Thread: IE7 broke...Firefox and anything else are fine.
View Single Post
Old 12-07-2008, 03:32 PM   #3 (permalink)
oritxu
Registered User
 
Join Date: Dec 2008
Posts: 3
OS: xp sp3


Re: IE7 broke...Firefox and anything else are fine.
Thanks for your prompt response, and sorry for my delay..worked all weekend.

I did the steps above, and and some point after running the combo fix etc IE started to work. I had made no changes at all. I continued with the steps you left for me however. The online scan appears to have located a trojan that everything else missed. Here are the results.


ComboFix 08-12-05.06 - Administrator 2008-12-06 8:35:35.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1604 [GMT -7:00]
Running from: c:\documents and settings\Administrator.LIOX-CHANGEME\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Administrator.LIOX-CHANGEME\Desktop\CFScript.txt
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\TinyProxy
c:\windows2\Downloaded Program Files\setup.inf
c:\windows2\system32\disk.dll

.
((((((((((((((((((((((((( Files Created from 2008-11-06 to 2008-12-06 )))))))))))))))))))))))))))))))
.

2008-12-06 08:26 . 2008-12-06 08:26 0 --a------ c:\windows2\LCDMedia.INI
2008-12-05 13:57 . 2008-12-05 13:57 250 --a------ c:\windows2\gmer.ini
2008-12-05 13:45 . 2008-12-05 13:45 <DIR> d-------- c:\program files\Trend Micro
2008-12-05 11:46 . 2008-12-05 11:46 0 --a------ c:\windows2\nsreg.dat
2008-12-05 11:39 . 2008-12-05 12:55 1,374 --a------ c:\windows2\imsins.BAK
2008-12-05 11:05 . 2008-12-05 11:05 <DIR> d-------- c:\program files\NETGEAR
2008-12-05 11:05 . 2007-04-27 06:00 1,069,056 --a------ c:\windows2\system32\libeay32.dll
2008-12-05 11:05 . 2005-07-20 04:53 966,765 --a------ c:\windows2\system32\acAuth.dll
2008-12-05 11:05 . 2007-12-25 11:24 344,064 --a------ c:\windows2\system32\SCMLib.dll
2008-12-05 11:05 . 2007-12-26 10:47 272,128 --a------ c:\windows2\system32\drivers\wg111v2.sys
2008-12-05 11:05 . 2007-12-18 15:46 266,240 --a------ c:\windows2\system32\WG1v2lib.dll
2008-12-05 11:05 . 2005-01-25 14:30 143,360 --a------ c:\windows2\system32\IpLib.dll
2008-12-05 11:05 . 2006-07-27 14:26 36,864 --a------ c:\windows2\system32\RtlGina2.dll
2008-12-05 10:58 . 2008-12-05 10:58 21,035 --a------ c:\windows2\system32\drivers\AegisP.sys
2008-12-04 10:35 . 2008-12-05 07:30 <DIR> d-------- c:\windows2\system32\351631
2008-11-30 13:24 . 2008-11-30 13:24 <DIR> d-------- c:\program files\Ventrilo
2008-11-30 13:24 . 2008-11-30 13:24 262 --a------ c:\windows2\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
2008-11-25 11:19 . 2008-11-25 11:19 <DIR> d-------- c:\documents and settings\Administrator.LIOX-CHANGEME\Application Data\Listing Factory 2008
2008-11-25 11:07 . 2008-11-25 11:07 <DIR> d-------- c:\documents and settings\Administrator.LIOX-CHANGEME\Application Data\Listing & Factory 2008
2008-11-25 11:06 . 2008-11-25 11:06 <DIR> d-------- c:\program files\Listing Factory 2008
2008-11-12 06:08 . 2008-10-24 04:21 455,296 -----c--- c:\windows2\system32\dllcache\mrxsmb.sys
2008-11-12 06:07 . 2008-09-04 10:15 1,106,944 -----c--- c:\windows2\system32\dllcache\msxml3.dll
2008-11-11 13:08 . 2008-11-11 13:08 <DIR> d-------- c:\windows2\system32\AGEIA
2008-11-11 13:08 . 2008-11-11 13:10 <DIR> d-------- c:\windows2\NV29082416.TMP
2008-11-11 13:08 . 2008-11-11 13:08 <DIR> d-------- c:\program files\AGEIA Technologies

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-12-05 18:43 --------- d-----w c:\program files\Spybot - Search & Destroy
2008-12-05 18:36 --------- d-----w c:\documents and settings\All Users.WINDOWS2\Application Data\Spybot - Search & Destroy
2008-12-05 18:05 --------- d--h--w c:\program files\InstallShield Installation Information
2008-11-30 20:25 --------- d-----w c:\documents and settings\Administrator.LIOX-CHANGEME\Application Data\Ventrilo
2008-11-30 20:24 --------- d-----w c:\program files\Common Files\Wise Installation Wizard
2008-11-29 20:55 --------- d-----w c:\documents and settings\Administrator.LIOX-CHANGEME\Application Data\LimeWire
2008-11-13 08:11 --------- d-----w c:\program files\World of Warcraft
2008-11-13 03:14 --------- d-----w c:\documents and settings\Administrator.LIOX-CHANGEME\Application Data\Canon
2008-11-04 15:15 --------- d-----w c:\program files\Apple Software Update
2008-11-04 15:12 --------- d-----w c:\program files\iTunes
2008-11-04 15:12 --------- d-----w c:\program files\iPod
2008-11-04 15:12 --------- d-----w c:\program files\Bonjour
2008-11-04 15:12 --------- d-----w c:\documents and settings\All Users.WINDOWS2\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-11-04 15:11 --------- d-----w c:\program files\QuickTime
2008-11-04 15:11 --------- d-----w c:\program files\Common Files\Apple
2008-10-30 19:35 --------- d-----w c:\program files\Microsoft Games
2008-10-30 19:35 --------- d-----w c:\documents and settings\Administrator.LIOX-CHANGEME\Application Data\Microsoft Games
2008-10-30 19:32 --------- d-----w c:\program files\DirectX Happy Uninstall
2008-10-24 11:21 455,296 ----a-w c:\windows2\system32\drivers\mrxsmb.sys
2008-10-20 15:25 --------- d-----w c:\program files\Curse
2008-10-16 21:13 202,776 ----a-w c:\windows2\system32\wuweb.dll
2008-10-16 21:13 1,809,944 ----a-w c:\windows2\system32\wuaueng.dll
2008-10-16 21:12 561,688 ----a-w c:\windows2\system32\wuapi.dll
2008-10-16 21:12 323,608 ----a-w c:\windows2\system32\wucltui.dll
2008-10-16 21:09 92,696 ----a-w c:\windows2\system32\cdm.dll
2008-10-16 21:09 51,224 ----a-w c:\windows2\system32\wuauclt.exe
2008-10-16 21:09 43,544 ----a-w c:\windows2\system32\wups2.dll
2008-10-16 21:08 34,328 ----a-w c:\windows2\system32\wups.dll
2008-10-14 23:45 --------- d-----w c:\program files\Common Files\Blizzard Entertainment
2008-10-14 23:27 --------- d-----w c:\documents and settings\All Users.WINDOWS2\Application Data\Blizzard
2008-10-02 17:07 453,152 ----a-w c:\windows2\system32\NVUNINST.EXE
2008-09-30 23:43 1,286,152 ----a-w c:\windows2\system32\msxml4.dll
2008-09-28 14:17 3,066 ----a-w c:\windows2\system32\ealregsnapshot1.reg
2008-09-15 12:12 1,846,400 ----a-w c:\windows2\system32\win32k.sys
2008-09-12 19:50 107,888 ----a-w c:\windows2\system32\CmdLineExt.dll
2008-09-10 01:14 1,307,648 ----a-w c:\windows2\system32\msxml6.dll
2007-12-31 22:59 0 ----a-w c:\documents and settings\Administrator.LIOX-CHANGEME\WoW-2.0.6.6337-to-2.0.7.6383-enUS-patch.exe
2007-05-24 18:02 65 ----a-w c:\program files\Common Files\appop.log
2005-11-16 06:58 32 ----a-r c:\documents and settings\All Users\hash.dat
2008-05-27 13:49 32,768 --sha-w c:\windows2\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008052720080528\index.dat
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows2\system32\NvCpl.dll" [2008-10-07 13574144]
"Launch LGDCore"="c:\program files\Logitech\G-series Software\LGDCore.exe" [2006-03-06 1122304]
"Launch LCDMon"="c:\program files\Logitech\G-series Software\LCDMon.exe" [2006-03-06 497152]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-10-09 1036288]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-11-18 81000]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-09-06 413696]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-10-01 111936]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2008-10-01 289576]
"NvMediaCenter"="c:\windows2\system32\NvMcTray.dll" [2008-10-07 86016]
"nwiz"="nwiz.exe" [2008-10-07 c:\windows2\system32\nwiz.exe]

c:\documents and settings\All Users.WINDOWS2\Start Menu\Programs\Startup\
NETGEAR WG111v2 Smart Wizard.lnk - c:\program files\NETGEAR\WG111v2\WG111v2.exe [2008-12-05 1261568]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2007-11-15 10:10 72208 c:\program files\Common Files\Logitech\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\image file execution options\ageofconan.exe]
"Debugger"="c:\program files\Age of Conan Quick Start\aoclaunch.exe"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS2^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users.WINDOWS2\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=c:\windows2\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS2^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk]
path=c:\documents and settings\All Users.WINDOWS2\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk
backup=c:\windows2\pss\Adobe Reader Synchronizer.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS2^Start Menu^Programs^Startup^Color Calibration.lnk]
path=c:\documents and settings\All Users.WINDOWS2\Start Menu\Programs\Startup\Color Calibration.lnk
backup=c:\windows2\pss\Color Calibration.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS2^Start Menu^Programs^Startup^GammaTray.lnk]
path=c:\documents and settings\All Users.WINDOWS2\Start Menu\Programs\Startup\GammaTray.lnk
backup=c:\windows2\pss\GammaTray.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS2^Start Menu^Programs^Startup^Google Updater.lnk]
path=c:\documents and settings\All Users.WINDOWS2\Start Menu\Programs\Startup\Google Updater.lnk
backup=c:\windows2\pss\Google Updater.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS2^Start Menu^Programs^Startup^InterVideo WinCinema Manager.lnk]
path=c:\documents and settings\All Users.WINDOWS2\Start Menu\Programs\Startup\InterVideo WinCinema Manager.lnk
backup=c:\windows2\pss\InterVideo WinCinema Manager.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS2^Start Menu^Programs^Startup^Logitech SetPoint.lnk]
path=c:\documents and settings\All Users.WINDOWS2\Start Menu\Programs\Startup\Logitech SetPoint.lnk
backup=c:\windows2\pss\Logitech SetPoint.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS2^Start Menu^Programs^Startup^NCProTray.lnk]
path=c:\documents and settings\All Users.WINDOWS2\Start Menu\Programs\Startup\NCProTray.lnk
backup=c:\windows2\pss\NCProTray.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows2\system32\dumprep 0 -k [X]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 21:16 39792 c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeUpdater]
--a------ 2008-12-02 08:05 2356088 c:\program files\Common Files\Adobe\Updater5\AdobeUpdater.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
--a------ 2008-10-01 12:57 111936 c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DIRECTCD]
--a------ 2005-10-24 21:49 299008 c:\program files\InterVideo\Disc Master 2.5\DirectCD.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-10-01 18:57 289576 c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
--a------ 2008-06-09 09:16 2363392 c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MediaFaceOnlinePluginsService]
--a------ 2007-02-27 07:36 278528 c:\program files\MediaFaceOnlinePluginsService\dolcore.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
---hs---- 2008-04-13 17:12 1695232 c:\program files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NVIDIA nTune]
--a------ 2007-04-04 13:20 81920 c:\program files\NVIDIA Corporation\nTune\nTuneCmd.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
--a------ 2008-10-07 13:33 86016 c:\windows2\system32\nvmctray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE2]
--a------ 2003-05-08 10:00 49152 c:\program files\ScanSoft\OmniPageSE2.0\opwareSE2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-09-06 15:09 413696 c:\program files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray]
--a------ 2007-04-23 11:43 228088 c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
--a------ 2007-10-08 06:47 864256 c:\program files\Analog Devices\SoundMAX\SMax4.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
--a------ 2007-10-09 03:02 1036288 c:\program files\Analog Devices\Core\smax4pnp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2007-09-25 01:11 132496 c:\program files\Java\jre1.6.0_03\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WINCINEMAMGR]
--a------ 2005-01-20 23:47 270336 c:\program files\InterVideo\Common\Bin\WinCinemaMgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Kernel and Hardware Abstraction Layer]
--a------ 2007-09-21 03:10 55824 c:\windows2\KHALMNPR.Exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"c:\program files\Gameforge4D\AirRivals\Launcher.atm"= c:\program files\Gameforge4D\AirRivals\Launcher.atm:Enabled:GameExe2
"c:\program files\Gameforge4D\AirRivals\Res-Voip\SCVoIP.exe"= c:\program files\Gameforge4D\AirRivals\Res-Voip\SCVoIP.exe:Enabled:GameVoIP
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Ventrilo\\Ventrilo.exe"=

R0 ivicd;Ivi CDVD Filter Driver;c:\windows2\system32\drivers\ivicd.sys [2007-05-24 38784]
R1 aswSP;avast! Self Protection;c:\windows2\system32\drivers\aswSP.sys [2008-07-16 110160]
R2 aswFsBlk;aswFsBlk;c:\windows2\system32\DRIVERS\aswFsBlk.sys [2008-07-16 20560]
S3 RTLWUSB;NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter NT Driver;c:\windows2\system32\DRIVERS\wg111v2.sys [2008-12-05 272128]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
\Shell\AutoRun\command - D:\AUTORUN.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b4c44e4f-0a57-11dc-bad2-806d6172696f}]
\Shell\AutoRun\command - d:\.\Bin\ASSETUP.exe

*Newly Created Service* - PROCEXP90

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"c:\program files\Common Files\LightScribe\LSRunOnce.exe"
.
Contents of the 'Scheduled Tasks' folder

2008-12-06 c:\windows2\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 12:34]
.
- - - - ORPHANS REMOVED - - - -

MSConfigStartUp-!AVG Anti-Spyware - c:\program files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
MSConfigStartUp-AGEIA PhysX SysTray - c:\program files\AGEIA Technologies\TrayIcon.exe
MSConfigStartUp-CurseClient - c:\program files\Curse\CurseClient.exe
MSConfigStartUp-Google Desktop Search - c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
MSConfigStartUp-pccguide - c:\program files\Trend Micro\Internet Security 2007\pccguide.exe
MSConfigStartUp-Picasa Media Detector - c:\program files\Picasa2\PicasaMediaDetector.exe
MSConfigStartUp-Steam - c:\program files\Steam\Steam.exe
MSConfigStartUp-swg - c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe


.
------- Supplementary Scan -------
.
uInternet Settings,ProxyOverride = *.local;<local>

O16 -: Microsoft XML Parser for Java - file://c:\windows2\Java\classes\xmldso.cab
c:\windows2\Downloaded Program Files\Microsoft XML Parser for Java.osd

c:\windows2\Downloaded Program Files\sysreqlab3.dll - O16 -: {1E54D648-B804-468d-BC78-4AFFED8E262E}
hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab
c:\windows2\Downloaded Program Files\SysReqLab3.osd

c:\windows2\Downloaded Program Files\Pixami Upload Control.ocx - c:\windows2\Downloaded Program Files\DragDropUploadUI.ocx
O16 -: {C915801D-6F00-49CD-8A9A-8DE5C11ADDC1}
hxxp://www.cmphotocenter.com/is/DragDropUploader.cab
c:\windows2\Downloaded Program Files\DragDropUploader.inf
FireFox -: Profile - c:\documents and settings\Administrator.LIOX-CHANGEME\Application Data\Mozilla\Firefox\Profiles\7h1bxfy9.default\
FF -: plugin - c:\program files\iTunes\Mozilla Plugins\npitunes.dll
FF -: plugin - c:\program files\Yahoo!\Common\npyaxmpb.dll
FF -: plugin - c:\windows2\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-06 08:36:29
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(820)
c:\program files\common files\logitech\bluetooth\LBTWlgn.dll
c:\program files\common files\logitech\bluetooth\LBTServ.dll
.
Completion time: 2008-12-06 8:37:26
ComboFix-quarantined-files.txt 2008-12-06 15:37:07

Pre-Run: 65,827,377,152 bytes free
Post-Run: 65,821,892,608 bytes free

WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS2
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS2="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

253 --- E O F --- 2008-12-05 19:56:06


--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7 REPORT
Sunday, December 7, 2008
Operating System: Microsoft Windows XP Professional Service Pack 3 (build 2600)
Kaspersky Online Scanner 7 version: 7.0.25.0
Program database last update: Sunday, December 07, 2008 09:20:51
Records in database: 1441946
--------------------------------------------------------------------------------

Scan settings:
Scan using the following database: extended
Scan archives: yes
Scan mail databases: yes

Scan area - My Computer:
A:\
C:\
D:\
E:\

Scan statistics:
Files scanned: 179701
Threat name: 1
Infected objects: 1
Suspicious objects: 0
Duration of the scan: 01:52:18


File name / Threat name / Threats count
C:\Documents and Settings\Administrator.LIOX-CHANGEME\My Documents\LimeWire\Incomplete\Preview-T-5745425-what child is this third day.mp3 Infected: Trojan-Downloader.WMA.GetCodec.c 1

The selected area was scanned.
Attached Files
File Type: txt onlinescan.txt (1,020 Bytes, 2 views)
File Type: zip ComboFix's.zip (5.3 KB, 1 views)
Last edited by sUBs; 12-07-2008 at 03:55 PM.
oritxu is offline