ComboFix 08-02-21 - Owner 2008-02-28 14:39:11.5 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.508 [GMT -6:00]
Running from: C:\Documents and Settings\Owner.christelLap\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\Owner.christelLap\Desktop\CFScript.txt
* Created a new restore point
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\All Users\Application Data\Viewpoint
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\ComponentRegistry.ini
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\HostRegistry.ini
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\MetaStreamConfig.ini
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\MetaStreamID.ini
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\Resources\ResourceFolder_00\URLCache.ini
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\Resources\ResourceFolder_01\URLCache.ini
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\Resources\ResourceFolder_02\URLCache.ini
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\Resources\ResourceFolder_03\URLCache.ini
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\UserShell\AOL9\FLFBootStrap.mtx
C:\Documents and Settings\All Users\Application Data\Viewpoint\Viewpoint Experience Technology\UserShell\AOL9Plus\FLFBootStrap.mtx
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\.NetworkShare\LimeWireWin4.16.2.exe
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\412splashfree.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\414splashfree.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\createtimes.cache
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\data.ser
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\fileurns.bak
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\fileurns.cache
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\filters.props
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\gnutella.net
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\installation.props
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\library.dat
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\limewire.props
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\mojito.props
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\pub1.key
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\public.key
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\questions.props
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\responses.cache
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\secureMessage.key
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\simpp.xml
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\spam.dat
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\tables.props
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme.lwtp
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\
01_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\
02_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\
03_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\
04_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\
05_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\chat.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\dir_closed.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\dir_open.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\forward_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\forward_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\kill.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\kill_on.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\lime.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\logo.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\notsearching.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\pause_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\pause_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\play_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\play_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\question.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\rewind_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\rewind_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\searching.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\splash.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\splashpro.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\stop_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\stop_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\theme.txt
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\black_theme\warning.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme.lwtp
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\
01_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\
02_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\
03_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\
04_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\
05_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\chat.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\dir_closed.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\dir_open.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\forward_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\forward_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\kill.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\logo.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\notsearching.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\pause_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\pause_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\play_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\play_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\question.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\rewind_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\rewind_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\search.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\searching.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\splash.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\splashpro.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\stop_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\stop_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\theme.txt
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\classic_theme\warning.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme.lwtp
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\
01_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\
02_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\
03_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\
04_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\
05_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\chat.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\dir_closed.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\dir_open.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\forward_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\forward_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\kill.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\kill_on.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\lime.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\logo.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\notsearching.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\pause_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\pause_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\play_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\play_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\question.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\rewind_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\rewind_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\searching.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\splash.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\splashpro.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\stop_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\stop_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\theme.txt
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\limewire_theme\warning.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme.lwtp
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\
01_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\
02_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\
03_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\
04_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\
05_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\chat.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\forward_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\forward_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\kill.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\kill_on.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\logo.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\notsearching.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\pause_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\pause_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\play_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\play_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\question.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\rewind_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\rewind_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\searching.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\splash.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\splashpro.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\stop_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\stop_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\theme.txt
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\other_theme\warning.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme.lwtp
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\
01_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\
02_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\
03_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\
04_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\
05_star.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\chat.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\forward_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\forward_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\kill.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\kill_on.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\logo.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\notsearching.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\pause_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\pause_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\play_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\play_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\question.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\rewind_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\rewind_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\searching.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\splash.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\splashpro.png
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\stop_dn.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\stop_up.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\theme.txt
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\version.txt
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\themes\windows_theme\warning.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\ttree.cache
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\update.xml
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\version.key
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\version.xml
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\data\application.sxml
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\data\audio.sxml
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\data\delete_me
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\data\image.sxml
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\data\video.sxml
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\misc\application.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\misc\audio.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\misc\document.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\misc\image.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\misc\video.gif
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\schemas\application.xsd
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\schemas\audio.xsd
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\schemas\document.xsd
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\schemas\image.xsd
C:\Documents and Settings\Owner.christelLap\Application Data\LimeWire\xml\schemas\video.xsd
C:\Program Files\Viewpoint
C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\ClassIDs.ini
C:\Program Files\Viewpoint\Viewpoint Experience Technology\ComponentMgr.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\AOLArt.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\AOLShell.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\AOLUserShell.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\Cursors.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\DataTracking.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\GifReader.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\JpegReader.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\LensFlares.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\Mts3Reader.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\ObjectMovie.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\SceneComponent.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\ServiceComponent.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\SreeDMMX.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\SWFView.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\VectorView.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\VMPAudio.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\VMPExtras.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\VMPSpeech.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\VMPVideo.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\WaveletReader.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\Components\ZoomView.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\MetaStreamID.ini
C:\Program Files\Viewpoint\Viewpoint Experience Technology\MtsAxInstaller.exe
C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.xpt
.
((((((((((((((((((((((((( Files Created from 2008-01-28 to 2008-02-28 )))))))))))))))))))))))))))))))
.
2008-02-27 21:48 . 2008-02-27 21:48 <DIR> d-------- C:\Program Files\iTunes
2008-02-27 21:48 . 2008-02-27 21:48 <DIR> d-------- C:\Program Files\iPod
2008-02-27 21:48 . 2008-02-28 14:33 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-02-27 21:48 . 2008-02-27 21:48 1,409 --a------ C:\WINDOWS\QTFont.for
2008-02-27 21:45 . 2008-02-27 21:46 <DIR> d-------- C:\Program Files\QuickTime
2008-02-20 23:50 . 2008-02-20 23:50 <DIR> d-------- C:\WINDOWS\ERUNT
2008-02-20 23:47 . 2008-02-21 00:14 <DIR> d-------- C:\SDFix
2008-02-20 01:59 . 2008-02-20 01:54 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe
2008-02-20 01:59 . 2008-02-20 01:54 53,248 --a------ C:\WINDOWS\system32\Process.exe
2008-02-18 00:03 . 2008-02-18 00:03 87 --a------ C:\WINDOWS\wininit.ini
2008-02-17 22:33 . 2008-02-20 01:42 <DIR> d-------- C:\Program Files\Spybot - Search & Destroy
2008-02-17 22:33 . 2008-02-20 01:42 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-02-17 22:19 . 2008-02-17 22:19 <DIR> d--h----- C:\WINDOWS\system32\GroupPolicy
2008-02-08 22:05 . 2008-02-08 22:05 160,588 --a------ C:\VETlog.dmp
2008-01-31 23:13 . 2008-01-31 23:13 90,112 --a------ C:\WINDOWS\system32\QuickTimeVR.qtx
2008-01-31 23:13 . 2008-01-31 23:13 57,344 --a------ C:\WINDOWS\system32\QuickTime.qts
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-28 07:09 --------- d-----w C:\Program Files\McAfee
2008-02-27 03:58 --------- d-----w C:\Documents and Settings\Owner.christelLap\Application Data\Move Networks
2008-02-23 07:43 --------- d-----w C:\Program Files\Winamp Remote
2008-02-22 05:13 --------- d-----w C:\Documents and Settings\Owner.christelLap\Application Data\SiteAdvisor
2008-02-16 16:57 --------- d-----w C:\Program Files\AIM6
2008-02-16 16:54 --------- d-----w C:\Documents and Settings\All Users\Application Data\AOL
2008-02-16 16:53 --------- d-----w C:\Documents and Settings\All Users\Application Data\AOL Downloads
2008-02-13 22:51 --------- d-----w C:\Documents and Settings\Owner.christelLap\Application Data\Ruckus Network
2008-01-17 05:27 --------- d-----w C:\Program Files\Bonjour
2008-01-16 02:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\OrbNetworks
2008-01-05 04:59 --------- d-----w C:\Program Files\Winamp
2007-12-31 03:46 --------- d-----w C:\Program Files\Western Digital Technologies
2007-12-29 18:22 --------- d-----w C:\Program Files\SiteAdvisor
2007-12-07 02:21 824,832 ----a-w C:\WINDOWS\system32\wininet.dll
2007-12-04 18:38 550,912 ----a-w C:\WINDOWS\system32\oleaut32.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 17:24 1694208]
"Aim6"="C:\Program Files\AIM6\aim6.exe" [2008-01-03 10:15 50528]
"AOL Fast Start"="C:\Program Files\America Online 9.0\AOL.exe" [2005-06-23 11:31 50776]
"MySpaceIM"="C:\Program Files\MySpace\IM\MySpaceIM.exe" [2007-12-18 19:47 8720384]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 13:00 15360]
"Orb"="C:\Program Files\Winamp Remote\bin\OrbTray.exe" [2008-01-07 14:02 495616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [2005-08-05 21:56 64512]
"Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2006-12-26 02:08 169984]
"SynTPLpr"="C:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [2004-11-05 09:47 98394]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2004-11-05 09:47 688218]
"AOL Spyware Protection"="C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe" [2004-10-18 19:42 79448]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2005-10-12 14:30 139264]
"SigmatelSysTrayApp"="stsystra.exe" [2005-12-27 12:20 413696 C:\WINDOWS\stsystra.exe]
"SMSERIAL"="C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-05-23 21:22 573440]
"igfxtray"="C:\WINDOWS\system32\igfxtray.exe" [2006-03-23 14:17 94208]
"igfxhkcmd"="C:\WINDOWS\system32\hkcmd.exe" [2006-03-23 14:13 77824]
"igfxpers"="C:\WINDOWS\system32\igfxpers.exe" [2006-03-23 14:17 118784]
"IntelZeroConfig"="C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe" [2006-08-02 02:38 802816]
"IntelWireless"="C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" [2006-08-02 02:32 696320]
"OdTray.exe"="C:\Program Files\Funk Software\Odyssey Client\OdTray.exe" [2006-05-24 14:01 1052735]
"SiteAdvisor"="C:\Program Files\SiteAdvisor\6253\SiteAdv.exe" [2007-03-30 09:42 36904]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 10:09 63712]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 19:51 39792]
"mcagent_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe" [2007-08-03 22:33 582992]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2008-01-31 23:13 385024]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-02-19 13:10 267048]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"MySpaceIM"="C:\Program Files\MySpace\IM\MySpaceIM.exe" [2007-12-18 19:47 8720384]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\OdysseyClient]
odyEvent.dll 2007-03-08 16:34 106496 C:\WINDOWS\system32\odyEvent.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
R0 odFips;odFips;C:\WINDOWS\system32\drivers\odFips.sys [2006-05-24 12:58]
R3 odysseyIM4;Odyssey Network Driver Miniport;C:\WINDOWS\system32\DRIVERS\odysseyIM4.sys [2006-05-24 12:50]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe folder.htt 480 480
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
\Shell\AutoRun\command - F:\LaunchU3.exe -a
.
Contents of the 'Scheduled Tasks' folder
"2008-02-28 01:20:02 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
"2006-12-26 08:42:31 C:\WINDOWS\Tasks\ISP signup reminder 3.job"
- C:\WINDOWS\system32\OOBE\oobebaln.exe
"2008-01-15 07:20:00 C:\WINDOWS\Tasks\McDefragTask.job"
- c:\program files\mcafee\mqc\QcConsol.exe'
"2008-02-01 07:00:17 C:\WINDOWS\Tasks\McQcTask.job"
- c:\program files\mcafee\mqc\QcConsol.exe
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-02-28 14:41:42
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-02-28 14:42:32
ComboFix-quarantined-files.txt 2008-02-28 20:42:24
ComboFix2.txt 2008-02-24 00:51:38
ComboFix3.txt 2008-02-24 00:46:05
ComboFix4.txt 2008-02-21 06:52:04
.
2008-02-13 09:03:13 --- E O F ---