Big difference....who makes this stuff???
ComboFix 07-11-08.1 - Julie L. Burnett 2007-11-14 18:50:14.1 - NTFSx86
Running from: C:\Documents and Settings\Julie L. Burnett\Desktop\ComboFix.exe
* Created a new restore point
.
Unable to gain System Privileges
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\as.txt
C:\Autorun.inf
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\FindIt.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\FindItHot.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\findithotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\finditxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\Highlight.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\HighlightHot.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\highlighthotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\highlightxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\Reference.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\ReferenceHot.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\referencehotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\referencexp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\screensaver.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\Screensavers0.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\starware_toolbar_icon.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\Weather.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\weatherhotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\buttons\weatherxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\contexts\error.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\contexts\Related.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\contexts\Travel.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\images\walertXP.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\SimpleUpdate\ProductMessagingConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\SimpleUpdate\ProductMessagingConfig.xml.backup
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\SimpleUpdate\SimpleUpdateConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\SimpleUpdate\SimpleUpdateConfig.xml.backup
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\SimpleUpdate\TimerManagerConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1.\Starware316\SimpleUpdate\TimerManagerConfig.xml.backup
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\FindIt.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\FindItHot.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\findithotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\finditxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\Highlight.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\HighlightHot.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\highlighthotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\highlightxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\Reference.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\ReferenceHot.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\referencehotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\referencexp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\screensaver.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\Screensavers0.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\starware_toolbar_icon.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\Weather.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\weatherhotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\buttons\weatherxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\contexts\error.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\contexts\Related.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\contexts\Travel.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\images\walertXP.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\SimpleUpdate\ProductMessagingConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\SimpleUpdate\ProductMessagingConfig.xml.backup
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\SimpleUpdate\SimpleUpdateConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\SimpleUpdate\SimpleUpdateConfig.xml.backup
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\SimpleUpdate\TimerManagerConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware316\SimpleUpdate\TimerManagerConfig.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1.\Ultimate Defender
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1.\Ultimate Defender\logs\1193979685.log
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1.\Ultimate Defender\logs\1193985772.log
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\microsoft\internet explorer\quick launch\Start UltimateFixer 2007.lnk
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\BrowserSearch\BrowserSearch.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\BrowserSearch\BrowserSearch.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Configurator\Configurator.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Configurator\Configurator.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\ErrorSearch\ErrorSearchOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\ErrorSearch\ErrorSearchOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Games\GamesOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Games\GamesOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Games\images\active\Games0.bmp
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Layouts\ToolbarLayout.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Layouts\ToolbarLayout.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Manager\ManagerOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Manager\ManagerOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Movies\images\active\Movies0.bmp
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Movies\MoviesOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Movies\MoviesOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Reference\ReferenceOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Reference\ReferenceOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\RelatedSearch\RelatedSearchOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\RelatedSearch\RelatedSearchOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Screensavers\ScreensaversOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Screensavers\ScreensaversOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\ScreensaversMarketingSitePager\images\active\ScreensaversMarketingSitePager0.bmp
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Toolbar\TBProductsOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Toolbar\TBProductsOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\ToolbarLogo\ToolbarLogoOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\ToolbarLogo\ToolbarLogoOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\ToolbarSearch\ToolbarSearchOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\ToolbarSearch\ToolbarSearchOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\TravelSearch\TravelSearchOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\TravelSearch\TravelSearchOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Weather\AlertArchive.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Weather\WeatherOptions.xml
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Starware316\Weather\WeatherOptions.xml.backup
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Ultimate Defender\logs\1193979685.log
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Ultimate Defender\logs\1193985772.log
C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\WinTouch\wintouch.cfg
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin.zip
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin1.zip
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin2.zip
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CnsMin3.zip
C:\Documents and Settings\Julie L. Burnett\Application Data\CROSOF~1
C:\Documents and Settings\Julie L. Burnett\Application Data\DOBE~1
C:\Documents and Settings\Julie L. Burnett\Application Data\FNTS~1
C:\Documents and Settings\Julie L. Burnett\Application Data\microsoft\internet explorer\quick launch\Start UltimateFixer 2007.lnk
C:\Documents and Settings\Julie L. Burnett\Application Data\PPPATC~1
C:\Documents and Settings\Julie L. Burnett\Application Data\SEMBLY~1
C:\Documents and Settings\Julie L. Burnett\Application Data\SMBOLS~1
C:\Documents and Settings\Julie L. Burnett\Application Data\SSTEM~1
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\BrowserSearch\BrowserSearch.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\BrowserSearch\BrowserSearch.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Configurator\Configurator.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Configurator\Configurator.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\ErrorSearch\ErrorSearchOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\ErrorSearch\ErrorSearchOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Games\GamesOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Games\GamesOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Games\images\active\Games0.bmp
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Layouts\ToolbarLayout.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Layouts\ToolbarLayout.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Manager\ManagerOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Manager\ManagerOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Movies\images\active\Movies0.bmp
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Movies\MoviesOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Movies\MoviesOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Reference\ReferenceOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Reference\ReferenceOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\RelatedSearch\RelatedSearchOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\RelatedSearch\RelatedSearchOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Screensavers\ScreensaversOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Screensavers\ScreensaversOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\ScreensaversMarketingSitePager\images\active\ScreensaversMarketingSitePager0.bmp
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Toolbar\TBProductsOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Toolbar\TBProductsOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\ToolbarLogo\ToolbarLogoOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\ToolbarLogo\ToolbarLogoOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\ToolbarSearch\ToolbarSearchOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\ToolbarSearch\ToolbarSearchOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\TravelSearch\TravelSearchOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\TravelSearch\TravelSearchOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Weather\AlertArchive.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Weather\WeatherOptions.xml
C:\Documents and Settings\Julie L. Burnett\Application Data\Starware316\Weather\WeatherOptions.xml.backup
C:\Documents and Settings\Julie L. Burnett\Application Data\Ultimate Defender\logs\1193979685.log
C:\Documents and Settings\Julie L. Burnett\Application Data\Ultimate Defender\logs\1193985772.log
C:\Documents and Settings\Julie L. Burnett\Application Data\WinTouch
C:\Documents and Settings\Julie L. Burnett\Application Data\WinTouch\wintouch.cfg
C:\Documents and Settings\Julie L. Burnett\My Documents\CROSOF~1
C:\Documents and Settings\Julie L. Burnett\My Documents\CURITY~1
C:\Documents and Settings\Julie L. Burnett\My Documents\DOBE~1
C:\Documents and Settings\Julie L. Burnett\My Documents\FNTS~1
C:\Documents and Settings\Julie L. Burnett\My Documents\MANTEC~1
C:\Documents and Settings\Julie L. Burnett\My Documents\SSEMBL~1
C:\Documents and Settings\Julie L. Burnett\My Documents\SSTEM~1
C:\Documents and Settings\Julie L. Burnett\My Documents\STEM32~1
C:\Documents and Settings\LocalService\My Documents\YSTEM3~1
C:\Documents and Settings\LocalService\My Documents\YSTEM3~1\?ystem32\
C:\Documents and Settings\LocalService\My Documents\YSTEM3~1\spool32.exe
C:\Program Files\Common Files\asembl~1
C:\Program Files\Common Files\asks~1
C:\Program Files\Common Files\companion wizard
C:\Program Files\Common Files\Companion Wizard\CompWiz.xml
C:\Program Files\Common Files\crosof~1.net
C:\Program Files\Common Files\curity~1
C:\Program Files\Common Files\dobe~1
C:\Program Files\Common Files\mbols~1
C:\Program Files\Common Files\sks~1
C:\Program Files\Common Files\wnsxs~1
C:\Program Files\Common Files\ymbols~1
C:\Program Files\dobe~1
C:\Program Files\ecurit~1
C:\Program Files\Insider
C:\Program Files\Insider\Insider.exe
C:\Program Files\Insider\UnInstall.exe
C:\Program Files\ISM
C:\Program Files\ISM\BndDrive7.dll
C:\Program Files\ISM2
C:\Program Files\ISM2\cringupd.exe
C:\Program Files\ISM2\dictionary.gz
C:\Program Files\ISM2\hydramedupd.exe
C:\Program Files\ISM2\ISMPack5.exe
C:\Program Files\ISM2\ISMPack6.exe
C:\Program Files\ISM2\ISMPack7.exe
C:\Program Files\ISM2\ISMPack8.exe
C:\Program Files\ISM2\targets.gz
C:\Program Files\mbols~1
C:\Program Files\racle~1
C:\Program Files\SecCenter
C:\Program Files\SecCenter\scprot4.exe
C:\Program Files\sks~1
C:\Program Files\sstem3~1
C:\Program Files\Temporary
C:\Program Files\wnsxs~1
C:\Program Files\ymante~1
C:\Temp\1cb
C:\Temp\1cb\syscheck.log
C:\temp\brr
C:\temp\tn3
C:\WINDOWS\7search.dll
C:\WINDOWS\aconti.exe
C:\WINDOWS\adbar.dll
C:\WINDOWS\b147.exe
C:\WINDOWS\crosof~1
C:\WINDOWS\crosof~1.net
C:\WINDOWS\daxtime.dll
C:\WINDOWS\dp0.dll
C:\WINDOWS\eventlowg.dll
C:\WINDOWS\fhfmm-Uninstaller.exe
C:\WINDOWS\flt.dll
C:\WINDOWS\fnts~1
C:\WINDOWS\hook33.txt
C:\WINDOWS\hotporn.exe
C:\WINDOWS\ie-hook.txt
C:\WINDOWS\ie_32.exe
C:\WINDOWS\jd2002.dll
C:\WINDOWS\kkcomp$.exe
C:\WINDOWS\liqad$.exe
C:\WINDOWS\liqui-Uninstaller.exe
C:\WINDOWS\mcroso~1.net
C:\WINDOWS\ngd.dll
C:\WINDOWS\pbar.dll
C:\WINDOWS\spredirect.dll
C:\WINDOWS\stem32~1
C:\WINDOWS\system32\1_exception.nls
C:\WINDOWS\system32\b02FdUe
C:\WINDOWS\system32\dobe~1
C:\WINDOWS\system32\drivers\blank.gif
C:\WINDOWS\system32\drivers\box_1.gif
C:\WINDOWS\system32\drivers\box_2.gif
C:\WINDOWS\system32\drivers\box_3.gif
C:\WINDOWS\system32\drivers\button_buynow.gif
C:\WINDOWS\system32\drivers\button_freescan.gif
C:\WINDOWS\system32\drivers\cell_bg.gif
C:\WINDOWS\system32\drivers\cell_footer.gif
C:\WINDOWS\system32\drivers\cell_header_block.gif
C:\WINDOWS\system32\drivers\cell_header_remove.gif
C:\WINDOWS\system32\drivers\cell_header_scan.gif
C:\WINDOWS\system32\drivers\detect.htm
C:\WINDOWS\system32\drivers\download_box.gif
C:\WINDOWS\system32\drivers\download_btn.jpg
C:\WINDOWS\system32\drivers\download_now_btn.gif
C:\WINDOWS\system32\drivers\fad.sys
C:\WINDOWS\system32\drivers\footer_back.jpg
C:\WINDOWS\system32\drivers\header_1.gif
C:\WINDOWS\system32\drivers\header_2.gif
C:\WINDOWS\system32\drivers\header_3.gif
C:\WINDOWS\system32\drivers\header_4.gif
C:\WINDOWS\system32\drivers\header_red_bg.gif
C:\WINDOWS\system32\drivers\header_red_free_scan.gif
C:\WINDOWS\system32\drivers\header_red_free_scan_bg.gif
C:\WINDOWS\system32\drivers\header_red_protect_your_pc.gif
C:\WINDOWS\system32\drivers\infected.gif
C:\WINDOWS\system32\drivers\main_back.gif
C:\WINDOWS\system32\drivers\perfect_cleaner_box.jpg
C:\WINDOWS\system32\drivers\product_1_header.gif
C:\WINDOWS\system32\drivers\product_1_name_small.gif
C:\WINDOWS\system32\drivers\product_2_header.gif
C:\WINDOWS\system32\drivers\product_2_name_small.gif
C:\WINDOWS\system32\drivers\product_3_header.gif
C:\WINDOWS\system32\drivers\product_3_name_small.gif
C:\WINDOWS\system32\drivers\product_features.gif
C:\WINDOWS\system32\drivers\pt.htm
C:\WINDOWS\system32\drivers\rating.gif
C:\WINDOWS\system32\drivers\runtime2.sys
C:\WINDOWS\system32\drivers\s_detect.htm
C:\WINDOWS\system32\drivers\screenshot.jpg
C:\WINDOWS\system32\drivers\sep_hor.gif
C:\WINDOWS\system32\drivers\sep_vert.gif
C:\WINDOWS\system32\drivers\shadow.jpg
C:\WINDOWS\system32\drivers\shadow_bg.gif
C:\WINDOWS\system32\drivers\spacer.gif
C:\WINDOWS\system32\drivers\spy_away_box.jpg
C:\WINDOWS\system32\drivers\star.gif
C:\WINDOWS\system32\drivers\star_gray.gif
C:\WINDOWS\system32\drivers\star_gray_small.gif
C:\WINDOWS\system32\drivers\star_small.gif
C:\WINDOWS\system32\drivers\style.css
C:\WINDOWS\system32\drivers\v.gif
C:\WINDOWS\system32\drivers\warning_icon.gif
C:\WINDOWS\system32\drivers\win_logo.gif
C:\WINDOWS\system32\drivers\x.gif
C:\WINDOWS\system32\drvhofr.dll
C:\WINDOWS\system32\ecurit~1
C:\WINDOWS\system32\ESHOPEE.exe
C:\WINDOWS\system32\fkmdvbtn
C:\WINDOWS\system32\fkmdvbtn\bg1.gif
C:\WINDOWS\system32\fkmdvbtn\bgtop.gif
C:\WINDOWS\system32\fkmdvbtn\bottom1.gif
C:\WINDOWS\system32\fkmdvbtn\essentials.gif
C:\WINDOWS\system32\fkmdvbtn\fkmdvbtn1.exe
C:\WINDOWS\system32\fkmdvbtn\fkmdvbtn2.exe
C:\WINDOWS\system32\fkmdvbtn\fkmdvbtn3.exe
C:\WINDOWS\system32\fkmdvbtn\icon1.ico
C:\WINDOWS\system32\fkmdvbtn\install1.gif
C:\WINDOWS\system32\fkmdvbtn\left1.gif
C:\WINDOWS\system32\fkmdvbtn\li.gif
C:\WINDOWS\system32\fkmdvbtn\logo.gif
C:\WINDOWS\system32\fkmdvbtn\main.htm
C:\WINDOWS\system32\fkmdvbtn\mainframe.htm
C:\WINDOWS\system32\fkmdvbtn\reinstall1.gif
C:\WINDOWS\system32\fkmdvbtn\right1.gif
C:\WINDOWS\system32\fkmdvbtn\s1.htm
C:\WINDOWS\system32\fkmdvbtn\s2.htm
C:\WINDOWS\system32\fkmdvbtn\s3.htm
C:\WINDOWS\system32\fkmdvbtn\SMTop1.gif
C:\WINDOWS\system32\fkmdvbtn\SMTop2.gif
C:\WINDOWS\system32\fkmdvbtn\SMTop3.gif
C:\WINDOWS\system32\fkmdvbtn\SMTop4.gif
C:\WINDOWS\system32\fkmdvbtn\soft1_off.gif
C:\WINDOWS\system32\fkmdvbtn\soft1_off_ext.gif
C:\WINDOWS\system32\fkmdvbtn\soft1_on.gif
C:\WINDOWS\system32\fkmdvbtn\soft1_on_ext.gif
C:\WINDOWS\system32\fkmdvbtn\soft2_off.gif
C:\WINDOWS\system32\fkmdvbtn\soft2_off_ext.gif
C:\WINDOWS\system32\fkmdvbtn\soft2_on.gif
C:\WINDOWS\system32\fkmdvbtn\soft2_on_ext.gif
C:\WINDOWS\system32\fkmdvbtn\soft3_off.gif
C:\WINDOWS\system32\fkmdvbtn\soft3_off_ext.gif
C:\WINDOWS\system32\fkmdvbtn\soft3_on.gif
C:\WINDOWS\system32\fkmdvbtn\soft3_on_ext.gif
C:\WINDOWS\system32\fkmdvbtn\softbottom_off.gif
C:\WINDOWS\system32\fkmdvbtn\softbottom_on.gif
C:\WINDOWS\system32\fkmdvbtn\softleft_off.gif
C:\WINDOWS\system32\fkmdvbtn\softleft_on.gif
C:\WINDOWS\system32\fkmdvbtn\top1.gif
C:\WINDOWS\system32\fkmdvbtn\top2.gif
C:\WINDOWS\system32\fkmdvbtn\turnoff1.gif
C:\WINDOWS\system32\fkmdvbtn\turnon1.gif
C:\WINDOWS\system32\icroso~1.net
C:\WINDOWS\system32\kr_done1
C:\WINDOWS\system32\ldinfo.ldr
C:\WINDOWS\system32\m2
C:\WINDOWS\system32\mantec~1
C:\WINDOWS\SYSTEM32\nqtss.bak1
C:\WINDOWS\SYSTEM32\nqtss.bak2
C:\WINDOWS\SYSTEM32\nqtss.ini
C:\WINDOWS\system32\o1
C:\WINDOWS\system32\owrnmvbk.dll
C:\WINDOWS\system32\pac.txt
C:\WINDOWS\system32\RunOnce3.t__
C:\WINDOWS\system32\RunOnce3.tm_
C:\WINDOWS\system32\shdocvs.dll
C:\WINDOWS\system32\smante~1
C:\WINDOWS\system32\stera.log
C:\WINDOWS\system32\v4
C:\WINDOWS\system32\vxddsk.exe
C:\WINDOWS\system32\wml.exe
C:\WINDOWS\system32\ymante~1
C:\WINDOWS\system32\zxdnt3d.cfg
C:\WINDOWS\vxddsk.exe
C:\WINDOWS\winshow.exe
C:\WINDOWS\wml.exe
C:\WINDOWS\xadbrk_.exe
C:\WINDOWS\xxxvideo.exe
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\LEGACY_CMDSERVICE
-------\LEGACY_CORE
-------\LEGACY_NETWORK_MONITOR
-------\LEGACY_POOF
-------\LEGACY_RUNTIME
-------\LEGACY_RUNTIME2
-------\LEGACY_XLAVBA8
-------\runtime
-------\xlavba8
((((((((((((((((((((((((( Files Created from 2007-10-15 to 2007-11-15 )))))))))))))))))))))))))))))))
.
2007-11-14 18:46 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-11-14 15:38 38,224 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\neokdss.sys
2007-11-14 09:24 <DIR> d-------- C:\WINDOWS\SYSTEM32\Kaspersky Lab
2007-11-14 09:24 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
2007-11-13 18:04 289,144 --a------ C:\WINDOWS\SYSTEM32\VCCLSID.exe
2007-11-13 18:04 288,417 --a------ C:\WINDOWS\SYSTEM32\SrchSTS.exe
2007-11-13 18:04 53,248 --a------ C:\WINDOWS\SYSTEM32\Process.exe
2007-11-13 18:04 25,600 --a------ C:\WINDOWS\SYSTEM32\WS2Fix.exe
2007-11-12 20:46 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
2007-11-12 20:33 <DIR> d-------- C:\WINDOWS\Sun
2007-11-12 18:55 3,056 --a------ C:\WINDOWS\SYSTEM32\tmp.reg
2007-11-12 18:51 289,280 --a------ C:\WINDOWS\SYSTEM32\libcurl.dll
2007-11-12 18:51 55,808 --a------ C:\WINDOWS\SYSTEM32\spoolv.exe
2007-11-12 18:48 <DIR> d-------- C:\WINDOWS\SYSTEM32\Log
2007-11-12 11:23 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
2007-11-12 08:51 10,752 --a------ C:\WINDOWS\DCEBoot.exe
2007-11-12 08:06 <DIR> d-------- C:\Program Files\Java
2007-11-12 08:05 <DIR> d-------- C:\Program Files\Common Files\Java
2007-11-12 07:13 16,384 --a------ C:\WINDOWS\xlaherx.exe
2007-11-11 01:46 <DIR> d-------- C:\Program Files\a-squared Free
2007-11-10 17:52 156,336 --a------ C:\WINDOWS\dracee.exe
2007-11-09 19:47 156,336 --a------ C:\WINDOWS\draste.exe
2007-11-09 17:20 153 --a------ C:\WINDOWS\SYSTEM32\msftedswc.dll
2007-11-09 15:20 12,825 --a------ C:\WINDOWS\SYSTEM32\msdtexch.dll
2007-11-09 10:53 <DIR> d-------- C:\Program Files\ACW
2007-11-09 10:35 <DIR> d-------- C:\WINDOWS\kdefense
2007-11-09 10:35 849,920 --a------ C:\WINDOWS\SYSTEM32\kdfinj.dll
2007-11-09 10:35 726,568 --a------ C:\WINDOWS\SYSTEM32\kdfmgr.exe
2007-11-09 10:35 192,512 --a------ C:\WINDOWS\SYSTEM32\kdfvmgr.exe
2007-11-09 10:35 77,824 --a------ C:\WINDOWS\SYSTEM32\kdfapi.dll
2007-11-09 10:35 53,248 --a------ C:\WINDOWS\SYSTEM32\Kdfhok.dll
2007-11-09 10:01 <DIR> d-------- C:\WINDOWS\LocalSSL
2007-11-09 09:57 138,512 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\tmcomm.sys
2007-11-09 09:57 52,496 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\tmactmon.sys
2007-11-09 09:57 52,368 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\tmevtmgr.sys
2007-11-08 17:40 <DIR> d-------- C:\Program Files\Gvqnjbaj
2007-11-08 17:39 <DIR> d-------- C:\Documents and Settings\BOSS\Application Data\Yahoo!
2007-11-08 00:52 <DIR> d-------- C:\Program Files\Trend Micro
2007-11-07 22:30 156,336 --a------ C:\WINDOWS\drosmok.exe
2007-11-07 22:25 <DIR> d-------- C:\ce1f38489d672d29afffcbf2900fb7
2007-11-04 09:48 <DIR> d-------- C:\Documents and Settings\Julie L. Burnett\Application Data\Windows Desktop Search
2007-11-04 09:48 <DIR> d-------- C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Windows Desktop Search
2007-11-04 09:40 <DIR> d-------- C:\Program Files\Windows Desktop Search
2007-11-04 09:35 <DIR> d-------- C:\Program Files\Windows Live Favorites
2007-11-04 09:31 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
2007-11-04 09:30 <DIR> d-------- C:\Program Files\Windows Live Toolbar
2007-11-03 18:34 <DIR> d-------- C:\c9504ee262b6c366af16
2007-11-02 20:22 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trend Micro
2007-11-02 14:29 <DIR> d-------- C:\{00004676-0000-0000-FD5B-BAA2F545B743}
2007-11-02 14:29 <DIR> d-------- C:\{00004528-0000-0000-C9A2-52D0BBE4EFE2}
2007-11-02 14:29 <DIR> d-------- C:\{00004495-0000-0000-151A-8F29123B189E}
2007-11-02 12:59 <DIR> d-------- C:\{8001B643-0000-0000-893B-01B02CF26B97}
2007-11-02 10:28 <DIR> d-------- C:\Program Files\Windows Live Safety Center
2007-11-02 04:17 128,896 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\fltmgr.sys
2007-11-02 04:17 23,040 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\fltmc.exe
2007-11-02 04:17 16,896 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\fltlib.dll
2007-11-02 04:15 <DIR> d-------- C:\Program Files\MSXML 4.0
2007-11-02 02:21 582,656 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\rpcrt4.dll
2007-11-02 00:56 459,264 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\msfeeds.dll
2007-11-02 00:56 267,776 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\iertutil.dll
2007-11-02 00:56 52,224 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\msfeedsbs.dll
2007-11-02 00:55 6,058,496 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\ieframe.dll
2007-11-02 00:55 2,455,488 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\ieapfltr.dat
2007-11-02 00:55 383,488 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\ieapfltr.dll
2007-11-02 00:55 63,488 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\icardie.dll
2007-11-02 00:55 33,792 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\custsat.dll
2007-11-02 00:55 13,824 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\ieudinit.exe
2007-11-02 00:19 <DIR> d-------- C:\Security
2007-11-01 20:26 <DIR> d-------- C:\WINDOWS\provisioning
2007-11-01 20:26 <DIR> d-------- C:\WINDOWS\peernet
2007-11-01 20:22 <DIR> d-------- C:\WINDOWS\ServicePackFiles
2007-11-01 20:08 <DIR> d-------- C:\WINDOWS\EHome
2007-11-01 16:48 11,776 --a------ C:\WINDOWS\SYSTEM32\spnpinst.exe
2007-11-01 16:48 4,569 --a------ C:\WINDOWS\SYSTEM32\secupd.dat
2007-11-01 14:03 <DIR> d-------- C:\Program Files\Larlpqyh
2007-11-01 13:25 614,912 --a------ C:\WINDOWS\SYSTEM32\h323msp.dll
2007-11-01 13:25 331,264 --a------ C:\WINDOWS\SYSTEM32\ipnathlp.dll
2007-11-01 13:25 40,960 --------- C:\WINDOWS\SYSTEM32\DLLCACHE\evtgprov.dll
2007-11-01 13:11 <DIR> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2007-11-01 12:08 402,440 --a------ C:\sysalna.exe
2007-11-01 11:44 <DIR> d-------- C:\Program Files\Symantec
2007-11-01 11:44 <DIR> d-------- C:\Program Files\Common Files\Symantec Shared
2007-11-01 11:44 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
2007-11-01 11:31 77,824 --a------ C:\MicroSofts.pif
2007-11-01 11:26 <DIR> dr-h----- C:\Documents and Settings\Julie L. Burnett\Application Data\yahoo!
2007-11-01 11:26 <DIR> dr-h----- C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\yahoo!
2007-11-01 10:44 30,720 --a------ C:\WINDOWS\SYSTEM32\gooels.dll
2007-11-01 09:28 1,082,368 --a------ C:\WINDOWS\SYSTEM32\esent.dll
2007-11-01 09:10 0 --a------ C:\WINDOWS\SYSTEM32\mscorews.dll
2007-11-01 09:06 <DIR> d--h----- C:\WINDOWS\$hf_mig$
2007-11-01 09:06 22,752 --a------ C:\WINDOWS\SYSTEM32\spupdsvc.exe
2007-11-01 09:04 <DIR> d-------- C:\WINDOWS\SYSTEM32\bits
2007-11-01 09:03 351,232 --a------ C:\WINDOWS\SYSTEM32\winhttp.dll
2007-11-01 09:03 18,944 --a------ C:\WINDOWS\SYSTEM32\qmgrprxy.dll
2007-11-01 09:03 8,192 --a------ C:\WINDOWS\SYSTEM32\bitsprx2.dll
2007-11-01 09:03 7,168 --a------ C:\WINDOWS\SYSTEM32\bitsprx3.dll
2007-11-01 09:00 271,224 --a------ C:\WINDOWS\SYSTEM32\mucltui.dll
2007-11-01 08:59 549,720 --a------ C:\WINDOWS\SYSTEM32\wuapi.dll
2007-11-01 08:59 325,976 --a------ C:\WINDOWS\SYSTEM32\wucltui.dll
2007-11-01 08:59 43,352 --a------ C:\WINDOWS\SYSTEM32\wups2.dll
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-11-14 06:42 --------- d-----w C:\Program Files\Lx_cats
2007-11-12 18:56 --------- d-----w C:\Program Files\Free Offers from Freeze.com
2007-11-12 16:02 --------- d-----w C:\Program Files\SBC Yahoo!
2007-11-12 16:02 --------- d-----w C:\Program Files\SBC Self Support Tool
2007-11-12 16:02 --------- d-----w C:\Program Files\ReadIris
2007-11-12 16:02 --------- d-----w C:\Program Files\QuickTime
2007-11-12 16:01 --------- d-----w C:\Program Files\MSN Messenger
2007-11-12 16:01 --------- d-----w C:\Program Files\Modem Helper
2007-11-12 16:01 --------- d-----w C:\Program Files\Microsoft Works
2007-11-12 16:01 --------- d-----w C:\Program Files\Microsoft Streets & Trips
2007-11-12 16:01 --------- d-----w C:\Program Files\Microsoft Picture It! 7
2007-11-12 15:59 --------- d-----w C:\Program Files\Lexmark 7300 Series
2007-11-12 15:57 --------- d-----w C:\Program Files\Digital Line Detect
2007-11-12 15:56 --------- d-----w C:\Program Files\Common Files\Motive
2007-11-12 15:54 --------- d-----w C:\Program Files\2Wire
2007-11-11 01:18 --------- d-----w C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
2007-11-09 00:43 --------- d-----w C:\Program Files\Real
2007-11-09 00:43 --------- d-----w C:\Program Files\Common Files\Real
2007-11-09 00:28 --------- d-----w C:\Program Files\The Print Shop 20
2007-11-08 23:33 --------- d-----w C:\Program Files\Web Publish
2007-11-04 00:58 --------- d-----w C:\Documents and Settings\Guest\Application Data\Yahoo!
2007-11-01 17:26 --------- d-----w C:\Program Files\Yahoo!
2007-11-01 01:56 --------- d-----w C:\Documents and Settings\Julie L. Burnett\Application Data\AVG7
2007-11-01 01:56 --------- d-----w C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\AVG7
2007-11-01 01:56 --------- d-----w C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
2007-11-01 00:19 --------- d-----w C:\Program Files\Viewpoint
2007-10-11 01:51 --------- d-----w C:\Program Files\MySpace
2007-10-09 04:48 --------- d--h--w C:\Documents and Settings\Julie L. Burnett\Application Data\Move Networks
2007-10-09 04:48 --------- d--h--w C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\Move Networks
2007-09-18 08:31 65,936 ----a-w C:\WINDOWS\system32\drivers\tmtdi.sys
2007-09-18 08:31 36,112 ----a-w C:\WINDOWS\system32\drivers\tmpreflt.sys
2007-09-18 08:31 333,328 ----a-w C:\WINDOWS\system32\drivers\TM_CFW.sys
2007-09-18 08:31 203,024 ----a-w C:\WINDOWS\system32\drivers\tmxpflt.sys
2007-09-18 08:31 1,126,328 ----a-w C:\WINDOWS\system32\drivers\vsapint.sys
2007-08-21 06:15 683,520 ----a-w C:\WINDOWS\SYSTEM32\inetcomm.dll
2007-08-21 06:15 683,520 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\inetcomm.dll
2007-08-20 21:34 3,584,512 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\mshtml.dll
2007-08-20 10:04 824,832 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\wininet.dll
2007-08-20 10:04 671,232 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\mstime.dll
2007-08-20 10:04 477,696 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\mshtmled.dll
2007-08-20 10:04 44,544 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\iernonce.dll
2007-08-20 10:04 384,512 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\iedkcs32.dll
2007-08-20 10:04 27,648 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\jsproxy.dll
2007-08-20 10:04 232,960 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\webcheck.dll
2007-08-20 10:04 230,400 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\ieaksie.dll
2007-08-20 10:04 214,528 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\dxtrans.dll
2007-08-20 10:04 193,024 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\msrating.dll
2007-08-20 10:04 153,088 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\ieakeng.dll
2007-08-20 10:04 132,608 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\extmgr.dll
2007-08-20 10:04 124,928 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\advpack.dll
2007-08-20 10:04 105,984 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\url.dll
2007-08-20 10:04 102,400 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\occache.dll
2007-08-20 10:04 1,152,000 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\urlmon.dll
2007-08-17 10:21 625,152 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\iexplore.exe
2007-08-17 10:20 63,488 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\ie4uinit.exe
2007-08-17 07:34 161,792 ------w C:\WINDOWS\SYSTEM32\DLLCACHE\ieakui.dll
2006-09-01 01:19 774,144 ----a-w C:\Program Files\RngInterstitial.dll
2004-08-04 07:56 452,608 ----a-r C:\Documents and Settings\Guest\Application Data\ntos.exe
2003-11-05 12:38 55,808 ----a-w C:\Documents and Settings\Julie L. Burnett\Application Data\GDIPFONTCACHEV1.DAT
2003-11-05 12:38 55,808 ----a-w C:\DOCUME~1\JULIEL~1.BUR\APPLIC~1\GDIPFONTCACHEV1.DAT
2002-08-29 11:00 273,920 ----a-w C:\WINDOWS\Media\SendMail.dll
2007-06-23 07:16:26 8,675 --sha-w C:\WINDOWS\SYSTEM32\ospcont.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{029e02f0-a0e5-4b19-b958-7bf2db29fb13}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{54645654-2225-4455-44A1-9F4543D34546}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6abc861a-31e7-4d91-b43b-d3c98f22a5c0}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{a4a435cf-3583-11d4-91bd-0048546a1450}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A6E432B4-D4C2-43B3-BF55-C364F8F7362A}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C222CF73-124F-3562-44AC-E685D962C63C}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{c2680e10-1655-4a0e-87f8-4259325a84b7}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{c4ca6559-2cf1-48b6-96b2-8340a06fd129}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{d8efadf1-9009-11d6-8c73-608c5dc19089}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DABCE839-3831-3818-AF3A-3837BCD324D2}]
C:\WINDOWS\system32\mskvtns.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{e9306072-417e-43e3-81d5-369490beef7c}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{E7620C98-FCCC-40E5-92EC-C7685D2E1E40}"= C:\Program Files\Trend Micro\TrendSecure\TransactionProtector\TSToolbar.dll [2007-09-16 08:21 103760]
[HKEY_CLASSES_ROOT\CLSID\{E7620C98-FCCC-40E5-92EC-C7685D2E1E40}]
[HKEY_CLASSES_ROOT\TSToolbar.TSProtectorBar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EC525605-2266-4775-8F78-A68A6446465C}]
[HKEY_CLASSES_ROOT\TSToolbar.TSProtectorBar]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"sr1exe"="C:\Documents and Settings\All Users\Application Data\Dell\Alert\252\updtSup3.exe" [2003-05-15 14:21]
"YBrowser"="C:\PROGRA~1\Yahoo!\browser\ybrwicon.exe" [2006-07-21 16:19]
"YOP"="C:\PROGRA~1\Yahoo!\YOP\yop.exe" [2007-06-26 13:48]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11]
"UfSeAgnt.exe"="C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe" [2007-09-18 02:31]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 16:46]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce]
"SpybotDeletingC4953"=cmd /c del "C:\Documents and Settings\BOSS\Local Settings\Temp\~DFD9B.tmp"
"SpybotDeletingC6542"=cmd /c del "C:\WINDOWS\pbsysie.dll"
"SpybotDeletingA7013"=command /c del "C:\Documents and Settings\BOSS\Local Settings\Temp\~DFD9B.tmp"
"SpybotDeletingA6499"=command /c del "C:\WINDOWS\pbsysie.dll"
C:\DOCUME~1\ALLUSE~1\STARTM~1\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 22:05:26]
SBC Self Support Tool.lnk - C:\Program Files\SBC Self Support Tool\bin\matcli.exe [2005-01-03 22:59:00]
Windows Desktop Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe [2006-03-26 22:44:08]
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoWindowsUpdate"=1 (0x1)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2006-03-13 13:11 233472]
[HKEY_CURRENT_USER\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="C:\\WINDOWS\\System32\\vvgeowbv.exe,C:\\WINDOWS\\system32\\userinit.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,C:\\WINDOWS\\system32\\ntos.exe,"
S3 noskrnl.sys;noskrnl.sys;\??\C:\WINDOWS\system32\noskrnl.sys
S4 lxci_device;lxci_device;C:\WINDOWS\System32\lxcicoms.exe -service
.
**************************************************************************
catchme 0.3.1250 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2007-11-14 19:23:07
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
C:\WINDOWS\system32\wsnpoem
C:\WINDOWS\system32\ntos.exe 189440 bytes executable
scan completed successfully
hidden files: 2
**************************************************************************
.
Completion time: 2007-11-14 19:28:54 - machine was rebooted
.
--- E O F ---