Pc Linq Upgrade Driver Xp Windows Os
Thu, 24 Dec 2009 00:18:46 +0000
hi Carolyn,
I did what you asked but combofix didnt open. so I remember that in a previous Thread some body told me to created a batch file when the program was not runing, with the following lines:
@echo off
copy /y combofix.exe ocombofix.exe
start ocombofix
I did this and this time it run. here I give you the log.
ComboFix 09-12-03.06 - Owner 12/04/2009 20:53.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1534.1253 [GMT -5:00]
Running from: c:\documents and settings\Owner\Desktop\ocombofix.exe
Command switches used :: ocombofix
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\desktop.ini
c:\docume~1\Owner\LOCALS~1\Temp\tmp1.tmp
c:\documents and settings\All Users\Application Data\adaleh.reg
c:\documents and settings\All Users\Application Data\ityfoje.vbs
c:\documents and settings\All Users\Application Data\qopeja.bat
c:\documents and settings\All Users\Application Data\xohipuky.bat
c:\documents and settings\All Users\Application Data\xywob.vbs
c:\documents and settings\All Users\Documents\ixupugaru.inf
c:\documents and settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\PC_Antispyware2010.lnk
c:\documents and settings\Owner\Application Data\pujogo.vbs
c:\documents and settings\Owner\Desktop\PC_Antispyware2010.lnk
c:\documents and settings\Owner\Desktop\Personal Antivirus.lnk
c:\documents and settings\Owner\Local Settings\Application Data\oxudo.bat
c:\documents and settings\Owner\Local Settings\Temporary Internet Files\girexux.sys
c:\documents and settings\Owner\Local Settings\Temporary Internet Files\ivinom.dat
c:\documents and settings\Owner\Local Settings\Temporary Internet Files\oxexedo.com
c:\documents and settings\Owner\Start Menu\Programs\PC_Antispyware2010
c:\documents and settings\Owner\Start Menu\Programs\PC_Antispyware2010\PC_Antispyware2010.lnk
c:\documents and settings\Owner\Start Menu\Programs\PC_Antispyware2010\Uninstall.lnk
c:\program files\Common Files\jinewo.reg
c:\program files\Common Files\kefumo.inf
c:\program files\Common Files\qojaqoqoq.bat
c:\program files\Mozilla Firefox\Components\0197d829-f038-9480-141b-f6dd1a49ea25.dll
c:\program files\Mozilla Firefox\components\ggbwyktdkfg.dll
c:\program files\video activex object
c:\program files\video activex object\ot.ico
c:\program files\video activex object\ts.ico
c:\program files\Zango Programs
c:\program files\Zango Programs\Chess\Chess.exe
c:\program files\Zango Programs\Chess\Chess\book.txt
c:\program files\Zango Programs\Chess\Fonts\Arial.J5F
c:\program files\Zango Programs\Chess\Fonts\Arial.tga
c:\program files\Zango Programs\Chess\Fonts\Courier New.J5F
c:\program files\Zango Programs\Chess\Fonts\Courier New.TGA
c:\program files\Zango Programs\Chess\Lua 5.0.txt
c:\program files\Zango Programs\Chess\manual\contents.htm
c:\program files\Zango Programs\Chess\manual\foreword.htm
c:\program files\Zango Programs\Chess\manual\front.htm
c:\program files\Zango Programs\Chess\manual\history.htm
c:\program files\Zango Programs\Chess\manual\images\bishop_move.gif
c:\program files\Zango Programs\Chess\manual\images\castl.gif
c:\program files\Zango Programs\Chess\manual\images\king_move.gif
c:\program files\Zango Programs\Chess\manual\images\knight_move.gif
c:\program files\Zango Programs\Chess\manual\images\manual_logo.jpg
c:\program files\Zango Programs\Chess\manual\images\nf3.gif
c:\program files\Zango Programs\Chess\manual\images\pawn_cap.gif
c:\program files\Zango Programs\Chess\manual\images\pawn_move.gif
c:\program files\Zango Programs\Chess\manual\images\queen_move.gif
c:\program files\Zango Programs\Chess\manual\images\ranks_files.gif
c:\program files\Zango Programs\Chess\manual\images\rook_move.gif
c:\program files\Zango Programs\Chess\manual\images\splash2.gif
c:\program files\Zango Programs\Chess\manual\images\start.gif
c:\program files\Zango Programs\Chess\manual\images\tile2.jpg
c:\program files\Zango Programs\Chess\manual\index.htm
c:\program files\Zango Programs\Chess\manual\notation.htm
c:\program files\Zango Programs\Chess\manual\pc_game.htm
c:\program files\Zango Programs\Chess\manual\rules.htm
c:\program files\Zango Programs\Chess\manual\strategy.htm
c:\program files\Zango Programs\Chess\manual\styles.css
c:\program files\Zango Programs\Chess\ML_Eula.txt
c:\program files\Zango Programs\Chess\Models\Scaled_Pine.b3d
c:\program files\Zango Programs\Chess\Models\set1_bishop.b3d
c:\program files\Zango Programs\Chess\Models\set1_bishop_blk.b3d
c:\program files\Zango Programs\Chess\Models\set1_gameboard.b3d
c:\program files\Zango Programs\Chess\Models\set1_king.b3d
c:\program files\Zango Programs\Chess\Models\set1_king_blk.b3d
c:\program files\Zango Programs\Chess\Models\set1_knight.b3d
c:\program files\Zango Programs\Chess\Models\set1_knight_blk.b3d
c:\program files\Zango Programs\Chess\Models\set1_pawn.b3d
c:\program files\Zango Programs\Chess\Models\set1_pawn_blk.b3d
c:\program files\Zango Programs\Chess\Models\set1_queen.b3d
c:\program files\Zango Programs\Chess\Models\set1_queen_blk.b3d
c:\program files\Zango Programs\Chess\Models\set1_rook.b3d
c:\program files\Zango Programs\Chess\Models\set1_rook_blk.b3d
c:\program files\Zango Programs\Chess\Models\set1_tabletop.b3d
c:\program files\Zango Programs\Chess\Models\set2_bishop.b3d
c:\program files\Zango Programs\Chess\Models\set2_bishop_blk.b3d
c:\program files\Zango Programs\Chess\Models\set2_gameboard.b3d
c:\program files\Zango Programs\Chess\Models\set2_king.b3d
c:\program files\Zango Programs\Chess\Models\set2_king_blk.b3d
c:\program files\Zango Programs\Chess\Models\set2_knight.b3d
c:\program files\Zango Programs\Chess\Models\set2_knight_blk.b3d
c:\program files\Zango Programs\Chess\Models\set2_pawn.b3d
c:\program files\Zango Programs\Chess\Models\set2_pawn_blk.b3d
c:\program files\Zango Programs\Chess\Models\set2_queen.b3d
c:\program files\Zango Programs\Chess\Models\set2_queen_blk.b3d
c:\program files\Zango Programs\Chess\Models\set2_rook.b3d
c:\program files\Zango Programs\Chess\Models\set2_rook_blk.b3d
c:\program files\Zango Programs\Chess\Models\set2_tabletop.b3d
c:\program files\Zango Programs\Chess\Models\set3_bishop.b3d
c:\program files\Zango Programs\Chess\Models\set3_bishop_blk.b3d
c:\program files\Zango Programs\Chess\Models\set3_gameboard.b3d
c:\program files\Zango Programs\Chess\Models\set3_king.b3d
c:\program files\Zango Programs\Chess\Models\set3_king_blk.b3d
c:\program files\Zango Programs\Chess\Models\set3_knight.b3d
c:\program files\Zango Programs\Chess\Models\set3_knight_blk.b3d
c:\program files\Zango Programs\Chess\Models\set3_pawn.b3d
c:\program files\Zango Programs\Chess\Models\set3_pawn_blk.b3d
c:\program files\Zango Programs\Chess\Models\set3_queen.b3d
c:\program files\Zango Programs\Chess\Models\set3_queen_blk.b3d
c:\program files\Zango Programs\Chess\Models\set3_rook.b3d
c:\program files\Zango Programs\Chess\Models\set3_rook_blk.b3d
c:\program files\Zango Programs\Chess\Models\set3_tabletop.b3d
c:\program files\Zango Programs\Chess\Models\set4_bishop.b3d
c:\program files\Zango Programs\Chess\Models\set4_bishop_blk.b3d
c:\program files\Zango Programs\Chess\Models\set4_gameboard.b3d
c:\program files\Zango Programs\Chess\Models\set4_king.b3d
c:\program files\Zango Programs\Chess\Models\set4_king_blk.b3d
c:\program files\Zango Programs\Chess\Models\set4_knight.b3d
c:\program files\Zango Programs\Chess\Models\set4_knight_blk.b3d
c:\program files\Zango Programs\Chess\Models\set4_pawn.b3d
c:\program files\Zango Programs\Chess\Models\set4_pawn_blk.b3d
c:\program files\Zango Programs\Chess\Models\set4_queen.b3d
c:\program files\Zango Programs\Chess\Models\set4_queen_blk.b3d
c:\program files\Zango Programs\Chess\Models\set4_rook.b3d
c:\program files\Zango Programs\Chess\Models\set4_rook_blk.b3d
c:\program files\Zango Programs\Chess\Models\set4_tabletop.b3d
c:\program files\Zango Programs\Chess\Models\square_h.b3d
c:\program files\Zango Programs\Chess\Models\square_L.b3d
c:\program files\Zango Programs\Chess\Models\square_m.b3d
c:\program files\Zango Programs\Chess\Models\square_o.b3d
c:\program files\Zango Programs\Chess\Models\square_shadow.b3d
c:\program files\Zango Programs\Chess\Models\square_x.b3d
c:\program files\Zango Programs\Chess\Music\Chess Blues.ogg
c:\program files\Zango Programs\Chess\Music\Chess Menu.ogg
c:\program files\Zango Programs\Chess\Music\Medieval Chess.ogg
c:\program files\Zango Programs\Chess\Music\Modern Chess.ogg
c:\program files\Zango Programs\Chess\Music\Space Chess.ogg
c:\program files\Zango Programs\Chess\ogg_vorbis.txt
c:\program files\Zango Programs\Chess\Scripts\Check_disp.lua
c:\program files\Zango Programs\Chess\Scripts\Check_disp_black.lua
c:\program files\Zango Programs\Chess\Scripts\check_disp_off.lua
c:\program files\Zango Programs\Chess\Scripts\Check_disp_white.lua
c:\program files\Zango Programs\Chess\Scripts\checkmate_disp.lua
c:\program files\Zango Programs\Chess\Scripts\checkmate_disp_blk.lua
c:\program files\Zango Programs\Chess\Scripts\checkmate_disp_wht.lua
c:\program files\Zango Programs\Chess\Scripts\Clean_up.lua
c:\program files\Zango Programs\Chess\Scripts\clock.lua
c:\program files\Zango Programs\Chess\Scripts\Clock_lose_disp_black.lua
c:\program files\Zango Programs\Chess\Scripts\Clock_lose_disp_white.lua
c:\program files\Zango Programs\Chess\Scripts\clock_off.lua
c:\program files\Zango Programs\Chess\Scripts\Credits.lua
c:\program files\Zango Programs\Chess\Scripts\CustomPiece.lua
c:\program files\Zango Programs\Chess\Scripts\CustomPieces.lua
c:\program files\Zango Programs\Chess\Scripts\Draw.lua
c:\program files\Zango Programs\Chess\Scripts\Escape.lua
c:\program files\Zango Programs\Chess\Scripts\Exit.lua
c:\program files\Zango Programs\Chess\Scripts\GameOptions.lua
c:\program files\Zango Programs\Chess\Scripts\HostGame.lua
c:\program files\Zango Programs\Chess\Scripts\Hotkeys.lua
c:\program files\Zango Programs\Chess\Scripts\Hotkeys_off.lua
c:\program files\Zango Programs\Chess\Scripts\Hotseat.lua
c:\program files\Zango Programs\Chess\Scripts\info_display.lua
c:\program files\Zango Programs\Chess\Scripts\InGame.lua
c:\program files\Zango Programs\Chess\Scripts\JoinGame.lua
c:\program files\Zango Programs\Chess\Scripts\Loading.lua
c:\program files\Zango Programs\Chess\Scripts\LoadSinglePlyrGame.lua
c:\program files\Zango Programs\Chess\Scripts\MainMenu.lua
c:\program files\Zango Programs\Chess\Scripts\ML.lua
c:\program files\Zango Programs\Chess\Scripts\MplyrDropout.lua
c:\program files\Zango Programs\Chess\Scripts\MultiplayerGame.lua
c:\program files\Zango Programs\Chess\Scripts\NewSinglePlyrGame.lua
c:\program files\Zango Programs\Chess\Scripts\opp_update.lua
c:\program files\Zango Programs\Chess\Scripts\Opponent.lua
c:\program files\Zango Programs\Chess\Scripts\Options.lua
c:\program files\Zango Programs\Chess\Scripts\p_dragon_fire.lua
c:\program files\Zango Programs\Chess\Scripts\pieceshotsetup.lua
c:\program files\Zango Programs\Chess\Scripts\PlayerData.lua
c:\program files\Zango Programs\Chess\Scripts\PlayerData_off.lua
c:\program files\Zango Programs\Chess\Scripts\RestoreGame.lua
c:\program files\Zango Programs\Chess\Scripts\runtime_functions.lua
c:\program files\Zango Programs\Chess\Scripts\SaveGame.lua
c:\program files\Zango Programs\Chess\Scripts\Set1Env.lua
c:\program files\Zango Programs\Chess\Scripts\Set1Pieces.lua
c:\program files\Zango Programs\Chess\Scripts\Set2Env.lua
c:\program files\Zango Programs\Chess\Scripts\Set2Pieces.lua
c:\program files\Zango Programs\Chess\Scripts\Set3Env.lua
c:\program files\Zango Programs\Chess\Scripts\Set3Pieces.lua
c:\program files\Zango Programs\Chess\Scripts\Set4Env.lua
c:\program files\Zango Programs\Chess\Scripts\Set4Pieces.lua
c:\program files\Zango Programs\Chess\Scripts\SetPiece1.lua
c:\program files\Zango Programs\Chess\Scripts\SetUpBoard.lua
c:\program files\Zango Programs\Chess\Scripts\Speed.lua
c:\program files\Zango Programs\Chess\Scripts\Stalemate.lua
c:\program files\Zango Programs\Chess\Scripts\Standard.lua
c:\program files\Zango Programs\Chess\Scripts\StandardPieces.lua
c:\program files\Zango Programs\Chess\Scripts\StartGame.lua
c:\program files\Zango Programs\Chess\Scripts\StartGUI.lua
c:\program files\Zango Programs\Chess\Scripts\TestGUI.lua
c:\program files\Zango Programs\Chess\Scripts\TestGUI2.lua
c:\program files\Zango Programs\Chess\Scripts\text.lua
c:\program files\Zango Programs\Chess\Scripts\tut_bishop.lua
c:\program files\Zango Programs\Chess\Scripts\tut_king.lua
c:\program files\Zango Programs\Chess\Scripts\tut_knight.lua
c:\program files\Zango Programs\Chess\Scripts\tut_pawn.lua
c:\program files\Zango Programs\Chess\Scripts\tut_queen.lua
c:\program files\Zango Programs\Chess\Scripts\tut_rook.lua
c:\program files\Zango Programs\Chess\Scripts\Tutorial.lua
c:\program files\Zango Programs\Chess\Scripts\UpdateNewgameUI.lua
c:\program files\Zango Programs\Chess\Sounds\bishop.wav
c:\program files\Zango Programs\Chess\Sounds\button.wav
c:\program files\Zango Programs\Chess\Sounds\castle.wav
c:\program files\Zango Programs\Chess\Sounds\check.wav
c:\program files\Zango Programs\Chess\Sounds\checkmate.wav
c:\program files\Zango Programs\Chess\Sounds\Clock.wav
c:\program files\Zango Programs\Chess\Sounds\draw.wav
c:\program files\Zango Programs\Chess\Sounds\enpassant.wav
c:\program files\Zango Programs\Chess\Sounds\king.wav
c:\program files\Zango Programs\Chess\Sounds\knight.wav
c:\program files\Zango Programs\Chess\Sounds\pawn.wav
c:\program files\Zango Programs\Chess\Sounds\promotion.wav
c:\program files\Zango Programs\Chess\Sounds\queen.wav
c:\program files\Zango Programs\Chess\Sounds\rook.wav
c:\program files\Zango Programs\Chess\Sounds\stalemate.wav
c:\program files\Zango Programs\Chess\Sounds\temp.wav
c:\program files\Zango Programs\Chess\Textures\4test.tga
c:\program files\Zango Programs\Chess\Textures\benedeti_tiled_test.jpg
c:\program files\Zango Programs\Chess\Textures\BlueClouds01.jpg
c:\program files\Zango Programs\Chess\Textures\board1_dn.jpg
c:\program files\Zango Programs\Chess\Textures\board1_hv.jpg
c:\program files\Zango Programs\Chess\Textures\board1_up.jpg
c:\program files\Zango Programs\Chess\Textures\board2_dn.jpg
c:\program files\Zango Programs\Chess\Textures\board2_hv.jpg
c:\program files\Zango Programs\Chess\Textures\board2_up.jpg
c:\program files\Zango Programs\Chess\Textures\board3_dn.jpg
c:\program files\Zango Programs\Chess\Textures\board3_hv.jpg
c:\program files\Zango Programs\Chess\Textures\board3_up.jpg
c:\program files\Zango Programs\Chess\Textures\board5_dn.jpg
c:\program files\Zango Programs\Chess\Textures\board5_hv.jpg
c:\program files\Zango Programs\Chess\Textures\board5_up.jpg
c:\program files\Zango Programs\Chess\Textures\chess_black.bmp
c:\program files\Zango Programs\Chess\Textures\chess_interstellar_gameboard.tga
c:\program files\Zango Programs\Chess\Textures\chess_interstellar_gamepieces_black.tga
c:\program files\Zango Programs\Chess\Textures\chess_interstellar_gamepieces_white.tga
c:\program files\Zango Programs\Chess\Textures\chess_medieval_gameboard.tga
c:\program files\Zango Programs\Chess\Textures\chess_medieval_gamepieces_black.tga
c:\program files\Zango Programs\Chess\Textures\chess_medieval_gamepieces_white.tga
c:\program files\Zango Programs\Chess\Textures\chess_medieval_tabletop.tga
c:\program files\Zango Programs\Chess\Textures\chess_modern_gameboard.tga
c:\program files\Zango Programs\Chess\Textures\chess_modern_gamepieces_black.tga
c:\program files\Zango Programs\Chess\Textures\chess_modern_gamepieces_white.tga
c:\program files\Zango Programs\Chess\Textures\chess_modern_tabletop.tga
c:\program files\Zango Programs\Chess\Textures\chess_set.tga
c:\program files\Zango Programs\Chess\Textures\chess_square_h.tga
c:\program files\Zango Programs\Chess\Textures\chess_square_L.tga
c:\program files\Zango Programs\Chess\Textures\chess_square_L2.tga
c:\program files\Zango Programs\Chess\Textures\chess_square_m.tga
c:\program files\Zango Programs\Chess\Textures\chess_square_o.tga
c:\program files\Zango Programs\Chess\Textures\chess_square_x.tga
c:\program files\Zango Programs\Chess\Textures\chess_traditional_gameboard.tga
c:\program files\Zango Programs\Chess\Textures\chess_traditional_gamepieces_black.tga
c:\program files\Zango Programs\Chess\Textures\chess_traditional_gamepieces_white.tga
c:\program files\Zango Programs\Chess\Textures\chess_traditional_tabletop.tga
c:\program files\Zango Programs\Chess\Textures\chess_white.bmp
c:\program files\Zango Programs\Chess\Textures\clock_frame.bmp
c:\program files\Zango Programs\Chess\Textures\fire.dds
c:\program files\Zango Programs\Chess\Textures\HandCursor.tga
c:\program files\Zango Programs\Chess\Textures\ingame_shadow.tga
c:\program files\Zango Programs\Chess\Textures\marble_multi.tga
c:\program files\Zango Programs\Chess\Textures\marble_white.tga
c:\program files\Zango Programs\Chess\Textures\Mission12-new color.jpg
c:\program files\Zango Programs\Chess\Textures\pinetree01.tga
c:\program files\Zango Programs\Chess\Textures\set1_dn.jpg
c:\program files\Zango Programs\Chess\Textures\set1_hv.jpg
c:\program files\Zango Programs\Chess\Textures\set1_up.jpg
c:\program files\Zango Programs\Chess\Textures\set2_dn.jpg
c:\program files\Zango Programs\Chess\Textures\set2_hv.jpg
c:\program files\Zango Programs\Chess\Textures\set2_up.jpg
c:\program files\Zango Programs\Chess\Textures\set3_dn.jpg
c:\program files\Zango Programs\Chess\Textures\set3_hv.jpg
c:\program files\Zango Programs\Chess\Textures\set3_up.jpg
c:\program files\Zango Programs\Chess\Textures\set5_dn.jpg
c:\program files\Zango Programs\Chess\Textures\set5_hv.jpg
c:\program files\Zango Programs\Chess\Textures\set5_up.jpg
c:\program files\Zango Programs\Chess\Textures\sky_test2.jpg
c:\program files\Zango Programs\Chess\Textures\stars3.jpg
c:\program files\Zango Programs\Chess\Textures\ui_back_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_back_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_back_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_castle.tga
c:\program files\Zango Programs\Chess\Textures\ui_check_blk.tga
c:\program files\Zango Programs\Chess\Textures\ui_check_wht.tga
c:\program files\Zango Programs\Chess\Textures\ui_checkmate.tga
c:\program files\Zango Programs\Chess\Textures\ui_checkmate_blk_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_checkmate_wht_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_credits_ml_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_credits_ml_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_credits_ml_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_credits_ml_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_draw_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_enpassant.tga
c:\program files\Zango Programs\Chess\Textures\ui_escape_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_escape_exitgame_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_escape_exitgame_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_escape_exitgame_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_escape_resume_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_escape_resume_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_escape_resume_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_escape_savegame_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_escape_savegame_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_escape_savegame_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_exit_return_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_exit_return_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_exit_return_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_exit_windows_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_exit_windows_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_exit_windows_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_gopt_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_little_black_box.bmp
c:\program files\Zango Programs\Chess\Textures\ui_load_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_load_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_load_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_loading_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_main_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_main_board_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_board_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_board_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_credits_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_credits_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_credits_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_exit_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_exit_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_exit_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_goptions_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_goptions_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_goptions_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_loadsplyr_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_loadsplyr_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_loadsplyr_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_mplyr_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_mplyr_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_mplyr_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_splyr_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_splyr_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_main_splyr_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_mpdropout_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_hostgame_blk_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_hostgame_blk_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_hostgame_blk_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_hostgame_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_hostgame_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_hostgame_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_hostgame_wht_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_hostgame_wht_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_hostgame_wht_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_joingame_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_joingame_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_joingame_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_mplyr_text_bg.tga
c:\program files\Zango Programs\Chess\Textures\ui_nsplyr_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_okay_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_okay_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_okay_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_opponent_01_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_01_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_01_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_01_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_02_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_02_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_02_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_02_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_03_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_03_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_03_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_03_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_04_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_04_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_04_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_04_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_05_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_05_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_05_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_05_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_06_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_06_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_06_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_06_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_07_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_07_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_07_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_07_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_08_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_08_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_08_dn_hv.jpg.src
c:\program files\Zango Programs\Chess\Textures\ui_opponent_08_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_08_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_09_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_09_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_09_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_09_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_10_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_10_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_10_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_10_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_11_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_11_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_11_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_11_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_human_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_human_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_human_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_human_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_mphuman_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_mphuman_dn_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_mphuman_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_opponent_mphuman_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_outoftime_blk.tga
c:\program files\Zango Programs\Chess\Textures\ui_outoftime_blk_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_outoftime_wht.tga
c:\program files\Zango Programs\Chess\Textures\ui_outoftime_wht_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_pawn_black.tga
c:\program files\Zango Programs\Chess\Textures\ui_pawn_white.tga
c:\program files\Zango Programs\Chess\Textures\ui_play_dn.tga
c:\program files\Zango Programs\Chess\Textures\ui_play_hv.tga
c:\program files\Zango Programs\Chess\Textures\ui_play_up.tga
c:\program files\Zango Programs\Chess\Textures\ui_promotion.tga
c:\program files\Zango Programs\Chess\Textures\ui_say_dn.bmp
c:\program files\Zango Programs\Chess\Textures\ui_say_hv.bmp
c:\program files\Zango Programs\Chess\Textures\ui_say_up.bmp
c:\program files\Zango Programs\Chess\Textures\ui_set_blank_dn.bmp
c:\program files\Zango Programs\Chess\Textures\ui_set_blank_hv.bmp
c:\program files\Zango Programs\Chess\Textures\ui_set_blank_up.bmp
c:\program files\Zango Programs\Chess\Textures\ui_set_x_dn.bmp
c:\program files\Zango Programs\Chess\Textures\ui_set_x_hv.bmp
c:\program files\Zango Programs\Chess\Textures\ui_set_x_up.bmp
c:\program files\Zango Programs\Chess\Textures\ui_speed_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_speed_blitz_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_speed_casual_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_speed_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_speed_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_speed_ingame.tga
c:\program files\Zango Programs\Chess\Textures\ui_speed_off.jpg
c:\program files\Zango Programs\Chess\Textures\ui_speed_on.jpg
c:\program files\Zango Programs\Chess\Textures\ui_speed_quick_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_speed_regulation_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_speed_speed_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_speed_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_stalemate.tga
c:\program files\Zango Programs\Chess\Textures\ui_stalemate_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_1_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_2_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_3_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_bg.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_bishop.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_dn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_hv.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_ingame.tga
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_king.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_knight.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_off.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_on.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_pawn.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_queen.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_rook.jpg
c:\program files\Zango Programs\Chess\Textures\ui_tutorial_up.jpg
c:\program files\Zango Programs\Chess\Textures\ui_withoutlogo_bg.jpg
c:\program files\Zango Programs\Chess\Textures\wood_tabletop1.jpg
c:\program files\Zango Programs\Common\Zango.ico
c:\windows\braviax.exe
c:\windows\ceqozebec.scr
c:\windows\cru629.dat
c:\windows\dame._sy
c:\windows\Downloaded Program Files\ClientAX.dll
c:\windows\Downloaded Program Files\CpnMgr.dll
c:\windows\DRIVERS\beep.sys
c:\windows\ehyzepe._sy
c:\windows\ekic.bat
c:\windows\gybuli.vbs
c:\windows\kihywotyba.dll
c:\windows\kucifyduj.reg
c:\windows\MailSwitch.ocx
c:\windows\olilivyte.dll
c:\windows\ovuxadyx.exe
c:\windows\run.log
c:\windows\system32\braviax.exe
c:\windows\system32\cru629.dat
c:\windows\system32\drivers\ndisrd.sys
c:\windows\system32\drivers\UACvpaboxlkvj.sys
c:\windows\system32\msxml71.dll
c:\windows\system32\msxmlm.dll.tmp
c:\windows\system32\ndisapi.dll
c:\windows\system32\net.net
c:\windows\system32\TwxJ5QsKHeBrr.vbs
c:\windows\system32\UACaybjoaumyv.dll
c:\windows\system32\UACdmkallirqd.dll
c:\windows\system32\uacinit.dll
c:\windows\system32\UACjidawnpeja.dll
c:\windows\system32\UACkkdtvtmtto.db
c:\windows\system32\UACoejbpybfah.dat
c:\windows\system32\UACtscsxywcbg.dll
c:\windows\system32\wisdstr.exe
c:\windows\system32\xa.tmp
c:\windows\wofadaryvi.exe
c:\windows\xose.reg
c:\windows\system32\drivers\beep.sys . . . is infected!!
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_UACd.sys
-------\Legacy_UACd.sys
-------\Legacy_NDISRD
-------\Service_NDISRD
((((((((((((((((((((((((( Files Created from 2009-11-05 to 2009-12-05 )))))))))))))))))))))))))))))))
.
2009-12-04 15:47 . 2009-12-04 15:47 -------- d-----w- c:\windows\system32\MpEngineStore
2009-12-04 15:42 . 2009-12-04 15:46 -------- d-----w- C:\3b474ea30bcd1604ba01423c
2009-12-04 15:42 . 2009-12-05 01:39 79488 ----a-w- c:\documents and settings\Owner\Application Data\Sun\Java\jre1.6.0_17\gtapi.dll
2009-12-04 14:59 . 2009-12-04 14:59 -------- d-----w- c:\windows\system32\XPSViewer
2009-12-04 14:58 . 2009-12-04 14:58 -------- d-----w- c:\program files\MSBuild
2009-12-04 14:58 . 2009-12-04 14:58 -------- d-----w- c:\program files\Reference Assemblies
2009-12-04 14:58 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll
2009-12-04 14:57 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-12-04 14:57 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2009-12-04 14:57 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2009-12-04 14:57 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2009-12-04 14:57 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2009-12-04 14:57 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2009-12-04 14:57 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-12-04 14:57 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2009-12-04 14:57 . 2009-12-04 14:58 -------- d-----w- C:\f4fad7a1b2a4ad21031ad9d039
2009-12-04 14:51 . 2009-12-04 14:51 -------- d-----w- c:\program files\MSXML 6.0
2009-12-04 14:48 . 2009-12-04 14:48 -------- d-----w- c:\documents and settings\Default User\Local Settings\Application Data\Microsoft Help
2009-11-27 18:01 . 2009-09-10 19:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-11-27 18:00 . 2009-11-27 18:01 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-11-27 18:00 . 2009-11-27 18:00 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-11-27 18:00 . 2009-09-10 19:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-11-27 17:45 . 2006-05-08 07:01 107688 ----a-w- c:\windows\TrueInstall.exe
2009-11-27 16:31 . 2009-11-27 16:55 -------- d-----w- C:\Backup
2009-11-27 16:19 . 2009-11-27 16:19 -------- d-----w- C:\dbda012826f71df25cc10859
2009-11-27 16:19 . 2009-11-27 16:20 -------- d-----w- C:\3cb5d788c3b5db7536edc49d82
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-12-04 15:47 . 2009-08-10 21:46 -------- d-----w- c:\program files\Common Files\Uninstall
2009-12-04 15:41 . 2006-12-15 14:27 29344 ----a-w- c:\documents and settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-12-04 15:22 . 2009-06-08 23:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2009-12-04 15:14 . 2009-04-30 22:39 -------- d-----w- c:\documents and settings\Owner\Application Data\LimeWire
2009-12-04 14:45 . 2009-06-10 20:44 -------- d-----w- c:\program files\Microsoft Works
2009-11-27 17:52 . 2006-05-08 06:40 -------- d-----w- c:\program files\Yahoo!
2009-11-27 17:45 . 2007-07-21 02:48 -------- d-----w- c:\program files\SpyShot Photo Manager
2009-11-27 17:45 . 2009-08-13 19:54 -------- d-----w- c:\program files\Enigma Software Group
2009-11-27 17:43 . 2007-05-26 01:42 -------- d-----w- c:\program files\Olympus
2009-11-27 17:37 . 2006-08-22 12:49 -------- d-----w- c:\program files\Buildcity
2009-11-27 17:21 . 2009-07-28 18:58 -------- d-----w- c:\program files\Any Video Converter
2009-11-27 17:21 . 2009-07-28 18:58 -------- d-----w- c:\documents and settings\Owner\Application Data\Any Video Converter
2009-11-27 17:21 . 2009-06-08 23:03 -------- d-----w- c:\program files\AbiSuite2
2009-08-12 03:59 . 2009-08-12 03:59 18582 ----a-w- c:\program files\Common Files\wigofic.dat
2009-08-12 03:30 . 2009-08-12 03:30 17081 ----a-w- c:\program files\Common Files\ifin._sy
2009-08-12 03:30 . 2009-08-12 03:30 15847 ----a-w- c:\program files\Common Files\agyh.bin
2009-08-12 03:30 . 2009-08-12 03:30 13703 ----a-w- c:\program files\Common Files\fifojizyho.lib
2009-08-12 02:49 . 2009-08-12 02:49 19935 ----a-w- c:\program files\Common Files\xysa.lib
2009-08-12 02:49 . 2009-08-12 02:49 14688 ----a-w- c:\program files\Common Files\ihiwadiqug.lib
2009-08-12 02:49 . 2009-08-12 02:49 14043 ----a-w- c:\program files\Common Files\voqycaluvi.pif
2009-08-12 02:49 . 2009-08-12 02:49 13577 ----a-w- c:\program files\Common Files\hixula.dl
2009-08-10 22:18 . 2009-08-10 22:18 15841 ----a-w- c:\program files\Common Files\osonanoba.lib
2007-06-22 16:53 . 2006-05-10 01:49 61038 ----a-w- c:\program files\mozilla firefox\components\jar50.dll
2007-06-22 16:53 . 2006-05-10 01:49 49256 ----a-w- c:\program files\mozilla firefox\components\jsd3250.dll
2007-06-22 16:53 . 2006-05-10 01:49 166000 ----a-w- c:\program files\mozilla firefox\components\xpinstal.dll
.
------- Sigcheck -------
[-] 2009-08-10 21:59 . 966456A4D688829BB8F8F00514B1FF22 . 30208 . . [------] . . c:\windows\system32\dllcache\beep.sys
c:\windows\System32\drivers\beep.sys ... is missing !!
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{4d02e7e6-5930-4b51-b9b0-9f21b3789400}"= "mscoree.dll" [2008-07-25 282112]
[HKEY_CLASSES_ROOT\clsid\{4d02e7e6-5930-4b51-b9b0-9f21b3789400}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2004-10-14 1404928]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2004-08-20 155648]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2004-08-20 118784]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-24 136600]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2009-05-21 177472]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-05-26 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-07-13 292128]
"BCMSMMSG"="BCMSMMSG.exe" - c:\windows\BCMSMMSG.exe [2003-08-29 122880]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"EditLevel"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"EditLevel"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"6500:UDP"= 6500:UDP:Petroglyph
"13139:UDP"= 13139:UDP:Petroglyph
"1234:UDP"= 1234:UDP:Petroglyph
S3 ewdmaudn;ewdmaudn;\??\c:\docume~1\Owner\LOCALS~1\Temp\ewdmaudn.sys --> c:\docume~1\Owner\LOCALS~1\Temp\ewdmaudn.sys [?]
S3 MTK;Media Technology Kernel Driver;c:\windows\system32\Drivers\mtk.sys --> c:\windows\system32\Drivers\mtk.sys [?]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder
2009-08-01 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 16:34]
2009-12-05 c:\windows\Tasks\User_Feed_Synchronization-{D6E15228-EF3B-4FD2-9F85-00DA6FAA10D8}.job
- c:\windows\system32\msfeedssync.exe [2006-10-17 08:31]
2009-08-05 c:\windows\Tasks\{F897AA24-BDC3-11D1-B85B-00C04FB93981}_WILLIAMG_Owner.job
- c:\windows\system32\mobsync.exe [2004-08-04 10:00]
.
.
------- Supplementary Scan -------
.
mStart Page = hxxp://www.google.com
mSearch Bar = hxxp://red.clientapps.yahoo.com/customize/ie/defaults/sb/sbcydsl/*http://www.yahoo.com/search/ie.html
DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
FF - ProfilePath - c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\afh1ijln.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - component: c:\program files\Mozilla Firefox\components\xpinstal.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- FIREFOX POLICIES ----
FF - user.js: browser.search.defaultenginename - Yoog Search
FF - user.js: browser.search.defaulturl - hxxp://www27.yoog.com/search.php?q=
FF - user.js: browser.search.selectedEngine - Yoog Search
FF - user.js: keyword.URL - hxxp://www27.yoog.com/search.php?q=
FF - user.js: keyword.enabled - true
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.cookie.p3plevel", 1); // 0=low, 1=medium, 2=high, 3=custom
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.enablePad", false); // Allow client to do proxy autodiscovery
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.default", "chrome://branding/content/searchconfig.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.search.param.Google.1.custom", "chrome://branding/content/searchconfig.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("signon.prefillForms", true);
.
- - - - ORPHANS REMOVED - - - -
Toolbar-Locked - (no file)
AddRemove-4034e336-918b-0dbd-375d-e9bd4004de67 - c:\windows\system32\4034e336-918b-0dbd-375d-e9bd4004de67.exe
AddRemove-BCM V.92 56K Modem - c:\windows\BCMSMU.exe quiet
AddRemove-Public Messenger ver 2.03 - c:\program files\Video ActiveX Object\pmunst.exe
AddRemove-RealPlayer 6.0 - c:\program files\Common Files\Real\Update\\rnuninst.exe RealNetworks|RealPlayer|6.0
AddRemove-Virtools3DLifePlayer - c:\program files\Virtools\3D Life Player\WebplayerConfig.exe
AddRemove-{A3B2F807-D39D-5DF9-CE0C-DE859E4F96F2} - c:\windows\system32\ggbwyktdkfg.dll-uninst.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-04 21:11
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'explorer.exe'(3560)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\iPod\bin\iPodService.exe
c:\windows\system32\wscntfy.exe
c:\program files\Java\jre6\bin\jucheck.exe
c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
.
**************************************************************************
.
Completion time: 2009-12-04 21:19 - machine was rebooted
ComboFix-quarantined-files.txt 2009-12-05 02:19
Pre-Run: 31,805,767,680 bytes free
Post-Run: 34,765,348,864 bytes free
- - End Of File - - 4F00ECFEE859C26BD4C10988F9764141