"This operation has been cancelled due to restrictions on this computer"

[Crazypete3]

I am having trouble, i don't know if a virus got into my computer and changed the registry keys of my administrator or if i just have a computer error that needs to be fixed.

When ever i go into control panel, my documents, my music, my computer ect. every time i click the x to get out, it keeps giving me a message saying "This operation has been canceled due to restrictions in effect on this computer. Please contact your system administrator."

The most strangest this is, im the computer administrator. I recently ran malwarebytes and it caught 5 viruses that corrupted some of my microsoft regedit keys.


Registry Data Items Infected:
HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Internet Explorer\control panel\ConnectionsTab (Hijack.ConnectionControl) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\NoDispAppearancePage (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\NoDispBackgroundPage (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\NoDispScrSavPage (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoToolbarCustomize (Hijack.Explorer) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

after that i could click on internet options, but i still get the message when i click out of a window

 

[Osiris]

Run combofix and post its log

 

[Crazypete3]

Wow, its fixed my problem. Heres the log anyway cause you asked for it.

ComboFix 10-05-20.A4 - Travis Kenyon 05/21/2010 12:12:22.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.686 [GMT -5:00]
Running from: c:\documents and settings\Travis Kenyon\My Documents\Downloads\ComboFix.exe
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Travis Kenyon\Application Data\inst.exe

.
((((((((((((((((((((((((( Files Created from 2010-04-21 to 2010-05-21 )))))))))))))))))))))))))))))))
.

2010-05-21 03:30 . 2010-05-21 03:30 -------- dc-h--w- c:\windows\ie8
2010-05-15 21:08 . 2010-05-15 21:08 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\mkvtoolnix
2010-05-15 21:08 . 2010-05-15 21:08 -------- d-----w- c:\program files\MKVtoolnix
2010-05-15 02:41 . 2010-05-15 02:42 -------- d-----w- c:\program files\Customizer XP
2010-05-15 02:13 . 2010-05-15 02:13 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\Comodo Downloader
2010-05-15 02:06 . 2010-05-15 02:06 -------- d-----w- C:\VritualRoot
2010-05-15 02:04 . 2010-05-21 03:17 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\COMODO
2010-05-15 02:04 . 2010-05-21 03:19 972225 ----a-w- c:\windows\system32\drivers\sfi.dat
2010-05-15 01:55 . 2010-05-15 01:55 -------- d-----w- c:\program files\COMODO
2010-05-15 01:41 . 2010-05-15 02:02 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\Norton
2010-05-15 01:41 . 2010-05-15 01:41 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\Symantec
2010-05-15 01:41 . 2010-05-15 01:41 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\NortonInstaller
2010-05-14 22:43 . 2010-05-14 22:43 57344 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\RunAsUser\RUNASUSERPROCESS.dll
2010-05-14 22:40 . 2010-05-14 22:40 144696 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\RunAsUser\RUNASUSERPROCESS.exe
2010-05-14 21:56 . 2010-02-09 20:37 65602 ----a-w- c:\windows\system32\cook3260.dll
2010-05-14 21:56 . 2010-02-09 20:37 217127 ----a-w- c:\windows\system32\drv43260.dll
2010-05-14 21:56 . 2010-02-09 20:37 208935 ----a-w- c:\windows\system32\drv33260.dll
2010-05-14 21:56 . 2010-02-09 20:37 176165 ----a-w- c:\windows\system32\drv23260.dll
2010-05-14 21:56 . 2010-02-09 20:37 102439 ----a-w- c:\windows\system32\sipr3260.dll
2010-05-14 21:56 . 2010-02-09 20:37 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2010-05-14 21:56 . 2010-02-09 20:37 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2010-05-14 03:50 . 2003-02-27 03:27 36864 ----a-w- c:\windows\system32\wbsys.dll
2010-05-14 03:50 . 2010-05-14 04:07 -------- d-----w- c:\program files\AlienGUIse
2010-05-14 03:50 . 2010-05-14 03:50 -------- d-----w- c:\program files\Common Files\Stardock
2010-05-14 03:45 . 2010-05-14 03:45 45056 ----a-w- c:\windows\system32\sstunst3.exe
2010-05-05 20:16 . 2010-05-05 20:16 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\Kaspersky SDK
2010-05-04 21:57 . 2010-05-04 21:57 -------- d-----w- c:\documents and settings\Travis Kenyon\Downloads
2010-05-04 18:04 . 2010-05-04 18:04 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\CheckPoint
2010-05-04 18:03 . 2010-05-14 22:38 -------- d-----w- c:\program files\CheckPoint
2010-05-04 18:03 . 2010-05-14 20:42 4212 ---ha-w- c:\windows\system32\zllictbl.dat
2010-05-04 18:02 . 2010-05-14 22:40 -------- d-----w- c:\windows\Internet Logs
2010-05-04 06:48 . 2010-05-04 06:48 -------- d-----w- c:\program files\EA GAMES
2010-05-04 04:11 . 2010-05-04 04:11 388096 ----a-r- c:\documents and settings\Travis Kenyon\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2010-05-04 04:11 . 2010-05-04 04:11 -------- d-----w- c:\program files\Trend Micro
2010-05-04 01:01 . 2010-05-04 01:01 -------- d-----w- c:\program files\Lame for Audacity
2010-05-03 23:13 . 2010-05-03 23:13 -------- d-----w- c:\documents and settings\Travis Kenyon\Local Settings\Application Data\WMTools Downloaded Files
2010-05-03 21:09 . 2010-05-11 23:54 -------- d-----w- c:\documents and settings\Travis Kenyon\Local Settings\Application Data\NFS Underground 2
2010-05-03 21:07 . 2010-05-03 21:07 -------- d-----w- c:\program files\Common Files\EasyInfo
2010-05-03 20:52 . 2010-05-03 20:52 -------- d-----w- c:\program files\Common Files\DirectX
2010-04-29 02:37 . 2008-02-14 21:21 180224 ----a-w- c:\documents and settings\Travis Kenyon\Application Data\Mozilla\Firefox\Profiles\6o8gvmob.default\extensions\{077a24e9-0db5-435f-9010-5261c53e5925}\plugins\npmabiwebframe.dll
2010-04-24 20:50 . 2010-05-04 03:00 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\Audacity
2010-04-24 20:43 . 2010-04-24 20:43 -------- d-----w- c:\program files\CONEXANT
2010-04-24 20:42 . 2003-11-17 20:59 212224 ----a-w- c:\windows\system32\drivers\HSFHWBS2.sys
2010-04-24 20:42 . 2003-11-17 20:58 680704 ----a-w- c:\windows\system32\drivers\HSF_CNXT.sys
2010-04-24 20:42 . 2003-11-17 20:56 1042432 ----a-w- c:\windows\system32\drivers\HSF_DP.sys
2010-04-24 20:42 . 2003-04-09 19:01 90112 ----a-w- c:\windows\system32\mdmxsdk.dll
2010-04-24 20:42 . 2003-04-09 18:48 11043 ----a-w- c:\windows\system32\drivers\mdmxsdk.sys
2010-04-24 20:42 . 2010-04-24 20:42 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\ATI
2010-04-24 20:38 . 2010-04-24 20:38 10134 ----a-r- c:\documents and settings\Travis Kenyon\Application Data\Microsoft\Installer\{F16DCA31-4DB4-F8F6-5ED1-6FAFB7228FFF}\ARPPRODUCTICON.exe
2010-04-24 20:19 . 2010-04-24 20:19 53248 ----a-r- c:\documents and settings\Travis Kenyon\Application Data\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2010-04-24 20:18 . 2010-04-24 20:18 16400 ----a-w- c:\windows\system32\drivers\LNonPnP.sys
2010-04-24 20:17 . 2010-04-24 20:19 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\LogiShrd
2010-04-24 20:12 . 2010-04-24 20:19 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\Logitech
2010-04-24 20:12 . 2010-04-24 20:13 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\Logishrd
2010-04-24 19:55 . 2010-04-24 19:55 -------- d-----w- c:\program files\Activision
2010-04-24 18:45 . 2010-05-04 06:39 697328 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-04-24 18:45 . 2010-05-03 20:46 -------- d-----w- c:\program files\DAEMON Tools Pro
2010-04-24 18:45 . 2010-05-03 20:47 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\DAEMON Tools Pro
2010-04-24 18:45 . 2010-05-03 20:47 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\DAEMON Tools Pro

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-05-21 17:10 . 2010-03-11 00:35 0 ----a-w- c:\windows\system32\drivers\lvuvc.hs
2010-05-21 17:10 . 2010-03-11 00:34 0 ----a-w- c:\windows\system32\drivers\logiflt.iad
2010-05-21 17:08 . 2010-03-23 08:58 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\uTorrent
2010-05-21 03:10 . 2010-04-01 22:26 42 ----a-w- c:\documents and settings\Travis Kenyon\jagex_runescape_preferences.dat
2010-05-20 23:47 . 2010-04-01 22:28 75 ----a-w- c:\documents and settings\Travis Kenyon\jagex_runescape_preferences2.dat
2010-05-16 04:33 . 2010-03-24 00:17 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\Vso
2010-05-14 22:43 . 2010-03-27 09:44 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX
2010-05-14 22:42 . 2010-05-14 22:42 56766 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\DivXPlusShortcuts\Uninstaller.exe
2010-05-14 22:42 . 2009-03-28 07:53 -------- d-----w- c:\program files\DivX
2010-05-14 22:42 . 2010-05-14 22:42 57679 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\Player\Uninstaller.exe
2010-05-14 22:42 . 2010-05-14 22:42 53600 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\Update\Uninstaller.exe
2010-05-14 22:42 . 2010-05-14 22:42 84040 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\TransferWizard\Uninstaller.exe
2010-05-14 22:42 . 2010-05-14 22:42 54166 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\DSAVCDecoder\Uninstaller.exe
2010-05-14 22:42 . 2010-05-14 22:42 57532 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\DSASPDecoder\Uninstaller.exe
2010-05-14 22:42 . 2010-05-14 22:42 54153 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\DFXPlugin\Uninstaller.exe
2010-05-14 22:42 . 2010-05-14 22:42 57409 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\ControlPanel\Uninstaller.exe
2010-05-14 22:42 . 2010-05-14 22:42 54128 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\Converter\Uninstaller.exe
2010-05-14 22:40 . 2010-03-27 09:48 754984 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\Setup\Resource.dll
2010-05-14 22:40 . 2010-03-27 09:48 1180952 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\Setup\DivXSetup.exe
2010-05-14 22:38 . 2010-02-14 21:34 -------- d-----w- c:\program files\uTorrent
2010-05-14 21:57 . 2010-03-24 00:17 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
2010-05-14 21:57 . 2010-03-24 00:17 47360 ----a-w- c:\documents and settings\Travis Kenyon\Application Data\pcouffin.sys
2010-05-14 21:57 . 2010-03-24 00:17 47360 ----a-w- c:\documents and settings\Travis Kenyon\Application Data\pcouffin.sys
2010-05-14 21:56 . 2010-02-15 04:08 -------- d-----w- c:\program files\VSO
2010-05-06 01:35 . 2009-08-31 03:23 -------- d-----w- c:\program files\Replay Media Catcher
2010-05-06 00:59 . 2010-03-23 08:48 237568 ----a-w- c:\windows\system32\rmc_rtspdl.dll
2010-05-06 00:59 . 2010-03-23 08:48 156672 ----a-w- c:\windows\system32\rmc_fixasf.exe
2010-05-06 00:59 . 2010-03-23 09:01 323584 ----a-w- c:\windows\system32\AUDIOGENIE2.DLL
2010-05-04 05:46 . 2009-06-17 22:10 -------- d-----w- c:\program files\SpeedFan
2010-05-04 04:03 . 2010-03-29 02:31 -------- d-----w- c:\program files\HyperCam Toolbar
2010-05-02 05:59 . 2009-02-24 04:21 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-29 20:39 . 2010-03-07 08:49 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-29 20:39 . 2010-03-07 08:49 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-28 23:45 . 2010-03-17 02:33 -------- d-----w- c:\program files\Sandboxie
2010-04-25 15:27 . 2010-03-11 00:15 -------- d-----w- c:\program files\ATI
2010-04-24 20:50 . 2009-02-24 23:49 -------- d-----w- c:\program files\Audacity 1.3 Beta (Unicode)
2010-04-24 20:39 . 2010-03-07 09:27 -------- d-----w- c:\program files\ATI Technologies
2010-04-24 20:19 . 2010-01-09 21:09 -------- d-----w- c:\program files\Common Files\LogiShrd
2010-04-24 20:18 . 2010-01-09 21:08 -------- d-----w- c:\program files\Logitech
2010-04-24 20:16 . 2009-02-22 20:03 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-04-06 20:12 . 2010-04-06 20:12 119808 ----a-w- c:\documents and settings\Travis Kenyon\Application Data\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@gamevance.com\components\FFTextLinks.dll
2010-04-06 02:59 . 2010-04-06 02:59 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\Broad Intelligence
2010-04-06 02:59 . 2010-04-06 02:59 -------- d-----w- c:\program files\MediaCoder Audio Edition
2010-04-01 22:28 . 2010-04-01 22:28 0 ----a-w- c:\documents and settings\Travis Kenyon\jagex__preferences3.dat
2010-03-31 01:58 . 2010-05-14 22:42 9200 ------w- c:\windows\system32\drivers\cdralw2k.sys
2010-03-31 01:58 . 2010-05-14 22:42 9072 ------w- c:\windows\system32\drivers\cdr4_xp.sys
2010-03-31 01:58 . 2010-05-14 22:42 44944 ------w- c:\windows\system32\drivers\PxHelp20.sys
2010-03-31 01:58 . 2010-05-14 22:42 133616 ------w- c:\windows\system32\pxafs.dll
2010-03-31 01:58 . 2010-03-27 09:48 125424 ------w- c:\windows\system32\pxinsi64.exe
2010-03-31 01:58 . 2010-03-27 09:48 123888 ------w- c:\windows\system32\pxcpyi64.exe
2010-03-30 20:29 . 2010-03-30 20:29 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2010-03-30 20:29 . 2010-03-30 20:29 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_nielprt_01007.Wdf
2010-03-30 20:25 . 2010-03-30 20:25 -------- d-----w- c:\program files\NetRatingsNetSight
2010-03-29 06:17 . 2010-03-29 06:17 3774 ----a-r- c:\documents and settings\Travis Kenyon\Application Data\Microsoft\Installer\{DB939A96-0B1A-4588-91E9-2133236D1E8B}\_CF12D5CBF38FEF7C0C142A.exe
2010-03-29 06:17 . 2010-03-29 06:17 3774 ----a-r- c:\documents and settings\Travis Kenyon\Application Data\Microsoft\Installer\{DB939A96-0B1A-4588-91E9-2133236D1E8B}\_2C07D269DB1C9A6B21A80F.exe
2010-03-29 06:17 . 2010-03-29 06:17 10134 ----a-r- c:\documents and settings\Travis Kenyon\Application Data\Microsoft\Installer\{DB939A96-0B1A-4588-91E9-2133236D1E8B}\_3E2FFC67266DB5651EAE44.exe
2010-03-29 06:17 . 2010-03-29 06:17 -------- d-----w- c:\program files\ppr
2010-03-29 02:31 . 2010-03-29 02:31 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\Toolbar4
2010-03-29 02:31 . 2010-02-02 22:12 -------- d-----w- c:\program files\HyCam2
2010-03-28 05:45 . 2010-03-28 05:45 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\Publish Providers
2010-03-28 05:45 . 2010-03-28 05:16 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\Sony
2010-03-28 05:31 . 2010-03-28 05:31 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\Sony
2010-03-28 05:15 . 2009-03-08 23:57 -------- d-----w- c:\program files\Sony
2010-03-27 16:48 . 2010-03-27 09:48 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\DivX
2010-03-27 09:48 . 2009-03-28 07:53 -------- d-----w- c:\program files\Common Files\DivX Shared
2010-03-27 09:48 . 2010-03-27 09:48 56978 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\WebPlayer\Uninstaller.exe
2010-03-27 09:48 . 2010-03-27 09:48 57054 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\DSDesktopComponents\Uninstaller.exe
2010-03-27 09:48 . 2010-03-27 09:48 56458 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\DivXDecoderShortcut\Uninstaller.exe
2010-03-27 09:48 . 2010-03-27 09:48 54174 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\DSAACDecoder\Uninstaller.exe
2010-03-27 09:48 . 2010-03-27 09:48 54629 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\TranscodeEngine\Uninstaller.exe
2010-03-27 09:48 . 2010-03-27 09:48 54101 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\MPEG2Plugin\Uninstaller.exe
2010-03-27 09:48 . 2010-03-27 09:48 52963 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\MSVC80CRTRedist\Uninstaller.exe
2010-03-27 09:48 . 2010-03-27 09:48 54073 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\Qt4.5\Uninstaller.exe
2010-03-27 09:47 . 2010-03-27 09:47 56969 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\DivX\ASPEncoder\Uninstaller.exe
2010-03-26 21:42 . 2009-02-25 11:13 -------- d-----w- c:\program files\CCleaner
2010-03-24 01:30 . 2010-03-24 01:30 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\vsosdk
2010-03-23 10:49 . 2009-02-26 03:21 -------- d-----w- c:\program files\AVS4YOU
2010-03-23 10:49 . 2009-02-26 03:22 -------- d-----w- c:\program files\Common Files\AVSMedia
2010-03-23 10:17 . 2010-03-23 10:17 -------- d-----w- c:\documents and settings\Travis Kenyon\Application Data\AVS4YOU
2010-03-23 10:17 . 2010-03-23 10:14 -------- d-----w- c:\documents and settings\All Users.WINDOWS\Application Data\AVS4YOU
2010-03-23 08:48 . 2010-03-23 08:48 -------- d-----w- c:\program files\Applian Director
2010-03-10 06:15 . 2004-08-04 10:00 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-03-08 17:59 . 2010-03-08 17:59 94208 ----a-w- c:\windows\system32\dpl100.dll
2010-03-07 17:15 . 2010-03-07 03:01 13104 ----a-w- c:\documents and settings\Travis Kenyon\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-03-07 09:34 . 2010-03-07 09:34 0 ----a-w- c:\windows\ativpsrm.bin
2010-03-07 09:21 . 2010-03-07 08:38 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-03-07 09:20 . 2010-03-07 09:20 98304 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\NexonUS\NGM\npNxGameUS.dll
2010-03-07 09:20 . 2010-03-07 09:20 765952 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\NexonUS\NGM\NGMDll.dll
2010-03-07 09:20 . 2010-03-07 09:20 401408 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\NexonUS\NGM\NGMResource.dll
2010-03-07 09:20 . 2010-03-07 09:20 258352 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\NexonUS\NGM\unicows.dll
2010-03-07 09:20 . 2010-03-07 09:20 172032 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\NexonUS\NGM\NGM.exe
2010-03-07 09:20 . 2010-03-07 09:20 126976 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\NexonUS\NGM\nxgameus.dll
2010-03-07 08:44 . 2010-03-07 08:44 1955472 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\NOS\Adobe_Downloads\install_flash_player_ax.exe
2010-03-07 08:38 . 2010-03-07 08:38 503808 ----a-w- c:\documents and settings\Travis Kenyon\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-2bab434a-n\msvcp71.dll
2010-03-07 08:38 . 2010-03-07 08:38 499712 ----a-w- c:\documents and settings\Travis Kenyon\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-2bab434a-n\jmc.dll
2010-03-07 08:38 . 2010-03-07 08:38 348160 ----a-w- c:\documents and settings\Travis Kenyon\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-2bab434a-n\msvcr71.dll
2010-03-07 08:38 . 2010-03-07 08:38 61440 ----a-w- c:\documents and settings\Travis Kenyon\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-2bedfe8b-n\decora-sse.dll
2010-03-07 08:38 . 2010-03-07 08:38 12800 ----a-w- c:\documents and settings\Travis Kenyon\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-2bedfe8b-n\decora-d3d.dll
2010-03-07 08:38 . 2010-03-07 08:38 411368 ----a-w- c:\windows\system32\deploytk.dll
2010-03-07 08:21 . 2010-03-07 08:21 1923768 ----a-w- c:\documents and settings\All Users.WINDOWS\Application Data\NOS\Adobe_Downloads\install_flash_player.exe
.

<pre>
c:\program files\Java\jre6\bin\jusched .exe
c:\program files\Malwarebytes' Anti-Malware\iyt .exe
c:\program files\Pando Networks\Media Booster\pmb .exe
c:\program files\Siber Systems\AI RoboForm\robotaskbaricon .exe
c:\program files\Unlocker\unlockerassistant .exe
</pre>

 

[Crazypete3]

((((((((((((((((((((((((((((( SnapShot@2010-05-04_04.05.35 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-05-21 17:10 . 2010-05-21 17:10 16384 c:\windows\Temp\Perflib_Perfdata_680.dat
+ 2010-03-07 06:03 . 2009-01-07 23:21 26144 c:\windows\system32\spupdsvc.exe
- 2010-03-07 06:03 . 2009-01-08 00:21 26144 c:\windows\system32\spupdsvc.exe
+ 2010-03-27 09:41 . 2009-01-07 23:20 16928 c:\windows\system32\spmsg.dll
+ 2010-03-27 09:48 . 2010-03-31 01:58 68080 c:\windows\system32\pxinsa64.exe
- 2010-03-27 09:48 . 2009-12-01 19:14 68080 c:\windows\system32\pxinsa64.exe
- 2010-03-27 09:48 . 2009-12-01 19:14 72176 c:\windows\system32\pxhpinst.exe
+ 2010-03-27 09:48 . 2010-03-31 01:58 72176 c:\windows\system32\pxhpinst.exe
- 2010-03-27 09:48 . 2009-12-01 19:14 68080 c:\windows\system32\pxcpya64.exe
+ 2010-03-27 09:48 . 2010-03-31 01:58 68080 c:\windows\system32\pxcpya64.exe
- 2006-03-04 03:33 . 2009-03-08 10:31 46592 c:\windows\system32\pngfilt.dll
+ 2006-03-04 03:33 . 2009-03-08 09:31 46592 c:\windows\system32\pngfilt.dll
+ 2009-01-08 00:20 . 2009-01-07 23:20 23552 c:\windows\system32\normaliz.dll
- 2009-01-08 00:20 . 2009-01-08 00:20 23552 c:\windows\system32\normaliz.dll
+ 2009-01-08 00:20 . 2009-01-07 23:20 24576 c:\windows\system32\nlsdl.dll
- 2009-01-08 00:20 . 2009-01-08 00:20 24576 c:\windows\system32\nlsdl.dll
- 2004-08-04 10:00 . 2009-03-08 10:31 48128 c:\windows\system32\mshtmler.dll
+ 2004-08-04 10:00 . 2009-03-08 09:31 48128 c:\windows\system32\mshtmler.dll
+ 2006-03-04 03:33 . 2009-03-08 09:31 66560 c:\windows\system32\mshtmled.dll
- 2006-03-04 03:33 . 2009-03-08 10:31 66560 c:\windows\system32\mshtmled.dll
+ 2004-08-04 10:00 . 2009-03-08 09:31 45568 c:\windows\system32\mshta.exe
- 2004-08-04 10:00 . 2009-03-08 10:31 45568 c:\windows\system32\mshta.exe
- 2009-03-08 10:31 . 2009-03-08 10:31 13312 c:\windows\system32\msfeedssync.exe
+ 2009-03-08 09:31 . 2009-03-08 09:31 13312 c:\windows\system32\msfeedssync.exe
- 2009-03-08 10:31 . 2010-02-25 06:24 55296 c:\windows\system32\msfeedsbs.dll
+ 2009-03-08 09:31 . 2010-02-25 06:24 55296 c:\windows\system32\msfeedsbs.dll
- 2004-08-04 10:00 . 2009-03-08 10:34 43008 c:\windows\system32\licmgr10.dll
+ 2004-08-04 10:00 . 2009-03-08 09:34 43008 c:\windows\system32\licmgr10.dll
- 2006-03-04 03:33 . 2009-03-08 10:32 94720 c:\windows\system32\inseng.dll
+ 2006-03-04 03:33 . 2009-03-08 09:32 94720 c:\windows\system32\inseng.dll
+ 2004-08-04 10:00 . 2009-03-08 09:31 34816 c:\windows\system32\imgutil.dll
- 2004-08-04 10:00 . 2009-03-08 10:31 34816 c:\windows\system32\imgutil.dll
+ 2009-03-08 10:32 . 2009-03-08 09:32 36864 c:\windows\system32\ieudinit.exe
- 2009-03-08 10:32 . 2009-03-08 10:32 36864 c:\windows\system32\ieudinit.exe
- 2004-08-04 10:00 . 2009-03-08 10:32 71680 c:\windows\system32\iesetup.dll
+ 2004-08-04 10:00 . 2009-03-08 09:32 71680 c:\windows\system32\iesetup.dll
+ 2004-08-04 10:00 . 2009-03-08 09:32 55808 c:\windows\system32\iernonce.dll
- 2004-08-04 10:00 . 2009-03-08 10:32 55808 c:\windows\system32\iernonce.dll
- 2009-01-08 00:20 . 2009-01-08 00:20 26112 c:\windows\system32\idndl.dll
+ 2009-01-08 00:20 . 2009-01-07 23:20 26112 c:\windows\system32\idndl.dll
+ 2009-03-08 09:31 . 2009-03-08 09:31 59904 c:\windows\system32\icardie.dll
- 2009-03-08 10:31 . 2009-03-08 10:31 59904 c:\windows\system32\icardie.dll
+ 2009-03-08 09:31 . 2009-03-08 09:31 46592 c:\windows\system32\dllcache\pngfilt.dll
- 2009-03-08 10:31 . 2009-03-08 10:31 46592 c:\windows\system32\dllcache\pngfilt.dll
- 2009-03-08 10:31 . 2009-03-08 10:31 48128 c:\windows\system32\dllcache\mshtmler.dll
+ 2009-03-08 09:31 . 2009-03-08 09:31 48128 c:\windows\system32\dllcache\mshtmler.dll
- 2009-03-08 10:31 . 2009-03-08 10:31 66560 c:\windows\system32\dllcache\mshtmled.dll
+ 2009-03-08 09:31 . 2009-03-08 09:31 66560 c:\windows\system32\dllcache\mshtmled.dll
- 2009-03-08 10:31 . 2009-03-08 10:31 45568 c:\windows\system32\dllcache\mshta.exe
+ 2009-03-08 09:31 . 2009-03-08 09:31 45568 c:\windows\system32\dllcache\mshta.exe
- 2009-03-08 10:34 . 2009-03-08 10:34 43008 c:\windows\system32\dllcache\licmgr10.dll
+ 2009-03-08 09:34 . 2009-03-08 09:34 43008 c:\windows\system32\dllcache\licmgr10.dll
+ 2009-03-08 09:33 . 2010-02-25 06:24 25600 c:\windows\system32\dllcache\jsproxy.dll
- 2009-03-08 10:33 . 2010-02-25 06:24 25600 c:\windows\system32\dllcache\jsproxy.dll
+ 2009-03-08 09:32 . 2009-03-08 09:32 94720 c:\windows\system32\dllcache\inseng.dll
- 2009-03-08 10:32 . 2009-03-08 10:32 94720 c:\windows\system32\dllcache\inseng.dll
- 2009-03-08 10:31 . 2009-03-08 10:31 34816 c:\windows\system32\dllcache\imgutil.dll
+ 2009-03-08 09:31 . 2009-03-08 09:31 34816 c:\windows\system32\dllcache\imgutil.dll
- 2009-03-08 10:32 . 2009-03-08 10:32 71680 c:\windows\system32\dllcache\iesetup.dll
+ 2009-03-08 09:32 . 2009-03-08 09:32 71680 c:\windows\system32\dllcache\iesetup.dll
- 2009-03-08 10:32 . 2009-03-08 10:32 55808 c:\windows\system32\dllcache\iernonce.dll
+ 2009-03-08 09:32 . 2009-03-08 09:32 55808 c:\windows\system32\dllcache\iernonce.dll
+ 2010-03-07 06:46 . 2010-02-16 04:50 64000 c:\windows\system32\dllcache\iecompat.dll
+ 2009-03-08 09:24 . 2009-03-08 09:24 68608 c:\windows\system32\dllcache\hmmapi.dll
- 2009-03-08 10:24 . 2009-03-08 10:24 68608 c:\windows\system32\dllcache\hmmapi.dll
- 2009-03-08 10:33 . 2009-03-08 10:33 18944 c:\windows\system32\dllcache\corpol.dll
+ 2009-03-08 09:33 . 2009-03-08 09:33 18944 c:\windows\system32\dllcache\corpol.dll
+ 2009-03-08 09:32 . 2009-03-08 09:32 72704 c:\windows\system32\dllcache\admparse.dll
- 2009-03-08 10:32 . 2009-03-08 10:32 72704 c:\windows\system32\dllcache\admparse.dll
+ 2004-08-04 10:00 . 2009-03-08 09:33 18944 c:\windows\system32\corpol.dll
- 2004-08-04 10:00 . 2009-03-08 10:33 18944 c:\windows\system32\corpol.dll
- 2004-08-04 10:00 . 2009-03-08 10:32 72704 c:\windows\system32\admparse.dll
+ 2004-08-04 10:00 . 2009-03-08 09:32 72704 c:\windows\system32\admparse.dll
+ 2010-05-21 03:42 . 2009-05-26 11:40 17272 c:\windows\ie8updates\KB981332-IE8\spmsg.dll
+ 2010-05-21 03:42 . 2009-05-26 11:40 26488 c:\windows\ie8updates\KB981332-IE8\spcustom.dll
+ 2010-05-21 03:31 . 2009-12-11 08:38 69120 c:\windows\ie8updates\KB980302-IE8\iecompat.dll
+ 2010-05-21 03:32 . 2009-05-26 11:40 17272 c:\windows\ie8updates\KB980182-IE8\spmsg.dll
+ 2010-05-21 03:32 . 2009-05-26 11:40 26488 c:\windows\ie8updates\KB980182-IE8\spcustom.dll
- 2010-03-31 04:10 . 2009-12-21 19:14 55296 c:\windows\ie8updates\KB980182-IE8\msfeedsbs.dll
+ 2010-05-21 03:32 . 2009-03-08 09:31 55296 c:\windows\ie8updates\KB980182-IE8\msfeedsbs.dll
- 2010-03-31 04:10 . 2009-12-21 19:14 25600 c:\windows\ie8updates\KB980182-IE8\jsproxy.dll
+ 2010-05-21 03:32 . 2009-03-08 09:33 25600 c:\windows\ie8updates\KB980182-IE8\jsproxy.dll
+ 2010-05-21 03:42 . 2008-07-08 13:02 17272 c:\windows\ie8updates\KB976662-IE8\spmsg.dll
+ 2010-05-21 03:42 . 2008-07-08 13:02 26488 c:\windows\ie8updates\KB976662-IE8\spcustom.dll
+ 2010-05-21 03:42 . 2008-07-08 13:02 17272 c:\windows\ie8updates\KB971961-IE8\spmsg.dll
+ 2010-05-21 03:42 . 2008-07-08 13:02 26488 c:\windows\ie8updates\KB971961-IE8\spcustom.dll
+ 2010-05-21 03:30 . 2008-04-14 00:12 37888 c:\windows\ie8\url.dll
- 2010-03-07 06:45 . 2008-04-14 00:12 37888 c:\windows\ie8\url.dll
+ 2010-05-21 03:30 . 2009-03-08 19:23 58464 c:\windows\ie8\spuninst\iecustom.dll
- 2010-03-07 06:45 . 2009-03-08 20:23 58464 c:\windows\ie8\spuninst\iecustom.dll
- 2010-03-07 06:45 . 2008-04-14 00:12 39424 c:\windows\ie8\pngfilt.dll
+ 2010-05-21 03:30 . 2008-04-14 00:12 39424 c:\windows\ie8\pngfilt.dll
+ 2010-05-21 03:30 . 2008-04-14 00:12 96256 c:\windows\ie8\occache.dll
- 2010-03-07 06:45 . 2008-04-14 00:12 96256 c:\windows\ie8\occache.dll
- 2010-03-07 06:45 . 2008-04-13 16:26 56832 c:\windows\ie8\mshtmler.dll
+ 2010-05-21 03:30 . 2008-04-13 16:26 56832 c:\windows\ie8\mshtmler.dll
- 2010-03-07 06:45 . 2008-04-14 00:12 29184 c:\windows\ie8\mshta.exe
+ 2010-05-21 03:30 . 2008-04-14 00:12 29184 c:\windows\ie8\mshta.exe
- 2010-03-07 06:45 . 2008-04-14 00:11 22016 c:\windows\ie8\licmgr10.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 22016 c:\windows\ie8\licmgr10.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 15872 c:\windows\ie8\jsproxy.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 15872 c:\windows\ie8\jsproxy.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 96256 c:\windows\ie8\inseng.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 96256 c:\windows\ie8\inseng.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 35840 c:\windows\ie8\imgutil.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 35840 c:\windows\ie8\imgutil.dll
- 2010-03-07 06:45 . 2008-04-14 00:12 93184 c:\windows\ie8\iexplore.exe
+ 2010-05-21 03:30 . 2008-04-14 00:12 93184 c:\windows\ie8\iexplore.exe
- 2010-03-07 06:45 . 2008-04-14 00:11 62976 c:\windows\ie8\iesetup.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 62976 c:\windows\ie8\iesetup.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 48640 c:\windows\ie8\iernonce.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 48640 c:\windows\ie8\iernonce.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 81920 c:\windows\ie8\ieencode.dll
+ 2010-05-21 03:30 . 2009-12-22 05:20 81920 c:\windows\ie8\ieencode.dll
+ 2010-05-21 03:30 . 2008-04-14 00:12 34304 c:\windows\ie8\ie4uinit.exe
- 2010-03-07 06:45 . 2008-04-14 00:12 34304 c:\windows\ie8\ie4uinit.exe
+ 2010-05-21 03:30 . 2008-04-14 00:11 38912 c:\windows\ie8\hmmapi.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 38912 c:\windows\ie8\hmmapi.dll

 

[Crazypete3]

- 2010-03-07 06:45 . 2008-04-14 00:11 81920 c:\windows\ie8\ieencode.dll
+ 2010-05-21 03:30 . 2009-12-22 05:20 81920 c:\windows\ie8\ieencode.dll
+ 2010-05-21 03:30 . 2008-04-14 00:12 34304 c:\windows\ie8\ie4uinit.exe
- 2010-03-07 06:45 . 2008-04-14 00:12 34304 c:\windows\ie8\ie4uinit.exe
+ 2010-05-21 03:30 . 2008-04-14 00:11 38912 c:\windows\ie8\hmmapi.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 38912 c:\windows\ie8\hmmapi.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 35328 c:\windows\ie8\corpol.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 35328 c:\windows\ie8\corpol.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 99840 c:\windows\ie8\advpack.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 99840 c:\windows\ie8\advpack.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 61440 c:\windows\ie8\admparse.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 61440 c:\windows\ie8\admparse.dll
+ 2010-05-13 22:18 . 2010-05-20 23:46 49152 c:\windows\.jagex_cache_32\runescape\jagmisc.dll
+ 2010-05-13 22:18 . 2010-05-20 23:46 86016 c:\windows\.jagex_cache_32\runescape\jaggl.dll
+ 2010-05-13 22:12 . 2010-05-20 23:46 81920 c:\windows\.jagex_cache_32\runescape\hw3d.dll
+ 2010-05-17 20:31 . 2010-05-17 20:31 19788 c:\windows\.jagex_cache_32\runescape\game_unpacker.dat
- 2008-04-14 00:12 . 2009-01-08 00:21 121856 c:\windows\system32\xmllite.dll
+ 2008-04-14 00:12 . 2009-01-07 23:21 121856 c:\windows\system32\xmllite.dll
- 2009-03-08 10:34 . 2009-03-08 10:34 208384 c:\windows\system32\WinFXDocObj.exe
+ 2009-03-08 09:34 . 2009-03-08 09:34 208384 c:\windows\system32\WinFXDocObj.exe
+ 2004-08-04 10:00 . 2009-03-08 09:34 236544 c:\windows\system32\webcheck.dll
- 2004-08-04 10:00 . 2009-03-08 10:34 236544 c:\windows\system32\webcheck.dll
+ 2010-05-14 22:42 . 2010-03-31 01:58 100848 c:\windows\system32\vxblock.dll
- 2010-03-27 09:48 . 2009-12-01 19:14 100848 c:\windows\system32\vxblock.dll
- 2004-08-04 10:00 . 2009-03-08 10:34 105984 c:\windows\system32\url.dll
+ 2004-08-04 10:00 . 2009-03-08 09:34 105984 c:\windows\system32\url.dll
+ 2010-05-14 22:42 . 2010-03-31 01:58 440816 c:\windows\system32\pxwave.dll
- 2010-03-27 09:48 . 2009-12-01 19:14 440816 c:\windows\system32\pxwave.dll
+ 2010-05-14 22:42 . 2010-03-31 01:58 219632 c:\windows\system32\pxmas.dll
- 2010-03-27 09:48 . 2009-12-01 19:14 219632 c:\windows\system32\pxmas.dll
- 2010-03-27 09:48 . 2009-12-01 19:14 559600 c:\windows\system32\pxdrv.dll
+ 2010-05-14 22:42 . 2010-03-31 01:58 559600 c:\windows\system32\pxdrv.dll
+ 2010-05-14 22:42 . 2010-03-31 01:58 678384 c:\windows\system32\px.dll
- 2010-03-27 09:48 . 2009-12-01 19:14 678384 c:\windows\system32\px.dll
- 2010-03-24 00:23 . 1998-03-09 01:28 273408 c:\windows\system32\Pncrt.dll
+ 2010-05-14 21:56 . 2010-02-09 20:37 273408 c:\windows\system32\Pncrt.dll
+ 2006-03-04 03:33 . 2009-03-08 09:34 193536 c:\windows\system32\msrating.dll
- 2006-03-04 03:33 . 2009-03-08 10:34 193536 c:\windows\system32\msrating.dll
- 2004-08-04 10:00 . 2009-03-08 10:22 156160 c:\windows\system32\msls31.dll
+ 2004-08-04 10:00 . 2009-03-08 09:22 156160 c:\windows\system32\msls31.dll
+ 2009-03-08 09:32 . 2010-02-25 06:24 594432 c:\windows\system32\msfeeds.dll
- 2009-03-08 10:32 . 2010-02-25 06:24 594432 c:\windows\system32\msfeeds.dll
- 2009-01-08 00:20 . 2009-01-08 00:20 265720 c:\windows\system32\msdbg2.dll
+ 2009-01-08 00:20 . 2009-01-07 23:20 265720 c:\windows\system32\msdbg2.dll
+ 2010-03-13 04:06 . 2010-05-21 17:10 203575 c:\windows\system32\inetsrv\MetaBase.bin
- 2010-03-07 01:11 . 2008-04-11 19:04 691712 c:\windows\system32\inetcomm.dll
+ 2010-03-07 01:11 . 2010-01-29 15:01 691712 c:\windows\system32\inetcomm.dll
- 2009-03-08 10:22 . 2009-03-08 10:22 164352 c:\windows\system32\ieui.dll
+ 2009-03-08 09:22 . 2009-03-08 09:22 164352 c:\windows\system32\ieui.dll
+ 2009-03-08 09:11 . 2009-03-08 09:11 445952 c:\windows\system32\ieapfltr.dll
- 2009-03-08 10:11 . 2009-03-08 10:11 445952 c:\windows\system32\ieapfltr.dll
+ 2004-08-04 10:00 . 2009-03-08 09:32 163840 c:\windows\system32\ieakui.dll
- 2004-08-04 10:00 . 2009-03-08 10:32 163840 c:\windows\system32\ieakui.dll
- 2004-08-04 10:00 . 2009-03-08 10:33 229376 c:\windows\system32\ieaksie.dll
+ 2004-08-04 10:00 . 2009-03-08 09:33 229376 c:\windows\system32\ieaksie.dll
- 2004-08-04 10:00 . 2009-03-08 10:33 125952 c:\windows\system32\ieakeng.dll
+ 2004-08-04 10:00 . 2009-03-08 09:33 125952 c:\windows\system32\ieakeng.dll
- 2006-03-04 03:33 . 2009-03-08 10:31 216064 c:\windows\system32\dxtrans.dll
+ 2006-03-04 03:33 . 2009-03-08 09:31 216064 c:\windows\system32\dxtrans.dll
- 2004-08-04 10:00 . 2009-03-08 10:31 348160 c:\windows\system32\dxtmsft.dll
+ 2004-08-04 10:00 . 2009-03-08 09:31 348160 c:\windows\system32\dxtmsft.dll
- 2009-03-08 10:34 . 2010-02-25 06:24 916480 c:\windows\system32\dllcache\wininet.dll
+ 2009-03-08 09:34 . 2010-02-25 06:24 916480 c:\windows\system32\dllcache\wininet.dll
- 2009-03-08 10:34 . 2009-03-08 10:34 236544 c:\windows\system32\dllcache\webcheck.dll
+ 2009-03-08 09:34 . 2009-03-08 09:34 236544 c:\windows\system32\dllcache\webcheck.dll
- 2009-03-08 10:33 . 2009-03-08 10:33 759296 c:\windows\system32\dllcache\VGX.dll
+ 2009-03-08 09:33 . 2009-03-08 09:33 759296 c:\windows\system32\dllcache\VGX.dll
- 2009-03-08 10:34 . 2009-03-08 10:34 105984 c:\windows\system32\dllcache\url.dll
+ 2009-03-08 09:34 . 2009-03-08 09:34 105984 c:\windows\system32\dllcache\url.dll
- 2009-01-08 00:20 . 2009-01-08 00:20 134144 c:\windows\system32\dllcache\sqmapi.dll
+ 2009-01-07 23:20 . 2009-01-07 23:20 134144 c:\windows\system32\dllcache\sqmapi.dll
- 2009-01-08 00:20 . 2009-12-08 09:23 474112 c:\windows\system32\dllcache\shlwapi.dll
+ 2009-01-07 23:20 . 2009-01-07 23:20 474112 c:\windows\system32\dllcache\shlwapi.dll
+ 2009-03-08 09:34 . 2010-02-25 06:24 206848 c:\windows\system32\dllcache\occache.dll
- 2009-03-08 10:34 . 2010-02-25 06:24 206848 c:\windows\system32\dllcache\occache.dll
- 2009-03-08 10:32 . 2010-02-25 06:24 611840 c:\windows\system32\dllcache\mstime.dll
+ 2009-03-08 09:32 . 2010-02-25 06:24 611840 c:\windows\system32\dllcache\mstime.dll
- 2009-03-08 10:34 . 2009-03-08 10:34 193536 c:\windows\system32\dllcache\msrating.dll
+ 2009-03-08 09:34 . 2009-03-08 09:34 193536 c:\windows\system32\dllcache\msrating.dll
- 2004-08-04 10:00 . 2009-03-08 10:22 156160 c:\windows\system32\dllcache\msls31.dll
+ 2004-08-04 10:00 . 2009-03-08 09:22 156160 c:\windows\system32\dllcache\msls31.dll
+ 2010-03-07 06:14 . 2010-01-29 15:01 691712 c:\windows\system32\dllcache\inetcomm.dll
- 2010-03-07 06:14 . 2008-04-11 19:04 691712 c:\windows\system32\dllcache\inetcomm.dll
- 2009-03-08 20:09 . 2009-03-08 20:09 638816 c:\windows\system32\dllcache\iexplore.exe
+ 2009-03-08 19:09 . 2009-03-08 19:09 638816 c:\windows\system32\dllcache\iexplore.exe
+ 2009-03-08 09:31 . 2010-02-25 06:24 184320 c:\windows\system32\dllcache\iepeers.dll
- 2009-03-08 10:31 . 2010-02-25 06:24 184320 c:\windows\system32\dllcache\iepeers.dll
- 2009-03-08 20:09 . 2010-02-25 06:24 387584 c:\windows\system32\dllcache\iedkcs32.dll
+ 2009-03-08 19:09 . 2010-02-25 06:24 387584 c:\windows\system32\dllcache\iedkcs32.dll
- 2004-08-04 10:00 . 2009-03-08 10:32 163840 c:\windows\system32\dllcache\ieakui.dll
+ 2004-08-04 10:00 . 2009-03-08 09:32 163840 c:\windows\system32\dllcache\ieakui.dll
- 2009-03-08 10:33 . 2009-03-08 10:33 229376 c:\windows\system32\dllcache\ieaksie.dll
+ 2009-03-08 09:33 . 2009-03-08 09:33 229376 c:\windows\system32\dllcache\ieaksie.dll
- 2009-03-08 10:33 . 2009-03-08 10:33 125952 c:\windows\system32\dllcache\ieakeng.dll
+ 2009-03-08 09:33 . 2009-03-08 09:33 125952 c:\windows\system32\dllcache\ieakeng.dll
- 2009-03-08 10:32 . 2010-02-24 09:54 173056 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-03-08 09:32 . 2010-02-24 09:54 173056 c:\windows\system32\dllcache\ie4uinit.exe
+ 2009-03-08 09:31 . 2009-03-08 09:31 216064 c:\windows\system32\dllcache\dxtrans.dll
- 2009-03-08 10:31 . 2009-03-08 10:31 216064 c:\windows\system32\dllcache\dxtrans.dll
- 2009-03-08 10:31 . 2009-03-08 10:31 348160 c:\windows\system32\dllcache\dxtmsft.dll
+ 2009-03-08 09:31 . 2009-03-08 09:31 348160 c:\windows\system32\dllcache\dxtmsft.dll
- 2009-03-08 10:32 . 2009-03-08 10:32 128512 c:\windows\system32\dllcache\advpack.dll
+ 2009-03-08 09:32 . 2009-03-08 09:32 128512 c:\windows\system32\dllcache\advpack.dll
- 2004-08-04 10:00 . 2009-03-08 10:32 128512 c:\windows\system32\advpack.dll
+ 2004-08-04 10:00 . 2009-03-08 09:32 128512 c:\windows\system32\advpack.dll
- 2010-04-14 04:31 . 2009-03-08 10:33 420352 c:\windows\ie8updates\KB981332-IE8\vbscript.dll
+ 2010-05-21 03:42 . 2009-03-08 09:33 420352 c:\windows\ie8updates\KB981332-IE8\vbscript.dll
+ 2010-05-21 03:42 . 2009-05-26 11:40 382840 c:\windows\ie8updates\KB981332-IE8\updspapi.dll
+ 2010-05-21 03:42 . 2009-05-26 11:40 755576 c:\windows\ie8updates\KB981332-IE8\update.exe
- 2010-04-14 04:31 . 2009-05-26 11:40 382840 c:\windows\ie8updates\KB981332-IE8\spuninst\updspapi.dll
+ 2010-05-21 03:42 . 2009-05-26 11:40 382840 c:\windows\ie8updates\KB981332-IE8\spuninst\updspapi.dll
- 2010-04-14 04:31 . 2009-05-26 11:40 231288 c:\windows\ie8updates\KB981332-IE8\spuninst\spuninst.exe
+ 2010-05-21 03:42 . 2009-05-26 11:40 231288 c:\windows\ie8updates\KB981332-IE8\spuninst\spuninst.exe
+ 2010-05-21 03:42 . 2009-05-26 11:40 231288 c:\windows\ie8updates\KB981332-IE8\spuninst.exe
+ 2010-05-21 03:31 . 2009-05-26 11:40 382840 c:\windows\ie8updates\KB980302-IE8\spuninst\updspapi.dll
+ 2010-05-21 03:31 . 2009-05-26 11:40 231288 c:\windows\ie8updates\KB980302-IE8\spuninst\spuninst.exe
+ 2010-05-21 03:32 . 2009-03-08 09:34 914944 c:\windows\ie8updates\KB980182-IE8\wininet.dll
+ 2010-05-21 03:32 . 2009-05-26 11:40 382840 c:\windows\ie8updates\KB980182-IE8\updspapi.dll
+ 2010-05-21 03:32 . 2009-05-26 11:40 755576 c:\windows\ie8updates\KB980182-IE8\update.exe
- 2010-03-31 04:10 . 2009-05-26 11:40 382840 c:\windows\ie8updates\KB980182-IE8\spuninst\updspapi.dll
+ 2010-05-21 03:32 . 2009-05-26 11:40 382840 c:\windows\ie8updates\KB980182-IE8\spuninst\updspapi.dll
+ 2010-05-21 03:32 . 2009-05-26 11:40 231288 c:\windows\ie8updates\KB980182-IE8\spuninst\spuninst.exe
- 2010-03-31 04:10 . 2009-05-26 11:40 231288 c:\windows\ie8updates\KB980182-IE8\spuninst\spuninst.exe
+ 2010-05-21 03:32 . 2009-05-26 11:40 231288 c:\windows\ie8updates\KB980182-IE8\spuninst.exe
+ 2010-05-21 03:32 . 2009-03-08 09:34 109568 c:\windows\ie8updates\KB980182-IE8\occache.dll
+ 2010-05-21 03:32 . 2009-03-08 09:32 611840 c:\windows\ie8updates\KB980182-IE8\mstime.dll
- 2010-03-31 04:10 . 2009-03-08 10:32 611840 c:\windows\ie8updates\KB980182-IE8\mstime.dll
+ 2010-05-21 03:32 . 2009-03-08 09:32 594432 c:\windows\ie8updates\KB980182-IE8\msfeeds.dll
- 2010-03-31 04:10 . 2009-12-21 19:14 594432 c:\windows\ie8updates\KB980182-IE8\msfeeds.dll
+ 2010-05-21 03:32 . 2009-03-08 09:31 183808 c:\windows\ie8updates\KB980182-IE8\iepeers.dll
+ 2010-05-21 03:32 . 2009-03-08 19:09 391536 c:\windows\ie8updates\KB980182-IE8\iedkcs32.dll
+ 2010-05-21 03:32 . 2009-03-08 09:32 173056 c:\windows\ie8updates\KB980182-IE8\ie4uinit.exe
- 2010-03-31 04:10 . 2009-12-21 13:19 173056 c:\windows\ie8updates\KB980182-IE8\ie4uinit.exe
+ 2010-05-21 03:42 . 2008-07-08 13:02 382840 c:\windows\ie8updates\KB976662-IE8\updspapi.dll
+ 2010-05-21 03:42 . 2008-07-08 13:02 755576 c:\windows\ie8updates\KB976662-IE8\update.exe
- 2010-03-07 06:54 . 2008-07-08 13:02 382840 c:\windows\ie8updates\KB976662-IE8\spuninst\updspapi.dll
+ 2010-05-21 03:42 . 2008-07-08 13:02 382840 c:\windows\ie8updates\KB976662-IE8\spuninst\updspapi.dll
- 2010-03-07 06:54 . 2008-07-08 13:02 231288 c:\windows\ie8updates\KB976662-IE8\spuninst\spuninst.exe
+ 2010-05-21 03:42 . 2008-07-08 13:02 231288 c:\windows\ie8updates\KB976662-IE8\spuninst\spuninst.exe
+ 2010-05-21 03:42 . 2008-07-08 13:02 231288 c:\windows\ie8updates\KB976662-IE8\spuninst.exe
- 2010-03-07 06:54 . 2009-06-22 06:44 726528 c:\windows\ie8updates\KB976662-IE8\jscript.dll
+ 2010-05-21 03:42 . 2009-06-22 06:44 726528 c:\windows\ie8updates\KB976662-IE8\jscript.dll
+ 2010-05-21 03:42 . 2008-07-08 13:02 382840 c:\windows\ie8updates\KB971961-IE8\updspapi.dll
+ 2010-05-21 03:42 . 2008-07-08 13:02 755576 c:\windows\ie8updates\KB971961-IE8\update.exe
- 2010-03-07 06:53 . 2008-07-08 13:02 382840 c:\windows\ie8updates\KB971961-IE8\spuninst\updspapi.dll
+ 2010-05-21 03:42 . 2008-07-08 13:02 382840 c:\windows\ie8updates\KB971961-IE8\spuninst\updspapi.dll
- 2010-03-07 06:53 . 2008-07-08 13:02 231288 c:\windows\ie8updates\KB971961-IE8\spuninst\spuninst.exe
+ 2010-05-21 03:42 . 2008-07-08 13:02 231288 c:\windows\ie8updates\KB971961-IE8\spuninst\spuninst.exe
+ 2010-05-21 03:42 . 2008-07-08 13:02 231288 c:\windows\ie8updates\KB971961-IE8\spuninst.exe
- 2010-03-07 06:53 . 2009-03-08 10:33 726528 c:\windows\ie8updates\KB971961-IE8\jscript.dll
+ 2010-05-21 03:42 . 2009-03-08 09:33 726528 c:\windows\ie8updates\KB971961-IE8\jscript.dll
- 2010-03-07 06:45 . 2008-04-14 00:12 666112 c:\windows\ie8\wininet.dll
+ 2010-05-21 03:30 . 2008-04-14 00:12 666112 c:\windows\ie8\wininet.dll
+ 2010-05-21 03:30 . 2008-04-14 00:12 276480 c:\windows\ie8\webcheck.dll
- 2010-03-07 06:45 . 2008-04-14 00:12 276480 c:\windows\ie8\webcheck.dll
- 2010-03-07 06:45 . 2008-04-14 00:12 851968 c:\windows\ie8\vgx.dll
+ 2010-05-21 03:30 . 2008-04-14 00:12 851968 c:\windows\ie8\vgx.dll
- 2010-03-07 06:45 . 2008-05-09 10:53 430080 c:\windows\ie8\vbscript.dll
+ 2010-05-21 03:30 . 2008-05-09 10:53 430080 c:\windows\ie8\vbscript.dll
- 2010-03-07 06:45 . 2008-04-14 00:12 619520 c:\windows\ie8\urlmon.dll
+ 2010-05-21 03:30 . 2008-04-14 00:12 619520 c:\windows\ie8\urlmon.dll
- 2010-03-07 06:45 . 2009-01-08 00:21 382496 c:\windows\ie8\spuninst\updspapi.dll
+ 2010-05-21 03:30 . 2009-01-07 23:21 382496 c:\windows\ie8\spuninst\updspapi.dll
+ 2010-05-21 03:30 . 2009-01-07 23:20 231456 c:\windows\ie8\spuninst\spuninst.exe
- 2010-03-07 06:45 . 2009-01-08 00:20 231456 c:\windows\ie8\spuninst\spuninst.exe
- 2010-03-07 06:45 . 2008-04-14 00:12 532480 c:\windows\ie8\mstime.dll
+ 2010-05-21 03:30 . 2008-04-14 00:12 532480 c:\windows\ie8\mstime.dll
+ 2010-05-21 03:30 . 2008-04-14 00:12 146432 c:\windows\ie8\msrating.dll
- 2010-03-07 06:45 . 2008-04-14 00:12 146432 c:\windows\ie8\msrating.dll
+ 2010-05-21 03:30 . 2004-08-04 10:00 146432 c:\windows\ie8\msls31.dll
- 2010-03-07 06:45 . 2004-08-04 10:00 146432 c:\windows\ie8\msls31.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 449024 c:\windows\ie8\mshtmled.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 449024 c:\windows\ie8\mshtmled.dll
+ 2010-05-21 03:30 . 2008-05-09 10:53 512000 c:\windows\ie8\jscript.dll
- 2010-03-07 06:45 . 2008-05-09 10:53 512000 c:\windows\ie8\jscript.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 251904 c:\windows\ie8\iepeers.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 251904 c:\windows\ie8\iepeers.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 323584 c:\windows\ie8\iedkcs32.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 323584 c:\windows\ie8\iedkcs32.dll
- 2010-03-07 06:45 . 2004-08-04 10:00 221184 c:\windows\ie8\ieakui.dll
+ 2010-05-21 03:30 . 2004-08-04 10:00 221184 c:\windows\ie8\ieakui.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 216576 c:\windows\ie8\ieaksie.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 216576 c:\windows\ie8\ieaksie.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 143360 c:\windows\ie8\ieakeng.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 143360 c:\windows\ie8\ieakeng.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 205312 c:\windows\ie8\dxtrans.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 205312 c:\windows\ie8\dxtrans.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 357888 c:\windows\ie8\dxtmsft.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 357888 c:\windows\ie8\dxtmsft.dll
+ 2010-04-01 22:26 . 2010-05-20 23:46 831488 c:\windows\.jagex_cache_32\runescape\sw3d.dll
+ 2010-05-13 22:12 . 2010-05-20 23:46 102400 c:\windows\.jagex_cache_32\runescape\jagdx.dll
+ 2010-05-13 22:12 . 2010-05-20 23:46 102400 c:\windows\.jagex_cache_32\runescape\jaclib.dll
+ 2010-03-27 09:41 . 2010-05-09 18:09 913408 c:\windows\$NtUninstallwmp11$\wmpnetwk.exe
+ 2010-05-14 22:42 . 2010-03-31 01:58 2083312 c:\windows\system32\pxsfs.dll

 

[Crazypete3]

- 2010-03-27 09:48 . 2009-12-01 19:14 2083312 c:\windows\system32\pxsfs.dll
+ 2009-03-08 09:32 . 2010-02-25 06:24 1985536 c:\windows\system32\iertutil.dll
- 2009-03-08 10:32 . 2010-02-25 06:24 1985536 c:\windows\system32\iertutil.dll
+ 2009-02-07 02:07 . 2009-02-07 02:07 3698584 c:\windows\system32\ieapfltr.dat
- 2009-02-07 03:07 . 2009-02-07 03:07 3698584 c:\windows\system32\ieapfltr.dat
- 2009-03-08 10:34 . 2010-02-25 06:24 1209344 c:\windows\system32\dllcache\urlmon.dll
+ 2009-03-08 09:34 . 2010-02-25 06:24 1209344 c:\windows\system32\dllcache\urlmon.dll
+ 2009-01-07 23:20 . 2009-01-07 23:20 1497088 c:\windows\system32\dllcache\shdocvw.dll
+ 2010-03-07 06:15 . 2010-01-29 15:01 1315328 c:\windows\system32\dllcache\msoe.dll
- 2010-03-07 06:15 . 2009-07-10 13:27 1315328 c:\windows\system32\dllcache\msoe.dll
- 2009-03-08 10:41 . 2010-02-25 06:24 5944832 c:\windows\system32\dllcache\mshtml.dll
+ 2009-03-08 09:41 . 2010-02-25 06:24 5944832 c:\windows\system32\dllcache\mshtml.dll
- 2009-01-08 00:20 . 2009-01-08 00:20 1022976 c:\windows\system32\dllcache\browseui.dll
+ 2009-01-07 23:20 . 2009-01-07 23:20 1022976 c:\windows\system32\dllcache\browseui.dll
+ 2010-05-04 04:11 . 2010-05-04 04:11 1094656 c:\windows\Installer\60e5d.msi
+ 2010-05-21 03:32 . 2009-03-08 09:34 1206784 c:\windows\ie8updates\KB980182-IE8\urlmon.dll
+ 2010-05-21 03:32 . 2009-03-08 09:41 5937152 c:\windows\ie8updates\KB980182-IE8\mshtml.dll
+ 2010-05-21 03:32 . 2009-03-08 09:32 1985024 c:\windows\ie8updates\KB980182-IE8\iertutil.dll
- 2010-03-07 06:45 . 2008-04-14 00:11 3066880 c:\windows\ie8\mshtml.dll
+ 2010-05-21 03:30 . 2008-04-14 00:11 3066880 c:\windows\ie8\mshtml.dll
+ 2010-03-07 06:44 . 2010-04-30 18:51 32058312 c:\windows\system32\MRT.exe
- 2009-03-08 10:39 . 2010-02-25 16:54 11070976 c:\windows\system32\ieframe.dll
+ 2009-03-08 09:39 . 2010-02-25 16:54 11070976 c:\windows\system32\ieframe.dll
+ 2010-05-21 03:32 . 2009-03-08 09:39 11063808 c:\windows\ie8updates\KB980182-IE8\ieframe.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Logitech Vid"="c:\program files\Logitech\Logitech Vid\Vid.exe" [2010-02-13 5933912]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-05-14 322352]
"RoboForm"="c:\program files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [2010-04-18 160328]
"DAEMON Tools Pro Agent"="c:\program files\DAEMON Tools Pro\DTProAgent.exe" [2007-09-06 136136]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-10-19 204288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsmqIntCert"="mqrt.dll" [2008-04-14 177152]
"RTHDCPL"="RTHDCPL.EXE" [2010-02-22 18791456]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2010-01-27 1312848]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-03 98304]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoFileMenu"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2010-01-29 21:17 64592 ----a-w- c:\program files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WB]
2001-12-21 04:34 24576 ----a-w- c:\program files\AlienGUIse\fastload.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\wbsys.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-03-24 18:17 952768 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2010-04-04 05:42 36272 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2010-04-12 22:46 1135912 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
2009-10-14 19:36 2793304 ----a-w- c:\program files\Logitech\Logitech WebCam Software\LWS.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster]
2010-03-07 06:59 2937528 ----a-w- c:\program files\Pando Networks\Media Booster\PMB.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RAM Idle]
2002-09-06 03:07 95232 ----a-w- c:\program files\Customizer XP\RAM_2K.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
2010-04-17 10:56 394984 ----a-w- c:\program files\Sandboxie\SbieCtrl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2010-02-18 17:43 248040 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Documents and Settings\\All Users.WINDOWS\\Application Data\\NexonUS\\NGM\\NGM.exe"=
"c:\\WINDOWS\\system32\\mqsvc.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Logitech\\Logitech Vid\\Vid.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"58620:TCP"= 58620:TCPando Media Booster
"58620:UDP"= 58620:UDPando Media Booster

R2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [3/10/2010 7:29 PM 10384]
S0 nielprt;Nielsen Patch Service;c:\windows\system32\DRIVERS\nielprt.sys --> c:\windows\system32\DRIVERS\nielprt.sys [?]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [4/24/2010 1:45 PM 697328]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [3/7/2010 4:00 AM 1691480]
S3 NielGfx;Nielsen USB GFX;c:\windows\system32\drivers\nielgfx.sys --> c:\windows\system32\drivers\nielgfx.sys [?]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://search.babylon.com/home
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
IE: Customize Menu - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
IE: Fill Forms - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
IE: RoboForm Toolbar - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
IE: Save Forms - file://c:\program files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
TCP: {2A253A7E-46D1-40CA-8996-B19A879B274E} = 208.67.222.222,208.67.220.220
FF - ProfilePath - c:\documents and settings\Travis Kenyon\Application Data\Mozilla\Firefox\Profiles\6o8gvmob.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch
FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)
FF - prefs.js: browser.startup.homepage - hxxp://www.youtube.com/
FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - component: c:\program files\Siber Systems\AI RoboForm\Firefox\components\rfproxy_31.dll
FF - plugin: c:\documents and settings\All Users.WINDOWS\Application Data\NexonUS\NGM\npNxGameUS.dll
FF - plugin: c:\documents and settings\Travis Kenyon\Application Data\Mozilla\Firefox\Profiles\6o8gvmob.default\extensions\{077a24e9-0db5-435f-9010-5261c53e5925}\plugins\npmabiwebframe.dll
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPMFireLauncher.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npPandoWebInst.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - truec:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2010-05-21 12:16
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-1343024091-1177238915-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\CLSID]
@Denied: (Full) (LocalSystem)
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(736)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
c:\program files\AlienGUIse\fastload.dll
.
Completion time: 2010-05-21 12:17:35
ComboFix-quarantined-files.txt 2010-05-21 17:17
ComboFix2.txt 2010-05-04 05:23
ComboFix3.txt 2010-05-04 04:08
ComboFix4.txt 2010-01-18 03:34

Pre-Run: 176,328,314,880 bytes free
Post-Run: 176,502,214,656 bytes free

- - End Of File - - 6E9B9766363FEC0B81257BA6ACC7C4E1

 

[Crazypete3]

Do you have any programs or threads you recomend me looking/trying so i don't get as much viruses or errors?

 

[Osiris]

Just gotta keep these programs updated, do regular scans, etc.

All kind sof threads here you can look at. Look in my guide as well in my sig below

 

[Crazypete3]

Alright, thanks

Also, how can you update combo fix? like are you supposed to download a new version of it when it comes out or is there a "update" button somewhere on it?

 

[Osiris]

Sometimes when you are using an old version, but not sure how old, it will ask if you want to update it, if you dont is run is reduced mode as yours did. So the best way would be to dowload it again.