FaRSeeR

Members
  • Content Count

    82
  • Joined

  • Last visited

Community Reputation

0 Neutral

About FaRSeeR

  • Rank
    Advanced Member
  • Birthday 09/19/1989

Contact Methods

Profile Information

  • Location
    Australia
  1. but that really inset fair that u deny me help what kinda site is that u basically have a forum for people who aren't as knowledgeable at stuff as the comp tech's u act like computers never get infected and that makes u better then me because u no how fix the problem i haven't done anything wrong.. im simply using the forums as it was ment to be intended.. i simply anit smart at computer stuff i have work i do and my kid's play on it and download game's i simply cant do my research with my browser not working.. at least help me with this then i wont even bother asking anymore because ive been with ad-aware.. for a long time.. and every time i try to scan with it and when it picks up the virus it shuts off my comp ... not trying to be rude or anything but like ofc i read what u say but somehow stuff get's on..
  2. Hey again.. yes again :/ sadly i always have problems but this time i dont no how it occured or anything simply 1 day i was trying to search the web google.com etc and when i search for something it will display the results(the links) then when i click on the links it will take me to a site that isent what i asked for people said it was bad host files or something any help would be much apreicated and sorry if i cause problems for people.
  3. okay ty i dident mean to p1ss anyone off or anything but in the past i did not waste the helpers time just wanted to clear that up since u must have miss understood it anit my fault that im fixing this mess that i did not create but okay thx for the advise and ty u can close the topic
  4. i think i also got a keylogger on my computer... how can i remove these .
  5. these ones i could not find u sure that they are the right ones? Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 7:58:37 PM, on 30/10/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\VentSrv\ventrilo_svc.exe C:\Program Files\VentSrv\ventrilo_srv.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\FixCamera.exe C:\WINDOWS\tsnp2std.exe C:\WINDOWS\vsnp2std.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Ventrilo\Ventrilo.exe C:\Program Files\Ventrilo\Ventrilo.exe C:\Program Files\AIM6\aim6.exe C:\Program Files\AIM6\aolsoftware.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R3 - URLSearchHook: AOLSearchHook Class - {54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - C:\Program Files\AOL Search\AOLSearch.dll R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Warkeys Update.lnk = C:\Documents and Settings\Justin\Desktop\Warkeys\AutoWarkey\AutoHotkey\AutoHotkey.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: PalTalk.lnk = C:\Program Files\Paltalk Messenger\paltalk.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1202728700234 O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: !saswinlogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: Ventrilo - Unknown owner - C:\Program Files\VentSrv\ventrilo_svc.exe -- End of file - 8115 bytes
  6. --------------------\\ Lop S&D 4.2.4-7 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 2 X86-based PC ( Multiprocessor Free : Intel® Pentium® D CPU 3.40GHz ) BIOS : Award Modular BIOS v6.00PG USER : Justin ( Administrator ) BOOT : Normal boot A:\ (USB) C:\ (Local Disk) - NTFS - Total : 74 Go Free : 16 Go D:\ (CD or DVD) E:\ (CD or DVD) F:\ (Local Disk) - NTFS - Total : 38 Go Free : 8 Go G:\ (Local Disk) - NTFS - Total : 36 Go Free : 3 Go H:\ (CD or DVD) "C:\Lop SD" ( MAJ : 23-10-2008|23:15 ) Option : [4] ( Thu 30/10/2008|19:53 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script C:\Documents and Settings\All Users\Application Data\SETUP BEND FIRST 01 C:\Program Files\Messenger Plus! Live C:\Program Files\MessengerPlus! 3 C:\DOCUME~1\Justin\LOCALS~1\Temp\MsgPlusUninst.bat C:\DOCUME~1\Justin\LOCALS~1\Temp\MsgPlusUninstall.exe \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX ... C:\DOCUME~1\Justin\LOCALS~1\Temp\MsgPlusUninst.bat -> does not exist ! Deleted! - C:\DOCUME~1\Justin\LOCALS~1\Temp\MsgPlusUninstall.exe Deleted! - C:\Documents and Settings\All Users\Application Data\SETUP BEND FIRST 01 ... C:\Program Files\Messenger Plus! Live -> does not exist ! ... C:\Program Files\MessengerPlus! 3 -> does not exist ! Deleted! - C:\DOCUME~1\Justin\Cookies\[email protected][1].txt \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing folders in APPLIC~1 [09/06/2008|03:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> Microsoft [02/03/2008|02:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [27/10/2008|05:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe [11/02/2008|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL [11/02/2008|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL OCP [27/04/2008|04:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple [27/04/2008|04:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer [09/06/2008|03:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> avg8 [15/10/2008|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Blizzard [19/02/2008|05:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> FLEXnet [04/05/2008|09:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google [04/05/2008|06:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Kaspersky Lab [10/06/2008|04:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Lavasoft [25/10/2008|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes [11/02/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft [14/08/2008|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft Help [29/03/2008|02:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Swift Sound [11/02/2008|10:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Skype [24/08/2008|03:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Sony [19/10/2008|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy [28/02/2008|01:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [14/10/2008|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TEMP [23/02/2008|01:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Trymedia [29/10/2008|02:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> WLInstaller [05/03/2008|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! [08/05/2008|11:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! Companion [11/02/2008|07:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft [11/02/2008|11:30] C:\DOCUME~1\Justin\APPLIC~1\<DIR> acccore [29/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Address Book [27/10/2008|05:41] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Adobe [15/06/2008|09:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AdobeUM [07/04/2008|11:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ahead [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIM [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIMPro [11/06/2008|12:09] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Apple Computer [27/03/2008|10:44] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Codemasters [23/02/2008|10:21] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DAEMON Tools [11/06/2008|11:50] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DivX [15/02/2008|05:53] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Google [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Hamachi [20/07/2008|05:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Help [11/02/2008|07:51] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Identities [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> IMVU [14/02/2008|09:39] C:\DOCUME~1\Justin\APPLIC~1\<DIR> InstallShield [14/07/2008|10:31] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Macromedia [25/10/2008|12:34] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Malwarebytes [25/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Microsoft [29/06/2008|09:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Mozilla [11/02/2008|10:10] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MSNInstaller [11/02/2008|11:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MySpace [29/03/2008|02:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Swift Sound [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Paltalk [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Publish Providers [24/03/2008|06:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Real [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Recordpad [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Skype [18/01/2008|02:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> skypePM [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony [30/03/2008|12:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony Setup [15/02/2008|05:55] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sun [10/06/2008|01:33] C:\DOCUME~1\Justin\APPLIC~1\<DIR> SUPERAntiSpyware.com [11/02/2008|11:18] C:\DOCUME~1\Justin\APPLIC~1\<DIR> teamspeak2 [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> TeamViewer [26/08/2008|09:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Tourney Master 3 ES1 Ultimate [29/10/2008|03:05] C:\DOCUME~1\Justin\APPLIC~1\<DIR> uTorrent [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ventrilo [04/03/2008|09:42] C:\DOCUME~1\Justin\APPLIC~1\<DIR> vlc [12/06/2008|08:49] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Windows Live Writer [24/07/2008|11:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Xfire [08/05/2008|11:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> yahoo! [09/06/2008|03:06] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft [02/05/2008|01:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> TeamViewer [12/02/2008|01:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Xfire [09/06/2008|03:06] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft [29/03/2008|02:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> NCH Swift Sound [12/02/2008|01:37] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Xfire --------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks [27/10/2008 08:41 AM][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job [11/10/2008 02:59 AM][--a------] C:\WINDOWS\tasks\Schedule Task Weekly.job [11/06/2008 12:04 PM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [25/04/2008 12:27 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT [04/08/2004 12:07 PM][-r-h-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ MsgPlus SPONSOR INSTALLED ! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin] "SponsorInstalled"=dword:00000000 --------------------\\ Listing Folders in C:\Program Files [27/10/2008|05:48] C:\Program Files\<DIR> Adobe [27/03/2008|10:43] C:\Program Files\<DIR> AGEIA Technologies [13/03/2008|05:15] C:\Program Files\<DIR> AIM [11/02/2008|11:29] C:\Program Files\<DIR> AIM6 [29/06/2008|05:24] C:\Program Files\<DIR> America's Army [20/02/2008|12:38] C:\Program Files\<DIR> America's Army Server Manager [11/02/2008|11:29] C:\Program Files\<DIR> AOL [24/02/2008|04:13] C:\Program Files\<DIR> AOL Games [11/02/2008|11:29] C:\Program Files\<DIR> AOL Search [11/06/2008|12:04] C:\Program Files\<DIR> Apple Software Update [12/05/2008|09:57] C:\Program Files\<DIR> Ares [11/02/2008|09:29] C:\Program Files\<DIR> BroadCom GB LAN [22/10/2008|10:26] C:\Program Files\<DIR> BSR Screen Recorder 4 [02/10/2008|11:31] C:\Program Files\<DIR> CamStudio [27/10/2008|05:56] C:\Program Files\<DIR> Common Files [11/02/2008|07:44] C:\Program Files\<DIR> ComPlus Applications [19/02/2008|07:50] C:\Program Files\<DIR> Conduit [24/10/2008|08:33] C:\Program Files\<DIR> DAEMON Tools Lite [12/05/2008|04:36] C:\Program Files\<DIR> Deskshare [08/08/2008|10:57] C:\Program Files\<DIR> directx [29/10/2008|01:48] C:\Program Files\<DIR> DivX [02/10/2008|11:40] C:\Program Files\<DIR> Doom 3 [27/05/2008|02:44] C:\Program Files\<DIR> EA GAMES [11/06/2008|01:37] C:\Program Files\<DIR> Game Cam V2 [28/10/2008|04:19] C:\Program Files\<DIR> Garena [11/02/2008|09:29] C:\Program Files\<DIR> Gigabyte [14/07/2008|10:30] C:\Program Files\<DIR> Google [05/09/2008|08:32] C:\Program Files\<DIR> IMVU [02/10/2008|11:48] C:\Program Files\<DIR> InstallShield Installation Information [11/02/2008|09:27] C:\Program Files\<DIR> Intel [11/06/2008|11:56] C:\Program Files\<DIR> Internet Explorer [27/04/2008|04:09] C:\Program Files\<DIR> iPod [27/04/2008|04:09] C:\Program Files\<DIR> iTunes [26/10/2008|02:49] C:\Program Files\<DIR> Java [02/07/2008|07:37] C:\Program Files\<DIR> KLC [10/06/2008|04:39] C:\Program Files\<DIR> Lavasoft [25/10/2008|12:34] C:\Program Files\<DIR> Malwarebytes' Anti-Malware [04/03/2008|12:26] C:\Program Files\<DIR> Messenger [01/05/2008|12:50] C:\Program Files\<DIR> MetaStream [11/02/2008|07:47] C:\Program Files\<DIR> microsoft frontpage [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Office [26/02/2008|04:39] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Visual Studio [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Works [30/03/2008|01:45] C:\Program Files\<DIR> Movie Maker [30/10/2008|07:41] C:\Program Files\<DIR> Mozilla Firefox [30/03/2008|12:29] C:\Program Files\<DIR> MSBuild [11/02/2008|10:10] C:\Program Files\<DIR> MSN [11/02/2008|07:44] C:\Program Files\<DIR> MSN Gaming Zone [11/02/2008|11:03] C:\Program Files\<DIR> MySpace [29/03/2008|02:38] C:\Program Files\<DIR> NCH Software [29/03/2008|02:38] C:\Program Files\<DIR> NCH Swift Sound [11/02/2008|08:12] C:\Program Files\<DIR> Nero [11/02/2008|07:45] C:\Program Files\<DIR> NetMeeting [14/02/2008|09:39] C:\Program Files\<DIR> Ocean Technologies & Media [11/02/2008|07:44] C:\Program Files\<DIR> Online Services [11/02/2008|07:45] C:\Program Files\<DIR> Outlook Express [09/06/2008|03:07] C:\Program Files\<DIR> Paltalk Messenger [18/10/2008|08:40] C:\Program Files\<DIR> PC Doc Pro [26/03/2008|02:29] C:\Program Files\<DIR> PlayLinc [27/04/2008|04:09] C:\Program Files\<DIR> QuickTime [11/03/2008|10:43] C:\Program Files\<DIR> Real [11/02/2008|09:32] C:\Program Files\<DIR> Realtek [30/03/2008|12:26] C:\Program Files\<DIR> Reference Assemblies [19/10/2008|04:39] C:\Program Files\<DIR> Registry Easy [11/02/2008|10:59] C:\Program Files\<DIR> Skype [24/08/2008|03:22] C:\Program Files\<DIR> Sony [30/03/2008|12:20] C:\Program Files\<DIR> Sony Setup [19/10/2008|04:15] C:\Program Files\<DIR> Spybot - Search & Destroy [11/02/2008|11:29] C:\Program Files\<DIR> StealthBot [02/10/2008|11:51] C:\Program Files\<DIR> Steam [19/07/2008|07:27] C:\Program Files\<DIR> Sun [10/06/2008|01:33] C:\Program Files\<DIR> SUPERAntiSpyware [11/02/2008|11:18] C:\Program Files\<DIR> Teamspeak2_RC2 [19/09/2008|12:24] C:\Program Files\<DIR> TeamViewer3 [02/10/2008|12:34] C:\Program Files\<DIR> TeaTimer (Spybot - Search & Destroy) [25/04/2008|11:17] C:\Program Files\<DIR> Trend Micro [26/03/2008|02:08] C:\Program Files\<DIR> Ubisoft [11/02/2008|07:51] C:\Program Files\<DIR> Uninstall Information [27/02/2008|01:35] C:\Program Files\<DIR> USBToolbox [29/06/2008|10:17] C:\Program Files\<DIR> uTorrent [11/02/2008|10:29] C:\Program Files\<DIR> Ventrilo [16/06/2008|09:57] C:\Program Files\<DIR> VentSrv [04/03/2008|09:42] C:\Program Files\<DIR> VideoLAN [24/08/2008|03:22] C:\Program Files\<DIR> Vstplugins [30/10/2008|10:24] C:\Program Files\<DIR> Warcraft III [02/10/2008|11:39] C:\Program Files\<DIR> WC3Banlist [26/10/2008|04:56] C:\Program Files\<DIR> Windows Live [27/10/2008|08:40] C:\Program Files\<DIR> Windows Live Favorites [26/10/2008|12:55] C:\Program Files\<DIR> Windows Live Safety Center [27/10/2008|08:41] C:\Program Files\<DIR> Windows Live Toolbar [22/02/2008|06:34] C:\Program Files\<DIR> Windows Media Connect 2 [23/02/2008|07:02] C:\Program Files\<DIR> Windows Media Player [11/02/2008|07:44] C:\Program Files\<DIR> Windows NT [11/02/2008|07:46] C:\Program Files\<DIR> WindowsUpdate [16/05/2008|10:17] C:\Program Files\<DIR> WinPcap [20/07/2008|05:37] C:\Program Files\<DIR> WinRAR [12/05/2008|10:46] C:\Program Files\<DIR> Wolfenstein - Enemy Territory [27/10/2008|07:47] C:\Program Files\<DIR> World of Warcraft [11/02/2008|07:47] C:\Program Files\<DIR> xerox [24/07/2008|11:19] C:\Program Files\<DIR> Xfire [04/03/2008|12:26] C:\Program Files\<DIR> Xvid [11/02/2008|10:22] C:\Program Files\<DIR> Yahoo! --------------------\\ Listing Folders in C:\Program Files\Common Files [27/10/2008|05:56] C:\Program Files\Common Files\<DIR> Adobe [11/02/2008|08:13] C:\Program Files\Common Files\<DIR> Ahead [11/02/2008|11:29] C:\Program Files\Common Files\<DIR> AOL [27/04/2008|04:08] C:\Program Files\Common Files\<DIR> Apple [18/09/2008|12:51] C:\Program Files\Common Files\<DIR> Blizzard Entertainment [11/02/2008|08:17] C:\Program Files\Common Files\<DIR> DESIGNER [24/05/2008|04:20] C:\Program Files\Common Files\<DIR> EasyInfo [27/02/2008|01:35] C:\Program Files\Common Files\<DIR> InstallShield [15/02/2008|05:52] C:\Program Files\Common Files\<DIR> Java [27/10/2008|08:39] C:\Program Files\Common Files\<DIR> Microsoft Shared [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> MSSoap [13/03/2008|05:15] C:\Program Files\Common Files\<DIR> Nullsoft [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> ODBC [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> Real [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> Services [11/02/2008|10:59] C:\Program Files\Common Files\<DIR> Skype [02/03/2008|07:09] C:\Program Files\Common Files\<DIR> snp2std [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> SpeechEngines [11/02/2008|08:15] C:\Program Files\Common Files\<DIR> System [26/02/2008|04:33] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller [10/06/2008|04:39] C:\Program Files\Common Files\<DIR> Wise Installation Wizard [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> xing shared --------------------\\ Process ( 41 Processes ) ... OK ! --------------------\\ Searching with S_Lop No Lop folder found ! --------------------\\ Searching for Lop Files - Folders No Lop folder found ! --------------------\\ Searching within the Registry ..... OK ! --------------------\\ Checking the Hosts file Hosts file CLEAN --------------------\\ Searching for hidden files with Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-10-30 19:54:59 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 120 --------------------\\ Searching for other infections No other infections found ! [F:1580][D:25]-> C:\DOCUME~1\Justin\LOCALS~1\Temp [F:89][D:0]-> C:\DOCUME~1\Justin\Cookies [F:928][D:10]-> C:\DOCUME~1\Justin\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - Sun 26/10/2008| 0:18 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - Tue 28/10/2008|19:48 - Option : [1] 3 - "C:\Lop SD\LopR_3.txt" - Tue 28/10/2008|22:01 - Option : [3] 4 - "C:\Lop SD\LopR_4.txt" - Wed 29/10/2008|12:25 - Option : [1] 5 - "C:\Lop SD\LopR_5.txt" - Thu 30/10/2008| 3:33 - Option : [1] 6 - "C:\Lop SD\LopR_6.txt" - Thu 30/10/2008| 8:46 - Option : [3] 7 - "C:\Lop SD\LopR_7.txt" - Thu 30/10/2008|19:56 - Option : [4] --------------------\\ Scan completed at 19:56:28
  7. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 8:47:14 AM, on 30/10/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\VentSrv\ventrilo_svc.exe C:\Program Files\VentSrv\ventrilo_srv.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\FixCamera.exe C:\WINDOWS\tsnp2std.exe C:\WINDOWS\vsnp2std.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Documents and Settings\Justin\Desktop\StealthBot\WestBot\StealthBot v2.6R3.exe C:\Documents and Settings\Justin\Desktop\StealthBot\Eurobot\StealthBot v2.6R3.exe C:\WINDOWS\explorer.exe C:\Program Files\Ventrilo\Ventrilo.exe C:\WINDOWS\system32\PnkBstrB.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Windows Live\Messenger\Windows Live Messenger.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R3 - URLSearchHook: AOLSearchHook Class - {54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - C:\Program Files\AOL Search\AOLSearch.dll R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [First 01 Poll Send] C:\Documents and Settings\All Users\Application Data\SETUP BEND FIRST 01\burn title.exe O4 - HKLM\..\RunOnce: [MessengerPlusUninstall] C:\WINDOWS\system32\cmd.exe /C "C:\DOCUME~1\Justin\LOCALS~1\Temp\MsgPlusUninst.bat" O4 - HKLM\..\RunOnce: [MessengerPlusLiveUninstall] "C:\DOCUME~1\Justin\LOCALS~1\Temp\MsgPlusUninstall.exe" /Cleanup O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Warkeys Update.lnk = C:\Documents and Settings\Justin\Desktop\Warkeys\AutoWarkey\AutoHotkey\AutoHotkey.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: PalTalk.lnk = C:\Program Files\Paltalk Messenger\paltalk.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1202728700234 O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: !saswinlogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: Ventrilo - Unknown owner - C:\Program Files\VentSrv\ventrilo_svc.exe -- End of file - 8816 bytes
  8. --------------------\\ Lop S&D 4.2.4-7 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 2 X86-based PC ( Multiprocessor Free : Intel® Pentium® D CPU 3.40GHz ) BIOS : Award Modular BIOS v6.00PG USER : Justin ( Administrator ) BOOT : Normal boot A:\ (USB) C:\ (Local Disk) - NTFS - Total : 74 Go Free : 16 Go D:\ (CD or DVD) E:\ (CD or DVD) F:\ (Local Disk) - NTFS - Total : 38 Go Free : 8 Go G:\ (Local Disk) - NTFS - Total : 36 Go Free : 3 Go H:\ (CD or DVD) "C:\Lop SD" ( MAJ : 23-10-2008|23:15 ) Option : [3] ( Thu 30/10/2008| 8:44 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX Deleted! - C:\DOCUME~1\Justin\LOCALS~1\Temp\msgpl_15b1.exe Deleted! - C:\DOCUME~1\Justin\Cookies\[email protected][1].txt \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing folders in APPLIC~1 [09/06/2008|03:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> Microsoft [02/03/2008|02:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [27/10/2008|05:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe [11/02/2008|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL [11/02/2008|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL OCP [27/04/2008|04:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple [27/04/2008|04:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer [09/06/2008|03:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> avg8 [15/10/2008|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Blizzard [19/02/2008|05:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> FLEXnet [04/05/2008|09:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google [04/05/2008|06:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Kaspersky Lab [10/06/2008|04:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Lavasoft [25/10/2008|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes [11/02/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft [14/08/2008|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft Help [29/03/2008|02:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Swift Sound [27/10/2008|08:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SETUP BEND FIRST 01 [11/02/2008|10:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Skype [24/08/2008|03:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Sony [19/10/2008|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy [28/02/2008|01:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [14/10/2008|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TEMP [23/02/2008|01:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Trymedia [29/10/2008|02:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> WLInstaller [05/03/2008|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! [08/05/2008|11:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! Companion [11/02/2008|07:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft [11/02/2008|11:30] C:\DOCUME~1\Justin\APPLIC~1\<DIR> acccore [29/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Address Book [27/10/2008|05:41] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Adobe [15/06/2008|09:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AdobeUM [07/04/2008|11:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ahead [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIM [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIMPro [11/06/2008|12:09] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Apple Computer [27/03/2008|10:44] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Codemasters [23/02/2008|10:21] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DAEMON Tools [11/06/2008|11:50] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DivX [15/02/2008|05:53] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Google [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Hamachi [20/07/2008|05:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Help [11/02/2008|07:51] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Identities [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> IMVU [14/02/2008|09:39] C:\DOCUME~1\Justin\APPLIC~1\<DIR> InstallShield [14/07/2008|10:31] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Macromedia [25/10/2008|12:34] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Malwarebytes [25/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Microsoft [29/06/2008|09:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Mozilla [11/02/2008|10:10] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MSNInstaller [11/02/2008|11:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MySpace [29/03/2008|02:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Swift Sound [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Paltalk [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Publish Providers [24/03/2008|06:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Real [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Recordpad [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Skype [18/01/2008|02:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> skypePM [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony [30/03/2008|12:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony Setup [15/02/2008|05:55] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sun [10/06/2008|01:33] C:\DOCUME~1\Justin\APPLIC~1\<DIR> SUPERAntiSpyware.com [11/02/2008|11:18] C:\DOCUME~1\Justin\APPLIC~1\<DIR> teamspeak2 [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> TeamViewer [26/08/2008|09:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Tourney Master 3 ES1 Ultimate [29/10/2008|03:05] C:\DOCUME~1\Justin\APPLIC~1\<DIR> uTorrent [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ventrilo [04/03/2008|09:42] C:\DOCUME~1\Justin\APPLIC~1\<DIR> vlc [12/06/2008|08:49] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Windows Live Writer [24/07/2008|11:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Xfire [08/05/2008|11:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> yahoo! [09/06/2008|03:06] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft [02/05/2008|01:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> TeamViewer [12/02/2008|01:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Xfire [09/06/2008|03:06] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft [29/03/2008|02:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> NCH Swift Sound [12/02/2008|01:37] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Xfire --------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks [27/10/2008 08:41 AM][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job [11/10/2008 02:59 AM][--a------] C:\WINDOWS\tasks\Schedule Task Weekly.job [11/06/2008 12:04 PM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [25/04/2008 12:27 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT [04/08/2004 12:07 PM][-r-h-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ MsgPlus SPONSOR INSTALLED ! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin] "SponsorInstalled"=dword:00000000 --------------------\\ Listing Folders in C:\Program Files [27/10/2008|05:48] C:\Program Files\<DIR> Adobe [27/03/2008|10:43] C:\Program Files\<DIR> AGEIA Technologies [13/03/2008|05:15] C:\Program Files\<DIR> AIM [11/02/2008|11:29] C:\Program Files\<DIR> AIM6 [29/06/2008|05:24] C:\Program Files\<DIR> America's Army [20/02/2008|12:38] C:\Program Files\<DIR> America's Army Server Manager [11/02/2008|11:29] C:\Program Files\<DIR> AOL [24/02/2008|04:13] C:\Program Files\<DIR> AOL Games [11/02/2008|11:29] C:\Program Files\<DIR> AOL Search [11/06/2008|12:04] C:\Program Files\<DIR> Apple Software Update [12/05/2008|09:57] C:\Program Files\<DIR> Ares [11/02/2008|09:29] C:\Program Files\<DIR> BroadCom GB LAN [22/10/2008|10:26] C:\Program Files\<DIR> BSR Screen Recorder 4 [02/10/2008|11:31] C:\Program Files\<DIR> CamStudio [27/10/2008|05:56] C:\Program Files\<DIR> Common Files [11/02/2008|07:44] C:\Program Files\<DIR> ComPlus Applications [19/02/2008|07:50] C:\Program Files\<DIR> Conduit [24/10/2008|08:33] C:\Program Files\<DIR> DAEMON Tools Lite [12/05/2008|04:36] C:\Program Files\<DIR> Deskshare [08/08/2008|10:57] C:\Program Files\<DIR> directx [29/10/2008|01:48] C:\Program Files\<DIR> DivX [02/10/2008|11:40] C:\Program Files\<DIR> Doom 3 [27/05/2008|02:44] C:\Program Files\<DIR> EA GAMES [11/06/2008|01:37] C:\Program Files\<DIR> Game Cam V2 [28/10/2008|04:19] C:\Program Files\<DIR> Garena [11/02/2008|09:29] C:\Program Files\<DIR> Gigabyte [14/07/2008|10:30] C:\Program Files\<DIR> Google [05/09/2008|08:32] C:\Program Files\<DIR> IMVU [02/10/2008|11:48] C:\Program Files\<DIR> InstallShield Installation Information [11/02/2008|09:27] C:\Program Files\<DIR> Intel [11/06/2008|11:56] C:\Program Files\<DIR> Internet Explorer [27/04/2008|04:09] C:\Program Files\<DIR> iPod [27/04/2008|04:09] C:\Program Files\<DIR> iTunes [26/10/2008|02:49] C:\Program Files\<DIR> Java [02/07/2008|07:37] C:\Program Files\<DIR> KLC [10/06/2008|04:39] C:\Program Files\<DIR> Lavasoft [25/10/2008|12:34] C:\Program Files\<DIR> Malwarebytes' Anti-Malware [04/03/2008|12:26] C:\Program Files\<DIR> Messenger [30/10/2008|03:29] C:\Program Files\<DIR> Messenger Plus! Live [29/10/2008|02:13] C:\Program Files\<DIR> MessengerPlus! 3 [01/05/2008|12:50] C:\Program Files\<DIR> MetaStream [11/02/2008|07:47] C:\Program Files\<DIR> microsoft frontpage [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Office [26/02/2008|04:39] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Visual Studio [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Works [30/03/2008|01:45] C:\Program Files\<DIR> Movie Maker [29/10/2008|07:59] C:\Program Files\<DIR> Mozilla Firefox [30/03/2008|12:29] C:\Program Files\<DIR> MSBuild [11/02/2008|10:10] C:\Program Files\<DIR> MSN [11/02/2008|07:44] C:\Program Files\<DIR> MSN Gaming Zone [11/02/2008|11:03] C:\Program Files\<DIR> MySpace [29/03/2008|02:38] C:\Program Files\<DIR> NCH Software [29/03/2008|02:38] C:\Program Files\<DIR> NCH Swift Sound [11/02/2008|08:12] C:\Program Files\<DIR> Nero [11/02/2008|07:45] C:\Program Files\<DIR> NetMeeting [14/02/2008|09:39] C:\Program Files\<DIR> Ocean Technologies & Media [11/02/2008|07:44] C:\Program Files\<DIR> Online Services [11/02/2008|07:45] C:\Program Files\<DIR> Outlook Express [09/06/2008|03:07] C:\Program Files\<DIR> Paltalk Messenger [18/10/2008|08:40] C:\Program Files\<DIR> PC Doc Pro [26/03/2008|02:29] C:\Program Files\<DIR> PlayLinc [27/04/2008|04:09] C:\Program Files\<DIR> QuickTime [11/03/2008|10:43] C:\Program Files\<DIR> Real [11/02/2008|09:32] C:\Program Files\<DIR> Realtek [30/03/2008|12:26] C:\Program Files\<DIR> Reference Assemblies [19/10/2008|04:39] C:\Program Files\<DIR> Registry Easy [11/02/2008|10:59] C:\Program Files\<DIR> Skype [24/08/2008|03:22] C:\Program Files\<DIR> Sony [30/03/2008|12:20] C:\Program Files\<DIR> Sony Setup [19/10/2008|04:15] C:\Program Files\<DIR> Spybot - Search & Destroy [11/02/2008|11:29] C:\Program Files\<DIR> StealthBot [02/10/2008|11:51] C:\Program Files\<DIR> Steam [19/07/2008|07:27] C:\Program Files\<DIR> Sun [10/06/2008|01:33] C:\Program Files\<DIR> SUPERAntiSpyware [11/02/2008|11:18] C:\Program Files\<DIR> Teamspeak2_RC2 [19/09/2008|12:24] C:\Program Files\<DIR> TeamViewer3 [02/10/2008|12:34] C:\Program Files\<DIR> TeaTimer (Spybot - Search & Destroy) [25/04/2008|11:17] C:\Program Files\<DIR> Trend Micro [26/03/2008|02:08] C:\Program Files\<DIR> Ubisoft [11/02/2008|07:51] C:\Program Files\<DIR> Uninstall Information [27/02/2008|01:35] C:\Program Files\<DIR> USBToolbox [29/06/2008|10:17] C:\Program Files\<DIR> uTorrent [11/02/2008|10:29] C:\Program Files\<DIR> Ventrilo [16/06/2008|09:57] C:\Program Files\<DIR> VentSrv [04/03/2008|09:42] C:\Program Files\<DIR> VideoLAN [24/08/2008|03:22] C:\Program Files\<DIR> Vstplugins [29/10/2008|07:34] C:\Program Files\<DIR> Warcraft III [02/10/2008|11:39] C:\Program Files\<DIR> WC3Banlist [26/10/2008|04:56] C:\Program Files\<DIR> Windows Live [27/10/2008|08:40] C:\Program Files\<DIR> Windows Live Favorites [26/10/2008|12:55] C:\Program Files\<DIR> Windows Live Safety Center [27/10/2008|08:41] C:\Program Files\<DIR> Windows Live Toolbar [22/02/2008|06:34] C:\Program Files\<DIR> Windows Media Connect 2 [23/02/2008|07:02] C:\Program Files\<DIR> Windows Media Player [11/02/2008|07:44] C:\Program Files\<DIR> Windows NT [11/02/2008|07:46] C:\Program Files\<DIR> WindowsUpdate [16/05/2008|10:17] C:\Program Files\<DIR> WinPcap [20/07/2008|05:37] C:\Program Files\<DIR> WinRAR [12/05/2008|10:46] C:\Program Files\<DIR> Wolfenstein - Enemy Territory [27/10/2008|07:47] C:\Program Files\<DIR> World of Warcraft [11/02/2008|07:47] C:\Program Files\<DIR> xerox [24/07/2008|11:19] C:\Program Files\<DIR> Xfire [04/03/2008|12:26] C:\Program Files\<DIR> Xvid [11/02/2008|10:22] C:\Program Files\<DIR> Yahoo! --------------------\\ Listing Folders in C:\Program Files\Common Files [27/10/2008|05:56] C:\Program Files\Common Files\<DIR> Adobe [11/02/2008|08:13] C:\Program Files\Common Files\<DIR> Ahead [11/02/2008|11:29] C:\Program Files\Common Files\<DIR> AOL [27/04/2008|04:08] C:\Program Files\Common Files\<DIR> Apple [18/09/2008|12:51] C:\Program Files\Common Files\<DIR> Blizzard Entertainment [11/02/2008|08:17] C:\Program Files\Common Files\<DIR> DESIGNER [24/05/2008|04:20] C:\Program Files\Common Files\<DIR> EasyInfo [27/02/2008|01:35] C:\Program Files\Common Files\<DIR> InstallShield [15/02/2008|05:52] C:\Program Files\Common Files\<DIR> Java [27/10/2008|08:39] C:\Program Files\Common Files\<DIR> Microsoft Shared [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> MSSoap [13/03/2008|05:15] C:\Program Files\Common Files\<DIR> Nullsoft [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> ODBC [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> Real [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> Services [11/02/2008|10:59] C:\Program Files\Common Files\<DIR> Skype [02/03/2008|07:09] C:\Program Files\Common Files\<DIR> snp2std [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> SpeechEngines [11/02/2008|08:15] C:\Program Files\Common Files\<DIR> System [26/02/2008|04:33] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller [10/06/2008|04:39] C:\Program Files\Common Files\<DIR> Wise Installation Wizard [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> xing shared --------------------\\ Process ( 42 Processes ) ... OK ! --------------------\\ Searching with S_Lop No Lop folder found ! --------------------\\ Searching for Lop Files - Folders No Lop folder found ! --------------------\\ Searching within the Registry ..... OK ! --------------------\\ Checking the Hosts file Hosts file CLEAN --------------------\\ Searching for hidden files with Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-10-30 08:45:20 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 120 --------------------\\ Searching for other infections No other infections found ! [F:1559][D:26]-> C:\DOCUME~1\Justin\LOCALS~1\Temp [F:69][D:0]-> C:\DOCUME~1\Justin\Cookies [F:4959][D:8]-> C:\DOCUME~1\Justin\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - Sun 26/10/2008| 0:18 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - Tue 28/10/2008|19:48 - Option : [1] 3 - "C:\Lop SD\LopR_3.txt" - Tue 28/10/2008|22:01 - Option : [3] 4 - "C:\Lop SD\LopR_4.txt" - Wed 29/10/2008|12:25 - Option : [1] 5 - "C:\Lop SD\LopR_5.txt" - Thu 30/10/2008| 3:33 - Option : [1] 6 - "C:\Lop SD\LopR_6.txt" - Thu 30/10/2008| 8:46 - Option : [3] --------------------\\ Scan completed at 8:46:11
  9. --------------------\\ Lop S&D 4.2.4-7 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 2 X86-based PC ( Multiprocessor Free : Intel® Pentium® D CPU 3.40GHz ) BIOS : Award Modular BIOS v6.00PG USER : Justin ( Administrator ) BOOT : Normal boot A:\ (USB) C:\ (Local Disk) - NTFS - Total : 74 Go Free : 16 Go D:\ (CD or DVD) E:\ (CD or DVD) F:\ (Local Disk) - NTFS - Total : 38 Go Free : 8 Go G:\ (Local Disk) - NTFS - Total : 36 Go Free : 3 Go H:\ (CD or DVD) "C:\Lop SD" ( MAJ : 23-10-2008|23:15 ) Option : [3] ( Thu 30/10/2008| 8:44 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX Deleted! - C:\DOCUME~1\Justin\LOCALS~1\Temp\msgpl_15b1.exe Deleted! - C:\DOCUME~1\Justin\Cookies\[email protected][1].txt \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing folders in APPLIC~1 [09/06/2008|03:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> Microsoft [02/03/2008|02:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [27/10/2008|05:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe [11/02/2008|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL [11/02/2008|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL OCP [27/04/2008|04:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple [27/04/2008|04:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer [09/06/2008|03:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> avg8 [15/10/2008|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Blizzard [19/02/2008|05:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> FLEXnet [04/05/2008|09:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google [04/05/2008|06:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Kaspersky Lab [10/06/2008|04:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Lavasoft [25/10/2008|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes [11/02/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft [14/08/2008|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft Help [29/03/2008|02:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Swift Sound [27/10/2008|08:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SETUP BEND FIRST 01 [11/02/2008|10:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Skype [24/08/2008|03:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Sony [19/10/2008|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy [28/02/2008|01:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [14/10/2008|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TEMP [23/02/2008|01:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Trymedia [29/10/2008|02:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> WLInstaller [05/03/2008|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! [08/05/2008|11:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! Companion [11/02/2008|07:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft [11/02/2008|11:30] C:\DOCUME~1\Justin\APPLIC~1\<DIR> acccore [29/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Address Book [27/10/2008|05:41] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Adobe [15/06/2008|09:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AdobeUM [07/04/2008|11:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ahead [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIM [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIMPro [11/06/2008|12:09] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Apple Computer [27/03/2008|10:44] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Codemasters [23/02/2008|10:21] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DAEMON Tools [11/06/2008|11:50] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DivX [15/02/2008|05:53] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Google [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Hamachi [20/07/2008|05:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Help [11/02/2008|07:51] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Identities [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> IMVU [14/02/2008|09:39] C:\DOCUME~1\Justin\APPLIC~1\<DIR> InstallShield [14/07/2008|10:31] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Macromedia [25/10/2008|12:34] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Malwarebytes [25/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Microsoft [29/06/2008|09:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Mozilla [11/02/2008|10:10] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MSNInstaller [11/02/2008|11:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MySpace [29/03/2008|02:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Swift Sound [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Paltalk [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Publish Providers [24/03/2008|06:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Real [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Recordpad [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Skype [18/01/2008|02:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> skypePM [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony [30/03/2008|12:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony Setup [15/02/2008|05:55] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sun [10/06/2008|01:33] C:\DOCUME~1\Justin\APPLIC~1\<DIR> SUPERAntiSpyware.com [11/02/2008|11:18] C:\DOCUME~1\Justin\APPLIC~1\<DIR> teamspeak2 [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> TeamViewer [26/08/2008|09:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Tourney Master 3 ES1 Ultimate [29/10/2008|03:05] C:\DOCUME~1\Justin\APPLIC~1\<DIR> uTorrent [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ventrilo [04/03/2008|09:42] C:\DOCUME~1\Justin\APPLIC~1\<DIR> vlc [12/06/2008|08:49] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Windows Live Writer [24/07/2008|11:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Xfire [08/05/2008|11:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> yahoo! [09/06/2008|03:06] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft [02/05/2008|01:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> TeamViewer [12/02/2008|01:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Xfire [09/06/2008|03:06] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft [29/03/2008|02:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> NCH Swift Sound [12/02/2008|01:37] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Xfire --------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks [27/10/2008 08:41 AM][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job [11/10/2008 02:59 AM][--a------] C:\WINDOWS\tasks\Schedule Task Weekly.job [11/06/2008 12:04 PM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [25/04/2008 12:27 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT [04/08/2004 12:07 PM][-r-h-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ MsgPlus SPONSOR INSTALLED ! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin] "SponsorInstalled"=dword:00000000 --------------------\\ Listing Folders in C:\Program Files [27/10/2008|05:48] C:\Program Files\<DIR> Adobe [27/03/2008|10:43] C:\Program Files\<DIR> AGEIA Technologies [13/03/2008|05:15] C:\Program Files\<DIR> AIM [11/02/2008|11:29] C:\Program Files\<DIR> AIM6 [29/06/2008|05:24] C:\Program Files\<DIR> America's Army [20/02/2008|12:38] C:\Program Files\<DIR> America's Army Server Manager [11/02/2008|11:29] C:\Program Files\<DIR> AOL [24/02/2008|04:13] C:\Program Files\<DIR> AOL Games [11/02/2008|11:29] C:\Program Files\<DIR> AOL Search [11/06/2008|12:04] C:\Program Files\<DIR> Apple Software Update [12/05/2008|09:57] C:\Program Files\<DIR> Ares [11/02/2008|09:29] C:\Program Files\<DIR> BroadCom GB LAN [22/10/2008|10:26] C:\Program Files\<DIR> BSR Screen Recorder 4 [02/10/2008|11:31] C:\Program Files\<DIR> CamStudio [27/10/2008|05:56] C:\Program Files\<DIR> Common Files [11/02/2008|07:44] C:\Program Files\<DIR> ComPlus Applications [19/02/2008|07:50] C:\Program Files\<DIR> Conduit [24/10/2008|08:33] C:\Program Files\<DIR> DAEMON Tools Lite [12/05/2008|04:36] C:\Program Files\<DIR> Deskshare [08/08/2008|10:57] C:\Program Files\<DIR> directx [29/10/2008|01:48] C:\Program Files\<DIR> DivX [02/10/2008|11:40] C:\Program Files\<DIR> Doom 3 [27/05/2008|02:44] C:\Program Files\<DIR> EA GAMES [11/06/2008|01:37] C:\Program Files\<DIR> Game Cam V2 [28/10/2008|04:19] C:\Program Files\<DIR> Garena [11/02/2008|09:29] C:\Program Files\<DIR> Gigabyte [14/07/2008|10:30] C:\Program Files\<DIR> Google [05/09/2008|08:32] C:\Program Files\<DIR> IMVU [02/10/2008|11:48] C:\Program Files\<DIR> InstallShield Installation Information [11/02/2008|09:27] C:\Program Files\<DIR> Intel [11/06/2008|11:56] C:\Program Files\<DIR> Internet Explorer [27/04/2008|04:09] C:\Program Files\<DIR> iPod [27/04/2008|04:09] C:\Program Files\<DIR> iTunes [26/10/2008|02:49] C:\Program Files\<DIR> Java [02/07/2008|07:37] C:\Program Files\<DIR> KLC [10/06/2008|04:39] C:\Program Files\<DIR> Lavasoft [25/10/2008|12:34] C:\Program Files\<DIR> Malwarebytes' Anti-Malware [04/03/2008|12:26] C:\Program Files\<DIR> Messenger [30/10/2008|03:29] C:\Program Files\<DIR> Messenger Plus! Live [29/10/2008|02:13] C:\Program Files\<DIR> MessengerPlus! 3 [01/05/2008|12:50] C:\Program Files\<DIR> MetaStream [11/02/2008|07:47] C:\Program Files\<DIR> microsoft frontpage [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Office [26/02/2008|04:39] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Visual Studio [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Works [30/03/2008|01:45] C:\Program Files\<DIR> Movie Maker [29/10/2008|07:59] C:\Program Files\<DIR> Mozilla Firefox [30/03/2008|12:29] C:\Program Files\<DIR> MSBuild [11/02/2008|10:10] C:\Program Files\<DIR> MSN [11/02/2008|07:44] C:\Program Files\<DIR> MSN Gaming Zone [11/02/2008|11:03] C:\Program Files\<DIR> MySpace [29/03/2008|02:38] C:\Program Files\<DIR> NCH Software [29/03/2008|02:38] C:\Program Files\<DIR> NCH Swift Sound [11/02/2008|08:12] C:\Program Files\<DIR> Nero [11/02/2008|07:45] C:\Program Files\<DIR> NetMeeting [14/02/2008|09:39] C:\Program Files\<DIR> Ocean Technologies & Media [11/02/2008|07:44] C:\Program Files\<DIR> Online Services [11/02/2008|07:45] C:\Program Files\<DIR> Outlook Express [09/06/2008|03:07] C:\Program Files\<DIR> Paltalk Messenger [18/10/2008|08:40] C:\Program Files\<DIR> PC Doc Pro [26/03/2008|02:29] C:\Program Files\<DIR> PlayLinc [27/04/2008|04:09] C:\Program Files\<DIR> QuickTime [11/03/2008|10:43] C:\Program Files\<DIR> Real [11/02/2008|09:32] C:\Program Files\<DIR> Realtek [30/03/2008|12:26] C:\Program Files\<DIR> Reference Assemblies [19/10/2008|04:39] C:\Program Files\<DIR> Registry Easy [11/02/2008|10:59] C:\Program Files\<DIR> Skype [24/08/2008|03:22] C:\Program Files\<DIR> Sony [30/03/2008|12:20] C:\Program Files\<DIR> Sony Setup [19/10/2008|04:15] C:\Program Files\<DIR> Spybot - Search & Destroy [11/02/2008|11:29] C:\Program Files\<DIR> StealthBot [02/10/2008|11:51] C:\Program Files\<DIR> Steam [19/07/2008|07:27] C:\Program Files\<DIR> Sun [10/06/2008|01:33] C:\Program Files\<DIR> SUPERAntiSpyware [11/02/2008|11:18] C:\Program Files\<DIR> Teamspeak2_RC2 [19/09/2008|12:24] C:\Program Files\<DIR> TeamViewer3 [02/10/2008|12:34] C:\Program Files\<DIR> TeaTimer (Spybot - Search & Destroy) [25/04/2008|11:17] C:\Program Files\<DIR> Trend Micro [26/03/2008|02:08] C:\Program Files\<DIR> Ubisoft [11/02/2008|07:51] C:\Program Files\<DIR> Uninstall Information [27/02/2008|01:35] C:\Program Files\<DIR> USBToolbox [29/06/2008|10:17] C:\Program Files\<DIR> uTorrent [11/02/2008|10:29] C:\Program Files\<DIR> Ventrilo [16/06/2008|09:57] C:\Program Files\<DIR> VentSrv [04/03/2008|09:42] C:\Program Files\<DIR> VideoLAN [24/08/2008|03:22] C:\Program Files\<DIR> Vstplugins [29/10/2008|07:34] C:\Program Files\<DIR> Warcraft III [02/10/2008|11:39] C:\Program Files\<DIR> WC3Banlist [26/10/2008|04:56] C:\Program Files\<DIR> Windows Live [27/10/2008|08:40] C:\Program Files\<DIR> Windows Live Favorites [26/10/2008|12:55] C:\Program Files\<DIR> Windows Live Safety Center [27/10/2008|08:41] C:\Program Files\<DIR> Windows Live Toolbar [22/02/2008|06:34] C:\Program Files\<DIR> Windows Media Connect 2 [23/02/2008|07:02] C:\Program Files\<DIR> Windows Media Player [11/02/2008|07:44] C:\Program Files\<DIR> Windows NT [11/02/2008|07:46] C:\Program Files\<DIR> WindowsUpdate [16/05/2008|10:17] C:\Program Files\<DIR> WinPcap [20/07/2008|05:37] C:\Program Files\<DIR> WinRAR [12/05/2008|10:46] C:\Program Files\<DIR> Wolfenstein - Enemy Territory [27/10/2008|07:47] C:\Program Files\<DIR> World of Warcraft [11/02/2008|07:47] C:\Program Files\<DIR> xerox [24/07/2008|11:19] C:\Program Files\<DIR> Xfire [04/03/2008|12:26] C:\Program Files\<DIR> Xvid [11/02/2008|10:22] C:\Program Files\<DIR> Yahoo! --------------------\\ Listing Folders in C:\Program Files\Common Files [27/10/2008|05:56] C:\Program Files\Common Files\<DIR> Adobe [11/02/2008|08:13] C:\Program Files\Common Files\<DIR> Ahead [11/02/2008|11:29] C:\Program Files\Common Files\<DIR> AOL [27/04/2008|04:08] C:\Program Files\Common Files\<DIR> Apple [18/09/2008|12:51] C:\Program Files\Common Files\<DIR> Blizzard Entertainment [11/02/2008|08:17] C:\Program Files\Common Files\<DIR> DESIGNER [24/05/2008|04:20] C:\Program Files\Common Files\<DIR> EasyInfo [27/02/2008|01:35] C:\Program Files\Common Files\<DIR> InstallShield [15/02/2008|05:52] C:\Program Files\Common Files\<DIR> Java [27/10/2008|08:39] C:\Program Files\Common Files\<DIR> Microsoft Shared [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> MSSoap [13/03/2008|05:15] C:\Program Files\Common Files\<DIR> Nullsoft [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> ODBC [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> Real [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> Services [11/02/2008|10:59] C:\Program Files\Common Files\<DIR> Skype [02/03/2008|07:09] C:\Program Files\Common Files\<DIR> snp2std [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> SpeechEngines [11/02/2008|08:15] C:\Program Files\Common Files\<DIR> System [26/02/2008|04:33] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller [10/06/2008|04:39] C:\Program Files\Common Files\<DIR> Wise Installation Wizard [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> xing shared --------------------\\ Process ( 42 Processes ) ... OK ! --------------------\\ Searching with S_Lop No Lop folder found ! --------------------\\ Searching for Lop Files - Folders No Lop folder found ! --------------------\\ Searching within the Registry ..... OK ! --------------------\\ Checking the Hosts file Hosts file CLEAN --------------------\\ Searching for hidden files with Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-10-30 08:45:20 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 120 --------------------\\ Searching for other infections No other infections found ! [F:1559][D:26]-> C:\DOCUME~1\Justin\LOCALS~1\Temp [F:69][D:0]-> C:\DOCUME~1\Justin\Cookies [F:4959][D:8]-> C:\DOCUME~1\Justin\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - Sun 26/10/2008| 0:18 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - Tue 28/10/2008|19:48 - Option : [1] 3 - "C:\Lop SD\LopR_3.txt" - Tue 28/10/2008|22:01 - Option : [3] 4 - "C:\Lop SD\LopR_4.txt" - Wed 29/10/2008|12:25 - Option : [1] 5 - "C:\Lop SD\LopR_5.txt" - Thu 30/10/2008| 3:33 - Option : [1] 6 - "C:\Lop SD\LopR_6.txt" - Thu 30/10/2008| 8:46 - Option : [3] --------------------\\ Scan completed at 8:46:11 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 8:47:14 AM, on 30/10/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\VentSrv\ventrilo_svc.exe C:\Program Files\VentSrv\ventrilo_srv.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\FixCamera.exe C:\WINDOWS\tsnp2std.exe C:\WINDOWS\vsnp2std.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Documents and Settings\Justin\Desktop\StealthBot\WestBot\StealthBot v2.6R3.exe C:\Documents and Settings\Justin\Desktop\StealthBot\Eurobot\StealthBot v2.6R3.exe C:\WINDOWS\explorer.exe C:\Program Files\Ventrilo\Ventrilo.exe C:\WINDOWS\system32\PnkBstrB.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Windows Live\Messenger\Windows Live Messenger.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R3 - URLSearchHook: AOLSearchHook Class - {54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - C:\Program Files\AOL Search\AOLSearch.dll R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [First 01 Poll Send] C:\Documents and Settings\All Users\Application Data\SETUP BEND FIRST 01\burn title.exe O4 - HKLM\..\RunOnce: [MessengerPlusUninstall] C:\WINDOWS\system32\cmd.exe /C "C:\DOCUME~1\Justin\LOCALS~1\Temp\MsgPlusUninst.bat" O4 - HKLM\..\RunOnce: [MessengerPlusLiveUninstall] "C:\DOCUME~1\Justin\LOCALS~1\Temp\MsgPlusUninstall.exe" /Cleanup O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Warkeys Update.lnk = C:\Documents and Settings\Justin\Desktop\Warkeys\AutoWarkey\AutoHotkey\AutoHotkey.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: PalTalk.lnk = C:\Program Files\Paltalk Messenger\paltalk.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1202728700234 O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: !saswinlogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: Ventrilo - Unknown owner - C:\Program Files\VentSrv\ventrilo_svc.exe -- End of file - 8816 bytes
  10. --------------------\\ Lop S&D 4.2.4-7 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 2 X86-based PC ( Multiprocessor Free : Intel® Pentium® D CPU 3.40GHz ) BIOS : Award Modular BIOS v6.00PG USER : Justin ( Administrator ) BOOT : Normal boot A:\ (USB) C:\ (Local Disk) - NTFS - Total : 74 Go Free : 16 Go D:\ (CD or DVD) E:\ (CD or DVD) F:\ (Local Disk) - NTFS - Total : 38 Go Free : 8 Go G:\ (Local Disk) - NTFS - Total : 36 Go Free : 3 Go H:\ (CD or DVD) "C:\Lop SD" ( MAJ : 23-10-2008|23:15 ) Option : [1] ( Thu 30/10/2008| 3:30 ) --------------------\\ Listing folders in APPLIC~1 [09/06/2008|03:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> Microsoft [02/03/2008|02:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [27/10/2008|05:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe [11/02/2008|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL [11/02/2008|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL OCP [27/04/2008|04:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple [27/04/2008|04:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer [09/06/2008|03:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> avg8 [15/10/2008|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Blizzard [19/02/2008|05:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> FLEXnet [04/05/2008|09:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google [04/05/2008|06:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Kaspersky Lab [10/06/2008|04:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Lavasoft [25/10/2008|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes [11/02/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft [14/08/2008|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft Help [29/03/2008|02:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Swift Sound [27/10/2008|08:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SETUP BEND FIRST 01 [11/02/2008|10:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Skype [24/08/2008|03:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Sony [19/10/2008|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy [28/02/2008|01:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [14/10/2008|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TEMP [23/02/2008|01:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Trymedia [29/10/2008|02:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> WLInstaller [05/03/2008|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! [08/05/2008|11:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! Companion [11/02/2008|07:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft [11/02/2008|11:30] C:\DOCUME~1\Justin\APPLIC~1\<DIR> acccore [29/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Address Book [27/10/2008|05:41] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Adobe [15/06/2008|09:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AdobeUM [07/04/2008|11:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ahead [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIM [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIMPro [11/06/2008|12:09] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Apple Computer [27/03/2008|10:44] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Codemasters [23/02/2008|10:21] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DAEMON Tools [11/06/2008|11:50] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DivX [15/02/2008|05:53] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Google [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Hamachi [20/07/2008|05:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Help [11/02/2008|07:51] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Identities [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> IMVU [14/02/2008|09:39] C:\DOCUME~1\Justin\APPLIC~1\<DIR> InstallShield [14/07/2008|10:31] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Macromedia [25/10/2008|12:34] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Malwarebytes [25/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Microsoft [29/06/2008|09:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Mozilla [11/02/2008|10:10] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MSNInstaller [11/02/2008|11:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MySpace [29/03/2008|02:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Swift Sound [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Paltalk [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Publish Providers [24/03/2008|06:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Real [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Recordpad [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Skype [18/01/2008|02:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> skypePM [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony [30/03/2008|12:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony Setup [15/02/2008|05:55] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sun [10/06/2008|01:33] C:\DOCUME~1\Justin\APPLIC~1\<DIR> SUPERAntiSpyware.com [11/02/2008|11:18] C:\DOCUME~1\Justin\APPLIC~1\<DIR> teamspeak2 [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> TeamViewer [26/08/2008|09:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Tourney Master 3 ES1 Ultimate [29/10/2008|03:05] C:\DOCUME~1\Justin\APPLIC~1\<DIR> uTorrent [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ventrilo [04/03/2008|09:42] C:\DOCUME~1\Justin\APPLIC~1\<DIR> vlc [12/06/2008|08:49] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Windows Live Writer [24/07/2008|11:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Xfire [08/05/2008|11:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> yahoo! [09/06/2008|03:06] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft [02/05/2008|01:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> TeamViewer [12/02/2008|01:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Xfire [09/06/2008|03:06] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft [29/03/2008|02:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> NCH Swift Sound [12/02/2008|01:37] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Xfire --------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks [27/10/2008 08:41 AM][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job [11/10/2008 02:59 AM][--a------] C:\WINDOWS\tasks\Schedule Task Weekly.job [11/06/2008 12:04 PM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [25/04/2008 12:27 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT [04/08/2004 12:07 PM][-r-h-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ Listing Folders in C:\Program Files [27/10/2008|05:48] C:\Program Files\<DIR> Adobe [27/03/2008|10:43] C:\Program Files\<DIR> AGEIA Technologies [13/03/2008|05:15] C:\Program Files\<DIR> AIM [11/02/2008|11:29] C:\Program Files\<DIR> AIM6 [29/06/2008|05:24] C:\Program Files\<DIR> America's Army [20/02/2008|12:38] C:\Program Files\<DIR> America's Army Server Manager [11/02/2008|11:29] C:\Program Files\<DIR> AOL [24/02/2008|04:13] C:\Program Files\<DIR> AOL Games [11/02/2008|11:29] C:\Program Files\<DIR> AOL Search [11/06/2008|12:04] C:\Program Files\<DIR> Apple Software Update [12/05/2008|09:57] C:\Program Files\<DIR> Ares [11/02/2008|09:29] C:\Program Files\<DIR> BroadCom GB LAN [22/10/2008|10:26] C:\Program Files\<DIR> BSR Screen Recorder 4 [02/10/2008|11:31] C:\Program Files\<DIR> CamStudio [27/10/2008|05:56] C:\Program Files\<DIR> Common Files [11/02/2008|07:44] C:\Program Files\<DIR> ComPlus Applications [19/02/2008|07:50] C:\Program Files\<DIR> Conduit [24/10/2008|08:33] C:\Program Files\<DIR> DAEMON Tools Lite [12/05/2008|04:36] C:\Program Files\<DIR> Deskshare [08/08/2008|10:57] C:\Program Files\<DIR> directx [29/10/2008|01:48] C:\Program Files\<DIR> DivX [02/10/2008|11:40] C:\Program Files\<DIR> Doom 3 [27/05/2008|02:44] C:\Program Files\<DIR> EA GAMES [11/06/2008|01:37] C:\Program Files\<DIR> Game Cam V2 [28/10/2008|04:19] C:\Program Files\<DIR> Garena [11/02/2008|09:29] C:\Program Files\<DIR> Gigabyte [14/07/2008|10:30] C:\Program Files\<DIR> Google [05/09/2008|08:32] C:\Program Files\<DIR> IMVU [02/10/2008|11:48] C:\Program Files\<DIR> InstallShield Installation Information [11/02/2008|09:27] C:\Program Files\<DIR> Intel [11/06/2008|11:56] C:\Program Files\<DIR> Internet Explorer [27/04/2008|04:09] C:\Program Files\<DIR> iPod [27/04/2008|04:09] C:\Program Files\<DIR> iTunes [26/10/2008|02:49] C:\Program Files\<DIR> Java [02/07/2008|07:37] C:\Program Files\<DIR> KLC [10/06/2008|04:39] C:\Program Files\<DIR> Lavasoft [25/10/2008|12:34] C:\Program Files\<DIR> Malwarebytes' Anti-Malware [04/03/2008|12:26] C:\Program Files\<DIR> Messenger [30/10/2008|03:29] C:\Program Files\<DIR> Messenger Plus! Live [29/10/2008|02:13] C:\Program Files\<DIR> MessengerPlus! 3 [01/05/2008|12:50] C:\Program Files\<DIR> MetaStream [11/02/2008|07:47] C:\Program Files\<DIR> microsoft frontpage [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Office [26/02/2008|04:39] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Visual Studio [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Works [30/03/2008|01:45] C:\Program Files\<DIR> Movie Maker [29/10/2008|07:59] C:\Program Files\<DIR> Mozilla Firefox [30/03/2008|12:29] C:\Program Files\<DIR> MSBuild [11/02/2008|10:10] C:\Program Files\<DIR> MSN [11/02/2008|07:44] C:\Program Files\<DIR> MSN Gaming Zone [11/02/2008|11:03] C:\Program Files\<DIR> MySpace [29/03/2008|02:38] C:\Program Files\<DIR> NCH Software [29/03/2008|02:38] C:\Program Files\<DIR> NCH Swift Sound [11/02/2008|08:12] C:\Program Files\<DIR> Nero [11/02/2008|07:45] C:\Program Files\<DIR> NetMeeting [14/02/2008|09:39] C:\Program Files\<DIR> Ocean Technologies & Media [11/02/2008|07:44] C:\Program Files\<DIR> Online Services [11/02/2008|07:45] C:\Program Files\<DIR> Outlook Express [09/06/2008|03:07] C:\Program Files\<DIR> Paltalk Messenger [18/10/2008|08:40] C:\Program Files\<DIR> PC Doc Pro [26/03/2008|02:29] C:\Program Files\<DIR> PlayLinc [27/04/2008|04:09] C:\Program Files\<DIR> QuickTime [11/03/2008|10:43] C:\Program Files\<DIR> Real [11/02/2008|09:32] C:\Program Files\<DIR> Realtek [30/03/2008|12:26] C:\Program Files\<DIR> Reference Assemblies [19/10/2008|04:39] C:\Program Files\<DIR> Registry Easy [11/02/2008|10:59] C:\Program Files\<DIR> Skype [24/08/2008|03:22] C:\Program Files\<DIR> Sony [30/03/2008|12:20] C:\Program Files\<DIR> Sony Setup [19/10/2008|04:15] C:\Program Files\<DIR> Spybot - Search & Destroy [11/02/2008|11:29] C:\Program Files\<DIR> StealthBot [02/10/2008|11:51] C:\Program Files\<DIR> Steam [19/07/2008|07:27] C:\Program Files\<DIR> Sun [10/06/2008|01:33] C:\Program Files\<DIR> SUPERAntiSpyware [11/02/2008|11:18] C:\Program Files\<DIR> Teamspeak2_RC2 [19/09/2008|12:24] C:\Program Files\<DIR> TeamViewer3 [02/10/2008|12:34] C:\Program Files\<DIR> TeaTimer (Spybot - Search & Destroy) [25/04/2008|11:17] C:\Program Files\<DIR> Trend Micro [26/03/2008|02:08] C:\Program Files\<DIR> Ubisoft [11/02/2008|07:51] C:\Program Files\<DIR> Uninstall Information [27/02/2008|01:35] C:\Program Files\<DIR> USBToolbox [29/06/2008|10:17] C:\Program Files\<DIR> uTorrent [11/02/2008|10:29] C:\Program Files\<DIR> Ventrilo [16/06/2008|09:57] C:\Program Files\<DIR> VentSrv [04/03/2008|09:42] C:\Program Files\<DIR> VideoLAN [24/08/2008|03:22] C:\Program Files\<DIR> Vstplugins [29/10/2008|07:34] C:\Program Files\<DIR> Warcraft III [02/10/2008|11:39] C:\Program Files\<DIR> WC3Banlist [26/10/2008|04:56] C:\Program Files\<DIR> Windows Live [27/10/2008|08:40] C:\Program Files\<DIR> Windows Live Favorites [26/10/2008|12:55] C:\Program Files\<DIR> Windows Live Safety Center [27/10/2008|08:41] C:\Program Files\<DIR> Windows Live Toolbar [22/02/2008|06:34] C:\Program Files\<DIR> Windows Media Connect 2 [23/02/2008|07:02] C:\Program Files\<DIR> Windows Media Player [11/02/2008|07:44] C:\Program Files\<DIR> Windows NT [11/02/2008|07:46] C:\Program Files\<DIR> WindowsUpdate [16/05/2008|10:17] C:\Program Files\<DIR> WinPcap [20/07/2008|05:37] C:\Program Files\<DIR> WinRAR [12/05/2008|10:46] C:\Program Files\<DIR> Wolfenstein - Enemy Territory [27/10/2008|07:47] C:\Program Files\<DIR> World of Warcraft [11/02/2008|07:47] C:\Program Files\<DIR> xerox [24/07/2008|11:19] C:\Program Files\<DIR> Xfire [04/03/2008|12:26] C:\Program Files\<DIR> Xvid [11/02/2008|10:22] C:\Program Files\<DIR> Yahoo! --------------------\\ Listing Folders in C:\Program Files\Common Files [27/10/2008|05:56] C:\Program Files\Common Files\<DIR> Adobe [11/02/2008|08:13] C:\Program Files\Common Files\<DIR> Ahead [11/02/2008|11:29] C:\Program Files\Common Files\<DIR> AOL [27/04/2008|04:08] C:\Program Files\Common Files\<DIR> Apple [18/09/2008|12:51] C:\Program Files\Common Files\<DIR> Blizzard Entertainment [11/02/2008|08:17] C:\Program Files\Common Files\<DIR> DESIGNER [24/05/2008|04:20] C:\Program Files\Common Files\<DIR> EasyInfo [27/02/2008|01:35] C:\Program Files\Common Files\<DIR> InstallShield [15/02/2008|05:52] C:\Program Files\Common Files\<DIR> Java [27/10/2008|08:39] C:\Program Files\Common Files\<DIR> Microsoft Shared [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> MSSoap [13/03/2008|05:15] C:\Program Files\Common Files\<DIR> Nullsoft [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> ODBC [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> Real [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> Services [11/02/2008|10:59] C:\Program Files\Common Files\<DIR> Skype [02/03/2008|07:09] C:\Program Files\Common Files\<DIR> snp2std [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> SpeechEngines [11/02/2008|08:15] C:\Program Files\Common Files\<DIR> System [26/02/2008|04:33] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller [10/06/2008|04:39] C:\Program Files\Common Files\<DIR> Wise Installation Wizard [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> xing shared --------------------\\ Process ( 45 Processes ) IEXPLORE.EXE ~ [PID:1140] IEXPLORE.EXE ~ [PID:3660] --------------------\\ Searching with S_Lop No Lop folder found ! --------------------\\ Searching for Lop Files - Folders C:\DOCUME~1\Justin\LOCALS~1\Temp\msgpl_15b1.exe C:\DOCUME~1\Justin\Cookies\[email protected][1].txt --------------------\\ Searching within the Registry ..... OK ! --------------------\\ Checking the Hosts file Hosts file CLEAN --------------------\\ Searching for hidden files with Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-10-30 03:31:47 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 120 --------------------\\ Searching for other infections No other infections found ! [F:1550][D:26]-> C:\DOCUME~1\Justin\LOCALS~1\Temp [F:69][D:0]-> C:\DOCUME~1\Justin\Cookies [F:4875][D:8]-> C:\DOCUME~1\Justin\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - Sun 26/10/2008| 0:18 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - Tue 28/10/2008|19:48 - Option : [1] 3 - "C:\Lop SD\LopR_3.txt" - Tue 28/10/2008|22:01 - Option : [3] 4 - "C:\Lop SD\LopR_4.txt" - Wed 29/10/2008|12:25 - Option : [1] 5 - "C:\Lop SD\LopR_5.txt" - Thu 30/10/2008| 3:33 - Option : [1] --------------------\\ Scan completed at 3:33:08
  11. and here --------------------\\ Lop S&D 4.2.4-7 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 2 X86-based PC ( Multiprocessor Free : Intel® Pentium® D CPU 3.40GHz ) BIOS : Award Modular BIOS v6.00PG USER : Justin ( Administrator ) BOOT : Normal boot A:\ (USB) C:\ (Local Disk) - NTFS - Total : 74 Go Free : 16 Go D:\ (CD or DVD) E:\ (CD or DVD) F:\ (Local Disk) - NTFS - Total : 38 Go Free : 8 Go G:\ (Local Disk) - NTFS - Total : 36 Go Free : 3 Go H:\ (CD or DVD) "C:\Lop SD" ( MAJ : 23-10-2008|23:15 ) Option : [1] ( Wed 29/10/2008|12:22 ) --------------------\\ Listing folders in APPLIC~1 [09/06/2008|03:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> Microsoft [02/03/2008|02:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [27/10/2008|05:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe [11/02/2008|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL [11/02/2008|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL OCP [27/04/2008|04:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple [27/04/2008|04:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer [09/06/2008|03:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> avg8 [15/10/2008|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Blizzard [19/02/2008|05:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> FLEXnet [04/05/2008|09:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google [04/05/2008|06:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Kaspersky Lab [10/06/2008|04:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Lavasoft [25/10/2008|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes [27/10/2008|08:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Messenger Plus! [11/02/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft [14/08/2008|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft Help [29/03/2008|02:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Swift Sound [27/10/2008|08:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SETUP BEND FIRST 01 [11/02/2008|10:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Skype [24/08/2008|03:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Sony [19/10/2008|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy [28/02/2008|01:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [14/10/2008|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TEMP [23/02/2008|01:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Trymedia [27/10/2008|08:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> WLInstaller [05/03/2008|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! [08/05/2008|11:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! Companion [11/02/2008|07:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft [11/02/2008|11:30] C:\DOCUME~1\Justin\APPLIC~1\<DIR> acccore [29/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Address Book [27/10/2008|05:41] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Adobe [15/06/2008|09:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AdobeUM [07/04/2008|11:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ahead [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIM [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIMPro [11/06/2008|12:09] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Apple Computer [27/03/2008|10:44] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Codemasters [23/02/2008|10:21] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DAEMON Tools [11/06/2008|11:50] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DivX [15/02/2008|05:53] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Google [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Hamachi [20/07/2008|05:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Help [11/02/2008|07:51] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Identities [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> IMVU [14/02/2008|09:39] C:\DOCUME~1\Justin\APPLIC~1\<DIR> InstallShield [14/07/2008|10:31] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Macromedia [25/10/2008|12:34] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Malwarebytes [25/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Microsoft [29/06/2008|09:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Mozilla [11/02/2008|10:10] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MSNInstaller [11/02/2008|11:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MySpace [29/03/2008|02:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Swift Sound [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Paltalk [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Publish Providers [24/03/2008|06:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Real [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Recordpad [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Skype [18/01/2008|02:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> skypePM [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony [30/03/2008|12:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony Setup [15/02/2008|05:55] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sun [10/06/2008|01:33] C:\DOCUME~1\Justin\APPLIC~1\<DIR> SUPERAntiSpyware.com [11/02/2008|11:18] C:\DOCUME~1\Justin\APPLIC~1\<DIR> teamspeak2 [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> TeamViewer [26/08/2008|09:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Tourney Master 3 ES1 Ultimate [27/10/2008|01:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> uTorrent [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ventrilo [04/03/2008|09:42] C:\DOCUME~1\Justin\APPLIC~1\<DIR> vlc [12/06/2008|08:49] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Windows Live Writer [24/07/2008|11:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Xfire [08/05/2008|11:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> yahoo! [09/06/2008|03:06] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft [02/05/2008|01:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> TeamViewer [12/02/2008|01:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Xfire [09/06/2008|03:06] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft [29/03/2008|02:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> NCH Swift Sound [12/02/2008|01:37] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Xfire --------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks [27/10/2008 08:41 AM][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job [11/10/2008 02:59 AM][--a------] C:\WINDOWS\tasks\Schedule Task Weekly.job [11/06/2008 12:04 PM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [25/04/2008 12:27 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT [04/08/2004 12:07 PM][-r-h-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ MsgPlus SPONSOR INSTALLED ! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin] "SponsorInstalled"=dword:00000000 --------------------\\ Listing Folders in C:\Program Files [27/10/2008|05:48] C:\Program Files\<DIR> Adobe [27/03/2008|10:43] C:\Program Files\<DIR> AGEIA Technologies [13/03/2008|05:15] C:\Program Files\<DIR> AIM [11/02/2008|11:29] C:\Program Files\<DIR> AIM6 [29/06/2008|05:24] C:\Program Files\<DIR> America's Army [20/02/2008|12:38] C:\Program Files\<DIR> America's Army Server Manager [11/02/2008|11:29] C:\Program Files\<DIR> AOL [24/02/2008|04:13] C:\Program Files\<DIR> AOL Games [11/02/2008|11:29] C:\Program Files\<DIR> AOL Search [11/06/2008|12:04] C:\Program Files\<DIR> Apple Software Update [12/05/2008|09:57] C:\Program Files\<DIR> Ares [11/02/2008|09:29] C:\Program Files\<DIR> BroadCom GB LAN [22/10/2008|10:26] C:\Program Files\<DIR> BSR Screen Recorder 4 [02/10/2008|11:31] C:\Program Files\<DIR> CamStudio [27/10/2008|05:56] C:\Program Files\<DIR> Common Files [11/02/2008|07:44] C:\Program Files\<DIR> ComPlus Applications [19/02/2008|07:50] C:\Program Files\<DIR> Conduit [24/10/2008|08:33] C:\Program Files\<DIR> DAEMON Tools Lite [12/05/2008|04:36] C:\Program Files\<DIR> Deskshare [08/08/2008|10:57] C:\Program Files\<DIR> directx [29/10/2008|01:48] C:\Program Files\<DIR> DivX [02/10/2008|11:40] C:\Program Files\<DIR> Doom 3 [27/05/2008|02:44] C:\Program Files\<DIR> EA GAMES [11/06/2008|01:37] C:\Program Files\<DIR> Game Cam V2 [28/10/2008|04:19] C:\Program Files\<DIR> Garena [11/02/2008|09:29] C:\Program Files\<DIR> Gigabyte [14/07/2008|10:30] C:\Program Files\<DIR> Google [05/09/2008|08:32] C:\Program Files\<DIR> IMVU [02/10/2008|11:48] C:\Program Files\<DIR> InstallShield Installation Information [11/02/2008|09:27] C:\Program Files\<DIR> Intel [11/06/2008|11:56] C:\Program Files\<DIR> Internet Explorer [27/04/2008|04:09] C:\Program Files\<DIR> iPod [27/04/2008|04:09] C:\Program Files\<DIR> iTunes [26/10/2008|02:49] C:\Program Files\<DIR> Java [02/07/2008|07:37] C:\Program Files\<DIR> KLC [10/06/2008|04:39] C:\Program Files\<DIR> Lavasoft [25/10/2008|12:34] C:\Program Files\<DIR> Malwarebytes' Anti-Malware [04/03/2008|12:26] C:\Program Files\<DIR> Messenger [27/10/2008|08:43] C:\Program Files\<DIR> Messenger Plus! Live [29/10/2008|02:13] C:\Program Files\<DIR> MessengerPlus! 3 [01/05/2008|12:50] C:\Program Files\<DIR> MetaStream [11/02/2008|07:47] C:\Program Files\<DIR> microsoft frontpage [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Office [26/02/2008|04:39] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Visual Studio [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Works [30/03/2008|01:45] C:\Program Files\<DIR> Movie Maker [29/10/2008|10:25] C:\Program Files\<DIR> Mozilla Firefox [30/03/2008|12:29] C:\Program Files\<DIR> MSBuild [11/02/2008|10:10] C:\Program Files\<DIR> MSN [11/02/2008|07:44] C:\Program Files\<DIR> MSN Gaming Zone [11/02/2008|11:03] C:\Program Files\<DIR> MySpace [29/03/2008|02:38] C:\Program Files\<DIR> NCH Software [29/03/2008|02:38] C:\Program Files\<DIR> NCH Swift Sound [11/02/2008|08:12] C:\Program Files\<DIR> Nero [11/02/2008|07:45] C:\Program Files\<DIR> NetMeeting [14/02/2008|09:39] C:\Program Files\<DIR> Ocean Technologies & Media [11/02/2008|07:44] C:\Program Files\<DIR> Online Services [11/02/2008|07:45] C:\Program Files\<DIR> Outlook Express [09/06/2008|03:07] C:\Program Files\<DIR> Paltalk Messenger [18/10/2008|08:40] C:\Program Files\<DIR> PC Doc Pro [26/03/2008|02:29] C:\Program Files\<DIR> PlayLinc [27/04/2008|04:09] C:\Program Files\<DIR> QuickTime [11/03/2008|10:43] C:\Program Files\<DIR> Real [11/02/2008|09:32] C:\Program Files\<DIR> Realtek [30/03/2008|12:26] C:\Program Files\<DIR> Reference Assemblies [19/10/2008|04:39] C:\Program Files\<DIR> Registry Easy [11/02/2008|10:59] C:\Program Files\<DIR> Skype [24/08/2008|03:22] C:\Program Files\<DIR> Sony [30/03/2008|12:20] C:\Program Files\<DIR> Sony Setup [19/10/2008|04:15] C:\Program Files\<DIR> Spybot - Search & Destroy [11/02/2008|11:29] C:\Program Files\<DIR> StealthBot [02/10/2008|11:51] C:\Program Files\<DIR> Steam [19/07/2008|07:27] C:\Program Files\<DIR> Sun [10/06/2008|01:33] C:\Program Files\<DIR> SUPERAntiSpyware [11/02/2008|11:18] C:\Program Files\<DIR> Teamspeak2_RC2 [19/09/2008|12:24] C:\Program Files\<DIR> TeamViewer3 [02/10/2008|12:34] C:\Program Files\<DIR> TeaTimer (Spybot - Search & Destroy) [25/04/2008|11:17] C:\Program Files\<DIR> Trend Micro [26/03/2008|02:08] C:\Program Files\<DIR> Ubisoft [11/02/2008|07:51] C:\Program Files\<DIR> Uninstall Information [27/02/2008|01:35] C:\Program Files\<DIR> USBToolbox [29/06/2008|10:17] C:\Program Files\<DIR> uTorrent [11/02/2008|10:29] C:\Program Files\<DIR> Ventrilo [16/06/2008|09:57] C:\Program Files\<DIR> VentSrv [04/03/2008|09:42] C:\Program Files\<DIR> VideoLAN [24/08/2008|03:22] C:\Program Files\<DIR> Vstplugins [28/10/2008|11:00] C:\Program Files\<DIR> Warcraft III [02/10/2008|11:39] C:\Program Files\<DIR> WC3Banlist [26/10/2008|04:56] C:\Program Files\<DIR> Windows Live [27/10/2008|08:40] C:\Program Files\<DIR> Windows Live Favorites [26/10/2008|12:55] C:\Program Files\<DIR> Windows Live Safety Center [27/10/2008|08:41] C:\Program Files\<DIR> Windows Live Toolbar [22/02/2008|06:34] C:\Program Files\<DIR> Windows Media Connect 2 [23/02/2008|07:02] C:\Program Files\<DIR> Windows Media Player [11/02/2008|07:44] C:\Program Files\<DIR> Windows NT [11/02/2008|07:46] C:\Program Files\<DIR> WindowsUpdate [16/05/2008|10:17] C:\Program Files\<DIR> WinPcap [20/07/2008|05:37] C:\Program Files\<DIR> WinRAR [12/05/2008|10:46] C:\Program Files\<DIR> Wolfenstein - Enemy Territory [27/10/2008|07:47] C:\Program Files\<DIR> World of Warcraft [11/02/2008|07:47] C:\Program Files\<DIR> xerox [24/07/2008|11:19] C:\Program Files\<DIR> Xfire [04/03/2008|12:26] C:\Program Files\<DIR> Xvid [11/02/2008|10:22] C:\Program Files\<DIR> Yahoo! --------------------\\ Listing Folders in C:\Program Files\Common Files [27/10/2008|05:56] C:\Program Files\Common Files\<DIR> Adobe [11/02/2008|08:13] C:\Program Files\Common Files\<DIR> Ahead [11/02/2008|11:29] C:\Program Files\Common Files\<DIR> AOL [27/04/2008|04:08] C:\Program Files\Common Files\<DIR> Apple [18/09/2008|12:51] C:\Program Files\Common Files\<DIR> Blizzard Entertainment [11/02/2008|08:17] C:\Program Files\Common Files\<DIR> DESIGNER [24/05/2008|04:20] C:\Program Files\Common Files\<DIR> EasyInfo [27/02/2008|01:35] C:\Program Files\Common Files\<DIR> InstallShield [15/02/2008|05:52] C:\Program Files\Common Files\<DIR> Java [27/10/2008|08:39] C:\Program Files\Common Files\<DIR> Microsoft Shared [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> MSSoap [13/03/2008|05:15] C:\Program Files\Common Files\<DIR> Nullsoft [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> ODBC [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> Real [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> Services [11/02/2008|10:59] C:\Program Files\Common Files\<DIR> Skype [02/03/2008|07:09] C:\Program Files\Common Files\<DIR> snp2std [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> SpeechEngines [11/02/2008|08:15] C:\Program Files\Common Files\<DIR> System [26/02/2008|04:33] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller [10/06/2008|04:39] C:\Program Files\Common Files\<DIR> Wise Installation Wizard [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> xing shared --------------------\\ Process ( 43 Processes ) IEXPLORE.EXE ~ [PID:1252] MsgPlus.exe ~ [PID:2416] --------------------\\ Searching with S_Lop No Lop folder found ! --------------------\\ Searching for Lop Files - Folders C:\DOCUME~1\Justin\LOCALS~1\Temp\msgpl_15b1.exe C:\DOCUME~1\Justin\LOCALS~1\Temp\nsr140.tmp C:\DOCUME~1\Justin\LOCALS~1\Temp\nst13E.tmp --------------------\\ Searching within the Registry ..... OK ! --------------------\\ Checking the Hosts file Hosts file CLEAN --------------------\\ Searching for hidden files with Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-10-29 12:24:12 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 120 --------------------\\ Searching for other infections No other infections found ! [F:1514][D:28]-> C:\DOCUME~1\Justin\LOCALS~1\Temp [F:71][D:0]-> C:\DOCUME~1\Justin\Cookies [F:3170][D:8]-> C:\DOCUME~1\Justin\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - Sun 26/10/2008| 0:18 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - Tue 28/10/2008|19:48 - Option : [1] 3 - "C:\Lop SD\LopR_3.txt" - Tue 28/10/2008|22:01 - Option : [3] 4 - "C:\Lop SD\LopR_4.txt" - Wed 29/10/2008|12:25 - Option : [1] --------------------\\ Scan completed at 12:25:36
  12. it seems like the only problem i have now is my audio sound playing weird noises and nothing eles pop ups are gone comp is faster just random cat noises voices play through my mic
  13. i got rid of the sponsors and just downloaded the one i was meaning 2 get without it t
  14. --------------------\\ Lop S&D 4.2.4-7 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 2 X86-based PC ( Multiprocessor Free : Intel® Pentium® D CPU 3.40GHz ) BIOS : Award Modular BIOS v6.00PG USER : Justin ( Administrator ) BOOT : Normal boot A:\ (USB) C:\ (Local Disk) - NTFS - Total : 74 Go Free : 16 Go D:\ (CD or DVD) E:\ (CD or DVD) F:\ (Local Disk) - NTFS - Total : 38 Go Free : 8 Go G:\ (Local Disk) - NTFS - Total : 36 Go Free : 3 Go H:\ (CD or DVD) "C:\Lop SD" ( MAJ : 23-10-2008|23:15 ) Option : [3] ( Tue 28/10/2008|22:00 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX Deleted! - C:\DOCUME~1\Justin\APPLIC~1\thunkn~1\BallElseItchInter.exe Deleted! - C:\DOCUME~1\Justin\APPLIC~1\thunkn~1\bryumyif.exe Deleted! - C:\DOCUME~1\Justin\APPLIC~1\thunkn~1\Chin this.exe Deleted! - C:\DOCUME~1\Justin\APPLIC~1\thunkn~1\hpbylbae.exe Deleted! - C:\DOCUME~1\Justin\APPLIC~1\thunkn~1\Mail Meta Joy.exe Deleted! - C:\DOCUME~1\Justin\APPLIC~1\thunkn~1\qsltrwxd.exe Deleted! - C:\DOCUME~1\Justin\LOCALS~1\Temp\msgpl_3a34.exe Deleted! - C:\DOCUME~1\Justin\LOCALS~1\Temp\msgpl_5076.exe Deleted! - C:\DOCUME~1\Justin\LOCALS~1\Temp\msgpl_d6f8.tmp Deleted! - C:\Program Files\Circle Developement\Uninstall.exe Deleted! - C:\DOCUME~1\Justin\Cookies\[email protected][1].txt Deleted! - C:\DOCUME~1\Justin\Cookies\[email protected][2].txt Deleted! - C:\WINDOWS\Tasks\AF0A3A8C9195AF78.job Deleted! - C:\DOCUME~1\Justin\LOCALS~1\Temp\bis67.exe Deleted! - C:\DOCUME~1\Justin\LOCALS~1\Temp\bisA.exe Deleted! - C:\DOCUME~1\Justin\LOCALS~1\Temp\bisE.exe Deleted! - C:\DOCUME~1\Justin\APPLIC~1\thunkn~1 Deleted! - C:\Program Files\thunkn~1 Deleted! - C:\Program Files\Circle Developement \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing folders in APPLIC~1 [09/06/2008|03:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> Microsoft [02/03/2008|02:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [27/10/2008|05:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe [11/02/2008|11:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL [11/02/2008|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> AOL OCP [27/04/2008|04:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple [27/04/2008|04:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer [09/06/2008|03:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> avg8 [15/10/2008|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Blizzard [19/02/2008|05:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> FLEXnet [04/05/2008|09:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google [04/05/2008|06:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Kaspersky Lab [10/06/2008|04:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Lavasoft [25/10/2008|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes [27/10/2008|08:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Messenger Plus! [11/02/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft [14/08/2008|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft Help [29/03/2008|02:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NCH Swift Sound [27/10/2008|08:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SETUP BEND FIRST 01 [11/02/2008|10:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Skype [24/08/2008|03:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Sony [19/10/2008|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy [28/02/2008|01:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SUPERAntiSpyware.com [14/10/2008|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TEMP [23/02/2008|01:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Trymedia [27/10/2008|08:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> WLInstaller [05/03/2008|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! [08/05/2008|11:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Yahoo! Companion [11/02/2008|07:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft [11/02/2008|11:30] C:\DOCUME~1\Justin\APPLIC~1\<DIR> acccore [29/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Address Book [27/10/2008|05:41] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Adobe [15/06/2008|09:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AdobeUM [07/04/2008|11:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ahead [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIM [13/03/2008|05:15] C:\DOCUME~1\Justin\APPLIC~1\<DIR> AIMPro [11/06/2008|12:09] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Apple Computer [27/03/2008|10:44] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Codemasters [23/02/2008|10:21] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DAEMON Tools [11/06/2008|11:50] C:\DOCUME~1\Justin\APPLIC~1\<DIR> DivX [15/02/2008|05:53] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Google [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Hamachi [20/07/2008|05:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Help [11/02/2008|07:51] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Identities [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> IMVU [14/02/2008|09:39] C:\DOCUME~1\Justin\APPLIC~1\<DIR> InstallShield [14/07/2008|10:31] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Macromedia [25/10/2008|12:34] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Malwarebytes [25/06/2008|09:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Microsoft [29/06/2008|09:25] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Mozilla [11/02/2008|10:10] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MSNInstaller [11/02/2008|11:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> MySpace [29/03/2008|02:37] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Software [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> NCH Swift Sound [09/06/2008|03:07] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Paltalk [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Publish Providers [24/03/2008|06:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Real [29/03/2008|02:28] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Recordpad [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Skype [18/01/2008|02:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> skypePM [30/03/2008|12:40] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony [30/03/2008|12:20] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sony Setup [15/02/2008|05:55] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Sun [10/06/2008|01:33] C:\DOCUME~1\Justin\APPLIC~1\<DIR> SUPERAntiSpyware.com [11/02/2008|11:18] C:\DOCUME~1\Justin\APPLIC~1\<DIR> teamspeak2 [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> TeamViewer [26/08/2008|09:03] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Tourney Master 3 ES1 Ultimate [27/10/2008|01:22] C:\DOCUME~1\Justin\APPLIC~1\<DIR> uTorrent [19/10/2008|04:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Ventrilo [04/03/2008|09:42] C:\DOCUME~1\Justin\APPLIC~1\<DIR> vlc [12/06/2008|08:49] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Windows Live Writer [24/07/2008|11:26] C:\DOCUME~1\Justin\APPLIC~1\<DIR> Xfire [08/05/2008|11:38] C:\DOCUME~1\Justin\APPLIC~1\<DIR> yahoo! [09/06/2008|03:06] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft [02/05/2008|01:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> TeamViewer [12/02/2008|01:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Xfire [09/06/2008|03:06] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft [29/03/2008|02:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> NCH Swift Sound [12/02/2008|01:37] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Xfire --------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks [27/10/2008 08:41 AM][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job [11/10/2008 02:59 AM][--a------] C:\WINDOWS\tasks\Schedule Task Weekly.job [11/06/2008 12:04 PM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [25/04/2008 12:27 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT [04/08/2004 12:07 PM][-r-h-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ MsgPlus SPONSOR INSTALLED ! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin] "SponsorInstalled"=dword:00000000 --------------------\\ Listing Folders in C:\Program Files [27/10/2008|05:48] C:\Program Files\<DIR> Adobe [27/03/2008|10:43] C:\Program Files\<DIR> AGEIA Technologies [13/03/2008|05:15] C:\Program Files\<DIR> AIM [11/02/2008|11:29] C:\Program Files\<DIR> AIM6 [29/06/2008|05:24] C:\Program Files\<DIR> America's Army [20/02/2008|12:38] C:\Program Files\<DIR> America's Army Server Manager [11/02/2008|11:29] C:\Program Files\<DIR> AOL [24/02/2008|04:13] C:\Program Files\<DIR> AOL Games [11/02/2008|11:29] C:\Program Files\<DIR> AOL Search [11/06/2008|12:04] C:\Program Files\<DIR> Apple Software Update [12/05/2008|09:57] C:\Program Files\<DIR> Ares [11/02/2008|09:29] C:\Program Files\<DIR> BroadCom GB LAN [22/10/2008|10:26] C:\Program Files\<DIR> BSR Screen Recorder 4 [02/10/2008|11:31] C:\Program Files\<DIR> CamStudio [27/10/2008|05:56] C:\Program Files\<DIR> Common Files [11/02/2008|07:44] C:\Program Files\<DIR> ComPlus Applications [19/02/2008|07:50] C:\Program Files\<DIR> Conduit [24/10/2008|08:33] C:\Program Files\<DIR> DAEMON Tools Lite [12/05/2008|04:36] C:\Program Files\<DIR> Deskshare [08/08/2008|10:57] C:\Program Files\<DIR> directx [05/10/2008|02:10] C:\Program Files\<DIR> DivX [02/10/2008|11:40] C:\Program Files\<DIR> Doom 3 [27/05/2008|02:44] C:\Program Files\<DIR> EA GAMES [11/06/2008|01:37] C:\Program Files\<DIR> Game Cam V2 [28/10/2008|04:19] C:\Program Files\<DIR> Garena [11/02/2008|09:29] C:\Program Files\<DIR> Gigabyte [14/07/2008|10:30] C:\Program Files\<DIR> Google [05/09/2008|08:32] C:\Program Files\<DIR> IMVU [02/10/2008|11:48] C:\Program Files\<DIR> InstallShield Installation Information [11/02/2008|09:27] C:\Program Files\<DIR> Intel [11/06/2008|11:56] C:\Program Files\<DIR> Internet Explorer [27/04/2008|04:09] C:\Program Files\<DIR> iPod [27/04/2008|04:09] C:\Program Files\<DIR> iTunes [26/10/2008|02:49] C:\Program Files\<DIR> Java [02/07/2008|07:37] C:\Program Files\<DIR> KLC [10/06/2008|04:39] C:\Program Files\<DIR> Lavasoft [25/10/2008|12:34] C:\Program Files\<DIR> Malwarebytes' Anti-Malware [04/03/2008|12:26] C:\Program Files\<DIR> Messenger [27/10/2008|08:43] C:\Program Files\<DIR> Messenger Plus! Live [27/10/2008|08:31] C:\Program Files\<DIR> MessengerPlus! 3 [01/05/2008|12:50] C:\Program Files\<DIR> MetaStream [11/02/2008|07:47] C:\Program Files\<DIR> microsoft frontpage [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Office [26/02/2008|04:39] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Visual Studio [11/02/2008|08:17] C:\Program Files\<DIR> Microsoft Works [30/03/2008|01:45] C:\Program Files\<DIR> Movie Maker [28/10/2008|09:56] C:\Program Files\<DIR> Mozilla Firefox [30/03/2008|12:29] C:\Program Files\<DIR> MSBuild [11/02/2008|10:10] C:\Program Files\<DIR> MSN [11/02/2008|07:44] C:\Program Files\<DIR> MSN Gaming Zone [11/02/2008|11:03] C:\Program Files\<DIR> MySpace [29/03/2008|02:38] C:\Program Files\<DIR> NCH Software [29/03/2008|02:38] C:\Program Files\<DIR> NCH Swift Sound [11/02/2008|08:12] C:\Program Files\<DIR> Nero [11/02/2008|07:45] C:\Program Files\<DIR> NetMeeting [14/02/2008|09:39] C:\Program Files\<DIR> Ocean Technologies & Media [11/02/2008|07:44] C:\Program Files\<DIR> Online Services [11/02/2008|07:45] C:\Program Files\<DIR> Outlook Express [09/06/2008|03:07] C:\Program Files\<DIR> Paltalk Messenger [18/10/2008|08:40] C:\Program Files\<DIR> PC Doc Pro [26/03/2008|02:29] C:\Program Files\<DIR> PlayLinc [27/04/2008|04:09] C:\Program Files\<DIR> QuickTime [11/03/2008|10:43] C:\Program Files\<DIR> Real [11/02/2008|09:32] C:\Program Files\<DIR> Realtek [30/03/2008|12:26] C:\Program Files\<DIR> Reference Assemblies [19/10/2008|04:39] C:\Program Files\<DIR> Registry Easy [11/02/2008|10:59] C:\Program Files\<DIR> Skype [24/08/2008|03:22] C:\Program Files\<DIR> Sony [30/03/2008|12:20] C:\Program Files\<DIR> Sony Setup [19/10/2008|04:15] C:\Program Files\<DIR> Spybot - Search & Destroy [11/02/2008|11:29] C:\Program Files\<DIR> StealthBot [02/10/2008|11:51] C:\Program Files\<DIR> Steam [19/07/2008|07:27] C:\Program Files\<DIR> Sun [10/06/2008|01:33] C:\Program Files\<DIR> SUPERAntiSpyware [11/02/2008|11:18] C:\Program Files\<DIR> Teamspeak2_RC2 [19/09/2008|12:24] C:\Program Files\<DIR> TeamViewer3 [02/10/2008|12:34] C:\Program Files\<DIR> TeaTimer (Spybot - Search & Destroy) [25/04/2008|11:17] C:\Program Files\<DIR> Trend Micro [26/03/2008|02:08] C:\Program Files\<DIR> Ubisoft [11/02/2008|07:51] C:\Program Files\<DIR> Uninstall Information [27/02/2008|01:35] C:\Program Files\<DIR> USBToolbox [29/06/2008|10:17] C:\Program Files\<DIR> uTorrent [11/02/2008|10:29] C:\Program Files\<DIR> Ventrilo [16/06/2008|09:57] C:\Program Files\<DIR> VentSrv [04/03/2008|09:42] C:\Program Files\<DIR> VideoLAN [24/08/2008|03:22] C:\Program Files\<DIR> Vstplugins [28/10/2008|07:23] C:\Program Files\<DIR> Warcraft III [02/10/2008|11:39] C:\Program Files\<DIR> WC3Banlist [26/10/2008|04:56] C:\Program Files\<DIR> Windows Live [27/10/2008|08:40] C:\Program Files\<DIR> Windows Live Favorites [26/10/2008|12:55] C:\Program Files\<DIR> Windows Live Safety Center [27/10/2008|08:41] C:\Program Files\<DIR> Windows Live Toolbar [22/02/2008|06:34] C:\Program Files\<DIR> Windows Media Connect 2 [23/02/2008|07:02] C:\Program Files\<DIR> Windows Media Player [11/02/2008|07:44] C:\Program Files\<DIR> Windows NT [11/02/2008|07:46] C:\Program Files\<DIR> WindowsUpdate [16/05/2008|10:17] C:\Program Files\<DIR> WinPcap [20/07/2008|05:37] C:\Program Files\<DIR> WinRAR [12/05/2008|10:46] C:\Program Files\<DIR> Wolfenstein - Enemy Territory [27/10/2008|07:47] C:\Program Files\<DIR> World of Warcraft [11/02/2008|07:47] C:\Program Files\<DIR> xerox [24/07/2008|11:19] C:\Program Files\<DIR> Xfire [04/03/2008|12:26] C:\Program Files\<DIR> Xvid [11/02/2008|10:22] C:\Program Files\<DIR> Yahoo! --------------------\\ Listing Folders in C:\Program Files\Common Files [27/10/2008|05:56] C:\Program Files\Common Files\<DIR> Adobe [11/02/2008|08:13] C:\Program Files\Common Files\<DIR> Ahead [11/02/2008|11:29] C:\Program Files\Common Files\<DIR> AOL [27/04/2008|04:08] C:\Program Files\Common Files\<DIR> Apple [18/09/2008|12:51] C:\Program Files\Common Files\<DIR> Blizzard Entertainment [11/02/2008|08:17] C:\Program Files\Common Files\<DIR> DESIGNER [24/05/2008|04:20] C:\Program Files\Common Files\<DIR> EasyInfo [27/02/2008|01:35] C:\Program Files\Common Files\<DIR> InstallShield [15/02/2008|05:52] C:\Program Files\Common Files\<DIR> Java [27/10/2008|08:39] C:\Program Files\Common Files\<DIR> Microsoft Shared [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> MSSoap [13/03/2008|05:15] C:\Program Files\Common Files\<DIR> Nullsoft [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> ODBC [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> Real [11/02/2008|07:45] C:\Program Files\Common Files\<DIR> Services [11/02/2008|10:59] C:\Program Files\Common Files\<DIR> Skype [02/03/2008|07:09] C:\Program Files\Common Files\<DIR> snp2std [12/02/2008|06:38] C:\Program Files\Common Files\<DIR> SpeechEngines [11/02/2008|08:15] C:\Program Files\Common Files\<DIR> System [26/02/2008|04:33] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller [10/06/2008|04:39] C:\Program Files\Common Files\<DIR> Wise Installation Wizard [11/03/2008|10:43] C:\Program Files\Common Files\<DIR> xing shared --------------------\\ Process ( 40 Processes ) ... OK ! --------------------\\ Searching with S_Lop No Lop folder found ! --------------------\\ Searching for Lop Files - Folders No Lop folder found ! --------------------\\ Searching within the Registry ..... OK ! --------------------\\ Checking the Hosts file Hosts file CLEAN --------------------\\ Searching for hidden files with Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-10-28 22:01:00 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 120 --------------------\\ Searching for other infections No other infections found ! [F:1490][D:25]-> C:\DOCUME~1\Justin\LOCALS~1\Temp [F:47][D:0]-> C:\DOCUME~1\Justin\Cookies [F:1835][D:8]-> C:\DOCUME~1\Justin\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - Sun 26/10/2008| 0:18 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - Tue 28/10/2008|19:48 - Option : [1] 3 - "C:\Lop SD\LopR_3.txt" - Tue 28/10/2008|22:01 - Option : [3] --------------------\\ Scan completed at 22:01:46 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:09:46 PM, on 28/10/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\VentSrv\ventrilo_svc.exe C:\Program Files\VentSrv\ventrilo_srv.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\FixCamera.exe C:\WINDOWS\tsnp2std.exe C:\WINDOWS\vsnp2std.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R3 - URLSearchHook: AOLSearchHook Class - {54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - C:\Program Files\AOL Search\AOLSearch.dll R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [First 01 Poll Send] C:\Documents and Settings\All Users\Application Data\SETUP BEND FIRST 01\burn title.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Warkeys Update.lnk = C:\Documents and Settings\Justin\Desktop\Warkeys\AutoWarkey\AutoHotkey\AutoHotkey.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: PalTalk.lnk = C:\Program Files\Paltalk Messenger\paltalk.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1202728700234 O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: !saswinlogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: Ventrilo - Unknown owner - C:\Program Files\VentSrv\ventrilo_svc.exe -- End of file - 8198 bytes
  15. i did delete it mate but i put it back becuz i enjoyed the features it gave me it made msn easyer is all if cid is the only pop ups then ill have to just deal with them...