MyTechSupport.ca :: Your Computer Technical Resource Headquarters! MyTechSupport.ca :: Your Computer Technical Resource Headquarters!
HOME FORUMS RESOURCES & TOOLS ARTICLES ONLINE STORE ABOUT US
Computer Support Forums arrow Internet & Network Support arrow Security & Viruses arrow Topic: friends computer needs help HJT log inc.
November 13, 2019, 04:54:33 PM
 

Home Forum Rules Help Search Mobile Version Login Register

Welcome, Guest. Please login or register.
Did you miss your activation email?
November 13, 2019, 04:54:33 PM

Login with username, password and session length
 Featured Sites:
News
Welcome to MyTechSupport.ca! - Registration is FREE, so why not join our friendly community today?
  0 Members and 1 Guest are viewing this topic.
Pages: [1] 2  All Go Down Print
Author Topic: friends computer needs help HJT log inc.  (Read 2866 times)
lordelix
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 18


Bookmark and Share

View Profile
« on: May 14, 2008, 03:43:07 AM »

heya guys,
 glad to see you are all still jumpin here! Its been a while but a buddy of mine has gotten ahold of a really annoying infection.  He keeps getting bombarded by warnings of spyware infection , popups and if he leaves his mouse idle he gets bug graphics crawling around his screen. To make the situation worse he is not good with computers and I am in another state so this is gonna be a game of tag.  Here is his HJT log, please help if you can , thanks!


 Logfile of HijackThis v1.99.1
Scan saved at 8:21:20 PM, on 5/13/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
C:\WINDOWS\system32\crypserv.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\CTHELPER.EXE
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\SanDisk\Sansa Updater\SansaDispatch.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\Program Files\hijack this\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\Program Files\Copernic

Agent\CopernicAgentExt.dll/INTEGRATION_BAND_SEARCHBAR_HTML
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://my.att.net/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\PCHEALTH\HELPCTR\System\panels\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer =

ftp=localhost:8118;gopher=localhost:8118;http=localhost:8118;https=localhost:8118;socks=localhost:9050
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost, 127.0.0.1
R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\PROGRA~1\COPERN~1\COPERN~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\PROGRA~1\COPERN~1\COPERN~1.DLL
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SansaDispatch] C:\Program Files\SanDisk\Sansa Updater\SansaDispatch.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_1
O4 - Startup: Desktop Manager.lnk = C:\Program Files\Research In Motion\BlackBerry\DesktopMgr.exe
O4 - Global Startup: APC UPS Status.lnk = C:\Program Files\APC\APC PowerChute Personal Edition\Display.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Search Using Copernic Agent - res://C:\Program Files\Copernic

Agent\CopernicAgentExt.dll/INTEGRATION_MENU_SEARCHEXT
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra 'Tools' menuitem: Launch Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} -

C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft

ActiveSync\inetrepl.dll
O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file

missing)
O16 - DPF: {01111F00-3E00-11D2-8470-0060089874ED} - http://supportsoft.adelphia.net/sdccommon/download/tgctlins.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) -

http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) -

http://javadl.sun.com/webapps/download/AutoDL?BundleId=19588
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) -

http://cdn.messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {C4847596-972C-11D0-9567-00A0C9273C2A} (Crystal Report Viewer Control) -

https://www.thd-issi.com/viewer/activeXViewer/activexviewer.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: ssttt - C:\WINDOWS\
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal

Edition\mainserv.exe
O23 - Service: Crypkey License - CrypKey (Canada) Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel

32\IDriverT.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset  - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Common Files\Roxio

Shared\9.0\SharedCOM\RoxLiveShare9.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio

Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Professional

2005\RpcDataSrv.exe
O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Professional 2005\RpcSandraSrv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Logged

 
Pancake
Global Moderator
Hero Member
*****

Karma: +78/-0
Offline Offline

Gender: Male
Posts: 3915


Bookmark and Share

View Profile
« Reply #1 on: May 15, 2008, 12:09:39 AM »

Ok.We  need to download ComboFix.exe. This will  give me a better view to the files that are running and also the ones that are hidden on your computer.It may also remove some,but not all, of the infected files if found.

Please visit this webpage for download links, and instructions for running ComboFix


When the tool is finished, it will produce a report for you. Please copy and paste the "C:\ComboFix.txt" along with a new 'HijackThis' log so that we can continue to do any further cleaning that your system may require.

Caution: Never run and remove files with Combofix unless supervised by a qualified  security analyst who is experienced in the use of Combofix. Mal use can cause serious computer problems

NOTE: Combofix prevents autorun of all CDs, floppies and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you - please let me know.
Logged

An Australian Member of

EDDY
lordelix
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 18


Bookmark and Share

View Profile
« Reply #2 on: May 15, 2008, 05:07:04 AM »

thanks for the response,
 here are the combo fix & new HJT logs,, Thanx again for the help :


ComboFix 08-05-12.1 - Ron 2008-05-14 20:12:46.1 - NTFSx86
Running from: C:\Documents and Settings\Ron\My Documents\ComboFix.exe
 * Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED
!!

.
ADS - svchost.exe: deleted 88 bytes in 2 streams.

(((((((((((((((((((((((((((((((((((((((   Other Deletions  
)))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\All Users\Application
Data\Microsoft\Network\Downloader\qmgr0.dat
C:\Documents and Settings\All Users\Application
Data\Microsoft\Network\Downloader\qmgr1.dat
C:\Documents and Settings\All Users\Application Data\Starware
C:\Documents and Settings\All Users\Application
Data\Starware\buttons\screensaver.bmp
C:\Documents and Settings\All Users\Application Data\Starware\contexts\error.xml
C:\Documents and Settings\All Users\Application
Data\Starware\contexts\related.xml
C:\Documents and Settings\All Users\Application
Data\Starware\contexts\travel.xml
C:\Documents and Settings\All Users\Application
Data\Starware\contexts\Travel.xml.backup
C:\Documents and Settings\All Users\Application
Data\Starware\SimpleUpdate\ProductMessagingConfig.xml
C:\Documents and Settings\All Users\Application
Data\Starware\SimpleUpdate\ProductMessagingConfig.xml.backup
C:\Documents and Settings\All Users\Application
Data\Starware\SimpleUpdate\SimpleUpdateConfig.xml
C:\Documents and Settings\All Users\Application
Data\Starware\SimpleUpdate\SimpleUpdateConfig.xml.backup
C:\Documents and Settings\All Users\Application
Data\Starware\SimpleUpdate\TimerManagerConfig.xml
C:\Documents and Settings\All Users\Application
Data\Starware\SimpleUpdate\TimerManagerConfig.xml.backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet
Files\Tvm.log
C:\Documents and Settings\Ron\Application Data\urlredir.cfg
C:\Documents and Settings\Ron\Local Settings\Temporary Internet Files\Ssk.log
C:\Documents and Settings\Ron\Local Settings\Temporary Internet Files\Tvm.log
C:\Documents and Settings\Ron\Start Menu\Programs\Internet Speed Monitor
C:\Documents and Settings\Ron\Start Menu\Programs\Internet Speed Monitor\Check
Now.lnk
C:\Documents and Settings\Ron\Start Menu\Programs\Internet Speed
Monitor\Uninstall.lnk
C:\Program Files\Common Files\Yazzle1552OinUninstaller.exe
C:\Program Files\ISM
C:\Program Files\ISM\BndDrive3.dll
C:\Program Files\ISM\BndDrive6.dll
C:\Program Files\ISM\bndloader.exe
C:\Program Files\ISM\dictionary.gz
C:\Program Files\ISM\ism.exe
C:\Program Files\ISM\targets.gz
C:\Program Files\ISM\Uninstall.exe
C:\Program Files\ISM2
C:\Program Files\ISM2\cringupd.exe
C:\Program Files\ISM2\dictionary.gz
C:\Program Files\ISM2\ISMPack5.exe
C:\Program Files\ISM2\ISMPack6.exe
C:\Program Files\ISM2\ISMPack7.exe
C:\Program Files\ISM2\ISMPack8.exe
C:\Program Files\ISM2\targets.gz
C:\Program Files\QdrDrive
C:\Program Files\QdrDrive\QdrDrive8.dll
C:\Program Files\QdrDrive\qdrloader.exe
C:\Program Files\QdrModule
C:\Program Files\QdrModule\dic.gz
C:\Program Files\QdrModule\dicy.gz
C:\Program Files\QdrModule\kwd.gz
C:\Program Files\QdrModule\pckr.dat
C:\Program Files\QdrModule\QdrModule10.exe
C:\Program Files\QdrModule\QdrModule15.exe
C:\Program Files\QdrModule\QdrModule9.exe
C:\Program Files\QdrPack
C:\Program Files\QdrPack\dicts.gz
C:\Program Files\QdrPack\QdrPack15.exe
C:\Program Files\QdrPack\QdrPack16.exe
C:\Program Files\QdrPack\QdrPack9.exe
C:\Program Files\QdrPack\trgts.gz
C:\Temp\xOe
C:\WINDOWS\mscore.dll
C:\WINDOWS\system32\adssite-remove.exe
C:\WINDOWS\system32\adssite_sidebar.dll
C:\WINDOWS\system32\adult.txt
C:\WINDOWS\system32\Cache
C:\WINDOWS\system32\Cache\desktrf-fran-162813.exe
C:\WINDOWS\system32\Cache\MTE1NDE6ODoxMg.exe
C:\WINDOWS\system32\Cache\setup.exe
C:\WINDOWS\system32\Cache\SmartDownload.exe
C:\WINDOWS\system32\finance.txt
C:\WINDOWS\system32\gzmrot-uninst.exe
C:\WINDOWS\system32\iebrowserc.dll
C:\WINDOWS\system32\instsrv.exe
C:\WINDOWS\system32\lt.res
C:\WINDOWS\system32\ncase.ini
C:\WINDOWS\system32\other.txt
C:\WINDOWS\system32\pac.txt
C:\WINDOWS\system32\pharma.txt
C:\WINDOWS\system32\rightonadz-uninst.exe
C:\WINDOWS\system32\sahagent1014.exe
C:\WINDOWS\system32\sft.res
C:\WINDOWS\system32\vMW02a

----- BITS: Possible infected sites -----

hxxp://80.93.48.74
.
(((((((((((((((((((((((((   Files Created from 2008-04-15 to 2008-05-15  
)))))))))))))))))))))))))))))))
.

2008-05-09 11:36 . 2008-05-13 12:01   57,546   --a------   
C:\WINDOWS\promogif3.gif
2008-05-09 11:36 . 2008-05-13 12:01   24,351   --a------   
C:\WINDOWS\promogif1.gif
2008-05-09 11:36 . 2008-05-13 12:01   24,066   --a------   
C:\WINDOWS\promogif2.gif
2008-05-09 11:36 . 2008-05-13 12:01   1,295   --a------   
C:\WINDOWS\homepage.html
2008-05-09 11:36 . 2008-05-13 12:01   508   --a------   
C:\WINDOWS\promo6.html
2008-05-09 11:36 . 2008-05-13 12:01   501   --a------   
C:\WINDOWS\promo4.html
2008-05-09 11:36 . 2008-05-13 12:01   479   --a------   
C:\WINDOWS\promo5.html
2008-05-09 11:36 . 2008-05-13 12:01   284   --a------   
C:\WINDOWS\promo3.html
2008-05-09 11:36 . 2008-05-13 12:01   284   --a------   
C:\WINDOWS\promo2.html
2008-05-09 11:36 . 2008-05-13 12:01   284   --a------   
C:\WINDOWS\promo1.html
2008-05-08 20:11 . 2008-05-13 11:47   160,256   --a------   
C:\WINDOWS\system32\blackster.scr
2008-05-08 20:09 . 2008-05-13 11:47   269,334   --a------   
C:\WINDOWS\system32\ctfmonb.bmp
2008-05-08 20:09 . 2008-05-08 20:09   32,768   --a------   
C:\WINDOWS\system32\sockins32.dll
2008-05-08 20:09 . 2008-05-13 12:01   1,907   --a------   
C:\WINDOWS\index.html
2008-05-07 14:40 . 2008-05-07 14:40   14,192   --a------   C:\ews7lq.exe

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report  
))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-15 03:10   ---------   d-----w   C:\Program Files\Microsoft
AntiSpyware
2008-05-14 02:41   2,911,744   ----a-w   C:\WINDOWS\Internet
Logs\xDB127.tmp
2008-05-14 02:41   14,336   ----a-w   C:\WINDOWS\Internet Logs\xDB128.tmp
2008-05-14 02:35   2,913,280   ----a-w   C:\WINDOWS\Internet
Logs\xDB125.tmp
2008-05-14 02:35   132,096   ----a-w   C:\WINDOWS\Internet Logs\xDB126.tmp
2008-05-13 22:08   2,913,280   ----a-w   C:\WINDOWS\Internet
Logs\xDB123.tmp
2008-05-13 22:08   2,862,080   ----a-w   C:\WINDOWS\Internet
Logs\xDB124.tmp
2008-05-13 18:52   2,911,744   ----a-w   C:\WINDOWS\Internet
Logs\xDB121.tmp
2008-05-09 22:17   32,768   ----a-w   C:\WINDOWS\Internet Logs\xDB122.tmp
2008-05-09 22:17   2,913,280   ----a-w   C:\WINDOWS\Internet
Logs\xDB120.tmp
2008-05-09 19:57   ---------   d-----w   C:\Documents and
Settings\Ron\Application Data\AVG7
2008-05-09 19:23   24,064   ----a-w   C:\WINDOWS\Internet Logs\xDB11F.tmp
2008-05-09 19:23   2,913,280   ----a-w   C:\WINDOWS\Internet
Logs\xDB11E.tmp
2008-05-09 19:15   215,040   ----a-w   C:\WINDOWS\Internet Logs\xDB11D.tmp
2008-05-09 19:15   2,913,280   ----a-w   C:\WINDOWS\Internet
Logs\xDB11C.tmp
2008-05-07 21:23   2,915,328   ----a-w   C:\WINDOWS\Internet
Logs\xDB11A.tmp
2008-05-07 21:23   2,746,880   ----a-w   C:\WINDOWS\Internet
Logs\xDB11B.tmp
2008-05-02 15:00   ---------   d-----w   C:\Documents and
Settings\LocalService\Application Data\AVG7
2008-04-29 22:25   2,906,112   ----a-w   C:\WINDOWS\Internet
Logs\xDB117.tmp
2008-04-29 22:25   2,836,480   ----a-w   C:\WINDOWS\Internet
Logs\xDB119.tmp
2008-04-24 00:30   2,903,552   ----a-w   C:\WINDOWS\Internet
Logs\xDB116.tmp
2008-04-24 00:30   13,824   ----a-w   C:\WINDOWS\Internet Logs\xDB118.tmp
2008-04-23 23:15   56,320   ----a-w   C:\WINDOWS\Internet Logs\xDB115.tmp
2008-04-23 23:15   2,904,576   ----a-w   C:\WINDOWS\Internet
Logs\xDB114.tmp
2008-04-23 21:30   2,903,552   ----a-w   C:\WINDOWS\Internet
Logs\xDB112.tmp
2008-04-23 21:30   2,797,056   ----a-w   C:\WINDOWS\Internet
Logs\xDB113.tmp
2008-04-20 20:09   2,783,232   ----a-w   C:\WINDOWS\Internet
Logs\xDB111.tmp
2008-04-20 20:06   2,903,040   ----a-w   C:\WINDOWS\Internet
Logs\xDB110.tmp
2008-04-16 20:26   2,901,504   ----a-w   C:\WINDOWS\Internet
Logs\xDB10D.tmp
2008-04-16 20:26   1,062,912   ----a-w   C:\WINDOWS\Internet
Logs\xDB10F.tmp
2008-04-11 15:54   2,895,872   ----a-w   C:\WINDOWS\Internet
Logs\xDB10C.tmp
2008-04-11 15:54   2,835,456   ----a-w   C:\WINDOWS\Internet
Logs\xDB10E.tmp
2008-03-26 07:15   2,644,480   ----a-w   C:\WINDOWS\Internet
Logs\xDB10B.tmp
2008-03-26 07:13   2,894,336   ----a-w   C:\WINDOWS\Internet
Logs\xDB10A.tmp
2008-03-23 05:29   1,236,480   ----a-w   C:\WINDOWS\Internet
Logs\xDB109.tmp
2008-03-23 05:26   2,894,336   ----a-w   C:\WINDOWS\Internet
Logs\xDB107.tmp
2008-03-20 06:53   2,896,384   ----a-w   C:\WINDOWS\Internet
Logs\xDB105.tmp
2008-03-20 06:53   2,838,528   ----a-w   C:\WINDOWS\Internet
Logs\xDB108.tmp
2008-03-16 05:13   1,339,392   ----a-w   C:\WINDOWS\Internet
Logs\xDB106.tmp
2008-03-16 05:10   2,890,240   ----a-w   C:\WINDOWS\Internet
Logs\xDB104.tmp
2008-03-14 09:04   857,600   ----a-w   C:\WINDOWS\Internet Logs\xDB103.tmp
2008-03-14 09:04   2,890,240   ----a-w   C:\WINDOWS\Internet
Logs\xDB102.tmp
2008-03-12 22:42   2,888,704   ----a-w   C:\WINDOWS\Internet
Logs\xDB100.tmp
2008-03-12 22:42   165,376   ----a-w   C:\WINDOWS\Internet Logs\xDB101.tmp
2008-03-12 20:29   2,888,704   ----a-w   C:\WINDOWS\Internet
Logs\xDBFE.tmp
2008-03-12 20:29   2,857,984   ----a-w   C:\WINDOWS\Internet
Logs\xDBFF.tmp
2008-03-07 19:57   848,896   ----a-w   C:\WINDOWS\Internet Logs\xDBFD.tmp
2008-03-07 19:55   2,874,368   ----a-w   C:\WINDOWS\Internet
Logs\xDBFC.tmp
2008-03-05 10:02   12,800   ----a-w   C:\WINDOWS\Internet Logs\xDBFB.tmp
2008-03-05 10:01   2,867,200   ----a-w   C:\WINDOWS\Internet
Logs\xDBFA.tmp
2008-03-05 09:59   2,872,832   ----a-w   C:\WINDOWS\Internet
Logs\xDBF8.tmp
2008-03-05 09:59   2,833,408   ----a-w   C:\WINDOWS\Internet
Logs\xDBF9.tmp
2004-02-24 02:01   173,496   ----a-w   C:\Program
Files\Disturbed_Profile1_1024.zip
2003-10-07 23:09   36,792   ----a-w   C:\Documents and
Settings\Ron\Application Data\GDIPFONTCACHEV1.DAT
2003-09-12 20:30   716,018   ----a-w   C:\Program Files\acxtractor.exe
.

------- Sigcheck -------

.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points  
))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper
Objects\{8ABA9A9C-8791-4d61-8D5B-BCC9448EA573}]
         C:\Program Files\ISM\BndDrive7.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper
Objects\{FFFFFFFF-BBBB-4146-86FD-A722E8AB3489}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2003-04-14 19:30 1491216]
"Creative Detector"="C:\Program
Files\Creative\MediaSource\Detector\CTDetect.exe" [2004-12-02 18:23 102400]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
[2007-07-27 15:00 68856]
"AOL Fast Start"="C:\Program Files\America Online 9.0c\AOL.exe" [2005-07-12
07:17 50776]
"pruttct"="C:\WINDOWS\System32\pruttct.exe" [ ]
"Lo4ERkNth"="tsaazel.exe" []
"QdrPack16"="C:\Program Files\QdrPack\QdrPack16.exe" [ ]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdaptecDirectCD"="C:\Program Files\Adaptec\Easy CD Creator
5\DirectCD\DirectCD.exe" [2001-01-11 06:00 643072]
"gcasServ"="C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" [2005-11-15
13:12 473928]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe" [2008-04-17 09:54 579584]
"AVG7_EMC"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe" [2007-12-20 10:48 406528]
"Zone Labs Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
[2005-01-26 05:23 902936]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2005-01-31 22:14
98304]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
[2007-09-25 02:11 132496]
"AOLDialer"="C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" [2006-10-23
05:50 71216]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter
Edition\3.0\Apps\apdproxy.exe" [2005-06-06 23:46 57344]
"HostManager"="C:\Program Files\Common
Files\AOL\1107234749\EE\AOLHostManager.exe" [2006-09-25 17:52 14384]
"AOLAspSunset2"="C:\Documents and Settings\All Users\Application
Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe" [
]
"ctfmona"="C:\WINDOWS\System32\ctfmona.exe" [ ]
"pwivuc"="C:\WINDOWS\System32\pwivuc.exe" [ ]
"mdnwtc"="C:\WINDOWS\System32\mdnwtc.exe" [ ]
"App32dll"="C:\windows\system32\msnavc32.exe" [ ]
"aozi2m6y"="C:\Program Files\aozi2m6y\aozi2m6y.exe" [ ]
"alkpkb"="C:\WINDOWS\alkpkb.exe" [ ]
"4FnO3qh"="vbssd.exe" []

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"AVG7_Run"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe" [2007-10-26 09:52 219136]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
[2007-07-27 15:00 68856]

C:\Documents and Settings\Ron\Start Menu\Programs\Startup\
LimeWire On Startup.lnk - C:\Program Files\LimeWire\LimeWire.exe [2007-09-17
07:19:14 147456]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat
7.0\Reader\reader_sl.exe [2005-09-23 22:05:26 29696]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\r
un]
"pruttct"= C:\WINDOWS\System32\pruttct.exe
"igashbit.exe"= C:\WINDOWS\system\igashbit.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObject
DelayLoad]
"WebProxy"= {66186F05-BBBB-4a39-864F-72D84615C679} - sockins32.dll [ ]

[HKEY_LOCAL_MACHINE\software\microsoft\windows
nt\currentversion\winlogon\notify\qommklk]
qommklk.dll

R0 PrtSeqRd;PrtSeqRd;C:\WINDOWS\System32\drivers\PrtSeqRd.sys [2001-01-11 03:00]
S1 cdudf;cdudf;C:\WINDOWS\System32\drivers\cdudf.sys [2001-01-11 06:00]
S4 .NET Connection Service;.NET Framework Service;C:\WINDOWS\svchost.exe []

*Newly Created Service* - CATCHME

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed
components\{66186F05-BBBB-4a39-864F-72D84615C679}]
rundll32 sockins32.dll,InitModule
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2008-05-14 20:19:49
Windows 5.1.2600  NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\ATWPKT2]
"ImagePath"="\??\C:\WINDOWS\System32\drivers\ATWPKT2.SYS"
.
Completion time: 2008-05-14 20:24:13
ComboFix-quarantined-files.txt  2008-05-15 03:24:04

Pre-Run: 17,136,091,136 bytes free
Post-Run: 17,616,158,720 bytes free
Logged

 
lordelix
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 18


Bookmark and Share

View Profile
« Reply #3 on: May 15, 2008, 05:07:38 AM »

Logfile of HijackThis v1.99.1
Scan saved at 8:39:15 PM, on 5/14/2008
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\Common Files\AOL\1107234749\EE\aolsoftware.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\America Online 9.0c\waol.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Documents and Settings\Ron\My Documents\hijackthis_sfx.exe
c:\program files\common files\aol\1107234749\ee\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe
c:\program files\common files\aol\1107234749\ee\aolsoftware.exe
C:\Program Files\America Online 9.0c\shellmon.exe
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = file://c:/windows/homepage.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = file://c:/windows/homepage.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = file://c:/windows/homepage.html
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: BndShell3 BHO Class - {8ABA9A9C-8791-4d61-8D5B-BCC9448EA573} - C:\Program Files\ISM\BndDrive7.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O2 - BHO: Microsoft copyright - {FFFFFFFF-BBBB-4146-86FD-A722E8AB3489} - sockins32.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [AdaptecDirectCD] "C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1107234749\EE\AOLHostManager.exe
O4 - HKLM\..\Run: [AOLAspSunset2] C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe
O4 - HKLM\..\Run: [ctfmona] C:\WINDOWS\System32\ctfmona.exe
O4 - HKLM\..\Run: [pwivuc] C:\WINDOWS\System32\pwivuc.exe
O4 - HKLM\..\Run: [mdnwtc] C:\WINDOWS\System32\mdnwtc.exe
O4 - HKLM\..\Run: [App32dll] C:\windows\system32\msnavc32.exe lee0105
O4 - HKLM\..\Run: [aozi2m6y] C:\Program Files\aozi2m6y\aozi2m6y.exe
O4 - HKLM\..\Run: [alkpkb] C:\WINDOWS\alkpkb.exe
O4 - HKLM\..\Run: [4FnO3qh] vbssd.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\America Online 9.0c\AOL.EXE" -b
O4 - HKCU\..\Run: [pruttct] C:\WINDOWS\System32\pruttct.exe
O4 - HKCU\..\Run: [Lo4ERkNth] tsaazel.exe
O4 - HKCU\..\Run: [QdrPack16] "C:\Program Files\QdrPack\QdrPack16.exe"
O4 - HKCU\..\Run: [Systray] rundll32.exe sockins32.dll,RunMain
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - C:\Program Files\IrfanView\Ebay\Ebay.htm
O15 - Trusted Zone: http://www.neededware.com
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://photos.walmart.com/WalmartActivia.cab
O16 - DPF: {50BD5CDA-4BA8-4048-8FAA-763F222E41D8} - ms-its:mhtml:file://c:\\nores.mht!http://adxrnet.net/code/chm/xpre.chm::/xpreload.ocx
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1123787558355
O20 - Winlogon Notify: qommklk - qommklk.dll (file missing)
O21 - SSODL: WebProxy - {66186F05-BBBB-4a39-864F-72D84615C679} - sockins32.dll (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Logged

 
Pancake
Global Moderator
Hero Member
*****

Karma: +78/-0
Offline Offline

Gender: Male
Posts: 3915


Bookmark and Share

View Profile
« Reply #4 on: May 15, 2008, 05:20:45 AM »

Have you removed SP2 ?? If so reinstall it before you do the Recovery Console.



Before we can carry on with your cleanup we need to install your Recovery Console.
Go to Microsoft's website => http://support.microsoft.com/kb/310994
Select the download that's appropriate for your Operating System




Download the file & save it as it's originally named, next to ComboFix.exe.






Now close all open windows and programs, including all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
  • Drag the setup package onto ComboFix.exe and drop it.
  • Follow the prompts to start ComboFix and when prompted, agree to the End-User License Agreement to install the Microsoft Recovery Console.
  • At the next prompt, click 'Yes' to run the full ComboFix scan.


  • When the tool is finished, it will produce a report for you.
Please post the C:\ComboFix.txt along with a new HijackThis log for further review.












« Last Edit: May 15, 2008, 05:33:41 AM by Pancake » Logged

An Australian Member of

EDDY
lordelix
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 18


Bookmark and Share

View Profile
« Reply #5 on: May 15, 2008, 06:34:17 AM »

he hasnt removed sp2 altho for some reason its not showing up on his system info page  but it is listed in his add remove programs under hotfixes.   another thing has started poping up saying "the system could nnot find  FDSV_cb"   . This only happens when he runs combo fix. 
 Here are the new logs:

ComboFix 08-05-12.1 - Ron 2008-05-14 23:02:48.2 - NTFSx86
Microsoft Windows XP Professional  5.1.2600.0.1252.1.1033.18.75 [GMT -7:00]
Running from: C:\Documents and Settings\Ron\My Documents\ComboFix.exe
Command switches used :: C:\Documents and Settings\Ron\My
Documents\WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
 * Created a new restore point
.

(((((((((((((((((((((((((   Files Created from 2008-04-15 to 2008-05-15 
)))))))))))))))))))))))))))))))
.

2008-05-09 11:36 . 2008-05-13 12:01   57,546   --a------   
C:\WINDOWS\promogif3.gif
2008-05-09 11:36 . 2008-05-13 12:01   24,351   --a------   
C:\WINDOWS\promogif1.gif
2008-05-09 11:36 . 2008-05-13 12:01   24,066   --a------   
C:\WINDOWS\promogif2.gif
2008-05-09 11:36 . 2008-05-13 12:01   1,295   --a------   
C:\WINDOWS\homepage.html
2008-05-09 11:36 . 2008-05-13 12:01   508   --a------   
C:\WINDOWS\promo6.html
2008-05-09 11:36 . 2008-05-13 12:01   501   --a------   
C:\WINDOWS\promo4.html
2008-05-09 11:36 . 2008-05-13 12:01   479   --a------   
C:\WINDOWS\promo5.html
2008-05-09 11:36 . 2008-05-13 12:01   284   --a------   
C:\WINDOWS\promo3.html
2008-05-09 11:36 . 2008-05-13 12:01   284   --a------   
C:\WINDOWS\promo2.html
2008-05-09 11:36 . 2008-05-13 12:01   284   --a------   
C:\WINDOWS\promo1.html
2008-05-08 20:11 . 2008-05-13 11:47   160,256   --a------   
C:\WINDOWS\system32\blackster.scr
2008-05-08 20:09 . 2008-05-13 11:47   269,334   --a------   
C:\WINDOWS\system32\ctfmonb.bmp
2008-05-08 20:09 . 2008-05-08 20:09   32,768   --a------   
C:\WINDOWS\system32\sockins32.dll
2008-05-08 20:09 . 2008-05-13 12:01   1,907   --a------   
C:\WINDOWS\index.html

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   
))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-15 05:45   ---------   d-----w   C:\Program Files\Microsoft
AntiSpyware
2008-05-15 05:08   2,918,912   ----a-w   C:\WINDOWS\Internet
Logs\xDB129.tmp
2008-05-15 04:56   240,128   ----a-w   C:\WINDOWS\Internet Logs\xDB12A.tmp
2008-05-14 02:41   2,911,744   ----a-w   C:\WINDOWS\Internet
Logs\xDB127.tmp
2008-05-14 02:41   14,336   ----a-w   C:\WINDOWS\Internet Logs\xDB128.tmp
2008-05-14 02:35   2,913,280   ----a-w   C:\WINDOWS\Internet
Logs\xDB125.tmp
2008-05-14 02:35   132,096   ----a-w   C:\WINDOWS\Internet Logs\xDB126.tmp
2008-05-13 22:08   2,913,280   ----a-w   C:\WINDOWS\Internet
Logs\xDB123.tmp
2008-05-13 22:08   2,862,080   ----a-w   C:\WINDOWS\Internet
Logs\xDB124.tmp
2008-05-13 18:52   2,911,744   ----a-w   C:\WINDOWS\Internet
Logs\xDB121.tmp
2008-05-09 22:17   32,768   ----a-w   C:\WINDOWS\Internet Logs\xDB122.tmp
2008-05-09 22:17   2,913,280   ----a-w   C:\WINDOWS\Internet
Logs\xDB120.tmp
2008-05-09 19:57   ---------   d-----w   C:\Documents and
Settings\Ron\Application Data\AVG7
2008-05-09 19:23   24,064   ----a-w   C:\WINDOWS\Internet Logs\xDB11F.tmp
2008-05-09 19:23   2,913,280   ----a-w   C:\WINDOWS\Internet
Logs\xDB11E.tmp
2008-05-09 19:15   215,040   ----a-w   C:\WINDOWS\Internet Logs\xDB11D.tmp
2008-05-09 19:15   2,913,280   ----a-w   C:\WINDOWS\Internet
Logs\xDB11C.tmp
2008-05-07 21:23   2,915,328   ----a-w   C:\WINDOWS\Internet
Logs\xDB11A.tmp
2008-05-07 21:23   2,746,880   ----a-w   C:\WINDOWS\Internet
Logs\xDB11B.tmp
2008-05-02 15:00   ---------   d-----w   C:\Documents and
Settings\LocalService\Application Data\AVG7
2008-04-29 22:25   2,906,112   ----a-w   C:\WINDOWS\Internet
Logs\xDB117.tmp
2008-04-29 22:25   2,836,480   ----a-w   C:\WINDOWS\Internet
Logs\xDB119.tmp
2008-04-24 00:30   2,903,552   ----a-w   C:\WINDOWS\Internet
Logs\xDB116.tmp
2008-04-24 00:30   13,824   ----a-w   C:\WINDOWS\Internet Logs\xDB118.tmp
2008-04-23 23:15   56,320   ----a-w   C:\WINDOWS\Internet Logs\xDB115.tmp
2008-04-23 23:15   2,904,576   ----a-w   C:\WINDOWS\Internet
Logs\xDB114.tmp
2008-04-23 21:30   2,903,552   ----a-w   C:\WINDOWS\Internet
Logs\xDB112.tmp
2008-04-23 21:30   2,797,056   ----a-w   C:\WINDOWS\Internet
Logs\xDB113.tmp
2008-04-20 20:09   2,783,232   ----a-w   C:\WINDOWS\Internet
Logs\xDB111.tmp
2008-04-20 20:06   2,903,040   ----a-w   C:\WINDOWS\Internet
Logs\xDB110.tmp
2008-04-16 20:26   2,901,504   ----a-w   C:\WINDOWS\Internet
Logs\xDB10D.tmp
2008-04-16 20:26   1,062,912   ----a-w   C:\WINDOWS\Internet
Logs\xDB10F.tmp
2008-04-11 15:54   2,895,872   ----a-w   C:\WINDOWS\Internet
Logs\xDB10C.tmp
2008-04-11 15:54   2,835,456   ----a-w   C:\WINDOWS\Internet
Logs\xDB10E.tmp
2008-03-26 07:15   2,644,480   ----a-w   C:\WINDOWS\Internet
Logs\xDB10B.tmp
2008-03-26 07:13   2,894,336   ----a-w   C:\WINDOWS\Internet
Logs\xDB10A.tmp
2008-03-23 05:29   1,236,480   ----a-w   C:\WINDOWS\Internet
Logs\xDB109.tmp
2008-03-23 05:26   2,894,336   ----a-w   C:\WINDOWS\Internet
Logs\xDB107.tmp
2008-03-20 06:53   2,896,384   ----a-w   C:\WINDOWS\Internet
Logs\xDB105.tmp
2008-03-20 06:53   2,838,528   ----a-w   C:\WINDOWS\Internet
Logs\xDB108.tmp
2008-03-16 05:13   1,339,392   ----a-w   C:\WINDOWS\Internet
Logs\xDB106.tmp
2008-03-16 05:10   2,890,240   ----a-w   C:\WINDOWS\Internet
Logs\xDB104.tmp
2008-03-14 09:04   857,600   ----a-w   C:\WINDOWS\Internet Logs\xDB103.tmp
2008-03-14 09:04   2,890,240   ----a-w   C:\WINDOWS\Internet
Logs\xDB102.tmp
2008-03-12 22:42   2,888,704   ----a-w   C:\WINDOWS\Internet
Logs\xDB100.tmp
2008-03-12 22:42   165,376   ----a-w   C:\WINDOWS\Internet Logs\xDB101.tmp
2008-03-12 20:29   2,888,704   ----a-w   C:\WINDOWS\Internet
Logs\xDBFE.tmp
2008-03-12 20:29   2,857,984   ----a-w   C:\WINDOWS\Internet
Logs\xDBFF.tmp
2008-03-07 19:57   848,896   ----a-w   C:\WINDOWS\Internet Logs\xDBFD.tmp
2008-03-07 19:55   2,874,368   ----a-w   C:\WINDOWS\Internet
Logs\xDBFC.tmp
2008-03-05 10:02   12,800   ----a-w   C:\WINDOWS\Internet Logs\xDBFB.tmp
2008-03-05 10:01   2,867,200   ----a-w   C:\WINDOWS\Internet
Logs\xDBFA.tmp
2008-03-05 09:59   2,872,832   ----a-w   C:\WINDOWS\Internet
Logs\xDBF8.tmp
2008-03-05 09:59   2,833,408   ----a-w   C:\WINDOWS\Internet
Logs\xDBF9.tmp
2004-02-24 02:01   173,496   ----a-w   C:\Program
Files\Disturbed_Profile1_1024.zip
2003-10-07 23:09   36,792   ----a-w   C:\Documents and
Settings\Ron\Application Data\GDIPFONTCACHEV1.DAT
2003-09-12 20:30   716,018   ----a-w   C:\Program Files\acxtractor.exe
.

------- Sigcheck -------

.
(((((((((((((((((((((((((((((   snapshot@2008-05-14_20.23.36.92   
)))))))))))))))))))))))))))))))))))))))))
.
- 2008-05-14 16:04:08   2,048   --s-a-w   C:\WINDOWS\bootstat.dat
+ 2008-05-15 05:34:15   2,048   --s-a-w   C:\WINDOWS\bootstat.dat
- 2008-05-14 16:04:31   16,384   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
+ 2008-05-15 05:34:37   16,384   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
- 2008-05-14 16:04:31   32,768   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Local
Settings\History\History.IE5\index.dat
+ 2008-05-15 05:34:37   32,768   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Local
Settings\History\History.IE5\index.dat
- 2008-05-14 16:04:31   163,840   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet
Files\Content.IE5\index.dat
+ 2008-05-15 05:34:37   163,840   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet
Files\Content.IE5\index.dat
- 2008-04-06 18:39:40   40,196   ----a-w   C:\WINDOWS\system32\perfc009.dat
+ 2008-05-15 05:43:33   40,196   ----a-w   C:\WINDOWS\system32\perfc009.dat
- 2008-04-06 18:39:40   311,934   ----a-w   C:\WINDOWS\system32\perfh009.dat
+ 2008-05-15 05:43:33   311,934   ----a-w   C:\WINDOWS\system32\perfh009.dat
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   
))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper
Objects\{8ABA9A9C-8791-4d61-8D5B-BCC9448EA573}]
         C:\Program Files\ISM\BndDrive7.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper
Objects\{FFFFFFFF-BBBB-4146-86FD-A722E8AB3489}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2003-04-14 19:30 1491216]
"Creative Detector"="C:\Program
Files\Creative\MediaSource\Detector\CTDetect.exe" [2004-12-02 18:23 102400]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
[2007-07-27 15:00 68856]
"AOL Fast Start"="C:\Program Files\America Online 9.0c\AOL.exe" [2005-07-12
07:17 50776]
"pruttct"="C:\WINDOWS\System32\pruttct.exe" [ ]
"Lo4ERkNth"="tsaazel.exe" []
"QdrPack16"="C:\Program Files\QdrPack\QdrPack16.exe" [ ]
"Systray"="sockins32.dll" [2008-05-08 20:09 32768
C:\WINDOWS\system32\sockins32.dll]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdaptecDirectCD"="C:\Program Files\Adaptec\Easy CD Creator
5\DirectCD\DirectCD.exe" [2001-01-11 06:00 643072]
"gcasServ"="C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" [2005-11-15
13:12 473928]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe" [2008-04-17 09:54 579584]
"AVG7_EMC"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe" [2007-12-20 10:48 406528]
"Zone Labs Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
[2005-01-26 05:23 902936]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2005-01-31 22:14
98304]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
[2007-09-25 02:11 132496]
"AOLDialer"="C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" [2006-10-23
05:50 71216]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter
Edition\3.0\Apps\apdproxy.exe" [2005-06-06 23:46 57344]
"HostManager"="C:\Program Files\Common
Files\AOL\1107234749\EE\AOLHostManager.exe" [2006-09-25 17:52 14384]
"AOLAspSunset2"="C:\Documents and Settings\All Users\Application
Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe" [
]
"ctfmona"="C:\WINDOWS\System32\ctfmona.exe" [ ]
"pwivuc"="C:\WINDOWS\System32\pwivuc.exe" [ ]
"mdnwtc"="C:\WINDOWS\System32\mdnwtc.exe" [ ]
"App32dll"="C:\windows\system32\msnavc32.exe" [ ]
"aozi2m6y"="C:\Program Files\aozi2m6y\aozi2m6y.exe" [ ]
"alkpkb"="C:\WINDOWS\alkpkb.exe" [ ]
"4FnO3qh"="vbssd.exe" []

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"AVG7_Run"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe" [2007-10-26 09:52 219136]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
[2007-07-27 15:00 68856]

C:\Documents and Settings\Ron\Start Menu\Programs\Startup\
LimeWire On Startup.lnk - C:\Program Files\LimeWire\LimeWire.exe [2007-09-17
07:19:14 147456]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat
7.0\Reader\reader_sl.exe [2005-09-23 22:05:26 29696]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableTaskMgr"= 0 (0x0)
"disableregistrytools"= 1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\r
un]
"pruttct"= C:\WINDOWS\System32\pruttct.exe
"igashbit.exe"= C:\WINDOWS\system\igashbit.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObject
DelayLoad]
"WebProxy"= {66186F05-BBBB-4a39-864F-72D84615C679} - sockins32.dll [ ]

[HKEY_LOCAL_MACHINE\software\microsoft\windows
nt\currentversion\winlogon\notify\qommklk]
qommklk.dll

R0 PrtSeqRd;PrtSeqRd;C:\WINDOWS\System32\drivers\PrtSeqRd.sys [2001-01-11 03:00]
S1 cdudf;cdudf;C:\WINDOWS\System32\drivers\cdudf.sys [2001-01-11 06:00]
S4 .NET Connection Service;.NET Framework Service;C:\WINDOWS\svchost.exe []


[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed
components\{66186F05-BBBB-4a39-864F-72D84615C679}]
rundll32 sockins32.dll,InitModule
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2008-05-14 23:06:56
Windows 5.1.2600  NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-05-14 23:14:49
ComboFix-quarantined-files.txt  2008-05-15 06:14:41
ComboFix2.txt  2008-05-15 03:24:15

Pre-Run: 17,747,419,136 bytes free
Post-Run: 17,715,716,096 bytes free

WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional"
/fastdetect
C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons

182
Logged

 
lordelix
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 18


Bookmark and Share

View Profile
« Reply #6 on: May 15, 2008, 06:34:49 AM »

Logfile of HijackThis v1.99.1
Scan saved at 11:17:42 PM, on 5/14/2008
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\Common Files\AOL\1107234749\EE\aolsoftware.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
c:\program files\common files\aol\1107234749\ee\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe
c:\program files\common files\aol\1107234749\ee\aolsoftware.exe
C:\WINDOWS\System32\wuauclt.exe
c:\program files\common files\aol\1107234749\ee\anotify.exe
C:\WINDOWS\explorer.exe
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = file://c:/windows/homepage.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = file://c:/windows/homepage.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = file://c:/windows/homepage.html
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: BndShell3 BHO Class - {8ABA9A9C-8791-4d61-8D5B-BCC9448EA573} - C:\Program Files\ISM\BndDrive7.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O2 - BHO: Microsoft copyright - {FFFFFFFF-BBBB-4146-86FD-A722E8AB3489} - sockins32.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [AdaptecDirectCD] "C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1107234749\EE\AOLHostManager.exe
O4 - HKLM\..\Run: [AOLAspSunset2] C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe
O4 - HKLM\..\Run: [ctfmona] C:\WINDOWS\System32\ctfmona.exe
O4 - HKLM\..\Run: [pwivuc] C:\WINDOWS\System32\pwivuc.exe
O4 - HKLM\..\Run: [mdnwtc] C:\WINDOWS\System32\mdnwtc.exe
O4 - HKLM\..\Run: [App32dll] C:\windows\system32\msnavc32.exe lee0105
O4 - HKLM\..\Run: [aozi2m6y] C:\Program Files\aozi2m6y\aozi2m6y.exe
O4 - HKLM\..\Run: [alkpkb] C:\WINDOWS\alkpkb.exe
O4 - HKLM\..\Run: [4FnO3qh] vbssd.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\America Online 9.0c\AOL.EXE" -b
O4 - HKCU\..\Run: [pruttct] C:\WINDOWS\System32\pruttct.exe
O4 - HKCU\..\Run: [Lo4ERkNth] tsaazel.exe
O4 - HKCU\..\Run: [QdrPack16] "C:\Program Files\QdrPack\QdrPack16.exe"
O4 - HKCU\..\Run: [Systray] rundll32.exe sockins32.dll,RunMain
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - C:\Program Files\IrfanView\Ebay\Ebay.htm
O15 - Trusted Zone: http://www.neededware.com
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://photos.walmart.com/WalmartActivia.cab
O16 - DPF: {50BD5CDA-4BA8-4048-8FAA-763F222E41D8} - ms-its:mhtml:file://c:\\nores.mht!http://adxrnet.net/code/chm/xpre.chm::/xpreload.ocx
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1123787558355
O20 - Winlogon Notify: qommklk - qommklk.dll (file missing)
O21 - SSODL: WebProxy - {66186F05-BBBB-4a39-864F-72D84615C679} - sockins32.dll (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Logged

 
Pancake
Global Moderator
Hero Member
*****

Karma: +78/-0
Offline Offline

Gender: Male
Posts: 3915


Bookmark and Share

View Profile
« Reply #7 on: May 15, 2008, 06:45:25 AM »

Have "Hijack This" fix all the following items in the list below by placing a check in the appropriate boxes.Confirm that you have only the listed ones checked, then press <Fix checked> and Close HJT.


R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = file://c:/windows/homepage.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = file://c:/windows/homepage.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = file://c:/windows/homepage.html
O2 - BHO: BndShell3 BHO Class - {8ABA9A9C-8791-4d61-8D5B-BCC9448EA573} - C:\Program Files\ISM\BndDrive7.dll (file missing)
O2 - BHO: Microsoft copyright - {FFFFFFFF-BBBB-4146-86FD-A722E8AB3489} - sockins32.dll (file missing)
O4 - HKLM\..\Run: [ctfmona] C:\WINDOWS\System32\ctfmona.exe
O4 - HKLM\..\Run: [pwivuc] C:\WINDOWS\System32\pwivuc.exe
O4 - HKLM\..\Run: [mdnwtc] C:\WINDOWS\System32\mdnwtc.exe
O4 - HKLM\..\Run: [App32dll] C:\windows\system32\msnavc32.exe lee0105
O4 - HKLM\..\Run: [aozi2m6y] C:\Program Files\aozi2m6y\aozi2m6y.exe
O4 - HKLM\..\Run: [alkpkb] C:\WINDOWS\alkpkb.exe
O4 - HKLM\..\Run: [4FnO3qh] vbssd.exe
O4 - HKCU\..\Run: [pruttct] C:\WINDOWS\System32\pruttct.exe
O4 - HKCU\..\Run: [Lo4ERkNth] tsaazel.exe
O4 - HKCU\..\Run: [QdrPack16] "C:\Program Files\QdrPack\QdrPack16.exe"
O4 - HKCU\..\Run: [Systray] rundll32.exe sockins32.dll,RunMain
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O15 - Trusted Zone: http://www.neededware.com
O20 - Winlogon Notify: qommklk - qommklk.dll (file missing)
O21 - SSODL: WebProxy - {66186F05-BBBB-4a39-864F-72D84615C679} - sockins32.dll (file missing)

Reboot.....................

===================================


Please copy this page to *Notepad* and save to your desktop for reference as you will not have any browsers open while you are carrying out portions of these instructions.

It's IMPORTANT to carry out the instructions in the sequence listed below.
1. Close any open browsers.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Open *notepad* and copy/paste the text in the quotebox below into it:

Quote

Killall::

Driver:


File::
C:\WINDOWS\promogif3.gif
C:\WINDOWS\promogif1.gif
C:\WINDOWS\promogif2.gif
C:\WINDOWS\homepage.html
C:\WINDOWS\promo6.html
C:\WINDOWS\promo4.html
C:\WINDOWS\promo5.html
C:\WINDOWS\promo3.html
C:\WINDOWS\promo2.html
C:\WINDOWS\promo1.html
C:\WINDOWS\system32\blackster.scr
C:\WINDOWS\system32\ctfmonb.bmp
C:\WINDOWS\system32\sockins32.dll
C:\WINDOWS\index.html
C:\ews7lq.exe

Folder::
C:\WINDOWS\Internet Logs
C:\Program Files\ISM

Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8ABA9A9C-8791-4d61-8D5B-BCC9448EA573}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FFFFFFFF-BBBB-4146-86FD-A722E8AB3489}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"pruttct"=-
"Lo4ERkNth"=-
"QdrPack16"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmona"=-
"pwivuc"=-
"mdnwtc"=-
"App32dll"=-
"aozi2m6y"=-
"alkpkb"=-
"4FnO3qh"=-
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\run]
"pruttct"=-
"igashbit.exe"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\qommklk]




 

Save this as CFScript.txt, in the same location as ComboFix.exe which is on the Desktop.




Refering to the picture above, drag CFScript.txt into ComboFix.exe


When finished, it shall produce a log for you at C:\ComboFix.txt

Please copy and paste the ComboFix.txt along with a fresh HijackThis log in your next reply  please.


*Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall.Altering this script in any way could damage your computer*


Logged

An Australian Member of

EDDY
lordelix
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 18


Bookmark and Share

View Profile
« Reply #8 on: May 16, 2008, 03:01:39 AM »

file part 1 :

ComboFix 08-05-12.1 - Ron 2008-05-15 18:57:25.4 - NTFSx86
Microsoft Windows XP Professional  5.1.2600.0.1252.1.1033.18.100 [GMT -7:00]
Running from: C:\Documents and Settings\Ron\My Documents\ComboFix.exe
Command switches used :: C:\Documents and Settings\Ron\My Documents\CFScript.txt
 * Created a new restore point
FILE ::
C:\ews7lq.exe
C:\WINDOWS\homepage.html
C:\WINDOWS\index.html
C:\WINDOWS\promo1.html
C:\WINDOWS\promo2.html
C:\WINDOWS\promo3.html
C:\WINDOWS\promo4.html
C:\WINDOWS\promo5.html
C:\WINDOWS\promo6.html
C:\WINDOWS\promogif1.gif
C:\WINDOWS\promogif2.gif
C:\WINDOWS\promogif3.gif
C:\WINDOWS\system32\blackster.scr
C:\WINDOWS\system32\ctfmonb.bmp
C:\WINDOWS\system32\sockins32.dll
.

(((((((((((((((((((((((((((((((((((((((   Other Deletions  
)))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\Internet Logs\BACKUP.RDB
C:\WINDOWS\Internet Logs\IAMDB.RDB
C:\WINDOWS\Internet Logs\RAVIN-1.ldb
C:\WINDOWS\Internet Logs\xDB3.tmp
C:\WINDOWS\Internet Logs\xDB4.tmp
C:\WINDOWS\Internet Logs . . . . failed to delete
C:\WINDOWS\Internet Logs\fwdbglog.txt . . . . failed to delete
C:\WINDOWS\Internet Logs\fwpktlog.txt . . . . failed to delete
C:\WINDOWS\Internet Logs\IAMDB.RDB . . . . failed to delete
C:\WINDOWS\Internet Logs\RAVIN-1.ldb . . . . failed to delete
C:\WINDOWS\Internet Logs\tvDebug.log . . . . failed to delete
.
---- Previous Run -------
.
C:\WINDOWS\homepage.html
C:\WINDOWS\index.html
C:\WINDOWS\Internet Logs\BACKUP.RDB
C:\WINDOWS\Internet Logs\IAMDB.RDB
C:\WINDOWS\Internet Logs\RAVIN-1.ldb
C:\WINDOWS\Internet Logs\safePrograms.xml
C:\WINDOWS\Internet Logs\tvDebug.log
C:\WINDOWS\Internet Logs\tvDebug.zip
C:\WINDOWS\Internet Logs\xDB10.tmp
C:\WINDOWS\Internet Logs\xDB100.tmp
C:\WINDOWS\Internet Logs\xDB101.tmp
C:\WINDOWS\Internet Logs\xDB102.tmp
C:\WINDOWS\Internet Logs\xDB103.tmp
C:\WINDOWS\Internet Logs\xDB104.tmp
C:\WINDOWS\Internet Logs\xDB105.tmp
C:\WINDOWS\Internet Logs\xDB106.tmp
C:\WINDOWS\Internet Logs\xDB107.tmp
C:\WINDOWS\Internet Logs\xDB108.tmp
C:\WINDOWS\Internet Logs\xDB109.tmp
C:\WINDOWS\Internet Logs\xDB10A.tmp
C:\WINDOWS\Internet Logs\xDB10B.tmp
C:\WINDOWS\Internet Logs\xDB10C.tmp
C:\WINDOWS\Internet Logs\xDB10D.tmp
C:\WINDOWS\Internet Logs\xDB10E.tmp
C:\WINDOWS\Internet Logs\xDB10F.tmp
C:\WINDOWS\Internet Logs\xDB11.tmp
C:\WINDOWS\Internet Logs\xDB110.tmp
C:\WINDOWS\Internet Logs\xDB111.tmp
C:\WINDOWS\Internet Logs\xDB112.tmp
C:\WINDOWS\Internet Logs\xDB113.tmp
C:\WINDOWS\Internet Logs\xDB114.tmp
C:\WINDOWS\Internet Logs\xDB115.tmp
C:\WINDOWS\Internet Logs\xDB116.tmp
C:\WINDOWS\Internet Logs\xDB117.tmp
C:\WINDOWS\Internet Logs\xDB118.tmp
C:\WINDOWS\Internet Logs\xDB119.tmp
C:\WINDOWS\Internet Logs\xDB11A.tmp
C:\WINDOWS\Internet Logs\xDB11B.tmp
C:\WINDOWS\Internet Logs\xDB11C.tmp
C:\WINDOWS\Internet Logs\xDB11D.tmp
C:\WINDOWS\Internet Logs\xDB11E.tmp
C:\WINDOWS\Internet Logs\xDB11F.tmp
C:\WINDOWS\Internet Logs\xDB12.tmp
C:\WINDOWS\Internet Logs\xDB120.tmp
C:\WINDOWS\Internet Logs\xDB121.tmp
C:\WINDOWS\Internet Logs\xDB122.tmp
C:\WINDOWS\Internet Logs\xDB123.tmp
C:\WINDOWS\Internet Logs\xDB124.tmp
C:\WINDOWS\Internet Logs\xDB125.tmp
C:\WINDOWS\Internet Logs\xDB126.tmp
C:\WINDOWS\Internet Logs\xDB127.tmp
C:\WINDOWS\Internet Logs\xDB128.tmp
C:\WINDOWS\Internet Logs\xDB129.tmp
C:\WINDOWS\Internet Logs\xDB12A.tmp
C:\WINDOWS\Internet Logs\xDB13.tmp
C:\WINDOWS\Internet Logs\xDB14.tmp
C:\WINDOWS\Internet Logs\xDB15.tmp
C:\WINDOWS\Internet Logs\xDB16.tmp
C:\WINDOWS\Internet Logs\xDB17.tmp
C:\WINDOWS\Internet Logs\xDB18.tmp
C:\WINDOWS\Internet Logs\xDB19.tmp
C:\WINDOWS\Internet Logs\xDB1A.tmp
C:\WINDOWS\Internet Logs\xDB1B.tmp
C:\WINDOWS\Internet Logs\xDB1C.tmp
C:\WINDOWS\Internet Logs\xDB1D.tmp
C:\WINDOWS\Internet Logs\xDB1E.tmp
C:\WINDOWS\Internet Logs\xDB1F.tmp
C:\WINDOWS\Internet Logs\xDB2.tmp
C:\WINDOWS\Internet Logs\xDB20.tmp
C:\WINDOWS\Internet Logs\xDB21.tmp
C:\WINDOWS\Internet Logs\xDB22.tmp
C:\WINDOWS\Internet Logs\xDB23.tmp
C:\WINDOWS\Internet Logs\xDB24.tmp
C:\WINDOWS\Internet Logs\xDB25.tmp
C:\WINDOWS\Internet Logs\xDB26.tmp
C:\WINDOWS\Internet Logs\xDB27.tmp
C:\WINDOWS\Internet Logs\xDB28.tmp
C:\WINDOWS\Internet Logs\xDB29.tmp
C:\WINDOWS\Internet Logs\xDB2A.tmp
C:\WINDOWS\Internet Logs\xDB2B.tmp
C:\WINDOWS\Internet Logs\xDB2C.tmp
C:\WINDOWS\Internet Logs\xDB2D.tmp
C:\WINDOWS\Internet Logs\xDB2E.tmp
C:\WINDOWS\Internet Logs\xDB2F.tmp
C:\WINDOWS\Internet Logs\xDB3.tmp
C:\WINDOWS\Internet Logs\xDB30.tmp
C:\WINDOWS\Internet Logs\xDB31.tmp
C:\WINDOWS\Internet Logs\xDB32.tmp
C:\WINDOWS\Internet Logs\xDB33.tmp
C:\WINDOWS\Internet Logs\xDB34.tmp
C:\WINDOWS\Internet Logs\xDB35.tmp
C:\WINDOWS\Internet Logs\xDB36.tmp
C:\WINDOWS\Internet Logs\xDB37.tmp
C:\WINDOWS\Internet Logs\xDB38.tmp
C:\WINDOWS\Internet Logs\xDB39.tmp
C:\WINDOWS\Internet Logs\xDB3A.tmp
C:\WINDOWS\Internet Logs\xDB3B.tmp
C:\WINDOWS\Internet Logs\xDB3C.tmp
C:\WINDOWS\Internet Logs\xDB3D.tmp
C:\WINDOWS\Internet Logs\xDB3E.tmp
C:\WINDOWS\Internet Logs\xDB3F.tmp
C:\WINDOWS\Internet Logs\xDB4.tmp
C:\WINDOWS\Internet Logs\xDB40.tmp
C:\WINDOWS\Internet Logs\xDB41.tmp
C:\WINDOWS\Internet Logs\xDB42.tmp
C:\WINDOWS\Internet Logs\xDB43.tmp
C:\WINDOWS\Internet Logs\xDB44.tmp
C:\WINDOWS\Internet Logs\xDB45.tmp
C:\WINDOWS\Internet Logs\xDB46.tmp
C:\WINDOWS\Internet Logs\xDB47.tmp
C:\WINDOWS\Internet Logs\xDB48.tmp
C:\WINDOWS\Internet Logs\xDB49.tmp
C:\WINDOWS\Internet Logs\xDB4A.tmp
C:\WINDOWS\Internet Logs\xDB4B.tmp
C:\WINDOWS\Internet Logs\xDB4C.tmp
C:\WINDOWS\Internet Logs\xDB4D.tmp
C:\WINDOWS\Internet Logs\xDB4E.tmp
C:\WINDOWS\Internet Logs\xDB4F.tmp
C:\WINDOWS\Internet Logs\xDB5.tmp
C:\WINDOWS\Internet Logs\xDB50.tmp
C:\WINDOWS\Internet Logs\xDB51.tmp
C:\WINDOWS\Internet Logs\xDB52.tmp
C:\WINDOWS\Internet Logs\xDB53.tmp
C:\WINDOWS\Internet Logs\xDB54.tmp
C:\WINDOWS\Internet Logs\xDB55.tmp
C:\WINDOWS\Internet Logs\xDB56.tmp
C:\WINDOWS\Internet Logs\xDB57.tmp
C:\WINDOWS\Internet Logs\xDB58.tmp
C:\WINDOWS\Internet Logs\xDB59.tmp
C:\WINDOWS\Internet Logs\xDB5A.tmp
C:\WINDOWS\Internet Logs\xDB5B.tmp
C:\WINDOWS\Internet Logs\xDB5C.tmp
C:\WINDOWS\Internet Logs\xDB5D.tmp
C:\WINDOWS\Internet Logs\xDB5E.tmp
C:\WINDOWS\Internet Logs\xDB5F.tmp
C:\WINDOWS\Internet Logs\xDB6.tmp
C:\WINDOWS\Internet Logs\xDB60.tmp
C:\WINDOWS\Internet Logs\xDB61.tmp
C:\WINDOWS\Internet Logs\xDB62.tmp
C:\WINDOWS\Internet Logs\xDB63.tmp
C:\WINDOWS\Internet Logs\xDB64.tmp
C:\WINDOWS\Internet Logs\xDB65.tmp
C:\WINDOWS\Internet Logs\xDB66.tmp
C:\WINDOWS\Internet Logs\xDB67.tmp
C:\WINDOWS\Internet Logs\xDB68.tmp
C:\WINDOWS\Internet Logs\xDB69.tmp
C:\WINDOWS\Internet Logs\xDB6A.tmp
C:\WINDOWS\Internet Logs\xDB6B.tmp
C:\WINDOWS\Internet Logs\xDB6C.tmp
C:\WINDOWS\Internet Logs\xDB6D.tmp
C:\WINDOWS\Internet Logs\xDB6E.tmp
C:\WINDOWS\Internet Logs\xDB6F.tmp
C:\WINDOWS\Internet Logs\xDB7.tmp
C:\WINDOWS\Internet Logs\xDB70.tmp
C:\WINDOWS\Internet Logs\xDB71.tmp
C:\WINDOWS\Internet Logs\xDB72.tmp
C:\WINDOWS\Internet Logs\xDB73.tmp
C:\WINDOWS\Internet Logs\xDB74.tmp
C:\WINDOWS\Internet Logs\xDB75.tmp
C:\WINDOWS\Internet Logs\xDB76.tmp
C:\WINDOWS\Internet Logs\xDB77.tmp
C:\WINDOWS\Internet Logs\xDB78.tmp
C:\WINDOWS\Internet Logs\xDB79.tmp
C:\WINDOWS\Internet Logs\xDB7A.tmp
C:\WINDOWS\Internet Logs\xDB7B.tmp
C:\WINDOWS\Internet Logs\xDB7C.tmp
C:\WINDOWS\Internet Logs\xDB7D.tmp
C:\WINDOWS\Internet Logs\xDB7E.tmp
C:\WINDOWS\Internet Logs\xDB7F.tmp
C:\WINDOWS\Internet Logs\xDB8.tmp
C:\WINDOWS\Internet Logs\xDB80.tmp
C:\WINDOWS\Internet Logs\xDB81.tmp
C:\WINDOWS\Internet Logs\xDB82.tmp
C:\WINDOWS\Internet Logs\xDB83.tmp
C:\WINDOWS\Internet Logs\xDB84.tmp
C:\WINDOWS\Internet Logs\xDB85.tmp
C:\WINDOWS\Internet Logs\xDB86.tmp
C:\WINDOWS\Internet Logs\xDB87.tmp
C:\WINDOWS\Internet Logs\xDB88.tmp
C:\WINDOWS\Internet Logs\xDB89.tmp
C:\WINDOWS\Internet Logs\xDB8A.tmp
C:\WINDOWS\Internet Logs\xDB8B.tmp
C:\WINDOWS\Internet Logs\xDB8C.tmp
C:\WINDOWS\Internet Logs\xDB8D.tmp
C:\WINDOWS\Internet Logs\xDB8E.tmp
C:\WINDOWS\Internet Logs\xDB8F.tmp
C:\WINDOWS\Internet Logs\xDB9.tmp
C:\WINDOWS\Internet Logs\xDB90.tmp
C:\WINDOWS\Internet Logs\xDB91.tmp
C:\WINDOWS\Internet Logs\xDB92.tmp
C:\WINDOWS\Internet Logs\xDB93.tmp
C:\WINDOWS\Internet Logs\xDB94.tmp
C:\WINDOWS\Internet Logs\xDB95.tmp
C:\WINDOWS\Internet Logs\xDB96.tmp
C:\WINDOWS\Internet Logs\xDB97.tmp
C:\WINDOWS\Internet Logs\xDB98.tmp
C:\WINDOWS\Internet Logs\xDB99.tmp
C:\WINDOWS\Internet Logs\xDB9A.tmp
C:\WINDOWS\Internet Logs\xDB9B.tmp
C:\WINDOWS\Internet Logs\xDB9C.tmp
C:\WINDOWS\Internet Logs\xDB9D.tmp
C:\WINDOWS\Internet Logs\xDB9E.tmp
C:\WINDOWS\Internet Logs\xDB9F.tmp
C:\WINDOWS\Internet Logs\xDBA.tmp
C:\WINDOWS\Internet Logs\xDBA0.tmp
C:\WINDOWS\Internet Logs\xDBA1.tmp
C:\WINDOWS\Internet Logs\xDBA2.tmp
C:\WINDOWS\Internet Logs\xDBA3.tmp
C:\WINDOWS\Internet Logs\xDBA4.tmp
C:\WINDOWS\Internet Logs\xDBA5.tmp
C:\WINDOWS\Internet Logs\xDBA6.tmp
C:\WINDOWS\Internet Logs\xDBA7.tmp
C:\WINDOWS\Internet Logs\xDBA8.tmp
C:\WINDOWS\Internet Logs\xDBA9.tmp
C:\WINDOWS\Internet Logs\xDBAA.tmp
C:\WINDOWS\Internet Logs\xDBAB.tmp
C:\WINDOWS\Internet Logs\xDBAC.tmp
C:\WINDOWS\Internet Logs\xDBAD.tmp
C:\WINDOWS\Internet Logs\xDBAE.tmp
C:\WINDOWS\Internet Logs\xDBAF.tmp
C:\WINDOWS\Internet Logs\xDBB.tmp
C:\WINDOWS\Internet Logs\xDBB0.tmp
C:\WINDOWS\Internet Logs\xDBB1.tmp
C:\WINDOWS\Internet Logs\xDBB2.tmp
C:\WINDOWS\Internet Logs\xDBB3.tmp
C:\WINDOWS\Internet Logs\xDBB4.tmp
C:\WINDOWS\Internet Logs\xDBB5.tmp
C:\WINDOWS\Internet Logs\xDBB6.tmp
C:\WINDOWS\Internet Logs\xDBB7.tmp
C:\WINDOWS\Internet Logs\xDBB8.tmp
C:\WINDOWS\Internet Logs\xDBB9.tmp
C:\WINDOWS\Internet Logs\xDBBA.tmp
C:\WINDOWS\Internet Logs\xDBBB.tmp
C:\WINDOWS\Internet Logs\xDBBC.tmp
C:\WINDOWS\Internet Logs\xDBBD.tmp
C:\WINDOWS\Internet Logs\xDBBE.tmp
C:\WINDOWS\Internet Logs\xDBBF.tmp
C:\WINDOWS\Internet Logs\xDBC.tmp
C:\WINDOWS\Internet Logs\xDBC0.tmp
C:\WINDOWS\Internet Logs\xDBC1.tmp
C:\WINDOWS\Internet Logs\xDBC2.tmp
C:\WINDOWS\Internet Logs\xDBC3.tmp
C:\WINDOWS\Internet Logs\xDBC4.tmp
C:\WINDOWS\Internet Logs\xDBC5.tmp
C:\WINDOWS\Internet Logs\xDBC6.tmp
C:\WINDOWS\Internet Logs\xDBC7.tmp
C:\WINDOWS\Internet Logs\xDBC8.tmp
C:\WINDOWS\Internet Logs\xDBC9.tmp
C:\WINDOWS\Internet Logs\xDBCA.tmp
C:\WINDOWS\Internet Logs\xDBCB.tmp
C:\WINDOWS\Internet Logs\xDBCC.tmp
C:\WINDOWS\Internet Logs\xDBCD.tmp
C:\WINDOWS\Internet Logs\xDBCE.tmp
C:\WINDOWS\Internet Logs\xDBCF.tmp
C:\WINDOWS\Internet Logs\xDBD.tmp
C:\WINDOWS\Internet Logs\xDBD0.tmp
C:\WINDOWS\Internet Logs\xDBD1.tmp
C:\WINDOWS\Internet Logs\xDBD2.tmp
C:\WINDOWS\Internet Logs\xDBD3.tmp
C:\WINDOWS\Internet Logs\xDBD4.tmp
C:\WINDOWS\Internet Logs\xDBD5.tmp
C:\WINDOWS\Internet Logs\xDBD6.tmp
C:\WINDOWS\Internet Logs\xDBD7.tmp
C:\WINDOWS\Internet Logs\xDBD8.tmp
C:\WINDOWS\Internet Logs\xDBD9.tmp
C:\WINDOWS\Internet Logs\xDBDA.tmp
C:\WINDOWS\Internet Logs\xDBDB.tmp
C:\WINDOWS\Internet Logs\xDBDC.tmp
C:\WINDOWS\Internet Logs\xDBDD.tmp
C:\WINDOWS\Internet Logs\xDBDE.tmp
C:\WINDOWS\Internet Logs\xDBDF.tmp
C:\WINDOWS\Internet Logs\xDBE.tmp
C:\WINDOWS\Internet Logs\xDBE0.tmp
C:\WINDOWS\Internet Logs\xDBE1.tmp
C:\WINDOWS\Internet Logs\xDBE2.tmp
C:\WINDOWS\Internet Logs\xDBE3.tmp
C:\WINDOWS\Internet Logs\xDBE4.tmp
C:\WINDOWS\Internet Logs\xDBE5.tmp
C:\WINDOWS\Internet Logs\xDBE6.tmp
C:\WINDOWS\Internet Logs\xDBE7.tmp
C:\WINDOWS\Internet Logs\xDBE8.tmp
C:\WINDOWS\Internet Logs\xDBE9.tmp
C:\WINDOWS\Internet Logs\xDBEA.tmp
C:\WINDOWS\Internet Logs\xDBEB.tmp
C:\WINDOWS\Internet Logs\xDBEC.tmp
C:\WINDOWS\Internet Logs\xDBED.tmp
C:\WINDOWS\Internet Logs\xDBEE.tmp
C:\WINDOWS\Internet Logs\xDBEF.tmp
C:\WINDOWS\Internet Logs\xDBF.tmp
C:\WINDOWS\Internet Logs\xDBF0.tmp
C:\WINDOWS\Internet Logs\xDBF1.tmp
C:\WINDOWS\Internet Logs\xDBF2.tmp
C:\WINDOWS\Internet Logs\xDBF3.tmp
C:\WINDOWS\Internet Logs\xDBF4.tmp
C:\WINDOWS\Internet Logs\xDBF5.tmp
C:\WINDOWS\Internet Logs\xDBF6.tmp
C:\WINDOWS\Internet Logs\xDBF7.tmp
C:\WINDOWS\Internet Logs\xDBF8.tmp
C:\WINDOWS\Internet Logs\xDBF9.tmp
C:\WINDOWS\Internet Logs\xDBFA.tmp
C:\WINDOWS\Internet Logs\xDBFB.tmp
C:\WINDOWS\Internet Logs\xDBFC.tmp
C:\WINDOWS\Internet Logs\xDBFD.tmp
C:\WINDOWS\Internet Logs\xDBFE.tmp
C:\WINDOWS\Internet Logs\xDBFF.tmp



Logged

 
lordelix
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 18


Bookmark and Share

View Profile
« Reply #9 on: May 16, 2008, 03:04:25 AM »

file part 2 ......


C:\WINDOWS\Internet Logs\ZALog.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.07.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.08.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.09.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.10.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.11.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.12.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.13.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.14.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.15.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.16.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.17.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.18.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.19.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.20.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.21.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.22.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.23.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.24.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.25.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.27.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.28.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.29.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.30.txt
C:\WINDOWS\Internet Logs\ZALog2005.03.31.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.01.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.02.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.03.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.06.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.07.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.08.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.09.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.10.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.11.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.12.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.13.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.14.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.15.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.16.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.17.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.18.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.19.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.20.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.21.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.22.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.23.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.24.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.25.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.27.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.28.txt
C:\WINDOWS\Internet Logs\ZALog2005.04.30.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.02.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.03.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.06.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.07.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.08.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.09.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.10.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.11.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.12.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.13.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.15.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.16.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.17.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.18.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.19.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.20.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.21.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.22.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.23.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.24.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.25.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.26.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.28.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.29.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.30.txt
C:\WINDOWS\Internet Logs\ZALog2005.05.31.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.01.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.03.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.05.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.06.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.08.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.09.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.10.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.11.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.12.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.13.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.15.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.16.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.17.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.18.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.20.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.21.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.22.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.23.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.24.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.25.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.26.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.27.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.29.txt
C:\WINDOWS\Internet Logs\ZALog2005.06.30.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.02.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.05.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.07.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.09.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.10.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.11.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.12.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.13.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.14.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.15.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.16.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.18.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.19.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.20.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.21.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.22.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.24.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.25.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.26.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.27.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.28.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.29.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.30.txt
C:\WINDOWS\Internet Logs\ZALog2005.07.31.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.01.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.02.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.03.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.04.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.05.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.06.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.07.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.08.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.09.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.10.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.11.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.12.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.13.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.14.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.15.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.16.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.17.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.18.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.21.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.22.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.23.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.24.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.25.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.26.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.27.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.28.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.29.txt
C:\WINDOWS\Internet Logs\ZALog2005.08.31.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.03.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.04.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.05.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.06.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.08.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.09.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.10.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.11.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.12.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.13.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.14.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.15.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.16.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.17.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.18.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.20.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.21.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.22.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.23.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.24.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.25.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.26.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.27.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.28.txt
C:\WINDOWS\Internet Logs\ZALog2005.09.29.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.01.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.02.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.03.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.04.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.05.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.06.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.07.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.08.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.09.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.10.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.11.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.12.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.13.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.14.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.15.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.16.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.17.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.19.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.20.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.24.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.25.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.26.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.27.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.29.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.30.txt
C:\WINDOWS\Internet Logs\ZALog2005.10.31.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.01.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.02.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.03.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.06.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.08.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.12.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.15.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.16.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.18.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.19.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.22.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.23.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.28.txt
C:\WINDOWS\Internet Logs\ZALog2005.11.30.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.03.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.05.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.08.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.10.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.12.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.13.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.14.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.17.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.18.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.19.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.20.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.21.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.22.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.27.txt
C:\WINDOWS\Internet Logs\ZALog2005.12.29.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.01.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.02.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.04.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.05.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.06.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.09.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.10.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.12.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.13.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.16.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.17.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.19.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.21.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.23.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.26.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.27.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.30.txt
C:\WINDOWS\Internet Logs\ZALog2006.01.31.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.01.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.03.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.04.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.06.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.07.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.08.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.09.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.10.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.11.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.12.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.13.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.15.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.16.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.17.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.19.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.21.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.22.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.23.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.26.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.27.txt
C:\WINDOWS\Internet Logs\ZALog2006.02.28.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.01.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.02.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.03.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.04.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.05.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.06.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.07.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.09.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.10.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.11.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.13.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.16.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.17.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.19.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.21.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.22.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.23.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.25.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.27.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.28.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.29.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.30.txt
C:\WINDOWS\Internet Logs\ZALog2006.03.31.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.01.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.02.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.03.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.04.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.05.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.06.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.07.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.08.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.09.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.10.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.11.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.12.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.17.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.18.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.19.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.21.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.22.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.25.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.26.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.27.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.28.txt
C:\WINDOWS\Internet Logs\ZALog2006.04.30.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.02.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.03.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.04.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.05.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.07.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.08.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.09.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.10.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.12.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.13.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.15.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.16.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.17.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.18.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.19.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.21.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.22.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.25.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.26.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.27.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.28.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.29.txt
C:\WINDOWS\Internet Logs\ZALog2006.05.30.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.01.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.02.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.05.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.06.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.08.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.10.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.11.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.12.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.13.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.15.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.16.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.17.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.18.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.19.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.21.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.22.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.23.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.25.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.26.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.27.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.28.txt
C:\WINDOWS\Internet Logs\ZALog2006.06.30.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.02.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.03.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.05.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.09.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.10.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.11.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.12.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.13.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.15.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.16.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.17.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.18.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.19.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.21.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.22.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.23.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.25.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.26.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.27.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.28.txt


Logged

 
lordelix
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 18


Bookmark and Share

View Profile
« Reply #10 on: May 16, 2008, 03:05:37 AM »

wow this is nuts  lol   part 3.........

C:\WINDOWS\Internet Logs\ZALog2006.07.30.txt
C:\WINDOWS\Internet Logs\ZALog2006.07.31.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.01.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.03.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.04.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.05.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.06.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.08.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.09.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.10.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.11.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.15.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.16.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.17.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.21.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.22.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.23.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.25.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.26.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.27.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.28.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.29.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.30.txt
C:\WINDOWS\Internet Logs\ZALog2006.08.31.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.01.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.02.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.03.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.04.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.06.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.07.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.08.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.11.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.12.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.13.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.15.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.16.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.17.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.18.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.19.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.21.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.22.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.23.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.25.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.26.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.27.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.28.txt
C:\WINDOWS\Internet Logs\ZALog2006.09.29.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.01.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.02.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.03.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.04.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.05.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.06.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.07.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.08.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.09.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.10.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.11.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.12.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.13.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.15.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.16.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.18.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.19.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.21.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.22.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.23.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.25.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.26.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.27.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.28.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.29.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.30.txt
C:\WINDOWS\Internet Logs\ZALog2006.10.31.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.01.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.02.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.03.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.04.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.05.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.06.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.07.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.08.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.09.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.10.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.11.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.12.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.13.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.15.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.16.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.17.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.18.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.19.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.22.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.25.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.26.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.28.txt
C:\WINDOWS\Internet Logs\ZALog2006.11.29.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.01.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.02.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.03.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.04.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.05.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.06.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.07.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.08.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.10.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.11.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.13.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.14.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.15.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.16.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.18.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.19.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.20.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.21.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.22.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.23.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.24.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.26.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.27.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.28.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.30.txt
C:\WINDOWS\Internet Logs\ZALog2006.12.31.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.01.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.02.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.03.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.05.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.06.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.07.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.08.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.09.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.14.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.15.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.17.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.18.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.19.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.20.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.22.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.23.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.24.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.25.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.27.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.29.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.30.txt
C:\WINDOWS\Internet Logs\ZALog2007.01.31.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.01.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.02.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.04.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.05.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.06.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.07.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.08.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.09.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.11.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.13.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.15.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.16.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.19.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.20.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.21.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.22.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.25.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.26.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.27.txt
C:\WINDOWS\Internet Logs\ZALog2007.02.28.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.01.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.02.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.03.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.04.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.05.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.06.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.07.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.08.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.09.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.13.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.14.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.15.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.16.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.17.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.19.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.20.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.21.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.22.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.23.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.24.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.25.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.26.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.27.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.28.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.29.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.30.txt
C:\WINDOWS\Internet Logs\ZALog2007.03.31.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.01.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.03.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.04.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.05.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.06.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.07.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.08.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.09.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.11.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.13.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.14.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.15.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.16.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.17.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.18.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.19.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.20.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.21.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.22.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.23.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.24.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.25.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.26.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.27.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.28.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.29.txt
C:\WINDOWS\Internet Logs\ZALog2007.04.30.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.01.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.02.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.03.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.04.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.06.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.07.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.08.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.09.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.11.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.13.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.14.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.15.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.16.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.17.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.18.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.20.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.21.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.22.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.23.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.24.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.25.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.29.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.30.txt
C:\WINDOWS\Internet Logs\ZALog2007.05.31.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.01.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.02.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.03.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.04.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.05.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.06.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.07.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.08.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.11.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.13.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.14.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.15.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.16.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.17.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.19.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.20.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.21.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.23.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.25.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.27.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.29.txt
C:\WINDOWS\Internet Logs\ZALog2007.06.30.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.01.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.02.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.03.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.04.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.05.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.06.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.07.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.08.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.11.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.13.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.14.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.15.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.16.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.18.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.19.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.20.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.21.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.23.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.24.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.25.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.26.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.27.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.29.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.30.txt
C:\WINDOWS\Internet Logs\ZALog2007.07.31.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.02.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.03.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.05.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.06.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.07.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.08.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.09.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.11.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.13.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.14.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.16.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.17.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.19.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.20.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.21.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.22.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.24.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.25.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.26.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.27.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.28.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.30.txt
C:\WINDOWS\Internet Logs\ZALog2007.08.31.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.01.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.02.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.03.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.04.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.05.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.06.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.07.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.09.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.11.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.13.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.14.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.15.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.16.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.17.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.18.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.19.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.20.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.21.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.23.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.24.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.25.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.27.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.28.txt
C:\WINDOWS\Internet Logs\ZALog2007.09.30.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.01.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.03.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.04.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.05.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.08.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.11.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.13.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.15.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.16.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.17.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.18.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.19.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.21.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.22.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.23.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.24.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.26.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.27.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.29.txt
C:\WINDOWS\Internet Logs\ZALog2007.10.30.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.01.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.02.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.03.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.04.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.05.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.06.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.07.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.08.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.09.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.11.txt
Logged

 
lordelix
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 18


Bookmark and Share

View Profile
« Reply #11 on: May 16, 2008, 03:06:03 AM »

part 4........


C:\WINDOWS\Internet Logs\ZALog2007.11.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.13.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.14.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.15.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.16.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.17.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.18.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.19.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.20.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.22.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.23.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.24.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.25.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.26.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.27.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.28.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.29.txt
C:\WINDOWS\Internet Logs\ZALog2007.11.30.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.01.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.03.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.04.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.05.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.06.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.07.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.08.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.09.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.10.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.11.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.12.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.13.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.14.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.15.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.17.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.18.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.19.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.20.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.21.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.22.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.23.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.24.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.25.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.26.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.27.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.28.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.29.txt
C:\WINDOWS\Internet Logs\ZALog2007.12.31.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.01.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.02.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.03.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.04.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.05.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.06.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.08.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.09.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.10.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.11.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.13.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.14.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.15.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.16.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.17.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.19.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.20.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.21.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.22.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.23.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.24.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.25.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.26.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.28.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.29.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.30.txt
C:\WINDOWS\Internet Logs\ZALog2008.01.31.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.01.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.02.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.04.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.05.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.06.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.07.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.09.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.10.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.11.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.12.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.13.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.14.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.15.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.17.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.18.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.19.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.20.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.21.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.22.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.23.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.24.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.25.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.26.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.27.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.28.txt
C:\WINDOWS\Internet Logs\ZALog2008.02.29.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.01.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.02.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.03.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.05.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.06.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.07.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.08.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.09.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.10.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.11.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.12.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.14.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.15.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.16.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.17.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.18.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.19.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.20.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.22.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.23.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.24.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.25.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.26.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.27.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.28.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.29.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.30.txt
C:\WINDOWS\Internet Logs\ZALog2008.03.31.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.01.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.02.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.03.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.04.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.05.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.06.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.07.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.08.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.09.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.10.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.12.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.13.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.14.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.15.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.16.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.17.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.18.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.20.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.21.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.22.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.23.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.24.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.25.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.26.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.27.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.28.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.29.txt
C:\WINDOWS\Internet Logs\ZALog2008.04.30.txt
C:\WINDOWS\Internet Logs\ZALog2008.05.01.txt
C:\WINDOWS\Internet Logs\ZALog2008.05.03.txt
C:\WINDOWS\Internet Logs\ZALog2008.05.04.txt
C:\WINDOWS\Internet Logs\ZALog2008.05.05.txt
C:\WINDOWS\Internet Logs\ZALog2008.05.07.txt
C:\WINDOWS\Internet Logs\ZALog2008.05.08.txt
C:\WINDOWS\Internet Logs\ZALog2008.05.13.txt
C:\WINDOWS\Internet Logs\zlclient_2nd_2007_08_18_13_38_45.dmp.zip
C:\WINDOWS\promo1.html
C:\WINDOWS\promo2.html
C:\WINDOWS\promo3.html
C:\WINDOWS\promo4.html
C:\WINDOWS\promo5.html
C:\WINDOWS\promo6.html
C:\WINDOWS\promogif1.gif
C:\WINDOWS\promogif2.gif
C:\WINDOWS\promogif3.gif
C:\WINDOWS\system32\blackster.scr
C:\WINDOWS\system32\ctfmonb.bmp
C:\WINDOWS\system32\sockins32.dll
C:\WINDOWS\Internet Logs . . . . failed to delete
C:\WINDOWS\Internet Logs\fwdbglog.txt . . . . failed to delete
C:\WINDOWS\Internet Logs\fwpktlog.txt . . . . failed to delete

.
(((((((((((((((((((((((((   Files Created from 2008-04-16 to 2008-05-16 
)))))))))))))))))))))))))))))))
.

No new files created in this timespan

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   
))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-16 02:04   ---------   d-----w   C:\Program Files\Microsoft
AntiSpyware
2008-05-09 19:57   ---------   d-----w   C:\Documents and
Settings\Ron\Application Data\AVG7
2008-05-02 15:00   ---------   d-----w   C:\Documents and
Settings\LocalService\Application Data\AVG7
2004-02-24 02:01   173,496   ----a-w   C:\Program
Files\Disturbed_Profile1_1024.zip
2003-10-07 23:09   36,792   ----a-w   C:\Documents and
Settings\Ron\Application Data\GDIPFONTCACHEV1.DAT
2003-09-12 20:30   716,018   ----a-w   C:\Program Files\acxtractor.exe
.

------- Sigcheck -------

.
(((((((((((((((((((((((((((((   snapshot@2008-05-14_20.23.36.92   
)))))))))))))))))))))))))))))))))))))))))
.
- 2008-05-14 16:04:08   2,048   --s-a-w   C:\WINDOWS\bootstat.dat
+ 2008-05-16 02:02:45   2,048   --s-a-w   C:\WINDOWS\bootstat.dat
- 2008-05-14 16:04:31   16,384   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
+ 2008-05-16 01:43:06   16,384   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
- 2008-05-14 16:04:31   32,768   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Local
Settings\History\History.IE5\index.dat
+ 2008-05-16 01:43:06   32,768   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Local
Settings\History\History.IE5\index.dat
- 2008-05-14 16:04:31   163,840   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet
Files\Content.IE5\index.dat
+ 2008-05-16 01:43:06   163,840   ----a-w   
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet
Files\Content.IE5\index.dat
- 2008-04-06 18:39:40   40,196   ----a-w   C:\WINDOWS\system32\perfc009.dat
+ 2008-05-15 06:54:58   40,196   ----a-w   C:\WINDOWS\system32\perfc009.dat
- 2008-04-06 18:39:40   311,934   ----a-w   C:\WINDOWS\system32\perfh009.dat
+ 2008-05-15 06:54:58   311,934   ----a-w   C:\WINDOWS\system32\perfh009.dat
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   
))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2003-04-14 19:30 1491216]
"Creative Detector"="C:\Program
Files\Creative\MediaSource\Detector\CTDetect.exe" [2004-12-02 18:23 102400]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
[2007-07-27 15:00 68856]
"AOL Fast Start"="C:\Program Files\America Online 9.0c\AOL.exe" [2005-07-12
07:17 50776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AdaptecDirectCD"="C:\Program Files\Adaptec\Easy CD Creator
5\DirectCD\DirectCD.exe" [2001-01-11 06:00 643072]
"gcasServ"="C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" [2005-11-15
13:12 473928]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe" [2008-04-17 09:54 579584]
"AVG7_EMC"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe" [2007-12-20 10:48 406528]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2005-01-31 22:14
98304]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
[2007-09-25 02:11 132496]
"AOLDialer"="C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" [2006-10-23
05:50 71216]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter
Edition\3.0\Apps\apdproxy.exe" [2005-06-06 23:46 57344]
"HostManager"="C:\Program Files\Common
Files\AOL\1107234749\EE\AOLHostManager.exe" [2006-09-25 17:52 14384]
"AOLAspSunset2"="C:\Documents and Settings\All Users\Application
Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe" [
]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"AVG7_Run"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe" [2007-10-26 09:52 219136]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
[2007-07-27 15:00 68856]

C:\Documents and Settings\Ron\Start Menu\Programs\Startup\
LimeWire On Startup.lnk - C:\Program Files\LimeWire\LimeWire.exe [2007-09-17
07:19:14 147456]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat
7.0\Reader\reader_sl.exe [2005-09-23 22:05:26 29696]

R0 PrtSeqRd;PrtSeqRd;C:\WINDOWS\System32\drivers\PrtSeqRd.sys [2001-01-11 03:00]
S1 cdudf;cdudf;C:\WINDOWS\System32\drivers\cdudf.sys [2001-01-11 06:00]
S4 .NET Connection Service;.NET Framework Service;C:\WINDOWS\svchost.exe []


[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed
components\{66186F05-BBBB-4a39-864F-72D84615C679}]
rundll32 sockins32.dll,InitModule
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2008-05-15 19:04:04
Windows 5.1.2600  NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\system32\CTSVCCDA.EXE
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Common Files\AOL\1107234749\EE\aolsoftware.exe
C:\Program Files\America Online 9.0c\waol.exe
C:\Program Files\Common
Files\AOL\1107234749\EE\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe
C:\Program Files\Common Files\AOL\1107234749\EE\aolsoftware.exe
C:\Program Files\America Online 9.0c\shellmon.exe
.
**************************************************************************
.
Completion time: 2008-05-15 19:14:57 - machine was rebooted [Ron]
ComboFix-quarantined-files.txt  2008-05-16 02:14:48
ComboFix2.txt  2008-05-15 06:14:51
ComboFix3.txt  2008-05-15 03:24:15

Pre-Run: 17,610,383,360 bytes free
Post-Run: 17,636,106,240 bytes free
Logged

 
lordelix
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 18


Bookmark and Share

View Profile
« Reply #12 on: May 16, 2008, 03:07:20 AM »

Im gonna make him give you a nice donation after all this  lol !!! 

Logfile of HijackThis v1.99.1
Scan saved at 7:18:35 PM, on 5/15/2008
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\Common Files\AOL\1107234749\EE\aolsoftware.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\America Online 9.0c\waol.exe
c:\program files\common files\aol\1107234749\ee\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe
c:\program files\common files\aol\1107234749\ee\aolsoftware.exe
C:\Program Files\America Online 9.0c\shellmon.exe
C:\WINDOWS\explorer.exe
C:\Program Files\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = file://c:/windows/homepage.html
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [AdaptecDirectCD] "C:\Program Files\Adaptec\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1107234749\EE\AOLHostManager.exe
O4 - HKLM\..\Run: [AOLAspSunset2] C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\America Online 9.0c\AOL.EXE" -b
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - C:\Program Files\IrfanView\Ebay\Ebay.htm
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/yinst/yinst_current.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://photos.walmart.com/WalmartActivia.cab
O16 - DPF: {50BD5CDA-4BA8-4048-8FAA-763F222E41D8} - ms-its:mhtml:file://c:\\nores.mht!http://adxrnet.net/code/chm/xpre.chm::/xpreload.ocx
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1123787558355
O21 - SSODL: WebProxy - {66186F05-BBBB-4a39-864F-72D84615C679} - (no file)
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

Logged

 
Pancake
Global Moderator
Hero Member
*****

Karma: +78/-0
Offline Offline

Gender: Male
Posts: 3915


Bookmark and Share

View Profile
« Reply #13 on: May 16, 2008, 03:28:47 AM »

Ok that all looks ok so you are good to go.We are all done....One very important thing you must do is to install Service Pack 2 so it can update your operating system.This will help prevent getting infected by more malware...


This will clear away any of the files and folders that were created by ComboFix.

Go to :
Start > Run then copy and paste the following highlighted text below  and click OK.

Quote

ComboFix /u



Happy and Safe Surfing!
Logged

An Australian Member of

EDDY
lordelix
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Male
Posts: 18


Bookmark and Share

View Profile
« Reply #14 on: May 16, 2008, 03:41:16 AM »

Thank you guys soooo much ...... you guys and gals do awsome work here and that donation will be comming I promise!!  Thanks again!
Logged

 
Pages: [1] 2  All Go Up Print 
 
Jump to:  

Powered by MySQL Powered by PHP

Powered by SMF 1.1.21 | SMF © 2015, Simple Machines

Valid XHTML 1.0! Valid CSS!

Disclaimer
This site is NOT responsible for any damage that the information on this site may cause to your system. Everything you try, whether inspired by the response given from this site or not, is entirely at your own risk. All product names and company names used herein are for identification purpose only and may be trademarks or registered trademarks of their respective owners. We are in no way affiliated or representing any of the companies on this site unless specified.
Back to Top
Stop Spam Harvesters, Join Project Honey Pot Fight Back Against Spammers! Get Firefox! Get Thunderbird! View Sylvain Amyots profile on LinkedIn
Back to Top
Google visited last this page July 29, 2017, 01:44:25 PM