Malware Messed Up

1090 Views 2 Replies 2 Participants Last post by Ried, May 29, 2008

351bloor

Discussion Starter · May 27, 2008

Logfile of HijackThis v1.99.1
Scan saved at 2:21:07 PM, on 27/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Bell\Security Manager\Fws.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Bell\Sympatico Security Advisor\SSA.exe
C:\Program Files\Bell\Security Manager\Rps.exe
C:\WINDOWS\VMSnap3.EXE
C:\WINDOWS\Domino.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\BitDownload\BitDownload.exe
C:\Program Files\BigFix\bigfix.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\Bell\Sympatico Security Advisor\SSAComHandler.exe
C:\Program Files\Bell\Security Manager\rpsupdaterR.exe
C:\WINDOWS\system32\imapi.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\notepad.exe
C:\WINDOWS\notepad.exe
C:\Documents and Settings\Owner\Desktop\Owner.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://as.starware.com/dp/search?x=...h1DEyVER7+3F9MiYKibin+uMtxfVa/MHeQrwZR9nZOxGG
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Sympatico
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Pop-Up Blocker BHO - {3C060EA2-E6A9-4E49-A530-D4657B8C449A} - C:\Program Files\Bell\Security Manager\pkR.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [SSA.exe] "C:\Program Files\Bell\Sympatico Security Advisor\SSA.exe" /AUTORUN
O4 - HKLM\..\Run: [Sympatico Security Manager] "C:\Program Files\Bell\Security Manager\Rps.exe"
O4 - HKLM\..\Run: [-FreedomNeedsReboot] "C:\Program Files\Bell\Security Manager\ZkRunOnceR.exe"
O4 - HKLM\..\Run: [VMSnap3] C:\WINDOWS\VMSnap3.EXE
O4 - HKLM\..\Run: [Domino] C:\WINDOWS\Domino.EXE
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\RunOnce: [IndexCleaner] "C:\Program Files\Bell\Security Manager\IdxClnR.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BitDownload] "C:\Program Files\BitDownload\BitDownload.exe" /minimized
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\RunOnce: [IndexCleaner] "C:\Program Files\Bell\Security Manager\IdxClnR.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
O4 - Global Startup: Install Pending Files.LNK = C:\Program Files\SIFXINST\SIFXINST.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.emachines.com
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1162151770718
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Automatic LiveUpdate Scheduler - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: DvpApi (dvpapi) - Authentium, Inc. - C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: CA Pest Patrol Realtime Protection Service (ITMRTSVC) - CA, Inc. - C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
O23 - Service: Sympatico Security Manager Update Service (RPSUpdaterR) - Radialpoint Inc. - C:\Program Files\Bell\Security Manager\rpsupdaterR.exe
O23 - Service: Sympatico Security Manager Firewall (RP_FWS) - Bell Sympatico - C:\Program Files\Bell\Security Manager\Fws.exe

Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Home Edition (build 2600) SP 2.0
Architecture: X86; Language: English

CPU 0: Intel(R) Celeron(R) M processor 1.50GHz
Percentage of Memory in Use: 62%
Physical Memory (total/avail): 478.42 MiB / 180.76 MiB
Pagefile Memory (total/avail): 1120.31 MiB / 709.16 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1923.4 MiB

C: is Fixed (NTFS) - 70.51 GiB total, 51.58 GiB free.
D: is Fixed (FAT32) - 4 GiB total, 2.33 GiB free.
E: is CDROM (No Media)

\\.\PHYSICALDRIVE0 - WDC WD800UE-00HCT0 - 74.53 GiB - 2 partitions
\PARTITION0 (bootable) - Installable File System - 70.51 GiB - C:
\PARTITION1 - Unknown - 4.01 GiB - D:

-- Security Center -------------------------------------------------------------

AUOptions is scheduled to auto-install.
Windows Internal Firewall is enabled.

FirstRunDisabled is set.
AntiVirusDisableNotify is set.
FirewallDisableNotify is set.

FW: Sympatico Security Manager Firewall v6.0.1 (Bell Sympatico (b1xxxxxx))
AV: Sympatico Security Manager Anti-Virus v6.0.1 (Bell Sympatico (b1xxxxxx))

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled

xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled

xpsp3res.dll,-20000"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled

xpsp2res.dll,-22019"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled

xpsp3res.dll,-20000"
"C:\\Program Files\\PrinterOn Corporation\\PrintWhere 3.0\\pwcPrinterSelect.exe"="C:\\Program Files\\PrinterOn Corporation\\PrintWhere 3.0\\pwcPrinterSelect.exe:*:Enabled

rintWhere 3.0 Printer Select"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\\Program Files\\BitDownload\\BitDownload.exe"="C:\\Program Files\\BitDownload\\BitDownload.exe:*:Enabled:Warez3"

-- Environment Variables -------------------------------------------------------

ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Owner\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=LAPTOP
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Owner
LOGONSERVER=\\LAPTOP
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\CA\PPRT\bin
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 13 Stepping 8, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0d08
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\Owner\LOCALS~1\Temp
TMP=C:\DOCUME~1\Owner\LOCALS~1\Temp
USERDOMAIN=LAPTOP
USERNAME=Owner
USERPROFILE=C:\Documents and Settings\Owner
windir=C:\WINDOWS

-- User Profiles ---------------------------------------------------------------

Owner (admin)

-- Add/Remove Programs ---------------------------------------------------------

--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x9
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Ad-Aware 2007 --> MsiExec.exe /X{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe Flash Player 9 ActiveX --> C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Reader 7.0.9 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70900000002}
Adobe Shockwave Player --> C:\WINDOWS\system32\Adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
ArcSoft Panorama Maker 3 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A5F68DC8-0278-4AD8-B413-861509B5F25B}\Setup.exe" -l0x9
Authentium AntiVirus SDK - 2 --> MsiExec.exe /I{1ACE3F9D-CDA4-4F39-9605-334CF37A1579}
Avanquest update --> C:\Program Files\InstallShield Installation Information\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\Setup.exe -runfromtemp -l0x0009 -removeonly
BigFix --> C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\BigFix\Uninst.isu" -c"C:\Program Files\BigFix\Lib\UninstallHelper.dll"
CCleaner (remove only) --> "C:\Program Files\CCleaner\uninst.exe"
Channel Master --> "C:\Program Files\SharpC\Channel Master\uninstall.exe"
Channel Master --> "C:\Program Files\SharpC\Channel Master\uninstall.exe"
CloneDVD2 --> "C:\Program Files\Elaborate Bytes\CloneDVD2\CloneDVD2-uninst.exe" /D="C:\Program Files\Elaborate Bytes\CloneDVD2"
Creative System Information --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A317D0-60A6-43FC-848A-9FE4A53B29CE}\setup.exe" -l0x9 /remove
Digital Media Converter 2.78 --> "C:\Program Files\Deskshare\Digital Media Converter\unins000.exe"
DVD Shrink 3.2 --> "C:\Program Files\DVD Shrink\unins000.exe"
easypix Photo Viewer --> C:\Program Files\easypix Photo Viewer\uninstall.exe
G-CUBE NOTEBOOK WEB CAMERA --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{362483B1-91EB-4CB4-B9BB-3B4B4C644404}\setup.exe" -l0x9 -removeonly
Google Toolbar for Internet Explorer --> regsvr32 /u /s "c:\program files\google\googletoolbar4.dll"
HijackThis 1.99.1 --> C:\Documents and Settings\Owner\Desktop\HijackThis.exe /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399) --> "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Intel(R) Extreme Graphics 2 Driver --> RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_3582
J2SE Runtime Environment 5.0 Update 2 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150020}
LiveUpdate 3.0 (Symantec Corporation) --> "C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
Microsoft Compression Client Pack 1.0 for Windows XP --> "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Digital Image Starter Edition 2006 --> "C:\Program Files\Common Files\Microsoft Shared\Picture It!\RmvSuite.exe" ADDREMOVE=1 SKU=TRIAL VERSION=11
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 --> "C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft Money 2005 --> C:\Program Files\Microsoft Money 2005\MNYCoreFiles\Setup\uninst.exe /s:120
Microsoft Office Outlook Connector --> MsiExec.exe /I{8C25E29E-FC5D-44CD-A58C-5746AF303CF2}
Microsoft Office XP Professional with FrontPage --> MsiExec.exe /I{90280409-6000-11D3-8CFE-0050048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0 --> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works --> MsiExec.exe /I{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}
Motorola Driver Installation 3.2.0 --> MsiExec.exe /I{D6A1E429-CCE1-4140-A615-710B806D12BA}
Motorola Phone Tools --> C:\Program Files\InstallShield Installation Information\{BAD8CA9C-77C0-4663-B00B-A8D3B13C341B}\setup.exe -runfromtemp -l0x0009 -removeonly
Move Networks Media Player for Internet Explorer --> C:\Documents and Settings\Owner\Application Data\Move Networks\ie_bin\Uninst.exe
Mpeg2Decoder 1.3 --> "C:\Program Files\Mpeg2Decoder\unins000.exe"
MSN --> C:\Program Files\MSN\MsnInstaller\msniadm.exe /Action:ARP
MSN Encarta Plus Support Files --> MsiExec.exe /I{00000000-785F-478A-BAA2-87F1A136068C}
Nero BurnRights --> C:\WINDOWS\UNNeroBurnRights.exe /UNINSTALL
Nero OEM --> C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
Nikon Message Center --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}\Setup.exe" -l0x9 UNINSTALL
PerfectDisk --> MsiExec.exe /I{212F5777-1190-4DEF-8E4D-6B2F313B45E7}
PictureProject --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FF3999BE-1A7B-4738-88AA-97BF14094A4A}\Setup.exe" -l0x9 UNINSTALL
PictureProject In Touch Downloader 1.0 --> C:\Program Files\PictureProject In Touch Downloader\uninst.exe
PowerDVD --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall
PPSDKRedistributables --> MsiExec.exe /I{C869F4FF-E5FF-4FBB-9A31-33C23605E170}
Radialpoint Security Services --> MsiExec.exe /X{5DFDEAAA-E050-482E-A5B6-138CAE53F7BF}
RPS Ad Blocker --> MsiExec.exe /I{08B9D8A5-0F7F-4746-AE09-563DFE6D160A}
RPS AntiFraud --> MsiExec.exe /I{494E1223-4444-4C25-B1C6-0D73F16947DE}
RPS AntiSpyware --> MsiExec.exe /I{2141E76D-84AC-48E1-8592-583A7AEF4890}
RPS AntiVirus --> MsiExec.exe /I{9F82A8D5-E726-46A5-A240-F7F72A0E2704}
RPS App Detector --> MsiExec.exe /I{60D2CAA2-3442-4BFA-A7A5-44C4B49E39D9}
RPS AsRealtime --> MsiExec.exe /I{27B6A332-950C-4C4B-AC00-47882F09565B}
RPS Backup --> MsiExec.exe /I{63ADC0A3-BE18-4351-958D-396D44FA7604}
RPS Burn --> MsiExec.exe /I{88C2DEBD-678E-473D-A10B-4101EBDFE370}
RPS Diagnostic Utility --> MsiExec.exe /I{A6433CA5-384B-4E15-8270-B511F94B86AE}
RPS Firewall --> MsiExec.exe /I{8B02DC37-9997-4723-90E2-DE64CBFEF2BD}
RPS ParentalControl --> MsiExec.exe /I{B0B9010D-24C6-413E-8710-4C4BD2D41BF4}
RPS Performance Tool --> MsiExec.exe /I{62114582-0B19-4222-A056-D4166374C43E}
RPS PopupBlocker --> MsiExec.exe /I{CCEA4F64-091F-4E97-9043-898A08DA1AA6}
RPS Privacy Manager --> MsiExec.exe /I{C34CC6A7-B46A-4C5A-9CCF-229307BE2F7A}
RPS RpsCore --> MsiExec.exe /I{2F5B9C05-67AB-4737-858C-86B471DA5F1D}
RPS Security Cleanup --> MsiExec.exe /I{A92192EB-DF5A-4034-925A-1546EF97538B}
RPS Zip --> MsiExec.exe /I{47001112-05C9-4CE7-B6C6-AA6CAD9CFDFD}
Security Update for CAPICOM (KB931906) --> MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906) --> MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Step By Step Interactive Training (KB898458) -->
SoftK56 Data Fax Modem --> C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_8086&DEV_24C6&SUBSYS_2030161F\HXFSETUP.EXE -U -Iask20305.inf
SoundMAX --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe" -l0x9 -removeonly
Sympatico Security Advisor 1.5.11 --> "C:\Program Files\Bell\Sympatico Security Advisor\unins000.exe"
Sympatico Security Manager --> C:\Program Files\InstallShield Installation Information\{98C99357-67C9-407B-8361-626F6A0667EB}\setup.exe -runfromtemp -l0x0009 -removeonly
Synaptics Pointing Device Driver --> rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Texas Instruments PCIxx21/x515 drivers. --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{425ECED4-23ED-4E05-A88A-B59700DAF2AD}
Windows Backup Utility --> MsiExec.exe /I{76EFFC7C-17A6-479D-9E47-8E658C1695AE}
Windows Live installer --> MsiExec.exe /X{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}
Windows Live Messenger --> MsiExec.exe /X{508CE775-4BA4-4748-82DF-FE28DA9F03B0}
Windows Live Sign-in Assistant --> MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
WinRAR archiver --> C:\Program Files\WinRAR\uninstall.exe
XoftSpySE --> C:\Program Files\XoftSpySE\uninstall.exe
Yahoo! Toolbar --> C:\PROGRA~1\Yahoo!\Common\unyt.exe

-- Application Event Log -------------------------------------------------------

Event Record #/Type1182 / Error
Event Submitted/Written: 05/27/2008 02:15:33 PM
Event ID/Source: 8 / crypt32
Event Description:
Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Event Record #/Type1181 / Error
Event Submitted/Written: 05/27/2008 02:15:33 PM
Event ID/Source: 8 / crypt32
Event Description:
Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This operation returned because the timeout period expired.

Event Record #/Type1174 / Error
Event Submitted/Written: 05/26/2008 08:57:44 PM
Event ID/Source: 1001 / Application Error
Event Description:
Fault bucket 399228210.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.

Event Record #/Type1173 / Error
Event Submitted/Written: 05/26/2008 08:56:50 PM
Event ID/Source: 1000 / Application Error
Event Description:
Faulting application msn.exe, version 9.50.39.1900, faulting module seal.dll, version 9.50.39.1900, fault address 0x000346a4.
Processing media-specific event for [msn.exe!ws!]

Event Record #/Type1166 / Success
Event Submitted/Written: 05/26/2008 08:49:02 PM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.

-- Security Event Log ----------------------------------------------------------

No Errors/Warnings found.

-- System Event Log ------------------------------------------------------------

Event Record #/Type36912 / Warning
Event Submitted/Written: 05/27/2008 00:42:11 PM
Event ID/Source: 11050 / dnscache
Event Description:
The DNS Client service could not contact any DNS servers for
a repeated number of attempts. For the next 30 seconds the
DNS Client service will not use the network to avoid further
network performance problems. It will resume its normal behavior
after that. If this problem persists, verify your TCP/IP
configuration, specifically check that you have a preferred
(and possibly an alternate) DNS server configured. If the problem
continues, verify network conditions to these DNS servers or contact
your network administrator.

Event Record #/Type36911 / Error
Event Submitted/Written: 05/27/2008 00:35:29 PM
Event ID/Source: 7000 / Service Control Manager
Event Description:
The tcpip_patcher service failed to start due to the following error:
%%2

Event Record #/Type36902 / Error
Event Submitted/Written: 05/27/2008 00:35:17 PM
Event ID/Source: 1002 / Dhcp
Event Description:
The IP address lease 192.168.2.12 for the Network Card with network address 0014A5455CDA has been
denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).

Event Record #/Type36887 / Error
Event Submitted/Written: 05/27/2008 00:35:11 PM
Event ID/Source: 7000 / Service Control Manager
Event Description:
The Automatic LiveUpdate Scheduler service failed to start due to the following error:
%%2

Event Record #/Type36883 / Error
Event Submitted/Written: 05/26/2008 09:29:46 PM
Event ID/Source: 7000 / Service Control Manager
Event Description:
The tcpip_patcher service failed to start due to the following error:
%%2

-- End of Deckard's System Scanner: finished at 2008-05-27 14:17:30 ------------

Deckard's System Scanner v20071014.68
Run by Owner on 2008-05-27 14:10:00
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.

-- Last 5 Restore Point(s) --
72: 2008-05-27 18:10:07 UTC - RP517 - Deckard's System Scanner Restore Point
71: 2008-05-27 17:58:59 UTC - RP516 - Software Distribution Service 3.0
70: 2008-05-26 22:53:25 UTC - RP515 - System Checkpoint
69: 2008-05-25 16:57:51 UTC - RP514 - System Checkpoint
68: 2008-05-24 15:48:17 UTC - RP513 - System Checkpoint

-- First Restore Point --
1: 2008-02-27 14:20:45 UTC - RP446 - System Checkpoint

Backed up registry hives.
Performed disk cleanup.

Total Physical Memory: 479 MiB (512 MiB recommended).

-- HijackThis (run as Owner.exe) -----------------------------------------------

Unable to find log (file not found); running clone.
-- HijackThis Clone ------------------------------------------------------------

Emulating logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2008-05-27 14:11:39
Platform: Windows XP Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Bell\Security Manager\Fws.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Bell\Sympatico Security Advisor\SSA.exe
C:\Program Files\Bell\Security Manager\RPS.exe
C:\WINDOWS\VMSnap3.EXE
C:\WINDOWS\Domino.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\BitDownload\BitDownload.exe
C:\Program Files\BigFix\bigfix.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\Bell\Sympatico Security Advisor\SSAComHandler.exe
C:\Program Files\Bell\Security Manager\rpsupdaterr.exe
C:\WINDOWS\system32\imapi.exe
C:\Documents and Settings\Owner\Desktop\dss.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\dllhost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.com/search?q=%s
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = iexplore
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Sympatico
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://as.starware.com/dp/search?x=...h1DEyVER7+3F9MiYKibin+uMtxfVa/MHeQrwZR9nZOxGG
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Pop-Up Blocker BHO - {3C060EA2-E6A9-4E49-A530-D4657B8C449A} - C:\Program Files\Bell\Security Manager\pkR.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\GoogleToolbar4.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\GoogleToolbar4.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [SSA.exe] "C:\Program Files\Bell\Sympatico Security Advisor\SSA.exe" /AUTORUN
O4 - HKLM\..\Run: [Sympatico Security Manager] "C:\Program Files\Bell\Security Manager\Rps.exe"
O4 - HKLM\..\Run: [-FreedomNeedsReboot] "C:\Program Files\Bell\Security Manager\ZkRunOnceR.exe"
O4 - HKLM\..\Run: [VMSnap3] C:\WINDOWS\VMSnap3.EXE
O4 - HKLM\..\Run: [Domino] C:\WINDOWS\Domino.EXE
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\RunOnce: [IndexCleaner] "C:\Program Files\Bell\Security Manager\IdxClnR.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BitDownload] "C:\Program Files\BitDownload\BitDownload.exe" /minimized
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\RunOnce: [IndexCleaner] "C:\Program Files\Bell\Security Manager\IdxClnR.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\bigfix.exe
O4 - Global Startup: Install Pending Files.LNK = C:\Program Files\SIFXINST\SIFXINST.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: NkbMonitor.exe.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\network diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} (Microsoft Office Template and Media Control) - http://office.microsoft.com/templates/ieawsdc.cab
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} (Shockwave ActiveX Control) - http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1162151770718
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O18 - Protocol: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
O18 - Protocol: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll
O18 - Protocol: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Automatic LiveUpdate Scheduler - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: dvpapi - Authentium, Inc. - C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: CA Pest Patrol Realtime Protection Service (ITMRTSVC) - CA, Inc. - C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_0.EXE
O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
O23 - Service: Sympatico Security Manager Update Service (RPSUpdaterR) - Radialpoint Inc. - C:\Program Files\Bell\Security Manager\rpsupdaterr.exe
O23 - Service: Sympatico Security Manager Firewall (RP_FWS) - Bell Sympatico - C:\Program Files\Bell\Security Manager\Fws.exe

--
End of file - 10212 bytes

-- File Associations -----------------------------------------------------------

All associations okay.

-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R1 StarOpen - c:\windows\system32\drivers\staropen.sys
R3 ElbyDelay - c:\windows\system32\drivers\elbydelay.sys <Not Verified; Elaborate Bytes; CDRTools>

S3 pcouffin (VSO Software pcouffin) - c:\windows\system32\drivers\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
S3 vmfilter303 - c:\windows\system32\drivers\vmfilter303.sys <Not Verified; Vimicro Corporation; Filter for VM303 with Face Tracking>
S3 ZSMC303 (G-CUBE NOTEBOOK WEB CAMERA) - c:\windows\system32\drivers\usbvm303.sys <Not Verified; Vimicro Corporation; >

-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

S2 Automatic LiveUpdate Scheduler - "c:\program files\symantec\liveupdate\aluschedulersvc.exe" (file missing)

-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.

-- Scheduled Tasks -------------------------------------------------------------

2008-05-27 12:35:13 432 --a------ C:\WINDOWS\Tasks\XoftSpySE 2.job
2008-02-23 04:01:11 362 --a------ C:\WINDOWS\Tasks\XoftSpySE.job
2005-12-22 19:09:23 258 --a------ C:\WINDOWS\Tasks\ISP signup reminder 3.job

-- Files created between 2008-04-27 and 2008-05-27 -----------------------------

2008-05-27 13:59:12 0 d-------- C:\WINDOWS\LastGood
2008-05-21 12:38:19 0 d--hs---- C:\found.001
2008-04-29 12:18:48 41984 -----n--- C:\WINDOWS\Ctregrun.exe <Not Verified; Creative Technology Ltd; Creative On-line Registration System>
2008-04-29 12:15:17 0 d-------- C:\Program Files\Creative
2008-04-28 19:51:12 0 d-------- C:\Program Files\Motorola Phone Tools

-- Find3M Report ---------------------------------------------------------------

2008-05-27 14:12:13 0 d-------- C:\Documents and Settings\Owner\Application Data\BitDownload
2008-05-26 21:02:17 0 d-------- C:\Documents and Settings\Owner\Application Data\MSN6
2008-05-07 19:22:45 540 --a------ C:\WINDOWS\system32\PDBootState
2008-04-30 17:23:40 0 d-------- C:\Documents and Settings\Owner\Application Data\LimeWire
2008-04-29 12:18:40 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-04-29 12:08:10 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-04-19 15:49:10 0 d-------- C:\Documents and Settings\Owner\Application Data\Adobe

-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [09/07/2001 01:50 PM]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [02/11/2004 10:24 PM]
"SynTPLpr"="C:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [12/08/2004 03:13 PM]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [12/08/2004 03:12 PM]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [20/08/2004 05:55 PM]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [20/08/2004 05:51 PM]
"Recguard"="%WINDIR%\SMINST\RECGUARD.EXE" []
"SSA.exe"="C:\Program Files\Bell\Sympatico Security Advisor\SSA.exe" [27/03/2007 11:33 AM]
"Sympatico Security Manager"="C:\Program Files\Bell\Security Manager\Rps.exe" [27/08/2007 05:57 PM]
"-FreedomNeedsReboot"="C:\Program Files\Bell\Security Manager\ZkRunOnceR.exe" [27/08/2007 05:57 PM]
"VMSnap3"="C:\WINDOWS\VMSnap3.EXE" [29/08/2006 10:58 PM]
"Domino"="C:\WINDOWS\Domino.EXE" [28/06/2006 05:54 AM]
"BigDog303"="C:\WINDOWS\VM303_STI.exe" []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [13/10/2004 12:24 PM]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [04/08/2004 03:00 PM]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [29/07/2007 11:48 AM]
"BitDownload"="C:\Program Files\BitDownload\BitDownload.exe" [29/01/2007 12:30 PM]
"updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [30/03/2006 04:45 PM]
"NBJ"="C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" [02/06/2005 06:03 PM]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\runonce]
"IndexCleaner"="C:\Program Files\Bell\Security Manager\IdxClnR.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce]
"IndexCleaner"="C:\Program Files\Bell\Security Manager\IdxClnR.exe"

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [23/09/2005 10:05:26 PM]
BigFix.lnk - C:\Program Files\BigFix\bigfix.exe [22/03/2006 10:14:48 PM]
Install Pending Files.LNK - C:\Program Files\SIFXINST\SIFXINST.EXE [20/09/2005 12:35:38 PM]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [13/02/2001 2:01:04 AM]
NkbMonitor.exe.lnk - C:\Program Files\Nikon\PictureProject\NkbMonitor.exe [22/12/2007 5:05:00 PM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d402c4af-733e-11da-9ea1-806d6172696f}]
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe folder.htt 480 480

-- End of Deckard's System Scanner: finished at 2008-05-27 14:17:30 ------------

See less See more

Save

Status: Not open for further replies.

1 - 3 of 3 Posts

351bloor

Discussion Starter · #2 · May 29, 2008

;***********************************************************************************************************************************************************************************
ANALYSIS: 2008-05-29 04:17:52
PROTECTIONS: 1
MALWARE: 13
SUSPECTS: 1
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Sympatico Security Manager Anti-Virus 6.0.1 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00000431 adware/ist.istbar Adware No 1 Yes No HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{42F2C9BA-614F-47c0-B3E3-ECFD34EED658}
00035722 adware/comet Adware No 0 Yes No HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search\SearchAssistant
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][2].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][2].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][2].txt
00167430 Cookie/myaffiliateprogram TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
00168048 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
00168048 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][4].txt
00168048 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][3].txt
00168048 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][2].txt
00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][3].txt
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][10].txt
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][6].txt
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][9].txt
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][5].txt
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][4].txt
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][3].txt
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][2].txt
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][8].txt
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][7].txt
00194327 Cookie/Go TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][2].txt
00207338 Cookie/Target TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][4].txt
00207338 Cookie/Target TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][3].txt
00207338 Cookie/Target TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][2].txt
00207338 Cookie/Target TrackingCookie No 0 Yes No C:\Documents and Settings\Owner\Cookies\[email protected][1].txt
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.104d[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.104e[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.110[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.111[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1166[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1167[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.132d[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.132e[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.155c[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.155d[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1723[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1724[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1936[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1937[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1afd[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1afe[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1d2c[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1d2d[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1f4b[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.1f4c[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2112[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2113[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2341[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2342[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2508[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2509[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2621[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2622[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.27e8[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.27e9[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2a17[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2a18[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2bde[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2bdf[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2d7[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2d8[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2df1[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2df2[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2fb8[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.2fb9[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.31e7[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.31e8[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.33ae[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.33af[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.506[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.507[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.6cd[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.6ce[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.7e6[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.7e7[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.a90[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.a91[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.c57[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.c58[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.e86[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\jtktt-sympatico-ca.e87[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30000d0.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30000d1.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30000d5.003[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30000d6.003[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30000df.004[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30000e0.004[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30000f4.005[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30000f4.006[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30000f5.005[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30000f5.006[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300011d.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300011d.007[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300011e.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300011e.007[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300029c.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300029d.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30002a6.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30002a7.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30002bb.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30002bb.003[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30002bc.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30002bc.003[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30002e4.004[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30002e5.004[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30004d5.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30004d6.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30004ea.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30004ea.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30004eb.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected]sympatico.ca)\stm0x30004eb.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000513.003[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000514.003[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300069c.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300069d.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30006b1.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30006b1.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30006b2.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30006b2.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30006da.003[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30006db.003[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30007f3.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30007f4.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30008c4.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x30008c5.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000a84.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000a85.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000a8b.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000a8c.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000c4b.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000c4c.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000cba.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000cbb.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000e7a.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000e7b.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000e81.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3000e82.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001041.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001042.001[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300115a.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300115b.002[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001321.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001322.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001550.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001551.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001717.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001718.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300192a.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x300192b.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001af1.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001af2.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001d20.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\MSN\db30\Mail ([email protected])\stm0x3001d21.000[XoftSpySE 4.31 + Crack.rar][XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
00962932 Generic Malware Virus/Trojan No 0 No No C:\Documents and Settings\Owner\My Documents\BitDownload\XoftSpySE 4.31 + Crack.rar[XoftSpySE 4.31 + Crack\CRACK\ParetoLogic_Slayer_v1.2.exe]
02941681 Trj/WmaDownloader.G Virus/Trojan No 0 Yes Yes C:\Documents and Settings\Owner\Shared\03 Track 3.wma
02941681 Trj/WmaDownloader.G Virus/Trojan No 0 Yes Yes C:\Documents and Settings\Owner\Shared\03 Track 3 (black).wma
;===================================================================================================================================================================================
SUSPECTS
Sent Location
;===================================================================================================================================================================================
Yes C:\PROGRAM FILES\BELL\SECURITY MANAGER\RESOURCES\ZK_EN_US\ZKU_RSRC.DLL
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description
;===================================================================================================================================================================================
;===================================================================================================================================================================================

See less See more

Save

Ried

· #3 · May 29, 2008

Hello

Please see this link in our sticky topic IMPORTANT - Read This Before Posting For Malware Removal Help

Save

1 - 3 of 3 Posts

Status: Not open for further replies.

Top Contributors this Month