Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Vista Internet Security 2012 [Closed]

Started by Greg Ball , Dec 26 2011 02:54 AM

  • This topic is locked This topic is locked

#1
Greg Ball
Posted 26 December 2011 - 02:54 AM

Greg Ball

    New Member

  • Member
  • Pip
  • 5 posts
OTL logfile created on: 12/26/2011 3:21:37 AM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Greg\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.75 Gb Total Physical Memory | 1.58 Gb Available Physical Memory | 57.52% Memory free
5.72 Gb Paging File | 4.45 Gb Available in Paging File | 77.72% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 223.03 Gb Total Space | 143.97 Gb Free Space | 64.55% Space Free | Partition Type: NTFS
Drive D: | 9.85 Gb Total Space | 8.97 Gb Free Space | 91.00% Space Free | Partition Type: NTFS

Computer Name: GREG-PC | User Name: Greg | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/12/26 03:21:16 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Greg\Downloads\OTL.scr
PRC - [2011/12/25 20:17:17 | 000,323,584 | ---- | M] (Microsoft Corporation) -- C:\Users\Greg\AppData\Local\vys.exe
PRC - [2011/06/06 14:06:12 | 000,251,744 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe
PRC - [2011/06/06 13:26:54 | 006,132,576 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe
PRC - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE
PRC - [2011/02/17 17:32:57 | 000,234,656 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil10m_ActiveX.exe
PRC - [2010/11/08 11:40:56 | 000,715,440 | ---- | M] () -- C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
PRC - [2010/01/26 02:40:32 | 001,020,248 | ---- | M] () -- C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe
PRC - [2010/01/04 20:34:32 | 000,689,416 | ---- | M] () -- C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
PRC - [2010/01/04 20:34:32 | 000,345,352 | ---- | M] () -- C:\Program Files\Trend Micro\BM\TMBMSRV.exe
PRC - [2009/04/11 01:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/10/15 07:23:28 | 000,106,496 | R--- | M] () -- C:\Program Files\Sony Ericsson\Sony Ericsson MD400 Wireless Modem\wwanSvc.exe
PRC - [2008/09/30 13:06:50 | 000,485,208 | ---- | M] (Nikon Corporation) -- C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
PRC - [2008/04/26 03:15:26 | 000,361,808 | ---- | M] () -- C:\Windows\SMINST\BLService.exe
PRC - [2007/10/09 15:21:02 | 000,124,280 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
PRC - [2007/01/04 16:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe
PRC - [2006/11/02 07:35:35 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpcumi.exe


========== Modules (No Company Name) ==========

MOD - [2011/04/01 14:48:48 | 008,217,088 | ---- | M] () -- C:\Program Files\LeapFrog\LeapFrog Connect\QtGui4.dll
MOD - [2011/04/01 14:41:58 | 002,267,648 | ---- | M] () -- C:\Program Files\LeapFrog\LeapFrog Connect\QtCore4.dll
MOD - [2008/10/21 15:21:16 | 000,066,856 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\common\MCEMediaStatus.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (SecuritySoldierSvc)
SRV - [2011/06/06 13:26:54 | 006,132,576 | ---- | M] (LeapFrog Enterprises, Inc.) [Auto | Running] -- C:\Program Files\LeapFrog\LeapFrog Connect\CommandService.exe -- (LeapFrog Connect Device Service)
SRV - [2011/02/28 17:44:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/11/08 11:40:56 | 000,715,440 | ---- | M] () [Auto | Running] -- C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe -- (SfCtlCom)
SRV - [2010/10/12 12:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)
SRV - [2010/01/04 20:34:32 | 000,689,416 | ---- | M] () [On_Demand | Running] -- C:\Program Files\Trend Micro\Internet Security\TmProxy.exe -- (TmProxy)
SRV - [2010/01/04 20:34:32 | 000,345,352 | ---- | M] () [On_Demand | Running] -- C:\Program Files\Trend Micro\BM\TMBMSRV.exe -- (TMBMServer)
SRV - [2008/10/15 07:23:28 | 000,106,496 | R--- | M] () [Auto | Running] -- C:\Program Files\Sony Ericsson\Sony Ericsson MD400 Wireless Modem\wwanSvc.exe -- (wwanSvc)
SRV - [2008/04/26 03:15:26 | 000,361,808 | ---- | M] () [Auto | Running] -- C:\Windows\SMINST\BLService.exe -- (Recovery Service for Windows)
SRV - [2008/01/20 21:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/10/09 15:21:02 | 000,124,280 | ---- | M] (Seagate Technology LLC) [Auto | Running] -- C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe -- (Basics Service)
SRV - [2007/01/04 16:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) [Auto | Running] -- C:\Program Files\Viewpoint\Common\ViewpointService.exe -- (Viewpoint Manager Service)


========== Driver Services (SafeList) ==========

DRV - [2011/07/12 05:44:10 | 000,262,416 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\tmxpflt.sys -- (tmxpflt)
DRV - [2011/07/12 05:43:58 | 000,036,624 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\tmpreflt.sys -- (tmpreflt)
DRV - [2011/07/12 05:09:32 | 001,405,720 | ---- | M] (Trend Micro Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\vsapint.sys -- (vsapint)
DRV - [2010/07/19 13:03:10 | 000,059,472 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\tmactmon.sys -- (tmactmon)
DRV - [2010/07/19 13:03:00 | 000,051,792 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\DRIVERS\tmevtmgr.sys -- (tmevtmgr)
DRV - [2010/07/19 13:02:54 | 000,163,408 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\DRIVERS\tmcomm.sys -- (tmcomm)
DRV - [2010/01/04 20:34:38 | 000,089,872 | ---- | M] (Trend Micro Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\tmtdi.sys -- (tmtdi)
DRV - [2009/11/10 09:27:06 | 000,019,456 | ---- | M] (LeapFrog) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\FlyUsb.sys -- (FlyUsb)
DRV - [2009/07/23 21:01:00 | 009,791,072 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2008/10/15 07:31:28 | 000,434,176 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\seu3mdm2.sys -- (seu3mdm2)
DRV - [2008/10/15 07:31:28 | 000,405,504 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\seu3unic.sys -- (seu3unic) Sony Ericsson MD400g Mobile Broadband Network Adapter (WDM)
DRV - [2008/10/15 07:31:28 | 000,389,376 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\seu3mdm.sys -- (seu3mdm)
DRV - [2008/10/15 07:31:28 | 000,380,800 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\seu3card.sys -- (seu3card)
DRV - [2008/10/15 07:31:28 | 000,307,200 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\seu3bus.sys -- (seu3bus) Sony Ericsson MD400g Mobile Broadband Composite Device driver (WDM)
DRV - [2008/10/15 07:31:28 | 000,025,984 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\seu3nd5.sys -- (seu3nd5) Sony Ericsson MD400g Mobile Broadband Network Adapter (NDIS)
DRV - [2008/10/15 07:31:28 | 000,024,232 | ---- | M] (Sony Ericsson) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\seu3scard.sys -- (Sony_EricssonWWSC)
DRV - [2008/10/15 07:31:28 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\seu3mdfl2.sys -- (seu3mdfl2)
DRV - [2008/10/15 07:31:28 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\seu3mdfl.sys -- (seu3mdfl)
DRV - [2008/10/03 02:39:28 | 000,222,208 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2008/05/09 14:17:32 | 000,043,040 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2008/04/27 13:07:44 | 000,909,824 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2008/04/24 17:51:46 | 000,014,848 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2008/01/29 08:55:00 | 001,042,464 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2007/10/17 18:36:54 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2007/06/18 19:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...avilion&pf=cnnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://in.rd.yahoo.c...earch.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://in.rd.yahoo.c...earch.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...avilion&pf=cnnb

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...avilion&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://in.rd.yahoo.c...earch.yahoo.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll ()
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Users\Greg\AppData\Roaming\Move Networks\plugins\npqmp071705000014.dll (Move Networks)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Greg\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\@yahoo.com/BrowserPlus,version=2.8.1: C:\Users\Greg\AppData\Local\Yahoo!\BrowserPlus\2.8.1\Plugins\npybrowserplus_2.8.1.dll (Yahoo! Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/01/17 20:23:25 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Users\Greg\AppData\Roaming\Move Networks [2009/12/31 20:23:30 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/01/17 20:23:25 | 000,000,000 | ---D | M]

[2009/02/27 03:08:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Greg\AppData\Roaming\Mozilla\Extensions
[2009/02/27 03:08:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Greg\AppData\Roaming\Mozilla\Extensions\[email protected]

O1 HOSTS File: ([2006/09/18 16:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - No CLSID value found.
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [hpqSRMon] File not found
O4 - HKLM..\Run: [Monitor] C:\Program Files\LeapFrog\LeapFrog Connect\Monitor.exe (LeapFrog Enterprises, Inc.)
O4 - HKLM..\Run: [Nikon Transfer Monitor] C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe (Nikon Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [UfSeAgnt.exe] C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe ()
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [WPCUMI] C:\Windows\System32\wpcumi.exe (Microsoft Corporation)
O4 - HKCU..\Run: [] File not found
O4 - Startup: C:\Users\Greg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote Table Of Contents.onetoc2 ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 32
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.liv...m/quickadd.aspx File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Ranges: Range1 ([http] in Local intranet)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{40486E69-A767-41D3-966C-C3E29D0085D3}: DhcpNameServer = 192.168.0.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DAA9E6BC-76AC-4EEE-854F-42E46AC6DAE9}: DhcpNameServer = 192.168.2.1
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Greg\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Greg\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/08/04 13:03:40 | 000,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009/01/01 00:16:23 | 000,024,862 | ---- | M] () - C:\Autorun_dll.log -- [ NTFS ]
O33 - MountPoints2\{b6c1a831-9632-11df-8ea2-001f1642f627}\Shell\AutoRun\command - "" = F:\Install\Setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKCU\...exe [@ = Vd] -- "C:\Users\Greg\AppData\Local\vys.exe" -a "%1" %* (Microsoft Corporation)

========== Files/Folders - Created Within 30 Days ==========

[2011/12/25 20:17:17 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\Users\Greg\AppData\Local\vys.exe
[2011/12/24 21:23:02 | 000,328,192 | ---- | C] (Microsoft Corporation) -- C:\Users\Greg\AppData\Local\jbu.exe
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Users\Greg\*.tmp files -> C:\Users\Greg\*.tmp -> ]
[1 C:\Windows\System32\drivers\*.tmp files -> C:\Windows\System32\drivers\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/12/26 02:41:54 | 000,000,246 | ---- | M] () -- C:\ProgramData\hpqp.ini
[2011/12/26 02:41:39 | 000,064,352 | ---- | M] () -- C:\ProgramData\nvModes.001
[2011/12/26 02:41:33 | 000,064,352 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011/12/26 02:41:33 | 000,010,892 | -HS- | M] () -- C:\Users\Greg\AppData\Local\2uk67pt227ow1c80w8mf060k0iqg3xc1pex7kb5n
[2011/12/26 02:41:33 | 000,010,892 | -HS- | M] () -- C:\ProgramData\2uk67pt227ow1c80w8mf060k0iqg3xc1pex7kb5n
[2011/12/26 02:40:50 | 000,003,344 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/12/26 02:40:50 | 000,003,344 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/12/26 02:40:44 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/12/22 21:09:40 | 000,618,026 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/12/22 21:09:40 | 000,109,112 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/12/14 16:24:38 | 000,312,328 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/12/01 17:37:16 | 000,000,318 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForGreg.job
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Users\Greg\*.tmp files -> C:\Users\Greg\*.tmp -> ]
[1 C:\Windows\System32\drivers\*.tmp files -> C:\Windows\System32\drivers\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/12/25 20:17:18 | 000,010,892 | -HS- | C] () -- C:\Users\Greg\AppData\Local\2uk67pt227ow1c80w8mf060k0iqg3xc1pex7kb5n
[2011/12/25 20:17:18 | 000,010,892 | -HS- | C] () -- C:\ProgramData\2uk67pt227ow1c80w8mf060k0iqg3xc1pex7kb5n
[2010/11/28 03:04:15 | 000,000,005 | ---- | C] () -- C:\Windows\treeskp.sys
[2010/11/28 03:04:15 | 000,000,005 | ---- | C] () -- C:\Windows\sbacknt.bin
[2010/01/17 20:22:26 | 000,023,086 | ---- | C] () -- C:\Windows\hpqins15.dat
[2010/01/04 20:34:38 | 000,163,408 | ---- | C] () -- C:\Windows\System32\drivers\tmcomm.sys
[2010/01/04 20:34:38 | 000,059,472 | ---- | C] () -- C:\Windows\System32\drivers\tmactmon.sys
[2010/01/04 20:34:38 | 000,051,792 | ---- | C] () -- C:\Windows\System32\drivers\tmevtmgr.sys
[2009/12/26 15:52:00 | 000,016,570 | ---- | C] () -- C:\Windows\System32\30945notza-vir5s599.exe
[2009/12/19 14:44:59 | 000,009,713 | ---- | C] () -- C:\Windows\System32\215z9virus1b19.exe
[2009/12/19 07:18:17 | 000,004,859 | ---- | C] () -- C:\Windows\129z2spy5c5.bin
[2009/12/18 01:03:10 | 000,010,780 | ---- | C] () -- C:\Windows\23z015o9m6b8.dll
[2009/12/14 09:34:32 | 000,009,021 | ---- | C] () -- C:\Windows\66c5thre9t13z56.bin
[2009/12/10 20:45:25 | 000,018,130 | ---- | C] () -- C:\Windows\7z93thief599.exe
[2009/12/10 08:00:37 | 000,015,535 | ---- | C] () -- C:\Windows\9b655tzal1589.bin
[2009/12/10 00:41:12 | 000,009,477 | ---- | C] () -- C:\Windows\System32\1a2fth5eaz32229.dll
[2009/12/09 05:30:42 | 000,012,266 | ---- | C] () -- C:\Windows\System32\6984szyware675.dll
[2009/12/06 21:44:20 | 000,013,982 | ---- | C] () -- C:\Windows\System32\35czsteal1390.dll
[2009/11/24 09:05:09 | 000,004,491 | ---- | C] () -- C:\Windows\System32\25289hack5ooz4a.bin
[2009/11/23 15:32:18 | 000,005,859 | ---- | C] () -- C:\Windows\3z5aspar5e20149.dll
[2009/11/20 18:19:51 | 000,006,960 | ---- | C] () -- C:\Windows\23884n5t-a-vzrus519.exe
[2009/11/17 02:55:53 | 000,010,033 | ---- | C] () -- C:\Windows\35526vir9sz78.dll
[2009/11/15 20:48:12 | 000,003,758 | ---- | C] () -- C:\Windows\System32\99spazbot595.dll
[2009/11/13 18:35:27 | 000,017,670 | ---- | C] () -- C:\Windows\55999hief25z0.bin
[2009/11/13 05:09:15 | 000,007,137 | ---- | C] () -- C:\Windows\3cf0dow9z5ader2391.bin
[2009/11/12 03:46:49 | 000,006,681 | ---- | C] () -- C:\Windows\7c15bazkdoor9301.exe
[2009/11/09 13:11:41 | 000,007,728 | ---- | C] () -- C:\Windows\System32\z9c5spyw5re7799.bin
[2009/11/08 18:18:25 | 000,006,143 | ---- | C] () -- C:\Windows\System32\6z2b5hre9t22404.bin
[2009/11/04 21:34:51 | 000,012,518 | ---- | C] () -- C:\Windows\59974hacktozl270.bin
[2009/10/23 20:00:50 | 000,007,443 | ---- | C] () -- C:\Windows\System32\6b14downl5ad9r1z8.bin
[2009/10/20 22:39:47 | 000,010,245 | ---- | C] () -- C:\Windows\System32\22558spamzo912.dll
[2009/10/20 14:01:23 | 000,005,276 | ---- | C] () -- C:\Windows\System32\1435zviru591b.dll
[2009/10/20 11:01:05 | 000,009,018 | ---- | C] () -- C:\Windows\95410spy2z5.dll
[2009/10/18 20:45:27 | 000,011,906 | ---- | C] () -- C:\Windows\System32\2ezdow9loade51274.exe
[2009/10/18 18:31:54 | 000,014,926 | ---- | C] () -- C:\Windows\System32\3z71bac9do5r1005.dll
[2009/10/16 10:53:39 | 000,007,977 | ---- | C] () -- C:\Windows\569e5ddware312z.exe
[2009/10/11 06:08:03 | 000,008,405 | ---- | C] () -- C:\Windows\System32\25e9szeal9603.bin
[2009/10/10 03:10:11 | 000,008,940 | ---- | C] () -- C:\Windows\System32\79fthiez2518.bin
[2009/10/06 05:27:59 | 000,005,496 | ---- | C] () -- C:\Windows\System32\15965sz910b.bin
[2009/10/05 16:30:02 | 000,015,614 | ---- | C] () -- C:\Windows\System32\17320not-a-vi5z9159.dll
[2009/10/02 15:25:29 | 000,003,348 | ---- | C] () -- C:\Windows\System32\9z504spam5ot72b.dll
[2009/10/02 14:52:24 | 000,006,001 | ---- | C] () -- C:\Windows\169e5pyw9re2z25.dll
[2009/09/28 01:44:32 | 000,017,030 | ---- | C] () -- C:\Windows\12290wz5m63b.dll
[2009/09/28 01:44:32 | 000,014,577 | ---- | C] () -- C:\Windows\System32\7b97adzware5169.bin
[2009/09/28 01:44:32 | 000,013,128 | ---- | C] () -- C:\Windows\System32\1e55t5ief96z.bin
[2009/09/28 01:44:32 | 000,012,634 | ---- | C] () -- C:\Windows\60579zoj539.dll
[2009/09/28 01:44:32 | 000,010,483 | ---- | C] () -- C:\Windows\System32\19754vzrus625.bin
[2009/09/28 01:44:32 | 000,009,589 | ---- | C] () -- C:\Windows\11953hacktoolaaz.dll
[2009/09/28 01:44:32 | 000,009,123 | ---- | C] () -- C:\Windows\System32\6497th5ef2z18.bin
[2009/09/28 01:44:32 | 000,002,968 | ---- | C] () -- C:\Windows\System32\6f95threa927802z.bin
[2009/09/28 01:44:32 | 000,002,738 | ---- | C] () -- C:\Windows\9d0dbackdooz2256.exe
[2009/09/28 01:44:31 | 000,017,365 | ---- | C] () -- C:\Windows\System32\1956spy9z5.exe
[2009/09/28 01:44:31 | 000,017,339 | ---- | C] () -- C:\Windows\2075hackto5l149z.dll
[2009/09/28 01:44:31 | 000,014,690 | ---- | C] () -- C:\Windows\25258w5z9318.bin
[2009/09/28 01:44:31 | 000,014,376 | ---- | C] () -- C:\Windows\System32\76f1dowzlo5der1294.exe
[2009/09/28 01:44:31 | 000,013,420 | ---- | C] () -- C:\Windows\System32\z4af5ddware2498.dll
[2009/09/28 01:44:31 | 000,012,568 | ---- | C] () -- C:\Windows\d5dthre9t2599z.dll
[2009/09/28 01:44:31 | 000,012,106 | ---- | C] () -- C:\Windows\26649spy59z.exe
[2009/09/28 01:44:31 | 000,010,597 | ---- | C] () -- C:\Windows\172z795rm5bb.bin
[2009/09/28 01:44:31 | 000,006,398 | ---- | C] () -- C:\Windows\System32\6ba5steal1z59.bin
[2009/09/28 01:44:31 | 000,003,359 | ---- | C] () -- C:\Windows\3857bzc5do9r832.bin
[2009/09/28 01:44:31 | 000,003,347 | ---- | C] () -- C:\Windows\7539zhreat27811.dll
[2009/09/28 01:44:31 | 000,002,902 | ---- | C] () -- C:\Windows\10164s5z6a9.exe
[2009/09/28 01:44:31 | 000,002,811 | ---- | C] () -- C:\Windows\z9429sp51d2.bin
[2009/09/28 01:44:30 | 000,016,390 | ---- | C] () -- C:\Windows\System32\59z85ir3044.dll
[2009/09/28 01:44:30 | 000,014,723 | ---- | C] () -- C:\Windows\9c16spy5are1503z.dll
[2009/09/28 01:44:30 | 000,011,128 | ---- | C] () -- C:\Windows\System32\2536t9ief2009z.dll
[2009/09/28 01:44:30 | 000,007,832 | ---- | C] () -- C:\Windows\System32\65d9backdzor18749.bin
[2009/09/28 01:44:29 | 000,017,178 | ---- | C] () -- C:\Windows\2895spz59b.bin
[2009/09/28 01:44:29 | 000,014,666 | ---- | C] () -- C:\Windows\133995o9z4b.bin
[2009/09/28 01:44:29 | 000,014,114 | ---- | C] () -- C:\Windows\System32\5a49spyware125z.bin
[2009/09/28 01:44:29 | 000,013,571 | ---- | C] () -- C:\Windows\System32\1z139w5rm9e.exe
[2009/09/28 01:44:29 | 000,012,560 | ---- | C] () -- C:\Windows\System32\480espyw95z215.dll
[2009/09/28 01:44:29 | 000,012,515 | ---- | C] () -- C:\Windows\21e6vir57z9.exe
[2009/09/28 01:44:29 | 000,011,132 | ---- | C] () -- C:\Windows\System32\9933vi9us6z45.exe
[2009/09/28 01:44:29 | 000,007,140 | ---- | C] () -- C:\Windows\System32\7z71v9r256.bin
[2009/09/28 01:44:29 | 000,006,861 | ---- | C] () -- C:\Windows\210559irzs2c55.exe
[2009/09/28 01:44:29 | 000,006,505 | ---- | C] () -- C:\Windows\System32\2b04z95kdoor761.dll
[2009/09/28 01:44:29 | 000,002,537 | ---- | C] () -- C:\Windows\39094sz575c.bin
[2009/09/28 01:44:28 | 000,017,586 | ---- | C] () -- C:\Windows\System32\44c55ddware924z.dll
[2009/09/28 01:44:28 | 000,012,767 | ---- | C] () -- C:\Windows\System32\19891sz5675.dll
[2009/09/28 01:44:28 | 000,012,195 | ---- | C] () -- C:\Windows\System32\4d495irz04.bin
[2009/09/28 01:44:28 | 000,010,154 | ---- | C] () -- C:\Windows\System32\93793virzs4f5.bin
[2009/09/28 01:44:28 | 000,009,163 | ---- | C] () -- C:\Windows\4za5steal1191.exe
[2009/09/28 01:44:28 | 000,008,853 | ---- | C] () -- C:\Windows\3169troz659.exe
[2009/09/28 01:44:28 | 000,008,138 | ---- | C] () -- C:\Windows\5c85threat217z09.exe
[2009/09/28 01:44:28 | 000,007,461 | ---- | C] () -- C:\Windows\System32\94689zot-5-virus311.bin
[2009/09/28 01:44:28 | 000,002,824 | ---- | C] () -- C:\Windows\28490troz5975.exe
[2009/09/28 01:44:27 | 000,015,296 | ---- | C] () -- C:\Windows\System32\1795not-a9zirus5f5.exe
[2009/09/28 01:44:27 | 000,015,147 | ---- | C] () -- C:\Windows\System32\19be5azkdoor853.bin
[2009/09/28 01:44:27 | 000,013,895 | ---- | C] () -- C:\Windows\System32\27z78hackto9l55a.exe
[2009/09/28 01:44:27 | 000,013,375 | ---- | C] () -- C:\Windows\29259z5rm45.exe
[2009/09/28 01:44:27 | 000,011,504 | ---- | C] () -- C:\Windows\25829hacktoolz4.dll
[2009/09/28 01:44:27 | 000,011,239 | ---- | C] () -- C:\Windows\3495spars5z954.exe
[2009/09/28 01:44:27 | 000,010,991 | ---- | C] () -- C:\Windows\System32\5e5ethief8z99.dll
[2009/09/28 01:44:27 | 000,005,944 | ---- | C] () -- C:\Windows\2247zviru93c5.bin
[2009/09/28 01:44:27 | 000,005,216 | ---- | C] () -- C:\Windows\System32\12540zot-9-virusff.bin
[2009/09/28 01:44:27 | 000,004,880 | ---- | C] () -- C:\Windows\945threat1219z5.bin
[2009/09/28 01:44:26 | 000,017,501 | ---- | C] () -- C:\Windows\System32\8115tro5zf99.exe
[2009/09/28 01:44:26 | 000,017,497 | ---- | C] () -- C:\Windows\System32\5679downloazer2401.dll
[2009/09/28 01:44:26 | 000,017,202 | ---- | C] () -- C:\Windows\System32\1c77ste9z5663.exe
[2009/09/28 01:44:26 | 000,015,306 | ---- | C] () -- C:\Windows\1959zeal1559.exe
[2009/09/28 01:44:26 | 000,013,027 | ---- | C] () -- C:\Windows\System32\214559ot-a-viruszd0.exe
[2009/09/28 01:44:26 | 000,010,263 | ---- | C] () -- C:\Windows\System32\5211thief109z.bin
[2009/09/28 01:44:26 | 000,006,910 | ---- | C] () -- C:\Windows\8255wo9z7dd.bin
[2009/09/28 01:44:26 | 000,006,789 | ---- | C] () -- C:\Windows\4dz99ow5loader2898.bin
[2009/09/28 01:44:26 | 000,006,078 | ---- | C] () -- C:\Windows\System32\4zcfv592364.dll
[2009/09/28 01:44:26 | 000,004,814 | ---- | C] () -- C:\Windows\System32\15641vzr9s45c.exe
[2009/09/28 01:44:26 | 000,004,048 | ---- | C] () -- C:\Windows\450ev9r1051z.exe
[2009/09/28 01:44:26 | 000,003,541 | ---- | C] () -- C:\Windows\74zds9arse735.bin
[2009/09/28 01:44:26 | 000,003,324 | ---- | C] () -- C:\Windows\6c0vir5z99.exe
[2009/09/28 01:44:25 | 000,016,114 | ---- | C] () -- C:\Windows\System32\133z159rm644.bin
[2009/09/28 01:44:25 | 000,015,766 | ---- | C] () -- C:\Windows\System32\4595vzr559.dll
[2009/09/28 01:44:25 | 000,012,908 | ---- | C] () -- C:\Windows\97z37hacktool6b5.dll
[2009/09/28 01:44:25 | 000,008,500 | ---- | C] () -- C:\Windows\System32\3300b5ckd9zr3100.dll
[2009/09/28 01:44:25 | 000,007,930 | ---- | C] () -- C:\Windows\System32\53a9downloaderz455.bin
[2009/09/28 01:44:25 | 000,005,348 | ---- | C] () -- C:\Windows\174195zoj5c1.bin
[2009/09/28 01:44:25 | 000,005,054 | ---- | C] () -- C:\Windows\System32\122159pambzt7fe5.bin
[2009/09/28 01:44:25 | 000,003,454 | ---- | C] () -- C:\Windows\System32\a3thiz9485.dll
[2009/09/26 21:17:22 | 000,003,711 | ---- | C] () -- C:\Windows\System32\597ebackz59r2155.dll
[2009/09/20 01:51:58 | 000,007,603 | ---- | C] () -- C:\Windows\15502worz559.dll
[2009/09/18 20:08:08 | 000,016,042 | ---- | C] () -- C:\Windows\5fb7back5oorz95.dll
[2009/09/18 04:42:10 | 000,008,541 | ---- | C] () -- C:\Windows\System32\186z8ha9kt5ol796.bin
[2009/09/18 01:52:16 | 000,013,026 | ---- | C] () -- C:\Windows\9942hazkt59l7aa.dll
[2009/09/17 20:13:36 | 000,004,708 | ---- | C] () -- C:\Windows\4980zot-a9virus552.dll
[2009/09/17 19:51:05 | 000,016,233 | ---- | C] () -- C:\Windows\36z4spamb9519f.bin
[2009/09/17 06:03:47 | 000,018,233 | ---- | C] () -- C:\Windows\System32\299dspywarz351.exe
[2009/09/16 03:03:31 | 000,014,927 | ---- | C] () -- C:\Windows\294135roj11z.bin
[2009/09/13 08:30:00 | 000,017,991 | ---- | C] () -- C:\Windows\3906not-a-virzs6f35.dll
[2009/09/13 01:28:26 | 000,005,367 | ---- | C] () -- C:\Windows\System32\26809spy1z45.bin
[2009/09/12 08:27:56 | 000,011,793 | ---- | C] () -- C:\Windows\System32\18830wo5mz59.bin
[2009/09/09 23:31:37 | 000,009,033 | ---- | C] () -- C:\Windows\System32\240965irus9z.exe
[2009/09/06 12:26:21 | 000,003,612 | ---- | C] () -- C:\Windows\250679rzj5d6.exe
[2009/09/06 07:08:44 | 000,014,429 | ---- | C] () -- C:\Windows\1c795irz191.exe
[2009/08/30 09:43:25 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Organs
[2009/08/30 09:43:25 | 000,000,268 | RH-- | C] () -- C:\Users\Greg\AppData\Roaming\Nature Sounds
[2009/08/30 09:43:25 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT
[2009/08/26 17:28:52 | 000,004,698 | ---- | C] () -- C:\Windows\System32\6195spambz92735.bin
[2009/08/25 17:17:42 | 000,008,008 | ---- | C] () -- C:\Windows\3455woz915.dll
[2009/08/23 09:47:23 | 000,018,262 | ---- | C] () -- C:\Windows\4dcestzal50039.exe
[2009/08/18 14:53:19 | 000,015,057 | ---- | C] () -- C:\Windows\System32\5z90do9nload5r1522.exe
[2009/08/17 11:03:00 | 000,004,490 | ---- | C] () -- C:\Windows\95967szy4ba5.exe
[2009/08/13 03:26:41 | 000,010,592 | ---- | C] () -- C:\Windows\66b9zeal1529.bin
[2009/08/03 14:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/03 14:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe
[2009/08/03 13:09:26 | 000,011,517 | ---- | C] () -- C:\Windows\z7134worm195.dll
[2009/08/02 16:07:14 | 000,017,911 | ---- | C] () -- C:\Windows\5969viz5199.bin
[2009/08/01 08:08:55 | 000,003,951 | ---- | C] () -- C:\Windows\5bb9sparsz2935.exe
[2009/07/25 20:44:07 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/07/25 20:42:31 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/07/25 19:42:14 | 000,008,389 | ---- | C] () -- C:\Windows\System32\1003zorm159.dll
[2009/07/21 16:45:01 | 000,005,382 | ---- | C] () -- C:\Windows\System32\255zhackto9l4ae.bin
[2009/07/21 11:14:48 | 000,016,581 | ---- | C] () -- C:\Windows\1f39a9dzare9265.dll
[2009/07/18 04:52:14 | 000,005,848 | ---- | C] () -- C:\Windows\zd095ir764.bin
[2009/07/18 00:00:31 | 000,013,495 | ---- | C] () -- C:\Windows\System32\2a7btzreat22905.exe
[2009/07/16 18:19:21 | 000,007,072 | ---- | C] () -- C:\Windows\18844spzmb59535.exe
[2009/07/15 11:51:01 | 000,010,835 | ---- | C] () -- C:\Windows\5ad9s9ar5e203z.exe
[2009/07/14 16:08:22 | 000,012,164 | ---- | C] () -- C:\Windows\25c5vi9z569.bin
[2009/07/13 12:20:54 | 000,013,435 | ---- | C] () -- C:\Windows\System32\29z9addwa5e1600.dll
[2009/07/13 03:18:00 | 000,005,721 | ---- | C] () -- C:\Windows\21438vz95s13a.exe
[2009/07/13 02:59:49 | 000,007,196 | ---- | C] () -- C:\Windows\System32\931zst5al2882.dll
[2009/07/12 09:28:53 | 000,003,847 | ---- | C] () -- C:\Windows\System32\241z7s9ambo55d3.bin
[2009/07/12 02:29:24 | 000,012,604 | ---- | C] () -- C:\Windows\System32\5995wzrm695.dll
[2009/07/08 14:39:54 | 000,014,045 | ---- | C] () -- C:\Windows\42579own5ozder171.exe
[2009/07/08 07:12:29 | 000,004,030 | ---- | C] () -- C:\Windows\5ffbbaczd5or2967.bin
[2009/07/08 02:33:32 | 000,005,478 | ---- | C] () -- C:\Windows\509b9parsz2265.dll
[2009/07/04 06:06:50 | 000,012,993 | ---- | C] () -- C:\Windows\System32\1153ad5ware209z.bin
[2009/07/03 02:08:10 | 000,007,959 | ---- | C] () -- C:\Windows\System32\9554zorm7665.exe
[2009/07/02 07:57:57 | 000,016,447 | ---- | C] () -- C:\Windows\5605d9wzlo5der227.dll
[2009/06/28 05:48:37 | 000,004,080 | ---- | C] () -- C:\Windows\60739teaz25265.exe
[2009/06/24 19:28:31 | 000,011,781 | ---- | C] () -- C:\Windows\147e59eal176z.dll
[2009/06/22 08:51:56 | 000,017,060 | ---- | C] () -- C:\Windows\System32\549d5zckdoor1658.dll
[2009/06/21 09:52:11 | 000,013,856 | ---- | C] () -- C:\Windows\6029not-azvirus18e5.bin
[2009/06/20 11:06:45 | 000,006,231 | ---- | C] () -- C:\Windows\74d5thr5at2z669.bin
[2009/06/19 11:32:26 | 000,012,092 | ---- | C] () -- C:\Windows\69dcthief10z25.bin
[2009/06/19 04:43:21 | 000,015,623 | ---- | C] () -- C:\Windows\561a5ddw9ze2051.bin
[2009/06/17 14:35:30 | 000,004,850 | ---- | C] () -- C:\Windows\disney.ini
[2009/06/14 10:54:05 | 000,008,149 | ---- | C] () -- C:\Windows\98275vzrus4e.bin
[2009/06/14 02:39:00 | 000,006,671 | ---- | C] () -- C:\Windows\System32\3572spywarz9.exe
[2009/06/12 02:34:52 | 000,009,183 | ---- | C] () -- C:\Windows\37ec5hr9at5200z.exe
[2009/06/11 21:49:31 | 000,012,472 | ---- | C] () -- C:\Windows\System32\3503zpars91999.bin
[2009/06/11 17:09:45 | 000,009,123 | ---- | C] () -- C:\Windows\1509tzief2935.dll
[2009/06/07 06:38:51 | 000,006,032 | ---- | C] () -- C:\Windows\6d96thzeat115959.dll
[2009/06/06 22:19:25 | 000,010,127 | ---- | C] () -- C:\Windows\System32\57940trzj2dd.exe
[2009/06/05 08:18:11 | 000,013,316 | ---- | C] () -- C:\Windows\1051vir995z.dll
[2009/06/04 10:03:08 | 000,008,293 | ---- | C] () -- C:\Windows\241vi54z99.bin
[2009/06/03 20:53:49 | 000,015,170 | ---- | C] () -- C:\Windows\System32\4b53zir3190.dll
[2009/06/01 17:37:51 | 000,010,871 | ---- | C] () -- C:\Windows\System32\9172spambot125z.exe
[2009/06/01 07:28:16 | 000,009,107 | ---- | C] () -- C:\Windows\5ec5downlozde512949.dll
[2009/05/31 23:11:29 | 000,015,022 | ---- | C] () -- C:\Windows\System32\5f45s9ywarez852.dll
[2009/05/31 20:59:12 | 000,009,716 | ---- | C] () -- C:\Windows\31285hi9f2503z.dll
[2009/05/28 03:35:57 | 000,012,591 | ---- | C] () -- C:\Windows\System32\47z6addware18995.bin
[2009/05/24 14:46:14 | 000,016,257 | ---- | C] () -- C:\Windows\System32\24149spz5e5.exe
[2009/05/22 21:58:49 | 000,016,845 | ---- | C] () -- C:\Windows\System32\253zspy94f.exe
[2009/05/20 09:12:33 | 000,016,334 | ---- | C] () -- C:\Windows\688t5r9az22535.exe
[2009/05/19 09:59:34 | 000,009,425 | ---- | C] () -- C:\Windows\System32\1d5bvir5z079.dll
[2009/05/18 21:01:35 | 000,014,904 | ---- | C] () -- C:\Windows\System32\15921hackzool549.dll
[2009/05/15 18:16:45 | 000,018,086 | ---- | C] () -- C:\Windows\227139or52z3.bin
[2009/05/15 16:13:11 | 000,012,922 | ---- | C] () -- C:\Windows\System32\7d0zv95953.exe
[2009/05/05 00:58:17 | 000,017,340 | ---- | C] () -- C:\Windows\24177virzs519.exe
[2009/05/04 22:42:02 | 000,004,656 | ---- | C] () -- C:\Windows\61d9sparsez355.dll
[2009/05/02 07:45:50 | 000,003,384 | ---- | C] () -- C:\Windows\5c99stea5z261.bin
[2009/05/01 17:05:00 | 000,014,382 | ---- | C] () -- C:\Windows\System32\221439ac5tool72z.dll
[2009/04/28 13:51:40 | 000,016,211 | ---- | C] () -- C:\Windows\System32\7ec9v5rz980.exe
[2009/04/22 03:39:56 | 000,006,560 | ---- | C] () -- C:\Windows\System32\1f995teal705z.bin
[2009/04/21 21:03:39 | 000,003,638 | ---- | C] () -- C:\Windows\System32\496bt9zeat23175.bin
[2009/04/17 17:26:04 | 000,008,572 | ---- | C] () -- C:\Windows\System32\9z91not5a-virus32f.bin
[2009/04/15 15:31:50 | 000,008,075 | ---- | C] () -- C:\Windows\76d6do5nzoad9r440.bin
[2009/04/15 04:29:28 | 000,008,211 | ---- | C] () -- C:\Windows\3c0zspars539.exe
[2009/04/13 03:58:22 | 000,011,057 | ---- | C] () -- C:\Windows\56e8zddware35359.dll
[2009/04/13 02:32:41 | 000,006,188 | ---- | C] () -- C:\Windows\4375a9dwzre2011.bin
[2009/04/12 19:20:56 | 000,017,487 | ---- | C] () -- C:\Windows\System32\24z6895y288.bin
[2009/04/12 16:58:29 | 000,008,200 | ---- | C] () -- C:\Windows\System32\78f9a5dwarez49.dll
[2009/04/09 20:59:44 | 000,011,203 | ---- | C] () -- C:\Windows\31556vizu95.bin
[2009/04/07 23:54:33 | 000,006,384 | ---- | C] () -- C:\Windows\5265v9r127z.exe
[2009/04/07 19:30:16 | 000,002,975 | ---- | C] () -- C:\Windows\System32\29zspyw9re1205.bin
[2009/04/05 05:08:38 | 000,008,363 | ---- | C] () -- C:\Windows\2391zpambo91b75.exe
[2009/04/04 14:04:20 | 000,016,554 | ---- | C] () -- C:\Windows\9375pa9ze499.dll
[2009/04/01 18:21:25 | 000,002,552 | ---- | C] () -- C:\Windows\13671spam5otz969.dll
[2009/04/01 11:26:28 | 000,003,878 | ---- | C] () -- C:\Windows\6b45threat32903z.bin
[2009/03/23 08:44:09 | 000,003,387 | ---- | C] () -- C:\Windows\35399ddwzre2384.bin
[2009/03/19 05:16:24 | 000,002,563 | ---- | C] () -- C:\Windows\System32\5395addwarz542.dll
[2009/03/16 06:52:27 | 000,005,535 | ---- | C] () -- C:\Windows\205eviz9820.bin
[2009/03/15 09:08:30 | 000,011,453 | ---- | C] () -- C:\Windows\System32\25z18spambot92a.bin
[2009/03/13 12:44:26 | 000,006,257 | ---- | C] () -- C:\Windows\System32\1c9zspa5se1896.bin
[2009/03/12 04:08:57 | 000,005,251 | ---- | C] () -- C:\Windows\System32\292fdo5nlozder1721.exe
[2009/03/11 01:51:05 | 000,011,995 | ---- | C] () -- C:\Windows\94aaspyzare19985.bin
[2009/03/10 03:28:05 | 000,003,081 | ---- | C] () -- C:\Windows\129z5not-5-virus695.exe
[2009/03/06 07:21:44 | 000,017,057 | ---- | C] () -- C:\Windows\5dc5ad9ware673z.dll
[2009/03/04 20:56:33 | 000,008,707 | ---- | C] () -- C:\Windows\5z997v9rus112.bin
[2009/03/03 08:25:25 | 000,018,266 | ---- | C] () -- C:\Windows\512bd5z9loader238.bin
[2009/03/02 03:10:37 | 000,009,920 | ---- | C] () -- C:\Windows\5692addwaz51792.dll
[2009/03/01 19:48:08 | 000,007,411 | ---- | C] () -- C:\Windows\7b59sparsz18899.dll
[2009/03/01 01:01:34 | 000,014,164 | ---- | C] () -- C:\Windows\11544spam9zt1c0.dll
[2009/02/27 23:29:01 | 000,014,730 | ---- | C] () -- C:\Windows\System32\13z9vir5886.bin
[2009/02/26 15:46:15 | 000,007,836 | ---- | C] () -- C:\Windows\z93evir5645.dll
[2009/02/26 10:48:50 | 000,016,746 | ---- | C] () -- C:\Windows\16965spambzt3ae.dll
[2009/02/26 04:06:00 | 000,012,775 | ---- | C] () -- C:\Windows\695bba5kzoo92896.exe
[2009/02/25 02:45:29 | 000,000,246 | ---- | C] () -- C:\ProgramData\hpqp.ini
[2009/02/25 01:03:05 | 000,013,799 | ---- | C] () -- C:\Windows\7cbzbackdo953028.exe
[2009/02/21 00:55:57 | 000,011,472 | ---- | C] () -- C:\Windows\System32\290csp5rze2888.exe
[2009/02/20 17:24:28 | 000,005,822 | ---- | C] () -- C:\Windows\2156795yz54.dll
[2009/02/17 16:23:07 | 000,014,702 | ---- | C] () -- C:\Windows\1z319hi5f2389.bin
[2009/02/15 01:22:00 | 000,010,789 | ---- | C] () -- C:\Windows\5betz5ef1609.bin
[2009/02/14 23:31:17 | 000,010,880 | ---- | C] () -- C:\Windows\System32\795cspywaze3535.exe
[2009/02/10 12:57:40 | 000,008,972 | ---- | C] () -- C:\Windows\System32\4132adzwar95255.bin
[2009/02/06 13:21:16 | 000,006,362 | ---- | C] () -- C:\Windows\4zvir5995.bin
[2009/02/06 05:23:52 | 000,017,070 | ---- | C] () -- C:\Windows\System32\314259izus30f.dll
[2009/02/01 09:19:25 | 000,008,313 | ---- | C] () -- C:\Windows\System32\z9380tro54659.dll
[2009/01/28 01:15:21 | 000,013,275 | ---- | C] () -- C:\Windows\6zf59ddware15.bin
[2009/01/21 22:18:49 | 000,010,548 | ---- | C] () -- C:\Windows\System32\z6aaadd59re1810.bin
[2009/01/17 08:27:30 | 000,013,937 | ---- | C] () -- C:\Windows\z5de9parse2565.bin
[2009/01/17 02:11:26 | 000,015,091 | ---- | C] () -- C:\Windows\System32\66zadownlo95er1780.dll
[2009/01/15 07:30:47 | 000,003,239 | ---- | C] () -- C:\Windows\System32\z85259roj18.dll
[2009/01/14 17:33:08 | 000,004,376 | ---- | C] () -- C:\Windows\System32\27z61tr5j696.exe
[2009/01/11 11:24:05 | 000,009,704 | ---- | C] () -- C:\Windows\7f41b5ckdoor96z8.bin
[2009/01/10 05:28:09 | 000,015,720 | ---- | C] () -- C:\Windows\z945threat20251.exe
[2009/01/07 17:21:00 | 000,008,327 | ---- | C] () -- C:\Windows\System32\z59bvir1764.dll
[2009/01/06 05:50:06 | 000,015,638 | ---- | C] () -- C:\Windows\5530sparze7419.dll
[2009/01/04 17:30:52 | 000,009,322 | ---- | C] () -- C:\Windows\System32\3fz25hreat66549.exe
[2009/01/03 14:47:27 | 000,000,680 | ---- | C] () -- C:\Users\Greg\AppData\Local\d3d9caps.dat
[2009/01/03 06:46:55 | 000,015,556 | ---- | C] () -- C:\Windows\96e9a5dwzre1816.bin
[2009/01/02 18:34:15 | 000,018,116 | ---- | C] () -- C:\Windows\26a9zpy5are2532.dll
[2008/12/30 22:08:56 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008/12/28 01:13:33 | 000,006,702 | ---- | C] () -- C:\Windows\997bz5kdoor26959.exe
[2008/12/26 16:30:04 | 000,032,768 | ---- | C] () -- C:\Users\Greg\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/12/26 14:46:53 | 000,010,929 | ---- | C] () -- C:\Windows\System32\533zsp5ware9050.bin
[2008/12/26 14:20:27 | 000,010,680 | ---- | C] () -- C:\Windows\System32\53c5thief199z.exe
[2008/12/26 13:28:53 | 000,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll
[2008/12/26 13:28:52 | 000,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll
[2008/12/26 13:28:52 | 000,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll
[2008/12/26 13:06:16 | 000,064,352 | ---- | C] () -- C:\ProgramData\nvModes.001
[2008/12/26 13:06:09 | 000,064,352 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2008/12/26 13:05:33 | 000,036,662 | ---- | C] () -- C:\Windows\DIIUnin.dat
[2008/12/26 09:57:24 | 000,009,369 | ---- | C] () -- C:\Windows\29255hazk9oolf.exe
[2008/12/22 22:17:59 | 000,013,188 | ---- | C] () -- C:\Windows\516daddwarez1659.exe
[2008/12/20 18:07:10 | 000,016,830 | ---- | C] () -- C:\Windows\System32\4ce2thr5a9z8568.bin
[2008/12/19 18:36:59 | 000,007,142 | ---- | C] () -- C:\Windows\System32\1591ztroj1789.exe
[2008/12/16 17:19:06 | 000,013,755 | ---- | C] () -- C:\Windows\System32\5977vir1z85.dll
[2008/12/16 05:19:43 | 000,003,684 | ---- | C] () -- C:\Windows\System32\85zir1391.exe
[2008/12/15 15:53:49 | 000,007,942 | ---- | C] () -- C:\Windows\System32\z565vir889.exe
[2008/12/15 07:48:31 | 000,009,155 | ---- | C] () -- C:\Windows\z65359arse1378.exe
[2008/12/13 03:56:13 | 000,004,772 | ---- | C] () -- C:\Windows\System32\2c269hzef1522.exe
[2008/12/09 07:44:59 | 000,013,518 | ---- | C] () -- C:\Windows\System32\284ad5war922z5.dll
[2008/12/02 16:56:57 | 000,010,362 | ---- | C] () -- C:\Windows\System32\124z99py795.bin
[2008/12/02 08:00:22 | 000,014,711 | ---- | C] () -- C:\Windows\System32\z0799hack5ool59b.dll
[2008/11/28 12:35:53 | 000,013,990 | ---- | C] () -- C:\Windows\4zd9vir14105.bin
[2008/11/28 06:59:29 | 000,008,459 | ---- | C] () -- C:\Windows\629z9pa5se90.dll
[2008/11/26 15:16:55 | 000,015,048 | ---- | C] () -- C:\Windows\25353troj97fz.exe
[2008/11/26 08:16:48 | 000,012,541 | ---- | C] () -- C:\Windows\5z9195rm481.dll
[2008/11/22 10:48:48 | 000,018,077 | ---- | C] () -- C:\Windows\z9868virus563.exe
[2008/11/19 05:07:44 | 000,005,583 | ---- | C] () -- C:\Windows\5dcastzal8599.bin
[2008/11/18 12:40:32 | 000,005,469 | ---- | C] () -- C:\Windows\System32\22886ha5kt9ol3f9z.bin
[2008/11/17 00:30:29 | 000,012,399 | ---- | C] () -- C:\Windows\5c59dowzloa9er2520.dll
[2008/11/16 18:49:50 | 000,006,815 | ---- | C] () -- C:\Windows\System32\5579dow5loader953z.bin
[2008/11/16 15:47:32 | 000,015,422 | ---- | C] () -- C:\Windows\System32\6942s95rse1z94.exe
[2008/11/14 06:52:33 | 000,005,491 | ---- | C] () -- C:\Windows\359zthief39765.dll
[2008/11/12 20:48:03 | 000,016,245 | ---- | C] () -- C:\Windows\8994hacktozl415.exe
[2008/11/11 14:33:07 | 000,010,760 | ---- | C] () -- C:\Windows\15149v9rzs35e.bin
[2008/11/10 22:05:53 | 000,016,741 | ---- | C] () -- C:\Windows\5394thr9at9z295.exe
[2008/11/10 00:24:46 | 000,003,230 | ---- | C] () -- C:\Windows\System32\1z69addware2454.exe
[2008/11/09 15:14:30 | 000,003,482 | ---- | C] () -- C:\Windows\System32\15826zacktool29f.dll
[2008/11/05 00:45:33 | 000,017,279 | ---- | C] () -- C:\Windows\System32\5f9thzeat8445.exe
[2008/10/26 20:15:54 | 000,009,101 | ---- | C] () -- C:\Windows\25863notz5-virus7f9.bin
[2008/10/25 03:44:46 | 000,016,289 | ---- | C] () -- C:\Windows\System32\18441not-a-v9rusb5z.bin
[2008/10/24 06:17:41 | 000,010,506 | ---- | C] () -- C:\Windows\System32\z386virus589.dll
[2008/10/24 02:01:12 | 000,010,877 | ---- | C] () -- C:\Windows\28599zrm5db.exe
[2008/10/22 12:34:12 | 000,009,214 | ---- | C] () -- C:\Windows\System32\23093vi5us43ez.bin
[2008/10/21 20:31:01 | 000,004,163 | ---- | C] () -- C:\Windows\22daspazs5994.dll
[2008/10/20 20:13:56 | 000,014,640 | ---- | C] () -- C:\Windows\9f6csparse5z6.exe
[2008/10/20 14:17:23 | 000,003,012 | ---- | C] () -- C:\Windows\685threzt16599.bin
[2008/10/20 04:35:12 | 000,011,804 | ---- | C] () -- C:\Windows\9c25irz760.exe
[2008/10/18 17:45:19 | 000,005,022 | ---- | C] () -- C:\Windows\32522no9-a-virus7bbz.bin
[2008/10/17 20:16:51 | 000,016,014 | ---- | C] () -- C:\Windows\System32\29955zp96ea.dll
[2008/10/16 06:57:43 | 000,002,537 | ---- | C] () -- C:\Windows\3415zackd9or2296.bin
[2008/10/14 10:20:38 | 000,013,031 | ---- | C] () -- C:\Windows\91e8s5eal19z9.exe
[2008/10/10 03:49:33 | 000,008,167 | ---- | C] () -- C:\Windows\9e91downzoader22795.dll
[2008/10/09 04:28:18 | 000,007,000 | ---- | C] () -- C:\Windows\2a90spywar95z92.dll
[2008/10/06 14:52:42 | 000,003,948 | ---- | C] () -- C:\Windows\System32\drivers\nvphy.bin
[2008/10/05 00:43:43 | 000,004,345 | ---- | C] () -- C:\Windows\16z2sp965d.exe
[2008/09/30 21:48:54 | 000,015,338 | ---- | C] () -- C:\Windows\398ztro550e.dll
[2008/09/28 17:50:38 | 000,005,728 | ---- | C] () -- C:\Windows\49dbba5kdoorz27.dll
[2008/09/27 00:52:12 | 000,011,984 | ---- | C] () -- C:\Windows\System32\z5258spambo9101.exe
[2008/09/24 04:11:23 | 000,006,221 | ---- | C] () -- C:\Windows\System32\415cvirz9559.bin
[2008/09/23 07:09:51 | 000,010,745 | ---- | C] () -- C:\Windows\13z5dow9loader2252.bin
[2008/09/23 06:39:53 | 000,014,610 | ---- | C] () -- C:\Windows\27897not-5-vzr9s653.bin
[2008/09/16 15:37:57 | 000,015,522 | ---- | C] () -- C:\Windows\System32\26519spz490.bin
[2008/09/15 05:00:39 | 000,013,326 | ---- | C] () -- C:\Windows\14adt59ez225.dll
[2008/09/14 20:30:42 | 000,009,463 | ---- | C] () -- C:\Windows\System32\2a97threaz53027.exe
[2008/09/13 21:47:20 | 000,015,538 | ---- | C] () -- C:\Windows\4z65steal839.exe
[2008/09/11 09:12:18 | 000,009,035 | ---- | C] () -- C:\Windows\System32\25115szy9ea5.dll
[2008/09/09 11:38:19 | 000,016,806 | ---- | C] () -- C:\Windows\9959wzr912b.bin
[2008/09/09 06:21:48 | 000,018,020 | ---- | C] () -- C:\Windows\10f99z5eat5819.exe
[2008/09/08 10:16:55 | 000,006,835 | ---- | C] () -- C:\Windows\7831back5oorz9569.dll
[2008/09/05 19:29:08 | 000,016,409 | ---- | C] () -- C:\Windows\System32\1c72s5yware1689z.exe
[2008/09/05 13:29:49 | 000,007,451 | ---- | C] () -- C:\Windows\System32\1593z9or5a.bin
[2008/09/04 13:19:19 | 000,012,311 | ---- | C] () -- C:\Windows\755cdo5nlozder2966.dll
[2008/09/03 19:10:38 | 000,014,479 | ---- | C] () -- C:\Windows\System32\26743spz159.dll
[2008/09/02 04:52:44 | 000,010,802 | ---- | C] () -- C:\Windows\47bcdowzlo5d9r2776.bin
[2008/08/27 17:28:50 | 000,013,489 | ---- | C] () -- C:\Windows\981025zcktool3ae.dll
[2008/08/27 03:22:26 | 000,004,927 | ---- | C] () -- C:\Windows\System32\19829not-9-vzrus5bf.dll
[2008/08/23 07:10:47 | 000,003,092 | ---- | C] () -- C:\Windows\System32\5156dzwn5oader1984.bin
[2008/08/20 02:50:33 | 000,003,862 | ---- | C] () -- C:\Windows\System32\83bsp95ze1407.exe
[2008/08/19 15:34:48 | 000,013,637 | ---- | C] () -- C:\Windows\System32\29z05pyw9re1143.dll
[2008/08/18 20:58:24 | 000,016,902 | ---- | C] () -- C:\Windows\System32\1z669v5ru9666.bin
[2008/08/16 21:11:09 | 000,007,912 | ---- | C] () -- C:\Windows\29241sz5mbot393.exe
[2008/08/16 11:12:10 | 000,013,271 | ---- | C] () -- C:\Windows\System32\5b14threzt21749.bin
[2008/08/14 19:06:16 | 000,010,417 | ---- | C] () -- C:\Windows\196419irus57z.dll
[2008/08/13 21:33:25 | 000,009,719 | ---- | C] () -- C:\Windows\System32\592f95reaz4220.bin
[2008/08/12 09:25:22 | 000,009,866 | ---- | C] () -- C:\Windows\System32\202z1t5oj916.exe
[2008/08/11 23:33:31 | 000,016,875 | ---- | C] () -- C:\Windows\System32\7578addware90z.exe
[2008/08/07 12:29:19 | 000,003,199 | ---- | C] () -- C:\Windows\6657addwa953z7.dll
[2008/08/04 13:19:17 | 000,101,605 | ---- | C] () -- C:\Windows\hpqins13.dat
[2008/08/03 08:12:41 | 000,002,718 | ---- | C] () -- C:\Windows\22590worz5e9.bin
[2008/08/01 17:17:44 | 000,014,085 | ---- | C] () -- C:\Windows\5c9dt5reaz292319.bin
[2008/07/28 06:10:21 | 000,006,203 | ---- | C] () -- C:\Windows\System32\7b1dspzwa5e2391.dll
[2008/07/26 08:16:10 | 000,013,239 | ---- | C] () -- C:\Windows\5682viz2390.dll
[2008/07/23 02:26:33 | 000,006,807 | ---- | C] () -- C:\Windows\System32\2847n5t-z-virus12e9.bin
[2008/07/22 02:26:19 | 000,014,852 | ---- | C] () -- C:\Windows\System32\24155s9ambotz56.exe
[2008/07/15 13:24:32 | 000,017,108 | ---- | C] () -- C:\Windows\System32\28245t9zj58.exe
[2008/07/11 10:46:26 | 000,006,623 | ---- | C] () -- C:\Windows\System32\1cbabackdo9r54z.dll
[2008/07/10 18:34:04 | 000,010,269 | ---- | C] () -- C:\Windows\System32\z997steal25925.dll
[2008/07/08 19:39:51 | 000,017,162 | ---- | C] () -- C:\Windows\481dspz5s91146.bin
[2008/07/08 16:18:05 | 000,005,042 | ---- | C] () -- C:\Windows\System32\1d29v5z1657.dll
[2008/07/06 21:21:00 | 000,014,798 | ---- | C] () -- C:\Windows\System32\1z461sp52169.exe
[2008/07/06 10:53:47 | 000,003,449 | ---- | C] () -- C:\Windows\3dfzad5wa9e280.exe
[2008/07/02 19:44:12 | 000,012,655 | ---- | C] () -- C:\Windows\System32\6590threat1257z5.exe
[2008/06/27 06:14:14 | 000,007,454 | ---- | C] () -- C:\Windows\1497ztr5j96.dll
[2008/06/26 03:15:49 | 000,005,346 | ---- | C] () -- C:\Windows\181czac59oor2343.dll
[2008/06/24 01:07:00 | 000,014,394 | ---- | C] () -- C:\Windows\1z490spy15d.exe
[2008/06/24 00:09:35 | 000,010,981 | ---- | C] () -- C:\Windows\22226z9ckto5l320.bin
[2008/06/22 11:24:02 | 000,010,169 | ---- | C] () -- C:\Windows\139965py5ffz.bin
[2008/06/18 09:37:23 | 000,010,890 | ---- | C] () -- C:\Windows\15007zot-a-9ir5s121.exe
[2008/06/17 21:31:58 | 000,012,968 | ---- | C] () -- C:\Windows\System32\35c09hief5z1.exe
[2008/06/14 21:30:29 | 000,002,633 | ---- | C] () -- C:\Windows\System32\6259szam5ot145.exe
[2008/06/13 01:11:55 | 000,017,452 | ---- | C] () -- C:\Windows\z35cbackdoor2519.exe
[2008/06/11 05:46:05 | 000,018,224 | ---- | C] () -- C:\Windows\3z83195rm216.exe
[2008/06/11 04:04:29 | 000,006,206 | ---- | C] () -- C:\Windows\System32\69zasp9ware5680.dll
[2008/06/07 12:44:39 | 000,008,130 | ---- | C] () -- C:\Windows\zeb59ddware2223.exe
[2008/06/05 13:55:57 | 000,005,329 | ---- | C] () -- C:\Windows\181z5h9cktool127.dll
[2008/06/05 06:44:22 | 000,005,411 | ---- | C] () -- C:\Windows\zd9bsparse1550.bin
[2008/06/04 22:51:24 | 000,018,179 | ---- | C] () -- C:\Windows\System32\535aaddwaze19965.dll
[2008/06/01 05:50:20 | 000,004,728 | ---- | C] () -- C:\Windows\6991downl9ade526z.dll
[2008/05/28 13:49:05 | 000,007,712 | ---- | C] () -- C:\Windows\System32\1dz0spyware6859.dll
[2008/05/26 11:24:27 | 000,010,592 | ---- | C] () -- C:\Windows\3z40tr5j679.exe
[2008/05/22 00:07:00 | 000,009,089 | ---- | C] () -- C:\Windows\5875ad5wzre839.dll
[2008/05/18 17:19:01 | 000,006,353 | ---- | C] () -- C:\Windows\53z39ownload5r450.bin
[2008/05/17 01:26:31 | 000,010,090 | ---- | C] () -- C:\Windows\z5549not-a-virus76.dll
[2008/05/16 23:15:27 | 000,003,641 | ---- | C] () -- C:\Windows\System32\2105thrzat21349.dll
[2008/05/05 18:36:47 | 000,016,375 | ---- | C] () -- C:\Windows\5zf5thief393.dll
[2008/05/03 12:18:12 | 000,008,115 | ---- | C] () -- C:\Windows\System32\2z945hacktoo92de5.dll
[2008/05/03 00:26:13 | 000,009,907 | ---- | C] () -- C:\Windows\1caabac9door255z.dll
[2008/05/01 20:24:57 | 000,013,078 | ---- | C] () -- C:\Windows\System32\39fc9parsz13025.exe
[2008/04/27 22:26:32 | 000,018,033 | ---- | C] () -- C:\Windows\19z049roj259.exe
[2008/04/27 22:01:48 | 000,013,834 | ---- | C] () -- C:\Windows\System32\18946spzmbo5269.bin
[2008/04/26 00:55:55 | 000,009,078 | ---- | C] () -- C:\Windows\System32\2f5ethi9f22z0.bin
[2008/04/23 18:10:20 | 000,016,951 | ---- | C] () -- C:\Windows\6942thi9f3583z.bin
[2008/04/19 08:52:33 | 000,013,273 | ---- | C] () -- C:\Windows\219z9worm653.dll
[2008/04/18 21:30:37 | 000,004,530 | ---- | C] () -- C:\Windows\25893worma4z.bin
[2008/04/17 18:58:10 | 000,007,215 | ---- | C] () -- C:\Windows\System32\6z10v59us5fb.dll
[2008/04/17 09:29:08 | 000,005,695 | ---- | C] () -- C:\Windows\95026tr5jze9.exe
[2008/04/15 19:35:48 | 000,016,030 | ---- | C] () -- C:\Windows\System32\24422szambot6795.bin
[2008/04/15 17:23:50 | 000,004,112 | ---- | C] () -- C:\Windows\5165ha5ktool9dz.exe
[2008/04/14 13:10:12 | 000,017,429 | ---- | C] () -- C:\Windows\System32\6e79bac5do9r76z.dll
[2008/04/13 23:50:43 | 000,011,193 | ---- | C] () -- C:\Windows\28821not-a-vi95s1z.dll
[2008/04/11 20:38:27 | 000,004,187 | ---- | C] () -- C:\Windows\System32\z9567worm3b95.bin
[2008/04/11 15:11:28 | 000,003,650 | ---- | C] () -- C:\Windows\313095ruz26e.exe
[2008/04/10 19:24:34 | 000,017,329 | ---- | C] () -- C:\Windows\4d59sparze2862.exe
[2008/04/09 13:37:19 | 000,009,310 | ---- | C] () -- C:\Windows\292z1tr9j5f7.bin
[2008/04/09 09:43:49 | 000,012,631 | ---- | C] () -- C:\Windows\System32\99a7b5ckdoor2z57.bin
[2008/04/08 23:06:20 | 000,009,481 | ---- | C] () -- C:\Windows\System32\1584z5pambo944e.dll
[2008/04/05 13:09:21 | 000,002,654 | ---- | C] () -- C:\Windows\System32\2e59vir5969z.exe
[2008/04/01 20:14:22 | 000,008,813 | ---- | C] () -- C:\Windows\System32\z65spa9bot1d4.dll
[2008/03/26 09:26:35 | 000,011,969 | ---- | C] () -- C:\Windows\System32\9752szarse266.exe
[2008/03/26 05:55:02 | 000,005,795 | ---- | C] () -- C:\Windows\System32\14504zp5299.bin
[2008/03/25 20:21:55 | 000,003,801 | ---- | C] () -- C:\Windows\System32\13892tr5zf9.bin
[2008/03/21 19:17:40 | 000,010,010 | ---- | C] () -- C:\Windows\zd37sparse90665.dll
[2008/03/21 01:22:29 | 000,011,980 | ---- | C] () -- C:\Windows\System32\35511s9amzot229.bin
[2008/03/14 21:23:12 | 000,007,674 | ---- | C] () -- C:\Windows\System32\3959backdooz2955.dll
[2008/03/13 01:03:38 | 000,014,772 | ---- | C] () -- C:\Windows\97035vizus68b.bin
[2008/03/11 22:06:22 | 000,003,347 | ---- | C] () -- C:\Windows\727czownload951388.dll
[2008/03/11 11:55:20 | 000,014,683 | ---- | C] () -- C:\Windows\4579troj232z.bin
[2008/03/10 13:30:00 | 000,017,690 | ---- | C] () -- C:\Windows\System32\5b059pa5se136z.exe
[2008/03/08 05:56:12 | 000,009,929 | ---- | C] () -- C:\Windows\7c32a9dware534z.dll
[2008/03/06 04:56:26 | 000,009,844 | ---- | C] () -- C:\Windows\System32\z596spambot655.bin
[2008/03/02 04:15:36 | 000,009,055 | ---- | C] () -- C:\Windows\ze00ad5ware9807.bin
[2008/03/02 03:33:46 | 000,013,196 | ---- | C] () -- C:\Windows\System32\2d829hrzat5675.dll
[2008/03/02 02:46:46 | 000,009,724 | ---- | C] () -- C:\Windows\System32\12z39spy5b5.bin
[2008/03/02 01:25:56 | 000,006,325 | ---- | C] () -- C:\Windows\4dceback5o9rz997.dll
[2008/03/01 09:14:48 | 000,002,761 | ---- | C] () -- C:\Windows\39ebackdo5r202z.dll
[2008/02/26 21:23:26 | 000,002,837 | ---- | C] () -- C:\Windows\System32\51129spy5e2z.dll
[2008/02/22 03:54:37 | 000,004,060 | ---- | C] () -- C:\Windows\System32\996z5orm2cf.dll
[2008/02/19 01:47:49 | 000,012,488 | ---- | C] () -- C:\Windows\System32\659azhief5579.exe
[2008/02/18 22:21:52 | 000,004,730 | ---- | C] () -- C:\Windows\System32\23259hacztool199.dll
[2008/02/18 08:58:56 | 000,005,423 | ---- | C] () -- C:\Windows\505ast5a913z6.exe
[2008/02/16 17:42:40 | 000,012,064 | ---- | C] () -- C:\Windows\90909vz5us65d.exe
[2008/02/15 18:12:43 | 000,010,149 | ---- | C] () -- C:\Windows\System32\2343thi5f9431z.bin
[2008/02/14 12:38:00 | 000,006,679 | ---- | C] () -- C:\Windows\3b695dd9arz101.bin
[2008/02/13 00:06:59 | 000,009,324 | ---- | C] () -- C:\Windows\6cb4ste5l2z99.dll
[2008/02/11 06:54:31 | 000,011,542 | ---- | C] () -- C:\Windows\793z5orm95d.dll
[2008/02/11 02:39:20 | 000,015,758 | ---- | C] () -- C:\Windows\System32\9b8thi5z897.bin
[2008/02/08 02:51:17 | 000,015,489 | ---- | C] () -- C:\Windows\System32\19216hazktool250.exe
[2008/02/07 09:32:22 | 000,012,894 | ---- | C] () -- C:\Windows\711bbackd9or274z5.exe
[2008/02/06 03:29:34 | 000,016,013 | ---- | C] () -- C:\Windows\58795spzmbot2aa.exe
[2008/02/06 01:22:29 | 000,003,267 | ---- | C] () -- C:\Windows\System32\78319ac5doorz260.dll
[2008/02/05 15:12:11 | 000,006,021 | ---- | C] () -- C:\Windows\53d7bazkdoo91271.bin
[2008/02/02 12:56:57 | 000,008,517 | ---- | C] () -- C:\Windows\5ec1t9ief2344z.dll
[2008/01/31 19:26:06 | 000,008,301 | ---- | C] () -- C:\Windows\1260do9n5oader57z.dll
[2008/01/27 00:04:07 | 000,015,512 | ---- | C] () -- C:\Windows\27z45tr9j271.dll
[2008/01/24 14:21:13 | 000,014,725 | ---- | C] () -- C:\Windows\359ca95waze2259.dll
[2008/01/24 07:30:21 | 000,006,792 | ---- | C] () -- C:\Windows\System32\1z6215p942a.bin
[2008/01/22 19:45:52 | 000,011,369 | ---- | C] () -- C:\Windows\System32\8711hacktoo95z2.exe
[2008/01/22 04:16:21 | 000,017,388 | ---- | C] () -- C:\Windows\System32\23687vz5u920c.bin
[2008/01/19 23:16:46 | 000,012,557 | ---- | C] () -- C:\Windows\15963nzt-a-v9rus542.dll
[2008/01/19 09:21:03 | 000,009,343 | ---- | C] () -- C:\Windows\System32\7de2add59re2z18.exe
[2008/01/16 06:49:58 | 000,015,388 | ---- | C] () -- C:\Windows\4945threat19895z.dll
[2008/01/07 20:18:34 | 000,009,387 | ---- | C] () -- C:\Windows\2738zspa5bot499.exe
[2008/01/06 16:06:45 | 000,008,426 | ---- | C] () -- C:\Windows\System32\39dest5al7z9.exe
[2008/01/06 06:34:55 | 000,012,854 | ---- | C] () -- C:\Windows\2d20st9a51733z.bin
[2008/01/01 18:11:09 | 000,011,573 | ---- | C] () -- C:\Windows\System32\9z4cbackdoor1540.exe
[2006/11/02 07:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 07:47:37 | 000,312,328 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 07:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 05:33:01 | 000,618,026 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 05:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 05:33:01 | 000,109,112 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 05:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 05:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 03:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 03:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 02:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/03/09 04:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll

========== LOP Check ==========

[2009/07/25 20:20:10 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Blitware
[2009/07/29 07:11:23 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Leadertech
[2009/03/13 08:31:47 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\LimeWire
[2008/12/26 22:09:49 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\muvee Technologies
[2009/08/30 11:17:18 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Nikon
[2009/05/14 15:20:12 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\PDG Studyware
[2009/11/21 20:43:03 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\Petroglyph
[2009/06/09 09:04:26 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\PureEdge
[2010/11/28 03:16:24 | 000,000,000 | ---D | M] -- C:\Users\Greg\AppData\Roaming\vghd
[2011/12/26 02:36:39 | 000,032,534 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 222 bytes -> C:\ProgramData\TEMP:77D98D08

< End of report >
I'm surprised this let me online. This bug, whatever, has stopped me form getting on line to somewhere that can help. Just about every program on this machine has a Trojun virus, or that is what's claimed.

Attached Files

  • Attached File  OTL.Txt   126.88KB   61 downloads

  • 0

Advertisements

#2
Nedklaw
Posted 26 December 2011 - 07:10 PM

Nedklaw

    Trusted Helper

  • Malware Removal
  • 1,652 posts
Hello, Greg Ball! :wave:

:welcome: I'm Nedklaw and I'll be glad to help you with your malware issues. :)

I am currently still in training and my posts have to be approved by an expert so please expect a delay between my posts.

These instructions are specifically designed for Greg Ball only. No one else should follow these instructions because it can cause serious damage to your computer.

Before we start to clean your computer of malware, please read through the following points to help me and you, and prevent damage to your computer:
  • Please completely read through all of the instructions given to you before attempting to follow them. Reading too lightly will cause you to miss important steps, which could have DESTRUCTIVE effects. If you can't perform a certain step or you are unsure about what to do, let me know!
  • Don't be afraid to ask questions! If you are unsure about anything, ask me! No question is considered stupid here!
  • Be patient with me, logs can take some time to research and my life can mean that I'm busy.
  • Please copy and paste all logs into your reply. Do not attach logs to a post unless I tell you to or if they don't fit in the post.
  • If I instruct you to download a specific tool in which you already have, please delete the copy that you have and re-download the tool. The reason I ask you to do this is because these tools are updated fairly regularly.
  • NEVER fix anything in OTL or other programs on your own! This can be very dangerous and cause harm to your system.
  • Refrain from running any other tools apart from the ones I tell you to.
Note: You should save or print out my instructions for easy reference, as part of the fix may be in Safe Mode and you won't be able to access GeeksToGo.


I am currently reviewing your log and I will post back soon.
  • 0

#3
Nedklaw
Posted 27 December 2011 - 03:10 PM

Nedklaw

    Trusted Helper

  • Malware Removal
  • 1,652 posts
Hi. :)


Step 1

Download RogueKiller to your desktop.

  • Quit all running programs.
  • For Vista/Seven, right click -> run as administrator, for XP simply run RogueKiller.exe.
  • When prompted, type 2 and validate.
  • The RKreport.txt shall be generated next to the executable.
  • If the program is blocked, do not hesitate to try several times. If it really does not work (it could happen), rename it to winlogon.exe.
Please post the contents of RKreport.txt in your next reply.


Step 2

Please uninstall the following programs via Control Panel > Add/Remove Programs (if present):

  • LimeWire
  • Viewpoint (Media Player, Manager, etc)

I recommend you remove your P2P program, LimeWire. They are bad because shared files can contain security risks such as viruses, spyware and other unwanted software. The files distributed on these sites are packed with malware and are distributed all over the internet. You don't know where they have been, someone could have infected the files with malware.

Viewpoint is considered as foistware instead of malware since it is installed without user's approval but doesn't spy or do anything "bad". I recommend you uninstall your Viewpoint product but it is your choice.
This may change, read Viewpoint to Plunge Into Adware.


Step 3

Run OTL.
  • Under the Custom Scans/Fixes box at the bottom, paste in the following: 

    :OTL 
SRV - File not found [Auto | Stopped] -- -- (SecuritySoldierSvc)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKCU..\Run: [] File not found
O37 - HKCU\...exe [@ = Vd] -- "C:\Users\Greg\AppData\Local\vys.exe" -a "%1" %* (Microsoft Corporation)
[2011/12/25 20:17:17 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\Users\Greg\AppData\Local\vys.exe
[2011/12/24 21:23:02 | 000,328,192 | ---- | C] (Microsoft Corporation) -- C:\Users\Greg\AppData\Local\jbu.exe
[2011/12/26 02:41:33 | 000,010,892 | -HS- | M] () -- C:\Users\Greg\AppData\Local\2uk67pt227ow1c80w8mf060k0iqg3xc1pex7kb5n
[2011/12/26 02:41:33 | 000,010,892 | -HS- | M] () -- C:\ProgramData\2uk67pt227ow1c80w8mf060k0iqg3xc1pex7kb5n
[2009/12/26 15:52:00 | 000,016,570 | ---- | C] () -- C:\Windows\System32\30945notza-vir5s599.exe
[2009/12/19 14:44:59 | 000,009,713 | ---- | C] () -- C:\Windows\System32\215z9virus1b19.exe
[2009/12/19 07:18:17 | 000,004,859 | ---- | C] () -- C:\Windows\129z2spy5c5.bin
[2009/12/18 01:03:10 | 000,010,780 | ---- | C] () -- C:\Windows\23z015o9m6b8.dll
[2009/12/14 09:34:32 | 000,009,021 | ---- | C] () -- C:\Windows\66c5thre9t13z56.bin
[2009/12/10 20:45:25 | 000,018,130 | ---- | C] () -- C:\Windows\7z93thief599.exe
[2009/12/10 08:00:37 | 000,015,535 | ---- | C] () -- C:\Windows\9b655tzal1589.bin
[2009/12/10 00:41:12 | 000,009,477 | ---- | C] () -- C:\Windows\System32\1a2fth5eaz32229.dll
[2009/12/09 05:30:42 | 000,012,266 | ---- | C] () -- C:\Windows\System32\6984szyware675.dll
[2009/12/06 21:44:20 | 000,013,982 | ---- | C] () -- C:\Windows\System32\35czsteal1390.dll
[2009/11/24 09:05:09 | 000,004,491 | ---- | C] () -- C:\Windows\System32\25289hack5ooz4a.bin
[2009/11/23 15:32:18 | 000,005,859 | ---- | C] () -- C:\Windows\3z5aspar5e20149.dll
[2009/11/20 18:19:51 | 000,006,960 | ---- | C] () -- C:\Windows\23884n5t-a-vzrus519.exe
[2009/11/17 02:55:53 | 000,010,033 | ---- | C] () -- C:\Windows\35526vir9sz78.dll
[2009/11/15 20:48:12 | 000,003,758 | ---- | C] () -- C:\Windows\System32\99spazbot595.dll
[2009/11/13 18:35:27 | 000,017,670 | ---- | C] () -- C:\Windows\55999hief25z0.bin
[2009/11/13 05:09:15 | 000,007,137 | ---- | C] () -- C:\Windows\3cf0dow9z5ader2391.bin
[2009/11/12 03:46:49 | 000,006,681 | ---- | C] () -- C:\Windows\7c15bazkdoor9301.exe
[2009/11/09 13:11:41 | 000,007,728 | ---- | C] () -- C:\Windows\System32\z9c5spyw5re7799.bin
[2009/11/08 18:18:25 | 000,006,143 | ---- | C] () -- C:\Windows\System32\6z2b5hre9t22404.bin
[2009/11/04 21:34:51 | 000,012,518 | ---- | C] () -- C:\Windows\59974hacktozl270.bin
[2009/10/23 20:00:50 | 000,007,443 | ---- | C] () -- C:\Windows\System32\6b14downl5ad9r1z8.bin
[2009/10/20 22:39:47 | 000,010,245 | ---- | C] () -- C:\Windows\System32\22558spamzo912.dll
[2009/10/20 14:01:23 | 000,005,276 | ---- | C] () -- C:\Windows\System32\1435zviru591b.dll
[2009/10/20 11:01:05 | 000,009,018 | ---- | C] () -- C:\Windows\95410spy2z5.dll
[2009/10/18 20:45:27 | 000,011,906 | ---- | C] () -- C:\Windows\System32\2ezdow9loade51274.exe
[2009/10/18 18:31:54 | 000,014,926 | ---- | C] () -- C:\Windows\System32\3z71bac9do5r1005.dll
[2009/10/16 10:53:39 | 000,007,977 | ---- | C] () -- C:\Windows\569e5ddware312z.exe
[2009/10/11 06:08:03 | 000,008,405 | ---- | C] () -- C:\Windows\System32\25e9szeal9603.bin
[2009/10/10 03:10:11 | 000,008,940 | ---- | C] () -- C:\Windows\System32\79fthiez2518.bin
[2009/10/06 05:27:59 | 000,005,496 | ---- | C] () -- C:\Windows\System32\15965sz910b.bin
[2009/10/05 16:30:02 | 000,015,614 | ---- | C] () -- C:\Windows\System32\17320not-a-vi5z9159.dll
[2009/10/02 15:25:29 | 000,003,348 | ---- | C] () -- C:\Windows\System32\9z504spam5ot72b.dll
[2009/10/02 14:52:24 | 000,006,001 | ---- | C] () -- C:\Windows\169e5pyw9re2z25.dll
[2009/09/28 01:44:32 | 000,017,030 | ---- | C] () -- C:\Windows\12290wz5m63b.dll
[2009/09/28 01:44:32 | 000,014,577 | ---- | C] () -- C:\Windows\System32\7b97adzware5169.bin
[2009/09/28 01:44:32 | 000,013,128 | ---- | C] () -- C:\Windows\System32\1e55t5ief96z.bin
[2009/09/28 01:44:32 | 000,012,634 | ---- | C] () -- C:\Windows\60579zoj539.dll
[2009/09/28 01:44:32 | 000,010,483 | ---- | C] () -- C:\Windows\System32\19754vzrus625.bin
[2009/09/28 01:44:32 | 000,009,589 | ---- | C] () -- C:\Windows\11953hacktoolaaz.dll
[2009/09/28 01:44:32 | 000,009,123 | ---- | C] () -- C:\Windows\System32\6497th5ef2z18.bin
[2009/09/28 01:44:32 | 000,002,968 | ---- | C] () -- C:\Windows\System32\6f95threa927802z.bin
[2009/09/28 01:44:32 | 000,002,738 | ---- | C] () -- C:\Windows\9d0dbackdooz2256.exe
[2009/09/28 01:44:31 | 000,017,365 | ---- | C] () -- C:\Windows\System32\1956spy9z5.exe
[2009/09/28 01:44:31 | 000,017,339 | ---- | C] () -- C:\Windows\2075hackto5l149z.dll
[2009/09/28 01:44:31 | 000,014,690 | ---- | C] () -- C:\Windows\25258w5z9318.bin
[2009/09/28 01:44:31 | 000,014,376 | ---- | C] () -- C:\Windows\System32\76f1dowzlo5der1294.exe
[2009/09/28 01:44:31 | 000,013,420 | ---- | C] () -- C:\Windows\System32\z4af5ddware2498.dll
[2009/09/28 01:44:31 | 000,012,568 | ---- | C] () -- C:\Windows\d5dthre9t2599z.dll
[2009/09/28 01:44:31 | 000,012,106 | ---- | C] () -- C:\Windows\26649spy59z.exe
[2009/09/28 01:44:31 | 000,010,597 | ---- | C] () -- C:\Windows\172z795rm5bb.bin
[2009/09/28 01:44:31 | 000,006,398 | ---- | C] () -- C:\Windows\System32\6ba5steal1z59.bin
[2009/09/28 01:44:31 | 000,003,359 | ---- | C] () -- C:\Windows\3857bzc5do9r832.bin
[2009/09/28 01:44:31 | 000,003,347 | ---- | C] () -- C:\Windows\7539zhreat27811.dll
[2009/09/28 01:44:31 | 000,002,902 | ---- | C] () -- C:\Windows\10164s5z6a9.exe
[2009/09/28 01:44:31 | 000,002,811 | ---- | C] () -- C:\Windows\z9429sp51d2.bin
[2009/09/28 01:44:30 | 000,016,390 | ---- | C] () -- C:\Windows\System32\59z85ir3044.dll
[2009/09/28 01:44:30 | 000,014,723 | ---- | C] () -- C:\Windows\9c16spy5are1503z.dll
[2009/09/28 01:44:30 | 000,011,128 | ---- | C] () -- C:\Windows\System32\2536t9ief2009z.dll
[2009/09/28 01:44:30 | 000,007,832 | ---- | C] () -- C:\Windows\System32\65d9backdzor18749.bin
[2009/09/28 01:44:29 | 000,017,178 | ---- | C] () -- C:\Windows\2895spz59b.bin
[2009/09/28 01:44:29 | 000,014,666 | ---- | C] () -- C:\Windows\133995o9z4b.bin
[2009/09/28 01:44:29 | 000,014,114 | ---- | C] () -- C:\Windows\System32\5a49spyware125z.bin
[2009/09/28 01:44:29 | 000,013,571 | ---- | C] () -- C:\Windows\System32\1z139w5rm9e.exe
[2009/09/28 01:44:29 | 000,012,560 | ---- | C] () -- C:\Windows\System32\480espyw95z215.dll
[2009/09/28 01:44:29 | 000,012,515 | ---- | C] () -- C:\Windows\21e6vir57z9.exe
[2009/09/28 01:44:29 | 000,011,132 | ---- | C] () -- C:\Windows\System32\9933vi9us6z45.exe
[2009/09/28 01:44:29 | 000,007,140 | ---- | C] () -- C:\Windows\System32\7z71v9r256.bin
[2009/09/28 01:44:29 | 000,006,861 | ---- | C] () -- C:\Windows\210559irzs2c55.exe
[2009/09/28 01:44:29 | 000,006,505 | ---- | C] () -- C:\Windows\System32\2b04z95kdoor761.dll
[2009/09/28 01:44:29 | 000,002,537 | ---- | C] () -- C:\Windows\39094sz575c.bin
[2009/09/28 01:44:28 | 000,017,586 | ---- | C] () -- C:\Windows\System32\44c55ddware924z.dll
[2009/09/28 01:44:28 | 000,012,767 | ---- | C] () -- C:\Windows\System32\19891sz5675.dll
[2009/09/28 01:44:28 | 000,012,195 | ---- | C] () -- C:\Windows\System32\4d495irz04.bin
[2009/09/28 01:44:28 | 000,010,154 | ---- | C] () -- C:\Windows\System32\93793virzs4f5.bin
[2009/09/28 01:44:28 | 000,009,163 | ---- | C] () -- C:\Windows\4za5steal1191.exe
[2009/09/28 01:44:28 | 000,008,853 | ---- | C] () -- C:\Windows\3169troz659.exe
[2009/09/28 01:44:28 | 000,008,138 | ---- | C] () -- C:\Windows\5c85threat217z09.exe
[2009/09/28 01:44:28 | 000,007,461 | ---- | C] () -- C:\Windows\System32\94689zot-5-virus311.bin
[2009/09/28 01:44:28 | 000,002,824 | ---- | C] () -- C:\Windows\28490troz5975.exe
[2009/09/28 01:44:27 | 000,015,296 | ---- | C] () -- C:\Windows\System32\1795not-a9zirus5f5.exe
[2009/09/28 01:44:27 | 000,015,147 | ---- | C] () -- C:\Windows\System32\19be5azkdoor853.bin
[2009/09/28 01:44:27 | 000,013,895 | ---- | C] () -- C:\Windows\System32\27z78hackto9l55a.exe
[2009/09/28 01:44:27 | 000,013,375 | ---- | C] () -- C:\Windows\29259z5rm45.exe
[2009/09/28 01:44:27 | 000,011,504 | ---- | C] () -- C:\Windows\25829hacktoolz4.dll
[2009/09/28 01:44:27 | 000,011,239 | ---- | C] () -- C:\Windows\3495spars5z954.exe
[2009/09/28 01:44:27 | 000,010,991 | ---- | C] () -- C:\Windows\System32\5e5ethief8z99.dll
[2009/09/28 01:44:27 | 000,005,944 | ---- | C] () -- C:\Windows\2247zviru93c5.bin
[2009/09/28 01:44:27 | 000,005,216 | ---- | C] () -- C:\Windows\System32\12540zot-9-virusff.bin
[2009/09/28 01:44:27 | 000,004,880 | ---- | C] () -- C:\Windows\945threat1219z5.bin
[2009/09/28 01:44:26 | 000,017,501 | ---- | C] () -- C:\Windows\System32\8115tro5zf99.exe
[2009/09/28 01:44:26 | 000,017,497 | ---- | C] () -- C:\Windows\System32\5679downloazer2401.dll
[2009/09/28 01:44:26 | 000,017,202 | ---- | C] () -- C:\Windows\System32\1c77ste9z5663.exe
[2009/09/28 01:44:26 | 000,015,306 | ---- | C] () -- C:\Windows\1959zeal1559.exe
[2009/09/28 01:44:26 | 000,013,027 | ---- | C] () -- C:\Windows\System32\214559ot-a-viruszd0.exe
[2009/09/28 01:44:26 | 000,010,263 | ---- | C] () -- C:\Windows\System32\5211thief109z.bin
[2009/09/28 01:44:26 | 000,006,910 | ---- | C] () -- C:\Windows\8255wo9z7dd.bin
[2009/09/28 01:44:26 | 000,006,789 | ---- | C] () -- C:\Windows\4dz99ow5loader2898.bin
[2009/09/28 01:44:26 | 000,006,078 | ---- | C] () -- C:\Windows\System32\4zcfv592364.dll
[2009/09/28 01:44:26 | 000,004,814 | ---- | C] () -- C:\Windows\System32\15641vzr9s45c.exe
[2009/09/28 01:44:26 | 000,004,048 | ---- | C] () -- C:\Windows\450ev9r1051z.exe
[2009/09/28 01:44:26 | 000,003,541 | ---- | C] () -- C:\Windows\74zds9arse735.bin
[2009/09/28 01:44:26 | 000,003,324 | ---- | C] () -- C:\Windows\6c0vir5z99.exe
[2009/09/28 01:44:25 | 000,016,114 | ---- | C] () -- C:\Windows\System32\133z159rm644.bin
[2009/09/28 01:44:25 | 000,015,766 | ---- | C] () -- C:\Windows\System32\4595vzr559.dll
[2009/09/28 01:44:25 | 000,012,908 | ---- | C] () -- C:\Windows\97z37hacktool6b5.dll
[2009/09/28 01:44:25 | 000,008,500 | ---- | C] () -- C:\Windows\System32\3300b5ckd9zr3100.dll
[2009/09/28 01:44:25 | 000,007,930 | ---- | C] () -- C:\Windows\System32\53a9downloaderz455.bin
[2009/09/28 01:44:25 | 000,005,348 | ---- | C] () -- C:\Windows\174195zoj5c1.bin
[2009/09/28 01:44:25 | 000,005,054 | ---- | C] () -- C:\Windows\System32\122159pambzt7fe5.bin
[2009/09/28 01:44:25 | 000,003,454 | ---- | C] () -- C:\Windows\System32\a3thiz9485.dll
[2009/09/26 21:17:22 | 000,003,711 | ---- | C] () -- C:\Windows\System32\597ebackz59r2155.dll
[2009/09/20 01:51:58 | 000,007,603 | ---- | C] () -- C:\Windows\15502worz559.dll
[2009/09/18 20:08:08 | 000,016,042 | ---- | C] () -- C:\Windows\5fb7back5oorz95.dll
[2009/09/18 04:42:10 | 000,008,541 | ---- | C] () -- C:\Windows\System32\186z8ha9kt5ol796.bin
[2009/09/18 01:52:16 | 000,013,026 | ---- | C] () -- C:\Windows\9942hazkt59l7aa.dll
[2009/09/17 20:13:36 | 000,004,708 | ---- | C] () -- C:\Windows\4980zot-a9virus552.dll
[2009/09/17 19:51:05 | 000,016,233 | ---- | C] () -- C:\Windows\36z4spamb9519f.bin
[2009/09/17 06:03:47 | 000,018,233 | ---- | C] () -- C:\Windows\System32\299dspywarz351.exe
[2009/09/16 03:03:31 | 000,014,927 | ---- | C] () -- C:\Windows\294135roj11z.bin
[2009/09/13 08:30:00 | 000,017,991 | ---- | C] () -- C:\Windows\3906not-a-virzs6f35.dll
[2009/09/13 01:28:26 | 000,005,367 | ---- | C] () -- C:\Windows\System32\26809spy1z45.bin
[2009/09/12 08:27:56 | 000,011,793 | ---- | C] () -- C:\Windows\System32\18830wo5mz59.bin
[2009/09/09 23:31:37 | 000,009,033 | ---- | C] () -- C:\Windows\System32\240965irus9z.exe
[2009/09/06 12:26:21 | 000,003,612 | ---- | C] () -- C:\Windows\250679rzj5d6.exe
[2009/09/06 07:08:44 | 000,014,429 | ---- | C] () -- C:\Windows\1c795irz191.exe
[2009/08/26 17:28:52 | 000,004,698 | ---- | C] () -- C:\Windows\System32\6195spambz92735.bin
[2009/08/25 17:17:42 | 000,008,008 | ---- | C] () -- C:\Windows\3455woz915.dll
[2009/08/23 09:47:23 | 000,018,262 | ---- | C] () -- C:\Windows\4dcestzal50039.exe
[2009/08/18 14:53:19 | 000,015,057 | ---- | C] () -- C:\Windows\System32\5z90do9nload5r1522.exe
[2009/08/17 11:03:00 | 000,004,490 | ---- | C] () -- C:\Windows\95967szy4ba5.exe
[2009/08/13 03:26:41 | 000,010,592 | ---- | C] () -- C:\Windows\66b9zeal1529.bin
[2009/08/03 13:09:26 | 000,011,517 | ---- | C] () -- C:\Windows\z7134worm195.dll
[2009/08/02 16:07:14 | 000,017,911 | ---- | C] () -- C:\Windows\5969viz5199.bin
[2009/08/01 08:08:55 | 000,003,951 | ---- | C] () -- C:\Windows\5bb9sparsz2935.exe
[2009/07/25 19:42:14 | 000,008,389 | ---- | C] () -- C:\Windows\System32\1003zorm159.dll
[2009/07/21 16:45:01 | 000,005,382 | ---- | C] () -- C:\Windows\System32\255zhackto9l4ae.bin
[2009/07/21 11:14:48 | 000,016,581 | ---- | C] () -- C:\Windows\1f39a9dzare9265.dll
[2009/07/18 04:52:14 | 000,005,848 | ---- | C] () -- C:\Windows\zd095ir764.bin
[2009/07/18 00:00:31 | 000,013,495 | ---- | C] () -- C:\Windows\System32\2a7btzreat22905.exe
[2009/07/16 18:19:21 | 000,007,072 | ---- | C] () -- C:\Windows\18844spzmb59535.exe
[2009/07/15 11:51:01 | 000,010,835 | ---- | C] () -- C:\Windows\5ad9s9ar5e203z.exe
[2009/07/14 16:08:22 | 000,012,164 | ---- | C] () -- C:\Windows\25c5vi9z569.bin
[2009/07/13 12:20:54 | 000,013,435 | ---- | C] () -- C:\Windows\System32\29z9addwa5e1600.dll
[2009/07/13 03:18:00 | 000,005,721 | ---- | C] () -- C:\Windows\21438vz95s13a.exe
[2009/07/13 02:59:49 | 000,007,196 | ---- | C] () -- C:\Windows\System32\931zst5al2882.dll
[2009/07/12 09:28:53 | 000,003,847 | ---- | C] () -- C:\Windows\System32\241z7s9ambo55d3.bin
[2009/07/12 02:29:24 | 000,012,604 | ---- | C] () -- C:\Windows\System32\5995wzrm695.dll
[2009/07/08 14:39:54 | 000,014,045 | ---- | C] () -- C:\Windows\42579own5ozder171.exe
[2009/07/08 07:12:29 | 000,004,030 | ---- | C] () -- C:\Windows\5ffbbaczd5or2967.bin
[2009/07/08 02:33:32 | 000,005,478 | ---- | C] () -- C:\Windows\509b9parsz2265.dll
[2009/07/04 06:06:50 | 000,012,993 | ---- | C] () -- C:\Windows\System32\1153ad5ware209z.bin
[2009/07/03 02:08:10 | 000,007,959 | ---- | C] () -- C:\Windows\System32\9554zorm7665.exe
[2009/07/02 07:57:57 | 000,016,447 | ---- | C] () -- C:\Windows\5605d9wzlo5der227.dll
[2009/06/28 05:48:37 | 000,004,080 | ---- | C] () -- C:\Windows\60739teaz25265.exe
[2009/06/24 19:28:31 | 000,011,781 | ---- | C] () -- C:\Windows\147e59eal176z.dll
[2009/06/22 08:51:56 | 000,017,060 | ---- | C] () -- C:\Windows\System32\549d5zckdoor1658.dll
[2009/06/21 09:52:11 | 000,013,856 | ---- | C] () -- C:\Windows\6029not-azvirus18e5.bin
[2009/06/20 11:06:45 | 000,006,231 | ---- | C] () -- C:\Windows\74d5thr5at2z669.bin
[2009/06/19 11:32:26 | 000,012,092 | ---- | C] () -- C:\Windows\69dcthief10z25.bin
[2009/06/19 04:43:21 | 000,015,623 | ---- | C] () -- C:\Windows\561a5ddw9ze2051.bin
[2009/06/14 10:54:05 | 000,008,149 | ---- | C] () -- C:\Windows\98275vzrus4e.bin
[2009/06/14 02:39:00 | 000,006,671 | ---- | C] () -- C:\Windows\System32\3572spywarz9.exe
[2009/06/12 02:34:52 | 000,009,183 | ---- | C] () -- C:\Windows\37ec5hr9at5200z.exe
[2009/06/11 21:49:31 | 000,012,472 | ---- | C] () -- C:\Windows\System32\3503zpars91999.bin
[2009/06/11 17:09:45 | 000,009,123 | ---- | C] () -- C:\Windows\1509tzief2935.dll
[2009/06/07 06:38:51 | 000,006,032 | ---- | C] () -- C:\Windows\6d96thzeat115959.dll
[2009/06/06 22:19:25 | 000,010,127 | ---- | C] () -- C:\Windows\System32\57940trzj2dd.exe
[2009/06/05 08:18:11 | 000,013,316 | ---- | C] () -- C:\Windows\1051vir995z.dll
[2009/06/04 10:03:08 | 000,008,293 | ---- | C] () -- C:\Windows\241vi54z99.bin
[2009/06/03 20:53:49 | 000,015,170 | ---- | C] () -- C:\Windows\System32\4b53zir3190.dll
[2009/06/01 17:37:51 | 000,010,871 | ---- | C] () -- C:\Windows\System32\9172spambot125z.exe
[2009/06/01 07:28:16 | 000,009,107 | ---- | C] () -- C:\Windows\5ec5downlozde512949.dll
[2009/05/31 23:11:29 | 000,015,022 | ---- | C] () -- C:\Windows\System32\5f45s9ywarez852.dll
[2009/05/31 20:59:12 | 000,009,716 | ---- | C] () -- C:\Windows\31285hi9f2503z.dll
[2009/05/28 03:35:57 | 000,012,591 | ---- | C] () -- C:\Windows\System32\47z6addware18995.bin
[2009/05/24 14:46:14 | 000,016,257 | ---- | C] () -- C:\Windows\System32\24149spz5e5.exe
[2009/05/22 21:58:49 | 000,016,845 | ---- | C] () -- C:\Windows\System32\253zspy94f.exe
[2009/05/20 09:12:33 | 000,016,334 | ---- | C] () -- C:\Windows\688t5r9az22535.exe
[2009/05/19 09:59:34 | 000,009,425 | ---- | C] () -- C:\Windows\System32\1d5bvir5z079.dll
[2009/05/18 21:01:35 | 000,014,904 | ---- | C] () -- C:\Windows\System32\15921hackzool549.dll
[2009/05/15 18:16:45 | 000,018,086 | ---- | C] () -- C:\Windows\227139or52z3.bin
[2009/05/15 16:13:11 | 000,012,922 | ---- | C] () -- C:\Windows\System32\7d0zv95953.exe
[2009/05/05 00:58:17 | 000,017,340 | ---- | C] () -- C:\Windows\24177virzs519.exe
[2009/05/04 22:42:02 | 000,004,656 | ---- | C] () -- C:\Windows\61d9sparsez355.dll
[2009/05/02 07:45:50 | 000,003,384 | ---- | C] () -- C:\Windows\5c99stea5z261.bin
[2009/05/01 17:05:00 | 000,014,382 | ---- | C] () -- C:\Windows\System32\221439ac5tool72z.dll
[2009/04/28 13:51:40 | 000,016,211 | ---- | C] () -- C:\Windows\System32\7ec9v5rz980.exe
[2009/04/22 03:39:56 | 000,006,560 | ---- | C] () -- C:\Windows\System32\1f995teal705z.bin
[2009/04/21 21:03:39 | 000,003,638 | ---- | C] () -- C:\Windows\System32\496bt9zeat23175.bin
[2009/04/17 17:26:04 | 000,008,572 | ---- | C] () -- C:\Windows\System32\9z91not5a-virus32f.bin
[2009/04/15 15:31:50 | 000,008,075 | ---- | C] () -- C:\Windows\76d6do5nzoad9r440.bin
[2009/04/15 04:29:28 | 000,008,211 | ---- | C] () -- C:\Windows\3c0zspars539.exe
[2009/04/13 03:58:22 | 000,011,057 | ---- | C] () -- C:\Windows\56e8zddware35359.dll
[2009/04/13 02:32:41 | 000,006,188 | ---- | C] () -- C:\Windows\4375a9dwzre2011.bin
[2009/04/12 19:20:56 | 000,017,487 | ---- | C] () -- C:\Windows\System32\24z6895y288.bin
[2009/04/12 16:58:29 | 000,008,200 | ---- | C] () -- C:\Windows\System32\78f9a5dwarez49.dll
[2009/04/09 20:59:44 | 000,011,203 | ---- | C] () -- C:\Windows\31556vizu95.bin
[2009/04/07 23:54:33 | 000,006,384 | ---- | C] () -- C:\Windows\5265v9r127z.exe
[2009/04/07 19:30:16 | 000,002,975 | ---- | C] () -- C:\Windows\System32\29zspyw9re1205.bin
[2009/04/05 05:08:38 | 000,008,363 | ---- | C] () -- C:\Windows\2391zpambo91b75.exe
[2009/04/04 14:04:20 | 000,016,554 | ---- | C] () -- C:\Windows\9375pa9ze499.dll
[2009/04/01 18:21:25 | 000,002,552 | ---- | C] () -- C:\Windows\13671spam5otz969.dll
[2009/04/01 11:26:28 | 000,003,878 | ---- | C] () -- C:\Windows\6b45threat32903z.bin
[2009/03/23 08:44:09 | 000,003,387 | ---- | C] () -- C:\Windows\35399ddwzre2384.bin
[2009/03/19 05:16:24 | 000,002,563 | ---- | C] () -- C:\Windows\System32\5395addwarz542.dll
[2009/03/16 06:52:27 | 000,005,535 | ---- | C] () -- C:\Windows\205eviz9820.bin
[2009/03/15 09:08:30 | 000,011,453 | ---- | C] () -- C:\Windows\System32\25z18spambot92a.bin
[2009/03/13 12:44:26 | 000,006,257 | ---- | C] () -- C:\Windows\System32\1c9zspa5se1896.bin
[2009/03/12 04:08:57 | 000,005,251 | ---- | C] () -- C:\Windows\System32\292fdo5nlozder1721.exe
[2009/03/11 01:51:05 | 000,011,995 | ---- | C] () -- C:\Windows\94aaspyzare19985.bin
[2009/03/10 03:28:05 | 000,003,081 | ---- | C] () -- C:\Windows\129z5not-5-virus695.exe
[2009/03/06 07:21:44 | 000,017,057 | ---- | C] () -- C:\Windows\5dc5ad9ware673z.dll
[2009/03/04 20:56:33 | 000,008,707 | ---- | C] () -- C:\Windows\5z997v9rus112.bin
[2009/03/03 08:25:25 | 000,018,266 | ---- | C] () -- C:\Windows\512bd5z9loader238.bin
[2009/03/02 03:10:37 | 000,009,920 | ---- | C] () -- C:\Windows\5692addwaz51792.dll
[2009/03/01 19:48:08 | 000,007,411 | ---- | C] () -- C:\Windows\7b59sparsz18899.dll
[2009/03/01 01:01:34 | 000,014,164 | ---- | C] () -- C:\Windows\11544spam9zt1c0.dll
[2009/02/27 23:29:01 | 000,014,730 | ---- | C] () -- C:\Windows\System32\13z9vir5886.bin
[2009/02/26 15:46:15 | 000,007,836 | ---- | C] () -- C:\Windows\z93evir5645.dll
[2009/02/26 10:48:50 | 000,016,746 | ---- | C] () -- C:\Windows\16965spambzt3ae.dll
[2009/02/26 04:06:00 | 000,012,775 | ---- | C] () -- C:\Windows\695bba5kzoo92896.exe
[2009/02/25 01:03:05 | 000,013,799 | ---- | C] () -- C:\Windows\7cbzbackdo953028.exe
[2009/02/21 00:55:57 | 000,011,472 | ---- | C] () -- C:\Windows\System32\290csp5rze2888.exe
[2009/02/20 17:24:28 | 000,005,822 | ---- | C] () -- C:\Windows\2156795yz54.dll
[2009/02/17 16:23:07 | 000,014,702 | ---- | C] () -- C:\Windows\1z319hi5f2389.bin
[2009/02/15 01:22:00 | 000,010,789 | ---- | C] () -- C:\Windows\5betz5ef1609.bin
[2009/02/14 23:31:17 | 000,010,880 | ---- | C] () -- C:\Windows\System32\795cspywaze3535.exe
[2009/02/10 12:57:40 | 000,008,972 | ---- | C] () -- C:\Windows\System32\4132adzwar95255.bin
[2009/02/06 13:21:16 | 000,006,362 | ---- | C] () -- C:\Windows\4zvir5995.bin
[2009/02/06 05:23:52 | 000,017,070 | ---- | C] () -- C:\Windows\System32\314259izus30f.dll
[2009/02/01 09:19:25 | 000,008,313 | ---- | C] () -- C:\Windows\System32\z9380tro54659.dll
[2009/01/28 01:15:21 | 000,013,275 | ---- | C] () -- C:\Windows\6zf59ddware15.bin
[2009/01/21 22:18:49 | 000,010,548 | ---- | C] () -- C:\Windows\System32\z6aaadd59re1810.bin
[2009/01/17 08:27:30 | 000,013,937 | ---- | C] () -- C:\Windows\z5de9parse2565.bin
[2009/01/17 02:11:26 | 000,015,091 | ---- | C] () -- C:\Windows\System32\66zadownlo95er1780.dll
[2009/01/15 07:30:47 | 000,003,239 | ---- | C] () -- C:\Windows\System32\z85259roj18.dll
[2009/01/14 17:33:08 | 000,004,376 | ---- | C] () -- C:\Windows\System32\27z61tr5j696.exe
[2009/01/11 11:24:05 | 000,009,704 | ---- | C] () -- C:\Windows\7f41b5ckdoor96z8.bin
[2009/01/10 05:28:09 | 000,015,720 | ---- | C] () -- C:\Windows\z945threat20251.exe
[2009/01/07 17:21:00 | 000,008,327 | ---- | C] () -- C:\Windows\System32\z59bvir1764.dll
[2009/01/06 05:50:06 | 000,015,638 | ---- | C] () -- C:\Windows\5530sparze7419.dll
[2009/01/04 17:30:52 | 000,009,322 | ---- | C] () -- C:\Windows\System32\3fz25hreat66549.exe
[2009/01/03 06:46:55 | 000,015,556 | ---- | C] () -- C:\Windows\96e9a5dwzre1816.bin
[2009/01/02 18:34:15 | 000,018,116 | ---- | C] () -- C:\Windows\26a9zpy5are2532.dll
[2008/12/28 01:13:33 | 000,006,702 | ---- | C] () -- C:\Windows\997bz5kdoor26959.exe
[2008/12/26 14:46:53 | 000,010,929 | ---- | C] () -- C:\Windows\System32\533zsp5ware9050.bin
[2008/12/26 14:20:27 | 000,010,680 | ---- | C] () -- C:\Windows\System32\53c5thief199z.exe
[2008/12/26 09:57:24 | 000,009,369 | ---- | C] () -- C:\Windows\29255hazk9oolf.exe
[2008/12/22 22:17:59 | 000,013,188 | ---- | C] () -- C:\Windows\516daddwarez1659.exe
[2008/12/20 18:07:10 | 000,016,830 | ---- | C] () -- C:\Windows\System32\4ce2thr5a9z8568.bin
[2008/12/19 18:36:59 | 000,007,142 | ---- | C] () -- C:\Windows\System32\1591ztroj1789.exe
[2008/12/16 17:19:06 | 000,013,755 | ---- | C] () -- C:\Windows\System32\5977vir1z85.dll
[2008/12/16 05:19:43 | 000,003,684 | ---- | C] () -- C:\Windows\System32\85zir1391.exe
[2008/12/15 15:53:49 | 000,007,942 | ---- | C] () -- C:\Windows\System32\z565vir889.exe
[2008/12/15 07:48:31 | 000,009,155 | ---- | C] () -- C:\Windows\z65359arse1378.exe
[2008/12/13 03:56:13 | 000,004,772 | ---- | C] () -- C:\Windows\System32\2c269hzef1522.exe
[2008/12/09 07:44:59 | 000,013,518 | ---- | C] () -- C:\Windows\System32\284ad5war922z5.dll
[2008/12/02 16:56:57 | 000,010,362 | ---- | C] () -- C:\Windows\System32\124z99py795.bin
[2008/12/02 08:00:22 | 000,014,711 | ---- | C] () -- C:\Windows\System32\z0799hack5ool59b.dll
[2008/11/28 12:35:53 | 000,013,990 | ---- | C] () -- C:\Windows\4zd9vir14105.bin
[2008/11/28 06:59:29 | 000,008,459 | ---- | C] () -- C:\Windows\629z9pa5se90.dll
[2008/11/26 15:16:55 | 000,015,048 | ---- | C] () -- C:\Windows\25353troj97fz.exe
[2008/11/26 08:16:48 | 000,012,541 | ---- | C] () -- C:\Windows\5z9195rm481.dll
[2008/11/22 10:48:48 | 000,018,077 | ---- | C] () -- C:\Windows\z9868virus563.exe
[2008/11/19 05:07:44 | 000,005,583 | ---- | C] () -- C:\Windows\5dcastzal8599.bin
[2008/11/18 12:40:32 | 000,005,469 | ---- | C] () -- C:\Windows\System32\22886ha5kt9ol3f9z.bin
[2008/11/17 00:30:29 | 000,012,399 | ---- | C] () -- C:\Windows\5c59dowzloa9er2520.dll
[2008/11/16 18:49:50 | 000,006,815 | ---- | C] () -- C:\Windows\System32\5579dow5loader953z.bin
[2008/11/16 15:47:32 | 000,015,422 | ---- | C] () -- C:\Windows\System32\6942s95rse1z94.exe
[2008/11/14 06:52:33 | 000,005,491 | ---- | C] () -- C:\Windows\359zthief39765.dll
[2008/11/12 20:48:03 | 000,016,245 | ---- | C] () -- C:\Windows\8994hacktozl415.exe
[2008/11/11 14:33:07 | 000,010,760 | ---- | C] () -- C:\Windows\15149v9rzs35e.bin
[2008/11/10 22:05:53 | 000,016,741 | ---- | C] () -- C:\Windows\5394thr9at9z295.exe
[2008/11/10 00:24:46 | 000,003,230 | ---- | C] () -- C:\Windows\System32\1z69addware2454.exe
[2008/11/09 15:14:30 | 000,003,482 | ---- | C] () -- C:\Windows\System32\15826zacktool29f.dll
[2008/11/05 00:45:33 | 000,017,279 | ---- | C] () -- C:\Windows\System32\5f9thzeat8445.exe
[2008/10/26 20:15:54 | 000,009,101 | ---- | C] () -- C:\Windows\25863notz5-virus7f9.bin
[2008/10/25 03:44:46 | 000,016,289 | ---- | C] () -- C:\Windows\System32\18441not-a-v9rusb5z.bin
[2008/10/24 06:17:41 | 000,010,506 | ---- | C] () -- C:\Windows\System32\z386virus589.dll
[2008/10/24 02:01:12 | 000,010,877 | ---- | C] () -- C:\Windows\28599zrm5db.exe
[2008/10/22 12:34:12 | 000,009,214 | ---- | C] () -- C:\Windows\System32\23093vi5us43ez.bin
[2008/10/21 20:31:01 | 000,004,163 | ---- | C] () -- C:\Windows\22daspazs5994.dll
[2008/10/20 20:13:56 | 000,014,640 | ---- | C] () -- C:\Windows\9f6csparse5z6.exe
[2008/10/20 14:17:23 | 000,003,012 | ---- | C] () -- C:\Windows\685threzt16599.bin
[2008/10/20 04:35:12 | 000,011,804 | ---- | C] () -- C:\Windows\9c25irz760.exe
[2008/10/18 17:45:19 | 000,005,022 | ---- | C] () -- C:\Windows\32522no9-a-virus7bbz.bin
[2008/10/17 20:16:51 | 000,016,014 | ---- | C] () -- C:\Windows\System32\29955zp96ea.dll
[2008/10/16 06:57:43 | 000,002,537 | ---- | C] () -- C:\Windows\3415zackd9or2296.bin
[2008/10/14 10:20:38 | 000,013,031 | ---- | C] () -- C:\Windows\91e8s5eal19z9.exe
[2008/10/10 03:49:33 | 000,008,167 | ---- | C] () -- C:\Windows\9e91downzoader22795.dll
[2008/10/09 04:28:18 | 000,007,000 | ---- | C] () -- C:\Windows\2a90spywar95z92.dll
[2008/10/05 00:43:43 | 000,004,345 | ---- | C] () -- C:\Windows\16z2sp965d.exe
[2008/09/30 21:48:54 | 000,015,338 | ---- | C] () -- C:\Windows\398ztro550e.dll
[2008/09/28 17:50:38 | 000,005,728 | ---- | C] () -- C:\Windows\49dbba5kdoorz27.dll
[2008/09/27 00:52:12 | 000,011,984 | ---- | C] () -- C:\Windows\System32\z5258spambo9101.exe
[2008/09/24 04:11:23 | 000,006,221 | ---- | C] () -- C:\Windows\System32\415cvirz9559.bin
[2008/09/23 07:09:51 | 000,010,745 | ---- | C] () -- C:\Windows\13z5dow9loader2252.bin
[2008/09/23 06:39:53 | 000,014,610 | ---- | C] () -- C:\Windows\27897not-5-vzr9s653.bin
[2008/09/16 15:37:57 | 000,015,522 | ---- | C] () -- C:\Windows\System32\26519spz490.bin
[2008/09/15 05:00:39 | 000,013,326 | ---- | C] () -- C:\Windows\14adt59ez225.dll
[2008/09/14 20:30:42 | 000,009,463 | ---- | C] () -- C:\Windows\System32\2a97threaz53027.exe
[2008/09/13 21:47:20 | 000,015,538 | ---- | C] () -- C:\Windows\4z65steal839.exe
[2008/09/11 09:12:18 | 000,009,035 | ---- | C] () -- C:\Windows\System32\25115szy9ea5.dll
[2008/09/09 11:38:19 | 000,016,806 | ---- | C] () -- C:\Windows\9959wzr912b.bin
[2008/09/09 06:21:48 | 000,018,020 | ---- | C] () -- C:\Windows\10f99z5eat5819.exe
[2008/09/08 10:16:55 | 000,006,835 | ---- | C] () -- C:\Windows\7831back5oorz9569.dll
[2008/09/05 19:29:08 | 000,016,409 | ---- | C] () -- C:\Windows\System32\1c72s5yware1689z.exe
[2008/09/05 13:29:49 | 000,007,451 | ---- | C] () -- C:\Windows\System32\1593z9or5a.bin
[2008/09/04 13:19:19 | 000,012,311 | ---- | C] () -- C:\Windows\755cdo5nlozder2966.dll
[2008/09/03 19:10:38 | 000,014,479 | ---- | C] () -- C:\Windows\System32\26743spz159.dll
[2008/09/02 04:52:44 | 000,010,802 | ---- | C] () -- C:\Windows\47bcdowzlo5d9r2776.bin
[2008/08/27 17:28:50 | 000,013,489 | ---- | C] () -- C:\Windows\981025zcktool3ae.dll
[2008/08/27 03:22:26 | 000,004,927 | ---- | C] () -- C:\Windows\System32\19829not-9-vzrus5bf.dll
[2008/08/23 07:10:47 | 000,003,092 | ---- | C] () -- C:\Windows\System32\5156dzwn5oader1984.bin
[2008/08/20 02:50:33 | 000,003,862 | ---- | C] () -- C:\Windows\System32\83bsp95ze1407.exe
[2008/08/19 15:34:48 | 000,013,637 | ---- | C] () -- C:\Windows\System32\29z05pyw9re1143.dll
[2008/08/18 20:58:24 | 000,016,902 | ---- | C] () -- C:\Windows\System32\1z669v5ru9666.bin
[2008/08/16 21:11:09 | 000,007,912 | ---- | C] () -- C:\Windows\29241sz5mbot393.exe
[2008/08/16 11:12:10 | 000,013,271 | ---- | C] () -- C:\Windows\System32\5b14threzt21749.bin
[2008/08/14 19:06:16 | 000,010,417 | ---- | C] () -- C:\Windows\196419irus57z.dll
[2008/08/13 21:33:25 | 000,009,719 | ---- | C] () -- C:\Windows\System32\592f95reaz4220.bin
[2008/08/12 09:25:22 | 000,009,866 | ---- | C] () -- C:\Windows\System32\202z1t5oj916.exe
[2008/08/11 23:33:31 | 000,016,875 | ---- | C] () -- C:\Windows\System32\7578addware90z.exe
[2008/08/07 12:29:19 | 000,003,199 | ---- | C] () -- C:\Windows\6657addwa953z7.dll
[2008/08/03 08:12:41 | 000,002,718 | ---- | C] () -- C:\Windows\22590worz5e9.bin
[2008/08/01 17:17:44 | 000,014,085 | ---- | C] () -- C:\Windows\5c9dt5reaz292319.bin
[2008/07/28 06:10:21 | 000,006,203 | ---- | C] () -- C:\Windows\System32\7b1dspzwa5e2391.dll
[2008/07/26 08:16:10 | 000,013,239 | ---- | C] () -- C:\Windows\5682viz2390.dll
[2008/07/23 02:26:33 | 000,006,807 | ---- | C] () -- C:\Windows\System32\2847n5t-z-virus12e9.bin
[2008/07/22 02:26:19 | 000,014,852 | ---- | C] () -- C:\Windows\System32\24155s9ambotz56.exe
[2008/07/15 13:24:32 | 000,017,108 | ---- | C] () -- C:\Windows\System32\28245t9zj58.exe
[2008/07/11 10:46:26 | 000,006,623 | ---- | C] () -- C:\Windows\System32\1cbabackdo9r54z.dll
[2008/07/10 18:34:04 | 000,010,269 | ---- | C] () -- C:\Windows\System32\z997steal25925.dll
[2008/07/08 19:39:51 | 000,017,162 | ---- | C] () -- C:\Windows\481dspz5s91146.bin
[2008/07/08 16:18:05 | 000,005,042 | ---- | C] () -- C:\Windows\System32\1d29v5z1657.dll
[2008/07/06 21:21:00 | 000,014,798 | ---- | C] () -- C:\Windows\System32\1z461sp52169.exe
[2008/07/06 10:53:47 | 000,003,449 | ---- | C] () -- C:\Windows\3dfzad5wa9e280.exe
[2008/07/02 19:44:12 | 000,012,655 | ---- | C] () -- C:\Windows\System32\6590threat1257z5.exe
[2008/06/27 06:14:14 | 000,007,454 | ---- | C] () -- C:\Windows\1497ztr5j96.dll
[2008/06/26 03:15:49 | 000,005,346 | ---- | C] () -- C:\Windows\181czac59oor2343.dll
[2008/06/24 01:07:00 | 000,014,394 | ---- | C] () -- C:\Windows\1z490spy15d.exe
[2008/06/24 00:09:35 | 000,010,981 | ---- | C] () -- C:\Windows\22226z9ckto5l320.bin
[2008/06/22 11:24:02 | 000,010,169 | ---- | C] () -- C:\Windows\139965py5ffz.bin
[2008/06/18 09:37:23 | 000,010,890 | ---- | C] () -- C:\Windows\15007zot-a-9ir5s121.exe
[2008/06/17 21:31:58 | 000,012,968 | ---- | C] () -- C:\Windows\System32\35c09hief5z1.exe
[2008/06/14 21:30:29 | 000,002,633 | ---- | C] () -- C:\Windows\System32\6259szam5ot145.exe
[2008/06/13 01:11:55 | 000,017,452 | ---- | C] () -- C:\Windows\z35cbackdoor2519.exe
[2008/06/11 05:46:05 | 000,018,224 | ---- | C] () -- C:\Windows\3z83195rm216.exe
[2008/06/11 04:04:29 | 000,006,206 | ---- | C] () -- C:\Windows\System32\69zasp9ware5680.dll
[2008/06/07 12:44:39 | 000,008,130 | ---- | C] () -- C:\Windows\zeb59ddware2223.exe
[2008/06/05 13:55:57 | 000,005,329 | ---- | C] () -- C:\Windows\181z5h9cktool127.dll
[2008/06/05 06:44:22 | 000,005,411 | ---- | C] () -- C:\Windows\zd9bsparse1550.bin
[2008/06/04 22:51:24 | 000,018,179 | ---- | C] () -- C:\Windows\System32\535aaddwaze19965.dll
[2008/06/01 05:50:20 | 000,004,728 | ---- | C] () -- C:\Windows\6991downl9ade526z.dll
[2008/05/28 13:49:05 | 000,007,712 | ---- | C] () -- C:\Windows\System32\1dz0spyware6859.dll
[2008/05/26 11:24:27 | 000,010,592 | ---- | C] () -- C:\Windows\3z40tr5j679.exe
[2008/05/22 00:07:00 | 000,009,089 | ---- | C] () -- C:\Windows\5875ad5wzre839.dll
[2008/05/18 17:19:01 | 000,006,353 | ---- | C] () -- C:\Windows\53z39ownload5r450.bin
[2008/05/17 01:26:31 | 000,010,090 | ---- | C] () -- C:\Windows\z5549not-a-virus76.dll
[2008/05/16 23:15:27 | 000,003,641 | ---- | C] () -- C:\Windows\System32\2105thrzat21349.dll
[2008/05/05 18:36:47 | 000,016,375 | ---- | C] () -- C:\Windows\5zf5thief393.dll
[2008/05/03 12:18:12 | 000,008,115 | ---- | C] () -- C:\Windows\System32\2z945hacktoo92de5.dll
[2008/05/03 00:26:13 | 000,009,907 | ---- | C] () -- C:\Windows\1caabac9door255z.dll
[2008/05/01 20:24:57 | 000,013,078 | ---- | C] () -- C:\Windows\System32\39fc9parsz13025.exe
[2008/04/27 22:26:32 | 000,018,033 | ---- | C] () -- C:\Windows\19z049roj259.exe
[2008/04/27 22:01:48 | 000,013,834 | ---- | C] () -- C:\Windows\System32\18946spzmbo5269.bin
[2008/04/26 00:55:55 | 000,009,078 | ---- | C] () -- C:\Windows\System32\2f5ethi9f22z0.bin
[2008/04/23 18:10:20 | 000,016,951 | ---- | C] () -- C:\Windows\6942thi9f3583z.bin
[2008/04/19 08:52:33 | 000,013,273 | ---- | C] () -- C:\Windows\219z9worm653.dll
[2008/04/18 21:30:37 | 000,004,530 | ---- | C] () -- C:\Windows\25893worma4z.bin
[2008/04/17 18:58:10 | 000,007,215 | ---- | C] () -- C:\Windows\System32\6z10v59us5fb.dll
[2008/04/17 09:29:08 | 000,005,695 | ---- | C] () -- C:\Windows\95026tr5jze9.exe
[2008/04/15 19:35:48 | 000,016,030 | ---- | C] () -- C:\Windows\System32\24422szambot6795.bin
[2008/04/15 17:23:50 | 000,004,112 | ---- | C] () -- C:\Windows\5165ha5ktool9dz.exe
[2008/04/14 13:10:12 | 000,017,429 | ---- | C] () -- C:\Windows\System32\6e79bac5do9r76z.dll
[2008/04/13 23:50:43 | 000,011,193 | ---- | C] () -- C:\Windows\28821not-a-vi95s1z.dll
[2008/04/11 20:38:27 | 000,004,187 | ---- | C] () -- C:\Windows\System32\z9567worm3b95.bin
[2008/04/11 15:11:28 | 000,003,650 | ---- | C] () -- C:\Windows\313095ruz26e.exe
[2008/04/10 19:24:34 | 000,017,329 | ---- | C] () -- C:\Windows\4d59sparze2862.exe
[2008/04/09 13:37:19 | 000,009,310 | ---- | C] () -- C:\Windows\292z1tr9j5f7.bin
[2008/04/09 09:43:49 | 000,012,631 | ---- | C] () -- C:\Windows\System32\99a7b5ckdoor2z57.bin
[2008/04/08 23:06:20 | 000,009,481 | ---- | C] () -- C:\Windows\System32\1584z5pambo944e.dll
[2008/04/05 13:09:21 | 000,002,654 | ---- | C] () -- C:\Windows\System32\2e59vir5969z.exe
[2008/04/01 20:14:22 | 000,008,813 | ---- | C] () -- C:\Windows\System32\z65spa9bot1d4.dll
[2008/03/26 09:26:35 | 000,011,969 | ---- | C] () -- C:\Windows\System32\9752szarse266.exe
[2008/03/26 05:55:02 | 000,005,795 | ---- | C] () -- C:\Windows\System32\14504zp5299.bin
[2008/03/25 20:21:55 | 000,003,801 | ---- | C] () -- C:\Windows\System32\13892tr5zf9.bin
[2008/03/21 19:17:40 | 000,010,010 | ---- | C] () -- C:\Windows\zd37sparse90665.dll
[2008/03/21 01:22:29 | 000,011,980 | ---- | C] () -- C:\Windows\System32\35511s9amzot229.bin
[2008/03/14 21:23:12 | 000,007,674 | ---- | C] () -- C:\Windows\System32\3959backdooz2955.dll
[2008/03/13 01:03:38 | 000,014,772 | ---- | C] () -- C:\Windows\97035vizus68b.bin
[2008/03/11 22:06:22 | 000,003,347 | ---- | C] () -- C:\Windows\727czownload951388.dll
[2008/03/11 11:55:20 | 000,014,683 | ---- | C] () -- C:\Windows\4579troj232z.bin
[2008/03/10 13:30:00 | 000,017,690 | ---- | C] () -- C:\Windows\System32\5b059pa5se136z.exe
[2008/03/08 05:56:12 | 000,009,929 | ---- | C] () -- C:\Windows\7c32a9dware534z.dll
[2008/03/06 04:56:26 | 000,009,844 | ---- | C] () -- C:\Windows\System32\z596spambot655.bin
[2008/03/02 04:15:36 | 000,009,055 | ---- | C] () -- C:\Windows\ze00ad5ware9807.bin
[2008/03/02 03:33:46 | 000,013,196 | ---- | C] () -- C:\Windows\System32\2d829hrzat5675.dll
[2008/03/02 02:46:46 | 000,009,724 | ---- | C] () -- C:\Windows\System32\12z39spy5b5.bin
[2008/03/02 01:25:56 | 000,006,325 | ---- | C] () -- C:\Windows\4dceback5o9rz997.dll
[2008/03/01 09:14:48 | 000,002,761 | ---- | C] () -- C:\Windows\39ebackdo5r202z.dll
[2008/02/26 21:23:26 | 000,002,837 | ---- | C] () -- C:\Windows\System32\51129spy5e2z.dll
[2008/02/22 03:54:37 | 000,004,060 | ---- | C] () -- C:\Windows\System32\996z5orm2cf.dll
[2008/02/19 01:47:49 | 000,012,488 | ---- | C] () -- C:\Windows\System32\659azhief5579.exe
[2008/02/18 22:21:52 | 000,004,730 | ---- | C] () -- C:\Windows\System32\23259hacztool199.dll
[2008/02/18 08:58:56 | 000,005,423 | ---- | C] () -- C:\Windows\505ast5a913z6.exe
[2008/02/16 17:42:40 | 000,012,064 | ---- | C] () -- C:\Windows\90909vz5us65d.exe
[2008/02/15 18:12:43 | 000,010,149 | ---- | C] () -- C:\Windows\System32\2343thi5f9431z.bin
[2008/02/14 12:38:00 | 000,006,679 | ---- | C] () -- C:\Windows\3b695dd9arz101.bin
[2008/02/13 00:06:59 | 000,009,324 | ---- | C] () -- C:\Windows\6cb4ste5l2z99.dll
[2008/02/11 06:54:31 | 000,011,542 | ---- | C] () -- C:\Windows\793z5orm95d.dll
[2008/02/11 02:39:20 | 000,015,758 | ---- | C] () -- C:\Windows\System32\9b8thi5z897.bin
[2008/02/08 02:51:17 | 000,015,489 | ---- | C] () -- C:\Windows\System32\19216hazktool250.exe
[2008/02/07 09:32:22 | 000,012,894 | ---- | C] () -- C:\Windows\711bbackd9or274z5.exe
[2008/02/06 03:29:34 | 000,016,013 | ---- | C] () -- C:\Windows\58795spzmbot2aa.exe
[2008/02/06 01:22:29 | 000,003,267 | ---- | C] () -- C:\Windows\System32\78319ac5doorz260.dll
[2008/02/05 15:12:11 | 000,006,021 | ---- | C] () -- C:\Windows\53d7bazkdoo91271.bin
[2008/02/02 12:56:57 | 000,008,517 | ---- | C] () -- C:\Windows\5ec1t9ief2344z.dll
[2008/01/31 19:26:06 | 000,008,301 | ---- | C] () -- C:\Windows\1260do9n5oader57z.dll
[2008/01/27 00:04:07 | 000,015,512 | ---- | C] () -- C:\Windows\27z45tr9j271.dll
[2008/01/24 14:21:13 | 000,014,725 | ---- | C] () -- C:\Windows\359ca95waze2259.dll
[2008/01/24 07:30:21 | 000,006,792 | ---- | C] () -- C:\Windows\System32\1z6215p942a.bin
[2008/01/22 19:45:52 | 000,011,369 | ---- | C] () -- C:\Windows\System32\8711hacktoo95z2.exe
[2008/01/22 04:16:21 | 000,017,388 | ---- | C] () -- C:\Windows\System32\23687vz5u920c.bin
[2008/01/19 23:16:46 | 000,012,557 | ---- | C] () -- C:\Windows\15963nzt-a-v9rus542.dll
[2008/01/19 09:21:03 | 000,009,343 | ---- | C] () -- C:\Windows\System32\7de2add59re2z18.exe
[2008/01/16 06:49:58 | 000,015,388 | ---- | C] () -- C:\Windows\4945threat19895z.dll
[2008/01/07 20:18:34 | 000,009,387 | ---- | C] () -- C:\Windows\2738zspa5bot499.exe
[2008/01/06 16:06:45 | 000,008,426 | ---- | C] () -- C:\Windows\System32\39dest5al7z9.exe
[2008/01/06 06:34:55 | 000,012,854 | ---- | C] () -- C:\Windows\2d20st9a51733z.bin
[2008/01/01 18:11:09 | 000,011,573 | ---- | C] () -- C:\Windows\System32\9z4cbackdoor1540.exe
@Alternate Data Stream - 222 bytes -> C:\ProgramData\TEMP:77D98D08
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Users\Greg\*.tmp files -> C:\Users\Greg\*.tmp -> ]
[1 C:\Windows\System32\drivers\*.tmp files -> C:\Windows\System32\drivers\*.tmp -> ] 

:Files
ipconfig /flushdns /c

:Commands 
[purity] 
[resethosts] 
[emptytemp] 
[EMPTYFLASH]
[CREATERESTOREPOINT] 
[Reboot]

  • Then click the Run Fix button at the top.
  • Let the program run unhindered, reboot the PC when it is done.
  • Post the log that appears upon reboot in your next reply.
  • Open OTL again and select the "Scan All Users" box.
  • Click the Quick Scan button. Post the log it produces in your next reply.

Step 4

Download aswMBR.exe (1.8mb) to your desktop.

Double click aswMBR.exe to run it.

Click the "Scan" button to start the scan.

Posted Image

On completion of the scan click save log, save it to your desktop and post it in your next reply.

Posted Image

Things I want to see in your next reply

  • RKreport.txt
  • OTL Fix Log
  • OTL.txt
  • aswMBR.txt
  • 0

#4
Greg Ball
Posted 27 December 2011 - 06:46 PM

Greg Ball

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
Okay Ned,

Here's what came out of the wash.
Attached File  aswMBR.txt   2.09KB   100 downloads
Attached File  file.log   79.4KB   100 downloads
Attached File  OTL.Txt   126.57KB   78 downloads
Attached File  RKreport1.txt   1.32KB   101 downloads

I hope this is what you wanted.

Thank you for your time and assistance,

Sincerely
Greg Ball
  • 0

#5
Nedklaw
Posted 28 December 2011 - 02:09 PM

Nedklaw

    Trusted Helper

  • Malware Removal
  • 1,652 posts
Hi. :)
It looks like the OTL fix didn't work properly so lets try to perofrm it in a different way.


  • Save this file to your desktop: Attached File  fix.txt   38.53KB   88 downloads
  • Run OTL.
  • Drag and drop fix.txt into the Custom Scans and Fixes box.
  • If you cannot drag and drop for some reason then press the Run Fix button and a dialogue box will pop up asking for the location - select the file on your desktop.
  • Then click the Run Fix button at the top.
  • Let the program run unhindered, reboot the PC when it is done.
  • Post the log that appears upon reboot in your next reply.
  • Open OTL again and check the "Scan All Users" box.
  • Click the Quick Scan button. Post the log it produces in your next reply.

Things I want to see in your next reply

  • OTL Fix Log
  • OTL.txt
  • 0

#6
Greg Ball
Posted 28 December 2011 - 07:44 PM

Greg Ball

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
I tried to run OTL with fix.txt after saving to desktop.
OTL get's most of the way through then I get

"Cannot create file C:\Windows\system32\etc\Hosts"

After letting the computer run for an hour the hard drive light had quite running and OTL was still up stuck "creating HOSTS"

Thank you again for your time and assistance

Greg Ball
  • 0

#7
Nedklaw
Posted 29 December 2011 - 07:43 AM

Nedklaw

    Trusted Helper

  • Malware Removal
  • 1,652 posts
Hi. :)


  • Save this file to your desktop: Attached File  fix.txt   38.52KB   85 downloads
  • Then follow the instructions in my previous post.

  • 0

#8
Greg Ball
Posted 29 December 2011 - 06:14 PM

Greg Ball

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
Okay, here's the next wash.
Attached File  12292011_174639.log   49.57KB   105 downloads
Attached File  OTL.Txt   53.35KB   82 downloads

Thnaks again Ned,

Greg Ball
  • 0

#9
Nedklaw
Posted 30 December 2011 - 04:11 PM

Nedklaw

    Trusted Helper

  • Malware Removal
  • 1,652 posts
Hi.
Please don’t attach logs unless specifically asked to do so.
How is your system running? Are you experiencing any problems?


Step 1

Please uninstall the following programs via Control Panel > Add/Remove Programs (if present):

  • Babylon Toolbar


Step 2

  • Save this file to your desktop: Attached File  fix.txt   182bytes   80 downloads
  • Run OTL.
  • Drag and drop fix.txt into the Custom Scans and Fixes box.
  • If you cannot drag and drop for some reason then press the Run Fix button and a dialogue box will pop up asking for the location - select the file on your desktop.
  • Then click the Run Fix button at the top.
  • Let the program run unhindered, reboot the PC when it is done.
  • Post the log that appears upon reboot in your next reply.
  • Open OTL again and check the "Scan All Users" box.
  • Click the Quick Scan button. Post the log it produces in your next reply.

Step 3

Posted Image Please download Malwarebytes' Anti-Malware from Here.

Double click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to restart. (See Extra Note).
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the entire report in your next reply.
Extra Note:

If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.


Step 4

Please run a free online scan with the ESET Online Scanner.
Note: You will need to use Internet Explorer for this scan.
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start.
  • When asked, allow the ActiveX control to install.
  • Click Start.
  • Make sure that the options Remove found threats and the option Scan unwanted applications is checked.
  • Click Scan. (This scan can take several hours, so please be patient).
  • Once the scan is completed, you may close the window.
  • Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.

Things I want to see in your next reply

  • Answers to my questions
  • OTL Fix Log
  • OTL.txt
  • MBAM Log
  • log.txt
  • 0

#10
Greg Ball
Posted 30 December 2011 - 06:20 PM

Greg Ball

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts
Q: Hi.
Please don’t attach logs unless specifically asked to do so.
How is your system running? Are you experiencing any problems?


A: Hey.
I tought I had attached the specified logs.
MY computer seems to be working as if it were new.
  • 0

#11
Nedklaw
Posted 30 December 2011 - 06:41 PM

Nedklaw

    Trusted Helper

  • Malware Removal
  • 1,652 posts
Hi. :)

You have attached all of the specified logs. In the future, please copy and paste all logs instead of attaching them.
Now please follow the instructions in my previous post.
  • 0

#12
Essexboy
Posted 05 January 2012 - 01:34 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP