ComboFix 09-06-23.01 - Chris 06/23/2009 21:47.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3326.2866 [GMT -7:00]
Running from: c:\documents and settings\Chris\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: ZoneAlarm Firewall *disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\All Users\Application Data\11309534
c:\documents and settings\All Users\Application Data\91319526
c:\windows\desktop
c:\windows\system32\drivers\SKYNETkttpltuu.sys
c:\windows\system32\SKYNETkacbtwyb.dat
c:\windows\system32\SKYNETtutotmix.dll
c:\windows\system32\SKYNETwylwnesp.dll
c:\windows\system32\SKYNETyunqffer.dat
c:\windows\TEMP\logishrd\LVPrcInj02.dll
c:\documents and settings\All Users\Application Data\11309534\11309534.exe
c:\documents and settings\All Users\Application Data\11309534\11309534.glu
c:\documents and settings\All Users\Application Data\91319526\91319526.exe
c:\windows\desktop\CKMAG5.LNK
c:\windows\system32\drivers\SKYNETkttpltuu.sys
c:\windows\system32\SKYNETkacbtwyb.dat
c:\windows\system32\SKYNETtutotmix.dll
c:\windows\system32\SKYNETwylwnesp.dll
c:\windows\system32\SKYNETyunqffer.dat
F:\Desktop.ini
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_SKYNETchhhkown
((((((((((((((((((((((((( Files Created from 2009-05-24 to 2009-06-24 )))))))))))))))))))))))))))))))
.
2009-06-24 00:03 . 2009-06-24 00:03 -------- d-----w- c:\documents and settings\Chris\Application Data\Foxit
2009-06-21 00:04 . 2009-06-21 00:04 -------- d-----w- c:\program files\Pure Digital Technologies
2009-06-21 00:04 . 2009-06-21 00:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Pure Digital Technologies
2009-06-19 03:01 . 2009-06-21 04:48 -------- d-----w- c:\documents and settings\Princess Aly\Application Data\Orbit
2009-06-19 02:33 . 2009-06-21 04:49 -------- d-----w- c:\documents and settings\Karyn\Application Data\Orbit
2009-06-17 16:12 . 2009-06-17 17:12 -------- d-----w- c:\documents and settings\Karyn\Application Data\Skype
2009-06-17 03:09 . 2009-06-17 03:09 -------- d-----w- c:\documents and settings\Princess Aly\Local Settings\Application Data\Mozilla
2009-06-17 03:08 . 2009-06-17 19:55 -------- d-----w- c:\documents and settings\Princess Aly\Local Settings\Application Data\Google
2009-06-16 18:31 . 2009-06-17 22:55 -------- d-----w- c:\documents and settings\Karyn\Local Settings\Application Data\Google
2009-06-16 18:30 . 2009-06-16 18:30 1244648 ----a-w- c:\documents and settings\Karyn\Application Data\MSNInstaller\msnauins.exe
2009-06-16 18:30 . 2009-06-16 18:30 -------- d-----w- c:\documents and settings\Karyn\Application Data\MSNInstaller
2009-06-16 18:24 . 2009-06-16 18:24 -------- d-----w- c:\documents and settings\Karyn\Local Settings\Application Data\Identities
2009-06-15 15:13 . 2009-06-15 15:13 -------- d-----w- c:\documents and settings\Karyn\Local Settings\Application Data\Mozilla
2009-06-15 15:13 . 2009-06-15 15:13 54024 ----a-w- c:\documents and settings\Karyn\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-06-15 15:13 . 2009-06-15 15:13 -------- d-----w- c:\documents and settings\Karyn\Application Data\Ahead
2009-06-15 15:13 . 2009-06-15 15:13 -------- d-----w- c:\documents and settings\Karyn\Local Settings\Application Data\Ahead
2009-06-15 15:06 . 2009-06-15 15:06 -------- d-----w- c:\documents and settings\Karyn\Application Data\DigitalPersona
2009-06-15 13:11 . 2009-06-23 16:38 -------- d-----w- c:\windows\system32\config\systemprofile\Local Settings\Application Data\Google
2009-06-08 04:06 . 2009-06-08 04:06 -------- d-----w- c:\program files\Xiph.Org
2009-06-06 21:08 . 2009-06-06 21:08 -------- d-----w- c:\program files\Free AVCHD Converter
2009-06-06 20:48 . 2009-06-06 20:48 -------- d-----w- c:\documents and settings\Chris\Application Data\4Media Software Studio
2009-06-06 20:30 . 2009-06-06 20:41 -------- d-----w- c:\documents and settings\Chris\Application Data\GetRightToGo
2009-06-06 20:14 . 2009-06-06 20:14 -------- d-----w- C:\ConverterOutput
2009-06-06 20:13 . 2008-06-15 17:01 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2009-06-06 20:13 . 2008-06-15 17:01 258352 ----a-w- c:\windows\system32\unicows.dll
2009-06-06 20:13 . 2009-06-06 20:13 -------- d-----w- c:\program files\Cucusoft
2009-06-06 19:57 . 2009-06-06 20:02 -------- d-----w- c:\program files\iSkysoft
2009-06-06 18:45 . 2009-06-06 18:45 -------- d-----w- C:\Desktop
2009-06-06 17:39 . 2009-06-06 17:39 -------- d-----w- c:\program files\Smart Projects
2009-06-04 20:45 . 2009-06-04 20:45 91136 ----a-w- C:\iexplor520.exe
2009-05-31 05:34 . 2009-05-31 05:34 -------- d-----w- c:\documents and settings\Chris\Local Settings\Application Data\BinTube.com
2009-05-31 05:34 . 2009-05-31 05:34 -------- d-----w- c:\documents and settings\All Users\Application Data\IsolatedStorage
2009-05-31 05:33 . 2009-05-31 05:42 -------- d-----w- c:\program files\BinTube
2009-05-28 01:31 . 2009-05-28 01:31 -------- d-----w- c:\program files\Common Files\Skype
2009-05-25 18:46 . 2009-05-25 18:46 48128 ----a-w- C:\apnet.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-24 04:56 . 2008-12-26 20:04 0 ----a-w- c:\windows\system32\drivers\lvuvc.hs
2009-06-24 04:56 . 2008-12-26 20:04 0 ----a-w- c:\windows\system32\drivers\logiflt.iad
2009-06-24 04:45 . 2008-07-15 04:12 2951878 ----a-w- c:\windows\Internet Logs\tvDebug.Zip
2009-06-23 11:04 . 2008-01-17 01:36 -------- d-----w- c:\documents and settings\All Users\Application Data\Google Updater
2009-06-21 04:55 . 2008-01-17 00:13 -------- d-----w- c:\documents and settings\Chris\Application Data\Orbit
2009-06-20 16:46 . 2008-01-15 00:53 54024 ----a-w- c:\documents and settings\Chris\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-06-20 15:31 . 2009-04-27 03:32 -------- d-----w- c:\program files\Paint.NET
2009-06-16 01:06 . 2009-06-16 01:06 -------- d-----w- c:\documents and settings\Princess Aly\Application Data\DigitalPersona
2009-06-15 04:48 . 2009-04-24 05:51 -------- d-----w- c:\program files\Windows Desktop Search
2009-06-07 23:47 . 2008-01-20 00:51 52 ----a-w- c:\windows\sfshell.tmp
2009-06-07 04:36 . 2008-01-17 01:39 -------- d-----w- c:\documents and settings\Chris\Application Data\SUPERAntiSpyware.com
2009-06-07 04:36 . 2008-01-17 01:39 -------- d-----w- c:\program files\SUPERAntiSpyware
2009-06-06 21:40 . 2009-06-06 21:41 2766848 ----a-w- c:\windows\Internet Logs\xDBC4.tmp
2009-06-06 20:46 . 2008-01-16 03:57 -------- d-----w- c:\documents and settings\Chris\Application Data\GrabIt
2009-06-04 01:14 . 2008-12-29 01:13 -------- d-----w- c:\documents and settings\Chris\Application Data\Skype
2009-06-04 00:40 . 2008-12-29 01:14 -------- d-----w- c:\documents and settings\Chris\Application Data\skypePM
2009-05-28 01:31 . 2008-12-29 01:12 -------- d-----r- c:\program files\Skype
2009-05-28 01:31 . 2008-12-29 01:12 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype
2009-05-25 07:24 . 2008-05-27 05:18 350208 ------w- c:\windows\system32\mssph.dll
2009-05-25 04:07 . 2009-05-25 04:07 -------- d-----w- c:\documents and settings\Chris\Application Data\Windows Search
2009-05-20 02:19 . 2008-12-30 17:51 -------- d-----w- c:\program files\Camfrog
2009-05-20 01:58 . 2008-12-30 17:51 -------- d-----w- c:\documents and settings\Chris\Application Data\Camfrog
2009-05-16 13:42 . 2009-05-16 13:42 -------- d-----w- c:\documents and settings\Chris\Application Data\Webcammax
2009-05-15 04:00 . 2009-01-06 04:50 11952 ----a-w- c:\windows\system32\avgrsstx.dll
2009-05-15 04:00 . 2009-01-06 04:49 325896 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2009-05-15 04:00 . 2009-01-06 04:49 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2009-05-15 03:59 . 2009-01-06 04:50 108552 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2009-05-12 22:12 . 2008-01-15 00:39 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2009-05-07 15:32 . 2006-02-28 12:00 345600 ----a-w- c:\windows\system32\localspl.dll
2009-04-29 04:56 . 2006-02-28 12:00 827392 ----a-w- c:\windows\system32\wininet.dll
2009-04-29 04:55 . 2006-02-28 12:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-04-27 02:08 . 2009-04-27 02:05 -------- d-----w- c:\documents and settings\Chris\Application Data\gtk-2.0
2009-04-21 07:07 . 2009-04-21 07:07 57344 ----a-w- c:\windows\SSEUninstaller.exe
2009-04-21 07:07 . 2009-04-21 07:07 44544 ----a-w- c:\windows\system32\Gif89.dll
2009-04-21 07:07 . 2009-04-21 07:07 32768 ----a-w- c:\windows\system32\ShellLnkSSE.dll
2009-04-17 12:26 . 2006-02-28 12:00 1847168 ----a-w- c:\windows\system32\win32k.sys
2009-04-15 14:51 . 2006-02-28 12:00 585216 ----a-w- c:\windows\system32\rpcrt4.dll
2009-04-13 02:54 . 2009-04-17 03:35 954368 ----a-w- c:\documents and settings\Chris\Application Data\Mozilla\Firefox\Profiles\1aimw0n6.default\extensions\piclens@cooliris.com\libs\PicLensHelper.exe
2009-04-13 02:54 . 2009-04-17 03:35 71652 ----a-w- c:\documents and settings\Chris\Application Data\Mozilla\Firefox\Profiles\1aimw0n6.default\extensions\piclens@cooliris.com\libs\avutil-49.dll
2009-04-13 02:54 . 2009-04-17 03:35 103424 ----a-w- c:\documents and settings\Chris\Application Data\Mozilla\Firefox\Profiles\1aimw0n6.default\extensions\piclens@cooliris.com\libs\pixomatic.dll
2009-04-13 02:54 . 2009-04-17 03:35 4534272 ----a-w- c:\documents and settings\Chris\Application Data\Mozilla\Firefox\Profiles\1aimw0n6.default\extensions\piclens@cooliris.com\libs\cooliris19.dll
2009-04-13 02:54 . 2009-04-17 03:35 344064 ----a-w- c:\documents and settings\Chris\Application Data\Mozilla\Firefox\Profiles\1aimw0n6.default\extensions\piclens@cooliris.com\libs\LaunchCooliris.exe
2009-04-13 02:54 . 2009-04-17 03:35 131868 ----a-w- c:\documents and settings\Chris\Application Data\Mozilla\Firefox\Profiles\1aimw0n6.default\extensions\piclens@cooliris.com\libs\avformat-52.dll
2009-04-13 02:54 . 2009-04-17 03:35 1161626 ----a-w- c:\documents and settings\Chris\Application Data\Mozilla\Firefox\Profiles\1aimw0n6.default\extensions\piclens@cooliris.com\libs\avcodec-51.dll
2009-04-13 02:54 . 2009-04-17 03:35 65536 ----a-w- c:\documents and settings\Chris\Application Data\Mozilla\Firefox\Profiles\1aimw0n6.default\extensions\piclens@cooliris.com\components\coolirisstub.dll
2009-04-08 03:30 . 2009-04-08 03:30 1878984 ----a-w- c:\documents and settings\Chris\Application Data\Macromedia\Flash Player\
www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe
2009-03-29 06:47 . 2009-03-29 06:51 2470400 ----a-w- c:\windows\Internet Logs\xDBC3.tmp
2007-02-23 04:08 . 2009-04-25 00:50 925696 ----a-w- c:\program files\GSpot.exe
2007-02-19 23:28 . 2009-04-25 00:50 117974 ----a-r- c:\program files\GSpot27.dat
2007-01-17 06:37 . 2009-04-25 00:50 3615 ----a-r- c:\program files\license.txt
2007-01-17 06:37 . 2009-04-25 00:50 10684 ----a-r- c:\program files\ExportFormat.txt
2008-01-17 05:19 . 2008-01-17 05:18 80 --sha-r- c:\windows\system32\35A4D3DF54.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"Shadow"="c:\program files\NewTech Infosystems\NTI Shadow\Shadow.exe" [2007-08-03 521464]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-01-17 68856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DPAgnt"="c:\program files\DigitalPersona\Bin\DPAgnt.exe" [2006-10-10 807440]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-05-15 1947928]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-09-18 13574144]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2009-02-16 981384]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-09-18 86016]
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\DPWLN ]
2006-10-10 00:27 99856 ----a-w- c:\windows\system32\DPWLEvHd.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-05-15 04:00 11952 ----a-w- c:\windows\system32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli DPPWDFLT
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Google Updater.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Google Updater.lnk
backup=c:\windows\pss\Google Updater.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HOTSYNCSHORTCUTNAME.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HOTSYNCSHORTCUTNAME.lnk
backup=c:\windows\pss\HOTSYNCSHORTCUTNAME.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Logitech Desktop Messenger.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Logitech Desktop Messenger.lnk
backup=c:\windows\pss\Logitech Desktop Messenger.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Windows Search.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
backup=c:\windows\pss\Windows Search.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^Chris^Start Menu^Programs^Startup^E-mail.lnk]
path=c:\documents and settings\Chris\Start Menu\Programs\Startup\E-mail.lnk
backup=c:\windows\pss\E-mail.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^Chris^Start Menu^Programs^Startup^Mozilla Firefox.lnk]
path=c:\documents and settings\Chris\Start Menu\Programs\Startup\Mozilla Firefox.lnk
backup=c:\windows\pss\Mozilla Firefox.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Orbitdownloader\\orbitdm.exe"=
"c:\\Program Files\\Orbitdownloader\\orbitnet.exe"=
"c:\\Program Files\\Common Files\\Ahead\\Nero Web\\SetupX.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgemc.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgnsx.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"443:UDP"= 443:UDP:*:Disabled:ooVoo UDP port 443
"37674:TCP"= 37674:TCP:*:Disabled:ooVoo TCP port 37674
"37674:UDP"= 37674:UDP:*:Disabled:ooVoo UDP port 37674
"37675:UDP"= 37675:UDP:*:Disabled:ooVoo UDP port 37675
"443:TCP"= 443:TCP:*:Disabled:ooVoo TCP port 443
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [1/5/2009 9:49 PM 325896]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [1/5/2009 9:50 PM 108552]
R2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [2/3/2009 5:15 PM 908568]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [2/3/2009 5:15 PM 298776]
R2 FlipShare Service;FlipShare Service;c:\program files\Pure Digital Technologies\FlipShare\FlipShareService.exe [11/13/2008 1:17 PM 439616]
R2 IntuitUpdateService;Intuit Update Service;c:\program files\Common Files\Intuit\Update Service\IntuitUpdateService.exe [12/9/2008 12:37 PM 13088]
R3 dpK0Bx01;Fingerprint Reader Filter Driver;c:\windows\system32\drivers\dpK0Bx01.sys [9/16/2006 5:25 PM 35584]
R3 usbdpfp;Fingerprint Reader Class Driver;c:\windows\system32\drivers\usbdpfp.sys [9/16/2006 5:23 PM 47360]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 SFC4;SFC4;c:\windows\system32\drivers\sfc4.sys [1/14/2008 10:20 PM 41472]
--- Other Services/Drivers In Memory ---
*Deregistered* - uphcleanhlp
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"c:\program files\Common Files\LightScribe\LSRunOnce.exe"
.
Contents of the 'Scheduled Tasks' folder
2009-06-24 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-01-17 05:38]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/ig?source=gama&hl=en
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: &Download by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/201
IE: &Grab video by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/204
IE: Do&wnload selected by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/203
IE: Down&load all by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/202
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
Trusted Zone: turbotax.com
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
DPF: {8ACDC08B-DC64-4613-97F2-299B65F66E1D} - hxxp://www.digimeld.com/download/digimeldOcx.CAB
FF - ProfilePath -
.
**************************************************************************
disk not found C:\
please note that you need administrator rights to perform deep scan
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files:
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(780)
c:\windows\system32\DPWLEvHd.dll
- - - - - - - > 'lsass.exe'(836)
c:\windows\DPPWDFLT.dll
- - - - - - - > 'explorer.exe'(7432)
c:\windows\TEMP\logishrd\LVPrcInj01.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\DigitalPersona\Bin\DPWinLct.exe
c:\program files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\windows\system32\bgsvcgen.exe
c:\program files\DigitalPersona\Bin\DpHost.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
c:\program files\AVG\AVG8\avgrsx.exe
c:\progra~1\AVG\AVG8\avgnsx.exe
c:\windows\system32\nvsvc32.exe
c:\windows\system32\IoctlSvc.exe
c:\program files\UPHClean\uphclean.exe
c:\windows\system32\searchindexer.exe
c:\program files\DigitalPersona\Bin\DPFUSMgr.exe
c:\program files\AVG\AVG8\avgcsrvx.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\searchprotocolhost.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\searchfilterhost.exe
.
**************************************************************************
.
Completion time: 2009-06-24 22:04 - machine was rebooted
ComboFix-quarantined-files.txt 2009-06-24 05:03
Pre-Run: 95,919,509,504 bytes free
Post-Run: 104,490,373,120 bytes free
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
283 --- E O F --- 2009-06-15 04:48