anComboFix 08-01-23.1B - Owner 2008-01-24 16:30:19.3 - NTFSx86
Running from: C:\Documents and Settings\Owner\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\Owner\Desktop\CFScript.txt
- Created a new restore point
FILE
C:\WINDOWS{6D6196E7-5EBD-4F4F-9466-E72126CB61BD}.dat
C:\WINDOWS{D90693EE-0F69-4672-B6DC-D0C46E4548FF}.dat
C:\WINDOWS\system32\yaywuvu.dll
.
The following files were disabled during the run:
C:\WINDOWS\system32\sockspy.dll
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS{6D6196E7-5EBD-4F4F-9466-E72126CB61BD}.dat
C:\WINDOWS{D90693EE-0F69-4672-B6DC-D0C46E4548FF}.dat
.
((((((((((((((((((((((((( Files Created from 2007-12-24 to 2008-01-24 )))))))))))))))))))))))))))))))
.
2008-01-24 15:52 . 2007-05-30 07:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-01-22 16:53 . 2008-01-22 17:05 d-------- C:\Program Files\Enigma Software Group
2008-01-22 11:48 . 2007-12-04 07:54 95,608 --a------ C:\WINDOWS\system32\AvastSS.scr
2008-01-22 11:48 . 2007-12-04 09:55 94,544 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2008-01-22 11:48 . 2007-12-04 09:56 93,264 --a------ C:\WINDOWS\system32\drivers\aswmon.sys
2008-01-22 11:48 . 2007-12-04 09:51 42,912 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2008-01-22 11:48 . 2007-12-04 09:49 26,624 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2008-01-22 11:48 . 2007-12-04 09:53 23,152 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2008-01-22 11:47 . 2007-12-04 08:04 837,496 --a------ C:\WINDOWS\system32\aswBoot.exe
2008-01-22 11:47 . 2004-01-09 04:13 380,928 --a------ C:\WINDOWS\system32\actskin4.ocx
2008-01-19 08:14 . 2008-01-24 16:45 81,984 --a------ C:\WINDOWS\system32\bdod.bin
2008-01-17 15:08 . 2008-01-17 15:08 d-------- C:\Program Files\CCleaner
2008-01-17 13:39 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\NirCmd.exe
2008-01-17 13:18 . 2008-01-17 13:23 d-------- C:\Program Files\XoftSpySE
2008-01-16 11:55 . 2008-01-16 11:56 d-------- C:\WINDOWS\system32\Go Travel Direct dir
2008-01-16 11:55 . 2008-01-16 11:55 201,728 --a------ C:\WINDOWS\system32\Go Travel Direct.scr
2008-01-16 10:43 . 2004-08-04 00:58 14,848 --a------ C:\WINDOWS\system32\drivers\kbdhid.sys
2008-01-16 10:43 . 2004-08-04 00:58 14,848 --a–c— C:\WINDOWS\system32\dllcache\kbdhid.sys
2008-01-16 10:43 . 2001-08-17 13:48 12,160 --a------ C:\WINDOWS\system32\drivers\mouhid.sys
2008-01-16 10:43 . 2001-08-17 13:48 12,160 --a–c— C:\WINDOWS\system32\dllcache\mouhid.sys
2008-01-16 09:59 . 2001-08-17 14:02 9,600 --a------ C:\WINDOWS\system32\drivers\hidusb.sys
2008-01-16 09:59 . 2001-08-17 14:02 9,600 --a–c— C:\WINDOWS\system32\dllcache\hidusb.sys
2008-01-16 07:54 . 2008-01-22 11:43 d-------- C:\Program Files\Free Download Manager
2008-01-15 10:28 . 2008-01-15 10:22 109,568 --a------ C:\WINDOWS\system32\pxinsi64.exe
2008-01-15 10:28 . 2008-01-15 10:22 108,544 --a------ C:\WINDOWS\system32\pxcpyi64.exe
2008-01-15 08:19 . 2008-01-20 10:31 d-------- C:\Program Files\SUPERAntiSpyware
2008-01-11 07:52 . 2008-01-11 07:52 d-------- C:\Program Files\Alwil Software
2008-01-10 15:47 . 2008-01-22 10:13 d-------- C:\VundoFix Backups
2008-01-10 15:18 . 2008-01-10 16:47 131,072 --a------ C:\WINDOWS\system32\datestamp.dll
2008-01-10 15:16 . 2008-01-10 16:49 d-------- C:\WINDOWS\system32\ZeroSpyware
2008-01-10 15:14 . 2008-01-10 16:49 d-------- C:\Program Files\FBM Software
2008-01-09 19:21 . 2008-01-09 19:21 10,624 --a------ C:\WINDOWS\system32\drivers\pxark.sys
2008-01-09 19:20 . 2008-01-09 20:17 d-------- C:\Program Files\PrevxCSI
2008-01-09 07:34 . 2008-01-09 09:39 15,360 --a–c— C:\WINDOWS\system32\dllcache\ctfmon.exe
2008-01-09 07:34 . 2008-01-09 09:39 15,360 --a------ C:\WINDOWS\system32\ctfmon.exe
2008-01-09 07:24 . 2008-01-09 11:22 d-------- C:\WINDOWS\system32\xv2
2008-01-09 07:24 . 2008-01-15 08:39 d-------- C:\WINDOWS\system32\edcA18
2008-01-09 07:24 . 2008-01-09 15:34 d-------- C:\WINDOWS\system32\ap3
2008-01-09 07:24 . 2008-01-09 07:24 d-------- C:\TEMP\Ryuan1
2008-01-08 16:13 . 2006-11-12 11:39 483,328 --a------ C:\WINDOWS\system32\actskn45.ocx
2008-01-08 16:08 . 2008-01-08 16:08 d-------- C:\TEMP\BSPROINSTALL
2008-01-08 16:07 . 2008-01-08 16:08 3,642,935 --a------ C:\TEMP\BSPROINSTALL.zip
2008-01-08 16:01 . 2008-01-08 16:02 312,820,720 --a------ C:\TEMP\X12-30107.exe
2008-01-08 12:15 . 2008-01-08 12:15 0 --a------ C:\WINDOWS\nsreg.dat
2008-01-08 12:14 . 2008-01-24 15:29 d-------- C:\Program Files\Mozilla Thunderbird
2008-01-02 16:23 . 2008-01-02 16:24 1,177 --a------ C:\WINDOWS\system32\imbrmute.ini
2008-01-02 07:59 . 2008-01-02 07:59 147,456 --a------ C:\WINDOWS\system32\vbzip10.dll
2008-01-01 19:31 . 2008-01-01 19:31 d-------- C:\Program Files\directx
2007-12-30 21:40 . 2007-12-30 21:40 d-------- C:\Program Files\Common Files\AVSMedia
2007-12-29 07:39 . 2007-12-29 07:39 d-------- C:\Program Files\Microsoft Silverlight
2007-12-24 19:40 . 2000-05-22 00:00 647,872 --a------ C:\WINDOWS\system32\MSCOMCT2.OCX
2007-12-24 19:40 . 2004-08-30 14:25 438,272 --a------ C:\WINDOWS\system32\vp6vfw.dll
2007-12-24 19:40 . 2004-12-10 10:06 327,680 --a------ C:\WINDOWS\system32\vp6dec.ax
2007-12-24 19:40 . 2003-09-05 12:07 168,960 --a------ C:\WINDOWS\system32\XCDZIP35.OCX
2007-12-24 19:40 . 2005-01-21 12:20 118,832 --a------ C:\WINDOWS\system32\SHW32.DLL
2007-12-24 18:43 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2007-12-24 18:43 . 2007-07-30 19:19 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-01-19 13:55 --------- d-----w C:\Program Files\Trend Microd the combofix log
