Tech Support Forum - View Single Post

jrice257 · 12-05-2008, 03:48 PM

Hello all, I am posting this from a secondary computer due to the problems of my other comp which I am certain is infected with some malware.

First off there are certain websites that my browser will not allot be to visit. These sites are all virus scanning and malware removing websites. When I try to load one the browser will say page cannot be displayed. I have tried navigating to this site and others in firefox, IE, and google chrome, and none of them can connect, but other sites work perfectly fine through the same browser.

So I tried downloading the dos script and gmer through this computer and sending them to my second comp through an email. I received the files, but there is something else blocking .EXE files from running properly. I'm not sure what it is, but when I try to run a file such as gmer.exe I get an hourglass for a second or two and then nothing happens. The same thing happens when I tried to install malware bytes.

These problems all just started in the last few days and I've been trying to find a solution. Any help is greatly appreciated.

results of dds

DDS (Version 1.0) - NTFSx86
Run by Masta at 16:53:09.25 on Fri 12/05/2008
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1023.728 [GMT -6:00]

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\AlienGUIse\wbload.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
svchost.exe
C:\Documents and Settings\Masta\Desktop\dds.com

============== Pseudo HJT Report ===============

mDefault_Search_URL = about:blank
mSearch Page = about:blank
mLocal Page = about:blank
mStart Page = about:blank
mSearch Bar =
uInternet Connection Wizard,ShellNext = hxxp://toolbar.morpheus.com/ready.html?toolbar=Installed
mSearchAssistant = hxxp://ie.search.msn.com
mWinlogon: Userinit=userinit.exe
BHO: {5b88a9e5-01b3-4a16-a6b1-6e7833684ecf} - c:\windows\system32\yfpqwl.dll
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.5.0_06\bin\ssv.dll
BHO: {A63E645F-13BD-45ED-B15F-6E8C1BD57279} - c:\windows\system32\efcYsrRH.dll
BHO: {C1A45ED4-D098-4147-8E76-BFDDB4722054} - c:\windows\system32\iifeDUlM.dll
BHO: {D3138B39-C8A6-440B-9D42-50F766AEA8C7} - c:\program files\mu online toolbar\v3.2.0.0\MU_Online_Toolbar.dll
BHO: {DB722189-97BF-4214-8629-0B087EC3E83A} - c:\windows\system32\pmnoNEVP.dll
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - c:\program files\aim\aim.exe
IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\program files\partygaming\partypoker\RunApp.exe
IE: {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - c:\program files\pokerstars.net\PokerStarsUpdate.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC} - c:\program files\java\jre1.5.0_06\bin\ssv.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
IE: {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - c:\program files\aim\aim.exe
IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\program files\partygaming\partypoker\RunApp.exe
IE: {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - c:\program files\pokerstars.net\PokerStarsUpdate.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} -
Notify: AtiExtEvent - Ati2evxx.dll
Notify: efcYsrRH - efcYsrRH.dll
Notify: WB - c:\program files\alienguise\fastload.dll
Notify: winuns32 - winuns32.dll
AppInit_DLLs: c:\windows\system32\msconfig.dll,wbsys.dll yfpqwl.dll
SEH: {54D9498B-CF93-414F-8984-8CE7FDE0D391} - c:\program files\ewido anti-malware\shellhook.dll
SEH: {57B86673-276A-48B2-BAE7-C6DBB3020EB8} - c:\program files\grisoft\avg anti-spyware 7.5\shellexecutehook.dll
SEH: {A63E645F-13BD-45ED-B15F-6E8C1BD57279} - c:\windows\system32\efcYsrRH.dll
SecurityProviders: msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digeste.dll
LSA: Authentication Packages = msv1_0 nwprovau c:\windows\system32\pmnoNEVP

============= SERVICES / DRIVERS ===============

R1 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver;\??\c:\program files\grisoft\avg anti-spyware 7.5\guard.sys [2006-9-28 11000]
R1 AvgAsCln;AVG Anti-Spyware Clean Driver;c:\windows\system32\drivers\AvgAsCln.sys [2006-11-28 3968]
R1 ewido security suite driver;ewido security suite driver;\??\c:\program files\ewido anti-malware\guard.sys [2005-12-30 3072]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys []
S4 aawservice;Lavasoft Ad-Aware Service;"c:\program files\lavasoft\ad-aware\aawservice.exe" [2008-9-10 611664]
S4 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard;c:\program files\grisoft\avg anti-spyware 7.5\guard.exe [2006-9-28 312880]
S4 ewido security suite control;ewido security suite control;c:\program files\ewido anti-malware\ewidoctrl.exe [2005-11-30 13888]
S4 ewido security suite guard;ewido security suite guard;c:\program files\ewido anti-malware\ewidoguard.exe [2005-12-18 151616]

=============== Created Last 30 ================

2008-12-05 16:00 129,024 a------- c:\windows\system32\yfpqwl.dll
2008-12-05 16:00 129,024 a------- c:\windows\system32\yixoswfw.dll
2008-12-05 15:57 1,479,822 ---sh--- c:\windows\system32\oagbnpqj.ini
2008-12-05 15:57 72,704 a------- c:\windows\system32\jqpnbgao.dll
2008-12-05 14:47 111,104 a------- c:\windows\system32\IEDefender.dll
2008-12-05 14:46 <DIR> --d----- c:\program files\AV2010
2008-12-05 14:46 76,824 a------- c:\windows\system32\wingamma.exe
2008-12-05 01:52 <DIR> --d----- c:\program files\Panda Security
2008-12-04 18:01 80,896 a------- c:\windows\system32\msiconf.exe
2008-12-04 18:01 <DIR> --d----- c:\program files\Microsoft Common
2008-12-04 17:37 <DIR> --d----- c:\docume~1\masta\applic~1\Malwarebytes
2008-12-04 17:37 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2008-12-04 16:01 114,688 a------- c:\windows\system32\ukjxhg.dll
2008-12-04 16:01 114,688 a------- c:\windows\system32\ycfamhyk.dll
2008-12-04 15:58 129,024 a------- c:\windows\system32\fcyxuu.dll
2008-12-04 15:58 129,024 a------- c:\windows\system32\rnkletgq.dll
2008-12-04 15:56 72,704 a------- c:\windows\system32\ubnbtflo.dll
2008-12-04 15:56 1,482,400 ---sh--- c:\windows\system32\olftbnbu.ini
2008-12-03 15:08 1,482,400 ---sh--- c:\windows\system32\imoyodpx.ini
2008-12-03 15:04 129,024 a------- c:\windows\system32\kdgdshrt.dll
2008-12-03 15:04 129,024 a------- c:\windows\system32\ecjghi.dll
2008-12-02 15:06 1,404,399 ---sh--- c:\windows\system32\qgtvlpsw.ini
2008-12-02 15:06 72,704 a------- c:\windows\system32\wsplvtgq.dll
2008-12-02 15:04 129,024 a------- c:\windows\system32\rbkoer.dll
2008-12-02 15:04 129,024 a------- c:\windows\system32\dwciaumu.dll
2008-12-01 20:57 129,024 a------- c:\windows\system32\zbchib.dll
2008-12-01 20:57 129,024 a------- c:\windows\system32\ftvktlew.dll
2008-12-01 20:54 72,704 a------- c:\windows\system32\ukdjcpou.dll
2008-12-01 20:54 1,381,274 ---sh--- c:\windows\system32\uopcjdku.ini
2008-11-30 21:57 143 a------- c:\windows\system32\mcrh.tmp
2008-11-30 20:52 129,024 a------- c:\windows\system32\xkljpe.dll
2008-11-30 20:52 129,024 a------- c:\windows\system32\gyxoawck.dll
2008-11-30 20:52 1,381,274 ---sh--- c:\windows\system32\bdgdnwwu.ini
2008-11-30 20:13 916,785 a--sh--- c:\windows\system32\PVENonmp.ini2
2008-11-30 20:13 0 a--sh--- c:\windows\system32\PVENonmp.ini
2008-11-30 20:13 318,464 a------- c:\windows\system32\pmnoNEVP.dll
2008-11-30 20:00 95 a------- c:\windows\wininit.ini
2008-11-30 19:13 <DIR> --d----- c:\program files\TeaTimer (Spybot - Search & Destroy)
2008-11-30 19:13 <DIR> --d----- c:\program files\Misc. Support Library (Spybot - Search & Destroy)
2008-11-30 19:13 <DIR> --d----- c:\program files\SDHelper (Spybot - Search & Destroy)
2008-11-30 19:12 <DIR> --d----- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2008-11-30 15:24 129,024 a------- c:\windows\system32\lqlqvg.dll
2008-11-30 15:24 129,024 a------- c:\windows\system32\ispaemwe.dll
2008-11-30 15:22 72,704 a------- c:\windows\system32\qirsbkiu.dll
2008-11-30 15:21 874,029 a--sh--- c:\windows\system32\MlUDefii.ini
2008-11-30 15:12 38,476 a------- c:\windows\system32\wpv631227968841.cpx
2008-11-30 15:12 25,600 a------- c:\windows\system32\pmNgefFv.dll
2008-11-30 15:12 25,600 a------- c:\windows\system32\efcYsrRH.dll
2008-11-06 05:22 <DIR> --d----- c:\program files\Folding@home
2008-11-06 05:22 <DIR> --d----- c:\docume~1\masta\applic~1\Folding@home-x86

==================== Find3M ====================

2008-12-05 02:07 <DIR> --d----- c:\program files\Spybot - Search & Destroy
2008-12-05 02:06 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2008-12-04 20:35 <DIR> --d----- c:\program files\common files\Wise Installation Wizard
2008-12-03 17:51 <DIR> --d----- c:\docume~1\masta\applic~1\uTorrent
2008-11-26 16:55 <DIR> --d----- c:\program files\Diablo II
2008-11-18 15:16 <DIR> --d----- c:\program files\PokerStars.NET
2008-11-16 14:29 <DIR> --d----- c:\program files\Lavasoft
2008-11-05 02:43 <DIR> --d----- c:\program files\mIRC
2008-09-06 18:47 <DIR> --d----- c:\docume~1\masta\applic~1\Atari
2008-08-14 21:16 <DIR> --d----- c:\docume~1\masta\applic~1\rhc3usj0ej9n
2007-12-13 14:04 <DIR> --d----- c:\docume~1\masta\applic~1\BitTorrent
2007-11-01 05:36 <DIR> --d----- c:\docume~1\masta\applic~1\NetMedia Providers
2007-10-18 22:58 <DIR> --d----- c:\docume~1\masta\applic~1\Turbine
2007-09-25 03:20 <DIR> --d----- c:\docume~1\masta\applic~1\Greyfirst
2007-07-08 18:37 <DIR> --d----- c:\docume~1\masta\applic~1\BitZipper
2007-03-18 22:59 <DIR> --d----- c:\docume~1\masta\applic~1\CoreCodec
2001-08-23 06:00 94,784 -c-sh--- c:\windows\twain.dll
2004-08-03 23:56 50,688 ---sh--- c:\windows\twain_32.dll
2007-05-28 19:08 10,646 a--sh--- c:\windows\system32\KGyGaAvL.sys
2004-08-03 23:56 1,028,096 ---sh--- c:\windows\system32\mfc42.dll
2004-08-03 23:56 54,784 ---sh--- c:\windows\system32\msvcirt.dll
2004-08-03 23:56 413,696 ---sh--- c:\windows\system32\msvcp60.dll
2004-08-03 23:56 343,040 ---sh--- c:\windows\system32\msvcrt.dll
2004-08-03 23:56 553,472 ---sh--- c:\windows\system32\oleaut32.dll
2004-08-03 23:56 83,456 ---sh--- c:\windows\system32\olepro32.dll
2004-08-03 23:56 11,776 ---sh--- c:\windows\system32\regsvr32.exe

============= FINISH: 16:57:18.15 ===============

12-05-2008, 03:48 PM	#1 (permalink)
jrice257 Registered User Join Date: Jan 2006 Posts: 6 OS: XP	severe problems with main PC Hello all, I am posting this from a secondary computer due to the problems of my other comp which I am certain is infected with some malware. First off there are certain websites that my browser will not allot be to visit. These sites are all virus scanning and malware removing websites. When I try to load one the browser will say page cannot be displayed. I have tried navigating to this site and others in firefox, IE, and google chrome, and none of them can connect, but other sites work perfectly fine through the same browser. So I tried downloading the dos script and gmer through this computer and sending them to my second comp through an email. I received the files, but there is something else blocking .EXE files from running properly. I'm not sure what it is, but when I try to run a file such as gmer.exe I get an hourglass for a second or two and then nothing happens. The same thing happens when I tried to install malware bytes. These problems all just started in the last few days and I've been trying to find a solution. Any help is greatly appreciated. results of dds DDS (Version 1.0) - NTFSx86 Run by Masta at 16:53:09.25 on Fri 12/05/2008 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1023.728 [GMT -6:00] ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\AlienGUIse\wbload.exe C:\WINDOWS\explorer.exe C:\WINDOWS\System32\svchost.exe -k HTTPFilter svchost.exe C:\Documents and Settings\Masta\Desktop\dds.com ============== Pseudo HJT Report =============== mDefault_Search_URL = about:blank mSearch Page = about:blank mLocal Page = about:blank mStart Page = about:blank mSearch Bar = uInternet Connection Wizard,ShellNext = hxxp://toolbar.morpheus.com/ready.html?toolbar=Installed mSearchAssistant = hxxp://ie.search.msn.com mWinlogon: Userinit=userinit.exe BHO: {5b88a9e5-01b3-4a16-a6b1-6e7833684ecf} - c:\windows\system32\yfpqwl.dll BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.5.0_06\bin\ssv.dll BHO: {A63E645F-13BD-45ED-B15F-6E8C1BD57279} - c:\windows\system32\efcYsrRH.dll BHO: {C1A45ED4-D098-4147-8E76-BFDDB4722054} - c:\windows\system32\iifeDUlM.dll BHO: {D3138B39-C8A6-440B-9D42-50F766AEA8C7} - c:\program files\mu online toolbar\v3.2.0.0\MU_Online_Toolbar.dll BHO: {DB722189-97BF-4214-8629-0B087EC3E83A} - c:\windows\system32\pmnoNEVP.dll IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000 IE: {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - c:\program files\aim\aim.exe IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\program files\partygaming\partypoker\RunApp.exe IE: {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - c:\program files\pokerstars.net\PokerStarsUpdate.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC} - c:\program files\java\jre1.5.0_06\bin\ssv.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL IE: {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - c:\program files\aim\aim.exe IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\program files\partygaming\partypoker\RunApp.exe IE: {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - c:\program files\pokerstars.net\PokerStarsUpdate.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - Notify: AtiExtEvent - Ati2evxx.dll Notify: efcYsrRH - efcYsrRH.dll Notify: WB - c:\program files\alienguise\fastload.dll Notify: winuns32 - winuns32.dll AppInit_DLLs: c:\windows\system32\msconfig.dll,wbsys.dll yfpqwl.dll SEH: {54D9498B-CF93-414F-8984-8CE7FDE0D391} - c:\program files\ewido anti-malware\shellhook.dll SEH: {57B86673-276A-48B2-BAE7-C6DBB3020EB8} - c:\program files\grisoft\avg anti-spyware 7.5\shellexecutehook.dll SEH: {A63E645F-13BD-45ED-B15F-6E8C1BD57279} - c:\windows\system32\efcYsrRH.dll SecurityProviders: msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digeste.dll LSA: Authentication Packages = msv1_0 nwprovau c:\windows\system32\pmnoNEVP ============= SERVICES / DRIVERS =============== R1 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver;\??\c:\program files\grisoft\avg anti-spyware 7.5\guard.sys [2006-9-28 11000] R1 AvgAsCln;AVG Anti-Spyware Clean Driver;c:\windows\system32\drivers\AvgAsCln.sys [2006-11-28 3968] R1 ewido security suite driver;ewido security suite driver;\??\c:\program files\ewido anti-malware\guard.sys [2005-12-30 3072] S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys [] S4 aawservice;Lavasoft Ad-Aware Service;"c:\program files\lavasoft\ad-aware\aawservice.exe" [2008-9-10 611664] S4 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard;c:\program files\grisoft\avg anti-spyware 7.5\guard.exe [2006-9-28 312880] S4 ewido security suite control;ewido security suite control;c:\program files\ewido anti-malware\ewidoctrl.exe [2005-11-30 13888] S4 ewido security suite guard;ewido security suite guard;c:\program files\ewido anti-malware\ewidoguard.exe [2005-12-18 151616] =============== Created Last 30 ================ 2008-12-05 16:00 129,024 a------- c:\windows\system32\yfpqwl.dll 2008-12-05 16:00 129,024 a------- c:\windows\system32\yixoswfw.dll 2008-12-05 15:57 1,479,822 ---sh--- c:\windows\system32\oagbnpqj.ini 2008-12-05 15:57 72,704 a------- c:\windows\system32\jqpnbgao.dll 2008-12-05 14:47 111,104 a------- c:\windows\system32\IEDefender.dll 2008-12-05 14:46 <DIR> --d----- c:\program files\AV2010 2008-12-05 14:46 76,824 a------- c:\windows\system32\wingamma.exe 2008-12-05 01:52 <DIR> --d----- c:\program files\Panda Security 2008-12-04 18:01 80,896 a------- c:\windows\system32\msiconf.exe 2008-12-04 18:01 <DIR> --d----- c:\program files\Microsoft Common 2008-12-04 17:37 <DIR> --d----- c:\docume~1\masta\applic~1\Malwarebytes 2008-12-04 17:37 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes 2008-12-04 16:01 114,688 a------- c:\windows\system32\ukjxhg.dll 2008-12-04 16:01 114,688 a------- c:\windows\system32\ycfamhyk.dll 2008-12-04 15:58 129,024 a------- c:\windows\system32\fcyxuu.dll 2008-12-04 15:58 129,024 a------- c:\windows\system32\rnkletgq.dll 2008-12-04 15:56 72,704 a------- c:\windows\system32\ubnbtflo.dll 2008-12-04 15:56 1,482,400 ---sh--- c:\windows\system32\olftbnbu.ini 2008-12-03 15:08 1,482,400 ---sh--- c:\windows\system32\imoyodpx.ini 2008-12-03 15:04 129,024 a------- c:\windows\system32\kdgdshrt.dll 2008-12-03 15:04 129,024 a------- c:\windows\system32\ecjghi.dll 2008-12-02 15:06 1,404,399 ---sh--- c:\windows\system32\qgtvlpsw.ini 2008-12-02 15:06 72,704 a------- c:\windows\system32\wsplvtgq.dll 2008-12-02 15:04 129,024 a------- c:\windows\system32\rbkoer.dll 2008-12-02 15:04 129,024 a------- c:\windows\system32\dwciaumu.dll 2008-12-01 20:57 129,024 a------- c:\windows\system32\zbchib.dll 2008-12-01 20:57 129,024 a------- c:\windows\system32\ftvktlew.dll 2008-12-01 20:54 72,704 a------- c:\windows\system32\ukdjcpou.dll 2008-12-01 20:54 1,381,274 ---sh--- c:\windows\system32\uopcjdku.ini 2008-11-30 21:57 143 a------- c:\windows\system32\mcrh.tmp 2008-11-30 20:52 129,024 a------- c:\windows\system32\xkljpe.dll 2008-11-30 20:52 129,024 a------- c:\windows\system32\gyxoawck.dll 2008-11-30 20:52 1,381,274 ---sh--- c:\windows\system32\bdgdnwwu.ini 2008-11-30 20:13 916,785 a--sh--- c:\windows\system32\PVENonmp.ini2 2008-11-30 20:13 0 a--sh--- c:\windows\system32\PVENonmp.ini 2008-11-30 20:13 318,464 a------- c:\windows\system32\pmnoNEVP.dll 2008-11-30 20:00 95 a------- c:\windows\wininit.ini 2008-11-30 19:13 <DIR> --d----- c:\program files\TeaTimer (Spybot - Search & Destroy) 2008-11-30 19:13 <DIR> --d----- c:\program files\Misc. Support Library (Spybot - Search & Destroy) 2008-11-30 19:13 <DIR> --d----- c:\program files\SDHelper (Spybot - Search & Destroy) 2008-11-30 19:12 <DIR> --d----- c:\program files\File Scanner Library (Spybot - Search & Destroy) 2008-11-30 15:24 129,024 a------- c:\windows\system32\lqlqvg.dll 2008-11-30 15:24 129,024 a------- c:\windows\system32\ispaemwe.dll 2008-11-30 15:22 72,704 a------- c:\windows\system32\qirsbkiu.dll 2008-11-30 15:21 874,029 a--sh--- c:\windows\system32\MlUDefii.ini 2008-11-30 15:12 38,476 a------- c:\windows\system32\wpv631227968841.cpx 2008-11-30 15:12 25,600 a------- c:\windows\system32\pmNgefFv.dll 2008-11-30 15:12 25,600 a------- c:\windows\system32\efcYsrRH.dll 2008-11-06 05:22 <DIR> --d----- c:\program files\Folding@home 2008-11-06 05:22 <DIR> --d----- c:\docume~1\masta\applic~1\Folding@home-x86 ==================== Find3M ==================== 2008-12-05 02:07 <DIR> --d----- c:\program files\Spybot - Search & Destroy 2008-12-05 02:06 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy 2008-12-04 20:35 <DIR> --d----- c:\program files\common files\Wise Installation Wizard 2008-12-03 17:51 <DIR> --d----- c:\docume~1\masta\applic~1\uTorrent 2008-11-26 16:55 <DIR> --d----- c:\program files\Diablo II 2008-11-18 15:16 <DIR> --d----- c:\program files\PokerStars.NET 2008-11-16 14:29 <DIR> --d----- c:\program files\Lavasoft 2008-11-05 02:43 <DIR> --d----- c:\program files\mIRC 2008-09-06 18:47 <DIR> --d----- c:\docume~1\masta\applic~1\Atari 2008-08-14 21:16 <DIR> --d----- c:\docume~1\masta\applic~1\rhc3usj0ej9n 2007-12-13 14:04 <DIR> --d----- c:\docume~1\masta\applic~1\BitTorrent 2007-11-01 05:36 <DIR> --d----- c:\docume~1\masta\applic~1\NetMedia Providers 2007-10-18 22:58 <DIR> --d----- c:\docume~1\masta\applic~1\Turbine 2007-09-25 03:20 <DIR> --d----- c:\docume~1\masta\applic~1\Greyfirst 2007-07-08 18:37 <DIR> --d----- c:\docume~1\masta\applic~1\BitZipper 2007-03-18 22:59 <DIR> --d----- c:\docume~1\masta\applic~1\CoreCodec 2001-08-23 06:00 94,784 -c-sh--- c:\windows\twain.dll 2004-08-03 23:56 50,688 ---sh--- c:\windows\twain_32.dll 2007-05-28 19:08 10,646 a--sh--- c:\windows\system32\KGyGaAvL.sys 2004-08-03 23:56 1,028,096 ---sh--- c:\windows\system32\mfc42.dll 2004-08-03 23:56 54,784 ---sh--- c:\windows\system32\msvcirt.dll 2004-08-03 23:56 413,696 ---sh--- c:\windows\system32\msvcp60.dll 2004-08-03 23:56 343,040 ---sh--- c:\windows\system32\msvcrt.dll 2004-08-03 23:56 553,472 ---sh--- c:\windows\system32\oleaut32.dll 2004-08-03 23:56 83,456 ---sh--- c:\windows\system32\olepro32.dll 2004-08-03 23:56 11,776 ---sh--- c:\windows\system32\regsvr32.exe ============= FINISH: 16:57:18.15 =============== Last edited by jrice257; 12-05-2008 at 04:08 PM.