0097
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0096
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0095
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0095/JIM
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0094
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0093
04/11/2011 15:47:52 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0092
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0091
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0090
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0089
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0088
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0087
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0086
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0085
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0084
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0083
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0082
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0081
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0080
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0079
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0078
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0077
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0076
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0075
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0074
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0073
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0072
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0071
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0070
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0069
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0068
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0067
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0066
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0065
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0064
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0063
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0062
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0061
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0060
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0059
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0058
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0057
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0056
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0055
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0054
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0053
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0052
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0051
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0050
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0049
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0048
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0047
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0046
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0045
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0044
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0043
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0042
04/11/2011 15:47:51 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0042/UPX
04/11/2011 15:47:51 Packed: UPX C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0042
04/11/2011 15:47:50 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0041
04/11/2011 15:47:46 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0040
04/11/2011 15:47:46 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0039
04/11/2011 15:47:45 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0038
04/11/2011 15:47:45 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0037
04/11/2011 15:47:45 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0036
04/11/2011 15:47:45 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0035
04/11/2011 15:47:45 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0034
04/11/2011 15:47:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0033
04/11/2011 15:47:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0032
04/11/2011 15:47:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0031
04/11/2011 15:47:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0030
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0030/UPX
04/11/2011 15:47:43 Packed: UPX C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0030
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0029
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0028
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0027
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0026
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0025
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0024
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0023
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0022
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0021
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0020
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0019
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0018
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0017
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0016
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0015
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0014
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0013
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0012
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0011
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0010
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0009
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0008
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0007
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0006
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0005
04/11/2011 15:47:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0004
04/11/2011 15:47:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0003
04/11/2011 15:47:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0002
04/11/2011 15:47:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0001
04/11/2011 15:47:42 Archive: NSIS C:\Users\Martain\Desktop\ComboFix.exe/UPX
04/11/2011 15:47:42 Packed: UPX C:\Users\Martain\Desktop\ComboFix.exe
04/11/2011 15:47:42 OK C:\Windows\System32\cmcfg32.dll
04/11/2011 15:47:42 OK C:\Program Files\CCleaner\CCleaner.exe
04/11/2011 15:47:40 OK C:\Program Files\Roxio\Audio Capture 9\AnalogRec9.exe
04/11/2011 15:47:40 OK C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
04/11/2011 15:47:40 OK C:\Program Files\Windows Live\Toolbar\wltcore.dll
04/11/2011 15:47:40 OK C:\Program Files\Java\jre6\bin\jp2ssv.dll
04/11/2011 15:47:38 OK C:\Program Files\Ask.com\GenericAskToolbar.dll
04/11/2011 15:47:37 OK C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll
04/11/2011 15:47:37 OK C:\Windows\System32\ActiveToolBand.dll
04/11/2011 15:47:37 OK C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
04/11/2011 15:47:37 OK C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
04/11/2011 15:47:35 OK C:\Program Files\Microsoft Security Client\shellext.dll
04/11/2011 15:47:34 OK C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe
04/11/2011 15:47:34 OK C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll
04/11/2011 15:47:34 OK C:\Program Files\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe
04/11/2011 15:47:34 OK C:\Program Files\iTunes\iTunesMiniPlayer.dll
04/11/2011 15:47:34 OK C:\Program Files\WinRAR\RarExt.dll
04/11/2011 15:47:32 OK C:\Program Files\Windows Live\Mail\mailcomm.dll
04/11/2011 15:47:32 OK C:\Windows\System32\wlanpref.dll
04/11/2011 15:47:32 OK C:\Program Files\Windows Media Player\wmprph.exe
04/11/2011 15:47:32 OK C:\Program Files\Windows Sidebar\sbdrop.dll
04/11/2011 15:47:32 OK C:\Windows\System32\oobefldr.dll
04/11/2011 15:47:29 OK C:\Windows\System32\wpdshext.dll
04/11/2011 15:47:29 OK C:\Windows\System32\sdshext.dll
04/11/2011 15:47:29 OK C:\Windows\System32\syncui.dll
04/11/2011 15:47:29 OK C:\Program Files\Windows Defender\MpOAV.dll
04/11/2011 15:47:29 OK C:\Windows\System32\TouchX.dll
04/11/2011 15:47:28 OK C:\Windows\System32\wmpshell.dll
04/11/2011 15:47:27 OK C:\Windows\System32\gameux.dll
04/11/2011 15:47:27 OK C:\Program Files\Windows Photo Gallery\PhotoAcq.dll
04/11/2011 15:47:26 OK C:\Windows\System32\audiodev.dll
04/11/2011 15:47:26 OK C:\Windows\System32\photowiz.dll
04/11/2011 15:47:26 OK C:\Windows\System32\SyncCenter.dll
04/11/2011 15:47:26 OK C:\Windows\System32\mssvp.dll
04/11/2011 15:47:25 OK C:\Program Files\Windows Media Player\wmpband.dll
04/11/2011 15:47:25 OK C:\Program Files\Windows Photo Gallery\PhotoViewer.dll
04/11/2011 15:47:23 OK C:\Windows\System32\MediaMetadataHandler.dll
04/11/2011 15:47:22 OK C:\Windows\System32\mspaint.exe
04/11/2011 15:47:22 OK C:\Windows\System32\NcdProp.dll
04/11/2011 15:47:22 OK C:\Windows\System32\PhotoMetadataHandler.dll
04/11/2011 15:47:22 OK C:\Windows\System32\DfsShlEx.dll
04/11/2011 15:47:22 OK C:\Windows\System32\ntlanui2.dll
04/11/2011 15:47:22 OK C:\Windows\System32\cabview.dll
04/11/2011 15:47:21 OK C:\Windows\System32\zipfldr.dll
04/11/2011 15:47:21 OK C:\Windows\System32\msieftp.dll
04/11/2011 15:47:21 OK C:\Windows\System32\fontext.dll
04/11/2011 15:47:19 OK C:\Windows\System32\dskquoui.dll
04/11/2011 15:47:19 OK C:\Windows\System32\ExplorerFrame.dll
04/11/2011 15:47:18 OK C:\Windows\System32\docprop.dll
04/11/2011 15:47:18 OK C:\Windows\System32\deskperf.dll
04/11/2011 15:47:18 OK C:\Windows\System32\deskmon.dll
04/11/2011 15:47:18 OK C:\Windows\System32\deskadp.dll
04/11/2011 15:47:18 OK C:\Windows\MSAgent\AgentPsh.dll
04/11/2011 15:47:18 OK C:\Windows\System32\wshext.dll
04/11/2011 15:47:17 OK C:\Windows\System32\extmgr.dll
04/11/2011 15:47:17 OK C:\Windows\System32\remotepg.dll
04/11/2011 15:47:17 OK C:\Windows\System32\acppage.dll
04/11/2011 15:47:17 OK C:\Windows\System32\cryptext.dll
04/11/2011 15:47:17 OK C:\Program Files\Windows Mail\wabfind.dll
04/11/2011 15:47:16 OK C:\Program Files\Common Files\System\wab32.dll
04/11/2011 15:47:15 OK C:\Windows\System32\XPSSHHDR.dll
04/11/2011 15:47:15 OK C:\Windows\System32\oleprn.dll
04/11/2011 15:47:15 OK C:\Windows\System32\dfshim.dll
04/11/2011 15:47:14 OK C:\Windows\System32\COMDLG32.DLL
04/11/2011 15:47:14 OK C:\Windows\System32\occache.dll
04/11/2011 15:47:14 OK C:\Windows\System32\PROPSYS.dll
04/11/2011 15:47:12 OK C:\Windows\System32\mydocs.dll
04/11/2011 15:47:12 OK C:\Windows\System32\diskcopy.dll
04/11/2011 15:47:10 OK C:\Windows\System32\appwiz.cpl
04/11/2011 15:47:10 OK C:\Windows\System32\devmgr.dll
04/11/2011 15:47:10 OK C:\Windows\System32\dssec.dll
04/11/2011 15:47:10 OK C:\Windows\System32\printui.dll
04/11/2011 15:47:09 OK C:\Windows\System32\ntshrui.dll
04/11/2011 15:47:09 OK C:\Windows\System32\rshx32.dll
04/11/2011 15:47:09 OK C:\Windows\System32\dsquery.dll
04/11/2011 15:47:09 OK C:\Windows\System32\dsuiext.dll
04/11/2011 15:47:09 OK C:\Windows\System32\colorui.dll
04/11/2011 15:47:09 OK C:\Windows\System32\shwebsvc.dll
04/11/2011 15:47:06 OK C:\Windows\System32\sendmail.dll
04/11/2011 15:47:06 OK C:\Windows\System32\mshtml.dll
04/11/2011 15:47:05 OK C:\Windows\System32\ieframe.dll
04/11/2011 15:47:03 OK C:\Windows\System32\inetcomm.dll
04/11/2011 15:47:02 OK C:\Windows\System32\icsigd.dll
04/11/2011 15:47:02 OK C:\Windows\System32\netshell.dll
04/11/2011 15:47:02 OK C:\Windows\System32\mmcshext.dll
04/11/2011 15:47:02 OK C:\Windows\System32\SHDOCVW.dll
04/11/2011 15:47:01 OK C:\Windows\System32\networkexplorer.dll
04/11/2011 15:47:01 OK C:\Program Files\Common Files\System\Ole DB\oledb32.dll
04/11/2011 15:46:58 OK C:\Windows\System32\BROWSEUI.dll
04/11/2011 15:46:58 OK C:\Windows\System32\acer.scr
04/11/2011 15:46:53 OK C:\Windows\System32\logon.scr
04/11/2011 15:46:52 OK C:\Windows\System32\webcheck.dll
04/11/2011 15:46:49 OK C:\Windows\System32\lhacm.acm
04/11/2011 15:46:49 OK C:\Windows\System32\sirenacm.dll
04/11/2011 15:46:48 OK C:\Windows\System32\wdmaud.drv
04/11/2011 15:46:48 OK C:\Windows\System32\iccvid.dll
04/11/2011 15:46:48 OK C:\Windows\System32\l3codeca.acm
04/11/2011 15:46:48 OK C:\Windows\System32\tsbyuv.dll
04/11/2011 15:46:48 OK C:\Windows\System32\iyuv_32.dll
04/11/2011 15:46:48 OK C:\Windows\System32\msyuv.dll
04/11/2011 15:46:48 OK C:\Windows\System32\msacm32.drv
04/11/2011 15:46:48 OK C:\Windows\System32\midimap.dll
04/11/2011 15:46:48 OK C:\Windows\System32\msadp32.acm
04/11/2011 15:46:48 OK C:\Windows\System32\msgsm32.acm
04/11/2011 15:46:48 OK C:\Windows\System32\msg711.acm
04/11/2011 15:46:48 OK C:\Windows\System32\imaadp32.acm
04/11/2011 15:46:48 OK C:\Windows\System32\msvidc32.dll
04/11/2011 15:46:48 OK C:\Windows\System32\msrle32.dll
04/11/2011 15:46:47 OK C:\Windows\System32\system.drv
04/11/2011 15:46:47 OK C:\Windows\System32\sound.drv
04/11/2011 15:46:47 OK C:\Windows\System32\WFWNET.DRV
04/11/2011 15:46:47 OK C:\Windows\System32\mouse.drv
04/11/2011 15:46:47 OK C:\Windows\System32\keyboard.drv
04/11/2011 15:46:47 OK C:\Windows\System32\MMSYSTEM.DLL
04/11/2011 15:46:47 OK C:\Windows\System32\vga.drv
04/11/2011 15:46:47 OK C:\Windows\System32\COMM.drv
04/11/2011 15:46:47 OK C:\Windows\System32\mscories.dll
04/11/2011 15:46:46 OK C:\Windows\System32\SHELL32.dll
04/11/2011 15:46:45 OK C:\Program Files\Windows Mail\WinMail.exe
04/11/2011 15:46:44 OK C:\Windows\System32\themeui.dll
04/11/2011 15:46:44 OK C:\Windows\System32\regsvr32.exe
04/11/2011 15:46:44 OK C:\Windows\System32\iedkcs32.dll
04/11/2011 15:46:44 OK C:\Windows\System32\rundll32.exe
04/11/2011 15:46:44 OK C:\Windows\System32\ie4uinit.exe
04/11/2011 15:46:44 OK C:\Windows\System32\unregmp2.exe
04/11/2011 15:46:43 OK C:\Windows\System32\scecli.dll
04/11/2011 15:46:42 OK C:\Windows\System32\autochk.exe
04/11/2011 15:46:41 OK C:\Windows\System32\drivers\XAudio.exe
04/11/2011 15:46:41 OK C:\Windows\System32\drivers\XAudio.sys
04/11/2011 15:46:41 OK C:\Windows\System32\drivers\XAudio.sys/PE_Patch
04/11/2011 15:46:41 Packed: PE_Patch C:\Windows\System32\drivers\XAudio.sys
04/11/2011 15:46:41 OK C:\Windows\System32\drivers\WUDFRd.sys
04/11/2011 15:46:41 OK C:\Windows\System32\SearchIndexer.exe
04/11/2011 15:46:41 OK C:\Windows\System32\drivers\ws2ifsl.sys
04/11/2011 15:46:41 OK C:\Windows\System32\drivers\WpdUsb.sys
04/11/2011 15:46:40 OK C:\Program Files\Windows Media Player\wmpnetwk.exe
04/11/2011 15:46:39 OK C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
04/11/2011 15:46:38 OK C:\Windows\System32\wbem\WmiApSrv.exe
04/11/2011 15:46:38 OK C:\Windows\System32\drivers\wmiacpi.sys
04/11/2011 15:46:38 OK C:\Windows\System32\drivers\HSX_CNXT.sys
04/11/2011 15:46:38 OK C:\Windows\System32\drivers\Wdf01000.sys
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\wd.sys
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\wanarp.sys
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\wacompen.sys
04/11/2011 15:46:37 OK C:\Windows\System32\VSSVC.exe
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\vsmraid.sys
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\volsnap.sys
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\volmgrx.sys
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\volmgr.sys
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\viaide.sys
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\viac7.sys
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\VIAAGP.SYS
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\vga.sys
04/11/2011 15:46:37 OK C:\Windows\System32\drivers\vgapnp.sys
04/11/2011 15:46:35 OK C:\Windows\System32\vds.exe
04/11/2011 15:46:35 OK C:\Windows\System32\drivers\usbuhci.sys
04/11/2011 15:46:35 OK C:\Windows\System32\drivers\USBSTOR.SYS
04/11/2011 15:46:35 OK C:\Windows\System32\drivers\usbprint.sys
04/11/2011 15:46:35 OK C:\Windows\System32\drivers\usbohci.sys
04/11/2011 15:46:34 OK C:\Windows\System32\drivers\usbhub.sys
04/11/2011 15:46:34 OK C:\Windows\System32\drivers\usbehci.sys
04/11/2011 15:46:34 OK C:\Windows\System32\drivers\usbcir.sys
04/11/2011 15:46:34 OK C:\Windows\System32\drivers\usbccgp.sys
04/11/2011 15:46:34 OK C:\Windows\System32\drivers\usbaapl.sys
04/11/2011 15:46:34 OK C:\Windows\System32\drivers\umbus.sys
04/11/2011 15:46:34 OK C:\Windows\System32\drivers\ulsata2.sys
04/11/2011 15:46:34 OK C:\Windows\System32\drivers\ulsata.sys
04/11/2011 15:46:34 OK C:\Windows\System32\drivers\uliahci.sys
04/11/2011 15:46:34 OK C:\Windows\System32\drivers\uliahci.sys/PE_Patch
04/11/2011 15:46:34 Packed: PE_Patch C:\Windows\System32\drivers\uliahci.sys
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\ULIAGPKX.SYS
04/11/2011 15:46:33 OK C:\Windows\System32\UI0Detect.exe
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\udfs.sys
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\UAGP35.SYS
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\tunnel.sys
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\TUNMP.SYS
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\tssecsrv.sys
04/11/2011 15:46:33 OK C:\Windows\servicing\TrustedInstaller.exe
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\termdd.sys
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\tdx.sys
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\tdtcp.sys
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\tdpipe.sys
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\tcpipreg.sys
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\tcpip.sys
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\sym_u3.sys
04/11/2011 15:46:33 OK C:\Windows\System32\drivers\sym_u3.sys/PE_Patch
04/11/2011 15:46:31 Packed: PE_Patch C:\Windows\System32\drivers\sym_u3.sys
04/11/2011 15:46:30 OK C:\Windows\System32\drivers\sym_hi.sys
04/11/2011 15:46:30 OK C:\Windows\System32\drivers\sym_hi.sys/PE_Patch
04/11/2011 15:46:30 Packed: PE_Patch C:\Windows\System32\drivers\sym_hi.sys
04/11/2011 15:46:30 OK C:\Windows\System32\drivers\symc8xx.sys
04/11/2011 15:46:30 OK C:\Windows\System32\drivers\symc8xx.sys/PE_Patch
04/11/2011 15:46:30 Packed: PE_Patch C:\Windows\System32\drivers\symc8xx.sys
04/11/2011 15:46:29 OK C:\Windows\System32\drivers\swenum.sys
04/11/2011 15:46:29 OK C:\Windows\System32\drivers\srvnet.sys
04/11/2011 15:46:29 OK C:\Windows\System32\drivers\srv2.sys
04/11/2011 15:46:29 OK C:\Windows\System32\drivers\srv.sys
04/11/2011 15:46:29 OK C:\Windows\System32\spoolsv.exe
04/11/2011 15:46:29 OK C:\Windows\System32\drivers\spldr.sys
04/11/2011 15:46:29 OK C:\Windows\System32\snmptrap.exe
04/11/2011 15:46:29 OK C:\Windows\System32\drivers\smb.sys
04/11/2011 15:46:28 OK C:\Windows\System32\SLsvc.exe
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\sisraid4.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\sisraid4.sys/PE_Patch
04/11/2011 15:46:28 Packed: PE_Patch C:\Windows\System32\drivers\sisraid4.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\sisraid2.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\SISAGP.SYS
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\sfloppy.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\sffp_sd.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\sffp_mmc.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\sffdisk.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\sermouse.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\serial.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\serenum.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\secdrv.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\secdrv.sys/PE_Patch
04/11/2011 15:46:28 Packed: PE_Patch C:\Windows\System32\drivers\secdrv.sys
04/11/2011 15:46:28 OK C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\sbp2port.sys
04/11/2011 15:46:28 OK C:\Windows\System32\drivers\rspndr.sys
04/11/2011 15:46:28 OK C:\Windows\System32\Locator.exe
04/11/2011 15:46:28 OK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
04/11/2011 15:46:27 OK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
04/11/2011 15:46:25 OK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
04/11/2011 15:46:25 OK C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe
04/11/2011 15:46:25 OK C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
04/11/2011 15:46:24 OK C:\Windows\System32\drivers\rootmdm.sys
04/11/2011 15:46:24 OK C:\Windows\System32\drivers\RimSerial.sys
04/11/2011 15:46:24 OK C:\Windows\System32\drivers\RimUsb.sys
04/11/2011 15:46:24 OK C:\Windows\System32\drivers\rdpwd.sys
04/11/2011 15:46:24 OK C:\Windows\System32\drivers\RDPENCDD.sys
04/11/2011 15:46:24 OK C:\Windows\System32\drivers\rdpdr.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\RDPCDD.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\rdbss.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\raspppoe.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\rasl2tp.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\rasacd.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\qwavedrv.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\ql40xx.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\ql40xx.sys/PE_Patch
04/11/2011 15:46:23 Packed: PE_Patch C:\Windows\System32\drivers\ql40xx.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\ql2300.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\ql2300.sys/PE_Patch
04/11/2011 15:46:23 Packed: PE_Patch C:\Windows\System32\drivers\ql2300.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\pxhelp20.sys
04/11/2011 15:46:23 OK C:\Windows\System32\drivers\psdvdisk.sys
04/11/2011 15:46:22 OK C:\Windows\System32\drivers\PSDNServ.sys
04/11/2011 15:46:22 OK C:\Windows\System32\drivers\psdfilter.sys
04/11/2011 15:46:22 OK C:\Windows\System32\drivers\pacer.sys
04/11/2011 15:46:22 OK C:\Windows\System32\drivers\processr.sys
04/11/2011 15:46:22 OK C:\Windows\System32\drivers\raspptp.sys
04/11/2011 15:46:22 OK C:\Windows\System32\drivers\PEAuth.sys
04/11/2011 15:46:22 OK C:\Windows\System32\drivers\pcmcia.sys
04/11/2011 15:46:20 OK C:\Windows\System32\drivers\pciide.sys
04/11/2011 15:46:20 OK C:\Windows\System32\drivers\pci.sys
04/11/2011 15:46:20 OK C:\Windows\System32\drivers\parvdm.sys
04/11/2011 15:46:19 OK C:\Windows\System32\drivers\partmgr.sys
04/11/2011 15:46:19 OK C:\Windows\System32\drivers\parport.sys
04/11/2011 15:46:19 OK C:\Windows\System32\drivers\ohci1394.sys
04/11/2011 15:46:19 OK C:\Windows\System32\drivers\NV_AGP.SYS
04/11/2011 15:46:19 OK C:\Windows\System32\drivers\nvstor.sys
04/11/2011 15:46:19 OK C:\Windows\System32\drivers\nvraid.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\null.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\ntrigdigi.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\ntrigdigi.sys/PE_Patch
04/11/2011 15:46:18 Packed: PE_Patch C:\Windows\System32\drivers\ntrigdigi.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\NTIDrvr.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\ntfs.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\nsiproxy.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\npfs.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\nfrd960.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\nfrd960.sys/PE_Patch
04/11/2011 15:46:18 Packed: PE_Patch C:\Windows\System32\drivers\nfrd960.sys
04/11/2011 15:46:18 OK C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\netbt.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\netbios.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\ndproxy.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\ndiswan.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\ndisuio.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\ndistapi.sys
04/11/2011 15:46:18 OK C:\Windows\System32\drivers\ndis.sys
04/11/2011 15:46:17 OK C:\Windows\System32\drivers\nwifi.sys
04/11/2011 15:46:17 OK C:\Windows\System32\drivers\mup.sys
04/11/2011 15:46:17 OK C:\Windows\System32\drivers\mstee.sys
04/11/2011 15:46:17 OK C:\Windows\System32\drivers\mssmbios.sys
04/11/2011 15:46:17 OK C:\Windows\System32\drivers\msrpc.sys
04/11/2011 15:46:17 OK C:\Windows\System32\drivers\mspqm.sys
04/11/2011 15:46:17 OK C:\Windows\System32\drivers\mspclock.sys
04/11/2011 15:46:17 OK C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
04/11/2011 15:46:17 OK C:\Windows\System32\drivers\mskssrv.sys
04/11/2011 15:46:16 OK C:\Windows\System32\msiexec.exe
04/11/2011 15:46:16 OK C:\Windows\System32\drivers\msisadrv.sys
04/11/2011 15:46:15 OK C:\Windows\System32\drivers\msfs.sys
04/11/2011 15:46:15 OK C:\Windows\System32\msdtc.exe
04/11/2011 15:46:15 OK C:\Windows\System32\drivers\msdsm.sys
04/11/2011 15:46:15 OK C:\Windows\System32\drivers\msahci.sys
04/11/2011 15:46:15 OK C:\Windows\System32\drivers\mrxsmb20.sys
04/11/2011 15:46:15 OK C:\Windows\System32\drivers\mrxsmb10.sys
04/11/2011 15:46:15 OK C:\Windows\System32\drivers\mrxsmb.sys
04/11/2011 15:46:15 OK C:\Windows\System32\drivers\mrxdav.sys
04/11/2011 15:46:15 OK C:\Windows\System32\drivers\Mraid35x.sys
04/11/2011 15:46:15 OK C:\Windows\System32\drivers\Mraid35x.sys/PE_Patch
04/11/2011 15:46:15 Packed: PE_Patch C:\Windows\System32\drivers\Mraid35x.sys
04/11/2011 15:46:15 OK C:\Windows\System32\drivers\mpsdrv.sys
04/11/2011 15:46:14 OK C:\Windows\System32\drivers\MpNWMon.sys
04/11/2011 15:46:14 OK C:\Windows\System32\drivers\mpio.sys
04/11/2011 15:46:14 OK C:\Windows\System32\drivers\MpFilter.sys
04/11/2011 15:46:14 OK C:\Windows\System32\drivers\mountmgr.sys
04/11/2011 15:46:12 OK C:\Windows\System32\drivers\mouhid.sys
04/11/2011 15:46:11 OK C:\Windows\System32\drivers\mouclass.sys
04/11/2011 15:46:11 OK C:\Windows\System32\drivers\monitor.sys
04/11/2011 15:46:11 OK C:\Windows\System32\drivers\modem.sys
04/11/2011 15:46:11 OK C:\Acer\Mobility Center\MobilityService.exe
04/11/2011 15:46:11 OK C:\Windows\System32\drivers\megasas.sys
04/11/2011 15:46:11 OK C:\Windows\System32\drivers\megasas.sys/PE_Patch
04/11/2011 15:46:11 Packed: PE_Patch C:\Windows\System32\drivers\megasas.sys
04/11/2011 15:46:10 OK C:\Windows\System32\drivers\mdmxsdk.sys
04/11/2011 15:46:10 OK C:\Windows\System32\drivers\mdmxsdk.sys/PE_Patch
04/11/2011 15:46:10 Packed: PE_Patch C:\Windows\System32\drivers\mdmxsdk.sys
04/11/2011 15:46:10 OK C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
04/11/2011 15:46:10 OK C:\Windows\System32\drivers\mbam.sys
04/11/2011 15:46:10 OK C:\Windows\System32\drivers\luafv.sys
04/11/2011 15:46:10 OK C:\Windows\System32\drivers\lsi_scsi.sys
04/11/2011 15:46:10 OK C:\Windows\System32\drivers\lsi_scsi.sys/PE_Patch
04/11/2011 15:46:10 Packed: PE_Patch C:\Windows\System32\drivers\lsi_scsi.sys
04/11/2011 15:46:10 OK C:\Windows\System32\drivers\lsi_sas.sys
04/11/2011 15:46:10 OK C:\Windows\System32\drivers\lsi_sas.sys/PE_Patch
04/11/2011 15:46:10 Packed: PE_Patch C:\Windows\System32\drivers\lsi_sas.sys
04/11/2011 15:46:10 OK C:\Windows\System32\drivers\lsi_fc.sys
04/11/2011 15:46:10 OK C:\Windows\System32\drivers\lsi_fc.sys/PE_Patch
04/11/2011 15:46:10 Packed: PE_Patch C:\Windows\System32\drivers\lsi_fc.sys
04/11/2011 15:46:10 OK C:\Windows\System32\drivers\lltdio.sys
04/11/2011 15:46:10 OK C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll
04/11/2011 15:46:09 OK C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
04/11/2011 15:46:09 OK C:\Program Files\Common Files\LightScribe\LSSrvc.exe
04/11/2011 15:46:09 OK C:\Windows\System32\drivers\ksecdd.sys
04/11/2011 15:46:09 OK C:\Windows\System32\lsass.exe
04/11/2011 15:46:09 OK C:\Windows\System32\drivers\kbdhid.sys
04/11/2011 15:46:09 OK C:\Windows\System32\drivers\kbdclass.sys
04/11/2011 15:46:09 OK C:\Windows\System32\drivers\iteraid.sys
04/11/2011 15:46:09 OK C:\Windows\System32\drivers\iteraid.sys/PE_Patch
04/11/2011 15:46:09 Packed: PE_Patch C:\Windows\System32\drivers\iteraid.sys
04/11/2011 15:46:09 OK C:\Windows\System32\drivers\iteatapi.sys
04/11/2011 15:46:09 OK C:\Windows\System32\drivers\iteatapi.sys/PE_Patch
04/11/2011 15:46:09 Packed: PE_Patch C:\Windows\System32\drivers\iteatapi.sys
04/11/2011 15:46:09 OK C:\Windows\System32\drivers\msiscsi.sys
04/11/2011 15:46:08 OK C:\Windows\System32\drivers\isapnp.sys
04/11/2011 15:46:07 OK C:\Windows\System32\drivers\irenum.sys
04/11/2011 15:46:07 OK C:\Program Files\iPod\bin\iPodService.exe
04/11/2011 15:46:07 OK C:\Windows\System32\drivers\ipnat.sys
04/11/2011 15:46:07 OK C:\Windows\System32\drivers\IPMIDrv.sys
04/11/2011 15:46:06 OK C:\Windows\System32\drivers\ipfltdrv.sys
04/11/2011 15:46:06 OK C:\Windows\System32\drivers\intelppm.sys
04/11/2011 15:46:06 OK C:\Windows\System32\drivers\intelide.sys
04/11/2011 15:46:06 OK C:\Windows\System32\drivers\RTKVHDA.sys
04/11/2011 15:46:06 OK C:\Acer\Empowering Technology\eRecovery\int15.sys
04/11/2011 15:46:06 OK C:\Windows\System32\drivers\iirsp.sys
04/11/2011 15:46:06 OK C:\Windows\System32\drivers\iirsp.sys/PE_Patch
04/11/2011 15:46:06 OK C:\Windows\System32\drivers\iirsp.sys/PE_Patch/PE_Patch
04/11/2011 15:46:06 Packed: PE_Patch C:\Windows\System32\drivers\iirsp.sys/PE_Patch
04/11/2011 15:46:06 Packed: PE_Patch C:\Windows\System32\drivers\iirsp.sys
04/11/2011 15:46:06 OK C:\Windows\System32\drivers\igdkmd32.sys
04/11/2011 15:46:06 OK C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
04/11/2011 15:46:06 OK C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
04/11/2011 15:46:05 OK C:\Windows\System32\drivers\iaStorV.sys
04/11/2011 15:46:05 OK C:\Windows\System32\drivers\iaStorV.sys/PE_Patch
04/11/2011 15:46:05 Packed: PE_Patch C:\Windows\System32\drivers\iaStorV.sys
04/11/2011 15:46:05 OK C:\Windows\System32\drivers\i8042prt.sys
04/11/2011 15:46:05 OK C:\Windows\System32\drivers\i2omp.sys
04/11/2011 15:46:04 OK C:\Windows\System32\drivers\http.sys
04/11/2011 15:46:04 OK C:\Windows\System32\drivers\HSXHWAZL.sys
04/11/2011 15:46:04 OK C:\Windows\System32\drivers\HSX_DPV.sys
04/11/2011 15:46:04 OK C:\Windows\System32\drivers\VSTAZL3.SYS
04/11/2011 15:46:04 OK C:\Windows\System32\drivers\VSTAZL3.SYS/PE_Patch
04/11/2011 15:46:04 Packed: PE_Patch C:\Windows\System32\drivers\VSTAZL3.SYS
04/11/2011 15:46:04 OK C:\Windows\System32\drivers\HpCISSs.sys
04/11/2011 15:46:04 OK C:\Windows\System32\drivers\HpCISSs.sys/PE_Patch
04/11/2011 15:46:04 Packed: PE_Patch C:\Windows\System32\drivers\HpCISSs.sys
04/11/2011 15:46:04 OK C:\Windows\System32\drivers\hidusb.sys
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\hidir.sys
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\hidbth.sys
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\hdaudbus.sys
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\HdAudio.sys
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\GEARAspiWDM.sys
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\GAGP30KX.SYS
04/11/2011 15:46:03 OK C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\fltMgr.sys
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\flpydisk.sys
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\filetrace.sys
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\fileinfo.sys
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\fdc.sys
04/11/2011 15:46:03 OK C:\Windows\System32\drivers\fastfat.sys
04/11/2011 15:46:03 OK C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
04/11/2011 15:46:03 OK C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
04/11/2011 15:46:03 OK C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
04/11/2011 15:46:01 OK C:\Acer\Empowering Technology\eNet\eNet Service.exe
04/11/2011 15:45:58 OK C:\Acer\Empowering Technology\eNet\eNet.dll
04/11/2011 15:45:57 OK C:\Windows\System32\drivers\elxstor.sys
04/11/2011 15:45:57 OK C:\Windows\System32\drivers\elxstor.sys/PE_Patch
04/11/2011 15:45:57 Packed: PE_Patch C:\Windows\System32\drivers\elxstor.sys
04/11/2011 15:45:56 OK C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
04/11/2011 15:45:56 OK C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
04/11/2011 15:45:56 OK C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys/data0000.res
04/11/2011 15:45:56 OK C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
04/11/2011 15:45:56 OK C:\Windows\System32\drivers\ecache.sys
04/11/2011 15:45:55 OK C:\Windows\System32\drivers\E1G60I32.sys
04/11/2011 15:45:55 OK C:\Windows\System32\drivers\E1G60I32.sys/PE_Patch
04/11/2011 15:45:55 Packed: PE_Patch C:\Windows\System32\drivers\E1G60I32.sys
04/11/2011 15:45:55 OK C:\Windows\System32\drivers\dxgkrnl.sys
04/11/2011 15:45:55 OK C:\Windows\System32\drivers\drmkaud.sys
04/11/2011 15:45:55 OK C:\Program Files\Launch Manager\DPortIO.sys
04/11/2011 15:45:55 OK C:\Program Files\Launch Manager\DPortIO.sys/PE_Patch
04/11/2011 15:45:55 Packed: PE_Patch C:\Program Files\Launch Manager\DPortIO.sys
04/11/2011 15:45:55 OK C:\Windows\System32\drivers\DKbFltr.sys
04/11/2011 15:45:53 OK C:\Windows\System32\drivers\disk.sys
04/11/2011 15:45:53 OK C:\Windows\System32\dfsr.exe
04/11/2011 15:45:52 OK C:\Windows\System32\drivers\dfsc.sys
04/11/2011 15:45:52 OK C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
04/11/2011 15:45:52 OK C:\Windows\System32\drivers\crusoe.sys
04/11/2011 15:45:52 OK C:\Windows\System32\drivers\crcdisk.sys
04/11/2011 15:45:51 OK C:\Windows\System32\dllhost.exe
04/11/2011 15:45:51 OK C:\Windows\System32\drivers\compbatt.sys
04/11/2011 15:45:51 OK C:\Windows\System32\drivers\cmdide.sys
04/11/2011 15:45:51 OK C:\Windows\System32\drivers\CmBatt.sys
04/11/2011 15:45:51 OK C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
04/11/2011 15:45:51 OK C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
04/11/2011 15:45:51 OK C:\Windows\System32\clfs.sys
04/11/2011 15:45:51 OK C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\circlass.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\cdrom.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\cdfs.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\bthmodem.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrUsbSer.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrUsbSer.sys/PE_Patch
04/11/2011 15:45:50 Packed: PE_Patch C:\Windows\System32\drivers\BrUsbSer.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrUsbMdm.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrUsbMdm.sys/PE_Patch
04/11/2011 15:45:50 Packed: PE_Patch C:\Windows\System32\drivers\BrUsbMdm.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrSerWdm.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrSerWdm.sys/PE_Patch
04/11/2011 15:45:50 Packed: PE_Patch C:\Windows\System32\drivers\BrSerWdm.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrSerId.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrSerId.sys/PE_Patch
04/11/2011 15:45:50 Packed: PE_Patch C:\Windows\System32\drivers\BrSerId.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrFiltUp.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrFiltUp.sys/PE_Patch
04/11/2011 15:45:50 Packed: PE_Patch C:\Windows\System32\drivers\BrFiltUp.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrFiltLo.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\BrFiltLo.sys/PE_Patch
04/11/2011 15:45:50 Packed: PE_Patch C:\Windows\System32\drivers\BrFiltLo.sys
04/11/2011 15:45:50 OK C:\Windows\System32\drivers\bowser.sys
04/11/2011 15:45:49 OK C:\Program Files\Bonjour\mDNSResponder.exe
04/11/2011 15:45:48 OK C:\Windows\System32\drivers\beep.sys
04/11/2011 15:45:48 OK C:\Windows\System32\drivers\b57nd60x.sys
04/11/2011 15:45:48 OK C:\Windows\System32\drivers\athr.sys
04/11/2011 15:45:48 OK C:\Windows\System32\drivers\atapi.sys
04/11/2011 15:45:47 OK C:\Windows\System32\drivers\asyncmac.sys
04/11/2011 15:45:47 OK C:\Windows\System32\drivers\arcsas.sys
04/11/2011 15:45:47 OK C:\Windows\System32\drivers\arcsas.sys/PE_Patch
04/11/2011 15:45:47 Packed: PE_Patch C:\Windows\System32\drivers\arcsas.sys
04/11/2011 15:45:47 OK C:\Windows\System32\drivers\arc.sys
04/11/2011 15:45:47 OK C:\Windows\System32\drivers\arc.sys/PE_Patch
04/11/2011 15:45:47 Packed: PE_Patch C:\Windows\System32\drivers\arc.sys
04/11/2011 15:45:47 OK C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
04/11/2011 15:45:47 OK C:\Windows\System32\drivers\Apfiltr.sys
04/11/2011 15:45:47 OK C:\Windows\System32\drivers\amdk8.sys
04/11/2011 15:45:47 OK C:\Windows\System32\drivers\amdk7.sys
04/11/2011 15:45:47 OK C:\Windows\System32\drivers\amdide.sys
04/11/2011 15:45:47 OK C:\Windows\System32\drivers\AMDAGP.SYS
04/11/2011 15:45:47 OK C:\Windows\System32\drivers\aliide.sys
04/11/2011 15:45:47 OK C:\Windows\System32\alg.exe
04/11/2011 15:45:45 OK C:\Acer\ALaunch\ALaunchSvc.exe
04/11/2011 15:45:43 OK C:\Windows\System32\drivers\djsvs.sys
04/11/2011 15:45:43 OK C:\Windows\System32\drivers\djsvs.sys/PE_Patch
04/11/2011 15:45:43 Packed: PE_Patch C:\Windows\System32\drivers\djsvs.sys
04/11/2011 15:45:43 OK C:\Windows\System32\drivers\AGP440.sys
04/11/2011 15:45:43 OK C:\Windows\System32\drivers\afd.sys
04/11/2011 15:45:42 OK C:\Windows\System32\svchost.exe
04/11/2011 15:45:42 OK C:\Windows\System32\drivers\adpu320.sys
04/11/2011 15:45:42 OK C:\Windows\System32\drivers\adpu320.sys/PE_Patch
04/11/2011 15:45:42 Packed: PE_Patch C:\Windows\System32\drivers\adpu320.sys
04/11/2011 15:45:42 OK C:\Windows\System32\drivers\adpu160m.sys
04/11/2011 15:45:42 OK C:\Windows\System32\drivers\adpu160m.sys/PE_Patch
04/11/2011 15:45:42 Packed: PE_Patch C:\Windows\System32\drivers\adpu160m.sys
04/11/2011 15:45:42 OK C:\Windows\System32\drivers\adpahci.sys
04/11/2011 15:45:42 OK C:\Windows\System32\drivers\adpahci.sys/PE_Patch
04/11/2011 15:45:42 Packed: PE_Patch C:\Windows\System32\drivers\adpahci.sys
04/11/2011 15:45:42 OK C:\Windows\System32\drivers\adp94xx.sys
04/11/2011 15:45:42 OK C:\Windows\System32\drivers\adp94xx.sys/PE_Patch
04/11/2011 15:45:42 Packed: PE_Patch C:\Windows\System32\drivers\adp94xx.sys
04/11/2011 15:45:42 OK C:\Windows\System32\drivers\acpi.sys
04/11/2011 15:45:38 OK C:\Windows\System32\WUDFSvc.dll
04/11/2011 15:45:37 OK C:\Windows\System32\wuaueng.dll
04/11/2011 15:45:37 OK C:\Windows\System32\wscsvc.dll
04/11/2011 15:45:37 OK C:\Windows\System32\wpdbusenum.dll
04/11/2011 15:45:37 OK C:\Windows\System32\wpcsvc.dll
04/11/2011 15:45:37 OK C:\Windows\System32\wlansvc.dll
04/11/2011 15:45:37 OK C:\Windows\System32\WsmSvc.dll
04/11/2011 15:45:37 OK C:\Windows\System32\wbem\wmisvc.dll
04/11/2011 15:45:37 OK C:\Windows\System32\WINHTTP.dll
04/11/2011 15:45:37 OK C:\Program Files\Windows Defender\MpSvc.dll
04/11/2011 15:45:36 OK C:\Windows\System32\wersvc.dll
04/11/2011 15:45:36 OK C:\Windows\System32\wercplsupport.dll
04/11/2011 15:45:36 OK C:\Windows\System32\wecsvc.dll
04/11/2011 15:45:36 OK C:\Windows\System32\WebClnt.dll
04/11/2011 15:45:36 OK C:\Windows\System32\wdi.dll
04/11/2011 15:45:36 OK C:\Windows\System32\WcsPlugInService.dll
04/11/2011 15:45:34 OK C:\Windows\System32\wcncsvc.dll
04/11/2011 15:45:34 OK C:\Windows\System32\w32time.dll
04/11/2011 15:45:33 OK C:\Windows\System32\uxsms.dll
04/11/2011 15:45:33 OK C:\Windows\System32\upnphost.dll
04/11/2011 15:45:33 OK C:\Windows\System32\trkwks.dll
04/11/2011 15:45:33 OK C:\Windows\System32\termsrv.dll
04/11/2011 15:45:33 OK C:\Windows\System32\tbssvc.dll
04/11/2011 15:45:33 OK C:\Windows\System32\tapisrv.dll
04/11/2011 15:45:32 OK C:\Windows\System32\TabSvc.dll
04/11/2011 15:45:32 OK C:\Windows\System32\sysmain.dll
04/11/2011 15:45:32 OK C:\Windows\System32\swprv.dll
04/11/2011 15:45:32 OK C:\Windows\System32\wiaservc.dll
04/11/2011 15:45:32 OK C:\Windows\System32\ssdpsrv.dll
04/11/2011 15:45:32 OK C:\Windows\System32\SLUINotify.dll
04/11/2011 15:45:32 OK C:\Windows\System32\SHSVCS.dll
04/11/2011 15:45:32 OK C:\Windows\System32\ipnathlp.dll
04/11/2011 15:45:32 OK C:\Windows\System32\SessEnv.dll
04/11/2011 15:45:32 OK C:\Windows\System32\Sens.dll
04/11/2011 15:45:32 OK C:\Windows\System32\seclogon.dll
04/11/2011 15:45:32 OK C:\Windows\System32\sdrsvc.dll
04/11/2011 15:45:32 OK C:\Windows\System32\schedsvc.dll
04/11/2011 15:45:31 OK C:\Windows\System32\SCardSvr.dll
04/11/2011 15:45:31 OK C:\Windows\System32\regsvc.dll
04/11/2011 15:45:31 OK C:\Windows\System32\mprdim.dll
04/11/2011 15:45:31 OK C:\Windows\System32\rasmans.dll
04/11/2011 15:45:31 OK C:\Windows\System32\rasauto.dll
04/11/2011 15:45:31 OK C:\Windows\System32\qwave.dll
04/11/2011 15:45:31 OK C:\Windows\System32\profsvc.dll
04/11/2011 15:45:31 OK C:\Windows\System32\IPSECSVC.DLL
04/11/2011 15:45:29 OK C:\Windows\System32\umpnpmgr.dll
04/11/2011 15:45:28 OK C:\Windows\System32\pla.dll
04/11/2011 15:45:27 OK C:\Windows\System32\pcasvc.dll
04/11/2011 15:45:27 OK C:\Windows\System32\p2psvc.dll
04/11/2011 15:45:27 OK C:\Windows\System32\nsisvc.dll
04/11/2011 15:45:27 OK C:\Windows\System32\nlasvc.dll
04/11/2011 15:45:27 OK C:\Windows\System32\netprofm.dll
04/11/2011 15:45:27 OK C:\Windows\System32\netman.dll
04/11/2011 15:45:26 OK C:\Windows\System32\QAGENTRT.DLL
04/11/2011 15:45:26 OK C:\Windows\System32\iscsiexe.dll
04/11/2011 15:45:26 OK C:\Windows\System32\MPSSVC.dll
04/11/2011 15:45:26 OK C:\Windows\System32\mmcss.dll
04/11/2011 15:45:26 OK C:\Windows\System32\lmhsvc.dll
04/11/2011 15:45:26 OK C:\Windows\System32\lltdsvc.dll
04/11/2011 15:45:26 OK C:\Windows\System32\wkssvc.dll
04/11/2011 15:45:26 OK C:\Windows\System32\srvsvc.dll
04/11/2011 15:45:26 OK C:\Windows\System32\msdtckrm.dll
04/11/2011 15:45:26 OK C:\Windows\System32\iphlpsvc.dll
04/11/2011 15:45:16 OK C:\Windows\System32\IPBusEnum.dll
04/11/2011 15:45:14 OK C:\Windows\System32\IKEEXT.DLL
04/11/2011 15:45:14 OK C:\Windows\System32\KMSVC.DLL
04/11/2011 15:45:13 OK C:\Windows\System32\hidserv.dll
04/11/2011 15:45:13 OK C:\Windows\System32\gpsvc.dll
04/11/2011 15:45:13 OK C:\Windows\System32\FDResPub.dll
04/11/2011 15:45:13 OK C:\Windows\System32\fdPHost.dll
04/11/2011 15:45:13 OK C:\Windows\System32\es.dll
04/11/2011 15:45:13 OK C:\Windows\System32\emdmgmt.dll
04/11/2011 15:45:12 OK C:\Windows\System32\eapsvc.dll
04/11/2011 15:45:12 OK C:\Windows\System32\dps.dll
04/11/2011 15:45:12 OK C:\Windows\System32\dot3svc.dll
04/11/2011 15:45:12 OK C:\Windows\System32\dnsrslvr.dll
04/11/2011 15:45:12 OK C:\Windows\System32\dhcpcsvc.DLL
04/11/2011 15:45:12 OK C:\Windows\System32\rpcss.dll
04/11/2011 15:45:12 OK C:\Windows\System32\cryptsvc.dll
04/11/2011 15:45:12 OK C:\Windows\System32\certprop.dll
04/11/2011 15:45:12 OK C:\Windows\System32\browser.dll
04/11/2011 15:45:11 OK C:\Windows\System32\qmgr.dll
04/11/2011 15:45:11 OK C:\Windows\System32\BFE.DLL
04/11/2011 15:45:11 OK C:\Windows\System32\audiosrv.dll
04/11/2011 15:45:10 OK C:\Windows\System32\appinfo.dll
04/11/2011 15:45:10 OK C:\Windows\System32\aelupsvc.dll
04/11/2011 15:45:07 OK C:\Program Files\Microsoft Security Client\msseces.exe
04/11/2011 15:45:04 OK C:\Windows\System32\igfxdev.dll
04/11/2011 15:45:02 OK C:\Windows\System32\userinit.exe
04/11/2011 15:45:02 OK C:\Windows\Explorer.EXE
04/11/2011 15:45:00 OK C:\Windows\System32\TIMER.DRV
04/11/2011 15:45:00 OK C:\Windows\system.ini
04/11/2011 15:45:00 OK C:\Windows\win.ini
04/11/2011 15:45:00 OK C:\config.sys
04/11/2011 15:45:00 OK C:\autoexec.bat
04/11/2011 15:45:00 OK C:\Windows\System32\ntvdm.exe
04/11/2011 15:44:53 OK C:\Windows\System32\ntshrui.dll
04/11/2011 15:44:53 OK C:\Windows\System32\cryptnet.dll
04/11/2011 15:44:53 OK C:\Windows\System32\dciman32.dll
04/11/2011 15:44:53 OK C:\Windows\System32\SensApi.dll
04/11/2011 15:44:53 OK 8345820.exe\cscapi.dll
04/11/2011 15:44:53 OK 8345820.exe\NETAPI32.dll
04/11/2011 15:44:53 OK 8345820.exe\PROPSYS.dll
04/11/2011 15:44:53 OK C:\Windows\System32\config\systemprofile\appdata\local\temp\rarsfx1\8345820.exe Object was not changed (iChecker)
04/11/2011 15:44:53 OK C:\Windows\System32\WINTRUST.dll Object was not changed (iChecker)
04/11/2011 15:44:53 OK 8345820.exe\ntshrui.dll
04/11/2011 15:44:53 OK 8345820.exe\LINKINFO.dll
04/11/2011 15:44:53 OK 8345820.exe\CLBCatQ.DLL
04/11/2011 15:44:53 OK 8345820.exe\dciman32.dll
04/11/2011 15:44:53 OK 8345820.exe\UxTheme.dll
04/11/2011 15:44:53 OK 8345820.exe\dhcpcsvc6.DLL
04/11/2011 15:44:53 OK 8345820.exe\WINNSI.DLL
04/11/2011 15:44:53 OK 8345820.exe\DNSAPI.dll
04/11/2011 15:44:53 OK 8345820.exe\dhcpcsvc.DLL
04/11/2011 15:44:53 OK 8345820.exe\IPHLPAPI.DLL
04/11/2011 15:44:53 OK 8345820.exe\wship6.dll
04/11/2011 15:44:53 OK 8345820.exe\wshtcpip.dll
04/11/2011 15:44:53 OK 8345820.exe\mswsock.dll
04/11/2011 15:44:53 OK 8345820.exe\WINHTTP.dll
04/11/2011 15:44:53 OK 8345820.exe\Cabinet.dll
04/11/2011 15:44:53 OK 8345820.exe\SAMLIB.dll
04/11/2011 15:44:53 OK 8345820.exe\NTMARTA.DLL
04/11/2011 15:44:53 OK 8345820.exe\SensApi.dll
04/11/2011 15:44:53 OK 8345820.exe\NSI.dll
04/11/2011 15:44:53 OK 8345820.exe\WS2_32.dll
04/11/2011 15:44:53 OK 8345820.exe\WLDAP32.dll
04/11/2011 15:44:53 OK C:\Windows\System32\FLTLIB.DLL
04/11/2011 15:44:53 OK 8345820.exe\cryptnet.dll
04/11/2011 15:44:53 OK 8345820.exe\slc.dll
04/11/2011 15:44:53 OK 8345820.exe\GPAPI.dll
04/11/2011 15:44:53 OK 8345820.exe\BCRYPT.dll
04/11/2011 15:44:53 OK 8345820.exe\ncrypt.dll
04/11/2011 15:44:53 OK 8345820.exe\rsaenh.dll
04/11/2011 15:44:53 OK 8345820.exe\imagehlp.dll
04/11/2011 15:44:53 OK 8345820.exe\Secur32.dll
04/11/2011 15:44:53 OK 8345820.exe\USERENV.dll
04/11/2011 15:44:53 OK 8345820.exe\MSASN1.dll
04/11/2011 15:44:53 OK 8345820.exe\CRYPT32.dll
04/11/2011 15:44:53 OK 8345820.exe\wintrust.dll
04/11/2011 15:44:53 OK 8345820.exe\comctl32.dll
04/11/2011 15:44:53 OK 8345820.exe\USP10.dll
04/11/2011 15:44:53 OK 8345820.exe\LPK.DLL
04/11/2011 15:44:53 OK 8345820.exe\MSCTF.dll
04/11/2011 15:44:53 OK 8345820.exe\IMM32.DLL
04/11/2011 15:44:53 OK 8345820.exe\SHLWAPI.dll
04/11/2011 15:44:53 OK 8345820.exe\SHELL32.dll
04/11/2011 15:44:53 OK 8345820.exe\FLTLIB.DLL
04/11/2011 15:44:53 OK 8345820.exe\OLEAUT32.dll
04/11/2011 15:44:53 OK 8345820.exe\SETUPAPI.dll
04/11/2011 15:44:53 OK 8345820.exe\PSAPI.DLL
04/11/2011 15:44:53 OK 8345820.exe\ole32.dll
04/11/2011 15:44:53 OK 8345820.exe\RPCRT4.dll
04/11/2011 15:44:53 OK 8345820.exe\ADVAPI32.dll
04/11/2011 15:44:53 OK 8345820.exe\GDI32.dll
04/11/2011 15:44:53 OK 8345820.exe\USER32.dll
04/11/2011 15:44:53 OK 8345820.exe\msvcrt.dll
04/11/2011 15:44:53 OK 8345820.exe\gdiplus.dll
04/11/2011 15:44:53 OK 8345820.exe\kernel32.dll
04/11/2011 15:44:53 OK 8345820.exe\ntdll.dll
04/11/2011 15:44:53 OK 8345820.exe\8345820.exe
04/11/2011 15:44:53 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/helper64.prg
04/11/2011 15:44:53 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/helper64.exe
04/11/2011 15:44:53 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/600/8345820drv.sys
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/600/8345820drv.inf
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/600/8345820drv.cat
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/501/8345820drv.sys
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/501/8345820drv.inf
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/501/8345820drv.cat
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/1/kl1.sys
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/1/kl1.inf
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/1/kl1.cat
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/600/8345820drv.sys
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/600/8345820drv.inf
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/600/8345820drv.cat
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/501/8345820drv.sys
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/501/8345820drv.inf
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/501/8345820drv.cat
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/1/kl1.sys
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/1/kl1.inf
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/1/kl1.cat
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/background.png
04/11/2011 15:44:52 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/8345820rar.prg
04/11/2011 15:44:51 Password protected C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/8345820rar.exe
04/11/2011 15:44:51 Archive: RAR C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/8345820rar.exe
04/11/2011 15:44:47 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/8345820.prg
04/11/2011 15:44:47 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/8345820.exe
04/11/2011 15:44:47 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/8345820.exe/#
04/11/2011 15:44:47 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/archive comment
04/11/2011 15:44:47 Archive: RAR C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe
04/11/2011 15:44:47 OK C:\Windows\System32\RICHED20.dll
04/11/2011 15:44:47 OK C:\Windows\System32\ole32.dll Object was not changed (iChecker)
04/11/2011 15:44:47 OK C:\Windows\System32\riched32.dll
04/11/2011 15:44:47 OK C:\Windows\System32\COMDLG32.DLL
04/11/2011 15:44:47 OK C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll Object was not changed (iChecker)
04/11/2011 15:44:47 OK C:\Windows\System32\ADVAPI32.dll Object was not changed (iChecker)
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\SETUPAPI.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\Secur32.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\USERENV.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\OLEAUT32.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\PROPSYS.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\UxTheme.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\RICHED20.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\riched32.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\USP10.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\LPK.DLL
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\MSCTF.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\IMM32.DLL
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\OLE32.DLL
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\SHELL32.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\COMDLG32.DLL
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\SHLWAPI.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\USER32.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\GDI32.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\msvcrt.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\COMCTL32.DLL
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\RPCRT4.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\ADVAPI32.DLL
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\kernel32.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\ntdll.dll
04/11/2011 15:44:47 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\setup_11.0.0.1245.x01_2011_11_03_23_50.exe
04/11/2011 15:44:47 OK C:\Windows\System32\bthprops.cpl
04/11/2011 15:44:47 OK C:\Windows\System32\QAgent.dll
04/11/2011 15:44:47 OK C:\Windows\System32\davclnt.dll
04/11/2011 15:44:47 OK C:\Windows\System32\drprov.dll
04/11/2011 15:44:47 OK C:\Windows\System32\ntlanman.dll
04/11/2011 15:44:47 OK C:\Windows\System32\fwpuclnt.dll
04/11/2011 15:44:45 OK explorer.exe\davclnt.dll
04/11/2011 15:44:45 OK explorer.exe\drprov.dll
04/11/2011 15:44:44 OK explorer.exe\ntlanman.dll
04/11/2011 15:44:44 OK explorer.exe\MPR.dll
04/11/2011 15:44:44 OK explorer.exe\fwpuclnt.dll
04/11/2011 15:44:44 OK explorer.exe\QAgent.dll
04/11/2011 15:44:44 OK C:\Windows\System32\imagehlp.dll
04/11/2011 15:44:43 OK explorer.exe\bthprops.cpl
04/11/2011 15:44:43 OK C:\Windows\System32\WINTRUST.dll
04/11/2011 15:44:43 OK explorer.exe\imagehlp.dll
04/11/2011 15:44:43 OK C:\Windows\System32\WSCAPI.dll
04/11/2011 15:44:43 OK explorer.exe\WINTRUST.dll
04/11/2011 15:44:43 OK C:\Windows\System32\wscntfy.dll
04/11/2011 15:44:43 OK explorer.exe\WSCAPI.dll
04/11/2011 15:44:43 OK C:\Windows\System32\PortableDeviceApi.dll
04/11/2011 15:44:43 OK explorer.exe\wscntfy.dll
04/11/2011 15:44:43 OK C:\Windows\System32\imapi2.dll
04/11/2011 15:44:43 OK explorer.exe\PortableDeviceApi.dll
04/11/2011 15:44:42 OK C:\Windows\System32\SyncCenter.dll
04/11/2011 15:44:42 OK C:\Windows\System32\PortableDeviceTypes.dll
04/11/2011 15:44:42 OK explorer.exe\imapi2.dll
04/11/2011 15:44:42 OK explorer.exe\PortableDeviceTypes.dll
04/11/2011 15:44:42 OK C:\Windows\System32\webcheck.dll
04/11/2011 15:44:42 OK explorer.exe\SyncCenter.dll
04/11/2011 15:44:42 OK C:\Windows\System32\srchadmin.dll
04/11/2011 15:44:42 OK explorer.exe\webcheck.dll
04/11/2011 15:44:42 OK C:\Windows\System32\WINHTTP.dll
04/11/2011 15:44:42 OK C:\Windows\System32\wpdshserviceobj.dll
04/11/2011 15:44:42 OK explorer.exe\srchadmin.dll
04/11/2011 15:44:42 OK C:\Windows\System32\AltTab.dll
04/11/2011 15:44:42 OK C:\Windows\System32\eappcfg.dll
04/11/2011 15:44:42 OK explorer.exe\WINHTTP.dll
04/11/2011 15:44:42 OK C:\Windows\System32\BCRYPT.dll Object was not changed (iChecker)
04/11/2011 15:44:42 OK C:\Windows\System32\eappprxy.dll
04/11/2011 15:44:42 OK C:\Windows\System32\OneX.DLL
04/11/2011 15:44:42 OK C:\Windows\System32\Wlanapi.dll
04/11/2011 15:44:42 OK explorer.exe\wpdshserviceobj.dll
04/11/2011 15:44:42 OK C:\Windows\System32\MLANG.dll
04/11/2011 15:44:42 OK C:\Windows\System32\sxs.dll Object was not changed (iChecker)
04/11/2011 15:44:42 OK C:\Windows\System32\msi.dll
04/11/2011 15:44:42 OK C:\Windows\System32\actxprxy.dll
04/11/2011 15:44:42 OK explorer.exe\AltTab.dll
04/11/2011 15:44:42 OK C:\Windows\System32\pnidui.dll
04/11/2011 15:44:42 OK C:\Windows\System32\VERSION.dll Object was not changed (iChecker)
04/11/2011 15:44:42 OK C:\Windows\System32\msiltcfg.dll
04/11/2011 15:44:42 OK explorer.exe\bcrypt.dll
04/11/2011 15:44:42 OK C:\Windows\System32\netshell.dll
04/11/2011 15:44:41 OK explorer.exe\eappcfg.dll
04/11/2011 15:44:41 OK C:\Windows\System32\wlanutil.dll
04/11/2011 15:44:41 OK explorer.exe\eappprxy.dll
04/11/2011 15:44:41 OK C:\Windows\System32\QUtil.dll
04/11/2011 15:44:41 OK explorer.exe\OneX.DLL
04/11/2011 15:44:41 OK C:\Windows\System32\nlaapi.dll
04/11/2011 15:44:41 OK C:\Windows\System32\dhcpcsvc6.DLL Object was not changed (iChecker)
04/11/2011 15:44:41 OK C:\Windows\System32\WINNSI.DLL Object was not changed (iChecker)
04/11/2011 15:44:41 OK C:\Windows\System32\DNSAPI.dll Object was not changed (iChecker)
04/11/2011 15:44:41 OK C:\Windows\System32\dhcpcsvc.DLL Object was not changed (iChecker)
04/11/2011 15:44:41 OK C:\Windows\System32\IPHLPAPI.DLL Object was not changed (iChecker)
04/11/2011 15:44:41 OK C:\Windows\System32\ieframe.dll
04/11/2011 15:44:41 OK C:\Windows\System32\MMDevApi.dll
04/11/2011 15:44:41 OK explorer.exe\Wlanapi.dll
04/11/2011 15:44:41 OK explorer.exe\SXS.DLL
04/11/2011 15:44:41 OK C:\Windows\System32\SndVolSSO.dll
04/11/2011 15:44:41 OK C:\Windows\System32\es.dll
04/11/2011 15:44:41 OK explorer.exe\MLANG.dll
04/11/2011 15:44:41 OK C:\Windows\System32\cscapi.dll
04/11/2011 15:44:41 OK C:\Windows\System32\BatMeter.dll
04/11/2011 15:44:41 OK explorer.exe\actxprxy.dll
04/11/2011 15:44:41 OK C:\Windows\System32\urlmon.dll
04/11/2011 15:44:41 OK explorer.exe\msi.dll
04/11/2011 15:44:41 OK explorer.exe\VERSION.dll
04/11/2011 15:44:41 OK C:\Windows\System32\stobject.dll
04/11/2011 15:44:41 OK explorer.exe\msiltcfg.dll
04/11/2011 15:44:40 OK explorer.exe\wlanutil.dll
04/11/2011 15:44:40 OK explorer.exe\wevtapi.dll
04/11/2011 15:44:40 OK explorer.exe\QUtil.dll
04/11/2011 15:44:40 OK C:\Windows\System32\WININET.dll
04/11/2011 15:44:40 OK explorer.exe\pnidui.dll
04/11/2011 15:44:40 OK C:\Windows\System32\ExplorerFrame.dll
04/11/2011 15:44:40 OK explorer.exe\nlaapi.dll
04/11/2011 15:44:40 OK C:\Windows\System32\Normaliz.dll
04/11/2011 15:44:40 OK explorer.exe\dhcpcsvc6.DLL
04/11/2011 15:44:40 OK C:\Windows\System32\authui.dll
04/11/2011 15:44:40 OK C:\Windows\System32\LINKINFO.dll
04/11/2011 15:44:40 OK explorer.exe\WINNSI.DLL
04/11/2011 15:44:40 OK C:\Windows\System32\iertutil.dll
04/11/2011 15:44:40 OK explorer.exe\DNSAPI.dll
04/11/2011 15:44:40 OK explorer.exe\dhcpcsvc.DLL
04/11/2011 15:44:40 OK C:\Windows\System32\MSIMG32.dll
04/11/2011 15:44:40 OK explorer.exe\IPHLPAPI.DLL
04/11/2011 15:44:40 OK C:\Windows\System32\NLSData0009.dll
04/11/2011 15:44:40 OK C:\Windows\System32\NLSLexicons0009.dll
04/11/2011 15:44:40 OK explorer.exe\netshell.dll
04/11/2011 15:44:40 OK explorer.exe\MMDevApi.dll
04/11/2011 15:44:40 OK C:\Windows\System32\NaturalLanguage6.dll
04/11/2011 15:44:40 OK C:\Windows\System32\msshsq.dll
04/11/2011 15:44:40 OK explorer.exe\SndVolSSO.dll
04/11/2011 15:44:40 OK C:\Windows\System32\SHELL32.dll
04/11/2011 15:44:40 OK explorer.exe\es.dll
04/11/2011 15:44:40 OK C:\Windows\System32\apphelp.dll
04/11/2011 15:44:40 OK C:\Windows\System32\SAMLIB.dll Object was not changed (iChecker)
04/11/2011 15:44:40 OK explorer.exe\cscapi.dll
04/11/2011 15:44:40 OK C:\Windows\System32\shacct.dll
04/11/2011 15:44:40 OK explorer.exe\WINSTA.dll
04/11/2011 15:44:40 OK C:\Windows\System32\timedate.cpl
04/11/2011 15:44:40 OK explorer.exe\WTSAPI32.dll
04/11/2011 15:44:40 OK explorer.exe\SETUPAPI.dll
04/11/2011 15:44:40 OK C:\Windows\System32\OLEACC.dll
04/11/2011 15:44:40 OK explorer.exe\BatMeter.dll
04/11/2011 15:44:39 OK explorer.exe\stobject.dll
04/11/2011 15:44:39 OK C:\Windows\System32\IconCodecService.dll
04/11/2011 15:44:39 OK explorer.exe\NSI.dll
04/11/2011 15:44:39 OK C:\Windows\System32\WindowsCodecs.dll
04/11/2011 15:44:39 OK explorer.exe\WS2_32.dll
04/11/2011 15:44:39 OK explorer.exe\WLDAP32.dll
04/11/2011 15:44:39 OK C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
04/11/2011 15:44:39 OK explorer.exe\NTMARTA.DLL
04/11/2011 15:44:39 OK explorer.exe\urlmon.dll
04/11/2011 15:44:39 OK explorer.exe\ExplorerFrame.dll
04/11/2011 15:44:39 OK C:\Windows\System32\DUser.dll
04/11/2011 15:44:39 OK explorer.exe\Normaliz.dll
04/11/2011 15:44:39 OK C:\Windows\System32\BROWSEUI.dll
04/11/2011 15:44:39 OK C:\Windows\System32\IMM32.DLL Object was not changed (iChecker)
04/11/2011 15:44:39 OK explorer.exe\WININET.dll
04/11/2011 15:44:39 OK C:\Windows\System32\PROPSYS.dll
04/11/2011 15:44:39 OK explorer.exe\LINKINFO.dll
04/11/2011 15:44:39 OK explorer.exe\iertutil.dll
04/11/2011 15:44:39 OK explorer.exe\ieframe.dll
04/11/2011 15:44:39 OK C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16782_none_9ea1072ec96e0be7\gdiplus.dll
04/11/2011 15:44:39 OK explorer.exe\MSIMG32.dll
04/11/2011 15:44:39 OK C:\Windows\Explorer.EXE
04/11/2011 15:44:39 OK explorer.exe\authui.dll
04/11/2011 15:44:39 OK explorer.exe\NLSLexicons0009.dll
04/11/2011 15:44:39 OK explorer.exe\NLSData0009.dll
04/11/2011 15:44:39 OK explorer.exe\MSASN1.dll
04/11/2011 15:44:39 OK explorer.exe\CRYPT32.dll
04/11/2011 15:44:39 OK C:\Windows\System32\dwmapi.dll
04/11/2011 15:44:39 OK explorer.exe\NaturalLanguage6.dll
04/11/2011 15:44:39 OK explorer.exe\msshsq.dll
04/11/2011 15:44:39 OK explorer.exe\apphelp.dll
04/11/2011 15:44:38 OK C:\Windows\System32\UxTheme.dll
04/11/2011 15:44:38 OK explorer.exe\SAMLIB.dll
04/11/2011 15:44:38 OK explorer.exe\shacct.dll
04/11/2011 15:44:38 OK explorer.exe\Secur32.dll
04/11/2011 15:44:38 OK explorer.exe\USERENV.dll
04/11/2011 15:44:38 OK explorer.exe\WINBRAND.dll
04/11/2011 15:44:38 OK explorer.exe\OLEACC.dll
04/11/2011 15:44:38 OK explorer.exe\PSAPI.DLL
04/11/2011 15:44:38 OK explorer.exe\NETAPI32.dll
04/11/2011 15:44:38 OK explorer.exe\ATL.DLL
04/11/2011 15:44:38 OK C:\Windows\System32\SHDOCVW.dll
04/11/2011 15:44:38 OK explorer.exe\timedate.cpl
04/11/2011 15:44:38 OK explorer.exe\rsaenh.dll
04/11/2011 15:44:38 OK explorer.exe\CLBCatQ.DLL
04/11/2011 15:44:38 OK explorer.exe\IconCodecService.dll
04/11/2011 15:44:38 OK explorer.exe\WindowsCodecs.dll
04/11/2011 15:44:38 OK explorer.exe\comctl32.dll
04/11/2011 15:44:38 OK explorer.exe\USP10.dll
04/11/2011 15:44:38 OK explorer.exe\LPK.DLL
04/11/2011 15:44:38 OK explorer.exe\DUser.dll
04/11/2011 15:44:38 OK explorer.exe\MSCTF.dll
04/11/2011 15:44:38 OK explorer.exe\IMM32.dll
04/11/2011 15:44:38 OK explorer.exe\BROWSEUI.dll
04/11/2011 15:44:38 OK explorer.exe\PROPSYS.dll
04/11/2011 15:44:38 OK explorer.exe\slc.dll
04/11/2011 15:44:38 OK explorer.exe\gdiplus.dll
04/11/2011 15:44:38 OK explorer.exe\dwmapi.dll
04/11/2011 15:44:38 OK explorer.exe\POWRPROF.dll
04/11/2011 15:44:38 OK explorer.exe\UxTheme.dll
04/11/2011 15:44:38 OK explorer.exe\SHDOCVW.dll
04/11/2011 15:44:38 OK explorer.exe\OLEAUT32.dll
04/11/2011 15:44:38 OK explorer.exe\ole32.dll
04/11/2011 15:44:38 OK C:\Windows\System32\SHLWAPI.dll
04/11/2011 15:44:38 OK explorer.exe\SHELL32.dll
04/11/2011 15:44:38 OK explorer.exe\SHLWAPI.dll
04/11/2011 15:44:38 OK explorer.exe\msvcrt.dll
04/11/2011 15:44:38 OK explorer.exe\USER32.dll
04/11/2011 15:44:38 OK explorer.exe\GDI32.dll
04/11/2011 15:44:38 OK explorer.exe\RPCRT4.dll
04/11/2011 15:44:38 OK explorer.exe\ADVAPI32.dll
04/11/2011 15:44:38 OK explorer.exe\kernel32.dll
04/11/2011 15:44:38 OK explorer.exe\ntdll.dll
04/11/2011 15:44:38 OK explorer.exe\Explorer.EXE
04/11/2011 15:44:38 OK C:\Windows\System32\wbem\ncprov.dll
04/11/2011 15:44:38 OK C:\Windows\System32\wbem\wbemess.dll
04/11/2011 15:44:38 OK C:\Windows\System32\wbem\FastProx.dll
04/11/2011 15:44:38 OK C:\Windows\System32\wbem\wmiprvsd.dll
04/11/2011 15:44:38 OK C:\Windows\System32\wbem\repdrvfs.dll
04/11/2011 15:44:38 OK C:\Windows\System32\wbem\wmiutils.dll
04/11/2011 15:44:38 OK C:\Windows\System32\wbem\wbemcore.dll
04/11/2011 15:44:38 OK svchost.exe\ncprov.dll
04/11/2011 15:44:38 OK svchost.exe\wbemess.dll
04/11/2011 15:44:38 OK svchost.exe\NCObjAPI.DLL
04/11/2011 15:44:38 OK svchost.exe\wmiprvsd.dll
04/11/2011 15:44:38 OK C:\Windows\System32\wbem\esscli.dll
04/11/2011 15:44:38 OK svchost.exe\repdrvfs.dll
04/11/2011 15:44:38 OK svchost.exe\wmiutils.dll
04/11/2011 15:44:38 OK svchost.exe\Secur32.dll
04/11/2011 15:44:38 OK svchost.exe\DNSAPI.dll
04/11/2011 15:44:38 OK svchost.exe\NTDSAPI.dll
04/11/2011 15:44:38 OK svchost.exe\FastProx.dll
04/11/2011 15:44:38 OK C:\Windows\System32\XmlLite.dll Object was not changed (iChecker)
04/11/2011 15:44:38 OK svchost.exe\esscli.dll
04/11/2011 15:44:38 OK C:\Windows\System32\vsstrace.dll Object was not changed (iChecker)
04/11/2011 15:44:38 OK C:\Windows\System32\ATL.DLL Object was not changed (iChecker)
04/11/2011 15:44:38 OK svchost.exe\wbemcore.dll
04/11/2011 15:44:38 OK svchost.exe\SETUPAPI.dll
04/11/2011 15:44:38 OK svchost.exe\MPR.dll
04/11/2011 15:44:38 OK svchost.exe\NETAPI32.dll
04/11/2011 15:44:38 OK C:\Windows\System32\VSSAPI.DLL Object was not changed (iChecker)
04/11/2011 15:44:38 OK C:\Windows\System32\wbem\wbemcomn.dll
04/11/2011 15:44:38 OK svchost.exe\XmlLite.dll
04/11/2011 15:44:38 OK svchost.exe\AUTHZ.dll
04/11/2011 15:44:38 OK svchost.exe\vsstrace.dll
04/11/2011 15:44:38 OK svchost.exe\ATL.DLL
04/11/2011 15:44:38 OK svchost.exe\VSSAPI.DLL
04/11/2011 15:44:38 OK svchost.exe\rsaenh.dll
04/11/2011 15:44:38 OK svchost.exe\CLBCatQ.DLL
04/11/2011 15:44:38 OK svchost.exe\OLEAUT32.dll
04/11/2011 15:44:38 OK C:\Windows\System32\wbem\wmisvc.dll
04/11/2011 15:44:38 OK svchost.exe\wbemcomn.dll
04/11/2011 15:44:38 OK svchost.exe\wmisvc.dll
04/11/2011 15:44:38 OK svchost.exe\USP10.dll
04/11/2011 15:44:38 OK svchost.exe\LPK.DLL
04/11/2011 15:44:38 OK svchost.exe\MSCTF.dll
04/11/2011 15:44:38 OK svchost.exe\IMM32.DLL
04/11/2011 15:44:38 OK svchost.exe\ole32.dll
04/11/2011 15:44:38 OK svchost.exe\SAMLIB.dll
04/11/2011 15:44:38 OK svchost.exe\PSAPI.DLL
04/11/2011 15:44:38 OK svchost.exe\NSI.dll
04/11/2011 15:44:38 OK svchost.exe\WS2_32.dll
04/11/2011 15:44:38 OK svchost.exe\WLDAP32.dll
04/11/2011 15:44:38 OK svchost.exe\GDI32.dll
04/11/2011 15:44:38 OK svchost.exe\USER32.dll
04/11/2011 15:44:38 OK svchost.exe\NTMARTA.DLL
04/11/2011 15:44:38 OK svchost.exe\RPCRT4.dll
04/11/2011 15:44:38 OK svchost.exe\ADVAPI32.dll
04/11/2011 15:44:38 OK svchost.exe\msvcrt.dll
04/11/2011 15:44:38 OK svchost.exe\kernel32.dll
04/11/2011 15:44:38 OK svchost.exe\ntdll.dll
04/11/2011 15:44:38 OK svchost.exe\svchost.exe
04/11/2011 15:44:38 OK C:\Windows\System32\ESENT.dll
04/11/2011 15:44:38 OK C:\Windows\System32\Cabinet.dll
04/11/2011 15:44:38 OK C:\Windows\System32\vsstrace.dll
04/11/2011 15:44:38 OK C:\Windows\System32\XmlLite.dll
04/11/2011 15:44:36 OK C:\Windows\System32\MSASN1.dll Object was not changed (iChecker)
04/11/2011 15:44:36 OK C:\Windows\System32\CRYPT32.dll Object was not changed (iChecker)
04/11/2011 15:44:36 OK C:\Windows\System32\MPR.dll Object was not changed (iChecker)
04/11/2011 15:44:36 OK C:\Windows\System32\NETAPI32.dll Object was not changed (iChecker)
04/11/2011 15:44:36 OK C:\Windows\System32\ATL.DLL
04/11/2011 15:44:36 OK C:\Windows\System32\AUTHZ.dll Object was not changed (iChecker)
04/11/2011 15:44:36 OK C:\Windows\System32\VSSAPI.DLL
04/11/2011 15:44:35 OK svchost.exe\Cabinet.dll
04/11/2011 15:44:35 OK C:\Windows\System32\cryptsvc.dll
04/11/2011 15:44:35 OK svchost.exe\ESENT.dll
04/11/2011 15:44:35 OK svchost.exe\Secur32.dll
04/11/2011 15:44:34 OK svchost.exe\USERENV.dll
04/11/2011 15:44:34 OK svchost.exe\MSASN1.dll
04/11/2011 15:44:34 OK svchost.exe\CRYPT32.dll
04/11/2011 15:44:34 OK svchost.exe\SETUPAPI.dll
04/11/2011 15:44:33 OK svchost.exe\MPR.dll
04/11/2011 15:44:33 OK svchost.exe\NETAPI32.dll
04/11/2011 15:44:33 OK svchost.exe\XmlLite.dll
04/11/2011 15:44:33 OK svchost.exe\AUTHZ.dll
04/11/2011 15:44:32 OK svchost.exe\vsstrace.dll
04/11/2011 15:44:32 OK svchost.exe\ATL.DLL
04/11/2011 15:44:32 OK svchost.exe\VSSAPI.DLL
04/11/2011 15:44:32 OK svchost.exe\OLEAUT32.dll
04/11/2011 15:44:32 OK svchost.exe\cryptsvc.dll
04/11/2011 15:44:31 OK svchost.exe\USP10.dll
04/11/2011 15:44:31 OK svchost.exe\LPK.DLL
04/11/2011 15:44:31 OK svchost.exe\MSCTF.dll
04/11/2011 15:44:31 OK svchost.exe\IMM32.DLL
04/11/2011 15:44:30 OK svchost.exe\ole32.dll
04/11/2011 15:44:30 OK svchost.exe\SAMLIB.dll
04/11/2011 15:44:30 OK svchost.exe\PSAPI.DLL
04/11/2011 15:44:30 OK svchost.exe\NSI.dll
04/11/2011 15:44:30 OK svchost.exe\WS2_32.dll
04/11/2011 15:44:29 OK svchost.exe\WLDAP32.dll
04/11/2011 15:44:29 OK svchost.exe\GDI32.dll
04/11/2011 15:44:29 OK svchost.exe\USER32.dll
04/11/2011 15:44:29 OK svchost.exe\NTMARTA.DLL
04/11/2011 15:44:28 OK svchost.exe\RPCRT4.dll
04/11/2011 15:44:28 OK svchost.exe\ADVAPI32.dll
04/11/2011 15:44:28 OK svchost.exe\msvcrt.dll
04/11/2011 15:44:28 OK svchost.exe\kernel32.dll
04/11/2011 15:44:28 OK svchost.exe\ntdll.dll
04/11/2011 15:44:27 OK svchost.exe\svchost.exe
04/11/2011 15:44:27 OK svchost.exe\wshtcpip.dll
04/11/2011 15:44:27 OK svchost.exe\mswsock.dll
04/11/2011 15:44:27 OK svchost.exe\NSI.dll
04/11/2011 15:44:26 OK svchost.exe\WS2_32.dll
04/11/2011 15:44:26 OK svchost.exe\PSAPI.DLL
04/11/2011 15:44:26 OK C:\Windows\System32\NETAPI32.dll Object was not changed (iChecker)
04/11/2011 15:44:26 OK svchost.exe\NETAPI32.dll
04/11/2011 15:44:26 OK svchost.exe\schannel.dll
04/11/2011 15:44:26 OK C:\Windows\System32\credssp.dll Object was not changed (iChecker)
04/11/2011 15:44:26 OK svchost.exe\credssp.dll
04/11/2011 15:44:25 OK C:\Windows\System32\wevtsvc.dll
04/11/2011 15:44:25 OK C:\Windows\System32\MSASN1.dll Object was not changed (iChecker)
04/11/2011 15:44:25 OK svchost.exe\MSASN1.dll
04/11/2011 15:44:25 OK C:\Windows\System32\CRYPT32.dll Object was not changed (iChecker)
04/11/2011 15:44:25 OK svchost.exe\CRYPT32.dll
04/11/2011 15:44:25 OK svchost.exe\USP10.dll
04/11/2011 15:44:25 OK svchost.exe\LPK.DLL
04/11/2011 15:44:24 OK svchost.exe\MSCTF.dll
04/11/2011 15:44:24 OK svchost.exe\IMM32.DLL
04/11/2011 15:44:24 OK C:\Windows\System32\slc.dll Object was not changed (iChecker)
04/11/2011 15:44:24 OK svchost.exe\slc.dll
04/11/2011 15:44:24 OK C:\Windows\System32\GPAPI.dll Object was not changed (iChecker)
04/11/2011 15:44:24 OK svchost.exe\GPAPI.dll
04/11/2011 15:44:23 OK svchost.exe\VERSION.dll
04/11/2011 15:44:23 OK svchost.exe\GDI32.dll
04/11/2011 15:44:23 OK svchost.exe\USER32.dll
04/11/2011 15:44:23 OK svchost.exe\Secur32.dll
04/11/2011 15:44:23 OK svchost.exe\USERENV.dll
04/11/2011 15:44:22 OK svchost.exe\wevtsvc.dll
04/11/2011 15:44:22 OK svchost.exe\RPCRT4.dll
04/11/2011 15:44:22 OK svchost.exe\ADVAPI32.dll
04/11/2011 15:44:22 OK svchost.exe\msvcrt.dll
04/11/2011 15:44:22 OK svchost.exe\kernel32.dll
04/11/2011 15:44:21 OK svchost.exe\ntdll.dll
04/11/2011 15:44:21 OK C:\Windows\System32\svchost.exe Object was not changed (iChecker)
04/11/2011 15:44:21 OK svchost.exe\svchost.exe
04/11/2011 15:44:21 OK svchost.exe\CLBCatQ.DLL
04/11/2011 15:44:21 OK svchost.exe\wshtcpip.dll
04/11/2011 15:44:21 OK svchost.exe\mswsock.dll
04/11/2011 15:44:21 OK svchost.exe\rsaenh.dll
04/11/2011 15:44:21 OK svchost.exe\PSAPI.DLL
04/11/2011 15:44:20 OK svchost.exe\NETAPI32.dll
04/11/2011 15:44:20 OK svchost.exe\schannel.dll
04/11/2011 15:44:20 OK svchost.exe\credssp.dll
04/11/2011 15:44:20 OK svchost.exe\USERENV.dll
04/11/2011 15:44:20 OK svchost.exe\MSASN1.dll
04/11/2011 15:44:20 OK svchost.exe\CRYPT32.dll
04/11/2011 15:44:20 OK svchost.exe\USP10.dll
04/11/2011 15:44:20 OK svchost.exe\LPK.DLL
04/11/2011 15:44:20 OK svchost.exe\MSCTF.dll
04/11/2011 15:44:20 OK svchost.exe\IMM32.DLL
04/11/2011 15:44:20 OK svchost.exe\VERSION.dll
04/11/2011 15:44:19 OK svchost.exe\ole32.dll
04/11/2011 15:44:19 OK svchost.exe\OLEAUT32.dll
04/11/2011 15:44:19 OK svchost.exe\GDI32.dll
04/11/2011 15:44:19 OK svchost.exe\USER32.dll
04/11/2011 15:44:19 OK svchost.exe\FirewallAPI.dll
04/11/2011 15:44:19 OK svchost.exe\Secur32.dll
04/11/2011 15:44:19 OK svchost.exe\NSI.dll
04/11/2011 15:44:19 OK svchost.exe\WS2_32.dll
04/11/2011 15:44:19 OK svchost.exe\rpcss.dll
04/11/2011 15:44:19 OK svchost.exe\RPCRT4.dll
04/11/2011 15:44:19 OK svchost.exe\ADVAPI32.dll
04/11/2011 15:44:19 OK svchost.exe\msvcrt.dll
04/11/2011 15:44:19 OK svchost.exe\kernel32.dll
04/11/2011 15:44:19 OK svchost.exe\ntdll.dll
04/11/2011 15:44:19 OK svchost.exe\svchost.exe
04/11/2011 15:44:19 OK svchost.exe\SAMLIB.dll
04/11/2011 15:44:19 OK svchost.exe\WLDAP32.dll
04/11/2011 15:44:18 OK C:\Windows\System32\setupapi.dll Object was not changed (iChecker)
04/11/2011 15:44:18 OK svchost.exe\NTMARTA.DLL
04/11/2011 15:44:18 OK C:\Windows\System32\WTSAPI32.dll
04/11/2011 15:44:18 OK svchost.exe\SETUPAPI.dll
04/11/2011 15:44:18 OK svchost.exe\WTSAPI32.dll
04/11/2011 15:44:18 OK C:\Windows\System32\CLBCatQ.DLL
04/11/2011 15:44:18 OK svchost.exe\WINSTA.dll
04/11/2011 15:44:18 OK svchost.exe\CLBCatQ.DLL
04/11/2011 15:44:18 OK svchost.exe\PSAPI.DLL
04/11/2011 15:44:18 OK svchost.exe\NETAPI32.dll
04/11/2011 15:44:18 OK svchost.exe\schannel.dll
04/11/2011 15:44:18 OK svchost.exe\credssp.dll
04/11/2011 15:44:18 OK svchost.exe\MSASN1.dll
04/11/2011 15:44:18 OK C:\Windows\System32\VERSION.dll
04/11/2011 15:44:18 OK svchost.exe\CRYPT32.dll
04/11/2011 15:44:18 OK svchost.exe\VERSION.dll
04/11/2011 15:44:18 OK svchost.exe\ole32.dll
04/11/2011 15:44:18 OK C:\Windows\System32\FirewallAPI.dll
04/11/2011 15:44:18 OK svchost.exe\OLEAUT32.dll
04/11/2011 15:44:18 OK svchost.exe\FirewallAPI.dll
04/11/2011 15:44:18 OK C:\Windows\System32\rpcss.dll
04/11/2011 15:44:18 OK svchost.exe\NSI.dll
04/11/2011 15:44:18 OK svchost.exe\WS2_32.dll
04/11/2011 15:44:18 OK svchost.exe\rpcss.dll
04/11/2011 15:44:18 OK svchost.exe\slc.dll
04/11/2011 15:44:18 OK C:\Windows\System32\POWRPROF.dll
04/11/2011 15:44:18 OK svchost.exe\GPAPI.dll
04/11/2011 15:44:18 OK svchost.exe\POWRPROF.dll
04/11/2011 15:44:18 OK svchost.exe\USP10.dll
04/11/2011 15:44:18 OK svchost.exe\LPK.DLL
04/11/2011 15:44:18 OK svchost.exe\MSCTF.dll
04/11/2011 15:44:17 OK svchost.exe\IMM32.DLL
04/11/2011 15:44:17 OK C:\Windows\System32\Secur32.dll Object was not changed (iChecker)
04/11/2011 15:44:17 OK svchost.exe\Secur32.dll
04/11/2011 15:44:17 OK C:\Windows\System32\USERENV.dll Object was not changed (iChecker)
04/11/2011 15:44:17 OK svchost.exe\USERENV.dll
04/11/2011 15:44:17 OK svchost.exe\GDI32.dll
04/11/2011 15:44:17 OK C:\Windows\System32\umpnpmgr.dll
04/11/2011 15:44:17 OK svchost.exe\USER32.dll
04/11/2011 15:44:17 OK svchost.exe\umpnpmgr.dll
04/11/2011 15:44:17 OK svchost.exe\RPCRT4.dll
04/11/2011 15:44:17 OK svchost.exe\ADVAPI32.dll
04/11/2011 15:44:17 OK svchost.exe\msvcrt.dll
04/11/2011 15:44:17 OK svchost.exe\kernel32.dll
04/11/2011 15:44:17 OK C:\Windows\System32\svchost.exe
04/11/2011 15:44:17 OK svchost.exe\ntdll.dll
04/11/2011 15:44:17 OK svchost.exe\svchost.exe
04/11/2011 15:44:17 OK lsm.exe\PSAPI.DLL
04/11/2011 15:44:17 OK lsm.exe\NETAPI32.dll
04/11/2011 15:44:17 OK lsm.exe\schannel.dll
04/11/2011 15:44:17 OK lsm.exe\credssp.dll
04/11/2011 15:44:17 OK lsm.exe\USP10.dll
04/11/2011 15:44:17 OK lsm.exe\LPK.DLL
04/11/2011 15:44:17 OK lsm.exe\MSCTF.dll
04/11/2011 15:44:17 OK lsm.exe\IMM32.DLL
04/11/2011 15:44:17 OK lsm.exe\USERENV.dll
04/11/2011 15:44:17 OK lsm.exe\MSASN1.dll
04/11/2011 15:44:17 OK lsm.exe\GDI32.dll
04/11/2011 15:44:17 OK lsm.exe\USER32.dll
04/11/2011 15:44:17 OK C:\Windows\System32\WMsgAPI.dll
04/11/2011 15:44:17 OK lsm.exe\CRYPT32.dll
04/11/2011 15:44:17 OK C:\Windows\System32\Secur32.dll Object was not changed (iChecker)
04/11/2011 15:44:17 OK lsm.exe\secur32.dll
04/11/2011 15:44:17 OK C:\Windows\System32\lsm.exe
04/11/2011 15:44:17 OK lsm.exe\WMsgAPI.dll
04/11/2011 15:44:17 OK lsm.exe\SYSNTFY.dll
04/11/2011 15:44:17 OK lsm.exe\msvcrt.dll
04/11/2011 15:44:17 OK lsm.exe\RPCRT4.dll
04/11/2011 15:44:17 OK lsm.exe\ADVAPI32.dll
04/11/2011 15:44:17 OK lsm.exe\kernel32.dll
04/11/2011 15:44:17 OK lsm.exe\ntdll.dll
04/11/2011 15:44:17 OK lsm.exe\lsm.exe
04/11/2011 15:44:17 OK C:\Windows\System32\keyiso.dll
04/11/2011 15:44:16 OK C:\Windows\System32\setupapi.dll
04/11/2011 15:44:16 OK C:\Windows\System32\scecli.dll
04/11/2011 15:44:16 OK C:\Windows\System32\OLEAUT32.dll
04/11/2011 15:44:16 OK C:\Windows\System32\WINBRAND.dll
04/11/2011 15:44:16 OK C:\Windows\System32\GPAPI.dll
04/11/2011 15:44:16 OK C:\Windows\System32\tspkg.dll
04/11/2011 15:44:16 OK C:\Windows\System32\netlogon.dll
04/11/2011 15:44:16 OK lsass.exe\keyiso.dll
04/11/2011 15:44:16 OK C:\Windows\System32\rsaenh.dll
04/11/2011 15:44:16 OK lsass.exe\scecli.dll
04/11/2011 15:44:16 OK lsass.exe\ole32.dll
04/11/2011 15:44:16 OK lsass.exe\OLEAUT32.dll
04/11/2011 15:44:16 OK C:\Windows\System32\wdigest.dll
04/11/2011 15:44:16 OK lsass.exe\setupapi.dll
04/11/2011 15:44:16 OK lsass.exe\GPAPI.dll
04/11/2011 15:44:16 OK lsass.exe\tspkg.dll
04/11/2011 15:44:16 OK lsass.exe\rsaenh.dll
04/11/2011 15:44:16 OK lsass.exe\wdigest.dll
04/11/2011 15:44:16 OK lsass.exe\schannel.dll
04/11/2011 15:44:16 OK C:\Windows\System32\msv1_0.dll
04/11/2011 15:44:16 OK lsass.exe\WINBRAND.dll
04/11/2011 15:44:16 OK C:\Windows\System32\kerberos.dll
04/11/2011 15:44:16 OK lsass.exe\netlogon.dll
04/11/2011 15:44:16 OK C:\Windows\System32\wship6.dll
04/11/2011 15:44:16 OK C:\Windows\System32\BCRYPT.dll
04/11/2011 15:44:16 OK C:\Windows\System32\msprivs.dll
04/11/2011 15:44:16 OK lsass.exe\msv1_0.dll
04/11/2011 15:44:16 OK lsass.exe\wshtcpip.dll
04/11/2011 15:44:16 OK C:\Windows\System32\ncrypt.dll
04/11/2011 15:44:16 OK C:\Windows\System32\cngaudit.dll
04/11/2011 15:44:16 OK lsass.exe\wship6.dll
04/11/2011 15:44:16 OK lsass.exe\mswsock.dll
04/11/2011 15:44:16 OK lsass.exe\kerberos.dll
04/11/2011 15:44:16 OK C:\Windows\System32\dhcpcsvc6.DLL
04/11/2011 15:44:16 OK C:\Windows\System32\dhcpcsvc.DLL
04/11/2011 15:44:16 OK lsass.exe\msprivs.dll
04/11/2011 15:44:16 OK lsass.exe\credssp.dll
04/11/2011 15:44:16 OK lsass.exe\BCRYPT.dll
04/11/2011 15:44:16 OK C:\Windows\System32\WINNSI.DLL
04/11/2011 15:44:16 OK C:\Windows\System32\DNSAPI.dll
04/11/2011 15:44:16 OK lsass.exe\ncrypt.dll
04/11/2011 15:44:16 OK lsass.exe\AUTHZ.dll
04/11/2011 15:44:16 OK C:\Windows\System32\IPHLPAPI.DLL
04/11/2011 15:44:16 OK lsass.exe\cngaudit.dll
04/11/2011 15:44:16 OK lsass.exe\USP10.dll
04/11/2011 15:44:16 OK lsass.exe\LPK.DLL
04/11/2011 15:44:16 OK lsass.exe\MSCTF.dll
04/11/2011 15:44:16 OK lsass.exe\IMM32.DLL
04/11/2011 15:44:16 OK lsass.exe\dhcpcsvc6.DLL
04/11/2011 15:44:16 OK C:\Windows\System32\wevtapi.dll
04/11/2011 15:44:16 OK lsass.exe\WINNSI.DLL
04/11/2011 15:44:16 OK lsass.exe\dhcpcsvc.DLL
04/11/2011 15:44:16 OK lsass.exe\IPHLPAPI.DLL
04/11/2011 15:44:16 OK C:\Windows\System32\FeClient.dll
04/11/2011 15:44:16 OK C:\Windows\System32\SYSNTFY.dll
04/11/2011 15:44:16 OK lsass.exe\wevtapi.dll
04/11/2011 15:44:16 OK C:\Windows\System32\NTDSAPI.dll
04/11/2011 15:44:16 OK C:\Windows\System32\cryptdll.dll
04/11/2011 15:44:16 OK C:\Windows\System32\LSASRV.dll
04/11/2011 15:44:16 OK lsass.exe\SYSNTFY.dll
04/11/2011 15:44:16 OK lsass.exe\slc.dll
04/11/2011 15:44:16 OK lsass.exe\CRYPT32.dll
04/11/2011 15:44:16 OK lsass.exe\USERENV.dll
04/11/2011 15:44:16 OK lsass.exe\MPR.dll
04/11/2011 15:44:16 OK C:\Windows\System32\SAMSRV.dll
04/11/2011 15:44:16 OK lsass.exe\FeClient.dll
04/11/2011 15:44:16 OK lsass.exe\WLDAP32.dll
04/11/2011 15:44:16 OK lsass.exe\NTDSAPI.dll
04/11/2011 15:44:16 OK lsass.exe\MSASN1.dll
04/11/2011 15:44:16 OK lsass.exe\SAMLIB.dll
04/11/2011 15:44:16 OK lsass.exe\PSAPI.DLL
04/11/2011 15:44:16 OK lsass.exe\NETAPI32.dll
04/11/2011 15:44:16 OK lsass.exe\NSI.dll
04/11/2011 15:44:16 OK lsass.exe\WS2_32.dll
04/11/2011 15:44:16 OK lsass.exe\DNSAPI.dll
04/11/2011 15:44:16 OK lsass.exe\cryptdll.dll
04/11/2011 15:44:16 OK lsass.exe\SAMSRV.dll
04/11/2011 15:44:16 OK lsass.exe\GDI32.dll
04/11/2011 15:44:16 OK lsass.exe\USER32.dll
04/11/2011 15:44:16 OK lsass.exe\Secur32.dll
04/11/2011 15:44:16 OK lsass.exe\msvcrt.dll
04/11/2011 15:44:16 OK C:\Windows\System32\lsass.exe
04/11/2011 15:44:16 OK lsass.exe\LSASRV.dll
04/11/2011 15:44:16 OK lsass.exe\RPCRT4.dll
04/11/2011 15:44:16 OK lsass.exe\ADVAPI32.dll
04/11/2011 15:44:16 OK lsass.exe\kernel32.dll
04/11/2011 15:44:16 OK lsass.exe\ntdll.dll
04/11/2011 15:44:16 OK lsass.exe\lsass.exe
04/11/2011 15:44:16 OK C:\Windows\System32\CRYPT32.dll
04/11/2011 15:44:16 OK C:\Windows\System32\schannel.dll
04/11/2011 15:44:16 OK C:\Windows\System32\MSASN1.dll
04/11/2011 15:44:16 OK C:\Windows\System32\credssp.dll
04/11/2011 15:44:16 OK services.exe\wshtcpip.dll
04/11/2011 15:44:16 OK services.exe\mswsock.dll
04/11/2011 15:44:16 OK services.exe\ole32.dll
04/11/2011 15:44:16 OK services.exe\SAMLIB.dll
04/11/2011 15:44:16 OK services.exe\NSI.dll
04/11/2011 15:44:16 OK services.exe\WS2_32.dll
04/11/2011 15:44:16 OK services.exe\WLDAP32.dll
04/11/2011 15:44:16 OK services.exe\NTMARTA.DLL
04/11/2011 15:44:16 OK services.exe\schannel.dll
04/11/2011 15:44:16 OK C:\Windows\System32\NCObjAPI.DLL
04/11/2011 15:44:16 OK services.exe\credssp.dll
04/11/2011 15:44:16 OK C:\Windows\System32\AUTHZ.dll
04/11/2011 15:44:16 OK services.exe\MSASN1.dll
04/11/2011 15:44:16 OK C:\Windows\System32\SCESRV.dll
04/11/2011 15:44:16 OK services.exe\CRYPT32.dll
04/11/2011 15:44:16 OK services.exe\USP10.dll
04/11/2011 15:44:16 OK services.exe\LPK.DLL
04/11/2011 15:44:16 OK services.exe\MSCTF.dll
04/11/2011 15:44:16 OK services.exe\IMM32.DLL
04/11/2011 15:44:16 OK services.exe\NCObjAPI.DLL
04/11/2011 15:44:16 OK services.exe\PSAPI.DLL
04/11/2011 15:44:16 OK services.exe\NETAPI32.dll
04/11/2011 15:44:16 OK services.exe\AUTHZ.dll
04/11/2011 15:44:16 OK services.exe\SCESRV.dll
04/11/2011 15:44:16 OK services.exe\Secur32.dll
04/11/2011 15:44:16 OK services.exe\USERENV.dll
04/11/2011 15:44:15 OK services.exe\msvcrt.dll
04/11/2011 15:44:15 OK services.exe\GDI32.dll
04/11/2011 15:44:15 OK services.exe\USER32.dll
04/11/2011 15:44:15 OK services.exe\RPCRT4.dll
04/11/2011 15:44:15 OK services.exe\ADVAPI32.dll
04/11/2011 15:44:15 OK services.exe\kernel32.dll
04/11/2011 15:44:15 OK C:\Windows\System32\services.exe
04/11/2011 15:44:15 OK services.exe\ntdll.dll
04/11/2011 15:44:15 OK services.exe\services.exe
04/11/2011 15:44:15 OK C:\Windows\System32\MPR.dll
04/11/2011 15:44:15 OK C:\Windows\System32\slc.dll
04/11/2011 15:44:15 OK winlogon.exe\MPR.dll
04/11/2011 15:44:15 OK C:\Windows\System32\NETAPI32.dll
04/11/2011 15:44:15 OK winlogon.exe\slc.dll
04/11/2011 15:44:15 OK C:\Windows\System32\SHSVCS.dll
04/11/2011 15:44:15 OK winlogon.exe\NETAPI32.dll
04/11/2011 15:44:15 OK C:\Windows\System32\ole32.dll
04/11/2011 15:44:15 OK winlogon.exe\SHSVCS.dll
04/11/2011 15:44:15 OK C:\Windows\System32\SAMLIB.dll
04/11/2011 15:44:15 OK winlogon.exe\ole32.dll
04/11/2011 15:44:14 OK winlogon.exe\SAMLIB.dll
04/11/2011 15:44:14 OK winlogon.exe\NSI.dll
04/11/2011 15:44:14 OK C:\Windows\System32\WLDAP32.dll
04/11/2011 15:44:14 OK winlogon.exe\WS2_32.dll
04/11/2011 15:44:14 OK C:\Windows\System32\NTMARTA.DLL
04/11/2011 15:44:14 OK winlogon.exe\WLDAP32.dll
04/11/2011 15:44:14 OK winlogon.exe\NTMARTA.DLL
04/11/2011 15:44:14 OK winlogon.exe\USP10.dll
04/11/2011 15:44:14 OK winlogon.exe\LPK.DLL
04/11/2011 15:44:14 OK winlogon.exe\MSCTF.dll
04/11/2011 15:44:14 OK winlogon.exe\IMM32.DLL
04/11/2011 15:44:14 OK C:\Windows\System32\PSAPI.DLL
04/11/2011 15:44:14 OK winlogon.exe\USERENV.dll
04/11/2011 15:44:14 OK C:\Windows\System32\WINSTA.dll
04/11/2011 15:44:14 OK winlogon.exe\PSAPI.DLL
04/11/2011 15:44:14 OK winlogon.exe\WINSTA.dll
04/11/2011 15:44:14 OK winlogon.exe\Secur32.dll
04/11/2011 15:44:14 OK winlogon.exe\msvcrt.dll
04/11/2011 15:44:14 OK winlogon.exe\GDI32.dll
04/11/2011 15:44:14 OK winlogon.exe\USER32.dll
04/11/2011 15:44:14 OK winlogon.exe\RPCRT4.dll
04/11/2011 15:44:14 OK winlogon.exe\ADVAPI32.dll
04/11/2011 15:44:14 OK winlogon.exe\kernel32.dll
04/11/2011 15:44:14 OK winlogon.exe\ntdll.dll
04/11/2011 15:44:14 OK C:\Windows\System32\winlogon.exe
04/11/2011 15:44:14 OK winlogon.exe\winlogon.exe
04/11/2011 15:44:14 OK C:\Windows\System32\wshtcpip.dll
04/11/2011 15:44:14 OK C:\Windows\System32\mswsock.dll
04/11/2011 15:44:14 OK C:\Windows\System32\MSCTF.dll
04/11/2011 15:44:14 OK wininit.exe\wshtcpip.dll
04/11/2011 15:44:14 OK C:\Windows\System32\NSI.dll
04/11/2011 15:44:14 OK C:\Windows\System32\IMM32.DLL
04/11/2011 15:44:13 OK C:\Windows\System32\WS2_32.dll
04/11/2011 15:44:13 OK wininit.exe\mswsock.dll
04/11/2011 15:44:13 OK wininit.exe\NSI.dll
04/11/2011 15:44:13 OK wininit.exe\WS2_32.dll
04/11/2011 15:44:13 OK wininit.exe\USP10.dll
04/11/2011 15:44:13 OK wininit.exe\LPK.DLL
04/11/2011 15:44:13 OK wininit.exe\MSCTF.dll
04/11/2011 15:44:13 OK C:\Windows\System32\Secur32.dll
04/11/2011 15:44:13 OK wininit.exe\IMM32.DLL
04/11/2011 15:44:13 OK C:\Windows\System32\USERENV.dll
04/11/2011 15:44:13 OK C:\Windows\System32\KERNEL32.dll Object was not changed (iChecker)
04/11/2011 15:44:13 OK wininit.exe\Secur32.dll
04/11/2011 15:44:13 OK wininit.exe\USERENV.dll
04/11/2011 15:44:13 OK wininit.exe\msvcrt.dll
04/11/2011 15:44:13 OK wininit.exe\GDI32.dll
04/11/2011 15:44:13 OK wininit.exe\USER32.dll
04/11/2011 15:44:13 OK wininit.exe\RPCRT4.dll
04/11/2011 15:44:13 OK wininit.exe\ADVAPI32.dll
04/11/2011 15:44:13 OK C:\Windows\System32\wininit.exe
04/11/2011 15:44:13 OK wininit.exe\kernel32.dll
04/11/2011 15:44:13 OK wininit.exe\ntdll.dll
04/11/2011 15:44:13 OK wininit.exe\wininit.exe
04/11/2011 15:44:13 OK csrss.exe\sxs.dll
04/11/2011 15:44:13 OK csrss.exe\msvcrt.dll
04/11/2011 15:44:13 OK csrss.exe\USP10.dll
04/11/2011 15:44:13 OK csrss.exe\LPK.DLL
04/11/2011 15:44:13 OK csrss.exe\RPCRT4.dll
04/11/2011 15:44:13 OK csrss.exe\ADVAPI32.dll
04/11/2011 15:44:13 OK csrss.exe\GDI32.dll
04/11/2011 15:44:13 OK csrss.exe\KERNEL32.dll
04/11/2011 15:44:13 OK csrss.exe\USER32.dll
04/11/2011 15:44:13 OK csrss.exe\winsrv.dll
04/11/2011 15:44:13 OK csrss.exe\basesrv.dll
04/11/2011 15:44:13 OK csrss.exe\CSRSRV.dll
04/11/2011 15:44:13 OK csrss.exe\ntdll.dll
04/11/2011 15:44:13 OK csrss.exe\csrss.exe
04/11/2011 15:44:13 OK C:\Windows\System32\msvcrt.dll
04/11/2011 15:44:13 OK C:\Windows\System32\sxs.dll
04/11/2011 15:44:13 OK C:\Windows\System32\USP10.dll
04/11/2011 15:44:13 OK C:\Windows\System32\LPK.DLL
04/11/2011 15:44:13 OK C:\Windows\System32\RPCRT4.dll
04/11/2011 15:44:13 OK C:\Windows\System32\ADVAPI32.dll
04/11/2011 15:44:13 OK C:\Windows\System32\KERNEL32.dll
04/11/2011 15:44:13 OK csrss.exe\sxs.dll
04/11/2011 15:44:13 OK C:\Windows\System32\USER32.dll
04/11/2011 15:44:13 OK C:\Windows\System32\GDI32.dll
04/11/2011 15:44:13 OK csrss.exe\msvcrt.dll
04/11/2011 15:44:13 OK csrss.exe\USP10.dll
04/11/2011 15:44:13 OK csrss.exe\LPK.DLL
04/11/2011 15:44:13 OK csrss.exe\RPCRT4.dll
04/11/2011 15:44:13 OK csrss.exe\ADVAPI32.dll
04/11/2011 15:44:13 OK csrss.exe\GDI32.dll
04/11/2011 15:44:13 OK csrss.exe\KERNEL32.dll
04/11/2011 15:44:13 OK C:\Windows\System32\winsrv.dll
04/11/2011 15:44:13 OK csrss.exe\USER32.dll
04/11/2011 15:44:13 OK C:\Windows\System32\basesrv.dll
04/11/2011 15:44:13 OK csrss.exe\winsrv.dll
04/11/2011 15:44:13 OK C:\Windows\System32\CSRSRV.dll
04/11/2011 15:44:13 OK csrss.exe\basesrv.dll
04/11/2011 15:44:13 OK C:\Windows\System32\csrss.exe
04/11/2011 15:44:13 OK csrss.exe\CSRSRV.dll
04/11/2011 15:44:13 OK csrss.exe\ntdll.dll
04/11/2011 15:44:13 OK csrss.exe\csrss.exe
04/11/2011 15:44:13 OK C:\Windows\System32\ntdll.dll
04/11/2011 15:44:13 OK C:\Windows\System32\smss.exe
04/11/2011 15:44:13 OK smss.exe\ntdll.dll
04/11/2011 15:44:13 OK smss.exe\smss.exe
04/11/2011 15:44:13 OK System Memory
04/11/2011 15:44:13 Task started
Automatic Scan: completed 3 minutes ago (events: 1934, objects: 1974, time: 00:02:20)
04/11/2011 15:53:16 Task completed
04/11/2011 15:53:16 OK E:\boot_area0000
04/11/2011 15:53:15 OK F:\
04/11/2011 15:53:15 OK E:\
04/11/2011 15:53:13 OK D:\
04/11/2011 15:53:13 OK C:\
04/11/2011 15:53:13 OK F:
04/11/2011 15:53:12 OK E:
04/11/2011 15:53:10 OK D:
04/11/2011 15:53:10 OK C:
04/11/2011 15:53:10 OK Unknown application
04/11/2011 15:53:09 OK C:\bootmgr
04/11/2011 15:53:09 OK C:\Windows\System32\drivers\etc\hosts
04/11/2011 15:53:09 OK C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\desktop.ini
04/11/2011 15:53:09 OK C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk Object was not changed (iChecker)
04/11/2011 15:53:09 OK C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
04/11/2011 15:53:09 OK C:\Users\Martain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
04/11/2011 15:53:09 OK C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
04/11/2011 15:53:09 OK C:\Program Files\Bonjour\mdnsNSP.dll Object was not changed (iChecker)
04/11/2011 15:53:09 OK C:\Windows\System32\pnrpnsp.dll Object was not changed (iChecker)
04/11/2011 15:53:09 OK C:\Windows\System32\NapiNSP.dll Object was not changed (iChecker)
04/11/2011 15:53:09 OK C:\Windows\System32\winrnr.dll Object was not changed (iChecker)
04/11/2011 15:53:09 OK C:\Windows\System32\nlaapi.dll Object was not changed (iChecker)
04/11/2011 15:53:08 OK C:\Windows\System32\mswsock.dll Object was not changed (iChecker)
04/11/2011 15:53:08 OK C:\Program Files\Apple Software Update\SoftwareUpdate.exe Object was not changed (iChecker)
04/11/2011 15:53:08 OK C:\Windows\System32\browserchoice.exe Object was not changed (iChecker)
04/11/2011 15:53:08 OK C:\Program Files\Microsoft Security Client\Antimalware\MpCmdRun.exe Object was not changed (iChecker)
04/11/2011 15:53:08 OK C:\Windows\System32\bthudtask.exe Object was not changed (iChecker)
04/11/2011 15:53:08 OK C:\Windows\System32\dimsjob.dll Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\wsqmcons.exe Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\Defrag.exe Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\HotStartUserAgent.dll Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\TMM.dll Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\lpremove.exe Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\mcbuilder.exe Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\PlaySndSrv.dll Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\QAgent.dll Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\RacAgent.exe Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\raserver.exe Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\RmClient.exe Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\srrstr.dll Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\ndfapi.dll Object was not changed (iChecker)
04/11/2011 15:53:07 OK C:\Windows\System32\MsCtfMonitor.dll Object was not changed (iChecker)
04/11/2011 15:53:06 OK C:\Windows\System32\sc.exe Object was not changed (iChecker)
04/11/2011 15:53:06 OK C:\Windows\System32\wermgr.exe Object was not changed (iChecker)
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWiredInfo.vbs
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWiredInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWirelessInfo.vbs
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWirelessInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWirelessInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWirelessInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Windows\System32\gatherWirelessInfo.vbs/JIM
04/11/2011 15:53:06 OK C:\Program Files\Ask.com\UpdateTask.exe Object was not changed (iChecker)
04/11/2011 15:53:06 OK C:\Program Files\Microsoft Security Client\setup.exe Object was not changed (iChecker)
04/11/2011 15:53:06 OK C:\Windows\System32\pcalua.exe Object was not changed (iChecker)
04/11/2011 15:53:06 OK C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\WS2_32.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\WLDAP32.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\WININET.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\USP10.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\USER32.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\SHLWAPI.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\setupapi.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\RPCRT4.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\OLEAUT32.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\NSI.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\Normaliz.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\msvcrt.dll Object was not changed (iChecker)
04/11/2011 15:53:05 OK C:\Windows\System32\MSCTF.dll Object was not changed (iChecker)
04/11/2011 15:53:04 OK C:\Windows\System32\LPK.DLL Object was not changed (iChecker)
04/11/2011 15:53:04 OK C:\Windows\System32\KERNEL32.dll Object was not changed (iChecker)
04/11/2011 15:53:04 OK C:\Windows\System32\IMM32.DLL Object was not changed (iChecker)
04/11/2011 15:53:04 OK C:\Windows\System32\imagehlp.dll Object was not changed (iChecker)
04/11/2011 15:53:04 OK C:\Windows\System32\iertutil.dll Object was not changed (iChecker)
04/11/2011 15:53:04 OK C:\Windows\System32\GDI32.dll Object was not changed (iChecker)
04/11/2011 15:53:04 OK C:\Windows\System32\ADVAPI32.dll Object was not changed (iChecker)
04/11/2011 15:53:04 OK C:\Windows\System32\ole32.dll Object was not changed (iChecker)
04/11/2011 15:53:04 OK C:\Windows\System32\CLBCatQ.DLL Object was not changed (iChecker)
04/11/2011 15:53:03 OK C:\Windows\System32\url.dll Object was not changed (iChecker)
04/11/2011 15:53:02 OK C:\Windows\regedit.exe Object was not changed (iChecker)
04/11/2011 15:53:02 OK C:\Windows\System32\notepad.exe Object was not changed (iChecker)
04/11/2011 15:53:02 OK C:\Windows\System32\mshta.exe Object was not changed (iChecker)
04/11/2011 15:53:02 OK C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll Object was not changed (iChecker)
04/11/2011 15:53:02 OK C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll Object was not changed (iChecker)
04/11/2011 15:53:01 OK C:\Windows\System32\igfxpph.dll Object was not changed (iChecker)
04/11/2011 15:53:01 OK C:\Windows\System32\eDSshellExt.dll Object was not changed (iChecker)
04/11/2011 15:53:01 OK C:\Windows\System32\winsrv.dll Object was not changed (iChecker)
04/11/2011 15:53:01 OK C:\Windows\System32\basesrv.dll Object was not changed (iChecker)
04/11/2011 15:53:01 OK C:\Windows\System32\csrss.exe Object was not changed (iChecker)
04/11/2011 15:53:01 OK C:\Windows\System32\KBDUS.DLL Object was not changed (iChecker)
04/11/2011 15:53:01 OK C:\Windows\System32\KBDUK.DLL Object was not changed (iChecker)
04/11/2011 15:53:00 OK C:\Windows\System32\iprtrmgr.dll Object was not changed (iChecker)
04/11/2011 15:53:00 OK C:\Windows\System32\polstore.dll Object was not changed (iChecker)
04/11/2011 15:53:00 OK C:\Windows\System32\dot3gpclnt.dll Object was not changed (iChecker)
04/11/2011 15:53:00 OK C:\Windows\System32\srchadmin.dll Object was not changed (iChecker)
04/11/2011 15:53:00 OK C:\Windows\System32\gptext.dll Object was not changed (iChecker)
04/11/2011 15:53:00 OK C:\Windows\System32\dskquota.dll Object was not changed (iChecker)
04/11/2011 15:53:00 OK C:\Windows\System32\fdeploy.dll Object was not changed (iChecker)
04/11/2011 15:53:00 OK C:\Windows\System32\wlgpclnt.dll Object was not changed (iChecker)
04/11/2011 15:53:00 OK C:\Windows\System32\cmd.exe Object was not changed (iChecker)
04/11/2011 15:53:00 OK C:\Windows\System32\eDStoolbar.dll Object was not changed (iChecker)
04/11/2011 15:52:59 OK C:\Windows\System32\sysdm.cpl Object was not changed (iChecker)
04/11/2011 15:52:59 OK C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll Object was not changed (iChecker)
04/11/2011 15:52:59 OK C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll Object was not changed (iChecker)
04/11/2011 15:52:59 OK C:\Windows\System32\itss.dll Object was not changed (iChecker)
04/11/2011 15:52:59 OK C:\Windows\System32\MSVidCtl.dll Object was not changed (iChecker)
04/11/2011 15:52:58 OK C:\Windows\System32\urlmon.dll Object was not changed (iChecker)
04/11/2011 15:52:58 OK C:\Windows\System32\mscoree.dll Object was not changed (iChecker)
04/11/2011 15:52:57 OK C:\Program Files\Common Files\Sonic Shared\SonicMC01\sonicMP4Demux.ax Object was not changed (iChecker)
04/11/2011 15:52:57 OK C:\Program Files\Common Files\Sonic Shared\SonicMC01\sonicamrd.ax Object was not changed (iChecker)
04/11/2011 15:52:57 OK C:\Program Files\Java\jre6\bin\npjpi160_16.dll Object was not changed (iChecker)
04/11/2011 15:52:57 OK C:\Program Files\Java\jre6\bin\jp2iexp.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\CONFLICT.1\MsnPUpld.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\CONFLICT.1\PURen-gb.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\MsnPUpld.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\PURen-gb.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\lfbmp13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\lfcmp13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\lffax13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\lfgif13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\ltclr13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\ltdis13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\lfpng13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\lftif13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\ltefx13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\ltimg13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\ltkrn13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\lfpsd13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\lftga13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\lfpcd13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\lfpcx13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\lfeps13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\ltfil13n.dll Object was not changed (iChecker)
04/11/2011 15:52:56 OK C:\Windows\Downloaded Program Files\pcdlib32.dll Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Windows\System32\XPSViewer\XPSViewer.exe Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Program Files\Windows NT\Accessories\wordpad.exe Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Program Files\Windows Live\Mail\wlmail.exe Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Program Files\Microsoft Works\wkwcestp.exe Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Program Files\Microsoft Works\WksWP.exe Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Program Files\Microsoft Works\wksss.exe Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Program Files\Microsoft Works\WksSb.exe Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Program Files\Microsoft Works\wksdb.exe Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Program Files\Common Files\microsoft shared\Works Shared\WksCal.exe Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Program Files\Microsoft Works\wksab.exe Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Program Files\Microsoft Works\wkplmstp.exe Object was not changed (iChecker)
04/11/2011 15:52:55 OK C:\Program Files\WinRAR\WinRAR.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\Windows Calendar\WinCal.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\Windows Mail\wabmig.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\Windows Mail\wab.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\Roxio\VideoCore 9\VCGProxyFileManager9.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\Acer\HomeMedia\HomeMedia.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\Windows Sidebar\sidebar.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\Roxio\Audio Master 9\RxTagEdit9.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\Roxio\Audio Master 9\RXAutoMix9.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWizardLauncher9.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\Common Files\Roxio Shared\Dragon\RomLauncher.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\QuickTime\QuickTimePlayer.exe Object was not changed (iChecker)
04/11/2011 15:52:54 OK C:\Program Files\CyberLink\PowerProducer\Producer.exe Object was not changed (iChecker)
04/11/2011 15:52:53 OK C:\Program Files\Acer\Acer Arcade\Acer Arcade.exe Object was not changed (iChecker)
04/11/2011 15:52:53 OK C:\Program Files\QuickTime\PictureViewer.exe Object was not changed (iChecker)
04/11/2011 15:52:53 OK C:\Program Files\Roxio\PhotoSuite 9\PhotoSuite9.exe Object was not changed (iChecker)
04/11/2011 15:52:53 OK C:\Program Files\Microsoft Works\MSWorks.exe Object was not changed (iChecker)
04/11/2011 15:52:53 OK C:\Program Files\Windows Live\Messenger\msnmsgr.exe Object was not changed (iChecker)
04/11/2011 15:52:53 OK C:\Program Files\Windows Media Player\wmplayer.exe Object was not changed (iChecker)
04/11/2011 15:52:53 OK C:\Program Files\Movie Maker\MOVIEMK.exe Object was not changed (iChecker)
04/11/2011 15:52:53 OK C:\Program Files\Roxio\Media Manager 9\MediaManager9.exe Object was not changed (iChecker)
04/11/2011 15:52:53 OK C:\Program Files\Roxio\Media Import 9\MediaCapture9.exe Object was not changed (iChecker)
04/11/2011 15:52:52 OK C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe Object was not changed (iChecker)
04/11/2011 15:52:52 OK C:\Program Files\Launch Manager\LManager.exe Object was not changed (iChecker)
04/11/2011 15:52:52 OK C:\Program Files\Java\jre6\bin\javaws.exe Object was not changed (iChecker)
04/11/2011 15:52:52 OK C:\Program Files\iTunes\iTunes.exe Object was not changed (iChecker)
04/11/2011 15:52:52 OK C:\Program Files\Internet Explorer\iexplore.exe Object was not changed (iChecker)
04/11/2011 15:52:52 OK C:\Program Files\Mozilla Firefox\firefox.exe Object was not changed (iChecker)
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0196
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0195
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0194
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0193
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0192
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0191
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0190
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0189
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0188
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0187
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0186
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0185
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0184
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0183
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0182
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0181
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0180
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0179
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0178
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0177
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0176
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0175
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0174
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0173
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0172
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0171
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0170
04/11/2011 15:52:52 OK C:\Users\Martain\Desktop\ComboFix.exe/data0169
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0168
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0167
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0166
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0165
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0164
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0163
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0162
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0161
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0160
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0159
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0158
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0157
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0156
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0155
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0154
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0153
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0152
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0151
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0150
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0150/# Object was not changed (iChecker)
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0150/data0000.res Object was not changed (iChecker)
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0149
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0148
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0147
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0146
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0145
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0145/PE_Patch.PECompact
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0145/PE_Patch.PECompact/PecBundle
04/11/2011 15:52:51 OK C:\Users\Martain\Desktop\ComboFix.exe/data0145/PE_Patch.PECompact/PecBundle/PECompact
04/11/2011 15:52:51 Packed: PECompact C:\Users\Martain\Desktop\ComboFix.exe/data0145/PE_Patch.PECompact/PecBundle
04/11/2011 15:52:51 Packed: PecBundle C:\Users\Martain\Desktop\ComboFix.exe/data0145/PE_Patch.PECompact
04/11/2011 15:52:51 Packed: PE_Patch.PECompact C:\Users\Martain\Desktop\ComboFix.exe/data0145
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0144
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0144/PE_Patch.PECompact
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0144/PE_Patch.PECompact/PecBundle
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0144/PE_Patch.PECompact/PecBundle/PECompact
04/11/2011 15:52:50 Packed: PECompact C:\Users\Martain\Desktop\ComboFix.exe/data0144/PE_Patch.PECompact/PecBundle
04/11/2011 15:52:50 Packed: PecBundle C:\Users\Martain\Desktop\ComboFix.exe/data0144/PE_Patch.PECompact
04/11/2011 15:52:50 Packed: PE_Patch.PECompact C:\Users\Martain\Desktop\ComboFix.exe/data0144
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0143
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0142
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0141
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0140
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0139
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0138
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0137
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0135
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0134
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0133
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0132
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0131
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0131/# Object was not changed (iChecker)
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0131/data0000.res Object was not changed (iChecker)
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0130
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0130/JIM
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0129
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0128
04/11/2011 15:52:50 OK C:\Users\Martain\Desktop\ComboFix.exe/data0127
04/11/2011 15:52:49 OK C:\Users\Martain\Desktop\ComboFix.exe/data0126
04/11/2011 15:52:49 OK C:\Users\Martain\Desktop\ComboFix.exe/data0125
04/11/2011 15:52:49 OK C:\Users\Martain\Desktop\ComboFix.exe/data0124
04/11/2011 15:52:49 OK C:\Users\Martain\Desktop\ComboFix.exe/data0124/data0003.res Object was not changed (iChecker)
04/11/2011 15:52:49 OK C:\Users\Martain\Desktop\ComboFix.exe/data0124/data0002.res Object was not changed (iChecker)
04/11/2011 15:52:49 OK C:\Users\Martain\Desktop\ComboFix.exe/data0124/data0000.res Object was not changed (iChecker)
04/11/2011 15:52:49 OK C:\Users\Martain\Desktop\ComboFix.exe/data0123
04/11/2011 15:52:49 OK C:\Users\Martain\Desktop\ComboFix.exe/data0122
04/11/2011 15:52:49 OK C:\Users\Martain\Desktop\ComboFix.exe/data0121
04/11/2011 15:52:49 OK C:\Users\Martain\Desktop\ComboFix.exe/data0120
04/11/2011 15:52:48 OK C:\Users\Martain\Desktop\ComboFix.exe/data0119
04/11/2011 15:52:48 OK C:\Users\Martain\Desktop\ComboFix.exe/data0118
04/11/2011 15:52:48 OK C:\Users\Martain\Desktop\ComboFix.exe/data0117
04/11/2011 15:52:48 OK C:\Users\Martain\Desktop\ComboFix.exe/data0116
04/11/2011 15:52:48 OK C:\Users\Martain\Desktop\ComboFix.exe/data0115
04/11/2011 15:52:48 OK C:\Users\Martain\Desktop\ComboFix.exe/data0114
04/11/2011 15:52:48 OK C:\Users\Martain\Desktop\ComboFix.exe/data0113
04/11/2011 15:52:48 OK C:\Users\Martain\Desktop\ComboFix.exe/data0112
04/11/2011 15:52:48 OK C:\Users\Martain\Desktop\ComboFix.exe/data0112/UPX
04/11/2011 15:52:48 Packed: UPX C:\Users\Martain\Desktop\ComboFix.exe/data0112
04/11/2011 15:52:48 OK C:\Users\Martain\Desktop\ComboFix.exe/data0111
04/11/2011 15:52:48 OK C:\Users\Martain\Desktop\ComboFix.exe/data0110
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0109
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0108
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0107
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0106
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0105
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0104
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0103
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0102
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0101
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0100
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0099
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0098
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0097
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0096
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0095
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0095/JIM
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0094
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0093
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0092
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0091
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0090
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0089
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0088
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0087
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0086
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0085
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0084
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0083
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0082
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0081
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0080
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0079
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0078
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0077
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0076
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0075
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0074
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0073
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0072
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0071
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0070
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0069
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0068
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0067
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0066
04/11/2011 15:52:47 OK C:\Users\Martain\Desktop\ComboFix.exe/data0065
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0064
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0063
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0062
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0061
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0060
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0059
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0058
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0057
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0056
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0055
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0054
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0053
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0052
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0051
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0050
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0049
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0048
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0047
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0046
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0045
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0044
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0043
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0042
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0042/UPX
04/11/2011 15:52:46 Packed: UPX C:\Users\Martain\Desktop\ComboFix.exe/data0042
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0041
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0040
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0039
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0038
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0037
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0036
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0035
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0034
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0033
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0032
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0031
04/11/2011 15:52:46 OK C:\Users\Martain\Desktop\ComboFix.exe/data0030
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0030/UPX
04/11/2011 15:52:45 Packed: UPX C:\Users\Martain\Desktop\ComboFix.exe/data0030
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0029
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0028
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0027
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0026
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0025
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0024
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0023
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0022
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0021
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0020
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0019
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0018
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0017
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0016
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0015
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0014
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0013
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0012
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0011
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0010
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0009
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0008
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0007
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0006
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0005
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0004
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0003
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0002
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/data0001
04/11/2011 15:52:45 Archive: NSIS C:\Users\Martain\Desktop\ComboFix.exe
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0196 Object was not changed (iChecker)
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0195 Object was not changed (iChecker)
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0194 Object was not changed (iChecker)
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193
04/11/2011 15:52:45 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193 Object was not changed (iChecker)
04/11/2011 15:52:45 Archive: ZIP C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0193
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0192
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0192 Object was not changed (iChecker)
04/11/2011 15:52:44 Archive: ZIP C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0192
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0191
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0190
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0189
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0188
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0187
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0186
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0185
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0184
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0183
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0182 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0181
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0180
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0179
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0178
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0177
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0176
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0175
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0174
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0173
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0172
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0171
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0170 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0169
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0168 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0167 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0166 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0165
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0164
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0163
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0162
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0161
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0160
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0159
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0158 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0157 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0156
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0155
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0154
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0153 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0152
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0151
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0150 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0149
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0148
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0147 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0146
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0145 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0144 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0143 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0142
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0141
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0140
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0139
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0138
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0137
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0135 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0134
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0133
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0132
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0131 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0130
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0130/JIM
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0129
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0128
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0127
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0126
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0125 Object was not changed (iChecker)
04/11/2011 15:52:44 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0124 Object was not changed (iChecker)
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0123 Object was not changed (iChecker)
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0122 Object was not changed (iChecker)
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0121
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0120
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0119
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0118 Object was not changed (iChecker)
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0117
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0116 Object was not changed (iChecker)
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0115
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0114 Object was not changed (iChecker)
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0113
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0112 Object was not changed (iChecker)
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0111
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0110
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0109
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0108
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0107
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0106
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0105
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0104
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0103
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0102
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0101
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0100
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0099
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0098
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0097
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0096
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0095
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0095/JIM
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0094
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0093
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0092
04/11/2011 15:52:43 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0091
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0090
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0089
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0088
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0087
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0086
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0085
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0084
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0083
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0082
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0081
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0080
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0079
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0078
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0077
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0076
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0075
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0074 Object was not changed (iChecker)
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0073
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0072
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0071
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0070
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0069
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0068
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0067 Object was not changed (iChecker)
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0066
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0065 Object was not changed (iChecker)
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0064
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0063
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0062
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0061
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0060
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0059
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0058
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0057
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0056
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0055
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0054
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0053
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0052
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0051
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0050
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0049
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0048
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0047
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0046
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0045
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0044
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0043
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0042 Object was not changed (iChecker)
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0041
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0040
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0039
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0038
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0037
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0036
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0035
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0034
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0033 Object was not changed (iChecker)
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0032
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0031
04/11/2011 15:52:42 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0030 Object was not changed (iChecker)
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0029
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0028
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0027
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0026
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0025
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0024
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0023
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0022
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0021
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0020
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0019
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0018 Object was not changed (iChecker)
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0017 Object was not changed (iChecker)
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0016
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0015
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0014
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0013
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0012
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0011
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0010
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0009
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0008
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0007
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0006
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0005
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0004
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0003 Object was not changed (iChecker)
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0002 Object was not changed (iChecker)
04/11/2011 15:52:41 OK C:\Users\Martain\Desktop\ComboFix.exe/UPX/data0001
04/11/2011 15:52:41 Archive: NSIS C:\Users\Martain\Desktop\ComboFix.exe/UPX
04/11/2011 15:52:41 Packed: UPX C:\Users\Martain\Desktop\ComboFix.exe
04/11/2011 15:52:41 OK C:\Windows\System32\cmcfg32.dll Object was not changed (iChecker)
04/11/2011 15:52:41 OK C:\Program Files\CCleaner\CCleaner.exe Object was not changed (iChecker)
04/11/2011 15:52:41 OK C:\Program Files\Roxio\Audio Capture 9\AnalogRec9.exe Object was not changed (iChecker)
04/11/2011 15:52:41 OK C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe Object was not changed (iChecker)
04/11/2011 15:52:40 OK C:\Program Files\Windows Live\Toolbar\wltcore.dll Object was not changed (iChecker)
04/11/2011 15:52:40 OK C:\Program Files\Java\jre6\bin\jp2ssv.dll Object was not changed (iChecker)
04/11/2011 15:52:40 OK C:\Program Files\Ask.com\GenericAskToolbar.dll Object was not changed (iChecker)
04/11/2011 15:52:40 OK C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll Object was not changed (iChecker)
04/11/2011 15:52:39 OK C:\Windows\System32\ActiveToolBand.dll Object was not changed (iChecker)
04/11/2011 15:52:39 OK C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll Object was not changed (iChecker)
04/11/2011 15:52:39 OK C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll Object was not changed (iChecker)
04/11/2011 15:52:39 OK C:\Program Files\Microsoft Security Client\shellext.dll Object was not changed (iChecker)
04/11/2011 15:52:39 OK C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe Object was not changed (iChecker)
04/11/2011 15:52:39 OK C:\Program Files\Windows Live\Photo Gallery\PhotoViewerShim.dll Object was not changed (iChecker)
04/11/2011 15:52:38 OK C:\Program Files\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe Object was not changed (iChecker)
04/11/2011 15:52:38 OK C:\Program Files\iTunes\iTunesMiniPlayer.dll Object was not changed (iChecker)
04/11/2011 15:52:38 OK C:\Program Files\WinRAR\RarExt.dll Object was not changed (iChecker)
04/11/2011 15:52:38 OK C:\Program Files\Windows Live\Mail\mailcomm.dll Object was not changed (iChecker)
04/11/2011 15:52:38 OK C:\Windows\System32\wlanpref.dll Object was not changed (iChecker)
04/11/2011 15:52:38 OK C:\Program Files\Windows Media Player\wmprph.exe Object was not changed (iChecker)
04/11/2011 15:52:38 OK C:\Program Files\Windows Sidebar\sbdrop.dll Object was not changed (iChecker)
04/11/2011 15:52:37 OK C:\Windows\System32\oobefldr.dll Object was not changed (iChecker)
04/11/2011 15:52:37 OK C:\Windows\System32\wpdshext.dll Object was not changed (iChecker)
04/11/2011 15:52:37 OK C:\Windows\System32\sdshext.dll Object was not changed (iChecker)
04/11/2011 15:52:37 OK C:\Windows\System32\syncui.dll Object was not changed (iChecker)
04/11/2011 15:52:37 OK C:\Program Files\Windows Defender\MpOAV.dll Object was not changed (iChecker)
04/11/2011 15:52:37 OK C:\Windows\System32\TouchX.dll Object was not changed (iChecker)
04/11/2011 15:52:36 OK C:\Windows\System32\wmpshell.dll Object was not changed (iChecker)
04/11/2011 15:52:36 OK C:\Windows\System32\gameux.dll Object was not changed (iChecker)
04/11/2011 15:52:36 OK C:\Program Files\Windows Photo Gallery\PhotoAcq.dll Object was not changed (iChecker)
04/11/2011 15:52:36 OK C:\Windows\System32\audiodev.dll Object was not changed (iChecker)
04/11/2011 15:52:36 OK C:\Windows\System32\photowiz.dll Object was not changed (iChecker)
04/11/2011 15:52:36 OK C:\Windows\System32\SyncCenter.dll Object was not changed (iChecker)
04/11/2011 15:52:36 OK C:\Windows\System32\mssvp.dll Object was not changed (iChecker)
04/11/2011 15:52:35 OK C:\Program Files\Windows Media Player\wmpband.dll Object was not changed (iChecker)
04/11/2011 15:52:35 OK C:\Program Files\Windows Photo Gallery\PhotoViewer.dll Object was not changed (iChecker)
04/11/2011 15:52:35 OK C:\Windows\System32\MediaMetadataHandler.dll Object was not changed (iChecker)
04/11/2011 15:52:35 OK C:\Windows\System32\mspaint.exe Object was not changed (iChecker)
04/11/2011 15:52:35 OK C:\Windows\System32\NcdProp.dll Object was not changed (iChecker)
04/11/2011 15:52:35 OK C:\Windows\System32\PhotoMetadataHandler.dll Object was not changed (iChecker)
04/11/2011 15:52:35 OK C:\Windows\System32\DfsShlEx.dll Object was not changed (iChecker)
04/11/2011 15:52:35 OK C:\Windows\System32\ntlanui2.dll Object was not changed (iChecker)
04/11/2011 15:52:35 OK C:\Windows\System32\cabview.dll Object was not changed (iChecker)
04/11/2011 15:52:34 OK C:\Windows\System32\zipfldr.dll Object was not changed (iChecker)
04/11/2011 15:52:34 OK C:\Windows\System32\msieftp.dll Object was not changed (iChecker)
04/11/2011 15:52:34 OK C:\Windows\System32\fontext.dll Object was not changed (iChecker)
04/11/2011 15:52:34 OK C:\Windows\System32\dskquoui.dll Object was not changed (iChecker)
04/11/2011 15:52:34 OK C:\Windows\System32\ExplorerFrame.dll Object was not changed (iChecker)
04/11/2011 15:52:34 OK C:\Windows\System32\docprop.dll Object was not changed (iChecker)
04/11/2011 15:52:34 OK C:\Windows\System32\deskperf.dll Object was not changed (iChecker)
04/11/2011 15:52:34 OK C:\Windows\System32\deskmon.dll Object was not changed (iChecker)
04/11/2011 15:52:34 OK C:\Windows\System32\deskadp.dll Object was not changed (iChecker)
04/11/2011 15:52:34 OK C:\Windows\MSAgent\AgentPsh.dll Object was not changed (iChecker)
04/11/2011 15:52:33 OK C:\Windows\System32\wshext.dll Object was not changed (iChecker)
04/11/2011 15:52:33 OK C:\Windows\System32\extmgr.dll Object was not changed (iChecker)
04/11/2011 15:52:33 OK C:\Windows\System32\remotepg.dll Object was not changed (iChecker)
04/11/2011 15:52:33 OK C:\Windows\System32\acppage.dll Object was not changed (iChecker)
04/11/2011 15:52:33 OK C:\Windows\System32\cryptext.dll Object was not changed (iChecker)
04/11/2011 15:52:33 OK C:\Program Files\Windows Mail\wabfind.dll Object was not changed (iChecker)
04/11/2011 15:52:33 OK C:\Program Files\Common Files\System\wab32.dll Object was not changed (iChecker)
04/11/2011 15:52:33 OK C:\Windows\System32\XPSSHHDR.dll Object was not changed (iChecker)
04/11/2011 15:52:33 OK C:\Windows\System32\oleprn.dll Object was not changed (iChecker)
04/11/2011 15:52:33 OK C:\Windows\System32\dfshim.dll Object was not changed (iChecker)
04/11/2011 15:52:32 OK C:\Windows\System32\COMDLG32.DLL Object was not changed (iChecker)
04/11/2011 15:52:32 OK C:\Windows\System32\occache.dll Object was not changed (iChecker)
04/11/2011 15:52:32 OK C:\Windows\System32\PROPSYS.dll Object was not changed (iChecker)
04/11/2011 15:52:31 OK C:\Windows\System32\mydocs.dll Object was not changed (iChecker)
04/11/2011 15:52:31 OK C:\Windows\System32\diskcopy.dll Object was not changed (iChecker)
04/11/2011 15:52:31 OK C:\Windows\System32\appwiz.cpl Object was not changed (iChecker)
04/11/2011 15:52:31 OK C:\Windows\System32\devmgr.dll Object was not changed (iChecker)
04/11/2011 15:52:30 OK C:\Windows\System32\dssec.dll Object was not changed (iChecker)
04/11/2011 15:52:30 OK C:\Windows\System32\printui.dll Object was not changed (iChecker)
04/11/2011 15:52:30 OK C:\Windows\System32\ntshrui.dll Object was not changed (iChecker)
04/11/2011 15:52:30 OK C:\Windows\System32\rshx32.dll Object was not changed (iChecker)
04/11/2011 15:52:30 OK C:\Windows\System32\dsquery.dll Object was not changed (iChecker)
04/11/2011 15:52:30 OK C:\Windows\System32\dsuiext.dll Object was not changed (iChecker)
04/11/2011 15:52:30 OK C:\Windows\System32\colorui.dll Object was not changed (iChecker)
04/11/2011 15:52:30 OK C:\Windows\System32\shwebsvc.dll Object was not changed (iChecker)
04/11/2011 15:52:29 OK C:\Windows\System32\sendmail.dll Object was not changed (iChecker)
04/11/2011 15:52:29 OK C:\Windows\System32\mshtml.dll Object was not changed (iChecker)
04/11/2011 15:52:29 OK C:\Windows\System32\ieframe.dll Object was not changed (iChecker)
04/11/2011 15:52:28 OK C:\Windows\System32\inetcomm.dll Object was not changed (iChecker)
04/11/2011 15:52:28 OK C:\Windows\System32\icsigd.dll Object was not changed (iChecker)
04/11/2011 15:52:28 OK C:\Windows\System32\netshell.dll Object was not changed (iChecker)
04/11/2011 15:52:28 OK C:\Windows\System32\mmcshext.dll Object was not changed (iChecker)
04/11/2011 15:52:28 OK C:\Windows\System32\SHDOCVW.dll Object was not changed (iChecker)
04/11/2011 15:52:28 OK C:\Windows\System32\networkexplorer.dll Object was not changed (iChecker)
04/11/2011 15:52:28 OK C:\Program Files\Common Files\System\Ole DB\oledb32.dll Object was not changed (iChecker)
04/11/2011 15:52:27 OK C:\Windows\System32\BROWSEUI.dll Object was not changed (iChecker)
04/11/2011 15:52:27 OK C:\Windows\System32\acer.scr Object was not changed (iChecker)
04/11/2011 15:52:27 OK C:\Windows\System32\logon.scr Object was not changed (iChecker)
04/11/2011 15:52:27 OK C:\Windows\System32\webcheck.dll Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\lhacm.acm Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\sirenacm.dll Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\wdmaud.drv Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\iccvid.dll Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\l3codeca.acm Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\tsbyuv.dll Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\iyuv_32.dll Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\msyuv.dll Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\msacm32.drv Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\midimap.dll Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\msadp32.acm Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\msgsm32.acm Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\msg711.acm Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\imaadp32.acm Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\msvidc32.dll Object was not changed (iChecker)
04/11/2011 15:52:25 OK C:\Windows\System32\msrle32.dll Object was not changed (iChecker)
04/11/2011 15:52:24 OK C:\Windows\System32\system.drv Object was not changed (iChecker)
04/11/2011 15:52:24 OK C:\Windows\System32\sound.drv Object was not changed (iChecker)
04/11/2011 15:52:24 OK C:\Windows\System32\WFWNET.DRV Object was not changed (iChecker)
04/11/2011 15:52:24 OK C:\Windows\System32\mouse.drv Object was not changed (iChecker)
04/11/2011 15:52:24 OK C:\Windows\System32\keyboard.drv Object was not changed (iChecker)
04/11/2011 15:52:24 OK C:\Windows\System32\MMSYSTEM.DLL Object was not changed (iChecker)
04/11/2011 15:52:24 OK C:\Windows\System32\vga.drv Object was not changed (iChecker)
04/11/2011 15:52:24 OK C:\Windows\System32\COMM.drv Object was not changed (iChecker)
04/11/2011 15:52:24 OK C:\Windows\System32\mscories.dll Object was not changed (iChecker)
04/11/2011 15:52:24 OK C:\Windows\System32\SHELL32.dll
04/11/2011 15:52:23 OK C:\Program Files\Windows Mail\WinMail.exe Object was not changed (iChecker)
04/11/2011 15:52:23 OK C:\Windows\System32\themeui.dll Object was not changed (iChecker)
04/11/2011 15:52:23 OK C:\Windows\System32\regsvr32.exe Object was not changed (iChecker)
04/11/2011 15:52:23 OK C:\Windows\System32\iedkcs32.dll Object was not changed (iChecker)
04/11/2011 15:52:23 OK C:\Windows\System32\rundll32.exe Object was not changed (iChecker)
04/11/2011 15:52:23 OK C:\Windows\System32\ie4uinit.exe Object was not changed (iChecker)
04/11/2011 15:52:23 OK C:\Windows\System32\unregmp2.exe Object was not changed (iChecker)
04/11/2011 15:52:22 OK C:\Windows\System32\scecli.dll Object was not changed (iChecker)
04/11/2011 15:52:22 OK C:\Windows\System32\autochk.exe Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Windows\System32\drivers\XAudio.exe Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Windows\System32\drivers\XAudio.sys Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Windows\System32\drivers\WUDFRd.sys Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Windows\System32\SearchIndexer.exe Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Windows\System32\drivers\ws2ifsl.sys Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Windows\System32\drivers\WpdUsb.sys Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Program Files\Windows Media Player\wmpnetwk.exe Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Acer\Empowering Technology\ePower\ePowerSvc.exe Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Windows\System32\wbem\WmiApSrv.exe Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Windows\System32\drivers\wmiacpi.sys Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Windows\System32\drivers\HSX_CNXT.sys Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Windows\System32\drivers\Wdf01000.sys Object was not changed (iChecker)
04/11/2011 15:52:21 OK C:\Windows\System32\drivers\wd.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\wanarp.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\wacompen.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\VSSVC.exe Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\vsmraid.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\volsnap.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\volmgrx.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\volmgr.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\viaide.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\viac7.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\VIAAGP.SYS Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\vga.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\vgapnp.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\vds.exe Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\usbuhci.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\USBSTOR.SYS Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\usbprint.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\usbohci.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\usbhub.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\usbehci.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\usbcir.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\usbccgp.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\usbaapl.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\umbus.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\ulsata2.sys Object was not changed (iChecker)
04/11/2011 15:52:20 OK C:\Windows\System32\drivers\ulsata.sys Object was not changed (iChecker)
04/11/2011 15:52:19 OK C:\Windows\System32\drivers\uliahci.sys Object was not changed (iChecker)
04/11/2011 15:52:18 OK C:\Windows\System32\drivers\ULIAGPKX.SYS Object was not changed (iChecker)
04/11/2011 15:52:18 OK C:\Windows\System32\UI0Detect.exe Object was not changed (iChecker)
04/11/2011 15:52:18 OK C:\Windows\System32\drivers\udfs.sys Object was not changed (iChecker)
04/11/2011 15:52:18 OK C:\Windows\System32\drivers\UAGP35.SYS Object was not changed (iChecker)
04/11/2011 15:52:18 OK C:\Windows\System32\drivers\tunnel.sys Object was not changed (iChecker)
04/11/2011 15:52:18 OK C:\Windows\System32\drivers\TUNMP.SYS Object was not changed (iChecker)
04/11/2011 15:52:17 OK C:\Windows\System32\drivers\tssecsrv.sys Object was not changed (iChecker)
04/11/2011 15:52:17 OK C:\Windows\servicing\TrustedInstaller.exe Object was not changed (iChecker)
04/11/2011 15:52:17 OK C:\Windows\System32\drivers\termdd.sys Object was not changed (iChecker)
04/11/2011 15:52:17 OK C:\Windows\System32\drivers\tdx.sys Object was not changed (iChecker)
04/11/2011 15:52:17 OK C:\Windows\System32\drivers\tdtcp.sys Object was not changed (iChecker)
04/11/2011 15:52:17 OK C:\Windows\System32\drivers\tdpipe.sys Object was not changed (iChecker)
04/11/2011 15:52:17 OK C:\Windows\System32\drivers\tcpipreg.sys Object was not changed (iChecker)
04/11/2011 15:52:17 OK C:\Windows\System32\drivers\tcpip.sys Object was not changed (iChecker)
04/11/2011 15:52:17 OK C:\Windows\System32\drivers\sym_u3.sys Object was not changed (iChecker)
04/11/2011 15:52:17 OK C:\Windows\System32\drivers\sym_hi.sys Object was not changed (iChecker)
04/11/2011 15:52:17 OK C:\Windows\System32\drivers\symc8xx.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\swenum.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\srvnet.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\srv2.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\srv.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\spoolsv.exe Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\spldr.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\snmptrap.exe Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\smb.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\SLsvc.exe
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\sisraid4.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\sisraid2.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\SISAGP.SYS Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\sfloppy.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\sffp_sd.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\sffp_mmc.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\sffdisk.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\sermouse.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\serial.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\serenum.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\secdrv.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\sbp2port.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\drivers\rspndr.sys Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Windows\System32\Locator.exe Object was not changed (iChecker)
04/11/2011 15:52:16 OK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe Object was not changed (iChecker)
04/11/2011 15:52:15 OK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe Object was not changed (iChecker)
04/11/2011 15:52:14 OK C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe Object was not changed (iChecker)
04/11/2011 15:52:13 OK C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe Object was not changed (iChecker)
04/11/2011 15:52:13 OK C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe Object was not changed (iChecker)
04/11/2011 15:52:13 OK C:\Windows\System32\drivers\rootmdm.sys Object was not changed (iChecker)
04/11/2011 15:52:13 OK C:\Windows\System32\drivers\RimSerial.sys Object was not changed (iChecker)
04/11/2011 15:52:12 OK C:\Windows\System32\drivers\RimUsb.sys Object was not changed (iChecker)
04/11/2011 15:52:12 OK C:\Windows\System32\drivers\rdpwd.sys Object was not changed (iChecker)
04/11/2011 15:52:12 OK C:\Windows\System32\drivers\RDPENCDD.sys Object was not changed (iChecker)
04/11/2011 15:52:12 OK C:\Windows\System32\drivers\rdpdr.sys Object was not changed (iChecker)
04/11/2011 15:52:12 OK C:\Windows\System32\drivers\RDPCDD.sys Object was not changed (iChecker)
04/11/2011 15:52:12 OK C:\Windows\System32\drivers\rdbss.sys Object was not changed (iChecker)
04/11/2011 15:52:12 OK C:\Windows\System32\drivers\raspppoe.sys Object was not changed (iChecker)
04/11/2011 15:52:12 OK C:\Windows\System32\drivers\rasl2tp.sys Object was not changed (iChecker)
04/11/2011 15:52:12 OK C:\Windows\System32\drivers\rasacd.sys Object was not changed (iChecker)
04/11/2011 15:52:12 OK C:\Windows\System32\drivers\qwavedrv.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\ql40xx.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\ql2300.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\pxhelp20.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\psdvdisk.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\PSDNServ.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\psdfilter.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\pacer.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\processr.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\raspptp.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\PEAuth.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\pcmcia.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\pciide.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\pci.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\parvdm.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\partmgr.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\parport.sys Object was not changed (iChecker)
04/11/2011 15:52:11 OK C:\Windows\System32\drivers\ohci1394.sys Object was not changed (iChecker)
04/11/2011 15:52:10 OK C:\Windows\System32\drivers\NV_AGP.SYS Object was not changed (iChecker)
04/11/2011 15:52:10 OK C:\Windows\System32\drivers\nvstor.sys Object was not changed (iChecker)
04/11/2011 15:52:10 OK C:\Windows\System32\drivers\nvraid.sys Object was not changed (iChecker)
04/11/2011 15:52:10 OK C:\Windows\System32\drivers\null.sys Object was not changed (iChecker)
04/11/2011 15:52:10 OK C:\Windows\System32\drivers\ntrigdigi.sys Object was not changed (iChecker)
04/11/2011 15:52:10 OK C:\Windows\System32\drivers\NTIDrvr.sys Object was not changed (iChecker)
04/11/2011 15:52:10 OK C:\Windows\System32\drivers\ntfs.sys
04/11/2011 15:52:10 OK C:\Windows\System32\drivers\nsiproxy.sys Object was not changed (iChecker)
04/11/2011 15:52:10 OK C:\Windows\System32\drivers\npfs.sys Object was not changed (iChecker)
04/11/2011 15:52:10 OK C:\Windows\System32\drivers\nfrd960.sys Object was not changed (iChecker)
04/11/2011 15:52:10 OK C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe Object was not changed (iChecker)
04/11/2011 15:52:10 OK C:\Windows\System32\drivers\netbt.sys Object was not changed (iChecker)
04/11/2011 15:52:09 OK C:\Windows\System32\drivers\netbios.sys Object was not changed (iChecker)
04/11/2011 15:52:09 OK C:\Windows\System32\drivers\ndproxy.sys Object was not changed (iChecker)
04/11/2011 15:52:09 OK C:\Windows\System32\drivers\ndiswan.sys Object was not changed (iChecker)
04/11/2011 15:52:09 OK C:\Windows\System32\drivers\ndisuio.sys Object was not changed (iChecker)
04/11/2011 15:52:08 OK C:\Windows\System32\drivers\ndistapi.sys Object was not changed (iChecker)
04/11/2011 15:52:08 OK C:\Windows\System32\drivers\ndis.sys Object was not changed (iChecker)
04/11/2011 15:52:08 OK C:\Windows\System32\drivers\nwifi.sys Object was not changed (iChecker)
04/11/2011 15:52:08 OK C:\Windows\System32\drivers\mup.sys Object was not changed (iChecker)
04/11/2011 15:52:08 OK C:\Windows\System32\drivers\mstee.sys Object was not changed (iChecker)
04/11/2011 15:52:08 OK C:\Windows\System32\drivers\mssmbios.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\msrpc.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\mspqm.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\mspclock.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\mskssrv.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\msiexec.exe Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\msisadrv.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\msfs.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\msdtc.exe Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\msdsm.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\msahci.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\mrxsmb20.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\mrxsmb10.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\mrxsmb.sys Object was not changed (iChecker)
04/11/2011 15:52:07 OK C:\Windows\System32\drivers\mrxdav.sys Object was not changed (iChecker)
04/11/2011 15:52:06 OK C:\Windows\System32\drivers\Mraid35x.sys Object was not changed (iChecker)
04/11/2011 15:52:06 OK C:\Windows\System32\drivers\mpsdrv.sys Object was not changed (iChecker)
04/11/2011 15:52:06 OK C:\Windows\System32\drivers\MpNWMon.sys Object was not changed (iChecker)
04/11/2011 15:52:06 OK C:\Windows\System32\drivers\mpio.sys Object was not changed (iChecker)
04/11/2011 15:52:06 OK C:\Windows\System32\drivers\MpFilter.sys Object was not changed (iChecker)
04/11/2011 15:52:06 OK C:\Windows\System32\drivers\mountmgr.sys Object was not changed (iChecker)
04/11/2011 15:52:06 OK C:\Windows\System32\drivers\mouhid.sys Object was not changed (iChecker)
04/11/2011 15:52:06 OK C:\Windows\System32\drivers\mouclass.sys Object was not changed (iChecker)
04/11/2011 15:52:04 OK C:\Windows\System32\drivers\monitor.sys Object was not changed (iChecker)
04/11/2011 15:52:04 OK C:\Windows\System32\drivers\modem.sys Object was not changed (iChecker)
04/11/2011 15:52:03 OK C:\Acer\Mobility Center\MobilityService.exe Object was not changed (iChecker)
04/11/2011 15:52:03 OK C:\Windows\System32\drivers\megasas.sys Object was not changed (iChecker)
04/11/2011 15:52:03 OK C:\Windows\System32\drivers\mdmxsdk.sys Object was not changed (iChecker)
04/11/2011 15:52:03 OK C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe Object was not changed (iChecker)
04/11/2011 15:52:02 OK C:\Windows\System32\drivers\mbam.sys Object was not changed (iChecker)
04/11/2011 15:52:02 OK C:\Windows\System32\drivers\luafv.sys Object was not changed (iChecker)
04/11/2011 15:52:02 OK C:\Windows\System32\drivers\lsi_scsi.sys Object was not changed (iChecker)
04/11/2011 15:52:02 OK C:\Windows\System32\drivers\lsi_sas.sys Object was not changed (iChecker)
04/11/2011 15:52:02 OK C:\Windows\System32\drivers\lsi_fc.sys Object was not changed (iChecker)
04/11/2011 15:52:02 OK C:\Windows\System32\drivers\lltdio.sys Object was not changed (iChecker)
04/11/2011 15:52:02 OK C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll Object was not changed (iChecker)
04/11/2011 15:52:02 OK C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Program Files\Common Files\LightScribe\LSSrvc.exe Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\ksecdd.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\lsass.exe Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\kbdhid.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\kbdclass.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\iteraid.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\iteatapi.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\msiscsi.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\isapnp.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\irenum.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Program Files\iPod\bin\iPodService.exe Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\ipnat.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\IPMIDrv.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\ipfltdrv.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\intelppm.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\intelide.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\RTKVHDA.sys
04/11/2011 15:52:01 OK C:\Acer\Empowering Technology\eRecovery\int15.sys Object was not changed (iChecker)
04/11/2011 15:52:01 OK C:\Windows\System32\drivers\iirsp.sys Object was not changed (iChecker)
04/11/2011 15:52:00 OK C:\Windows\System32\drivers\igdkmd32.sys
04/11/2011 15:51:59 OK C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\iaStorV.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\i8042prt.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\i2omp.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\http.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\HSXHWAZL.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\HSX_DPV.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\VSTAZL3.SYS Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\HpCISSs.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\hidusb.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\hidir.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\hidbth.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\hdaudbus.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\HdAudio.sys Object was not changed (iChecker)
04/11/2011 15:51:59 OK C:\Windows\System32\drivers\GEARAspiWDM.sys Object was not changed (iChecker)
04/11/2011 15:51:58 OK C:\Windows\System32\drivers\GAGP30KX.SYS Object was not changed (iChecker)
04/11/2011 15:51:56 OK C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe Object was not changed (iChecker)
04/11/2011 15:51:56 OK C:\Windows\System32\drivers\fltMgr.sys Object was not changed (iChecker)
04/11/2011 15:51:56 OK C:\Windows\System32\drivers\flpydisk.sys Object was not changed (iChecker)
04/11/2011 15:51:55 OK C:\Windows\System32\drivers\filetrace.sys Object was not changed (iChecker)
04/11/2011 15:51:55 OK C:\Windows\System32\drivers\fileinfo.sys Object was not changed (iChecker)
04/11/2011 15:51:55 OK C:\Windows\System32\drivers\fdc.sys Object was not changed (iChecker)
04/11/2011 15:51:55 OK C:\Windows\System32\drivers\fastfat.sys Object was not changed (iChecker)
04/11/2011 15:51:55 OK C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe Object was not changed (iChecker)
04/11/2011 15:51:55 OK C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe Object was not changed (iChecker)
04/11/2011 15:51:54 OK C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys Object was not changed (iChecker)
04/11/2011 15:51:54 OK C:\Acer\Empowering Technology\eNet\eNet Service.exe Object was not changed (iChecker)
04/11/2011 15:51:54 OK C:\Acer\Empowering Technology\eNet\eNet.dll Object was not changed (iChecker)
04/11/2011 15:51:54 OK C:\Windows\System32\drivers\elxstor.sys Object was not changed (iChecker)
04/11/2011 15:51:54 OK C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe Object was not changed (iChecker)
04/11/2011 15:51:54 OK C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys Object was not changed (iChecker)
04/11/2011 15:51:54 OK C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe Object was not changed (iChecker)
04/11/2011 15:51:54 OK C:\Windows\System32\drivers\ecache.sys Object was not changed (iChecker)
04/11/2011 15:51:54 OK C:\Windows\System32\drivers\E1G60I32.sys Object was not changed (iChecker)
04/11/2011 15:51:54 OK C:\Windows\System32\drivers\dxgkrnl.sys Object was not changed (iChecker)
04/11/2011 15:51:54 OK C:\Windows\System32\drivers\drmkaud.sys Object was not changed (iChecker)
04/11/2011 15:51:53 OK C:\Program Files\Launch Manager\DPortIO.sys Object was not changed (iChecker)
04/11/2011 15:51:53 OK C:\Windows\System32\drivers\DKbFltr.sys Object was not changed (iChecker)
04/11/2011 15:51:53 OK C:\Windows\System32\drivers\disk.sys Object was not changed (iChecker)
04/11/2011 15:51:53 OK C:\Windows\System32\dfsr.exe Object was not changed (iChecker)
04/11/2011 15:51:53 OK C:\Windows\System32\drivers\dfsc.sys Object was not changed (iChecker)
04/11/2011 15:51:52 OK C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe Object was not changed (iChecker)
04/11/2011 15:51:52 OK C:\Windows\System32\drivers\crusoe.sys Object was not changed (iChecker)
04/11/2011 15:51:51 OK C:\Windows\System32\drivers\crcdisk.sys Object was not changed (iChecker)
04/11/2011 15:51:51 OK C:\Windows\System32\dllhost.exe Object was not changed (iChecker)
04/11/2011 15:51:51 OK C:\Windows\System32\drivers\compbatt.sys Object was not changed (iChecker)
04/11/2011 15:51:51 OK C:\Windows\System32\drivers\cmdide.sys Object was not changed (iChecker)
04/11/2011 15:51:51 OK C:\Windows\System32\drivers\CmBatt.sys Object was not changed (iChecker)
04/11/2011 15:51:51 OK C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe Object was not changed (iChecker)
04/11/2011 15:51:50 OK C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe Object was not changed (iChecker)
04/11/2011 15:51:50 OK C:\Windows\System32\clfs.sys Object was not changed (iChecker)
04/11/2011 15:51:50 OK C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe Object was not changed (iChecker)
04/11/2011 15:51:50 OK C:\Windows\System32\drivers\circlass.sys Object was not changed (iChecker)
04/11/2011 15:51:50 OK C:\Windows\System32\drivers\cdrom.sys Object was not changed (iChecker)
04/11/2011 15:51:50 OK C:\Windows\System32\drivers\cdfs.sys Object was not changed (iChecker)
04/11/2011 15:51:50 OK C:\Windows\System32\drivers\bthmodem.sys Object was not changed (iChecker)
04/11/2011 15:51:50 OK C:\Windows\System32\drivers\BrUsbSer.sys Object was not changed (iChecker)
04/11/2011 15:51:50 OK C:\Windows\System32\drivers\BrUsbMdm.sys Object was not changed (iChecker)
04/11/2011 15:51:50 OK C:\Windows\System32\drivers\BrSerWdm.sys Object was not changed (iChecker)
04/11/2011 15:51:50 OK C:\Windows\System32\drivers\BrSerId.sys Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Windows\System32\drivers\BrFiltUp.sys Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Windows\System32\drivers\BrFiltLo.sys Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Windows\System32\drivers\bowser.sys Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Program Files\Bonjour\mDNSResponder.exe Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Windows\System32\drivers\beep.sys Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Windows\System32\drivers\b57nd60x.sys Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Windows\System32\drivers\athr.sys Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Windows\System32\drivers\atapi.sys Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Windows\System32\drivers\asyncmac.sys Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Windows\System32\drivers\arcsas.sys Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Windows\System32\drivers\arc.sys Object was not changed (iChecker)
04/11/2011 15:51:49 OK C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe Object was not changed (iChecker)
04/11/2011 15:51:48 OK C:\Windows\System32\drivers\Apfiltr.sys Object was not changed (iChecker)
04/11/2011 15:51:48 OK C:\Windows\System32\drivers\amdk8.sys Object was not changed (iChecker)
04/11/2011 15:51:47 OK C:\Windows\System32\drivers\amdk7.sys Object was not changed (iChecker)
04/11/2011 15:51:47 OK C:\Windows\System32\drivers\amdide.sys Object was not changed (iChecker)
04/11/2011 15:51:47 OK C:\Windows\System32\drivers\AMDAGP.SYS Object was not changed (iChecker)
04/11/2011 15:51:47 OK C:\Windows\System32\drivers\aliide.sys Object was not changed (iChecker)
04/11/2011 15:51:47 OK C:\Windows\System32\alg.exe Object was not changed (iChecker)
04/11/2011 15:51:47 OK C:\Acer\ALaunch\ALaunchSvc.exe Object was not changed (iChecker)
04/11/2011 15:51:47 OK C:\Windows\System32\drivers\djsvs.sys Object was not changed (iChecker)
04/11/2011 15:51:46 OK C:\Windows\System32\drivers\AGP440.sys Object was not changed (iChecker)
04/11/2011 15:51:46 OK C:\Windows\System32\drivers\afd.sys Object was not changed (iChecker)
04/11/2011 15:51:46 OK C:\Windows\System32\svchost.exe Object was not changed (iChecker)
04/11/2011 15:51:46 OK C:\Windows\System32\drivers\adpu320.sys Object was not changed (iChecker)
04/11/2011 15:51:46 OK C:\Windows\System32\drivers\adpu160m.sys Object was not changed (iChecker)
04/11/2011 15:51:46 OK C:\Windows\System32\drivers\adpahci.sys Object was not changed (iChecker)
04/11/2011 15:51:46 OK C:\Windows\System32\drivers\adp94xx.sys Object was not changed (iChecker)
04/11/2011 15:51:46 OK C:\Windows\System32\drivers\acpi.sys Object was not changed (iChecker)
04/11/2011 15:51:43 OK C:\Windows\System32\WUDFSvc.dll Object was not changed (iChecker)
04/11/2011 15:51:43 OK C:\Windows\System32\wuaueng.dll Object was not changed (iChecker)
04/11/2011 15:51:43 OK C:\Windows\System32\wscsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:43 OK C:\Windows\System32\wpdbusenum.dll Object was not changed (iChecker)
04/11/2011 15:51:43 OK C:\Windows\System32\wpcsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:43 OK C:\Windows\System32\wlansvc.dll Object was not changed (iChecker)
04/11/2011 15:51:43 OK C:\Windows\System32\WsmSvc.dll Object was not changed (iChecker)
04/11/2011 15:51:43 OK C:\Windows\System32\wbem\wmisvc.dll Object was not changed (iChecker)
04/11/2011 15:51:43 OK C:\Windows\System32\WINHTTP.dll Object was not changed (iChecker)
04/11/2011 15:51:42 OK C:\Program Files\Windows Defender\MpSvc.dll Object was not changed (iChecker)
04/11/2011 15:51:42 OK C:\Windows\System32\wersvc.dll Object was not changed (iChecker)
04/11/2011 15:51:42 OK C:\Windows\System32\wercplsupport.dll Object was not changed (iChecker)
04/11/2011 15:51:42 OK C:\Windows\System32\wecsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:41 OK C:\Windows\System32\WebClnt.dll Object was not changed (iChecker)
04/11/2011 15:51:40 OK C:\Windows\System32\wdi.dll Object was not changed (iChecker)
04/11/2011 15:51:40 OK C:\Windows\System32\WcsPlugInService.dll Object was not changed (iChecker)
04/11/2011 15:51:40 OK C:\Windows\System32\wcncsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:39 OK C:\Windows\System32\w32time.dll Object was not changed (iChecker)
04/11/2011 15:51:39 OK C:\Windows\System32\uxsms.dll Object was not changed (iChecker)
04/11/2011 15:51:39 OK C:\Windows\System32\upnphost.dll Object was not changed (iChecker)
04/11/2011 15:51:39 OK C:\Windows\System32\trkwks.dll Object was not changed (iChecker)
04/11/2011 15:51:39 OK C:\Windows\System32\termsrv.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\tbssvc.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\tapisrv.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\TabSvc.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\sysmain.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\swprv.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\wiaservc.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\ssdpsrv.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\SLUINotify.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\SHSVCS.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\ipnathlp.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\SessEnv.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\Sens.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\seclogon.dll Object was not changed (iChecker)
04/11/2011 15:51:38 OK C:\Windows\System32\sdrsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:37 OK C:\Windows\System32\schedsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:37 OK C:\Windows\System32\SCardSvr.dll Object was not changed (iChecker)
04/11/2011 15:51:37 OK C:\Windows\System32\regsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:37 OK C:\Windows\System32\mprdim.dll Object was not changed (iChecker)
04/11/2011 15:51:37 OK C:\Windows\System32\rasmans.dll Object was not changed (iChecker)
04/11/2011 15:51:37 OK C:\Windows\System32\rasauto.dll Object was not changed (iChecker)
04/11/2011 15:51:37 OK C:\Windows\System32\qwave.dll Object was not changed (iChecker)
04/11/2011 15:51:37 OK C:\Windows\System32\profsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:36 OK C:\Windows\System32\IPSECSVC.DLL Object was not changed (iChecker)
04/11/2011 15:51:35 OK C:\Windows\System32\umpnpmgr.dll Object was not changed (iChecker)
04/11/2011 15:51:35 OK C:\Windows\System32\pla.dll Object was not changed (iChecker)
04/11/2011 15:51:35 OK C:\Windows\System32\pcasvc.dll Object was not changed (iChecker)
04/11/2011 15:51:34 OK C:\Windows\System32\p2psvc.dll Object was not changed (iChecker)
04/11/2011 15:51:34 OK C:\Windows\System32\nsisvc.dll Object was not changed (iChecker)
04/11/2011 15:51:34 OK C:\Windows\System32\nlasvc.dll Object was not changed (iChecker)
04/11/2011 15:51:34 OK C:\Windows\System32\netprofm.dll Object was not changed (iChecker)
04/11/2011 15:51:34 OK C:\Windows\System32\netman.dll Object was not changed (iChecker)
04/11/2011 15:51:34 OK C:\Windows\System32\QAGENTRT.DLL Object was not changed (iChecker)
04/11/2011 15:51:34 OK C:\Windows\System32\iscsiexe.dll Object was not changed (iChecker)
04/11/2011 15:51:34 OK C:\Windows\System32\MPSSVC.dll Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\mmcss.dll Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\lmhsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\lltdsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\wkssvc.dll Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\srvsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\msdtckrm.dll Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\iphlpsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\IPBusEnum.dll Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\IKEEXT.DLL Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\KMSVC.DLL Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\hidserv.dll Object was not changed (iChecker)
04/11/2011 15:51:33 OK C:\Windows\System32\gpsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:31 OK C:\Windows\System32\FDResPub.dll Object was not changed (iChecker)
04/11/2011 15:51:31 OK C:\Windows\System32\fdPHost.dll Object was not changed (iChecker)
04/11/2011 15:51:30 OK C:\Windows\System32\es.dll Object was not changed (iChecker)
04/11/2011 15:51:30 OK C:\Windows\System32\emdmgmt.dll Object was not changed (iChecker)
04/11/2011 15:51:30 OK C:\Windows\System32\eapsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\dps.dll Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\dot3svc.dll Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\dnsrslvr.dll Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\dhcpcsvc.DLL Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\rpcss.dll Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\cryptsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\certprop.dll Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\browser.dll Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\qmgr.dll Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\BFE.DLL Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\audiosrv.dll Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\appinfo.dll Object was not changed (iChecker)
04/11/2011 15:51:29 OK C:\Windows\System32\aelupsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:23 OK C:\Program Files\Microsoft Security Client\msseces.exe Object was not changed (iChecker)
04/11/2011 15:51:22 OK C:\Windows\System32\igfxdev.dll Object was not changed (iChecker)
04/11/2011 15:51:19 OK C:\Windows\System32\userinit.exe Object was not changed (iChecker)
04/11/2011 15:51:19 OK C:\Windows\Explorer.EXE Object was not changed (iChecker)
04/11/2011 15:51:19 OK C:\Windows\System32\TIMER.DRV Object was not changed (iChecker)
04/11/2011 15:51:19 OK C:\Windows\system.ini
04/11/2011 15:51:19 OK C:\Windows\win.ini
04/11/2011 15:51:19 OK C:\config.sys
04/11/2011 15:51:19 OK C:\autoexec.bat
04/11/2011 15:51:19 OK C:\Windows\System32\ntvdm.exe Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\dciman32.dll Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\SensApi.dll Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\cryptnet.dll Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\appdata\local\temp\rarsfx1\8345820.exe Object was not changed (iChecker)
04/11/2011 15:51:13 OK 8345820.exe\cscapi.dll
04/11/2011 15:51:13 OK 8345820.exe\NETAPI32.dll
04/11/2011 15:51:13 OK 8345820.exe\PROPSYS.dll
04/11/2011 15:51:13 OK 8345820.exe\ntshrui.dll
04/11/2011 15:51:13 OK 8345820.exe\LINKINFO.dll
04/11/2011 15:51:13 OK 8345820.exe\CLBCatQ.DLL
04/11/2011 15:51:13 OK 8345820.exe\dciman32.dll
04/11/2011 15:51:13 OK 8345820.exe\UxTheme.dll
04/11/2011 15:51:13 OK 8345820.exe\dhcpcsvc6.DLL
04/11/2011 15:51:13 OK C:\Windows\System32\WINTRUST.dll Object was not changed (iChecker)
04/11/2011 15:51:13 OK 8345820.exe\WINNSI.DLL
04/11/2011 15:51:13 OK 8345820.exe\DNSAPI.dll
04/11/2011 15:51:13 OK 8345820.exe\dhcpcsvc.DLL
04/11/2011 15:51:13 OK 8345820.exe\IPHLPAPI.DLL
04/11/2011 15:51:13 OK 8345820.exe\wship6.dll
04/11/2011 15:51:13 OK 8345820.exe\wshtcpip.dll
04/11/2011 15:51:13 OK 8345820.exe\mswsock.dll
04/11/2011 15:51:13 OK 8345820.exe\WINHTTP.dll
04/11/2011 15:51:13 OK 8345820.exe\Cabinet.dll
04/11/2011 15:51:13 OK 8345820.exe\SAMLIB.dll
04/11/2011 15:51:13 OK 8345820.exe\NTMARTA.DLL
04/11/2011 15:51:13 OK 8345820.exe\SensApi.dll
04/11/2011 15:51:13 OK 8345820.exe\NSI.dll
04/11/2011 15:51:13 OK 8345820.exe\WS2_32.dll
04/11/2011 15:51:13 OK 8345820.exe\WLDAP32.dll
04/11/2011 15:51:13 OK 8345820.exe\cryptnet.dll
04/11/2011 15:51:13 OK 8345820.exe\slc.dll
04/11/2011 15:51:13 OK 8345820.exe\GPAPI.dll
04/11/2011 15:51:13 OK 8345820.exe\BCRYPT.dll
04/11/2011 15:51:13 OK 8345820.exe\ncrypt.dll
04/11/2011 15:51:13 OK 8345820.exe\rsaenh.dll
04/11/2011 15:51:13 OK 8345820.exe\imagehlp.dll
04/11/2011 15:51:13 OK 8345820.exe\Secur32.dll
04/11/2011 15:51:13 OK 8345820.exe\USERENV.dll
04/11/2011 15:51:13 OK 8345820.exe\MSASN1.dll
04/11/2011 15:51:13 OK 8345820.exe\CRYPT32.dll
04/11/2011 15:51:13 OK C:\Windows\System32\FLTLIB.DLL Object was not changed (iChecker)
04/11/2011 15:51:13 OK 8345820.exe\wintrust.dll
04/11/2011 15:51:13 OK 8345820.exe\comctl32.dll
04/11/2011 15:51:13 OK 8345820.exe\USP10.dll
04/11/2011 15:51:13 OK 8345820.exe\LPK.DLL
04/11/2011 15:51:13 OK 8345820.exe\MSCTF.dll
04/11/2011 15:51:13 OK 8345820.exe\IMM32.DLL
04/11/2011 15:51:13 OK 8345820.exe\SHLWAPI.dll
04/11/2011 15:51:13 OK 8345820.exe\SHELL32.dll
04/11/2011 15:51:13 OK 8345820.exe\FLTLIB.DLL
04/11/2011 15:51:13 OK 8345820.exe\OLEAUT32.dll
04/11/2011 15:51:13 OK 8345820.exe\SETUPAPI.dll
04/11/2011 15:51:13 OK 8345820.exe\PSAPI.DLL
04/11/2011 15:51:13 OK 8345820.exe\ole32.dll
04/11/2011 15:51:13 OK 8345820.exe\RPCRT4.dll
04/11/2011 15:51:13 OK 8345820.exe\ADVAPI32.dll
04/11/2011 15:51:13 OK 8345820.exe\GDI32.dll
04/11/2011 15:51:13 OK 8345820.exe\USER32.dll
04/11/2011 15:51:13 OK 8345820.exe\msvcrt.dll
04/11/2011 15:51:13 OK 8345820.exe\gdiplus.dll
04/11/2011 15:51:13 OK 8345820.exe\kernel32.dll
04/11/2011 15:51:13 OK 8345820.exe\ntdll.dll
04/11/2011 15:51:13 OK 8345820.exe\8345820.exe Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/helper64.prg
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/helper64.exe Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/600/8345820drv.sys Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/600/8345820drv.inf Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/600/8345820drv.cat
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/501/8345820drv.sys Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/501/8345820drv.inf Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/2/501/8345820drv.cat
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/1/kl1.sys Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/1/kl1.inf Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win64/1/kl1.cat
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/600/8345820drv.sys Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/600/8345820drv.inf Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/600/8345820drv.cat
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/501/8345820drv.sys Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/501/8345820drv.inf Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/2/501/8345820drv.cat
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/1/kl1.sys Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/1/kl1.inf Object was not changed (iChecker)
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/Drivers/Win32/1/kl1.cat
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/background.png
04/11/2011 15:51:13 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/8345820rar.prg
04/11/2011 15:51:12 Password protected C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/8345820rar.exe
04/11/2011 15:51:12 Archive: RAR C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/8345820rar.exe
04/11/2011 15:51:08 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/8345820.prg
04/11/2011 15:51:08 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/8345820.exe Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\System32\RICHED20.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe/archive comment
04/11/2011 15:51:08 Archive: RAR C:\Windows\System32\config\systemprofile\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe
04/11/2011 15:51:08 OK C:\Windows\System32\ole32.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\System32\riched32.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\System32\COMDLG32.DLL Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\System32\ADVAPI32.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\SETUPAPI.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\Secur32.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\USERENV.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\OLEAUT32.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\PROPSYS.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\UxTheme.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\RICHED20.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\riched32.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\USP10.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\LPK.DLL
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\MSCTF.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\IMM32.DLL
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\OLE32.DLL
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\SHELL32.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\COMDLG32.DLL
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\SHLWAPI.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\USER32.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\GDI32.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\msvcrt.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\COMCTL32.DLL
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\RPCRT4.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\ADVAPI32.DLL
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\kernel32.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\ntdll.dll
04/11/2011 15:51:08 OK setup_11.0.0.1245.x01_2011_11_03_23_50.exe\setup_11.0.0.1245.x01_2011_11_03_23_50.exe Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\System32\msxml3.dll
04/11/2011 15:51:08 OK C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d08d7da0442a985d\MSVCR80.dll
04/11/2011 15:51:08 OK C:\Windows\System32\CryptoAPI.dll
04/11/2011 15:51:08 OK C:\Windows\System32\XmlLite.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\System32\ntshrui.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\System32\AVRT.dll
04/11/2011 15:51:08 OK C:\Windows\System32\ksuser.dll
04/11/2011 15:51:08 OK C:\Windows\System32\wdmaud.drv
04/11/2011 15:51:08 OK C:\Windows\System32\bthprops.cpl
04/11/2011 15:51:08 OK C:\Windows\System32\WINMM.dll
04/11/2011 15:51:08 OK C:\Windows\System32\davclnt.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\System32\drprov.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\System32\fwpuclnt.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK C:\Windows\System32\ntlanman.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK explorer.exe\MSVCR80.dll
04/11/2011 15:51:08 OK explorer.exe\CryptoAPI.dll
04/11/2011 15:51:08 OK C:\Windows\System32\QAgent.dll Object was not changed (iChecker)
04/11/2011 15:51:08 OK explorer.exe\msxml3.dll
04/11/2011 15:51:08 OK explorer.exe\GPAPI.dll
04/11/2011 15:51:08 OK explorer.exe\ncrypt.dll
04/11/2011 15:51:07 OK explorer.exe\xmllite.dll
04/11/2011 15:51:07 OK explorer.exe\ntshrui.dll
04/11/2011 15:51:07 OK C:\Windows\System32\imagehlp.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\AVRT.dll
04/11/2011 15:51:07 OK C:\Windows\System32\WINTRUST.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\ksuser.dll
04/11/2011 15:51:07 OK C:\Windows\System32\WSCAPI.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\wdmaud.drv
04/11/2011 15:51:07 OK C:\Windows\System32\PortableDeviceApi.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\WINMM.dll
04/11/2011 15:51:07 OK C:\Windows\System32\SyncCenter.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\davclnt.dll
04/11/2011 15:51:07 OK C:\Windows\System32\wscntfy.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\drprov.dll
04/11/2011 15:51:07 OK explorer.exe\ntlanman.dll
04/11/2011 15:51:07 OK explorer.exe\MPR.dll
04/11/2011 15:51:07 OK explorer.exe\fwpuclnt.dll
04/11/2011 15:51:07 OK C:\Windows\System32\imapi2.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\QAgent.dll
04/11/2011 15:51:07 OK explorer.exe\bthprops.cpl
04/11/2011 15:51:07 OK C:\Windows\System32\PortableDeviceTypes.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\imagehlp.dll
04/11/2011 15:51:07 OK C:\Windows\System32\webcheck.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\WINTRUST.dll
04/11/2011 15:51:07 OK C:\Windows\System32\wpdshserviceobj.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\WSCAPI.dll
04/11/2011 15:51:07 OK explorer.exe\wscntfy.dll
04/11/2011 15:51:07 OK C:\Windows\System32\srchadmin.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\PortableDeviceApi.dll
04/11/2011 15:51:07 OK C:\Windows\System32\WINHTTP.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\imapi2.dll
04/11/2011 15:51:07 OK explorer.exe\PortableDeviceTypes.dll
04/11/2011 15:51:07 OK C:\Windows\System32\AltTab.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\SyncCenter.dll
04/11/2011 15:51:07 OK explorer.exe\webcheck.dll
04/11/2011 15:51:07 OK C:\Windows\System32\eappcfg.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK C:\Windows\System32\BCRYPT.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\srchadmin.dll
04/11/2011 15:51:07 OK C:\Windows\System32\eappprxy.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\WINHTTP.dll
04/11/2011 15:51:07 OK explorer.exe\wpdshserviceobj.dll
04/11/2011 15:51:07 OK C:\Windows\System32\OneX.DLL Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\AltTab.dll
04/11/2011 15:51:07 OK explorer.exe\bcrypt.dll
04/11/2011 15:51:07 OK C:\Windows\System32\Wlanapi.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK C:\Windows\System32\sxs.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK C:\Windows\System32\msi.dll
04/11/2011 15:51:07 OK explorer.exe\eappcfg.dll
04/11/2011 15:51:07 OK explorer.exe\eappprxy.dll
04/11/2011 15:51:07 OK C:\Windows\System32\MLANG.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\OneX.DLL
04/11/2011 15:51:07 OK C:\Windows\System32\actxprxy.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\Wlanapi.dll
04/11/2011 15:51:07 OK explorer.exe\SXS.DLL
04/11/2011 15:51:07 OK explorer.exe\MLANG.dll
04/11/2011 15:51:07 OK explorer.exe\actxprxy.dll
04/11/2011 15:51:07 OK C:\Windows\System32\VERSION.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK C:\Windows\System32\msiltcfg.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK C:\Windows\System32\QUtil.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\msi.dll
04/11/2011 15:51:07 OK C:\Windows\System32\pnidui.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK C:\Windows\System32\wlanutil.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\VERSION.dll
04/11/2011 15:51:07 OK explorer.exe\msiltcfg.dll
04/11/2011 15:51:07 OK explorer.exe\wlanutil.dll
04/11/2011 15:51:07 OK explorer.exe\wevtapi.dll
04/11/2011 15:51:07 OK explorer.exe\QUtil.dll
04/11/2011 15:51:07 OK C:\Windows\System32\nlaapi.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\pnidui.dll
04/11/2011 15:51:07 OK explorer.exe\nlaapi.dll
04/11/2011 15:51:07 OK C:\Windows\System32\dhcpcsvc6.DLL Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\dhcpcsvc6.DLL
04/11/2011 15:51:07 OK C:\Windows\System32\WINNSI.DLL Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\WINNSI.DLL
04/11/2011 15:51:07 OK C:\Windows\System32\DNSAPI.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\DNSAPI.dll
04/11/2011 15:51:07 OK C:\Windows\System32\dhcpcsvc.DLL Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\dhcpcsvc.DLL
04/11/2011 15:51:07 OK C:\Windows\System32\IPHLPAPI.DLL Object was not changed (iChecker)
04/11/2011 15:51:07 OK C:\Windows\System32\netshell.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\IPHLPAPI.DLL
04/11/2011 15:51:07 OK explorer.exe\netshell.dll
04/11/2011 15:51:07 OK C:\Windows\System32\MMDevApi.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\MMDevApi.dll
04/11/2011 15:51:07 OK C:\Windows\System32\SndVolSSO.dll Object was not changed (iChecker)
04/11/2011 15:51:07 OK explorer.exe\SndVolSSO.dll
04/11/2011 15:51:06 OK C:\Windows\System32\es.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\es.dll
04/11/2011 15:51:06 OK C:\Windows\System32\cscapi.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\cscapi.dll
04/11/2011 15:51:06 OK explorer.exe\WINSTA.dll
04/11/2011 15:51:06 OK explorer.exe\WTSAPI32.dll
04/11/2011 15:51:06 OK C:\Windows\System32\BatMeter.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\SETUPAPI.dll
04/11/2011 15:51:06 OK explorer.exe\BatMeter.dll
04/11/2011 15:51:06 OK C:\Windows\System32\stobject.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\stobject.dll
04/11/2011 15:51:06 OK explorer.exe\NSI.dll
04/11/2011 15:51:06 OK explorer.exe\WS2_32.dll
04/11/2011 15:51:06 OK explorer.exe\WLDAP32.dll
04/11/2011 15:51:06 OK C:\Windows\System32\urlmon.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\NTMARTA.DLL
04/11/2011 15:51:06 OK explorer.exe\urlmon.dll
04/11/2011 15:51:06 OK C:\Windows\System32\ExplorerFrame.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\ExplorerFrame.dll
04/11/2011 15:51:06 OK C:\Windows\System32\Normaliz.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\Normaliz.dll
04/11/2011 15:51:06 OK C:\Windows\System32\WININET.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\WININET.dll
04/11/2011 15:51:06 OK C:\Windows\System32\LINKINFO.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\LINKINFO.dll
04/11/2011 15:51:06 OK C:\Windows\System32\iertutil.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK C:\Windows\System32\ieframe.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\iertutil.dll
04/11/2011 15:51:06 OK explorer.exe\ieframe.dll
04/11/2011 15:51:06 OK C:\Windows\System32\MSIMG32.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK C:\Windows\System32\authui.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\MSIMG32.dll
04/11/2011 15:51:06 OK C:\Windows\System32\NLSData0009.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK C:\Windows\System32\NLSLexicons0009.dll Object was not changed (iChecker)
04/11/2011 15:51:06 OK explorer.exe\authui.dll
04/11/2011 15:51:06 OK explorer.exe\NLSLexicons0009.dll
04/11/2011 15:51:06 OK explorer.exe\NLSData0009.dll
04/11/2011 15:51:06 OK explorer.exe\MSASN1.dll
04/11/2011 15:51:06 OK explorer.exe\CRYPT32.dll
04/11/2011 15:51:06 OK C:\Windows\System32\NaturalLanguage6.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\NaturalLanguage6.dll
04/11/2011 15:51:05 OK C:\Windows\System32\msshsq.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\msshsq.dll
04/11/2011 15:51:05 OK C:\Windows\System32\apphelp.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\apphelp.dll
04/11/2011 15:51:05 OK C:\Windows\System32\SAMLIB.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\SAMLIB.dll
04/11/2011 15:51:05 OK C:\Windows\System32\shacct.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\shacct.dll
04/11/2011 15:51:05 OK explorer.exe\Secur32.dll
04/11/2011 15:51:05 OK explorer.exe\USERENV.dll
04/11/2011 15:51:05 OK explorer.exe\WINBRAND.dll
04/11/2011 15:51:05 OK C:\Windows\System32\OLEACC.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\OLEACC.dll
04/11/2011 15:51:05 OK explorer.exe\PSAPI.DLL
04/11/2011 15:51:05 OK C:\Windows\System32\timedate.cpl
04/11/2011 15:51:05 OK explorer.exe\NETAPI32.dll
04/11/2011 15:51:05 OK explorer.exe\ATL.DLL
04/11/2011 15:51:05 OK explorer.exe\timedate.cpl
04/11/2011 15:51:05 OK explorer.exe\rsaenh.dll
04/11/2011 15:51:05 OK explorer.exe\CLBCatQ.DLL
04/11/2011 15:51:05 OK C:\Windows\System32\IconCodecService.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK C:\Windows\System32\SHELL32.dll
04/11/2011 15:51:05 OK C:\Windows\System32\WindowsCodecs.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\IconCodecService.dll
04/11/2011 15:51:05 OK C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\WindowsCodecs.dll
04/11/2011 15:51:05 OK explorer.exe\comctl32.dll
04/11/2011 15:51:05 OK explorer.exe\USP10.dll
04/11/2011 15:51:05 OK C:\Windows\System32\DUser.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\LPK.DLL
04/11/2011 15:51:05 OK explorer.exe\DUser.dll
04/11/2011 15:51:05 OK C:\Windows\System32\IMM32.DLL Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\MSCTF.dll
04/11/2011 15:51:05 OK C:\Windows\System32\BROWSEUI.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\IMM32.dll
04/11/2011 15:51:05 OK C:\Windows\System32\PROPSYS.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\BROWSEUI.dll
04/11/2011 15:51:05 OK C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16782_none_9ea1072ec96e0be7\gdiplus.dll Object was not changed (iChecker)
04/11/2011 15:51:05 OK explorer.exe\PROPSYS.dll
04/11/2011 15:51:04 OK explorer.exe\slc.dll
04/11/2011 15:51:04 OK C:\Windows\System32\dwmapi.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK explorer.exe\gdiplus.dll
04/11/2011 15:51:04 OK C:\Windows\System32\UxTheme.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK explorer.exe\dwmapi.dll
04/11/2011 15:51:04 OK explorer.exe\POWRPROF.dll
04/11/2011 15:51:04 OK C:\Windows\System32\SHDOCVW.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK explorer.exe\UxTheme.dll
04/11/2011 15:51:04 OK explorer.exe\SHDOCVW.dll
04/11/2011 15:51:04 OK explorer.exe\OLEAUT32.dll
04/11/2011 15:51:04 OK explorer.exe\ole32.dll
04/11/2011 15:51:04 OK explorer.exe\SHELL32.dll
04/11/2011 15:51:04 OK C:\Windows\System32\SHLWAPI.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK explorer.exe\SHLWAPI.dll
04/11/2011 15:51:04 OK explorer.exe\msvcrt.dll
04/11/2011 15:51:04 OK explorer.exe\USER32.dll
04/11/2011 15:51:04 OK explorer.exe\GDI32.dll
04/11/2011 15:51:04 OK explorer.exe\RPCRT4.dll
04/11/2011 15:51:04 OK explorer.exe\ADVAPI32.dll
04/11/2011 15:51:04 OK explorer.exe\kernel32.dll
04/11/2011 15:51:04 OK C:\Windows\Explorer.EXE Object was not changed (iChecker)
04/11/2011 15:51:04 OK explorer.exe\ntdll.dll
04/11/2011 15:51:04 OK explorer.exe\Explorer.EXE
04/11/2011 15:51:04 OK C:\Windows\System32\wbem\wbemsvc.dll
04/11/2011 15:51:04 OK C:\Windows\System32\wbem\ncprov.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK C:\Windows\System32\wbem\wbemess.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK svchost.exe\wbemsvc.dll
04/11/2011 15:51:04 OK C:\Windows\System32\wbem\wmiprvsd.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK svchost.exe\ncprov.dll
04/11/2011 15:51:04 OK C:\Windows\System32\wbem\repdrvfs.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK C:\Windows\System32\wbem\FastProx.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK svchost.exe\wbemess.dll
04/11/2011 15:51:04 OK svchost.exe\NCObjAPI.DLL
04/11/2011 15:51:04 OK C:\Windows\System32\wbem\wmiutils.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK svchost.exe\wmiprvsd.dll
04/11/2011 15:51:04 OK svchost.exe\repdrvfs.dll
04/11/2011 15:51:04 OK svchost.exe\wmiutils.dll
04/11/2011 15:51:04 OK svchost.exe\Secur32.dll
04/11/2011 15:51:04 OK svchost.exe\DNSAPI.dll
04/11/2011 15:51:04 OK svchost.exe\NTDSAPI.dll
04/11/2011 15:51:04 OK C:\Windows\System32\wbem\esscli.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK C:\Windows\System32\wbem\wbemcore.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK svchost.exe\FastProx.dll
04/11/2011 15:51:04 OK C:\Windows\System32\XmlLite.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK C:\Windows\System32\VSSAPI.DLL Object was not changed (iChecker)
04/11/2011 15:51:04 OK svchost.exe\esscli.dll
04/11/2011 15:51:04 OK C:\Windows\System32\vsstrace.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK C:\Windows\System32\ATL.DLL Object was not changed (iChecker)
04/11/2011 15:51:04 OK svchost.exe\wbemcore.dll
04/11/2011 15:51:04 OK svchost.exe\SETUPAPI.dll
04/11/2011 15:51:04 OK svchost.exe\MPR.dll
04/11/2011 15:51:04 OK svchost.exe\NETAPI32.dll
04/11/2011 15:51:04 OK svchost.exe\XmlLite.dll
04/11/2011 15:51:04 OK svchost.exe\AUTHZ.dll
04/11/2011 15:51:04 OK svchost.exe\vsstrace.dll
04/11/2011 15:51:04 OK C:\Windows\System32\wbem\wbemcomn.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK svchost.exe\ATL.DLL
04/11/2011 15:51:04 OK svchost.exe\VSSAPI.DLL
04/11/2011 15:51:04 OK svchost.exe\rsaenh.dll
04/11/2011 15:51:04 OK svchost.exe\CLBCatQ.DLL
04/11/2011 15:51:04 OK svchost.exe\OLEAUT32.dll
04/11/2011 15:51:04 OK C:\Windows\System32\wbem\wmisvc.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK svchost.exe\wbemcomn.dll
04/11/2011 15:51:04 OK svchost.exe\wmisvc.dll
04/11/2011 15:51:04 OK svchost.exe\USP10.dll
04/11/2011 15:51:04 OK svchost.exe\LPK.DLL
04/11/2011 15:51:04 OK svchost.exe\MSCTF.dll
04/11/2011 15:51:04 OK svchost.exe\IMM32.DLL
04/11/2011 15:51:04 OK svchost.exe\ole32.dll
04/11/2011 15:51:04 OK svchost.exe\SAMLIB.dll
04/11/2011 15:51:04 OK svchost.exe\PSAPI.DLL
04/11/2011 15:51:04 OK svchost.exe\NSI.dll
04/11/2011 15:51:04 OK svchost.exe\WS2_32.dll
04/11/2011 15:51:04 OK svchost.exe\WLDAP32.dll
04/11/2011 15:51:04 OK svchost.exe\GDI32.dll
04/11/2011 15:51:04 OK svchost.exe\USER32.dll
04/11/2011 15:51:04 OK svchost.exe\NTMARTA.DLL
04/11/2011 15:51:04 OK svchost.exe\RPCRT4.dll
04/11/2011 15:51:04 OK svchost.exe\ADVAPI32.dll
04/11/2011 15:51:04 OK svchost.exe\msvcrt.dll
04/11/2011 15:51:04 OK svchost.exe\kernel32.dll
04/11/2011 15:51:04 OK svchost.exe\ntdll.dll
04/11/2011 15:51:04 OK svchost.exe\svchost.exe
04/11/2011 15:51:04 OK C:\Windows\System32\Cabinet.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK C:\Windows\System32\ESENT.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK C:\Windows\System32\MSASN1.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK svchost.exe\Cabinet.dll
04/11/2011 15:51:04 OK C:\Windows\System32\CRYPT32.dll Object was not changed (iChecker)
04/11/2011 15:51:04 OK svchost.exe\ESENT.dll
04/11/2011 15:51:04 OK svchost.exe\Secur32.dll
04/11/2011 15:51:04 OK svchost.exe\USERENV.dll
04/11/2011 15:51:04 OK svchost.exe\MSASN1.dll
04/11/2011 15:51:03 OK C:\Windows\System32\MPR.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\CRYPT32.dll
04/11/2011 15:51:03 OK svchost.exe\SETUPAPI.dll
04/11/2011 15:51:03 OK C:\Windows\System32\NETAPI32.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\XmlLite.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\AUTHZ.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\MPR.dll
04/11/2011 15:51:03 OK svchost.exe\NETAPI32.dll
04/11/2011 15:51:03 OK C:\Windows\System32\VSSAPI.DLL Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\vsstrace.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\ATL.DLL Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\XmlLite.dll
04/11/2011 15:51:03 OK svchost.exe\AUTHZ.dll
04/11/2011 15:51:03 OK svchost.exe\vsstrace.dll
04/11/2011 15:51:03 OK svchost.exe\ATL.DLL
04/11/2011 15:51:03 OK C:\Windows\System32\cryptsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\VSSAPI.DLL
04/11/2011 15:51:03 OK svchost.exe\OLEAUT32.dll
04/11/2011 15:51:03 OK svchost.exe\cryptsvc.dll
04/11/2011 15:51:03 OK svchost.exe\USP10.dll
04/11/2011 15:51:03 OK svchost.exe\LPK.DLL
04/11/2011 15:51:03 OK svchost.exe\MSCTF.dll
04/11/2011 15:51:03 OK svchost.exe\IMM32.DLL
04/11/2011 15:51:03 OK svchost.exe\ole32.dll
04/11/2011 15:51:03 OK svchost.exe\SAMLIB.dll
04/11/2011 15:51:03 OK svchost.exe\PSAPI.DLL
04/11/2011 15:51:03 OK svchost.exe\NSI.dll
04/11/2011 15:51:03 OK svchost.exe\WS2_32.dll
04/11/2011 15:51:03 OK svchost.exe\WLDAP32.dll
04/11/2011 15:51:03 OK svchost.exe\GDI32.dll
04/11/2011 15:51:03 OK svchost.exe\USER32.dll
04/11/2011 15:51:03 OK svchost.exe\NTMARTA.DLL
04/11/2011 15:51:03 OK svchost.exe\RPCRT4.dll
04/11/2011 15:51:03 OK svchost.exe\ADVAPI32.dll
04/11/2011 15:51:03 OK svchost.exe\msvcrt.dll
04/11/2011 15:51:03 OK svchost.exe\kernel32.dll
04/11/2011 15:51:03 OK svchost.exe\ntdll.dll
04/11/2011 15:51:03 OK svchost.exe\svchost.exe
04/11/2011 15:51:03 OK C:\Windows\System32\NETAPI32.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\MSASN1.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\CRYPT32.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\credssp.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\wshtcpip.dll
04/11/2011 15:51:03 OK svchost.exe\mswsock.dll
04/11/2011 15:51:03 OK svchost.exe\NSI.dll
04/11/2011 15:51:03 OK svchost.exe\WS2_32.dll
04/11/2011 15:51:03 OK svchost.exe\PSAPI.DLL
04/11/2011 15:51:03 OK C:\Windows\System32\wevtsvc.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\NETAPI32.dll
04/11/2011 15:51:03 OK svchost.exe\schannel.dll
04/11/2011 15:51:03 OK C:\Windows\System32\slc.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\credssp.dll
04/11/2011 15:51:03 OK C:\Windows\System32\GPAPI.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\MSASN1.dll
04/11/2011 15:51:03 OK svchost.exe\CRYPT32.dll
04/11/2011 15:51:03 OK svchost.exe\USP10.dll
04/11/2011 15:51:03 OK svchost.exe\LPK.DLL
04/11/2011 15:51:03 OK svchost.exe\MSCTF.dll
04/11/2011 15:51:03 OK svchost.exe\IMM32.DLL
04/11/2011 15:51:03 OK svchost.exe\slc.dll
04/11/2011 15:51:03 OK svchost.exe\GPAPI.dll
04/11/2011 15:51:03 OK svchost.exe\VERSION.dll
04/11/2011 15:51:03 OK svchost.exe\GDI32.dll
04/11/2011 15:51:03 OK svchost.exe\USER32.dll
04/11/2011 15:51:03 OK svchost.exe\Secur32.dll
04/11/2011 15:51:03 OK svchost.exe\USERENV.dll
04/11/2011 15:51:03 OK C:\Windows\System32\svchost.exe Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\wevtsvc.dll
04/11/2011 15:51:03 OK svchost.exe\RPCRT4.dll
04/11/2011 15:51:03 OK svchost.exe\ADVAPI32.dll
04/11/2011 15:51:03 OK svchost.exe\msvcrt.dll
04/11/2011 15:51:03 OK svchost.exe\kernel32.dll
04/11/2011 15:51:03 OK svchost.exe\ntdll.dll
04/11/2011 15:51:03 OK svchost.exe\svchost.exe
04/11/2011 15:51:03 OK svchost.exe\CLBCatQ.DLL
04/11/2011 15:51:03 OK svchost.exe\wshtcpip.dll
04/11/2011 15:51:03 OK svchost.exe\mswsock.dll
04/11/2011 15:51:03 OK svchost.exe\rsaenh.dll
04/11/2011 15:51:03 OK svchost.exe\PSAPI.DLL
04/11/2011 15:51:03 OK svchost.exe\NETAPI32.dll
04/11/2011 15:51:03 OK svchost.exe\schannel.dll
04/11/2011 15:51:03 OK svchost.exe\credssp.dll
04/11/2011 15:51:03 OK svchost.exe\USERENV.dll
04/11/2011 15:51:03 OK svchost.exe\MSASN1.dll
04/11/2011 15:51:03 OK svchost.exe\CRYPT32.dll
04/11/2011 15:51:03 OK svchost.exe\USP10.dll
04/11/2011 15:51:03 OK svchost.exe\LPK.DLL
04/11/2011 15:51:03 OK svchost.exe\MSCTF.dll
04/11/2011 15:51:03 OK svchost.exe\IMM32.DLL
04/11/2011 15:51:03 OK svchost.exe\VERSION.dll
04/11/2011 15:51:03 OK svchost.exe\ole32.dll
04/11/2011 15:51:03 OK svchost.exe\OLEAUT32.dll
04/11/2011 15:51:03 OK svchost.exe\GDI32.dll
04/11/2011 15:51:03 OK svchost.exe\USER32.dll
04/11/2011 15:51:03 OK svchost.exe\FirewallAPI.dll
04/11/2011 15:51:03 OK svchost.exe\Secur32.dll
04/11/2011 15:51:03 OK svchost.exe\NSI.dll
04/11/2011 15:51:03 OK svchost.exe\WS2_32.dll
04/11/2011 15:51:03 OK svchost.exe\rpcss.dll
04/11/2011 15:51:03 OK svchost.exe\RPCRT4.dll
04/11/2011 15:51:03 OK svchost.exe\ADVAPI32.dll
04/11/2011 15:51:03 OK svchost.exe\msvcrt.dll
04/11/2011 15:51:03 OK svchost.exe\kernel32.dll
04/11/2011 15:51:03 OK svchost.exe\ntdll.dll
04/11/2011 15:51:03 OK svchost.exe\svchost.exe
04/11/2011 15:51:03 OK C:\Windows\System32\setupapi.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\rpcss.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\WTSAPI32.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\CLBCatQ.DLL Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\SAMLIB.dll
04/11/2011 15:51:03 OK svchost.exe\WLDAP32.dll
04/11/2011 15:51:03 OK svchost.exe\NTMARTA.DLL
04/11/2011 15:51:03 OK svchost.exe\SETUPAPI.dll
04/11/2011 15:51:03 OK C:\Windows\System32\VERSION.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\FirewallAPI.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\WTSAPI32.dll
04/11/2011 15:51:03 OK svchost.exe\WINSTA.dll
04/11/2011 15:51:03 OK svchost.exe\CLBCatQ.DLL
04/11/2011 15:51:03 OK svchost.exe\PSAPI.DLL
04/11/2011 15:51:03 OK svchost.exe\NETAPI32.dll
04/11/2011 15:51:03 OK svchost.exe\schannel.dll
04/11/2011 15:51:03 OK svchost.exe\credssp.dll
04/11/2011 15:51:03 OK svchost.exe\MSASN1.dll
04/11/2011 15:51:03 OK svchost.exe\CRYPT32.dll
04/11/2011 15:51:03 OK svchost.exe\VERSION.dll
04/11/2011 15:51:03 OK svchost.exe\ole32.dll
04/11/2011 15:51:03 OK svchost.exe\OLEAUT32.dll
04/11/2011 15:51:03 OK svchost.exe\FirewallAPI.dll
04/11/2011 15:51:03 OK svchost.exe\NSI.dll
04/11/2011 15:51:03 OK svchost.exe\WS2_32.dll
04/11/2011 15:51:03 OK C:\Windows\System32\POWRPROF.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\rpcss.dll
04/11/2011 15:51:03 OK svchost.exe\slc.dll
04/11/2011 15:51:03 OK svchost.exe\GPAPI.dll
04/11/2011 15:51:03 OK C:\Windows\System32\Secur32.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\POWRPROF.dll
04/11/2011 15:51:03 OK svchost.exe\USP10.dll
04/11/2011 15:51:03 OK svchost.exe\LPK.DLL
04/11/2011 15:51:03 OK svchost.exe\MSCTF.dll
04/11/2011 15:51:03 OK svchost.exe\IMM32.DLL
04/11/2011 15:51:03 OK C:\Windows\System32\USERENV.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\umpnpmgr.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK C:\Windows\System32\svchost.exe Object was not changed (iChecker)
04/11/2011 15:51:03 OK svchost.exe\Secur32.dll
04/11/2011 15:51:03 OK svchost.exe\USERENV.dll
04/11/2011 15:51:03 OK svchost.exe\GDI32.dll
04/11/2011 15:51:03 OK svchost.exe\USER32.dll
04/11/2011 15:51:03 OK svchost.exe\umpnpmgr.dll
04/11/2011 15:51:03 OK svchost.exe\RPCRT4.dll
04/11/2011 15:51:03 OK svchost.exe\ADVAPI32.dll
04/11/2011 15:51:03 OK svchost.exe\msvcrt.dll
04/11/2011 15:51:03 OK svchost.exe\kernel32.dll
04/11/2011 15:51:03 OK svchost.exe\ntdll.dll
04/11/2011 15:51:03 OK svchost.exe\svchost.exe
04/11/2011 15:51:03 OK C:\Windows\System32\Secur32.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK lsm.exe\PSAPI.DLL
04/11/2011 15:51:03 OK lsm.exe\NETAPI32.dll
04/11/2011 15:51:03 OK lsm.exe\schannel.dll
04/11/2011 15:51:03 OK lsm.exe\credssp.dll
04/11/2011 15:51:03 OK lsm.exe\USP10.dll
04/11/2011 15:51:03 OK lsm.exe\LPK.DLL
04/11/2011 15:51:03 OK lsm.exe\MSCTF.dll
04/11/2011 15:51:03 OK lsm.exe\IMM32.DLL
04/11/2011 15:51:03 OK lsm.exe\USERENV.dll
04/11/2011 15:51:03 OK lsm.exe\MSASN1.dll
04/11/2011 15:51:03 OK lsm.exe\GDI32.dll
04/11/2011 15:51:03 OK lsm.exe\USER32.dll
04/11/2011 15:51:03 OK lsm.exe\CRYPT32.dll
04/11/2011 15:51:03 OK lsm.exe\secur32.dll
04/11/2011 15:51:03 OK C:\Windows\System32\WMsgAPI.dll Object was not changed (iChecker)
04/11/2011 15:51:03 OK lsm.exe\WMsgAPI.dll
04/11/2011 15:51:03 OK lsm.exe\SYSNTFY.dll
04/11/2011 15:51:02 OK lsm.exe\msvcrt.dll
04/11/2011 15:51:02 OK lsm.exe\RPCRT4.dll
04/11/2011 15:51:02 OK lsm.exe\ADVAPI32.dll
04/11/2011 15:51:02 OK lsm.exe\kernel32.dll
04/11/2011 15:51:01 OK lsm.exe\ntdll.dll
04/11/2011 15:51:01 OK C:\Windows\System32\lsm.exe Object was not changed (iChecker)
04/11/2011 15:51:01 OK lsm.exe\lsm.exe
04/11/2011 15:51:01 OK C:\Windows\System32\keyiso.dll Object was not changed (iChecker)
04/11/2011 15:51:01 OK lsass.exe\keyiso.dll
04/11/2011 15:51:01 OK C:\Windows\System32\scecli.dll Object was not changed (iChecker)
04/11/2011 15:51:01 OK lsass.exe\scecli.dll
04/11/2011 15:51:01 OK lsass.exe\ole32.dll
04/11/2011 15:51:00 OK C:\Windows\System32\OLEAUT32.dll Object was not changed (iChecker)
04/11/2011 15:51:00 OK lsass.exe\OLEAUT32.dll
04/11/2011 15:51:00 OK C:\Windows\System32\setupapi.dll Object was not changed (iChecker)
04/11/2011 15:51:00 OK lsass.exe\setupapi.dll
04/11/2011 15:51:00 OK C:\Windows\System32\GPAPI.dll Object was not changed (iChecker)
04/11/2011 15:51:00 OK lsass.exe\GPAPI.dll
04/11/2011 15:51:00 OK C:\Windows\System32\tspkg.dll Object was not changed (iChecker)
04/11/2011 15:51:00 OK lsass.exe\tspkg.dll
04/11/2011 15:51:00 OK C:\Windows\System32\rsaenh.dll Object was not changed (iChecker)
04/11/2011 15:51:00 OK lsass.exe\rsaenh.dll
04/11/2011 15:51:00 OK C:\Windows\System32\wdigest.dll Object was not changed (iChecker)
04/11/2011 15:51:00 OK lsass.exe\wdigest.dll
04/11/2011 15:51:00 OK lsass.exe\schannel.dll
04/11/2011 15:51:00 OK C:\Windows\System32\WINBRAND.dll Object was not changed (iChecker)
04/11/2011 15:51:00 OK lsass.exe\WINBRAND.dll
04/11/2011 15:50:59 OK C:\Windows\System32\netlogon.dll Object was not changed (iChecker)
04/11/2011 15:50:59 OK lsass.exe\netlogon.dll
04/11/2011 15:50:59 OK C:\Windows\System32\msv1_0.dll Object was not changed (iChecker)
04/11/2011 15:50:59 OK lsass.exe\msv1_0.dll
04/11/2011 15:50:59 OK lsass.exe\wshtcpip.dll
04/11/2011 15:50:59 OK C:\Windows\System32\wship6.dll Object was not changed (iChecker)
04/11/2011 15:50:59 OK lsass.exe\wship6.dll
04/11/2011 15:50:59 OK lsass.exe\mswsock.dll
04/11/2011 15:50:59 OK C:\Windows\System32\kerberos.dll Object was not changed (iChecker)
04/11/2011 15:50:59 OK lsass.exe\kerberos.dll
04/11/2011 15:50:59 OK C:\Windows\System32\msprivs.dll Object was not changed (iChecker)
04/11/2011 15:50:59 OK lsass.exe\msprivs.dll
04/11/2011 15:50:59 OK lsass.exe\credssp.dll
04/11/2011 15:50:59 OK C:\Windows\System32\BCRYPT.dll Object was not changed (iChecker)
04/11/2011 15:50:59 OK lsass.exe\BCRYPT.dll
04/11/2011 15:50:59 OK C:\Windows\System32\ncrypt.dll Object was not changed (iChecker)
04/11/2011 15:50:59 OK lsass.exe\ncrypt.dll
04/11/2011 15:50:59 OK lsass.exe\AUTHZ.dll
04/11/2011 15:50:59 OK C:\Windows\System32\cngaudit.dll Object was not changed (iChecker)
04/11/2011 15:50:59 OK lsass.exe\cngaudit.dll
04/11/2011 15:50:59 OK lsass.exe\USP10.dll
04/11/2011 15:50:59 OK lsass.exe\LPK.DLL
04/11/2011 15:50:58 OK lsass.exe\MSCTF.dll
04/11/2011 15:50:58 OK lsass.exe\IMM32.DLL
04/11/2011 15:50:58 OK C:\Windows\System32\dhcpcsvc6.DLL Object was not changed (iChecker)
04/11/2011 15:50:58 OK lsass.exe\dhcpcsvc6.DLL
04/11/2011 15:50:58 OK C:\Windows\System32\WINNSI.DLL Object was not changed (iChecker)
04/11/2011 15:50:58 OK lsass.exe\WINNSI.DLL
04/11/2011 15:50:58 OK C:\Windows\System32\dhcpcsvc.DLL Object was not changed (iChecker)
04/11/2011 15:50:58 OK lsass.exe\dhcpcsvc.DLL
04/11/2011 15:50:58 OK C:\Windows\System32\IPHLPAPI.DLL Object was not changed (iChecker)
04/11/2011 15:50:58 OK lsass.exe\IPHLPAPI.DLL
04/11/2011 15:50:58 OK C:\Windows\System32\wevtapi.dll Object was not changed (iChecker)
04/11/2011 15:50:58 OK lsass.exe\wevtapi.dll
04/11/2011 15:50:58 OK C:\Windows\System32\SYSNTFY.dll Object was not changed (iChecker)
04/11/2011 15:50:58 OK lsass.exe\SYSNTFY.dll
04/11/2011 15:50:58 OK lsass.exe\slc.dll
04/11/2011 15:50:58 OK lsass.exe\CRYPT32.dll
04/11/2011 15:50:58 OK lsass.exe\USERENV.dll
04/11/2011 15:50:58 OK lsass.exe\MPR.dll
04/11/2011 15:50:58 OK C:\Windows\System32\FeClient.dll Object was not changed (iChecker)
04/11/2011 15:50:58 OK lsass.exe\FeClient.dll
04/11/2011 15:50:58 OK lsass.exe\WLDAP32.dll
04/11/2011 15:50:58 OK C:\Windows\System32\NTDSAPI.dll Object was not changed (iChecker)
04/11/2011 15:50:58 OK lsass.exe\NTDSAPI.dll
04/11/2011 15:50:58 OK lsass.exe\MSASN1.dll
04/11/2011 15:50:58 OK lsass.exe\SAMLIB.dll
04/11/2011 15:50:58 OK lsass.exe\PSAPI.DLL
04/11/2011 15:50:58 OK lsass.exe\NETAPI32.dll
04/11/2011 15:50:58 OK lsass.exe\NSI.dll
04/11/2011 15:50:58 OK lsass.exe\WS2_32.dll
04/11/2011 15:50:58 OK C:\Windows\System32\DNSAPI.dll Object was not changed (iChecker)
04/11/2011 15:50:58 OK lsass.exe\DNSAPI.dll
04/11/2011 15:50:57 OK C:\Windows\System32\cryptdll.dll Object was not changed (iChecker)
04/11/2011 15:50:57 OK lsass.exe\cryptdll.dll
04/11/2011 15:50:57 OK C:\Windows\System32\SAMSRV.dll Object was not changed (iChecker)
04/11/2011 15:50:57 OK lsass.exe\SAMSRV.dll
04/11/2011 15:50:57 OK lsass.exe\GDI32.dll
04/11/2011 15:50:57 OK lsass.exe\USER32.dll
04/11/2011 15:50:57 OK C:\Windows\System32\LSASRV.dll
04/11/2011 15:50:57 OK lsass.exe\Secur32.dll
04/11/2011 15:50:57 OK lsass.exe\msvcrt.dll
04/11/2011 15:50:57 OK lsass.exe\LSASRV.dll
04/11/2011 15:50:57 OK lsass.exe\RPCRT4.dll
04/11/2011 15:50:57 OK lsass.exe\ADVAPI32.dll
04/11/2011 15:50:57 OK lsass.exe\kernel32.dll
04/11/2011 15:50:57 OK lsass.exe\ntdll.dll
04/11/2011 15:50:57 OK C:\Windows\System32\lsass.exe Object was not changed (iChecker)
04/11/2011 15:50:57 OK lsass.exe\lsass.exe
04/11/2011 15:50:57 OK services.exe\wshtcpip.dll
04/11/2011 15:50:57 OK services.exe\mswsock.dll
04/11/2011 15:50:57 OK services.exe\ole32.dll
04/11/2011 15:50:57 OK services.exe\SAMLIB.dll
04/11/2011 15:50:57 OK services.exe\NSI.dll
04/11/2011 15:50:57 OK services.exe\WS2_32.dll
04/11/2011 15:50:57 OK services.exe\WLDAP32.dll
04/11/2011 15:50:57 OK services.exe\NTMARTA.DLL
04/11/2011 15:50:57 OK C:\Windows\System32\schannel.dll Object was not changed (iChecker)
04/11/2011 15:50:57 OK services.exe\schannel.dll
04/11/2011 15:50:57 OK C:\Windows\System32\credssp.dll Object was not changed (iChecker)
04/11/2011 15:50:57 OK services.exe\credssp.dll
04/11/2011 15:50:57 OK C:\Windows\System32\MSASN1.dll Object was not changed (iChecker)
04/11/2011 15:50:57 OK C:\Windows\System32\CRYPT32.dll Object was not changed (iChecker)
04/11/2011 15:50:57 OK services.exe\MSASN1.dll
04/11/2011 15:50:57 OK C:\Windows\System32\NCObjAPI.DLL Object was not changed (iChecker)
04/11/2011 15:50:57 OK services.exe\CRYPT32.dll
04/11/2011 15:50:57 OK services.exe\USP10.dll
04/11/2011 15:50:57 OK services.exe\LPK.DLL
04/11/2011 15:50:57 OK services.exe\MSCTF.dll
04/11/2011 15:50:57 OK services.exe\IMM32.DLL
04/11/2011 15:50:57 OK C:\Windows\System32\AUTHZ.dll Object was not changed (iChecker)
04/11/2011 15:50:57 OK C:\Windows\System32\SCESRV.dll Object was not changed (iChecker)
04/11/2011 15:50:57 OK services.exe\NCObjAPI.DLL
04/11/2011 15:50:57 OK services.exe\PSAPI.DLL
04/11/2011 15:50:57 OK services.exe\NETAPI32.dll
04/11/2011 15:50:56 OK C:\Windows\System32\services.exe Object was not changed (iChecker)
04/11/2011 15:50:56 OK services.exe\AUTHZ.dll
04/11/2011 15:50:56 OK services.exe\SCESRV.dll
04/11/2011 15:50:56 OK services.exe\Secur32.dll
04/11/2011 15:50:56 OK services.exe\USERENV.dll
04/11/2011 15:50:56 OK services.exe\msvcrt.dll
04/11/2011 15:50:56 OK services.exe\GDI32.dll
04/11/2011 15:50:56 OK services.exe\USER32.dll
04/11/2011 15:50:56 OK services.exe\RPCRT4.dll
04/11/2011 15:50:56 OK services.exe\ADVAPI32.dll
04/11/2011 15:50:56 OK services.exe\kernel32.dll
04/11/2011 15:50:56 OK services.exe\ntdll.dll
04/11/2011 15:50:56 OK services.exe\services.exe
04/11/2011 15:50:56 OK C:\Windows\System32\MPR.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\slc.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\NETAPI32.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK winlogon.exe\MPR.dll
04/11/2011 15:50:56 OK winlogon.exe\slc.dll
04/11/2011 15:50:56 OK C:\Windows\System32\SHSVCS.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\ole32.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK winlogon.exe\NETAPI32.dll
04/11/2011 15:50:56 OK winlogon.exe\SHSVCS.dll
04/11/2011 15:50:56 OK C:\Windows\System32\SAMLIB.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK winlogon.exe\ole32.dll
04/11/2011 15:50:56 OK C:\Windows\System32\WLDAP32.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK winlogon.exe\SAMLIB.dll
04/11/2011 15:50:56 OK winlogon.exe\NSI.dll
04/11/2011 15:50:56 OK winlogon.exe\WS2_32.dll
04/11/2011 15:50:56 OK C:\Windows\System32\NTMARTA.DLL Object was not changed (iChecker)
04/11/2011 15:50:56 OK winlogon.exe\WLDAP32.dll
04/11/2011 15:50:56 OK C:\Windows\System32\PSAPI.DLL Object was not changed (iChecker)
04/11/2011 15:50:56 OK winlogon.exe\NTMARTA.DLL
04/11/2011 15:50:56 OK winlogon.exe\USP10.dll
04/11/2011 15:50:56 OK winlogon.exe\LPK.DLL
04/11/2011 15:50:56 OK winlogon.exe\MSCTF.dll
04/11/2011 15:50:56 OK winlogon.exe\IMM32.DLL
04/11/2011 15:50:56 OK winlogon.exe\USERENV.dll
04/11/2011 15:50:56 OK C:\Windows\System32\WINSTA.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\winlogon.exe Object was not changed (iChecker)
04/11/2011 15:50:56 OK winlogon.exe\PSAPI.DLL
04/11/2011 15:50:56 OK winlogon.exe\WINSTA.dll
04/11/2011 15:50:56 OK winlogon.exe\Secur32.dll
04/11/2011 15:50:56 OK winlogon.exe\msvcrt.dll
04/11/2011 15:50:56 OK winlogon.exe\GDI32.dll
04/11/2011 15:50:56 OK winlogon.exe\USER32.dll
04/11/2011 15:50:56 OK winlogon.exe\RPCRT4.dll
04/11/2011 15:50:56 OK winlogon.exe\ADVAPI32.dll
04/11/2011 15:50:56 OK winlogon.exe\kernel32.dll
04/11/2011 15:50:56 OK winlogon.exe\ntdll.dll
04/11/2011 15:50:56 OK winlogon.exe\winlogon.exe
04/11/2011 15:50:56 OK C:\Windows\System32\wshtcpip.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\mswsock.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK wininit.exe\wshtcpip.dll
04/11/2011 15:50:56 OK C:\Windows\System32\MSCTF.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\NSI.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\WS2_32.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK wininit.exe\mswsock.dll
04/11/2011 15:50:56 OK wininit.exe\NSI.dll
04/11/2011 15:50:56 OK wininit.exe\WS2_32.dll
04/11/2011 15:50:56 OK wininit.exe\USP10.dll
04/11/2011 15:50:56 OK wininit.exe\LPK.DLL
04/11/2011 15:50:56 OK C:\Windows\System32\IMM32.DLL Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\Secur32.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\KERNEL32.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK wininit.exe\MSCTF.dll
04/11/2011 15:50:56 OK C:\Windows\System32\USERENV.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK wininit.exe\IMM32.DLL
04/11/2011 15:50:56 OK wininit.exe\Secur32.dll
04/11/2011 15:50:56 OK wininit.exe\USERENV.dll
04/11/2011 15:50:56 OK wininit.exe\msvcrt.dll
04/11/2011 15:50:56 OK wininit.exe\GDI32.dll
04/11/2011 15:50:56 OK wininit.exe\USER32.dll
04/11/2011 15:50:56 OK wininit.exe\RPCRT4.dll
04/11/2011 15:50:56 OK wininit.exe\ADVAPI32.dll
04/11/2011 15:50:56 OK C:\Windows\System32\wininit.exe Object was not changed (iChecker)
04/11/2011 15:50:56 OK wininit.exe\kernel32.dll
04/11/2011 15:50:56 OK wininit.exe\ntdll.dll
04/11/2011 15:50:56 OK wininit.exe\wininit.exe
04/11/2011 15:50:56 OK csrss.exe\sxs.dll
04/11/2011 15:50:56 OK csrss.exe\msvcrt.dll
04/11/2011 15:50:56 OK csrss.exe\USP10.dll
04/11/2011 15:50:56 OK csrss.exe\LPK.DLL
04/11/2011 15:50:56 OK csrss.exe\RPCRT4.dll
04/11/2011 15:50:56 OK csrss.exe\ADVAPI32.dll
04/11/2011 15:50:56 OK csrss.exe\GDI32.dll
04/11/2011 15:50:56 OK csrss.exe\KERNEL32.dll
04/11/2011 15:50:56 OK csrss.exe\USER32.dll
04/11/2011 15:50:56 OK csrss.exe\winsrv.dll
04/11/2011 15:50:56 OK csrss.exe\basesrv.dll
04/11/2011 15:50:56 OK csrss.exe\CSRSRV.dll
04/11/2011 15:50:56 OK csrss.exe\ntdll.dll
04/11/2011 15:50:56 OK csrss.exe\csrss.exe
04/11/2011 15:50:56 OK C:\Windows\System32\msvcrt.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\sxs.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\ADVAPI32.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\USP10.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\LPK.DLL Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\RPCRT4.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\USER32.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK csrss.exe\sxs.dll
04/11/2011 15:50:56 OK C:\Windows\System32\KERNEL32.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\GDI32.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK csrss.exe\msvcrt.dll
04/11/2011 15:50:56 OK csrss.exe\USP10.dll
04/11/2011 15:50:56 OK csrss.exe\LPK.DLL
04/11/2011 15:50:56 OK csrss.exe\RPCRT4.dll
04/11/2011 15:50:56 OK csrss.exe\ADVAPI32.dll
04/11/2011 15:50:56 OK csrss.exe\GDI32.dll
04/11/2011 15:50:56 OK csrss.exe\KERNEL32.dll
04/11/2011 15:50:56 OK C:\Windows\System32\winsrv.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK csrss.exe\USER32.dll
04/11/2011 15:50:56 OK C:\Windows\System32\basesrv.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK csrss.exe\winsrv.dll
04/11/2011 15:50:56 OK C:\Windows\System32\CSRSRV.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK csrss.exe\basesrv.dll
04/11/2011 15:50:56 OK C:\Windows\System32\csrss.exe Object was not changed (iChecker)
04/11/2011 15:50:56 OK csrss.exe\CSRSRV.dll
04/11/2011 15:50:56 OK csrss.exe\ntdll.dll
04/11/2011 15:50:56 OK csrss.exe\csrss.exe
04/11/2011 15:50:56 OK C:\Windows\System32\ntdll.dll Object was not changed (iChecker)
04/11/2011 15:50:56 OK C:\Windows\System32\smss.exe Object was not changed (iChecker)
04/11/2011 15:50:56 OK smss.exe\ntdll.dll
04/11/2011 15:50:56 OK smss.exe\smss.exe
04/11/2011 15:50:56 OK System Memory
04/11/2011 15:50:56 Task started
#37
Posted 04 November 2011 - 04:46 PM
Amlak
-
- Member
-
- 1,470 posts
Member 1K
Did you notice Kaspersky doing some disinfecting and malware removal? Because the report logs you posted seem to be for a later scan or something.
Anyway, just to make sure, are you still experiencing malware symptoms?
Step 1
Step 2
Open OTL and click the Quick Scan button. Make sure you post the log it produces in your next reply.
Anyway, just to make sure, are you still experiencing malware symptoms?
Step 1
- Double click the aswMBR.exe to run it
- Click the [Scan] button to start scan
- On completion of the scan click [Save log], save it to your desktop and post in your next reply
Step 2
Open OTL and click the Quick Scan button. Make sure you post the log it produces in your next reply.
#38
Posted 06 November 2011 - 09:31 AM
LukeMcD
- Topic Starter
-
- Member
-
- 102 posts
Member
I didn't notice. Pretty sure the laptop is still infected, too.
aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software
Run date: 2011-11-06 15:15:45
-----------------------------
15:15:45.121 OS Version: Windows 6.0.6000
15:15:45.121 Number of processors: 1 586 0x1601
15:15:45.121 ComputerName: MARTAIN-PC UserName: Martain
15:15:46.291 Initialize success
15:16:07.688 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-4
15:16:07.688 Disk 0 Vendor: Hitachi_HTS542580K9SA00 BBBOC31P Size: 76319MB BusType: 3
15:16:09.748 Disk 0 MBR read successfully
15:16:09.748 Disk 0 MBR scan
15:16:09.748 Disk 0 Windows VISTA default MBR code
15:16:09.763 Disk 0 scanning sectors +156299264
15:16:09.888 Disk 0 scanning C:\Windows\system32\drivers
15:16:52.492 Service scanning
15:16:55.783 Service MpKsl320289f8 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75C32E32-DC5F-465C-AB06-D2D79A7130E5}\MpKsl320289f8.sys **LOCKED** 32
15:16:55.783 Service MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32
15:16:57.031 Service PEAUTH C:\Windows\system32\drivers\peauth.sys **LOCKED** 32
15:16:57.952 Modules scanning
15:17:41.728 Disk 0 trace - called modules:
15:17:41.778 ntoskrnl.exe CLASSPNP.SYS disk.sys hal.dll acpi.sys ataport.SYS PCIIDEX.SYS msahci.sys
15:17:41.793 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x84054998]
15:17:41.803 3 ntoskrnl.exe[820a80af] -> nt!IofCallDriver -> [0x8400b838]
15:17:41.813 5 acpi.sys[8047632a] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-4[0x84009bb0]
15:17:41.823 Scan finished successfully
15:18:09.092 Disk 0 MBR has been saved successfully to "F:\MBR.dat"
15:18:09.118 The log file has been saved successfully to "F:\aswMBR.txt"
OTL logfile created on: 06/11/2011 15:18:40 - Run 2
OTL by OldTimer - Version 3.2.29.1 Folder = C:\Users\Martain\Desktop
Windows Vista Home Basic Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.17037)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
1013.40 Mb Total Physical Memory | 406.91 Mb Available Physical Memory | 40.15% Memory free
2.24 Gb Paging File | 1.57 Gb Available in Paging File | 70.01% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 32.51 Gb Total Space | 1.01 Gb Free Space | 3.09% Space Free | Partition Type: NTFS
Drive D: | 32.26 Gb Total Space | 32.10 Gb Free Space | 99.50% Space Free | Partition Type: NTFS
Drive E: | 120.46 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: UDF
Drive F: | 60.73 Mb Total Space | 60.18 Mb Free Space | 99.09% Space Free | Partition Type: FAT
Computer Name: MARTAIN-PC | User Name: Martain | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2011/10/03 17:17:48 | 000,582,656 | ---- | M] (OldTimer Tools) -- C:\Users\Martain\Desktop\OTL.exe
PRC - [2011/08/31 16:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/06/15 14:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2008/10/29 06:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - File not found [Auto | Stopped] -- -- (LiveUpdate Notice Ex)
SRV - File not found [Auto | Stopped] -- -- (CLTNetCnService)
SRV - [2011/08/31 16:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/04/27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2008/01/29 17:38:31 | 000,583,048 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007/07/31 13:15:55 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/06/22 01:25:46 | 000,118,464 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe -- (CLSched) CyberLink Task Scheduler (CTS)
SRV - [2007/06/22 01:25:44 | 000,257,736 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe -- (CLCapSvc) CyberLink Background Capture Service (CBCS)
SRV - [2007/06/22 01:24:12 | 001,076,832 | ---- | M] (Cyberlink) [Disabled | Stopped] -- C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe -- (CyberLink Media Library Service)
SRV - [2007/06/05 17:13:28 | 000,024,576 | ---- | M] () [Disabled | Stopped] -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe -- (eSettingsService)
SRV - [2007/05/22 22:00:02 | 000,135,168 | ---- | M] (Acer Inc.) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eNet\eNet Service.exe -- (eNet Service)
SRV - [2007/05/17 05:15:22 | 000,163,840 | ---- | M] (acer) [Disabled | Stopped] -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe -- (WMIService)
SRV - [2007/04/25 23:34:30 | 000,457,512 | ---- | M] (HiTRSUT) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe -- (eDataSecurity Service)
SRV - [2007/03/14 17:52:30 | 000,024,576 | ---- | M] (Acer Inc.) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe -- (eLockService)
SRV - [2007/02/13 13:26:50 | 000,053,248 | ---- | M] (Acer Inc.) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService)
SRV - [2007/01/26 21:24:42 | 000,050,688 | ---- | M] () [Disabled | Stopped] -- C:\Acer\ALaunch\ALaunchSvc.exe -- (ALaunchService)
SRV - [2006/11/24 19:57:54 | 000,107,008 | ---- | M] () [Disabled | Stopped] -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2011/11/06 15:15:00 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75C32E32-DC5F-465C-AB06-D2D79A7130E5}\MpKsl320289f8.sys -- (MpKsl320289f8)
DRV - [2011/08/31 16:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/04/18 12:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2008/09/02 08:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2008/09/02 08:00:00 | 000,099,376 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2007/06/18 10:03:32 | 000,737,280 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2007/06/14 02:33:26 | 000,154,624 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2007/01/30 05:23:30 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2006/12/08 01:12:02 | 000,076,584 | ---- | M] () [Kernel | Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15)
DRV - [2006/11/02 13:27:36 | 000,020,112 | ---- | M] (Dritek System Inc.) [Kernel | System | Running] -- C:\Program Files\Launch Manager\DPortIO.sys -- (DritekPortIO)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://en.uk.acer.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.co.uk/"
FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20100503
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1
FF - prefs.js..extensions.enabledItems: {2AAE53E8-258E-4B63-A156-108607283E21}:1.9.1
FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=LMW2&o=16046&locale=en_UK&apn_uid=60DDF12B-76F8-42B5-970B-09C79539A2EF&apn_ptnrs=OE&apn_sauid=D66240B2-47E3-4EF0-A05D-DFB9CD329B50&apn_dtid=VIN007YYGB&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Martain\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.22\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/21 12:17:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.22\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/07 19:12:07 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{2AAE53E8-258E-4B63-A156-108607283E21}: C:\Users\Martain\AppData\Local\{2AAE53E8-258E-4B63-A156-108607283E21}
[2010/06/08 18:23:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martain\AppData\Roaming\Mozilla\Extensions
[2010/01/29 14:15:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martain\AppData\Roaming\Mozilla\Extensions\[email protected]
[2011/10/01 13:44:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\extensions
[2010/06/08 18:27:18 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2010/07/11 17:40:41 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011/08/01 12:55:52 | 000,002,571 | ---- | M] () -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\searchplugins\askcom.xml
[2010/06/08 18:22:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\USERS\MARTAIN\APPDATA\LOCAL\{2AAE53E8-258E-4B63-A156-108607283E21}
[2011/09/04 16:00:07 | 000,001,538 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2011/09/04 16:00:07 | 000,000,947 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
[2011/09/04 16:00:07 | 000,000,769 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2011/09/04 16:00:07 | 000,001,135 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml
O1 HOSTS File: ([2011/11/03 21:08:25 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\System32\ActiveToolBand.dll (HiTRUST)
O2 - BHO: (no name) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - No CLSID value found.
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx File not found
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail.com/mail/w3/resources/VistaMSNPUplden-gb.cab (MSN Photo Upload Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUplden-gb.cab (Windows Live Hotmail Photo Upload Tool)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5BD64290-995E-4DFF-A1AA-4F07B6EA49B3}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Filter\x-sdch - No CLSID value found
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Martain\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Martain\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 21:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011/11/03 21:43:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2011/11/03 21:18:17 | 000,000,000 | ---D | C] -- C:\Users\Martain\AppData\Local\temp
[2011/11/03 21:08:52 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2011/11/03 21:04:18 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011/10/31 20:36:54 | 004,282,492 | R--- | C] (Swearware) -- C:\Users\Martain\Desktop\ComboFix.exe
[2011/10/28 12:10:31 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/10/28 12:10:30 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/10/28 12:10:29 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/10/28 12:10:29 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2011/10/28 12:05:56 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/10/28 12:05:39 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/10/28 11:51:08 | 000,000,000 | ---D | C] -- C:\Avenger
[2011/10/07 19:24:44 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/10/07 19:11:38 | 000,582,656 | ---- | C] (OldTimer Tools) -- C:\Users\Martain\Desktop\OTL.exe
[2011/10/07 19:10:50 | 001,916,416 | ---- | C] (AVAST Software) -- C:\Users\Martain\Desktop\aswMBR.exe
[2007/09/27 21:42:30 | 000,016,384 | ---- | C] ( ) -- C:\Windows\System32\ClearEvent.exe
[2007/07/31 13:43:36 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/11/06 15:22:04 | 000,631,670 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/11/06 15:22:03 | 000,112,216 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/11/06 15:15:02 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/11/06 15:15:02 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/11/06 15:14:44 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/11/06 15:14:40 | 1063,272,448 | -HS- | M] () -- C:\hiberfil.sys
[2011/11/03 21:08:25 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011/11/03 20:43:09 | 004,282,492 | R--- | M] (Swearware) -- C:\Users\Martain\Desktop\ComboFix.exe
[2011/11/03 20:37:06 | 000,000,112 | ---- | M] () -- C:\ProgramData\naAR43Hs.dat
[2011/11/03 20:22:28 | 100,110,704 | ---- | M] () -- C:\Users\Martain\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe
[2011/11/02 13:23:15 | 000,002,229 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/10/31 19:40:03 | 000,000,001 | ---- | M] () -- C:\ProgramData\vc71Gx4F.exe_.b
[2011/10/28 12:43:18 | 000,000,001 | ---- | M] () -- C:\ProgramData\vc71Gx4F.exe.b
[2011/10/23 18:02:02 | 000,000,512 | ---- | M] () -- C:\Users\Martain\Documents\MBR.dat
[2011/10/23 17:59:55 | 000,014,720 | ---- | M] () -- C:\Windows\System32\hdsector.sys
[2011/10/23 17:59:55 | 000,000,001 | ---- | M] () -- C:\Windows\System32\hdsector.sys.a
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/11/06 15:14:32 | 1063,272,448 | -HS- | C] () -- C:\hiberfil.sys
[2011/11/03 20:32:16 | 100,110,704 | ---- | C] () -- C:\Users\Martain\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe
[2011/10/31 19:40:03 | 000,000,001 | ---- | C] () -- C:\ProgramData\vc71Gx4F.exe_.b
[2011/10/28 12:43:18 | 000,000,001 | ---- | C] () -- C:\ProgramData\vc71Gx4F.exe.b
[2011/10/28 12:10:32 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011/10/28 12:10:31 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2011/10/28 12:10:30 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/10/28 12:10:30 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/10/28 12:10:30 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/10/23 18:02:02 | 000,000,512 | ---- | C] () -- C:\Users\Martain\Documents\MBR.dat
[2011/10/23 17:59:55 | 000,000,001 | ---- | C] () -- C:\Windows\System32\hdsector.sys.a
[2011/10/23 17:59:54 | 000,014,720 | ---- | C] () -- C:\Windows\System32\hdsector.sys
[2011/10/23 17:59:12 | 000,000,112 | ---- | C] () -- C:\ProgramData\naAR43Hs.dat
[2011/10/01 13:39:48 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/08/12 11:06:42 | 000,000,129 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2009/11/27 10:42:20 | 000,000,256 | ---- | C] () -- C:\Windows\System32\pool.bin
[2009/08/19 15:08:57 | 000,075,064 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2009/05/18 19:53:11 | 000,005,972 | ---- | C] () -- C:\Users\Martain\AppData\Local\d3d9caps.dat
[2008/01/19 14:58:14 | 000,004,166 | ---- | C] () -- C:\Users\Martain\AppData\Roaming\wklnhst.dat
[2008/01/02 16:57:36 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1409.dll
[2008/01/02 16:47:22 | 001,953,696 | ---- | C] () -- C:\Windows\System32\igklg400.dll
[2008/01/02 16:47:22 | 001,533,360 | ---- | C] () -- C:\Windows\System32\igklg450.dll
[2008/01/02 16:47:22 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll
[2007/11/25 20:57:55 | 000,033,792 | ---- | C] () -- C:\Users\Martain\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/09/27 22:16:58 | 000,000,030 | ---- | C] () -- C:\Windows\SETPANEL.INI
[2007/09/27 22:16:50 | 000,000,092 | ---- | C] () -- C:\Windows\CLEANUP.INI
[2007/09/27 21:42:30 | 000,016,384 | ---- | C] () -- C:\Windows\System32\LauncheRyAgentUser.exe
[2007/07/31 15:01:29 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2007/07/31 13:50:23 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2007/07/31 13:44:29 | 000,076,584 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2007/07/31 13:44:29 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2007/07/31 13:43:32 | 000,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll
[2007/07/31 12:07:10 | 000,910,720 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll
[2007/07/31 12:07:10 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1280.dll
[2007/04/25 23:33:22 | 000,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll
[2007/04/25 23:32:50 | 000,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll
[2007/04/25 23:32:46 | 000,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll
[2007/04/25 23:31:00 | 000,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll
[2007/04/25 23:30:52 | 000,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll
[2007/04/25 23:30:44 | 000,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll
[2006/12/25 22:44:48 | 000,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll
[2006/11/13 12:50:06 | 000,071,680 | ---- | C] () -- C:\Windows\System32\HTCA_SelfExtract.bin
[2006/11/02 12:53:49 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 12:44:53 | 000,335,376 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 10:33:01 | 000,631,670 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 10:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 10:33:01 | 000,112,216 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 10:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 10:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 08:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 08:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 07:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 07:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/11/02 07:22:43 | 000,099,999 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2006/11/02 07:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2001/12/26 23:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001/09/04 06:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001/07/30 23:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001/07/24 05:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll
[color=#E56717]========== LOP Check ==========[/color]
[2009/01/27 12:51:52 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\FrostWire
[2009/08/30 21:17:27 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Mumble
[2009/11/27 10:44:19 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Research In Motion
[2011/08/27 15:45:02 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Saviqo
[2008/01/19 14:58:16 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Template
[2009/01/26 09:59:56 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\TSO
[2011/11/03 21:35:39 | 000,032,552 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 64 bytes -> C:\Users\Martain\Desktop\whole world init.mp4:TOC.WMV
< End of report >
#39
Posted 07 November 2011 - 03:24 PM
Amlak
-
- Member
-
- 1,470 posts
Member 1K
Please download the following programmes to your desktop:
Dr Web Live CD
ImgBurn
Install IMGBurn
Dr Web Live CD
ImgBurn
Install IMGBurn
- Double click Dr Web
- IMGBurn will open
- Burn the ISO to a cd
- Reboot the infected computer with the CD in the drive
- Ensure that the first boot device is CD - If you are not sure about that then see this page for instructions
- As loading starts, a dialogue window will prompt you to choose between the standard and safe modes.
- Use arrow keys to select DrWeb-LiveCD (Default)
- When the system is loaded, check the disks or folders you want to scan, and click on “Start”.
- The programme will now scan for and cure/delete any malware that it finds. Allow it to do so
- Once completed reboot to normal windows
- No log is produced so once in normal windows run a fresh OTL scan and let me know if the problems persist
#40
Posted 08 November 2011 - 01:03 PM
LukeMcD
- Topic Starter
-
- Member
-
- 102 posts
Member
dr.web found some infections, i cleared 4 of them before cancelling the scan, it was up to nearly 3 hours and it hadnt found anything in a while. here's the otl log:
OTL logfile created on: 08/11/2011 18:56:15 - Run 3
OTL by OldTimer - Version 3.2.31.0 Folder = F:\
Windows Vista Home Basic Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.17037)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
1013.40 Mb Total Physical Memory | 216.18 Mb Available Physical Memory | 21.33% Memory free
2.22 Gb Paging File | 1.32 Gb Available in Paging File | 59.54% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 32.51 Gb Total Space | 1.72 Gb Free Space | 5.30% Space Free | Partition Type: NTFS
Drive D: | 32.26 Gb Total Space | 31.61 Gb Free Space | 97.99% Space Free | Partition Type: NTFS
Drive E: | 179.14 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive F: | 60.73 Mb Total Space | 59.57 Mb Free Space | 98.09% Space Free | Partition Type: FAT
Computer Name: MARTAIN-PC | User Name: Martain | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2011/11/08 18:51:58 | 000,584,192 | ---- | M] (OldTimer Tools) -- F:\OTL.exe
PRC - [2011/08/31 16:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/06/15 14:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2008/10/29 06:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2006/11/02 09:45:59 | 000,116,736 | ---- | M] () -- \\?\C:\Windows\System32\wbem\WMIADAP.EXE
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2007/02/26 06:00:54 | 000,389,120 | ---- | M] () -- C:\Program Files\Adobe\Reader 8.0\Reader\AdobeXMP.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - File not found [Auto | Stopped] -- -- (LiveUpdate Notice Ex)
SRV - File not found [Auto | Stopped] -- -- (CLTNetCnService)
SRV - [2011/08/31 16:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/04/27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2008/01/29 17:38:31 | 000,583,048 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007/07/31 13:15:55 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/06/22 01:25:46 | 000,118,464 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe -- (CLSched) CyberLink Task Scheduler (CTS)
SRV - [2007/06/22 01:25:44 | 000,257,736 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe -- (CLCapSvc) CyberLink Background Capture Service (CBCS)
SRV - [2007/06/22 01:24:12 | 001,076,832 | ---- | M] (Cyberlink) [Disabled | Stopped] -- C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe -- (CyberLink Media Library Service)
SRV - [2007/06/05 17:13:28 | 000,024,576 | ---- | M] () [Disabled | Stopped] -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe -- (eSettingsService)
SRV - [2007/05/22 22:00:02 | 000,135,168 | ---- | M] (Acer Inc.) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eNet\eNet Service.exe -- (eNet Service)
SRV - [2007/05/17 05:15:22 | 000,163,840 | ---- | M] (acer) [Disabled | Stopped] -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe -- (WMIService)
SRV - [2007/04/25 23:34:30 | 000,457,512 | ---- | M] (HiTRSUT) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe -- (eDataSecurity Service)
SRV - [2007/03/14 17:52:30 | 000,024,576 | ---- | M] (Acer Inc.) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe -- (eLockService)
SRV - [2007/02/13 13:26:50 | 000,053,248 | ---- | M] (Acer Inc.) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService)
SRV - [2007/01/26 21:24:42 | 000,050,688 | ---- | M] () [Disabled | Stopped] -- C:\Acer\ALaunch\ALaunchSvc.exe -- (ALaunchService)
SRV - [2006/11/24 19:57:54 | 000,107,008 | ---- | M] () [Disabled | Stopped] -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2011/11/08 18:50:50 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75C32E32-DC5F-465C-AB06-D2D79A7130E5}\MpKsl98c286fe.sys -- (MpKsl98c286fe)
DRV - [2011/11/06 15:15:00 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75C32E32-DC5F-465C-AB06-D2D79A7130E5}\MpKsl320289f8.sys -- (MpKsl320289f8)
DRV - [2011/08/31 16:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/04/18 12:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2008/09/02 08:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2008/09/02 08:00:00 | 000,099,376 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2007/06/18 10:03:32 | 000,737,280 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2007/06/14 02:33:26 | 000,154,624 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2007/01/30 05:23:30 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2006/12/08 01:12:02 | 000,076,584 | ---- | M] () [Kernel | Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15)
DRV - [2006/11/02 13:27:36 | 000,020,112 | ---- | M] (Dritek System Inc.) [Kernel | System | Running] -- C:\Program Files\Launch Manager\DPortIO.sys -- (DritekPortIO)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://en.uk.acer.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.co.uk/"
FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20100503
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1
FF - prefs.js..extensions.enabledItems: {2AAE53E8-258E-4B63-A156-108607283E21}:1.9.1
FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=LMW2&o=16046&locale=en_UK&apn_uid=60DDF12B-76F8-42B5-970B-09C79539A2EF&apn_ptnrs=OE&apn_sauid=D66240B2-47E3-4EF0-A05D-DFB9CD329B50&apn_dtid=VIN007YYGB&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Martain\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.22\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/21 12:17:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.22\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/07 19:12:07 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{2AAE53E8-258E-4B63-A156-108607283E21}: C:\Users\Martain\AppData\Local\{2AAE53E8-258E-4B63-A156-108607283E21}
[2010/06/08 18:23:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martain\AppData\Roaming\Mozilla\Extensions
[2010/01/29 14:15:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martain\AppData\Roaming\Mozilla\Extensions\[email protected]
[2011/10/01 13:44:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\extensions
[2010/06/08 18:27:18 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2010/07/11 17:40:41 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011/08/01 12:55:52 | 000,002,571 | ---- | M] () -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\searchplugins\askcom.xml
[2010/06/08 18:22:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\USERS\MARTAIN\APPDATA\LOCAL\{2AAE53E8-258E-4B63-A156-108607283E21}
[2011/09/04 16:00:07 | 000,001,538 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2011/09/04 16:00:07 | 000,000,947 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
[2011/09/04 16:00:07 | 000,000,769 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2011/09/04 16:00:07 | 000,001,135 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml
O1 HOSTS File: ([2011/11/03 21:08:25 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\System32\ActiveToolBand.dll (HiTRUST)
O2 - BHO: (no name) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - No CLSID value found.
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx File not found
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail.com/mail/w3/resources/VistaMSNPUplden-gb.cab (MSN Photo Upload Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUplden-gb.cab (Windows Live Hotmail Photo Upload Tool)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5BD64290-995E-4DFF-A1AA-4F07B6EA49B3}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Filter\x-sdch - No CLSID value found
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Martain\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Martain\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 21:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011/11/03 21:43:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2011/11/03 21:18:17 | 000,000,000 | ---D | C] -- C:\Users\Martain\AppData\Local\temp
[2011/11/03 21:08:52 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2011/11/03 21:04:18 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011/10/31 20:36:54 | 004,282,492 | R--- | C] (Swearware) -- C:\Users\Martain\Desktop\ComboFix.exe
[2011/10/28 12:10:31 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/10/28 12:10:30 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/10/28 12:10:29 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/10/28 12:10:29 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2011/10/28 12:05:56 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/10/28 12:05:39 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/10/28 11:51:08 | 000,000,000 | ---D | C] -- C:\Avenger
[2007/09/27 21:42:30 | 000,016,384 | ---- | C] ( ) -- C:\Windows\System32\ClearEvent.exe
[2007/07/31 13:43:36 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/11/08 18:58:05 | 000,631,670 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/11/08 18:58:04 | 000,112,216 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/11/08 18:51:11 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/11/08 18:51:10 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/11/08 18:50:37 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/11/08 18:50:33 | 1063,272,448 | -HS- | M] () -- C:\hiberfil.sys
[2011/11/03 21:08:25 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011/11/03 20:43:09 | 004,282,492 | R--- | M] (Swearware) -- C:\Users\Martain\Desktop\ComboFix.exe
[2011/11/03 20:37:06 | 000,000,112 | ---- | M] () -- C:\ProgramData\naAR43Hs.dat
[2011/11/03 20:22:28 | 100,110,704 | ---- | M] () -- C:\Users\Martain\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe
[2011/11/02 13:23:15 | 000,002,229 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/10/31 19:40:03 | 000,000,001 | ---- | M] () -- C:\ProgramData\vc71Gx4F.exe_.b
[2011/10/28 12:43:18 | 000,000,001 | ---- | M] () -- C:\ProgramData\vc71Gx4F.exe.b
[2011/10/23 18:02:02 | 000,000,512 | ---- | M] () -- C:\Users\Martain\Documents\MBR.dat
[2011/10/23 17:59:55 | 000,014,720 | ---- | M] () -- C:\Windows\System32\hdsector.sys
[2011/10/23 17:59:55 | 000,000,001 | ---- | M] () -- C:\Windows\System32\hdsector.sys.a
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/11/06 15:14:32 | 1063,272,448 | -HS- | C] () -- C:\hiberfil.sys
[2011/11/03 20:32:16 | 100,110,704 | ---- | C] () -- C:\Users\Martain\Desktop\setup_11.0.0.1245.x01_2011_11_03_23_50.exe
[2011/10/31 19:40:03 | 000,000,001 | ---- | C] () -- C:\ProgramData\vc71Gx4F.exe_.b
[2011/10/28 12:43:18 | 000,000,001 | ---- | C] () -- C:\ProgramData\vc71Gx4F.exe.b
[2011/10/28 12:10:32 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011/10/28 12:10:31 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2011/10/28 12:10:30 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/10/28 12:10:30 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/10/28 12:10:30 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/10/23 18:02:02 | 000,000,512 | ---- | C] () -- C:\Users\Martain\Documents\MBR.dat
[2011/10/23 17:59:55 | 000,000,001 | ---- | C] () -- C:\Windows\System32\hdsector.sys.a
[2011/10/23 17:59:54 | 000,014,720 | ---- | C] () -- C:\Windows\System32\hdsector.sys
[2011/10/23 17:59:12 | 000,000,112 | ---- | C] () -- C:\ProgramData\naAR43Hs.dat
[2011/10/01 13:39:48 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/08/12 11:06:42 | 000,000,129 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2009/11/27 10:42:20 | 000,000,256 | ---- | C] () -- C:\Windows\System32\pool.bin
[2009/08/19 15:08:57 | 000,075,064 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2009/05/18 19:53:11 | 000,005,972 | ---- | C] () -- C:\Users\Martain\AppData\Local\d3d9caps.dat
[2008/01/19 14:58:14 | 000,004,166 | ---- | C] () -- C:\Users\Martain\AppData\Roaming\wklnhst.dat
[2008/01/02 16:57:36 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1409.dll
[2008/01/02 16:47:22 | 001,953,696 | ---- | C] () -- C:\Windows\System32\igklg400.dll
[2008/01/02 16:47:22 | 001,533,360 | ---- | C] () -- C:\Windows\System32\igklg450.dll
[2008/01/02 16:47:22 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll
[2007/11/25 20:57:55 | 000,033,792 | ---- | C] () -- C:\Users\Martain\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/09/27 22:16:58 | 000,000,030 | ---- | C] () -- C:\Windows\SETPANEL.INI
[2007/09/27 22:16:50 | 000,000,092 | ---- | C] () -- C:\Windows\CLEANUP.INI
[2007/09/27 21:42:30 | 000,016,384 | ---- | C] () -- C:\Windows\System32\LauncheRyAgentUser.exe
[2007/07/31 15:01:29 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2007/07/31 13:50:23 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2007/07/31 13:44:29 | 000,076,584 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2007/07/31 13:44:29 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2007/07/31 13:43:32 | 000,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll
[2007/07/31 12:07:10 | 000,910,720 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll
[2007/07/31 12:07:10 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1280.dll
[2007/04/25 23:33:22 | 000,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll
[2007/04/25 23:32:50 | 000,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll
[2007/04/25 23:32:46 | 000,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll
[2007/04/25 23:31:00 | 000,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll
[2007/04/25 23:30:52 | 000,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll
[2007/04/25 23:30:44 | 000,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll
[2006/12/25 22:44:48 | 000,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll
[2006/11/13 12:50:06 | 000,071,680 | ---- | C] () -- C:\Windows\System32\HTCA_SelfExtract.bin
[2006/11/02 12:53:49 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 12:44:53 | 000,335,376 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 10:33:01 | 000,631,670 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 10:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 10:33:01 | 000,112,216 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 10:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 10:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 08:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 08:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 07:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 07:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/11/02 07:22:43 | 000,099,999 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2006/11/02 07:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2001/12/26 23:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001/09/04 06:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001/07/30 23:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001/07/24 05:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll
[color=#E56717]========== LOP Check ==========[/color]
[2009/01/27 12:51:52 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\FrostWire
[2009/08/30 21:17:27 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Mumble
[2009/11/27 10:44:19 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Research In Motion
[2011/08/27 15:45:02 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Saviqo
[2008/01/19 14:58:16 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Template
[2009/01/26 09:59:56 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\TSO
[2011/11/03 21:35:39 | 000,032,552 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 64 bytes -> C:\Users\Martain\Desktop\whole world init.mp4:TOC.WMV
< End of report >
#41
Posted 08 November 2011 - 03:31 PM
Amlak
-
- Member
-
- 1,470 posts
Member 1K
I understand that 3 hours may be a bit too much, but please try it again and let it go through to the end as long as it's progressing (even if it takes hours to finish). And, if possible, take note of what files are being cleared.
Also, keep your USB stick connected at all times during our scans and fixes just in case.
Also, keep your USB stick connected at all times during our scans and fixes just in case.
#42
Posted 12 November 2011 - 04:10 AM
LukeMcD
- Topic Starter
-
- Member
-
- 102 posts
Member
OK here's the doctor web scan, it picked up threats and I selected clear on all of them so hopefully that has removed them. I managed to obtain a log from the program:
And here's the OTL quick scan:
2011-11-09 08:55:16 AM Scanner Info Scanning started
2011-11-09 09:18:26 AM Scanner Info threat has been found /win/F:/otl.exe - infected Trojan.Siggen3.20406
2011-11-09 02:28:16 PM Scanner Info threat has been found /win/D:/Qoobox/Quarantine/C/Program Files/Malwarebytes' Anti-Malware/mbamgui.exe.vir - infected Trojan.MulDrop3.5436
2011-11-09 02:28:16 PM Scanner Info threat has been found /win/D:/Qoobox/Quarantine/C/ProgramData/vc71Gx4F.exe.vir - infected Trojan.Siggen2.60287
2011-11-09 02:28:16 PM Scanner Info threat has been found /win/D:/Qoobox/Quarantine/C/ProgramData/vc71Gx4F.exe_.vir - infected Trojan.Siggen2.60287
2011-11-09 02:29:37 PM Scanner Info threat has been found /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{0855A899-7101-C8B8-821A-7793FCD56991}-huyn.exe.vir - infected Trojan.PWS.Panda.655
2011-11-09 02:29:37 PM Scanner Info threat has been found /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{52D6D4F4-5726-D8FC-959F-5F35C0951758}-huyn.exe.vir - infected Trojan.PWS.Panda.655
2011-11-09 02:29:37 PM Scanner Info threat has been found /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{6A16F163-C234-7E04-54DF-98FBA00454A0}-dulmd.exe.vir - infected Trojan.Inject.53628
2011-11-09 02:30:14 PM Scanner Info threat has been found /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{A2D951E5-4CCE-BAB0-FCBE-3BAE4DFF08D5}-uxome.exe.vir - infected Trojan.PWS.Panda.655
2011-11-09 02:32:21 PM Scanner Info threat has been found /win/D:/Qoobox/Quarantine/C/Users/Martain/AppData/Local/Facebook/Update/FacebookUpdate.exe.vir - infected Trojan.MulDrop3.5436
2011-11-09 02:32:32 PM Scanner Info threat has been found /win/D:/Qoobox/Quarantine/C/Windows/Fonts/e28R26x.com.vir - infected Trojan.DownLoad2.31585
2011-11-09 05:29:37 PM Scanner Info /win/F:/otl.exe - deleted
2011-11-09 05:29:37 PM Scanner Info /win/F:/otl.exe - deleted
2011-11-09 05:29:37 PM Scanner Info /win/D:/Qoobox/Quarantine/C/Program Files/Malwarebytes' Anti-Malware/mbamgui.exe.vir - deleted
2011-11-09 05:29:37 PM Scanner Info /win/D:/Qoobox/Quarantine/C/Program Files/Malwarebytes' Anti-Malware/mbamgui.exe.vir - deleted
2011-11-09 05:29:38 PM Scanner Info /win/D:/Qoobox/Quarantine/C/ProgramData/vc71Gx4F.exe.vir - deleted
2011-11-09 05:29:38 PM Scanner Info /win/D:/Qoobox/Quarantine/C/ProgramData/vc71Gx4F.exe.vir - deleted
2011-11-09 05:29:38 PM Scanner Info /win/D:/Qoobox/Quarantine/C/ProgramData/vc71Gx4F.exe_.vir - deleted
2011-11-09 05:29:38 PM Scanner Info /win/D:/Qoobox/Quarantine/C/ProgramData/vc71Gx4F.exe_.vir - deleted
2011-11-09 05:29:39 PM Scanner Info /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{0855A899-7101-C8B8-821A-7793FCD56991}-huyn.exe.vir - deleted
2011-11-09 05:29:39 PM Scanner Info /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{52D6D4F4-5726-D8FC-959F-5F35C0951758}-huyn.exe.vir - deleted
2011-11-09 05:29:40 PM Scanner Info /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{6A16F163-C234-7E04-54DF-98FBA00454A0}-dulmd.exe.vir - deleted
2011-11-09 05:29:40 PM Scanner Info /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{A2D951E5-4CCE-BAB0-FCBE-3BAE4DFF08D5}-uxome.exe.vir - deleted
2011-11-09 05:29:40 PM Scanner Info /win/D:/Qoobox/Quarantine/C/Users/Martain/AppData/Local/Facebook/Update/FacebookUpdate.exe.vir - deleted
2011-11-09 05:29:40 PM Scanner Info /win/D:/Qoobox/Quarantine/C/Users/Martain/AppData/Local/Facebook/Update/FacebookUpdate.exe.vir - deleted
2011-11-09 05:29:40 PM Scanner Info /win/D:/Qoobox/Quarantine/C/Windows/Fonts/e28R26x.com.vir - deleted
2011-11-09 05:29:40 PM Scanner Info /win/D:/Qoobox/Quarantine/C/Windows/Fonts/e28R26x.com.vir - deleted
2011-11-09 10:05:35 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/0/2ffb9080-738387b9 - infected Exploit.CVE2010-0840.18
2011-11-09 10:05:35 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/10/1ff7bca-1528fb0a - infected Exploit.CVE2010-0840.18
2011-11-09 10:05:35 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/16/54e65210-197e743d - infected Exploit.CVE2010-0840.18
2011-11-09 10:05:35 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/16/d31d1d0-10b9a4af - infected Exploit.CVE2010-0840.18
2011-11-09 10:05:35 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/19/e639153-30a37135 - infected Exploit.CVE2010-0840.18
2011-11-09 10:05:37 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/27/2ad0b69b-2ea7dbb2 - infected Exploit.CVE2010-0840.18, Exploit.Java.230
2011-11-09 10:05:38 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/4/52469944-6fb520b2 - infected Exploit.Java.236, Exploit.CVE2010-0840.18
2011-11-09 10:05:39 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/40/6f44f6e8-23c2a58d - infected Exploit.CVE2010-0840.18
2011-11-09 10:05:40 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/43/7235b8eb-1671f1d2 - infected Exploit.CVE2010-0840.18
2011-11-09 10:05:44 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/53/41a02cb5-6e72d965 - infected BackDoor.Qbot.75
2011-11-09 10:05:45 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/54/25b353b6-1812475b - infected Exploit.Java.236, Exploit.CVE2010-0840.18
2011-11-09 10:05:45 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/54/73575ff6-3a6789ed - infected Trojan.DownLoad2.32296
2011-11-09 10:05:46 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/55/5e44aff7-2ef898bb - infected Trojan.Rmnet.1
2011-11-09 10:05:48 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/6/548b2ec6-1d4e421e - infected Trojan.Rmnet.1
2011-11-09 10:05:49 PM Scanner Info threat has been found /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/6/5e79af06-7f2d0a09 - infected Exploit.CVE2010-0840.18
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_ProgramData/QIjLeJwkSi.exe - infected Trojan.Fakealert.25103
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Users/Martain/AppData/Roaming/Kydew/dydy .exe - infected Trojan.PWS.Panda.655
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Users/Martain/AppData/Roaming/Kydew/dydy.exe - infected Trojan.MulDrop3.5436
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/0.19145395014203392.exe - infected Trojan.Rmnet.1
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/e28R26x.com - infected Trojan.MulDrop3.5436
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/eterve.exe - infected Trojan.Inject.53628
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/gbegew.exe - infected Trojan.Inject.54910
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/iweryy.exe - infected Trojan.Inject.53628
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/jfinj.exe - infected Trojan.Inject.53628
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/obegen.exe - infected Trojan.Inject.53628
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/wbegew.exe - infected Trojan.Inject.53628
2011-11-10 01:37:17 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/xbegew.exe - infected Trojan.Inject.53628
2011-11-10 01:37:18 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/config/systemprofile/AppData/Local/mifadok.dll - infected Trojan.Proxy.21333
2011-11-10 01:37:18 AM Scanner Info threat has been found /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/config/systemprofile/AppData/Local/heukxntb/pkjaindr.exe - infected Trojan.Rmnet.1
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/0/2ffb9080-738387b9 - moved to Quarantine
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/10/1ff7bca-1528fb0a - moved to Quarantine
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/16/54e65210-197e743d - moved to Quarantine
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/16/d31d1d0-10b9a4af - moved to Quarantine
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/19/e639153-30a37135 - moved to Quarantine
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/27/2ad0b69b-2ea7dbb2/buildService/ClassType.class - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/4/52469944-6fb520b2 - moved to Quarantine
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/40/6f44f6e8-23c2a58d - moved to Quarantine
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/43/7235b8eb-1671f1d2 - moved to Quarantine
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/53/41a02cb5-6e72d965 - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/53/41a02cb5-6e72d965 - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/54/25b353b6-1812475b/buildService/MapYandex.class - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/54/73575ff6-3a6789ed - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/54/73575ff6-3a6789ed - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/55/5e44aff7-2ef898bb - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/55/5e44aff7-2ef898bb - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/6/548b2ec6-1d4e421e - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/6/548b2ec6-1d4e421e - deleted
2011-11-10 10:20:56 AM Scanner Info moved 8 files to Quarantine: /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/0/2ffb9080-738387b9, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/10/1ff7bca-1528fb0a, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/16/54e65210-197e743d, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/16/d31d1d0-10b9a4af, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/19/e639153-30a37135, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/4/52469944-6fb520b2, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/40/6f44f6e8-23c2a58d, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/43/7235b8eb-1671f1d2;removed 16 files: /win/D:/Qoobox/Quarantine/C/Program Files/Malwarebytes' Anti-Malware/mbamgui.exe.vir, /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{0855A899-7101-C8B8-821A-7793FCD56991}-huyn.exe.vir, /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{52D6D4F4-5726-D8FC-959F-5F35C0951758}-huyn.exe.vir, /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{6A16F163-C234-7E04-54DF-98FBA00454A0}-dulmd.exe.vir, /win/D:/Qoobox/Quarantine/C/ProgramData/Microsoft/Microsoft Antimalware/LocalCopy/{A2D951E5-4CCE-BAB0-FCBE-3BAE4DFF08D5}-uxome.exe.vir, /win/D:/Qoobox/Quarantine/C/ProgramData/vc71Gx4F.exe.vir, /win/D:/Qoobox/Quarantine/C/ProgramData/vc71Gx4F.exe_.vir, /win/D:/Qoobox/Quarantine/C/Users/Martain/AppData/Local/Facebook/Update/FacebookUpdate.exe.vir, /win/D:/Qoobox/Quarantine/C/Windows/Fonts/e28R26x.com.vir, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/27/2ad0b69b-2ea7dbb2/buildService/ClassType.class, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/53/41a02cb5-6e72d965, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/54/25b353b6-1812475b/buildService/MapYandex.class, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/54/73575ff6-3a6789ed, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/55/5e44aff7-2ef898bb, /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/6/548b2ec6-1d4e421e, /win/F:/otl.exe;
2011-11-10 10:20:56 AM Scanner Info /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/6/5e79af06-7f2d0a09/support/Cid.class - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_ProgramData/QIjLeJwkSi.exe - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_ProgramData/QIjLeJwkSi.exe - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Users/Martain/AppData/Roaming/Kydew/dydy .exe - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Users/Martain/AppData/Roaming/Kydew/dydy.exe - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Users/Martain/AppData/Roaming/Kydew/dydy.exe - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/0.19145395014203392.exe - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/0.19145395014203392.exe - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/e28R26x.com - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/e28R26x.com - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/eterve.exe - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/eterve.exe - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/gbegew.exe - deleted
2011-11-10 10:20:56 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/gbegew.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/iweryy.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/iweryy.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/jfinj.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/jfinj.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/obegen.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/obegen.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/wbegew.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/wbegew.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/xbegew.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/xbegew.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/config/systemprofile/AppData/Local/mifadok.dll - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/config/systemprofile/AppData/Local/mifadok.dll - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/config/systemprofile/AppData/Local/heukxntb/pkjaindr.exe - deleted
2011-11-10 10:20:57 AM Scanner Info /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/config/systemprofile/AppData/Local/heukxntb/pkjaindr.exe - deleted
2011-11-10 01:48:33 PM Scanner Info threat has been found /mnt/disk/sda2/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/27/2ad0b69b-2ea7dbb2 - infected Exploit.CVE2010-0840.18, Exploit.Java.230
2011-11-10 01:48:35 PM Scanner Info threat has been found /mnt/disk/sda2/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/54/25b353b6-1812475b - infected Exploit.Java.236, Exploit.CVE2010-0840.18
2011-11-10 01:48:39 PM Scanner Info threat has been found /mnt/disk/sda2/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/6/5e79af06-7f2d0a09 - infected Exploit.CVE2010-0840.18
2011-11-10 06:05:22 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/7235b8eb-1671f1d2 - infected Exploit.CVE2010-0840.18
2011-11-10 06:05:23 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/6f44f6e8-23c2a58d - infected Exploit.CVE2010-0840.18
2011-11-10 06:05:23 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/52469944-6fb520b2 - infected Exploit.Java.236, Exploit.CVE2010-0840.18
2011-11-10 06:05:24 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/e639153-30a37135 - infected Exploit.CVE2010-0840.18
2011-11-10 06:05:24 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/d31d1d0-10b9a4af - infected Exploit.CVE2010-0840.18
2011-11-10 06:05:25 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/54e65210-197e743d - infected Exploit.CVE2010-0840.18
2011-11-10 06:05:25 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/1ff7bca-1528fb0a - infected Exploit.CVE2010-0840.18
2011-11-10 06:05:26 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/2ffb9080-738387b9 - infected Exploit.CVE2010-0840.18
2011-11-10 06:05:26 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/pkjaindr.exe - infected Trojan.Rmnet.1
2011-11-10 06:05:27 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/mifadok.dll - infected Trojan.Proxy.21333
2011-11-10 06:05:27 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/xbegew.exe - infected Trojan.Inject.53628
2011-11-10 06:05:27 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/wbegew.exe - infected Trojan.Inject.53628
2011-11-10 06:05:28 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/obegen.exe - infected Trojan.Inject.53628
2011-11-10 06:05:28 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/jfinj.exe - infected Trojan.Inject.53628
2011-11-10 06:05:28 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/iweryy.exe - infected Trojan.Inject.53628
2011-11-10 06:05:29 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/gbegew.exe - infected Trojan.Inject.54910
2011-11-10 06:05:29 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/eterve.exe - infected Trojan.Inject.53628
2011-11-10 06:05:29 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/e28R26x.com - infected Trojan.MulDrop3.5436
2011-11-10 06:05:30 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/0.19145395014203392.exe - infected Trojan.Rmnet.1
2011-11-10 06:05:30 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/dydy.exe - infected Trojan.MulDrop3.5436
2011-11-10 06:05:31 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/dydy .exe - infected Trojan.PWS.Panda.655
2011-11-10 06:05:31 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/QIjLeJwkSi.exe - infected Trojan.Fakealert.25103
2011-11-10 06:05:32 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/5e79af06-7f2d0a09 - infected Exploit.CVE2010-0840.18
2011-11-10 06:05:32 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/548b2ec6-1d4e421e - infected Trojan.Rmnet.1
2011-11-10 06:05:33 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/5e44aff7-2ef898bb - infected Trojan.Rmnet.1
2011-11-10 06:05:33 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/73575ff6-3a6789ed - infected Trojan.DownLoad2.32296
2011-11-10 06:05:34 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/25b353b6-1812475b - infected Exploit.Java.236, Exploit.CVE2010-0840.18
2011-11-10 06:05:34 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/41a02cb5-6e72d965 - infected BackDoor.Qbot.75
2011-11-10 06:05:35 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/2ad0b69b-2ea7dbb2 - infected Exploit.CVE2010-0840.18, Exploit.Java.230
2011-11-10 06:05:36 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/e28R26x.com.vir - infected Trojan.DownLoad2.31585
2011-11-10 06:05:36 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/FacebookUpdate.exe.vir - infected Trojan.MulDrop3.5436
2011-11-10 06:05:36 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/{A2D951E5-4CCE-BAB0-FCBE-3BAE4DFF08D5}-uxome.exe.vir - infected Trojan.PWS.Panda.655
2011-11-10 06:05:37 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/{6A16F163-C234-7E04-54DF-98FBA00454A0}-dulmd.exe.vir - infected Trojan.Inject.53628
2011-11-10 06:05:37 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/{52D6D4F4-5726-D8FC-959F-5F35C0951758}-huyn.exe.vir - infected Trojan.PWS.Panda.655
2011-11-10 06:05:38 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/{0855A899-7101-C8B8-821A-7793FCD56991}-huyn.exe.vir - infected Trojan.PWS.Panda.655
2011-11-10 06:05:38 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/vc71Gx4F.exe_.vir - infected Trojan.Siggen2.60287
2011-11-10 06:05:39 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/vc71Gx4F.exe.vir - infected Trojan.Siggen2.60287
2011-11-10 06:05:39 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/mbamgui.exe.vir - infected Trojan.MulDrop3.5436
2011-11-10 06:05:40 PM Scanner Info threat has been found /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/otl.exe - infected Trojan.Siggen3.20406
2011-11-10 06:34:41 PM Scanner Info Scanning finished
2011-11-12 09:03:29 AM Scanner Info /mnt/disk/sda2/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/27/2ad0b69b-2ea7dbb2 - moved to Quarantine
2011-11-12 09:03:30 AM Scanner Info /mnt/disk/sda2/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/54/25b353b6-1812475b - moved to Quarantine
2011-11-12 09:03:30 AM Scanner Info /mnt/disk/sda2/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/6/5e79af06-7f2d0a09 - moved to Quarantine
2011-11-12 09:03:30 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/7235b8eb-1671f1d2 - moved to Quarantine
2011-11-12 09:03:30 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/6f44f6e8-23c2a58d - moved to Quarantine
2011-11-12 09:03:30 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/52469944-6fb520b2 - moved to Quarantine
2011-11-12 09:03:30 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/e639153-30a37135 - moved to Quarantine
2011-11-12 09:03:31 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/d31d1d0-10b9a4af - moved to Quarantine
2011-11-12 09:03:31 AM Scanner Info moved 8 files to Quarantine: /mnt/disk/sda2/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/27/2ad0b69b-2ea7dbb2, /mnt/disk/sda2/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/54/25b353b6-1812475b, /mnt/disk/sda2/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/6/5e79af06-7f2d0a09, /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/52469944-6fb520b2, /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/6f44f6e8-23c2a58d, /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/7235b8eb-1671f1d2, /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/d31d1d0-10b9a4af, /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/e639153-30a37135;removed 15 files: /win/D:/Windows/System32/config/systemprofile/AppData/LocalLow/Sun/Java/Deployment/cache/6.0/6/5e79af06-7f2d0a09/support/Cid.class, /win/D:/_OTL/MovedFiles/10072011_202444/C_ProgramData/QIjLeJwkSi.exe, /win/D:/_OTL/MovedFiles/10072011_202444/C_Users/Martain/AppData/Roaming/Kydew/dydy .exe, /win/D:/_OTL/MovedFiles/10072011_202444/C_Users/Martain/AppData/Roaming/Kydew/dydy.exe, /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/0.19145395014203392.exe, /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/config/systemprofile/AppData/Local/heukxntb/pkjaindr.exe, /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/config/systemprofile/AppData/Local/mifadok.dll, /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/e28R26x.com, /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/eterve.exe, /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/gbegew.exe, /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/iweryy.exe, /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/jfinj.exe, /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/obegen.exe, /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/wbegew.exe, /win/D:/_OTL/MovedFiles/10072011_202444/C_Windows/System32/xbegew.exe;
2011-11-12 09:03:31 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/54e65210-197e743d - moved to Quarantine
2011-11-12 09:03:31 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/1ff7bca-1528fb0a - moved to Quarantine
2011-11-12 09:03:31 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/2ffb9080-738387b9 - moved to Quarantine
2011-11-12 09:03:31 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/pkjaindr.exe - deleted
2011-11-12 09:03:31 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/pkjaindr.exe - deleted
2011-11-12 09:03:31 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/mifadok.dll - deleted
2011-11-12 09:03:31 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/mifadok.dll - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/xbegew.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/xbegew.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/wbegew.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/wbegew.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/obegen.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/obegen.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/jfinj.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/jfinj.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/iweryy.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/iweryy.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/gbegew.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/gbegew.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/eterve.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/eterve.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/e28R26x.com - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/e28R26x.com - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/0.19145395014203392.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/0.19145395014203392.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/dydy.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/dydy.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/dydy .exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/dydy .exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/QIjLeJwkSi.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/QIjLeJwkSi.exe - deleted
2011-11-12 09:03:32 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/5e79af06-7f2d0a09 - moved to Quarantine
2011-11-12 09:03:33 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/548b2ec6-1d4e421e - deleted
2011-11-12 09:03:33 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/548b2ec6-1d4e421e - deleted
2011-11-12 09:03:33 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/5e44aff7-2ef898bb - deleted
2011-11-12 09:03:33 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/5e44aff7-2ef898bb - deleted
2011-11-12 09:03:33 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/73575ff6-3a6789ed - deleted
2011-11-12 09:03:33 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/73575ff6-3a6789ed - deleted
2011-11-12 09:03:33 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/25b353b6-1812475b - moved to Quarantine
2011-11-12 09:03:33 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/41a02cb5-6e72d965 - deleted
2011-11-12 09:03:33 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/41a02cb5-6e72d965 - deleted
2011-11-12 09:03:33 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/2ad0b69b-2ea7dbb2 - moved to Quarantine
2011-11-12 09:03:34 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/e28R26x.com.vir - deleted
2011-11-12 09:03:34 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/e28R26x.com.vir - deleted
2011-11-12 09:03:34 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/FacebookUpdate.exe.vir - deleted
2011-11-12 09:03:34 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/FacebookUpdate.exe.vir - deleted
2011-11-12 09:03:34 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/{A2D951E5-4CCE-BAB0-FCBE-3BAE4DFF08D5}-uxome.exe.vir - deleted
2011-11-12 09:03:34 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/{6A16F163-C234-7E04-54DF-98FBA00454A0}-dulmd.exe.vir - deleted
2011-11-12 09:03:34 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/{52D6D4F4-5726-D8FC-959F-5F35C0951758}-huyn.exe.vir - deleted
2011-11-12 09:03:34 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/{0855A899-7101-C8B8-821A-7793FCD56991}-huyn.exe.vir - deleted
2011-11-12 09:03:34 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/vc71Gx4F.exe_.vir - deleted
2011-11-12 09:03:34 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/vc71Gx4F.exe_.vir - deleted
2011-11-12 09:03:34 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/vc71Gx4F.exe.vir - deleted
2011-11-12 09:03:35 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/vc71Gx4F.exe.vir - deleted
2011-11-12 09:03:35 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/mbamgui.exe.vir - deleted
2011-11-12 09:03:35 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/mbamgui.exe.vir - deleted
2011-11-12 09:03:35 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/otl.exe - deleted
2011-11-12 09:03:35 AM Scanner Info /mnt/module/.pivot/mnt/module/.rootfs/root/.drweb/quarantine/otl.exe - deleted
And here's the OTL quick scan:
OTL logfile created on: 12/11/2011 09:21:07 - Run 4
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Martain\Desktop
Windows Vista Home Basic Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.17037)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
1013.40 Mb Total Physical Memory | 143.62 Mb Available Physical Memory | 14.17% Memory free
2.22 Gb Paging File | 1.34 Gb Available in Paging File | 60.24% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 32.51 Gb Total Space | 1.81 Gb Free Space | 5.57% Space Free | Partition Type: NTFS
Drive D: | 32.26 Gb Total Space | 31.61 Gb Free Space | 97.99% Space Free | Partition Type: NTFS
Drive E: | 179.14 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive F: | 60.73 Mb Total Space | 59.53 Mb Free Space | 98.02% Space Free | Partition Type: FAT
Computer Name: MARTAIN-PC | User Name: Martain | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2011/11/12 09:15:22 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Martain\Desktop\OTL.exe
PRC - [2011/08/31 16:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/06/15 14:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 14:39:26 | 000,228,520 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MpCmdRun.exe
PRC - [2011/04/27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2008/10/29 06:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2009/08/11 21:55:45 | 000,141,312 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - File not found [Auto | Stopped] -- -- (LiveUpdate Notice Ex)
SRV - File not found [Auto | Stopped] -- -- (CLTNetCnService)
SRV - [2011/08/31 16:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/04/27 14:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2008/01/29 17:38:31 | 000,583,048 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe -- (LiveUpdate Notice Service)
SRV - [2007/07/31 13:15:55 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/06/22 01:25:46 | 000,118,464 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe -- (CLSched) CyberLink Task Scheduler (CTS)
SRV - [2007/06/22 01:25:44 | 000,257,736 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe -- (CLCapSvc) CyberLink Background Capture Service (CBCS)
SRV - [2007/06/22 01:24:12 | 001,076,832 | ---- | M] (Cyberlink) [Disabled | Stopped] -- C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe -- (CyberLink Media Library Service)
SRV - [2007/06/05 17:13:28 | 000,024,576 | ---- | M] () [Disabled | Stopped] -- C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe -- (eSettingsService)
SRV - [2007/05/22 22:00:02 | 000,135,168 | ---- | M] (Acer Inc.) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eNet\eNet Service.exe -- (eNet Service)
SRV - [2007/05/17 05:15:22 | 000,163,840 | ---- | M] (acer) [Disabled | Stopped] -- C:\Acer\Empowering Technology\ePower\ePowerSvc.exe -- (WMIService)
SRV - [2007/04/25 23:34:30 | 000,457,512 | ---- | M] (HiTRSUT) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe -- (eDataSecurity Service)
SRV - [2007/03/14 17:52:30 | 000,024,576 | ---- | M] (Acer Inc.) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe -- (eLockService)
SRV - [2007/02/13 13:26:50 | 000,053,248 | ---- | M] (Acer Inc.) [Disabled | Stopped] -- C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe -- (eRecoveryService)
SRV - [2007/01/26 21:24:42 | 000,050,688 | ---- | M] () [Disabled | Stopped] -- C:\Acer\ALaunch\ALaunchSvc.exe -- (ALaunchService)
SRV - [2006/11/24 19:57:54 | 000,107,008 | ---- | M] () [Disabled | Stopped] -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2011/11/12 09:08:34 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75C32E32-DC5F-465C-AB06-D2D79A7130E5}\MpKsl53fd8517.sys -- (MpKsl53fd8517)
DRV - [2011/11/08 18:50:50 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75C32E32-DC5F-465C-AB06-D2D79A7130E5}\MpKsl98c286fe.sys -- (MpKsl98c286fe)
DRV - [2011/11/06 15:15:00 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75C32E32-DC5F-465C-AB06-D2D79A7130E5}\MpKsl320289f8.sys -- (MpKsl320289f8)
DRV - [2011/08/31 16:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/04/18 12:18:50 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2008/09/02 08:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2008/09/02 08:00:00 | 000,099,376 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2007/06/18 10:03:32 | 000,737,280 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2007/06/14 02:33:26 | 000,154,624 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2007/01/30 05:23:30 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2006/12/08 01:12:02 | 000,076,584 | ---- | M] () [Kernel | Auto | Running] -- C:\Acer\Empowering Technology\eRecovery\int15.sys -- (int15)
DRV - [2006/11/02 13:27:36 | 000,020,112 | ---- | M] (Dritek System Inc.) [Kernel | System | Running] -- C:\Program Files\Launch Manager\DPortIO.sys -- (DritekPortIO)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://en.uk.acer.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Yahoo! Search
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.co.uk/"
FF - prefs.js..extensions.enabledItems: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20100503
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.1
FF - prefs.js..extensions.enabledItems: {2AAE53E8-258E-4B63-A156-108607283E21}:1.9.1
FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=LMW2&o=16046&locale=en_UK&apn_uid=60DDF12B-76F8-42B5-970B-09C79539A2EF&apn_ptnrs=OE&apn_sauid=D66240B2-47E3-4EF0-A05D-DFB9CD329B50&apn_dtid=VIN007YYGB&q="
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Martain\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.22\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/09/21 12:17:48 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.22\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/07 19:12:07 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{2AAE53E8-258E-4B63-A156-108607283E21}: C:\Users\Martain\AppData\Local\{2AAE53E8-258E-4B63-A156-108607283E21}
[2010/06/08 18:23:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martain\AppData\Roaming\Mozilla\Extensions
[2010/01/29 14:15:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martain\AppData\Roaming\Mozilla\Extensions\[email protected]
[2011/10/01 13:44:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\extensions
[2010/06/08 18:27:18 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2010/07/11 17:40:41 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011/08/01 12:55:52 | 000,002,571 | ---- | M] () -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\searchplugins\askcom.xml
[2010/06/08 18:22:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) -- C:\USERS\MARTAIN\APPDATA\LOCAL\{2AAE53E8-258E-4B63-A156-108607283E21}
[2011/09/04 16:00:07 | 000,001,538 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2011/09/04 16:00:07 | 000,000,947 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
[2011/09/04 16:00:07 | 000,000,769 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2011/09/04 16:00:07 | 000,001,135 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml
O1 HOSTS File: ([2011/11/03 21:08:25 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\System32\ActiveToolBand.dll (HiTRUST)
O2 - BHO: (no name) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - No CLSID value found.
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Windows\System32\eDStoolbar.dll (HiTRUST)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx File not found
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail.com/mail/w3/resources/VistaMSNPUplden-gb.cab (MSN Photo Upload Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUplden-gb.cab (Windows Live Hotmail Photo Upload Tool)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5BD64290-995E-4DFF-A1AA-4F07B6EA49B3}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Filter\x-sdch - No CLSID value found
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Martain\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Martain\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 21:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2011/11/12 09:20:49 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Martain\Desktop\OTL.exe
[2011/11/03 21:43:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2011/11/03 21:18:17 | 000,000,000 | ---D | C] -- C:\Users\Martain\AppData\Local\temp
[2011/11/03 21:08:52 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2011/11/03 21:04:18 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2011/10/31 20:36:54 | 004,282,492 | R--- | C] (Swearware) -- C:\Users\Martain\Desktop\ComboFix.exe
[2011/10/28 12:10:31 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/10/28 12:10:30 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/10/28 12:10:29 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/10/28 12:10:29 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2011/10/28 12:05:56 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/10/28 12:05:39 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/10/28 11:51:08 | 000,000,000 | ---D | C] -- C:\Avenger
[2007/09/27 21:42:30 | 000,016,384 | ---- | C] ( ) -- C:\Windows\System32\ClearEvent.exe
[2007/07/31 13:43:36 | 000,053,248 | ---- | C] ( ) -- C:\Windows\System32\Interop.Shell32.dll
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/11/12 09:15:22 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Martain\Desktop\OTL.exe
[2011/11/12 09:14:36 | 000,631,670 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/11/12 09:14:36 | 000,112,216 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/11/12 09:08:51 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/11/12 09:08:51 | 000,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/11/12 09:08:23 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/11/12 09:08:19 | 1063,272,448 | -HS- | M] () -- C:\hiberfil.sys
[2011/11/03 21:08:25 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011/11/03 20:43:09 | 004,282,492 | R--- | M] (Swearware) -- C:\Users\Martain\Desktop\ComboFix.exe
[2011/11/03 20:37:06 | 000,000,112 | ---- | M] () -- C:\ProgramData\naAR43Hs.dat
[2011/11/02 13:23:15 | 000,002,229 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/10/31 19:40:03 | 000,000,001 | ---- | M] () -- C:\ProgramData\vc71Gx4F.exe_.b
[2011/10/28 12:43:18 | 000,000,001 | ---- | M] () -- C:\ProgramData\vc71Gx4F.exe.b
[2011/10/23 18:02:02 | 000,000,512 | ---- | M] () -- C:\Users\Martain\Documents\MBR.dat
[2011/10/23 17:59:55 | 000,014,720 | ---- | M] () -- C:\Windows\System32\hdsector.sys
[2011/10/23 17:59:55 | 000,000,001 | ---- | M] () -- C:\Windows\System32\hdsector.sys.a
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/11/06 15:14:32 | 1063,272,448 | -HS- | C] () -- C:\hiberfil.sys
[2011/10/31 19:40:03 | 000,000,001 | ---- | C] () -- C:\ProgramData\vc71Gx4F.exe_.b
[2011/10/28 12:43:18 | 000,000,001 | ---- | C] () -- C:\ProgramData\vc71Gx4F.exe.b
[2011/10/28 12:10:32 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2011/10/28 12:10:31 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2011/10/28 12:10:30 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/10/28 12:10:30 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/10/28 12:10:30 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/10/23 18:02:02 | 000,000,512 | ---- | C] () -- C:\Users\Martain\Documents\MBR.dat
[2011/10/23 17:59:55 | 000,000,001 | ---- | C] () -- C:\Windows\System32\hdsector.sys.a
[2011/10/23 17:59:54 | 000,014,720 | ---- | C] () -- C:\Windows\System32\hdsector.sys
[2011/10/23 17:59:12 | 000,000,112 | ---- | C] () -- C:\ProgramData\naAR43Hs.dat
[2011/10/01 13:39:48 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/08/12 11:06:42 | 000,000,129 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2009/11/27 10:42:20 | 000,000,256 | ---- | C] () -- C:\Windows\System32\pool.bin
[2009/08/19 15:08:57 | 000,075,064 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2009/05/18 19:53:11 | 000,005,972 | ---- | C] () -- C:\Users\Martain\AppData\Local\d3d9caps.dat
[2008/01/19 14:58:14 | 000,004,166 | ---- | C] () -- C:\Users\Martain\AppData\Roaming\wklnhst.dat
[2008/01/02 16:57:36 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1409.dll
[2008/01/02 16:47:22 | 001,953,696 | ---- | C] () -- C:\Windows\System32\igklg400.dll
[2008/01/02 16:47:22 | 001,533,360 | ---- | C] () -- C:\Windows\System32\igklg450.dll
[2008/01/02 16:47:22 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll
[2007/11/25 20:57:55 | 000,033,792 | ---- | C] () -- C:\Users\Martain\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2007/09/27 22:16:58 | 000,000,030 | ---- | C] () -- C:\Windows\SETPANEL.INI
[2007/09/27 22:16:50 | 000,000,092 | ---- | C] () -- C:\Windows\CLEANUP.INI
[2007/09/27 21:42:30 | 000,016,384 | ---- | C] () -- C:\Windows\System32\LauncheRyAgentUser.exe
[2007/07/31 15:01:29 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN4.dll
[2007/07/31 13:50:23 | 000,065,536 | ---- | C] () -- C:\Windows\System32\NATTraversal.dll
[2007/07/31 13:44:29 | 000,076,584 | ---- | C] () -- C:\Windows\System32\drivers\int15.sys
[2007/07/31 13:44:29 | 000,015,656 | ---- | C] () -- C:\Windows\System32\drivers\int15_64.sys
[2007/07/31 13:43:32 | 000,331,776 | ---- | C] () -- C:\Windows\System32\ScrollBarLib.dll
[2007/07/31 12:07:10 | 000,910,720 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll
[2007/07/31 12:07:10 | 000,204,800 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1280.dll
[2007/04/25 23:33:22 | 000,266,240 | ---- | C] () -- C:\Windows\System32\NotesExtmngr.dll
[2007/04/25 23:32:50 | 000,204,800 | ---- | C] () -- C:\Windows\System32\NotesActnMenu.dll
[2007/04/25 23:32:46 | 000,086,016 | ---- | C] () -- C:\Windows\System32\MSNSpook.dll
[2007/04/25 23:31:00 | 000,028,672 | ---- | C] () -- C:\Windows\System32\BatchCrypto.dll
[2007/04/25 23:30:52 | 000,073,728 | ---- | C] () -- C:\Windows\System32\APISlice.dll
[2007/04/25 23:30:44 | 000,063,488 | ---- | C] () -- C:\Windows\System32\ShowErrMsg.dll
[2006/12/25 22:44:48 | 000,022,016 | ---- | C] () -- C:\Windows\System32\MailFormat_U.dll
[2006/11/13 12:50:06 | 000,071,680 | ---- | C] () -- C:\Windows\System32\HTCA_SelfExtract.bin
[2006/11/02 12:53:49 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 12:44:53 | 000,335,376 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 10:33:01 | 000,631,670 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 10:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 10:33:01 | 000,112,216 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 10:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 10:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 08:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 08:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 07:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 07:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/11/02 07:22:43 | 000,099,999 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2006/11/02 07:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2001/12/26 23:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001/09/04 06:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001/07/30 23:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001/07/24 05:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll
[color=#E56717]========== LOP Check ==========[/color]
[2009/01/27 12:51:52 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\FrostWire
[2009/08/30 21:17:27 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Mumble
[2009/11/27 10:44:19 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Research In Motion
[2011/08/27 15:45:02 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Saviqo
[2008/01/19 14:58:16 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\Template
[2009/01/26 09:59:56 | 000,000,000 | ---D | M] -- C:\Users\Martain\AppData\Roaming\TSO
[2011/11/03 21:35:39 | 000,032,552 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[color=#E56717]========== Purity Check ==========[/color]
[color=#E56717]========== Alternate Data Streams ==========[/color]
@Alternate Data Stream - 64 bytes -> C:\Users\Martain\Desktop\whole world init.mp4:TOC.WMV
< End of report >
#43
Posted 12 November 2011 - 08:20 PM
Amlak
-
- Member
-
- 1,470 posts
Member 1K
Step 1
Run OTL.
Step 2
Run OTL.
Run OTL.
- Under the Custom Scans/Fixes box at the bottom, paste in the following:
:OTL IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..extensions.enabledItems: {2AAE53E8-258E-4B63-A156-108607283E21}:1.9.1 FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=LMW2&o=16046&locale=en_UK&apn_uid=60DDF12B-76F8-42B5-970B-09C79539A2EF&apn_ptnrs=OE&apn_sauid=D66240B2-47E3-4EF0-A05D-DFB9CD329B50&apn_dtid=VIN007YYGB&q=" FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{2AAE53E8-258E-4B63-A156-108607283E21}: C:\Users\Martain\AppData\Local\{2AAE53E8-258E-4B63-A156-108607283E21} [2011/08/01 12:55:52 | 000,002,571 | ---- | M] () -- C:\Users\Martain\AppData\Roaming\Mozilla\Firefox\Profiles\ksagft2t.default\searchplugins\askcom.xml [2010/06/08 18:22:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions File not found (No name found) -- C:\USERS\MARTAIN\APPDATA\LOCAL\{2AAE53E8-258E-4B63-A156-108607283E21} O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found. O2 - BHO: (no name) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - No CLSID value found. O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask) :FILES c:\windows\system32\msodj.exe c:\windows\system32\oulmm.exe c:\windows\system32\hbegex.exe c:\windows\system32\tqrott.exe c:\windows\system32\ptervn.exe c:\windows\system32\gweryg.exe c:\windows\system32\vulme.exe c:\windows\system32\fterve.exe c:\windows\system32\aqrotp.exe c:\windows\system32\iqroth.exe c:\windows\system32\gtervf.exe c:\windows\system32\rqrotq.exe c:\windows\system32\ttixc.exe c:\windows\system32\wbegeg.exe c:\windows\system32\wtervf.exe c:\windows\system32\vterve.exe c:\windows\system32\etervu.exe c:\windows\system32\stixc.exe c:\windows\system32\sfinb.exe c:\windows\system32\xbegeg.exe c:\windows\system32\tsodt.exe c:\windows\system32\csodc.exe c:\windows\system32\xtervw.exe c:\windows\system32\ksodz.exe c:\windows\system32\iweryx.exe c:\windows\system32\ybegeg.exe c:\windows\system32\xweryg.exe c:\windows\system32\etixt.exe c:\windows\system32\mtixl.exe c:\windows\system32\zqroth.exe c:\windows\system32\ssodc.exe c:\windows\system32\hweryx.exe c:\windows\system32\ltixk.exe c:\windows\system32\aqrota.exe c:\windows\system32\yweryx.exe c:\windows\system32\pweryo.exe c:\windows\system32\obegeo.exe c:\windows\system32\sfinr.exe c:\windows\system32\otervn.exe c:\windows\system32\qweryp.exe c:\windows\system32\qqrotq.exe c:\windows\system32\uulmd.exe c:\windows\system32\bfinq.exe c:\windows\system32\zqrotj.exe c:\windows\system32\yweryh.exe c:\windows\system32\gbegev.exe c:\windows\system32\xweryh.exe c:\windows\system32\tsodc.exe c:\windows\system32\ttixt.exe c:\windows\system32\iqroti.exe c:\windows\system32\jfiny.exe c:\windows\system32\vtervf.exe c:\windows\system32\utixd.exe c:\windows\system32\oweryo.exe c:\windows\system32\jqroty.exe c:\windows\system32\nbegen.exe c:\windows\system32\iqrotx.exe c:\windows\system32\lulml.exe c:\windows\system32\rfina.exe c:\windows\system32\ctixc.exe c:\windows\system32\zfini.exe c:\windows\system32\mulmm.exe c:\windows\system32\xbegew.exe c:\windows\system32\csodr.exe c:\windows\system32\uulme.exe c:\windows\system32\ntervm.exe c:\windows\system32\afina.exe c:\windows\system32\ltixl.exe c:\windows\system32\pbegeo.exe c:\windows\system32\hdsector.sys C:\Program Files\Ask.com C:\ProgramData\naAR43Hs.dat C:\ProgramData\vc71Gx4F.exe_.b C:\ProgramData\vc71Gx4F.exe.b C:\Windows\System32\hdsector.sys C:\Windows\System32\hdsector.sys.a C:\Users\Martain\AppData\Roaming\Saviqo c:\program files\iTunes\iTunesHelper.exe|c:\program files\iTunes\iTunesHelper .exe /replace c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe|c:\program files\Malwarebytes' Anti-Malware\mbamgui .exe /replace c:\program files\Microsoft Security Client\msseces.exe|c:\program files\Microsoft Security Client\msseces .exe /replace c:\program files\QuickTime\QTTask.exe|c:\program files\QuickTime\QTTask .exe /replace c:\program files\Windows Media Player\WMPNSCFG.exe|c:\program files\Windows Media Player\WMPNSCFG .exe /replace %systemroot%\Tasks\at*.job :COMMANDS [EMPTYTEMP] [CREATERESTOREPOINT] - Click the Run Fix button at the top.
- When done, post the content of the resultant log in your next reply.
Step 2
Run OTL.
- Under the Custom Scans/Fixes box at the bottom, paste in the following:
/md5start peauth.sys eventlog.dll scecli.dll netlogon.dll cngaudit.dll sceclt.dll ntelogon.dll logevent.dll iaStor.sys nvstor.sys atapi.sys IdeChnDr.sys viasraid.sys AGP440.sys vaxscsi.sys nvatabus.sys viamraid.sys nvata.sys nvgts.sys iastorv.sys ViPrt.sys /md5stop msconfig safebootminimal safebootnetwork activex netsvcs drivers32 %SYSTEMDRIVE%\*.* %PROGRAMFILES%\*.* %APPDATA%\*.* %systemroot%\Tasks\*.job C:\ProgramData\*.* c:\program files\iTunes\*.* c:\program files\Malwarebytes' Anti-Malware\*.* c:\program files\Microsoft Security Client\*.* c:\program files\QuickTime\*.* c:\program files\Windows Media Player\*.* c:\windows\system32\*.*
- Click the Run Scan button at the top.
- Make sure you post the log it produces in your next reply.
#44
Posted 13 November 2011 - 03:03 AM
LukeMcD
- Topic Starter
-
- Member
-
- 102 posts
Member
OTL keeps prompting about a corrupt file on the first fix:
The file or directory
C:\Users\Martain\AppData\Roaming\Microsoft\Windows\Recent is corrupt and unreadable. Please run the Chkdsk utility.
The file or directory
C:\Users\Martain\AppData\Roaming\Microsoft\Windows\Recent is corrupt and unreadable. Please run the Chkdsk utility.
#45
Posted 13 November 2011 - 05:21 PM
Amlak
-
- Member
-
- 1,470 posts
Member 1K
Skip the fix for now and do the following (reset the computer if you're forced to quit OTL that way):
You may receive the following message:
The disk check could not be performed because the disk check utility needs exclusive access to some Windows files on the disk. These files can be accessed by restarting Windows. Do you want to schedule the disk check to occur the next time you restart the computer?
Click Yes to schedule the disk check, and then restart your computer to start the disk check.
***
Then repeat the previous set of instructions in my previous post.
- Double-click My Computer, and then right-click C:.
- Click Properties, and then click Tools.
- Under Error-checking, click Check Now. A dialog box that shows the Check disk options is displayed.
- Make sure the Automatically fix file system errors check box is selected.
- Make sure the Scan for and attempt recovery of bad sectors check box is NOT selected, and then click Start.
You may receive the following message:
The disk check could not be performed because the disk check utility needs exclusive access to some Windows files on the disk. These files can be accessed by restarting Windows. Do you want to schedule the disk check to occur the next time you restart the computer?
Click Yes to schedule the disk check, and then restart your computer to start the disk check.
***
Then repeat the previous set of instructions in my previous post.
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
