Thanks, man.
I did everything and upload the file and they just told me to inform you theyve got it.
Here is new Combo log:
ComboFix 08-02-25.3 - Veronika 2008-02-26 20:10:25.7 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.95 [GMT 1:00]
Running from: C:\Documents and Settings\Veronika\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\Veronika\Desktop\CFScript.txt
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!FILE ::
C:\NV26722676.TMP
C:\NV30243728.TMP
C:\NV39763980.TMP
C:\WINDOWS\Config\csrss.exe
C:\WINDOWS\Help\SETUP.EXE
C:\WINDOWS\Internet Logs\xDB1.tmp
C:\WINDOWS\Internet Logs\xDB2.tmp
C:\WINDOWS\Internet Logs\xDB3.tmp
C:\WINDOWS\Internet Logs\xDB4.tmp
C:\WINDOWS\system32\actskn45.ocx
C:\WINDOWS\system32\FaxMessage.dll
C:\WINDOWS\system32\Msip32.dll
C:\WINDOWS\system32\tmp0_377718344486.bk
C:\WINDOWS\system32\tmp0_518482845118.bk
C:\WINDOWS\system32\tmp0_887540299780.bk
C:\WINDOWS\system32\tmp1_238729110624.bk
C:\WINDOWS\system32\tmp1_732898353811.bk
C:\WINDOWS\system32\tmp2_391779322402.bk
C:\WINDOWS\system32\tmp2_538623607110.bk
C:\WINDOWS\system32\tmp3_12624285292.bk
C:\WINDOWS\system32\tmp3_206889346973.bk
C:\WINDOWS\system32\tmp4_147694747792.bk
C:\WINDOWS\system32\TUKernel.exe
C:\WINDOWS\system32\WINCTL4.OCX
C:\WINDOWS\system32\WINLCTL5.DLL
C:\WINDOWS\system32\Winlogon.bak.bak
C:\WINDOWS\system32\WINUTIL5.DLL
D:\Downloads\Limewire PRO 4.17.0.zip
D:\Sime stalker\Limewire PRO 4.17.0\Limewire PRO 4.17.0.EXE
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\Config\csrss.exe
C:\WINDOWS\Help\SETUP.EXE
C:\WINDOWS\Internet Logs\xDB1.tmp
C:\WINDOWS\Internet Logs\xDB2.tmp
C:\WINDOWS\Internet Logs\xDB3.tmp
C:\WINDOWS\Internet Logs\xDB4.tmp
C:\WINDOWS\system32\actskn45.ocx
C:\WINDOWS\system32\FaxMessage.dll
C:\WINDOWS\system32\Msip32.dll
C:\WINDOWS\system32\tmp0_377718344486.bk
C:\WINDOWS\system32\tmp0_518482845118.bk
C:\WINDOWS\system32\tmp0_887540299780.bk
C:\WINDOWS\system32\tmp1_238729110624.bk
C:\WINDOWS\system32\tmp1_732898353811.bk
C:\WINDOWS\system32\tmp2_391779322402.bk
C:\WINDOWS\system32\tmp2_538623607110.bk
C:\WINDOWS\system32\tmp3_12624285292.bk
C:\WINDOWS\system32\tmp3_206889346973.bk
C:\WINDOWS\system32\tmp4_147694747792.bk
C:\WINDOWS\system32\TUKernel.exe
C:\WINDOWS\system32\WINCTL4.OCX
C:\WINDOWS\system32\WINLCTL5.DLL
C:\WINDOWS\system32\Winlogon.bak.bak
C:\WINDOWS\system32\WINUTIL5.DLL
D:\Downloads\Limewire PRO 4.17.0.zip
D:\Program Files\Kazaa
D:\Program Files\Kazaa\ammp3.dll
D:\Program Files\Kazaa\bdupd.dll
D:\Program Files\Kazaa\BGP2P\bdcore.dll
D:\Program Files\Kazaa\BGP2P\bdupd.dll
D:\Program Files\Kazaa\BGP2P\libfn.dll
D:\Program Files\Kazaa\BGP2P\plugins.htm
D:\Program Files\Kazaa\BGP2P\plugins\7zip.xmd
D:\Program Files\Kazaa\BGP2P\plugins\ace.xmd
D:\Program Files\Kazaa\BGP2P\plugins\adsntfs.xmd
D:\Program Files\Kazaa\BGP2P\plugins\alz.xmd
D:\Program Files\Kazaa\BGP2P\plugins\arc.xmd
D:\Program Files\Kazaa\BGP2P\plugins\arj.xmd
D:\Program Files\Kazaa\BGP2P\plugins\bach.xmd
D:\Program Files\Kazaa\BGP2P\plugins\boot.xmd
D:\Program Files\Kazaa\BGP2P\plugins\bzip2.xmd
D:\Program Files\Kazaa\BGP2P\plugins\cab.xmd
D:\Program Files\Kazaa\BGP2P\plugins\ceva_dll.cvd
D:\Program Files\Kazaa\BGP2P\plugins\ceva_emu.cvd
D:\Program Files\Kazaa\BGP2P\plugins\ceva_vfs.cvd
D:\Program Files\Kazaa\BGP2P\plugins\cevakrnl.cvd
D:\Program Files\Kazaa\BGP2P\plugins\cevakrnl.ivd
D:\Program Files\Kazaa\BGP2P\plugins\cevakrnl.rvd
D:\Program Files\Kazaa\BGP2P\plugins\cevakrnl.xmd
D:\Program Files\Kazaa\BGP2P\plugins\cpio.xmd
D:\Program Files\Kazaa\BGP2P\plugins\cran.cvd
D:\Program Files\Kazaa\BGP2P\plugins\cran.ivd
D:\Program Files\Kazaa\BGP2P\plugins\cran.xmd
D:\Program Files\Kazaa\BGP2P\plugins\dbx.xmd
D:\Program Files\Kazaa\BGP2P\plugins\docfile.xmd
D:\Program Files\Kazaa\BGP2P\plugins\e_spyw.ivd
D:\Program Files\Kazaa\BGP2P\plugins\emalware.cvd
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i01
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i02
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i03
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i04
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i05
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i06
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i07
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i08
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i09
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i10
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i11
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i12
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i13
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i14
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i15
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i16
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i17
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i18
D:\Program Files\Kazaa\BGP2P\plugins\emalware.i19
D:\Program Files\Kazaa\BGP2P\plugins\emalware.ivd
D:\Program Files\Kazaa\BGP2P\plugins\emalware.xmd
D:\Program Files\Kazaa\BGP2P\plugins\epoc.xmd
D:\Program Files\Kazaa\BGP2P\plugins\gzip.xmd
D:\Program Files\Kazaa\BGP2P\plugins\ha.xmd
D:\Program Files\Kazaa\BGP2P\plugins\hlp.xmd
D:\Program Files\Kazaa\BGP2P\plugins\hpe.cvd
D:\Program Files\Kazaa\BGP2P\plugins\hpe.xmd
D:\Program Files\Kazaa\BGP2P\plugins\hqx.xmd
D:\Program Files\Kazaa\BGP2P\plugins\html.xmd
D:\Program Files\Kazaa\BGP2P\plugins\chm.xmd
D:\Program Files\Kazaa\BGP2P\plugins\imp.xmd
D:\Program Files\Kazaa\BGP2P\plugins\inno.xmd
D:\Program Files\Kazaa\BGP2P\plugins\instyler.xmd
D:\Program Files\Kazaa\BGP2P\plugins\iso.xmd
D:\Program Files\Kazaa\BGP2P\plugins\java.cvd
D:\Program Files\Kazaa\BGP2P\plugins\java.xmd
D:\Program Files\Kazaa\BGP2P\plugins\jpeg.xmd
D:\Program Files\Kazaa\BGP2P\plugins\lha.xmd
D:\Program Files\Kazaa\BGP2P\plugins\lnk.xmd
D:\Program Files\Kazaa\BGP2P\plugins\mbox.xmd
D:\Program Files\Kazaa\BGP2P\plugins\mbx.xmd
D:\Program Files\Kazaa\BGP2P\plugins\mdx.xmd
D:\Program Files\Kazaa\BGP2P\plugins\mdx_97.cvd
D:\Program Files\Kazaa\BGP2P\plugins\mdx_97.ivd
D:\Program Files\Kazaa\BGP2P\plugins\mdx_w95.cvd
D:\Program Files\Kazaa\BGP2P\plugins\mdx_x95.cvd
D:\Program Files\Kazaa\BGP2P\plugins\mdx_xf.cvd
D:\Program Files\Kazaa\BGP2P\plugins\mime.xmd
D:\Program Files\Kazaa\BGP2P\plugins\mobmalware.cvd
D:\Program Files\Kazaa\BGP2P\plugins\mobmalware.xmd
D:\Program Files\Kazaa\BGP2P\plugins\mso.xmd
D:\Program Files\Kazaa\BGP2P\plugins\na.cvd
D:\Program Files\Kazaa\BGP2P\plugins\na.xmd
D:\Program Files\Kazaa\BGP2P\plugins\nelf.cvd
D:\Program Files\Kazaa\BGP2P\plugins\nelf.xmd
D:\Program Files\Kazaa\BGP2P\plugins\nsis.xmd
D:\Program Files\Kazaa\BGP2P\plugins\objd.xmd
D:\Program Files\Kazaa\BGP2P\plugins\pdf.xmd
D:\Program Files\Kazaa\BGP2P\plugins\pst.xmd
D:\Program Files\Kazaa\BGP2P\plugins\rar.xmd
D:\Program Files\Kazaa\BGP2P\plugins\regscan.cvd
D:\Program Files\Kazaa\BGP2P\plugins\rpm.xmd
D:\Program Files\Kazaa\BGP2P\plugins\rtf.xmd
D:\Program Files\Kazaa\BGP2P\plugins\rup.cvd
D:\Program Files\Kazaa\BGP2P\plugins\rup.xmd
D:\Program Files\Kazaa\BGP2P\plugins\sdx.cvd
D:\Program Files\Kazaa\BGP2P\plugins\sdx.ivd
D:\Program Files\Kazaa\BGP2P\plugins\sdx.xmd
D:\Program Files\Kazaa\BGP2P\plugins\sfx.xmd
D:\Program Files\Kazaa\BGP2P\plugins\swf.xmd
D:\Program Files\Kazaa\BGP2P\plugins\tar.xmd
D:\Program Files\Kazaa\BGP2P\plugins\td0.xmd
D:\Program Files\Kazaa\BGP2P\plugins\thebat.xmd
D:\Program Files\Kazaa\BGP2P\plugins\tnef.xmd
D:\Program Files\Kazaa\BGP2P\plugins\unpack.cvd
D:\Program Files\Kazaa\BGP2P\plugins\unpack.ivd
D:\Program Files\Kazaa\BGP2P\plugins\unpack.xmd
D:\Program Files\Kazaa\BGP2P\plugins\update.txt
D:\Program Files\Kazaa\BGP2P\plugins\uudecode.xmd
D:\Program Files\Kazaa\BGP2P\plugins\ve.cvd
D:\Program Files\Kazaa\BGP2P\plugins\ve.ivd
D:\Program Files\Kazaa\BGP2P\plugins\ve.xmd
D:\Program Files\Kazaa\BGP2P\plugins\vedata.cvd
D:\Program Files\Kazaa\BGP2P\plugins\viza.xmd
D:\Program Files\Kazaa\BGP2P\plugins\wise.xmd
D:\Program Files\Kazaa\BGP2P\plugins\xishield.xmd
D:\Program Files\Kazaa\BGP2P\plugins\z.xmd
D:\Program Files\Kazaa\BGP2P\plugins\zip.xmd
D:\Program Files\Kazaa\BGP2P\plugins\zoo.xmd
D:\Program Files\Kazaa\BGP2P\versions.dat
D:\Program Files\Kazaa\CKGFRs.dll
D:\Program Files\Kazaa\Db\config.cab
D:\Program Files\Kazaa\Db\d01.cab
D:\Program Files\Kazaa\Db\d02.cab
D:\Program Files\Kazaa\Db\data1024.dbb
D:\Program Files\Kazaa\Db\data256.dbb
D:\Program Files\Kazaa\Db\k7tqkgkk_tssv125.dat
D:\Program Files\Kazaa\Db\np.tmp
D:\Program Files\Kazaa\Help\arrow.gif
D:\Program Files\Kazaa\Help\arrow_sml.gif
D:\Program Files\Kazaa\Help\background.gif
D:\Program Files\Kazaa\Help\h_mykazaa.gif
D:\Program Files\Kazaa\Help\h_myMedia.gif
D:\Program Files\Kazaa\Help\h_myplaylists.gif
D:\Program Files\Kazaa\Help\icon_gold_kap.gif
D:\Program Files\Kazaa\Help\myKapsules.gif
D:\Program Files\Kazaa\Help\mykapsules.htm
D:\Program Files\Kazaa\Help\mykazaa.css
D:\Program Files\Kazaa\Help\mykazaa.htm
D:\Program Files\Kazaa\Help\mymedia.htm
D:\Program Files\Kazaa\Help\myplaylists.htm
D:\Program Files\Kazaa\Help\spacer.gif
D:\Program Files\Kazaa\kazaa.exe
D:\Program Files\Kazaa\Kazaa.url
D:\Program Files\Kazaa\kzscan.dll
D:\Program Files\Kazaa\libcurl.dll
D:\Program Files\Kazaa\libeay32.dll
D:\Program Files\Kazaa\libssl32.dll
D:\Program Files\Kazaa\My Channels\Bin\crazyplaygames.kcd
D:\Program Files\Kazaa\My Channels\Bin\dating.kcd
D:\Program Files\Kazaa\My Channels\Bin\emerging_artists.kcd
D:\Program Files\Kazaa\My Channels\Bin\g_spot.kcd
D:\Program Files\Kazaa\My Channels\Bin\onelove_browse.kcd
D:\Program Files\Kazaa\My Channels\Bin\ringtonechannel.kcd
D:\Program Files\Kazaa\My Channels\Bin\rshiphop.kcd
D:\Program Files\Kazaa\My Channels\Bin\skilledgames.kcd
D:\Program Files\Kazaa\My Channels\Images\crazyplaygames.bmp
D:\Program Files\Kazaa\My Channels\Images\dating.bmp
D:\Program Files\Kazaa\My Channels\Images\emerging_artists.bmp
D:\Program Files\Kazaa\My Channels\Images\g_spot.bmp
D:\Program Files\Kazaa\My Channels\Images\onelove_browse.bmp
D:\Program Files\Kazaa\My Channels\Images\ringtonechannel.bmp
D:\Program Files\Kazaa\My Channels\Images\rshiphop_browse.bmp
D:\Program Files\Kazaa\My Channels\Images\skilledgames.bmp
D:\Program Files\Kazaa\My Shared Folder\Audio - Alternative Rock.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - Barrington Levy.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - Electronica.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - Fine Arts Militia Album.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - Folk.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - Funk.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - Hip Hop.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - Jazz.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - Pop Rock.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - Public Enemy Revolverlution Album.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - R&B.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - Reggae.kpl
D:\Program Files\Kazaa\My Shared Folder\Audio - The Honey Palace Album.kpl
D:\Program Files\Kazaa\myshare.ico
D:\Program Files\Kazaa\Skins\Black Glass\License.txt
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_mykazaa.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_mykazaa_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_mykazaa_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_mykazaa_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_peer.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_peer_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_peer_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_peer_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_search.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_search_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_search_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_search_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_shop.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_shop_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_shop_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_shop_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_start.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_start_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_start_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_start_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_tell.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_tell_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_tell_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_tell_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_theatre.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_theatre_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_theatre_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_theatre_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_traffic.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_traffic_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_traffic_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mainbar_traffic_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_addtoplay.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_addtoplay_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_addtoplay_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_addtoplay_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_next.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_next_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_next_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_next_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_pause.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_pause_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_pause_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_pause_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_play.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_play_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_play_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_play_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_prev.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_prev_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_prev_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_prev_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_slider.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_sliderThumb.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_sliderThumb_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_stop.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_stop_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_stop_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_stop_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_volume.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_volume_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_volume_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mediabar_volume_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_delete.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_delete_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_delete_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_delete_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_folders.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_folders_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_folders_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_folders_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_moreinfo.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_moreinfo_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_moreinfo_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_moreinfo_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_share.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_share_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_share_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\mykazaabar_share_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_closetabs.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_closetabs_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_closetabs_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_closetabs_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_download.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_download_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_download_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_download_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_messageuser.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_messageuser_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_messageuser_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_messageuser_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_newsearch.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_newsearch_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_newsearch_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_newsearch_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_searchuser.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_searchuser_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_searchuser_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_searchuser_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_showsearch.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_showsearch_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_showsearch_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\searchbar_showsearch_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\skin.xml
D:\Program Files\Kazaa\Skins\Black Glass\startbar_back.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_back_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_back_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_back_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_fwd.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_fwd_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_fwd_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_fwd_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_home.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_home_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_home_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_home_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_refresh.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_refresh_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_refresh_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_refresh_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_stop.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_stop_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_stop_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\startbar_stop_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\theatrebar_fullscreen.bmp
D:\Program Files\Kazaa\Skins\Black Glass\theatrebar_fullscreen_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\theatrebar_fullscreen_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\theatrebar_fullscreen_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_cancel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_cancel_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_cancel_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_cancel_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_pause.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_pause_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_pause_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_pause_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_resume.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_resume_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_resume_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\trafficbar_resume_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\window_btm.bmp
D:\Program Files\Kazaa\Skins\Black Glass\window_btmLeft.bmp
D:\Program Files\Kazaa\Skins\Black Glass\window_btmright.bmp
D:\Program Files\Kazaa\Skins\Black Glass\window_left.bmp
D:\Program Files\Kazaa\Skins\Black Glass\window_right.bmp
D:\Program Files\Kazaa\Skins\Black Glass\window_top.bmp
D:\Program Files\Kazaa\Skins\Black Glass\window_topleft.bmp
D:\Program Files\Kazaa\Skins\Black Glass\window_topright.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_close.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_close_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_close_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_close_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_maximise.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_maximise_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_maximise_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_maximise_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_minimise.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_minimise_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_minimise_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_minimise_sel.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_restore.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_restore_dis.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_restore_over.bmp
D:\Program Files\Kazaa\Skins\Black Glass\windowbar_restore_sel.bmp
D:\Program Files\Kazaa\ssleay32.dll
D:\Sime stalker\Limewire PRO 4.17.0\Limewire PRO 4.17.0.EXE
.
((((((((((((((((((((((((( Files Created from 2008-01-26 to 2008-02-26 )))))))))))))))))))))))))))))))
.
2008-02-26 09:19 . 2008-02-26 09:19 <DIR> d-------- C:\WINDOWS\system32\Kaspersky Lab
2008-02-26 09:19 . 2008-02-26 09:19 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-02-26 09:06 . 2008-02-26 09:06 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-02-26 09:06 . 2008-02-26 09:06 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\Malwarebytes
2008-02-26 09:06 . 2008-02-26 09:06 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-02-25 21:19 . 2007-12-14 01:59 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl
2008-02-25 16:45 . 2008-02-25 16:45 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-02-25 16:45 . 2008-02-25 16:45 1,409 --a------ C:\WINDOWS\QTFont.for
2008-02-25 16:35 . 2008-02-25 16:35 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\TransRender
2008-02-25 16:35 . 2008-02-25 16:35 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\Temporary
2008-02-25 16:35 . 2008-02-25 16:35 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\ConvertTemp
2008-02-25 16:13 . 2007-11-27 14:22 2,521,600 --a------ C:\WINDOWS\3D Realistic Fireplace 3.scr
2008-02-25 16:13 . 2007-05-24 14:41 118,784 --a------ C:\WINDOWS\dx7ogl32.dll
2008-02-25 14:32 . 2008-02-25 14:36 <DIR> d-------- C:\ComboFix(2)
2008-02-25 13:24 . 2008-02-26 20:17 1,665,056 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-02-25 13:24 . 2008-02-26 16:07 20,648 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2008-02-25 13:23 . 2008-02-25 13:23 <DIR> d-------- C:\Program Files\ZoneAlarmSB
2008-02-25 13:22 . 2008-02-25 13:22 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\MailFrontier
2008-02-25 13:09 . 2008-02-25 13:09 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\iolo
2008-02-25 13:09 . 2008-02-25 13:09 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\iolo
2008-02-25 13:09 . 2008-02-25 13:09 406 --a------ C:\WINDOWS\system32\ioloBootDefrag.cfg
2008-02-25 12:29 . 2008-02-25 18:22 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2008-02-25 12:28 . 2008-02-25 12:28 <DIR> d-------- C:\Program Files\Zone Labs
2008-02-25 11:25 . 2008-02-26 20:13 <DIR> d-------- C:\WINDOWS\Internet Logs
2008-02-24 11:33 . 2008-02-24 11:44 <DIR> d-------- C:\Program Files\MagicISO
2008-02-24 09:52 . 2008-02-24 10:31 1,905 --a------ C:\WINDOWS\diagwrn.xml
2008-02-24 09:52 . 2008-02-24 10:31 1,905 --a------ C:\WINDOWS\diagerr.xml
2008-02-22 13:58 . 2008-02-22 13:59 <DIR> d-------- C:\WINDOWS\system32\NtmsData
2008-02-22 13:42 . 2008-02-22 13:42 <DIR> d--h----- C:\WINDOWS\system32\GroupPolicy
2008-02-22 13:39 . 2002-06-21 15:09 160,217 --a------ C:\WINDOWS\system32\PowerToysLicense.rtf
2008-02-22 13:38 . 2008-02-22 13:38 <DIR> d-------- C:\WINDOWS\Downloaded Installations
2008-02-22 08:56 . 2008-02-22 08:56 <DIR> d-------- C:\Program Files\Trend Micro
2008-02-21 12:10 . 2008-02-25 08:42 <DIR> d-------- C:\Program Files\a-squared Free
2008-02-20 12:18 . 2008-02-20 12:18 <DIR> d-------- C:\NV39763980.TMP
2008-02-20 12:17 . 2008-02-20 12:17 <DIR> d-------- C:\NV26722676.TMP
2008-02-20 12:11 . 2008-02-20 12:11 <DIR> d-------- C:\NV30243728.TMP
2008-02-20 10:48 . 2008-02-20 10:48 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\WinZip
2008-02-20 09:48 . 2008-02-20 09:48 359,040 --a------ C:\WINDOWS\system32\drivers\TCPIP.SYS.ORIGINAL
2008-02-20 09:48 . 2008-02-22 15:49 359,040 --a--c--- C:\WINDOWS\system32\dllcache\TCPIP.SYS
2008-02-19 18:07 . 2008-02-19 18:07 223,128 --a------ C:\WINDOWS\system32\drivers\vaxscsi.sys
2008-02-19 14:29 . 2008-02-19 14:29 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\FLEXnet
2008-02-18 12:39 . 2008-02-18 12:39 <DIR> d-------- C:\Documents and Settings\Veronika\.DownloadManager
2008-02-18 12:37 . 2008-02-18 12:37 <DIR> d-------- C:\WINDOWS\Sun
2008-02-18 09:28 . 2008-02-18 09:28 <DIR> d-------- C:\Program Files\uTorrent
2008-02-18 08:37 . 2004-08-04 00:56 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2008-02-18 08:30 . 2004-08-04 00:56 96,768 -----c--- C:\WINDOWS\system32\dllcache\dpcdll.dll
2008-02-17 13:45 . 2008-02-17 13:45 <DIR> d-------- C:\Program Files\ReflexiveArcade
2008-02-17 13:29 . 2008-02-17 13:29 <DIR> d-------- C:\Program Files\Alcohol Soft
2008-02-16 18:05 . 2008-02-16 18:10 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\MSN6
2008-02-16 11:25 . 2008-02-26 00:25 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\uTorrent
2008-02-15 11:30 . 2008-02-15 11:30 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\DivoGames
2008-02-15 11:16 . 2008-02-15 11:19 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\Super-Cow
2008-02-15 10:34 . 2008-02-15 10:34 0 --ah----- C:\WINDOWS\SwSys2.bmp
2008-02-15 10:34 . 2008-02-15 10:34 0 --ah----- C:\WINDOWS\SwSys1.bmp
2008-02-15 09:33 . 2008-02-15 09:33 306,432 --a------ C:\WINDOWS\system32\TuneUpDefragService.exe
2008-02-15 09:33 . 2007-12-20 10:41 29,440 --a------ C:\WINDOWS\system32\uxtuneup.dll
2008-02-10 14:10 . 2008-02-10 14:10 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\Auslogics
2008-02-05 12:57 . 2008-02-05 12:57 <DIR> d-------- C:\Program Files\Crawler
2008-02-05 11:52 . 2008-02-13 19:16 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\SiteAdvisor
2008-02-05 11:52 . 2008-02-05 11:52 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SiteAdvisor
2008-02-05 11:52 . 2008-02-05 11:52 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\McAfee
2008-02-03 17:40 . 2008-02-03 17:40 <DIR> d-------- C:\Program Files\Ligos
2008-02-03 17:36 . 2008-02-04 16:06 196 --a------ C:\WINDOWS\disneysy.ini
2008-02-03 17:36 . 2008-02-05 11:56 173 --a------ C:\WINDOWS\disney.ini
2008-02-02 11:17 . 2006-06-29 13:07 14,048 --------- C:\WINDOWS\system32\spmsg2.dll
2008-02-01 11:24 . 2008-02-20 09:20 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\LimeWire
2008-02-01 11:22 . 2008-02-25 21:20 <DIR> d-------- C:\Program Files\Java
2008-02-01 11:21 . 2008-02-01 11:21 <DIR> d-------- C:\Program Files\Common Files\Java
2008-01-31 23:13 . 2008-01-31 23:13 90,112 --a------ C:\WINDOWS\system32\QuickTimeVR.qtx
2008-01-31 23:13 . 2008-01-31 23:13 57,344 --a------ C:\WINDOWS\system32\QuickTime.qts
2008-01-31 16:32 . 2008-02-01 12:36 <DIR> d-------- C:\Resident Evil 2
2008-01-31 16:29 . 1999-01-21 23:40 180,224 --------- C:\WINDOWS\Res2_uninst.exe
2008-01-30 14:52 . 2008-01-30 14:52 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\SpinTop
2008-01-30 12:04 . 2008-01-30 12:04 <DIR> d-------- C:\ATI
2008-01-29 13:54 . 2005-08-27 02:38 1,435,272 --a------ C:\WINDOWS\system32\Flash.ocx
2008-01-29 13:54 . 2002-03-04 12:27 1,140,472 --a------ C:\WINDOWS\system32\IGUltraGrid20.ocx
2008-01-29 13:54 . 2004-03-08 23:00 131,856 --a------ C:\WINDOWS\system32\MSADODC.ocx
2008-01-29 13:54 . 2008-02-19 18:39 124,688 --a------ C:\WINDOWS\system32\MSWINSCK.OCX
2008-01-29 13:54 . 2000-07-15 05:00 101,888 --a------ C:\WINDOWS\system32\VB6STKIT.DLL
2008-01-29 13:54 . 2001-04-20 01:28 28,672 --a------ C:\WINDOWS\system32\SysTray.ocx
2008-01-29 10:13 . 2008-01-29 10:13 <DIR> d-------- C:\WINDOWS\Replay Media Catcher
2008-01-29 10:12 . 2007-03-04 13:55 1,936,528 --a------ C:\WINDOWS\system32\ltmm15.dll
2008-01-29 10:12 . 2007-03-04 13:55 135,168 --a------ C:\WINDOWS\system32\DSKernel2.dll
2008-01-29 10:06 . 2008-01-29 10:10 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\GetRightToGo
2008-01-29 10:05 . 2008-01-29 10:05 <DIR> d-------- C:\WINDOWS\Applian FLV Player
2008-01-28 12:14 . 2007-01-29 13:56 451,072 -ra------ C:\WINDOWS\system32\drivers\athrusb.sys
2008-01-28 12:13 . 2006-08-24 13:44 477,696 --a------ C:\WINDOWS\system32\drivers\ZD1211BU.sys
2008-01-28 12:13 . 2004-01-14 11:25 81,920 --a------ C:\WINDOWS\system32\ZDPN50.DLL
2008-01-28 12:13 . 2005-03-18 15:35 31,744 --a------ C:\WINDOWS\system32\drivers\ZDPSp50a64.sys
2008-01-28 12:13 . 2005-06-08 18:44 29,184 --a------ C:\WINDOWS\system32\drivers\BRGSp50a64.sys
2008-01-28 12:13 . 2004-03-23 16:38 28,672 --a------ C:\WINDOWS\system32\InsDrvZD.dll
2008-01-28 12:13 . 2003-03-14 12:24 24,576 --a------ C:\WINDOWS\system32\ZyDelReg.exe
2008-01-28 12:13 . 2005-06-08 18:44 20,608 --a------ C:\WINDOWS\system32\drivers\BRGSp50.sys
2008-01-28 12:13 . 2004-10-25 13:40 17,664 --a------ C:\WINDOWS\system32\drivers\ZDPSp50.sys
2008-01-28 12:13 . 2004-01-14 11:30 17,151 --a------ C:\WINDOWS\system32\ZDPNDIS5.SYS
2008-01-28 12:13 . 2005-07-12 14:44 15,872 --a------ C:\WINDOWS\system32\InsDrvZD64.DLL
2008-01-27 20:50 . 2008-02-25 12:56 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\DNA
2008-01-27 18:04 . 2008-01-27 18:04 138,752 --a------ C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2008-01-27 18:00 . 2008-02-25 12:16 <DIR> d-------- C:\Program Files\Spyware Terminator
2008-01-27 18:00 . 2008-02-26 11:01 <DIR> d-------- C:\Documents and Settings\Veronika\Application Data\Spyware Terminator
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-26 18:03 831,248 ----a-w C:\WINDOWS\Internet Logs\tvDebug.zip
2008-02-26 15:06 71,168 ----a-w C:\WINDOWS\Internet Logs\xDB5.tmp
2008-02-26 15:06 1,400,832 ----a-w C:\WINDOWS\Internet Logs\xDB6.tmp
2008-02-24 20:55 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-24 13:38 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-02-22 14:49 359,040 ----a-w C:\WINDOWS\system32\drivers\TCPIP.SYS
2008-02-22 11:39 --------- d-----w C:\Program Files\CyberLink
2008-02-22 11:04 --------- d-----w C:\Documents and Settings\All Users\Application Data\CyberLink
2008-02-20 11:56 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-02-19 14:49 --------- d-----w C:\Program Files\Common Files\Adobe
2008-02-17 16:16 --------- d-----w C:\Documents and Settings\All Users\Application Data\HP
2008-02-15 18:11 --------- d-----w C:\Documents and Settings\All Users\Application Data\DVD Shrink
2008-02-15 08:49 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-02-15 08:33 --------- d-----w C:\Documents and Settings\All Users\Application Data\TuneUp Software
2008-02-14 13:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\Ulead Systems
2008-02-08 16:58 --------- d-----w C:\Program Files\Google
2008-01-24 09:42 --------- d-----w C:\Documents and Settings\Veronika\Application Data\Nokia Multimedia Player
2008-01-18 12:26 --------- d-----w C:\Program Files\winLAME
2008-01-12 15:13 --------- d-----w C:\Documents and Settings\Veronika\Application Data\The Longest Journey Demo
2008-01-10 19:40 --------- d-----w C:\Documents and Settings\Veronika\Application Data\iWin
2008-01-09 15:48 --------- d-----w C:\Documents and Settings\Veronika\Application Data\Movie Label
2008-01-09 10:40 --------- d-----w C:\Documents and Settings\Veronika\Application Data\SecondLife
2008-01-09 10:39 --------- d-----w C:\Documents and Settings\Veronika\Application Data\Nero
2008-01-09 10:30 --------- d-----w C:\Documents and Settings\Veronika\Application Data\Apple Computer
2008-01-08 12:57 --------- d-----w C:\Program Files\AusLogics Disk Defrag
2008-01-08 12:06 --------- d--h--w C:\Documents and Settings\All Users\Application Data\{6FAAE54C-8147-4998-934C-6744E67FD415}
2008-01-08 11:18 --------- d-----w C:\Documents and Settings\Veronika\Application Data\Lavasoft
2008-01-04 10:40 108,144 ----a-w C:\WINDOWS\system32\CmdLineExt.dll
2008-01-03 13:56 --------- d-----w C:\Documents and Settings\Veronika\Application Data\Secretmaker
2007-12-10 15:40 43,698 ----a-w C:\WINDOWS\system32\xvid-uninstall.exe
2007-12-03 13:29 356,352 ----a-w C:\WINDOWS\eSellerateEngine.dll
2007-12-03 11:36 86,016 ----a-w C:\WINDOWS\system32\OpenAL32.dll
2007-12-03 11:36 409,600 ----a-w C:\WINDOWS\system32\wrap_oal.dll
2005-05-11 22:36 12,288 ----a-w C:\WINDOWS\Fonts\RandFont.dll
.
(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
---- Directory of C:\Documents and Settings\Veronika\Application Data\ConvertTemp ----
---- Directory of C:\Documents and Settings\Veronika\Application Data\Temporary ----
---- Directory of C:\Documents and Settings\Veronika\Application Data\TransRender ----
------- Sigcheck -------
27a5959c94ee173a063ca06bd14f021a C:\WINDOWS\system32\drivers\tcpip.sys
-c----w 332,928 2002-08-29 01:58:12 C:\WINDOWS\$NtServicePackUninstall$\tcpip.sys
----a-w 359,040 2004-08-03 22:14:42 C:\WINDOWS\ServicePackFiles\i386\TCPIP.SYS
-c--a-w 359,040 2008-02-22 14:49:04 C:\WINDOWS\system32\dllcache\TCPIP.SYS
----a-w 359,040 2008-02-22 14:49:04 C:\WINDOWS\system32\drivers\TCPIP.SYS
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA}]
2008-02-25 13:23 262144 --a------ C:\Program Files\ZoneAlarmSB\bar\1.bin\SPYBLOCK.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11D4-9B18-009027A5CD4F}
{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
{F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA}
[HKEY_CLASSES_ROOT\clsid\{f0d4b239-da4b-4daf-81e4-dfee4931a4aa}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA}"= C:\Program Files\ZoneAlarmSB\bar\1.bin\SPYBLOCK.DLL [2008-02-25 13:23 262144]
[HKEY_CLASSES_ROOT\clsid\{f0d4b239-da4b-4daf-81e4-dfee4931a4aa}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:56 15360]
"OM2_Monitor"="C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" [2007-02-08 20:43 95800]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-02-04 17:33 68856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 15:28 577536 C:\WINDOWS\soundman.exe]
"NVMixerTray"="C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" [2004-06-03 20:51 131072]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-11-30 21:10 344064]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 15:40 155648]
"nod32kui"="C:\Program Files\Eset\nod32kui.exe" [2008-01-27 17:23 847872]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [2008-01-27 18:02 2834432]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2007-11-14 16:05 919016]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_04\bin\jusched.exe" [2007-12-14 03:42 144784]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-04 00:56 15360]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2005-05-11 23:23:26 282624]
HP Image Zone Fast Start.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe [2005-05-12 00:49:24 73728]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveSearch"= 1 (0x1)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoInstrumentation"= 1 (0x1)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"D:\\Program Files\\Activision\\SHReK the THiRD Demo\\SHReK the THiRD.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
R1 sp_rsdrv2;Spyware Terminator Driver 2;C:\WINDOWS\system32\drivers\sp_rsdrv2.sys [2008-01-27 18:04]
R2 UxTuneUp;TuneUp Theme Extension;C:\WINDOWS\System32\svchost.exe [2004-08-04 00:56]
R3 PSched;QoS Packet Scheduler;C:\WINDOWS\system32\DRIVERS\psched.sys [2004-08-03 23:04]
S1 atitray;atitray;C:\Program Files\Radeon Omega Drivers\v3.8.330\ATI Tray Tools\atitray.sys []
S3 athrusb;802.11g Wireless USB2.0 Adapter driver;C:\WINDOWS\system32\DRIVERS\athrusb.sys [2007-01-29 13:56]
S3 PCASp50;PCASp50 NDIS Protocol Driver;C:\WINDOWS\system32\Drivers\PCASp50.sys []
S3 SetupNTGLM7X;SetupNTGLM7X;E:\NTGLM7X.sys []
S3 TuneUp.Defrag;TuneUp Drive Defrag Service;C:\WINDOWS\System32\TuneUpDefragService.exe [2008-02-15 09:33]
S3 ZD1211BU(SMC);802.11g Wireless USB2.0 Adapter Driver(SMC);C:\WINDOWS\system32\DRIVERS\zd1211Bu.sys [2006-08-24 13:44]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b0f3d511-e2b5-11dc-ac45-00142a942c31}]
\Shell\AutoRun\command - H:\USBNB.exe
*Newly Created Service* - CATCHME
.
Contents of the 'Scheduled Tasks' folder
"2008-02-22 16:40:38 C:\WINDOWS\Tasks\1-Click Maintenance.job"
- D:\Program Files\TuneUp Utilities 2008\OneClick.exe
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-02-26 20:17:14
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
PROCESS: C:\WINDOWS\system32\lsass.exe [5.01.2600.2180]
-> C:\WINDOWS\system32\imon.dll
-> C:\Program Files\Eset\pr_imon.dll
.
Completion time: 2008-02-26 20:18:32
ComboFix-quarantined-files.txt 2008-02-26 19:18:27
ComboFix2.txt 2008-02-26 07:54:20
ComboFix3.txt 2008-02-25 20:37:28
ComboFix4.txt 2008-02-25 14:19:19
Why Nod32 failed to inform me of anything, not even about stupid clickers and downloaders?