|
Donation/Premium |
|
 |
|
|
|
|
|
|
|
Survey |
|
|
|
|
|
|
|
|
|
|
|
| View previous topic :: View next topic |
| Author |
Message |
XxMayhemxX
Sergeant
Joined: Mar 16, 2006
Posts: 76
|
 Posted: Fri May 09, 2008 9:17 am Post subject: |
|
|
Kaspersky Continued
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\cert8.db Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\chrome\chrome.rdf Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\chrome\userChrome-example.css Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\chrome\userContent-example.css Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\cookies.txt Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\downloads.rdf Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\history.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\hostperm.1 Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\key3.db Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\localstore.rdf Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\mimeTypes.rdf Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\panels.rdf Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\prefs.js Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\search.rdf Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\secmod.db Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\bljvkjci.slt\XUL.mfl Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Mozilla\registry.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\MSN6\msndata.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\20_1183483712\spring07_promo_july_rp10.swf Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\20_1183483712\start.smi Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\20_1183666131\barker.txt Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\20_1183666131\PCBoosterStart.smi Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\20_1183666131\pcbooster_cs.swf Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\20_1184186265\rwc_ipm.swf Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\20_1184186265\start.smi Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\3115_1184695414\bom_071607.htm Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\7010_1184628335\20070716162535product_news.html Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\Category.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\Messages.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\Msg\SCategory.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealMediaSDK\3faf2600.txt Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealMediaSDK\41a0f800.txt Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\CDBurning\Last burned CD.tmp Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\26.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\autonum.txt Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\autoplaylist.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000001.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000002.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000003.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000004.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000005.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000006.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000007.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000008.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000009.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000010.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000011.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000012.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000013.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000014.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000015.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\000\000016.tmd Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\Backup\iscomplete Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\CD.CDX Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\CD.DBF Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\CDTRAX.CDX Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\CDTRAX.DBF Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\listview.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\listview_minimylibrary.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\NAMES.CDX Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\NAMES.DBF Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\pdtracks.ini Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\PLAYGRPS.CDX Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\PLAYGRPS.DBF Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\PLAYLIST.CDX Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\playlist.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\PLAYLIST.DBF Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\PLAYLIST.FPT Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\PLAYTRAX.CDX Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\PLAYTRAX.DBF Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\TRACKS.CDX Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\TRACKS.DBF Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\TRACKS.FPT Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\TRACKS2.CDX Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\TRAKINFO.CDX Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\TRAKINFO.DBF Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\treestate_minimylibrary.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\VALUES.CDX Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\VALUES.DBF Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\db\version Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\DRM\rights.xml Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\ErrorLogs\CDBurning.log Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\ErrorLogs\DownloadMgr.log Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\ErrorLogs\GenDevices.log Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\ErrorLogs\pdgenctnomad.log Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\ErrorLogs\pdgenwmdm.log Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\lclkdb.son Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\library\view.xml Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\skins\data\normal\imgcache.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\skins\data\normal\state.ini Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\Temp\~rptemp0\loc\en\data.js Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\Temp\~rptemp0\loc\en\style.css Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\Temp\~rptemp1\loc\en\data.js Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\Temp\~rptemp1\loc\en\style.css Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\timecache0.ini Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\urls.ini Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\viz.ini Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\WatchFolders\C__Documents and Settings_Owner_My Documents_My Music_scan.log Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\RealOne Player\WatchFolders\C__Documents and Settings_Owner_My Documents_My Music_scan2.log Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Real\rnadmin\rnsystem.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Sonic\Update Manager\sumdb.dat Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\deployment.properties Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\log\plugin150_07.trace Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\security\trusted.certs Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Symantec\Shared\MyProfile.UserProfile Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Symantec\Shared\Options.VcPref Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Talkback\MozillaOrg\Mozilla17\Win32\2005091517\manifest.ini Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Talkback\MozillaOrg\Mozilla17\Win32\2005091517\permdata.box Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Template\Normal.wpt Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Yahoo!\Messenger\Plugin\4eb73995-f313-4f4a-49a5-1bc4d7c3ee68.yplugin\MANIFEST\plugin.properties Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Yahoo!\Messenger\Plugin\9215abca-d065-4dcf-5700-2210e666338b.yplugin\MANIFEST\plugin.properties Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Yahoo!\Messenger\Plugin\9215abca-d065-4dcf-5700-2210e666338b.yplugin\yahoo360.png Object is locked skipped
C:\Documents and Settings\Owner\Application Data\Yahoo!\Messenger\Plugin\ff5ae295-369e-48c6-5d5c-d81fd9380eb4.yplugin\MANIFEST\plugin.properties Object is locked skipped
C:\Documents and Settings\Owner\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Desktop\Any to Icon.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\Games.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\mp4 player.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\msclientpe.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\MyEbayStore.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\Rhapsody Music Management.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\Rhapsody Play Music Free.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\Scmdraft 2.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\Shortcut to My Computer.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\Shortcut to winamp.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\Starcraft Utilities.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\Starcraft.lnk Object is locked skipped
C:\Documents and Settings\Owner\Desktop\VisualRoute.lnk Object is locked skipped
C:\Documents and Settings\Owner\Favorites\BitDefender Online Scanner.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\CastleCops » Security Forums-My post.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Ameritrade.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Detto-Move My Data.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Genealogy.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Internet Service Providers\America Online.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Internet Service Providers\CompuServe.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Internet Service Providers\Get High-Speed Internet.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Kid'sEdge.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Norton Antivirus.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Online Backup.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Password Manager.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\PopSubtract.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Software Offers.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\My Yahoo!.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Best of the Web.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Briefcase.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Calendar.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Entertainment.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Finance.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Games.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Mail.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Music.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! News.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Personals.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Photos.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Shopping.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Sports.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Travel.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Compaq's Recommended Web Sites\Yahoo!\Yahoo! Yellow Pages.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Favorites\MVP Baseball 2004 - FAQs & Guides - GameFAQs.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\Play AO for free.url Object is locked skipped
C:\Documents and Settings\Owner\Favorites\PlayStation® 2 Settlement - Home Page.url Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero Home\bl.db Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero Home\crawlercfg.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero Home\idx\deletable Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero Home\idx\segments Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero Home\idx\_1f.cfs Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero Home\idx\_1f.del Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero Home\idx\_23.cfs Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero Home\is2.db Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero Home\SID.db Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero Home\SII.db Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero StartSmart\cache\ext.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero StartSmart\cache\flg.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Ahead\Nero StartSmart\cache\nrm.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\ApplicationHistory\mmc.exe.959a7e97.ini.inuse Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\IconCache.db Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{42B61E98-3EA4-4171-9489-6DE0F49472BA}\Microsoft\Outlook Express\cleanup.log Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{42B61E98-3EA4-4171-9489-6DE0F49472BA}\Microsoft\Outlook Express\Folders.dbx Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{42B61E98-3EA4-4171-9489-6DE0F49472BA}\Microsoft\Outlook Express\Inbox.dbx Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{42B61E98-3EA4-4171-9489-6DE0F49472BA}\Microsoft\Outlook Express\Offline.dbx Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Identities\{42B61E98-3EA4-4171-9489-6DE0F49472BA}\Microsoft\Outlook Express\Outbox.dbx Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Feeds\FeedsStore.feedsdb-ms Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Feeds\Microsoft Feeds~\Microsoft at Home~.feed-ms Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Feeds\Microsoft Feeds~\Microsoft at Work~.feed-ms Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Feeds Cache\9A2P0J0A\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Feeds Cache\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Feeds Cache\GEPBSQIO\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Feeds Cache\GEPBSQIO\fwlink[1] Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Feeds Cache\VA89TE7E\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Feeds Cache\VA89TE7E\fwlink[1] Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Feeds Cache\YZTBPJ82\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\HelpCtr\D23D0028-A543-4767-B4AA-1581D8E1CDB2_1033.xml Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Internet Explorer\brndlog.txt Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Internet Explorer\MSIMGSIZ.DAT Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_59R.wmdb Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Media Player\wmpfolders.wmdb Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Speech\Files\MSASR\SP_0C8870FAF25045F4A3CFAAC4A3C9BB12.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Speech\Files\MSASR\SP_4F0F615EC3E146B5B1A49CEC478EA815.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Speech\Files\MSASR\SP_5DE174AB97AD422FBAED214DA05387B4.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Speech\Files\MSASR\SP_908431608F9049F89DD48A6F5583CD25.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Thumbs.db Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows Media\9.0\WMSDKNS.DTD Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Windows Media\9.0\WMSDKNS.XML Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Works\Portfolio\Sample.wsb Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\History\History.IE5\MSHist012003040920030410\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\aax2.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\aax3.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\aax5.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\aax50.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\dat1.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\News.txt Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\NVE58.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\NVE59.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER2.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER2.tmp.dir00\appcompat.txt Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER2.tmp.dir00\manifest.txt Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER2.tmp.dir00\svchost.exe.hdmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER2.tmp.dir00\svchost.exe.mdmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER3.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER3.tmp.dir00\appcompat.txt Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER3.tmp.dir00\manifest.txt Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER3.tmp.dir00\mshta.exe.hdmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER3.tmp.dir00\mshta.exe.mdmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER34.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER34.tmp.dir00\appcompat.txt Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER34.tmp.dir00\manifest.txt Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER34.tmp.dir00\svchost.exe.hdmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WER34.tmp.dir00\svchost.exe.mdmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\WMP92.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\~DF1929.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\~DF1D49.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\~DF510F.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\~DF847D.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\~DFBEE6.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\~DFFD10.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temp\~DFFFD0.tmp Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4PM7KDYN\chkmk_clrbkgrd[1].gif Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4PM7KDYN\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4XER83Q9\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4XER83Q9\mydcs_ua[1].gif Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\4XER83Q9\UAHelp_Metrics[1].css Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CD6ZOTAJ\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CD6ZOTAJ\HelpLA_lib[1].js Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CD6ZOTAJ\lgn_ua[1].gif Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CD6ZOTAJ\popup[1].js Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\GPSRSROZ\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\GPSRSROZ\stngs_ua[1].gif Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\LKHHAT9O\cstmz_ua[1].gif Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\LKHHAT9O\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\SV2NTSPN\chkmk_antialiased[1].gif Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\SV2NTSPN\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\TTXZE6VQ\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\TTXZE6VQ\ua[1].gif Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\XZRNLX8E\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\XZRNLX8E\fvrts_ua[1].gif Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\XZRNLX8E\UAHelp_Classic[1].css Object is locked skipped
C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\My Documents\Autoexec.nt.txt Object is locked skipped
C:\Documents and Settings\Owner\My Documents\Config.nt.txt Object is locked skipped
C:\Documents and Settings\Owner\My Documents\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Downloads\civilization4demo_multi.zip.DLMCache Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\02 - Evil Deeds.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\03 - Never Enough.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\04 - Yellow Brick Road.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\05 - Like Toy Soldiers.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\06 - Mosh.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\07 - Puke.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\08 - My 1st. Single.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\11 - Big Weenie.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\13 - Just Lose It.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\14 - A Like That.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\15 - Spend Some Time.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\16 - Mockingbird.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\17 - Crazy In Love.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\18 - One Shot 2 Shot.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Eminem\Encore\20 - Encore.rmj Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\MM Jukebox Plus Upgrade.mp3 Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Music\Sample Music.lnk Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Pictures\Desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Pictures\GTA-SAweaponsmap.bmp Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Pictures\Thumbs.db Object is locked skipped
C:\Documents and Settings\Owner\My Documents\My Received Files\Thumbs.db Object is locked skipped
C:\Documents and Settings\Owner\My Documents\NeroVision\ImportedVideo\11-14-2007 50050 AM.0001\VTS_01.0001.mpg Object is locked skipped
C:\Documents and Settings\Owner\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Owner\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Owner\ntuser.ini Object is locked skipped
C:\Documents and Settings\Owner\Recent\01.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\03.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\07.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\1.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\11171_L19.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\13-VernacularMixTape-I Quit Starcraft.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\1down2togo.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\237Itemsofalltypes.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\25555_L6.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\2[1].lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\3˝ Floppy (A).lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\571679.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\571683.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\571686.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\571691.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\571697.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\573040.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\573046.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\573052.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\573063.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\9[1].lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Autoexec.nt.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Battle.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\bbrd1.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\bbrd2.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\bbrd3.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\bbrd4.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\bbrd5.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\bbrd6.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\bbrd7.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\bbrd8.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\bbrd9.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\betainfo.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\bookmark.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\bookmark2.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\b_cu[1].lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\civilization4_demo.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\civilization4_demo.zip.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\classicmaps.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Config.nt.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Courtney and Karissa.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Courtney Prom 2006.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\d2items9.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Recent\Desktop.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Diablo II.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Digital Underground.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Document.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\doomedquest.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\download.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Downloads.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\dubbin_approved.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\elm.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\FACTION.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Files named wscntfy.exe.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Final Fantasy RPG.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\fixing the comp.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\freddygotwhatittakes.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\freddylaugh.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\freddyscoming.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\freeys_come (2).lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Fun Things.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\GTA-SAweaponsmap.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Guitar Hero 2 Score Sheet.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\hijackthisnewone.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\home.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\image8.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\INSTALL.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Internet Explorer Wallpaper.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\inventory.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\in_hell (2).lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Jackal.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\jautoexp.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Jesi Jaymes.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\log.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\maps.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\meat.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\momanddon3.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\My Pictures.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\my report.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\New Text Document.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\New Wordpad Document.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\newhijackthis.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Nightmare newest.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Nightmare..updated map.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\NOEStheme.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\nopain (2).lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\nopainnogain.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Omnicrid.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\PlayNow.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\PPDepression.rtf.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\prepatch.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\PX46GFPZ.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\RapLyrics.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Reports.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Samantha and Courtney.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Sami and I.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Scan report_20060505.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Scan report_20060511.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\SCMDraft2.0.6.0-2.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\scxe.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\seeuinhell.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\seeuinhelltellemfreddysentya.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Senior Girls Nite.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Sid Meier's Alpha Centauri.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Spawn Defense 5.1.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\special.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\split.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\spyware programs.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\ST6UNST.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Starforge2.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\StarpowerWSVG.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\tips.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Tournament Tracker.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\TournamentMen.pool.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\tsoc.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Uninst.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Us (2).lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\Us.lnk Object is locked skipped
C:\Documents and Settings\Owner\Recent\WINDOWS.lnk Object is locked skipped
C:\Documents and Settings\Owner\SendTo\Compressed (zipped) Folder.ZFSendToTarget Object is locked skipped
C:\Documents and Settings\Owner\SendTo\Desktop (create shortcut).DeskLink Object is locked skipped
C:\Documents and Settings\Owner\SendTo\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\SendTo\Mail Recipient.MAPIMail Object is locked skipped
C:\Documents and Settings\Owner\SendTo\MUSICMATCH Burner Plus.lnk Object is locked skipped
C:\Documents and Settings\Owner\SendTo\My Documents.mydocs Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Accessibility\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Accessibility\Magnifier.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Accessibility\Utility Manager.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Address Book.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Command Prompt.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Entertainment\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Entertainment\RealPlayer.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Entertainment\Windows Media Player.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Notepad.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Program Compatibility Wizard.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Synchronize.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Tour Windows XP.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Accessories\Windows Explorer.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Diablo II\Diablo II - Lord of Destruction.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Diablo II\license.txt Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Diablo II\Lord of Destruction Read Me.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Internet Explorer.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Online Services\easy Internet sign-up.lnk Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Startup\desktop.ini Object is locked skipped
C:\Documents and Settings\Owner\Start Menu\Programs\Windows Media Player.lnk Object is locked skipped
C:\Documents and Settings\Owner\Templates\amipro.sam Object is locked skipped
C:\Documents and Settings\Owner\Templates\excel.xls Object is locked skipped
C:\Documents and Settings\Owner\Templates\excel4.xls Object is locked skipped
C:\Documents and Settings\Owner\Templates\lotus.wk4 Object is locked skipped
C:\Documents and Settings\Owner\Templates\powerpnt.ppt Object is locked skipped
C:\Documents and Settings\Owner\Templates\presenta.shw Object is locked skipped
C:\Documents and Settings\Owner\Templates\quattro.wb2 Object is locked skipped
C:\Documents and Settings\Owner\Templates\sndrec.wav Object is locked skipped
C:\Documents and Settings\Owner\Templates\winword.doc Object is locked skipped
C:\Documents and Settings\Owner\Templates\winword2.doc Object is locked skipped
C:\Documents and Settings\Owner\Templates\wordpfct.wpd Object is locked skipped
C:\Documents and Settings\Owner\Templates\wordpfct.wpg Object is locked skipped
C:\Documents and Settings\Owner\UserData\3F7FFVXO\oWindowsUpdate[1].xml Object is locked skipped
C:\Documents and Settings\Owner\UserData\EB6FRHHR\dhtml[1].xml Object is locked skipped
C:\Documents and Settings\Owner\UserData\index.dat Object is locked skipped
C:\Documents and Settings\Owner\UserData\M64Q3SQA\oWindowsUpdate[1].xml Object is locked skipped
C:\Program Files\InstallShield Installation Information\{0AD84416-63A4-4CF3-BDDF-8FA866711FB0}\setup.ilg Object is locked skipped
C:\Program Files\InstallShield Installation Information\{10798AE3-DCBB-43C3-9C93-C23512427E25}\setup.ilg Object is locked skipped
C:\Program Files\InstallShield Installation Information\{7D268154-7A31-40F2-9779-7A250914BB39}\setup.ilg Object is locked skipped
C:\Program Files\InstallShield Installation Information\{93656878-FF8B-4935-99BB-F3F260037C57}\Setup.ilg Object is locked skipped
C:\Program Files\MP3 Player Utilities 3.68\DelDrv.exe Object is locked skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\ccayjcwg.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.qof skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\jauxgdig.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.qot skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\tmtqoxtn.dll.vir Infected: not-a-virus:AdWare.Win32.Virtumonde.pon skipped
C:\QooBox\Quarantine\C\WINDOWS\system32\xxyxxvvU.dll.vir Infected: Trojan.Win32.Monder.gen skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1214\A0295464.exe/crack.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.pae skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1214\A0295464.exe/keygen.exe Infected: Trojan-Downloader.Win32.Small.ury skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1214\A0295464.exe/serial.exe Infected: Trojan-Downloader.Win32.Small.ujl skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1214\A0295464.exe RAR: infected - 3 skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1216\A0296184.exe/crack.exe Infected: not-a-virus:AdWare.Win32.Virtumonde.pae skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1216\A0296184.exe/keygen.exe Infected: Trojan-Downloader.Win32.Small.ury skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1216\A0296184.exe/serial.exe Infected: Trojan-Downloader.Win32.Small.ujl skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1216\A0296184.exe RAR: infected - 3 skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1218\A0296210.exe Infected: Trojan.Win32.Scapur.k skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1218\A0296211.exe/data0001 Infected: not-a-virus:AdWare.Win32.PurityScan.gp skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1218\A0296211.exe NSIS: infected - 1 skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1218\A0296212.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.qpq skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1225\A0297304.exe Infected: not-a-virus:FraudTool.Win32.SpywareDetector.d skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1225\A0297305.exe Infected: not-a-virus:Downloader.Win32.WinFixer.fs skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1233\A0297620.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.qof skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1233\A0297622.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.qot skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1233\A0297625.dll Infected: not-a-virus:AdWare.Win32.Virtumonde.pon skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1233\A0297626.dll Infected: Trojan.Win32.Monder.gen skipped
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1234\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\S86E9E1B4.tmp Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\drivers\sptd.sys Object is locked skipped
C:\WINDOWS\system32\drivers\sptd9149.sys Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\IEFilter1.dll Infected: Trojan.Win32.Agent.fd skipped
C:\WINDOWS\system32\kcbabsrr.ini Infected: not-a-virus:AdWare.Win32.Sahat.ao skipped
C:\WINDOWS\system32\msfdje.gif Infected: not-a-virus:AdWare.Win32.ClientMan skipped
C:\WINDOWS\system32\mshpeb.dll Infected: not-a-virus:AdWare.Win32.WebSearch.c skipped
C:\WINDOWS\system32\MSIEHelper.dll Object is locked skipped
C:\WINDOWS\system32\msoiak.dll Infected: not-a-virus:AdWare.Win32.ClientMan skipped
C:\WINDOWS\system32\q5qdkfqi.ini Infected: not-a-virus:AdWare.Win32.Sahat.ao skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
C:\ZachShit\mIRC\mirc.exe Infected: not-a-virus:Client-IRC.Win32.mIRC.614 skipped
D:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1234\change.log Object is locked skipped
Scan process completed.
|
|
| Back to top |
|
 |
XxMayhemxX
Sergeant
Joined: Mar 16, 2006
Posts: 76
|
| Posted: Fri May 09, 2008 9:24 am Post subject: |
|
|
HiJackThis Log
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:19:57 AM, on 5/9/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Comodo\Firewall\cmdagent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\D-Tools\daemon.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Comodo\Firewall\CPF.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=488
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - (no file)
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\Comodo\Firewall\CPF.exe" /background
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EasyLinkAdvisor] "C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe" /startup
O4 - HKCU\..\Run: [igndlm.exe] C:\Program Files\IGN\Download Manager\DLM.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: Dice Derby by pogo - http://checkeredflag.pogo.com/applet-5.9.3.38/checkeredflag/checkeredflag-ob-assets.cab
O16 - DPF: High Stakes Pool by pogo - http://pool2.pogo.com/applet-5.9.3.38/pool2/pool-ob-assets.cab
O16 - DPF: Texas Hold'em Poker by pogo - http://holdem2.pogo.com/applet-5.9.3.38/holdem/holdem-ob-assets.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - https://www-secure.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
O16 - DPF: {26CBF141-7D0F-46E1-AA06-718958B6E4D2} - http://download.ebay.com/turbo_lister/US/install.cab
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/v45/yacscom.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.2.2.89.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/EPUWALControl_v1-0-3-12.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1197072496250
O16 - DPF: {6BB594E2-6E4D-4CC9-98B0-931C323F9165} (DepHlp Control) - http://mirror.worldwinner.com/games/shared/dephlp.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.crucial.com/controls/cpcScanner.cab
O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} (SABScanProcesses Class) - http://www.superadblocker.com/activex/sabspx.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {CC32D4D8-2A0B-4CEB-B105-C9B968379105} (CGameManagerCtrl Object) - https://disney.go.com/games/downloads/gamemanager/DIGGameManager.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://www-secure.symantec.com/techsupp/asa/ctrl/SymAData.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Comodo Application Agent (CmdAgent) - COMODO - C:\Program Files\Comodo\Firewall\cmdagent.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\WINDOWS\System32\nvsvc32.exe (file missing)
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Prevx Agent (PREVXAgent) - Unknown owner - C:\Program Files\Prevx1\PXAgent.exe (file missing)
O23 - Service: Super Ad Blocker Service (SABSVC) - SuperAdBlocker.com - C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABSVC.EXE
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
--
End of file - 8312 bytes
Final Thoughts and Analyisis
I didnt push the button for kaspersky to clean or remove or whatever.. should i of? all i did was save log...
kasperssky scanned the entire hard drives.. took forever.. and do i have to do it again????
Combofix worked good
Computer seems the same.. too early to tell if it helped really.[/b]
|
|
| Back to top |
|
|
markamus
1st Responder
Premium Member
Joined: May 06, 2004
Posts: 973
|
| Posted: Fri May 09, 2008 2:06 pm Post subject: |
|
|
Hi XxMayhemxX,
Please download the Killbox.
Unzip it to the desktop but do NOT run it yet.
Copy the text to a Notepad file and save it to your desktop! We will need the file later.
Then please reboot into Safe Mode by restarting your computer and pressing F8 as your computer is booting up. Then select the Safe Mode option.
Once in Safe Mode, please run Killbox.
Select "Delete on Reboot".
Open the text file with these instructions in it, and copy the file names below to the clipboard by highlighting them and pressing Control-C:
C:\WINDOWS\system32\IEFilter1.dll
C:\WINDOWS\system32\kcbabsrr.ini
C:\WINDOWS\system32\msfdje.gif
C:\WINDOWS\system32\mshpeb.dll
C:\WINDOWS\system32\msoiak.dll
C:\WINDOWS\system32\q5qdkfqi.ini
Return to Killbox, go to the File menu, and choose "Paste from Clipboard".
Click the red-and-white "Delete File" button. Click "Yes" at the Delete on Reboot prompt. Click "No" at the Pending Operations prompt.
If your computer does not restart automatically, please restart it manually.
Then, Please download Malwarebytes Anti-Malware from Here or Here
Double Click mbam-setup.exe to install the application.
- Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
- If an update is found, it will download and install the latest version.
- Once the program has loaded, select Perform Quick Scan, then click Scan.
- The scan may take some time to finish,so please be patient.
- When the scan is complete, click OK, then Show Results to view the results.
- Make sure that everything is checked, and click Remove Selected.
- When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
- The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
- Copy&Paste the entire report in your next reply along with a fresh HijackThis log.
Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer, please do so immediately.
_________________
Proud UNITE and ASAP member
|
|
| Back to top |
|
|
XxMayhemxX
Sergeant
Joined: Mar 16, 2006
Posts: 76
|
| Posted: Sat May 10, 2008 4:39 am Post subject: trojan.... |
|
|
ok i wil do that.. yeah somthings definetly wrong.
When i type it is showing up backwards... and i lost my account a few days.. and i think the hotmail options page redirects to some other fake hotmail site..
its wierd...
someones tampering with my hotmail...
|
|
| Back to top |
|
|
XxMayhemxX
Sergeant
Joined: Mar 16, 2006
Posts: 76
|
| Posted: Sat May 10, 2008 6:16 am Post subject: ok after killbox and malwarebytes |
|
|
MalwareBytes Log
Malwarebytes' Anti-Malware 1.11
Database version: 660
Scan type: Full Scan (C:\|D:\|)
Objects scanned: 144313
Time elapsed: 59 minute(s), 9 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 4
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
C:\QooBox\Quarantine\C\WINDOWS\system32\qlbpedpo.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1220\A0296717.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1220\A0296718.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{E0C22EC0-D318-4D95-967D-A5C2B4653ED0}\RP1233\A0297624.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
(Malware bytes has found and supposedly eliminated Vundo trojan before.. but now its back again?..unless i didnt eliminate it completely the first time.. ps... this was about a week ago or so)
New HijackThis Log
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:13:35 AM, on 5/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Comodo\Firewall\cmdagent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\D-Tools\daemon.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Comodo\Firewall\CPF.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=488
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - (no file)
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\Comodo\Firewall\CPF.exe" /background
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EasyLinkAdvisor] "C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe" /startup
O4 - HKCU\..\Run: [igndlm.exe] C:\Program Files\IGN\Download Manager\DLM.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: Dice Derby by pogo - http://checkeredflag.pogo.com/applet-5.9.3.38/checkeredflag/checkeredflag-ob-assets.cab
O16 - DPF: High Stakes Pool by pogo - http://pool2.pogo.com/applet-5.9.3.38/pool2/pool-ob-assets.cab
O16 - DPF: Texas Hold'em Poker by pogo - http://holdem2.pogo.com/applet-5.9.3.38/holdem/holdem-ob-assets.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - https://www-secure.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
O16 - DPF: {26CBF141-7D0F-46E1-AA06-718958B6E4D2} - http://download.ebay.com/turbo_lister/US/install.cab
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/v45/yacscom.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.2.2.89.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/EPUWALControl_v1-0-3-12.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1197072496250
O16 - DPF: {6BB594E2-6E4D-4CC9-98B0-931C323F9165} (DepHlp Control) - http://mirror.worldwinner.com/games/shared/dephlp.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.crucial.com/controls/cpcScanner.cab
O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} (SABScanProcesses Class) - http://www.superadblocker.com/activex/sabspx.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {CC32D4D8-2A0B-4CEB-B105-C9B968379105} (CGameManagerCtrl Object) - https://disney.go.com/games/downloads/gamemanager/DIGGameManager.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://www-secure.symantec.com/techsupp/asa/ctrl/SymAData.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Comodo Application Agent (CmdAgent) - COMODO - C:\Program Files\Comodo\Firewall\cmdagent.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\WINDOWS\System32\nvsvc32.exe (file missing)
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Prevx Agent (PREVXAgent) - Unknown owner - C:\Program Files\Prevx1\PXAgent.exe (file missing)
O23 - Service: Super Ad Blocker Service (SABSVC) - SuperAdBlocker.com - C:\Program Files\SuperAdBlocker.com\Super Ad Blocker\SABSVC.EXE
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
--
End of file - 8280 bytes
|
|
| Back to top |
|
|
markamus
1st Responder
Premium Member
Joined: May 06, 2004
Posts: 973
|
| Posted: Sun May 11, 2008 5:55 am Post subject: |
|
|
Hi XxMayhemxX,
The files reported by MalwareBytes are quarantined and pose no threat.
Let's fix a couple of empty entries in Hijackthis.
Open HJT by navigating to your HijackThis folder and double clicking on HijackThis.exe. Select the second button entitled "Do a system scan only".
Now select the followng entries by placing a tick in the left hand check box
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: (no name) - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - (no file)
Once you have selected all entries, close all running programs then click once on the "fix checked" button to clear the entries from your log.
----------------------------------------------------------------------------------------------
Next, reboot your PC normally, then let me know how everything is running.
Thanks,
markamus
_________________
Proud UNITE and ASAP member
|
|
| Back to top |
|
|
XxMayhemxX
Sergeant
Joined: Mar 16, 2006
Posts: 76
|
| Posted: Mon May 12, 2008 8:56 am Post subject: hi< | | |
Forum FAQ
Search
Usergroups
Profile
Login to check your private messages
Login
