GodsSoldier
Newbie
Posts: 15
|
 |
Re: Please Help - HijackThis Scan log
« Reply #2 on: May 24th, 2008, 12:55pm » |
 Quote  Modify
|
Thank You! 
I did all that already, I actually read some posts and did all of that. How do programs like friend finder get on my machine that I never download? I have noticed some stuff in the log I have never even used. Are these all hackers  and should i look out for them in the future?
It says my post is too long I am posting separately I hope that is ok.
Here is beginning of combolog:
ComboFix 08-05-21.3 - Flaca 2008-05-24 13:25:30.3 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.563 [GMT -4:00]
Running from: C:\Documents and Settings\Flaca\Desktop\ComboFix.exe
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((( Files Created from 2008-04-24 to 2008-05-24 )))))))))))))))))))))))))))))))
.
2008-05-24 12:45 . 2008-05-24 13:23
54,156
--ah-----
C:\WINDOWS\QTFont.qfn
2008-05-24 12:45 . 2008-05-24 12:45
1,409
--a------
C:\WINDOWS\QTFont.for
2008-05-24 12:30 . 2008-05-24 12:30
<DIR>
d--------
C:\Program Files\PC Drivers HeadQuarters
2008-05-24 12:30 . 2008-05-24 12:30
<DIR>
d--------
C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
2008-05-24 01:03 . 2008-05-24 01:03
<DIR>
d--------
C:\Documents and Settings\Flaca\Application Data\cerasus.media
2008-05-24 01:03 . 2008-05-24 01:03
<DIR>
d--------
C:\Documents and Settings\All Users\Application Data\cerasus.media
2008-05-24 00:58 . 2008-05-24 01:45
<DIR>
d--------
C:\Program Files\Chill
2008-05-23 21:32 . 2008-05-23 21:32
<DIR>
d--------
C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-05-23 20:37 . 2008-05-23 20:38
<DIR>
d--------
C:\Program Files\CCleaner
2008-05-23 19:33 . 2008-05-23 20:55
<DIR>
d--------
C:\Program Files\TrojanHunter 5.0
2008-05-21 21:11 . 2008-05-21 21:11
<DIR>
d--------
C:\Program Files\Common Files\Wise Installation Wizard
2008-05-20 17:49 . 2008-05-20 17:49
<DIR>
d--------
C:\Documents and Settings\All Users\Application Data\{9E97B640-FCFE-4900-B18A-72FAE662D6B7}
2008-05-20 17:48 . 2007-10-08 14:04
939,368
--a------
C:\WINDOWS\SYSTEM32\flash.ocx
2008-05-20 17:00 . 2000-03-23 12:50
446,464
-ra------
C:\WINDOWS\SYSTEM32\hhactivex.dll
2008-05-20 17:00 . 1999-05-07 13:24
414,944
--a------
C:\WINDOWS\SYSTEM32\COMCT332.OCX
2008-05-20 17:00 . 1998-11-10 10:46
328,480
--a------
C:\WINDOWS\SYSTEM32\ssa3d30.ocx
2008-05-20 17:00 . 2002-01-08 17:00
176,128
--a------
C:\WINDOWS\SYSTEM32\RcdScan.dll
2008-05-20 17:00 . 1998-09-24 12:03
171,967
--a------
C:\WINDOWS\SYSTEM32\Odbcjet.hlp
2008-05-20 17:00 . 1998-06-17 23:00
89,360
--a------
C:\WINDOWS\SYSTEM32\VB5DB.DLL
2008-05-20 17:00 . 1998-09-24 12:03
7,348
--a------
C:\WINDOWS\SYSTEM32\Odbcjet.cnt
2008-05-20 12:22 . 2008-05-20 12:22
<DIR>
d--------
C:\WINDOWS\SYSTEM32\Migration
2008-05-20 11:50 . 2008-05-20 11:50
<DIR>
d--------
C:\Program Files\RegCure
2008-05-19 18:53 . 2008-05-19 18:53
221,184
--a------
C:\WINDOWS\SnoopFreeUI.exe
2008-05-19 18:53 . 2008-05-19 18:53
90,112
--a------
C:\WINDOWS\SYSTEM32\SnoopFreeSvc.exe
2008-05-19 18:53 . 2008-05-19 18:53
45,056
--a------
C:\WINDOWS\SnoopFreeDll.dll
2008-05-19 18:53 . 2008-05-19 18:53
9,472
--a------
C:\WINDOWS\SYSTEM32\DRIVERS\SnopFree.sys
2008-05-16 11:58 . 2008-05-16 11:58
12,632
--a------
C:\WINDOWS\SYSTEM32\lsdelete.exe
2008-04-29 11:20 . 2008-04-29 11:20
15,648
--a------
C:\WINDOWS\SYSTEM32\DRIVERS\NSDriver.sys
2008-04-29 11:19 . 2008-04-29 11:19
15,648
--a------
C:\WINDOWS\SYSTEM32\DRIVERS\Awrtrd.sys
2008-04-29 11:19 . 2008-04-29 11:19
12,960
--a------
C:\WINDOWS\SYSTEM32\DRIVERS\Awrtpd.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-24 16:31
---------
d--h--w
C:\Program Files\InstallShield Installation Information
2008-05-24 05:52
---------
d---a-w
C:\Documents and Settings\All Users\Application Data\TEMP
2008-05-24 04:58
---------
d-----w
C:\Program Files\Common Files\Oberon Media
2008-05-24 01:05
---------
d-----w
C:\Program Files\Spybot - Search & Destroy
2008-05-24 01:04
---------
d-----w
C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-05-24 00:56
---------
d-----w
C:\Program Files\Trapware Corporation
2008-05-24 00:37
---------
d-----w
C:\Program Files\Yahoo!
2008-05-24 00:05
---------
d-----w
C:\Program Files\Google
2008-05-22 01:12
---------
d-----w
C:\Program Files\Lavasoft
2008-05-22 01:12
---------
d-----w
C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-05-20 16:24
---------
d-----w
C:\Documents and Settings\All Users\Application Data\avg7
2008-05-20 16:11
---------
d-----w
C:\Program Files\Real
2008-05-20 16:11
---------
d-----w
C:\Documents and Settings\Flaca\Application Data\Move Networks
2008-05-17 13:05
---------
d-----w
C:\Documents and Settings\Flaca\Application Data\AdobeUM
2008-05-04 20:45
---------
d-----w
C:\Program Files\XoftSpySE
2008-04-27 19:07
---------
d-----w
C:\Program Files\Common Files\Adobe
2008-04-22 02:38
---------
d-----w
C:\Documents and Settings\All Users\Application Data\HPSSUPPLY
2008-04-21 19:23
---------
d-----w
C:\Program Files\VirtualDJ
2008-04-21 18:36
---------
d-----w
C:\Program Files\McAfee
2008-04-21 17:26
---------
d-----w
C:\Documents and Settings\Flaca\Application Data\AVG7
2008-04-20 22:05
---------
d-----w
C:\Documents and Settings\LocalService\Application Data\AVG7
2008-04-20 18:36
---------
d-----w
C:\Program Files\Viewpoint
2008-04-17 23:30
---------
d-----w
C:\Program Files\Trend Micro
2008-04-17 20:07
---------
d-----w
C:\Program Files\RegistryFix
2008-04-16 02:40
---------
d-----w
C:\Program Files\MSECache
2008-04-04 00:17
---------
d-----w
C:\Program Files\iTunes
2008-04-04 00:17
---------
d-----w
C:\Program Files\iPod
2008-04-04 00:13
---------
d-----w
C:\Program Files\QuickTime
2008-03-27 08:12
151,583
----a-w
C:\WINDOWS\SYSTEM32\msjint40.dll
2008-03-19 09:47
1,845,248
----a-w
C:\WINDOWS\SYSTEM32\win32k.sys
2008-03-01 13:06
826,368
----a-w
C:\WINDOWS\SYSTEM32\wininet.dll
2008-02-25 20:18
0
----a-w
C:\WINDOWS\Fonts\AeroOutline.tt
2008-02-25 20:18
0
----a-w
C:\WINDOWS\Fonts\AeroLight.tt
2008-02-25 20:18
0
----a-w
C:\WINDOWS\Fonts\AeroExtended.tt
2008-02-25 20:18
0
----a-w
C:\WINDOWS\Fonts\AeroCondensed.tt
2008-02-25 20:18
0
----a-w
C:\WINDOWS\Fonts\Aero.tt
2008-02-25 20:17
82
----a-w
C:\WINDOWS\Fonts\._.DS_Store
2007-02-03 17:20
974,268
--sha-w
C:\WINDOWS\INF\vsrtne.ini2
2006-07-15 02:39
10,752
--sha-w
C:\Program Files\Thumbs.db
2005-09-02 00:06
186
----a-w
C:\Program Files\seven.reg
2005-07-30 00:00
664,654
----a-w
C:\Program Files\screen_03.exe
2005-07-29 23:59
967,234
----a-w
C:\Program Files\screen_04.exe
2005-07-29 23:58
683,024
----a-w
C:\Program Files\screen_02.exe
2005-07-29 23:56
664,203
----a-w
C:\Program Files\screen_01.exe
2005-07-25 19:24
1,782,960
----a-w
C:\Program Files\tmas-web-scan.exe
2005-03-09 21:44
4,970
----a-w
C:\Program Files\SEvEN.nfo
2005-03-09 21:41
174
----a-w
C:\Program Files\seven.dat
2005-03-09 21:14
49,152
----a-w
C:\Program Files\snd3d.dll
2005-03-09 21:14
32,768
----a-w
C:\Program Files\snd3d_fmod.dll
2005-03-09 21:14
193,772
----a-w
C:\Program Files\splashscreen.jpg
2005-03-09 21:14
176,128
----a-w
C:\Program Files\ui2.dll
2005-03-09 21:14
16,255,227
----a-w
C:\Program Files\data.mjz
2004-12-09 03:06
893,252
----a-r
C:\Program Files\What's New in 6_0.pdf
2004-12-09 03:06
632,550
----a-r
C:\Program Files\Contacting Quark.pdf
2004-12-09 03:06
509,570
----a-r
C:\Program Files\Demo ReadMe.pdf
2004-12-09 03:06
152,053
----a-r
C:\Program Files\License Agreement.pdf
2004-12-09 03:06
1,082,258
----a-r
C:\Program Files\Guide to QXP Addendum.pdf
2004-12-09 03:05
474,353
----a-r
C:\Program Files\Updater ReadMe.pdf
2004-12-04 00:03
50,665,546
----a-r
C:\Program Files\Data1.cab
2004-12-04 00:03
4,188,160
----a-r
C:\Program Files\QuarkXPress 6.5 Demo.msi
2004-08-18 19:01
2,931,712
---ha-w
C:\Program Files\BOOTIMG.BIN
2004-08-18 19:00
2,048
---ha-w
C:\Program Files\BOOTCAT.BIN
2004-08-18 13:34
2,740
----a-w
C:\Program Files\INSTOPTS.DAT
2004-08-18 13:09
577,024
----a-w
C:\Program Files\SCRBLOCK.MSI
2004-08-18 13:09
204,997
----a-w
C:\Program Files\DEFRULES.DAT
2004-08-18 13:09
2,182,656
----a-w
C:\Program Files\IWP.MSI
2004-08-18 13:08
556,032
----a-w
C:\Program Files\PARENT.MSI
2004-08-18 13:08
100,864
----a-w
C:\Program Files\MSREDIST.MSI
2004-08-18 13:08
1,132,544
----a-w
C:\Program Files\SYMLT.MSI
2004-08-18 13:08
1,121,280
----a-w
C:\Program Files\NAV.MSI
2004-08-18 12:54
1,475,072
----a-w
C:\Program Files\DISK3.IMG
2004-08-18 12:51
1,475,072
----a-w
C:\Program Files\DISK2.IMG
2004-08-18 12:49
1,475,072
----a-w
C:\Program Files\DISK1.IMG
2004-08-18 12:44
99,456
----a-w
C:\Program Files\APWCMD9X.DLL
2004-08-18 12:20
110
----a-w
C:\Program Files\VERSION.DAT
2004-08-18 03:36
87,192
----a-w
C:\Program Files\SYMLTCOM.DLL
2004-08-18 03:36
74,904
----a-w
C:\Program Files\LTCHKRES.DLL
2004-08-18 03:36
656,536
----a-w
C:\Program Files\SYMUIHLP.DLL
2004-08-18 03:36
324,760
----a-w
C:\Program Files\SYMUIAX2.OCX
2004-08-18 03:36
226,456
----a-w
C:\Program Files\ACTRES.DLL
2004-08-18 03:36
22,168
----a-w
C:\Program Files\LRSEND.EXE
2004-08-18 03:36
169,112
----a-w
C:\Program Files\SLTCHK01.DLL
2004-08-18 03:36
169,112
----a-w
C:\Program Files\DJSALERT.DLL
2004-08-18 03:36
148,632
----a-w
C:\Program Files\SYMLCUI.DLL
2004-08-18 03:36
140,440
----a-w
C:\Program Files\SYMBBAAX.OCX
2004-08-18 03:36
132,248
----a-w
C:\Program Files\CFGWIZ.EXE
2004-08-18 03:22
9,728
----a-w
C:\Program Files\UNIN.DLL
2004-08-18 03:22
9,728
----a-w
C:\Program Files\SYMHELP.DLL
2004-08-18 03:22
9,728
----a-w
C:\Program Files\SUPT_CPD.DLL
2004-08-18 03:22
9,728
----a-w
C:\Program Files\OPTIONS.DLL
2004-08-18 03:22
9,728
----a-w
C:\Program Files\MONITOR.DLL
2004-08-18 03:22
9,728
----a-w
C:\Program Files\LU_SUB.DLL
2004-08-18 03:22
3,832
----a-w
C:\Program Files\CFGWIZ.TLB
2004-08-18 03:22
112,640
----a-w
C:\Program Files\HELP.MSI
2004-08-18 03:21
9,728
----a-w
C:\Program Files\NAV_001.DLL
2004-08-18 03:21
9,728
----a-w
C:\Program Files\LU_PC.DLL
2004-08-18 03:21
9,728
----a-w
C:\Program Files\LU_MODE.DLL
2004-08-18 03:21
9,728
----a-w
C:\Program Files\LU_FAQ.DLL
2004-08-18 03:21
9,728
----a-w
C:\Program Files\LU_004.DLL
2004-08-18 03:21
9,728
----a-w
C:\Program Files\LU_003.DLL
2007-02-03 17:20
974,268
--sha-w
C:\WINDOWS\INF\vsrtne.ini2
.
((((((((((((((((((((((((((((( snapshot@2008-05-23_21.54.18.28 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-05-24 16:30:44
184,320
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\DriversHQ.DriverDet#\3ca8 c7d362d7a3675c344c1579b30005\DriversHQ.DriverDetective.Common.ni.dll
+ 2008-05-24 16:30:26
2,236,416
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\DriversHQ.DriverDet#\44eb d042ef56bf4c9ca617adb1942a74\DriversHQ.DriverDetective.Client.ni.exe
+ 2008-05-24 16:30:45
57,856
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\DriversHQ.DriverDet#\ad84 0beeac4cf221d79b894e731a52a5\DriversHQ.DriverDetective.ExceptionLogging. ni.dll
+ 2008-05-24 16:30:37
225,280
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\DriversHQ.DriverDet#\c533 129262205686976f2d05d3fc89e9\DriversHQ.DriverDetective.Client.Communicat ion.ni.dll
+ 2008-05-24 16:30:45
249,856
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Applicati#\9b29 f77352782e25520051e9a2165ccd\Microsoft.ApplicationBlocks.Updater.ni.dll
+ 2008-05-24 16:30:53
2,441,216
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.JScript\b3b62fe 820b416515420a6ec17b247c3\Microsoft.JScript.ni.dll
+ 2008-05-24 16:30:55
167,936
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\264a 02da4ba71b8ad3bc5c65d21f535a\Microsoft.Practices.EnterpriseLibrary.Secur ity.Cryptography.ni.dll
+ 2008-05-24 16:30:54
356,352
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\7752 f8cfb86957944f4882ace6f996c2\Microsoft.Practices.ObjectBuilder.ni.dll
+ 2008-05-24 16:30:47
368,640
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\ea85 63fc0a0c59330ab878a2f428a3f6\Microsoft.Practices.EnterpriseLibrary.Commo n.ni.dll
+ 2008-05-24 16:30:37
17,920
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\cd07306 94ba5927a6efd32129783e1b4\Microsoft.VisualC.ni.dll
+ 2008-05-24 16:30:53
77,824
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.Vsa\e674ba75a51 4e00b26329e212da938e0\Microsoft.Vsa.ni.dll
+ 2008-05-24 16:30:35
163,840
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\c466 25ea87db53ccf6194fe17ee05c19\System.Configuration.Install.ni.dll
+ 2008-05-24 16:30:43
1,183,744
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data.OracleC#\1abd b47765d0696a2fc0a1095bac0249\System.Data.OracleClient.ni.dll
+ 2008-05-24 16:30:33
2,756,608
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data.SqlXml\e59504 af41afab5e04681af951d9b302\System.Data.SqlXml.ni.dll
+ 2008-05-24 16:30:49
1,064,960
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\29c7192 327cf3999961560bf3a3995c6\System.Management.ni.dll
+ 2008-05-24 16:30:40
815,104
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\0898f6c1de8cb89413d206e3d6a3ce1d\System.Runtime.Remoting.ni.dll
+ 2008-05-24 16:30:35
339,968
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\1f5c f8178029f5b959a9af75cb8cfedb\System.Runtime.Serialization.Formatters.Soa p.ni.dll
+ 2008-05-24 16:30:56
139,264
----a-w
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\XPBurnComponent\1fcfda856 b6a110ed833efa1ec27e647\XPBurnComponent.ni.dll
- 2008-05-24 01:40:46
2,048
--s-a-w
C:\WINDOWS\BOOTSTAT.DAT
+ 2008-05-24 17:23:32
2,048
--s-a-w
C:\WINDOWS\BOOTSTAT.DAT
+ 2008-05-24 16:30:07
26,694
----a-r
C:\WINDOWS\Installer\{621C02EA-AAFF-4026-A903-165D59529A16}\ARPPRODUCTIC ON.exe
+ 2008-05-24 16:30:07
69,632
----a-r
C:\WINDOWS\Installer\{621C02EA-AAFF-4026-A903-165D59529A16}\DriversHQ.Dr iverDe_212B77217E284373BD0AA155B0932A89.exe
+ 2008-05-24 16:30:07
69,632
----a-r
C:\WINDOWS\Installer\{621C02EA-AAFF-4026-A903-165D59529A16}\DriversHQ.Dr iverDe_212B77217E284373BD0AA155B0932A89_1.exe
.
((((((((((((((((((((((((((((((((((((((((((((( AWF ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
----a-w 278,528 2005-05-14 04:20:50 C:\Program Files\iTunes\bak\iTunesHelper.exe
----a-w 267,048 2008-03-30 14:36:40 C:\Program Files\iTunes\iTunesHelper.exe
----a-w 98,304 2005-07-25 23:01:09 C:\Program Files\QuickTime\bak\qttask.exe
----a-w 413,696 2008-03-29 03:37:20 C:\Program Files\QuickTime\QTTask.exe
----a-w 13,312 2003-07-16 16:20:13 C:\WINDOWS\SYSTEM32\bak\ctfmon.exe
----a-w 15,360 2004-08-04 05:56:50 C:\WINDOWS\SYSTEM32\ctfmon.exe
----a-w 172,032 2004-04-06 10:28:46 C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\bak\hpztsb11.exe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Weather"="C:\PROGRA~1\AWS\WEATHE~1\Weather.exe" [ ]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 01:56 15360]
"Active Desktop Calendar"="C:\Program Files\XemiComputers\Active Desktop Calendar\ADC.exe" [ ]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"DelayShred"="c:\program files\mcafee\mshr\ShrCL.exe" [2007-01-17 19:02 95784]
"CheckNetworkConnection"="C:\Program Files\Support.com\providerComcast\desktopdoctor.exe" [ ]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"xclzreq"="c:\windows\system32\xzrcser.exe" [ ]
"ATIModeChange"="Ati2mdxx.exe" [2001-09-04 18:24 28672 C:\WINDOWS\SYSTEM32\Ati2mdxx.exe]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784]
"YSearchProtection"="C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" [ ]
"Acrobat Assistant 7.0"="C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe" [2008-04-23 02:08 483328]
"UpdateManager"="C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" [2003-08-19 02:01 110592]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2008-01-26 17:20 185896]
"SM1BG"="C:\WINDOWS\SM1BG.EXE" [ ]
"ShStatEXE"="C:\Program Files\Network Associates\VirusScan\SHSTAT.exe" [ ]
"PCMService"="C:\Program Files\Dell\Media Experience\PCMService.exe" [ ]
"McAfeeUpdaterUI"="C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" [ ]
"jgqemc"="C:\WINDOWS\System32\jjcvhsmm.exe" [ ]
"irznlKCax"="C:\documents and settings\flaca\local settings\temp\irznlKCax.exe" [ ]
"ibecdbv8"="C:\WINDOWS\system32\ibecdbv8.exe" [ ]
"DVDSentry"="C:\WINDOWS\System32\DSentry.exe" [2003-08-13 12:27 28672]
"dla"="C:\WINDOWS\system32\dla\tfswctrl.exe" [2003-08-06 03:04 114741]
"Dell AIO Printer A960"="C:\Program Files\Dell AIO Printer A960\dlbfbmgr.exe" [ ]
"defghijklm"="C:\WINDOWS\System32\defghijklm.exe" [ ]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [ ]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 20:51 39792]
"McAfee Backup"="C:\Program Files\McAfee\MBK\McAfeeDataBackup.exe" [2007-01-16 14:59 4838952]
"MBkLogOnHook"="C:\Program Files\McAfee\MBK\LogOnHook.exe" [2007-01-08 12:22 20480]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2008-03-28 23:37 413696]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-03-30 10:36 267048]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 11:09 63712]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 22:34 49152]
"SnoopFreeUI"="SnoopFreeUI.exe" [2008-05-19 18:53 221184 C:\WINDOWS\SnoopFreeUI.exe]
"tgcmd"="C:\Program Files\Support.com\bin\tgcmd.exe" [ ]
"BJCFD"="C:\Program Files\BroadJump\Client Foundation\CFD.exe" [ ]
"AIMPro"="C:\Program Files\AIM\AIM Pro\aimpro.exe" [ ]
"Adobe Version Cue CS2"="C:\Program Files\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe" [2005-04-04 18:58 856064]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\System32\ctfmon.exe" [2004-08-04 01:56 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"RunNarrator"="Narrator.exe" [2004-08-04 01:56 53760 C:\WINDOWS\SYSTEM32\narrator.exe]
"tscuninstall"="C:\WINDOWS\system32\tscupgrd.exe" [2004-08-04 01:59 44544]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Acrobat Speed Launcher.lnk - C:\WINDOWS\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.e xe [2007-10-16 18:20:26 25214]
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2003-02-17 23:25:57 110592]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"MSACM.MSNAUDIO"= msnaudio.acm
"SENTINEL"= snti386.dll
"VIDC.JDCT"= jl_jdct.drv
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Digital Line Detect.lnk]
|
Buy Now
Search
Members
Login
Register
Mischel Internet Security Forum
Reply
Notify of replies
Send Topic
Print
Author
IP Logged
Log for the TrojanHunter scan: 
