Unknown Virus/Malware/Spyware??? I Need Help!!!!

[trailrider894]

Hey guys.

I need some real help here. I have some sort of virus or spyware.....etc.... It redirects all of my google searches to other weird websites that are other search engine or shopping websites i have never heard of. It also has stopped all of my anti-virus and anti spyware programs to stop from running and i also can't seem to install them again. I really need this computer to work because it is my baby and i have to use it for a big paper i have to write for school. It is a Sony Vaio VGN-FS775P/H . I used AVG Free for my Anti-Virus and Search and Destroy for my spyware protection. Neither programs work. Also i am knowledgeable about computers. But i do like step by step instructions for these kinds of problems. But i will take any help i can get!!!! :4-dontkno :sigh:

 

[Osiris]

Are you able to run hijackthis?

 

[trailrider894]

NO i am not. The programs runs and does the system scan them just disappears and won't run or install again. Doesn't save the log file or let me view anything else.

 

[Osiris]

What about in safemode?

 

[trailrider894]

nope not in safe mode either,

 

[Daniel]

Hi, you could try running malwarebytes and combofix through.

You can download them here:
Download The Best Software - Free Step By Step Guides

If they dont run at first try renaming the installation file to fff and running it again, some viruses/spyware stop the well known scanners from installing & opening.

Hope this helps!
Daniel

 

[Osiris]

Can you get into msconfig?

 

[trailrider894]

yes i can access msconfig. i ran malwarebytes and spybot but i renamed there installation folders to like fff and ggg so that maybe the Spyware coulnd't tell what i was installing. they both remover some sort of infections but still hasn't fixed the problem. the same applied for hijack this. here is the log


------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:56:53 PM, on 9/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CSHelper.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\MP4 Player\mp4Player.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Apoint\Apntex.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Documents and Settings\Tyler\Local Settings\Application Data\Google\Update\1.2.183.7\GoogleCrashHandler.exe
C:\Documents and Settings\Tyler\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Tyler\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Tyler\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Tyler\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Tyler\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Tyler\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\jjj\HijackThis.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [Switcher.exe] C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
O4 - HKLM\..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [mapper] C:\Program Files\Home Browsing\IE Internet Helper\maper.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\gggg\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [MP4 Player] "C:\Program Files\MP4 Player\mp4Player.exe" hmw
O4 - HKCU\..\Run: [Gbridge] "C:\Program Files\Gbridge LLC\Gbridge\pstartw.exe" "C:\Program Files\Gbridge LLC\Gbridge\Gbridge.exe" -autostart
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\ffff\TeaTimer.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Tyler\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {32305793-C19A-48E7-AD2F-D87FF7B264A4} (TenebrilSpywareScanner Control) - http://download.tenebril.com/pub/bin/scanner2008/TenebrilSpywareScanner.ocx
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1248534484453
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CopySafe Helper Service (CSHelper) - Unknown owner - C:\WINDOWS\system32\CSHelper.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe

-------------

End of file - 8877 bytes

 

[Osiris]

What about Combofix? I need to see both their logs and make sure to run Combofix first and then Malwarebytes

 

[trailrider894]

ComboFix 09-09-11.01 - Tyler 09/11/2009 23:27.2.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1022.526 [GMT -5:00]
Running from: c:\documents and settings\Tyler\My Documents\Downloads\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\Downloaded Program Files\bdcore.dll
c:\windows\Downloaded Program Files\libfn.dll
.
---- Previous Run -------
.
c:\windows\system32\tmp73.tmp

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_NPF
-------\Legacy_{79007602-0CDB-4405-9DBF-1257BB3226ED}


((((((((((((((((((((((((( Files Created from 2009-08-12 to 2009-09-12 )))))))))))))))))))))))))))))))
.

2009-09-12 02:56 . 2009-09-12 02:56 -------- d-----w- c:\program files\jjj
2009-09-11 04:50 . 2009-09-10 19:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-11 04:50 . 2009-09-11 04:50 -------- d-----w- c:\program files\gggg
2009-09-11 04:50 . 2009-09-10 19:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-09-11 03:59 . 2009-09-11 13:37 -------- d-----w- c:\program files\ffff
2009-09-11 03:25 . 2009-09-11 03:25 56884 ---ha-w- c:\windows\system32\mlfcache.dat
2009-09-11 03:25 . 2009-09-11 03:25 -------- d-----w- c:\documents and settings\Tyler\Application Data\Apple Computer
2009-09-11 03:24 . 2009-09-11 03:24 -------- d-----w- c:\program files\Safari
2009-09-11 03:24 . 2009-09-11 03:24 -------- d-----w- c:\program files\Bonjour
2009-09-11 00:39 . 2009-09-11 00:39 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Apple
2009-09-10 23:00 . 2009-09-11 00:59 -------- d-----w- c:\windows\BDOSCAN8
2009-09-10 18:51 . 2009-09-10 18:51 -------- d-----w- c:\program files\Trend Micro
2009-09-10 18:44 . 2009-09-10 18:44 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache
2009-09-10 15:58 . 2009-09-12 02:17 -------- d-----w- c:\documents and settings\Tyler\Local Settings\Application Data\Temp
2009-09-10 15:52 . 2009-09-10 15:58 -------- d-----w- c:\documents and settings\Tyler\Local Settings\Application Data\Deployment
2009-09-10 04:46 . 2009-09-11 13:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-09-10 04:46 . 2009-09-11 02:16 -------- d-----w- c:\program files\vgn
2009-09-09 19:58 . 2009-09-10 05:04 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-09-09 04:44 . 2009-09-10 18:48 -------- d-----w- C:\f0e1e6412f13006102
2009-09-09 04:37 . 2009-09-09 04:37 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2009-09-09 04:36 . 2009-09-09 04:36 -------- d-----w- c:\documents and settings\Tyler\Application Data\Malwarebytes
2009-09-09 04:36 . 2009-09-09 04:36 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-09-09 04:35 . 2009-09-12 04:31 -------- d-----w- c:\program files\SUPERAntiSpyware
2009-09-09 04:35 . 2009-09-09 04:35 -------- d-----w- c:\documents and settings\Tyler\Application Data\SUPERAntiSpyware.com
2009-09-08 23:57 . 2009-06-21 21:44 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2009-09-08 15:34 . 2009-09-10 04:55 -------- d-----w- c:\program files\EA GAMES
2009-09-08 05:19 . 2009-09-08 05:19 -------- d-----w- c:\documents and settings\Tyler\Application Data\TeamViewer
2009-09-08 05:18 . 2009-09-10 05:03 -------- d-----w- c:\program files\TeamViewer
2009-09-08 05:18 . 2009-09-08 05:18 -------- d-----w- c:\documents and settings\Tyler\temp
2009-09-08 05:17 . 2009-09-08 05:21 -------- d-----w- c:\documents and settings\Tyler\Application Data\Gbridge
2009-09-08 05:16 . 2009-09-08 05:16 -------- d-----w- c:\program files\Gbridge LLC
2009-09-07 21:23 . 2009-09-10 05:02 -------- d-----w- c:\program files\Oak Systems
2009-09-05 21:51 . 2009-09-08 23:49 -------- d-----w- c:\program files\CommViewWiFi
2009-09-05 04:02 . 2006-10-04 21:11 206336 ----a-w- c:\windows\system32\drivers\commiwi.sys
2009-08-31 20:21 . 2009-08-31 20:21 -------- d-----w- c:\program files\QuickTime
2009-08-31 20:21 . 2009-08-31 20:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2009-08-31 20:20 . 2009-08-31 20:20 -------- d-----w- c:\documents and settings\Tyler\Local Settings\Application Data\Apple
2009-08-31 20:20 . 2009-08-31 20:20 -------- d-----w- c:\program files\Apple Software Update
2009-08-31 20:20 . 2009-08-31 20:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple
2009-08-31 20:20 . 2009-09-11 03:25 -------- d-----w- c:\documents and settings\Tyler\Local Settings\Application Data\Apple Computer
2009-08-31 01:40 . 2009-08-31 01:41 -------- d-----w- c:\documents and settings\Tyler\Application Data\Move Networks
2009-08-30 23:56 . 2009-08-30 23:56 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonBJ
2009-08-30 23:56 . 2007-10-22 19:00 223744 ----a-w- c:\windows\system32\CNMLM97.DLL
2009-08-30 23:55 . 2009-08-30 23:55 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information
2009-08-30 23:55 . 2009-08-30 23:55 -------- d--h--w- c:\program files\CanonBJ
2009-08-30 23:51 . 2008-04-13 18:47 25856 -c--a-w- c:\windows\system32\dllcache\usbprint.sys
2009-08-30 23:51 . 2008-04-13 18:47 25856 ----a-w- c:\windows\system32\drivers\usbprint.sys
2009-08-29 15:28 . 2009-08-29 15:28 -------- d-----w- c:\windows\ArtistScope Plugin FX 42
2009-08-29 15:27 . 2009-08-29 15:27 266240 ----a-w- c:\windows\system32\CSHelper.exe
2009-08-29 15:27 . 2009-08-29 15:27 225280 ----a-w- c:\windows\system32\CSInstru.DLL
2009-08-29 15:27 . 2009-08-29 15:27 -------- d-----w- c:\windows\ArtistScope Plugin IE 42
2009-08-29 05:31 . 2009-08-29 05:31 -------- d-----w- c:\program files\Pure Networks
2009-08-26 19:04 . 2006-10-27 00:56 32592 ----a-w- c:\windows\system32\msonpmon.dll
2009-08-26 19:02 . 2009-08-26 19:02 -------- d-----w- c:\program files\Microsoft Works
2009-08-26 19:00 . 2009-08-26 19:00 -------- d-----w- c:\program files\Microsoft.NET
2009-08-26 18:57 . 2009-08-26 18:57 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2009-08-26 18:55 . 2009-08-26 19:01 -------- d-----w- c:\windows\SHELLNEW
2009-08-26 18:55 . 2009-08-26 18:55 -------- d-----w- c:\documents and settings\Tyler\Local Settings\Application Data\Microsoft Help
2009-08-26 18:55 . 2009-08-26 19:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2009-08-26 18:54 . 2009-08-26 18:54 -------- d-----r- C:\MSOCache
2009-08-26 02:02 . 2009-08-28 16:31 -------- d-----w- c:\documents and settings\Tyler\Application Data\teamspeak2
2009-08-26 02:02 . 2009-08-26 02:02 -------- d-----w- c:\program files\Teamspeak2_RC2
2009-08-25 21:09 . 2009-08-25 21:09 -------- d-----w- c:\windows\system32\wbem\Repository
2009-08-25 04:43 . 2009-08-25 04:43 -------- d-----w- c:\documents and settings\LocalService\Application Data\Xfire
2009-08-25 04:43 . 2009-08-25 04:43 -------- d-----w- c:\documents and settings\NetworkService\Application Data\Xfire
2009-08-25 04:42 . 2009-08-25 04:55 -------- d-----w- c:\documents and settings\Tyler\Application Data\Xfire
2009-08-25 04:42 . 2009-08-25 04:43 -------- d-----w- c:\program files\Xfire
2009-08-25 00:43 . 2009-08-25 00:47 -------- d-----w- c:\documents and settings\Tyler\Application Data\GetRightToGo
2009-08-24 20:10 . 2009-08-24 20:10 -------- d-----w- c:\documents and settings\Tyler\.gem
2009-08-21 02:54 . 2007-06-03 20:31 10752 ----a-w- c:\windows\system32\ff_vfw.dll
2009-08-21 02:54 . 2009-08-21 02:54 -------- d-----w- c:\program files\K-Lite Codec Pack
2009-08-21 02:54 . 2004-01-12 06:00 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-08-21 02:53 . 2009-08-21 02:54 -------- d-----w- c:\program files\MP4 Player
2009-08-20 19:55 . 2009-08-20 19:55 -------- d-----w- c:\program files\Arma
2009-08-20 19:40 . 2009-09-07 21:52 -------- d-----w- c:\documents and settings\Tyler\Local Settings\Application Data\ArmA
2009-08-20 18:36 . 2009-08-20 18:36 -------- d-----w- c:\documents and settings\Tyler\Application Data\Windows Search
2009-08-20 17:30 . 2009-09-10 15:53 70128 ----a-w- c:\documents and settings\Tyler\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-08-17 04:19 . 2009-08-20 21:56 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Adobe
2009-08-17 04:16 . 2009-08-17 04:16 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
2009-08-17 04:16 . 2009-08-17 04:16 -------- d-----w- c:\documents and settings\Tyler\Local Settings\Application Data\Identities
2009-08-17 04:16 . 2009-08-17 04:16 -------- d-----w- c:\documents and settings\Tyler\Application Data\Windows Desktop Search
2009-08-17 04:16 . 2009-08-19 00:14 -------- d-----w- c:\program files\Windows Desktop Search
2009-08-17 04:16 . 2009-08-17 04:16 -------- d-----w- c:\windows\system32\GroupPolicy
2009-08-17 04:15 . 2008-03-07 17:02 98304 -c----w- c:\windows\system32\dllcache\nlhtml.dll
2009-08-17 04:15 . 2008-03-07 17:02 29696 -c----w- c:\windows\system32\dllcache\mimefilt.dll
2009-08-17 04:15 . 2008-03-07 17:02 192000 -c----w- c:\windows\system32\dllcache\offfilt.dll
2009-08-17 04:03 . 2009-08-17 04:12 -------- d-----w- c:\program files\Counter-Strike Source
2009-08-16 20:39 . 2009-08-16 20:39 108144 ----a-w- c:\windows\system32\CmdLineExt.dll
2009-08-16 20:36 . 2009-09-10 05:09 -------- d-----w- c:\program files\OpenAL
2009-08-14 05:38 . 2009-08-14 05:38 664 ----a-w- c:\windows\system32\d3d9caps.dat
2009-08-14 05:35 . 2009-07-10 13:27 1315328 -c----w- c:\windows\system32\dllcache\msoe.dll
2009-08-13 19:54 . 2009-08-13 19:54 41872 ----a-w- c:\windows\system32\xfcodec.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-09-11 03:15 . 2009-07-25 16:09 -------- d-----w- c:\documents and settings\All Users\Application Data\avg8
2009-09-10 04:59 . 2009-09-10 04:59 7396 ----a-w- c:\windows\system32\drivers\pctcore.cat
2009-09-10 04:55 . 2009-07-25 14:51 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-09-08 00:49 . 2009-08-01 05:17 136888 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2009-09-08 00:48 . 2009-08-01 05:17 111928 ----a-w- c:\windows\system32\PnkBstrB.exe
2009-09-07 20:48 . 2009-07-26 20:42 -------- d-----w- c:\program files\WOV
2009-09-02 17:14 . 2009-07-30 16:17 -------- d-----w- c:\documents and settings\Tyler\Application Data\LimeWire
2009-08-30 15:54 . 2009-07-29 01:21 -------- d-----w- c:\documents and settings\Tyler\Application Data\CoreFTP
2009-08-28 21:18 . 2009-08-28 21:17 8892928 ----a-w- c:\documents and settings\All Users\Application Data\atscie.msi
2009-08-28 15:53 . 2009-07-29 01:20 -------- d-----w- c:\program files\CoreFTP
2009-08-26 19:02 . 2009-07-25 18:11 -------- d-----w- c:\program files\MSBuild
2009-08-17 04:07 . 2009-07-25 16:10 11952 ----a-w- c:\windows\system32\avgrsstx.dll
2009-08-17 04:07 . 2009-07-25 16:10 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2009-08-17 04:07 . 2009-07-25 16:10 335240 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2009-08-09 23:22 . 2009-08-09 23:22 -------- d-----w- c:\program files\Common Files\DirectX
2009-08-08 04:58 . 2009-08-08 04:53 -------- d-----w- c:\program files\THQ
2009-08-06 19:13 . 2009-08-06 19:13 -------- d-----w- c:\program files\Audacity
2009-08-06 02:40 . 2009-07-30 15:46 -------- d-----w- c:\program files\shipsim2008
2009-08-05 09:01 . 2004-08-04 12:00 204800 ----a-w- c:\windows\system32\mswebdvd.dll
2009-08-01 22:38 . 2009-08-01 22:38 -------- d-----w- c:\program files\Google
2009-08-01 05:17 . 2009-08-01 05:17 66872 ----a-w- c:\windows\system32\PnkBstrA.exe
2009-07-30 14:25 . 2009-07-30 14:25 -------- d-----w- c:\documents and settings\All Users\Application Data\Trymedia
2009-07-30 04:19 . 2009-07-30 04:19 -------- d-----w- c:\program files\Common Files\Adobe
2009-07-29 02:30 . 2009-07-29 02:30 -------- d-----w- c:\program files\Microsoft Silverlight
2009-07-27 04:12 . 2009-07-27 04:12 -------- d-----w- c:\program files\DivX
2009-07-27 04:12 . 2009-07-27 04:12 -------- d-----w- c:\program files\Common Files\DivX Shared
2009-07-27 03:47 . 2009-07-26 19:58 -------- d-----w- c:\program files\Call of Duty 4 - Modern Warfare
2009-07-26 02:31 . 2009-07-26 02:28 -------- d-----w- c:\program files\WYSIWYG Web Builder 6
2009-07-26 02:28 . 2009-07-26 02:28 737280 ----a-w- c:\windows\iun6002.exe
2009-07-26 01:47 . 2009-07-26 01:47 -------- d-----w- c:\documents and settings\Tyler\Application Data\Nvu
2009-07-26 01:41 . 2009-07-25 18:27 -------- d-----w- c:\program files\Java
2009-07-26 01:40 . 2009-07-26 01:40 -------- d-----w- c:\documents and settings\All Users\Application Data\McAfee
2009-07-26 01:35 . 2009-07-25 18:33 -------- d-----w- c:\documents and settings\Tyler\Application Data\Web Page Maker
2009-07-25 18:33 . 2009-07-25 18:33 -------- d-----w- c:\program files\Web Page Maker
2009-07-25 18:27 . 2009-07-25 18:26 -------- d-----w- c:\program files\LimeWire
2009-07-25 18:11 . 2009-07-25 18:11 -------- d-----w- c:\program files\Reference Assemblies
2009-07-25 18:01 . 2009-07-25 18:01 -------- d-----w- c:\program files\MSXML 4.0
2009-07-25 17:58 . 2009-07-25 17:58 -------- d-----w- c:\program files\Windows Media Connect 2
2009-07-25 16:10 . 2009-07-25 16:10 108552 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2009-07-25 16:09 . 2009-07-25 16:09 -------- d-----w- c:\program files\AVG
2009-07-25 15:27 . 2009-07-25 15:27 -------- d-----w- c:\documents and settings\Tyler\Application Data\AVG8
2009-07-25 15:18 . 2009-07-25 15:18 -------- d-----w- c:\program files\7-Zip
2009-07-25 15:14 . 2009-07-25 15:14 0 ----a-w- c:\windows\nsreg.dat
2009-07-25 15:02 . 2009-07-25 15:02 -------- d-----w- c:\program files\Realtek
2009-07-25 14:59 . 2009-07-25 14:59 17801 ----a-w- c:\windows\system32\drivers\AegisP.sys
2009-07-25 14:58 . 2009-07-25 14:58 -------- d-----w- c:\documents and settings\All Users\Application Data\Intel
2009-07-25 14:58 . 2009-07-25 14:57 -------- d-----w- c:\program files\Intel
2009-07-25 14:55 . 2009-07-25 05:10 -------- d-----w- c:\program files\Apoint
2009-07-25 14:55 . 2009-07-25 14:51 -------- d-----w- c:\program files\Sony
2009-07-25 14:54 . 2009-07-25 14:54 -------- d-----w- c:\program files\Common Files\Sony Shared
2009-07-25 14:53 . 2009-07-25 14:53 -------- d-----w- c:\program files\DIFX
2009-07-25 14:52 . 2009-07-25 14:51 -------- d-----w- c:\program files\Common Files\InstallShield
2009-07-25 05:01 . 2009-07-25 05:01 -------- d-----w- c:\program files\microsoft frontpage
2009-07-25 04:58 . 2009-07-25 04:58 21640 ----a-w- c:\windows\system32\emptyregdb.dat
2009-07-17 19:01 . 2004-08-04 12:00 58880 ----a-w- c:\windows\system32\atl.dll
2009-07-14 05:43 . 2004-08-04 12:00 286208 ----a-w- c:\windows\system32\wmpdxm.dll
2009-07-03 17:09 . 2004-08-04 12:00 915456 ----a-w- c:\windows\system32\wininet.dll
2009-06-25 08:25 . 2004-08-04 12:00 730112 ----a-w- c:\windows\system32\lsasrv.dll
2009-06-25 08:25 . 2004-08-04 12:00 56832 ----a-w- c:\windows\system32\secur32.dll
2009-06-25 08:25 . 2004-08-04 12:00 54272 ----a-w- c:\windows\system32\wdigest.dll
2009-06-25 08:25 . 2004-08-04 12:00 301568 ----a-w- c:\windows\system32\kerberos.dll
2009-06-25 08:25 . 2004-08-04 12:00 147456 ----a-w- c:\windows\system32\schannel.dll
2009-06-25 08:25 . 2004-08-04 12:00 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-06-24 11:18 . 2004-08-04 12:00 92928 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2009-06-16 14:36 . 2004-08-04 12:00 81920 ----a-w- c:\windows\system32\fontsub.dll
2009-06-16 14:36 . 2004-08-04 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-05-13 21:55 . 2009-05-13 21:55 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-05-13 21:55 . 2009-05-13 21:55 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
.