Jump to content

omerelinger

Members
  • Posts

    1
  • Joined

  • Last visited

Everything posted by omerelinger

  1. Hello and thanks to all helpers. today i foolishly installed a few dubious software to hide my ip.... after that i got some strange response from my Google chrome, first it said my computer is using a script and had my to a letters recognition test to prove am human. but after a short while it stopped loading sites altogether (now am using Firefox). soon after my malwarebytes console started popping a massage every few seconds: "Malwarebytes has successfully blocked access to a malicious ip 89.108.70.205" i uninstalled all of the software's and did a full scan with malwarebytes 1.45 and Mcafee Virusscan Enterprise 8.7.0i. but after both found a few things and removed then i still get the same massge every few seconds and my Google chrome still refuses to load web pages.... HELP!!! (i have attached all of the logs you ask for) here is my dss: DDS (Ver_10-03-17.01) - NTFSX64 Run by Omer at 0:44:24.32 on Wed 04/14/2010 Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_17 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.2046.1030 [GMT 3:00] ============== Running Processes =============== C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\atieclxx.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\EngineServer.exe C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe C:\Windows\system32\taskeng.exe C:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Windows\system32\taskhost.exe C:\Windows\system32\mfevtps.exe C:\Program Files (x86)\McAfee\Common Framework\naPrdMgr.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Windows\system32\sppsvc.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\McShield.exe C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\mfeann.exe C:\Windows\system32\conhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe C:\Program Files (x86)\Java\jre6\bin\jusched.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe C:\Program Files (x86)\McAfee\VirusScan Enterprise\shstat.exe C:\Windows\system32\WUDFHost.exe C:\Program Files (x86)\Razer\Abyssus\razerhid.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Windows\System32\svchost.exe -k WerSvcGroup D:\Program Files\Internet Download Manager2\IEMonitor.exe C:\Program Files (x86)\Razer\Abyssus\razerofa.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Users\Omer\Downloads\dds.scr C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe ============== Pseudo HJT Report =============== mLocal Page = c:\windows\syswow64\blank.htm uInternet Settings,ProxyServer = 716.vps.agava.net:8080 uInternet Settings,ProxyOverride = 716.vps.agava.net:8080 BHO: IDMIEHlprObj Class: {0055c089-8582-441b-a0bf-17b458c2a3a8} - d:\program files\internet download manager2\IDMIECC.dll BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files (x86)\avg\avg9\avgssie.dll BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files (x86)\mcafee\virusscan enterprise\scriptsn.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files (x86)\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files (x86)\google\googletoolbarnotifier\5.5.4723.1820\swg.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files (x86)\java\jre6\bin\jp2ssv.dll TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files (x86)\google\google toolbar\GoogleToolbar_32.dll uRun: [iDMan] d:\program files\internet download manager2\IDMan.exe /onboot uRun: [steam] "e:\program files\steam\steam.exe" -silent uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun uRun: [Google Update] "c:\users\omer\appdata\local\google\update\GoogleUpdate.exe" /c uRun: [swg] "c:\program files (x86)\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [RGSC] e:\program files\steam\steamapps\common\grand theft auto iv\rgsc\RGSCLauncher.exe /silent mRun: [VirtualCloneDrive] "c:\program files (x86)\elaborate bytes\virtualclonedrive\VCDDaemon.exe" /s mRun: [sunJavaUpdateSched] "c:\program files (x86)\java\jre6\bin\jusched.exe" mRun: [WinampAgent] "c:\program files (x86)\winamp\winampa.exe" mRun: [Adobe Reader Speed Launcher] "c:\program files (x86)\adobe\reader 9.0\reader\Reader_sl.exe" mRun: [Adobe ARM] "c:\program files (x86)\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [McAfeeUpdaterUI] "c:\program files (x86)\mcafee\common framework\udaterui.exe" /StartedFromRunKey mRun: [shStatEXE] "c:\program files (x86)\mcafee\virusscan enterprise\SHSTAT.EXE" /STANDALONE mRun: [startCCC] "c:\program files (x86)\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun mRun: [Abyssus] c:\program files (x86)\razer\abyssus\razerhid.exe mRun: [Malwarebytes' Anti-Malware] "c:\program files (x86)\malwarebytes' anti-malware\mbamgui.exe" /starttray mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: ForceActiveDesktopOn = 0 (0x0) mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: Download all links with IDM - d:\program files\internet download manager2\IEGetAll.htm IE: Download FLV video content with IDM - d:\program files\internet download manager2\IEGetVL.htm IE: Download with IDM - d:\program files\internet download manager2\IEExt.htm IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files (x86)\google\google toolbar\component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html IE: Se&nd to OneNote - c:\progra~1\micros~2\office14\ONBttnIE.dll/105 IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~2\micros~3\office11\REFIEBAR.DLL DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.1.71.0.cab DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab DPF: {40F576AD-8680-4F9E-9490-99D069CD665F} - hxxp://srtest-cdn.systemrequirementslab.com.s3.amazonaws.com/bin/sysreqlabdetect.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab BHO-X64: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files (x86)\avg\avg9\avgssiea.dll BHO-X64: WormRadar.com IESiteBlocker.NavFilter - No File BHO-X64: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files (x86)\mcafee\virusscan enterprise\x64\scriptsn.dll BHO-X64: scriptproxy - No File BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files (x86)\google\google toolbar\GoogleToolbar_64.dll BHO-X64: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.5.4723.1820\swg64.dll TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\google\google toolbar\GoogleToolbar_64.dll TB-X64: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File mRun-x64: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup ================= FIREFOX =================== FF - ProfilePath - c:\users\omer\appdata\roaming\mozilla\firefox\profiles\42whx62j.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - prefs.js: keyword.URL - hxxp://aa.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_aa&p= FF - component: c:\program files (x86)\mozilla firefox\components\Scriptff.dll FF - plugin: c:\program files (x86)\google\google earth\plugin\npgeplugin.dll FF - plugin: c:\program files (x86)\google\update\1.2.183.23\npGoogleOneClick8.dll FF - plugin: c:\program files (x86)\mozilla firefox\plugins\npwachk.dll FF - plugin: c:\users\omer\appdata\local\google\update\1.2.183.23\npGoogleOneClick8.dll FF - plugin: c:\users\omer\appdata\locallow\unity\webplayer\loader\npUnity3D32.dll FF - HiddenExtension: Java Console: No Registry Reference - c:\program files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} ---- FIREFOX POLICIES ---- c:\program files (x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pr ef", true); c:\program files (x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", ""); c:\program files (x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false); c:\program files (x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false); c:\program files (x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true); ============= SERVICES / DRIVERS =============== R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2010-2-25 469144] R3 Abyssus;Razer Abyssus;c:\windows\system32\drivers\Abyssus.sys [2010-3-31 10880] R3 amdkmdag;amdkmdag;c:\windows\system32\drivers\atipmdag.sys [2010-3-3 6402560] R3 amdkmdap;amdkmdap;c:\windows\system32\drivers\atikmpag.sys [2010-3-3 188928] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-4-13 24664] R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2010-2-25 119968] R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt64win7.sys [2009-11-17 294400] S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-2-25 77104] =============== Created Last 30 ================ 2010-04-13 21:39:18 20 ----a-w- c:\users\omer\defogger_reenable 2010-04-13 09:07:51 0 d-----w- c:\users\omer\appdata\roaming\Malwarebytes 2010-04-13 09:07:33 0 d-----w- c:\programdata\Malwarebytes 2010-04-13 09:07:32 24664 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-04-13 09:07:30 0 d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2010-04-13 08:18:14 600 ----a-w- c:\users\omer\PUTTY.RND 2010-04-13 08:07:16 0 d-----w- c:\program files (x86)\Free Hide IP 2010-04-13 07:39:20 0 d-----w- C:\CCProxy 2010-04-11 13:17:09 0 d-----w- c:\programdata\Media Center Programs 2010-04-08 19:33:41 103736 ----a-w- c:\windows\syswow64\PnkBstrB.exe 2010-04-08 19:33:15 66872 ----a-w- c:\windows\syswow64\PnkBstrA.exe 2010-04-08 19:33:01 669184 ----a-w- c:\windows\syswow64\pbsvc.exe 2010-04-08 09:12:01 0 d-----w- c:\programdata\EA Core 2010-04-08 09:11:49 0 d-----w- c:\programdata\Electronic Arts 2010-04-07 04:29:13 0 d-----w- c:\users\omer\appdata\roaming\The Creative Assembly 2010-04-05 12:41:36 0 d-----w- c:\windows\WiFi Engine 2010-04-01 08:41:55 368903057 ----a-w- c:\windows\MEMORY.DMP 2010-03-31 21:59:18 0 d-----w- c:\program files (x86)\IObit 2010-03-31 18:11:49 92672 ----a-w- c:\windows\system32\Abyssus.cpl 2010-03-31 18:11:47 10880 ----a-w- c:\windows\system32\drivers\Abyssus.sys 2010-03-31 18:07:41 0 d-----w- c:\program files (x86)\ATI 2010-03-31 18:07:39 0 d-----w- c:\program files (x86)\common files\ATI Technologies 2010-03-31 18:05:20 0 d-----w- C:\ATI 2010-03-31 17:35:40 0 d-----w- c:\programdata\ATI 2010-03-31 17:33:25 0 ----a-w- c:\windows\ativpsrm.bin 2010-03-31 17:27:15 0 d-----w- c:\program files\common files\ATI Technologies 2010-03-31 17:27:07 123408 ----a-w- c:\windows\system32\drivers\AtiHdmi.sys 2010-03-31 17:26:46 446464 ----a-w- c:\windows\system32\ATIDEMGX.dll 2010-03-31 17:26:44 55296 ----a-w- c:\windows\system32\coinst.dll 2010-03-31 17:26:08 0 d-----w- c:\program files (x86)\ATI Technologies 2010-03-31 17:24:30 0 d-----w- c:\program files\ATI Technologies 2010-03-31 17:24:29 0 d-----w- c:\program files\ATI ==================== Find3M ==================== 2010-04-13 09:00:10 66202 ----a-w- c:\windows\system32\perfc00D.dat 2010-04-13 09:00:10 354606 ----a-w- c:\windows\system32\perfh00D.dat 2010-03-17 21:00:00 22786 ----a-w- c:\program files (x86)\THETA.nfo 2010-03-04 17:48:53 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2010-03-03 04:23:10 6402560 ----a-w- c:\windows\system32\drivers\atipmdag.sys 2010-03-03 04:23:10 6402560 ----a-w- c:\windows\system32\drivers\atikmdag.sys 2010-03-03 04:16:38 143360 ----a-w- c:\windows\system32\atiapfxx.exe 2010-03-03 04:16:26 446464 ----a-w- c:\windows\syswow64\aticfx32.dll 2010-03-03 04:15:30 497152 ----a-w- c:\windows\system32\aticfx64.dll 2010-03-03 04:12:52 450560 ----a-w- c:\windows\system32\atieclxx.exe 2010-03-03 04:12:12 202752 ----a-w- c:\windows\system32\atiesrxx.exe 2010-03-03 04:10:34 120320 ----a-w- c:\windows\system32\atitmm64.dll 2010-03-03 04:10:12 420864 ----a-w- c:\windows\system32\atipdl64.dll 2010-03-03 04:10:04 356352 ----a-w- c:\windows\syswow64\atipdlxx.dll 2010-03-03 04:09:48 274432 ----a-w- c:\windows\syswow64\Oemdspif.dll 2010-03-03 04:09:40 12288 ----a-w- c:\windows\system32\atimuixx.dll 2010-03-03 04:09:34 59392 ----a-w- c:\windows\system32\atiedu64.dll 2010-03-03 04:09:28 43520 ----a-w- c:\windows\syswow64\ati2edxx.dll 2010-03-03 04:06:18 3131392 ----a-w- c:\windows\syswow64\atidxx32.dll 2010-03-03 04:04:46 18798080 ----a-w- c:\windows\system32\atio6axx.dll 2010-03-03 03:57:00 3800576 ----a-w- c:\windows\system32\atidxx64.dll 2010-03-03 03:46:42 3703808 ----a-w- c:\windows\syswow64\atiumdag.dll 2010-03-03 03:45:02 14226944 ----a-w- c:\windows\syswow64\atioglxx.dll 2010-03-03 03:39:46 4801536 ----a-w- c:\windows\system32\atiumd64.dll 2010-03-03 03:32:06 2716160 ----a-w- c:\windows\system32\atiumd6a.dll 2010-03-03 03:24:24 2993152 ----a-w- c:\windows\syswow64\atiumdva.dll 2010-03-03 03:20:22 43008 ----a-w- c:\windows\system32\aticalrt64.dll 2010-03-03 03:20:20 53248 ----a-w- c:\windows\syswow64\aticalrt.dll 2010-03-03 03:20:10 39936 ----a-w- c:\windows\system32\aticalcl64.dll 2010-03-03 03:20:08 53248 ----a-w- c:\windows\syswow64\aticalcl.dll 2010-03-03 03:19:56 4781568 ----a-w- c:\windows\system32\aticaldd64.dll 2010-03-03 03:18:56 3657728 ----a-w- c:\windows\syswow64\aticaldd.dll 2010-03-03 03:08:50 53248 ----a-w- c:\windows\system32\atimpc64.dll 2010-03-03 03:08:50 53248 ----a-w- c:\windows\system32\amdpcom64.dll 2010-03-03 03:08:44 52224 ----a-w- c:\windows\syswow64\atimpc32.dll 2010-03-03 03:08:44 52224 ----a-w- c:\windows\syswow64\amdpcom32.dll 2010-03-03 03:08:14 330752 ----a-w- c:\windows\system32\atiadlxx.dll 2010-03-03 03:08:06 237568 ----a-w- c:\windows\syswow64\atiadlxy.dll 2010-03-03 03:07:54 14848 ----a-w- c:\windows\system32\atig6pxx.dll 2010-03-03 03:07:48 12800 ----a-w- c:\windows\syswow64\atiglpxx.dll 2010-03-03 03:07:48 12800 ----a-w- c:\windows\system32\atiglpxx.dll 2010-03-03 03:07:44 16896 ----a-w- c:\windows\system32\atig6txx.dll 2010-03-03 03:07:38 15360 ----a-w- c:\windows\syswow64\atigktxx.dll 2010-03-03 03:07:32 188928 ----a-w- c:\windows\system32\drivers\atikmpag.sys 2010-03-03 03:06:50 36352 ----a-w- c:\windows\system32\atiuxp64.dll 2010-03-03 03:06:42 27648 ----a-w- c:\windows\syswow64\atiuxpag.dll 2010-03-03 03:06:34 28160 ----a-w- c:\windows\system32\atiu9p64.dll 2010-03-03 03:06:26 20480 ----a-w- c:\windows\syswow64\atiu9pag.dll 2010-03-03 03:05:42 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll 2010-02-28 18:39:51 834544 ----a-w- c:\windows\system32\drivers\sptd.sys 2010-02-25 19:55:46 201875 ----a-w- c:\windows\system32\atiicdxx.dat 2010-02-24 07:16:06 212864 ------w- c:\windows\system32\MpSigStub.exe 2010-02-23 08:22:50 1192960 ----a-w- c:\windows\system32\wininet.dll 2010-02-23 07:56:00 977920 ----a-w- c:\windows\syswow64\wininet.dll 2010-02-23 07:55:56 1225216 ----a-w- c:\windows\syswow64\urlmon.dll 2010-02-23 07:55:45 606208 ----a-w- c:\windows\syswow64\mstime.dll 2010-02-23 07:55:43 64512 ----a-w- c:\windows\syswow64\msfeedsbs.dll 2010-02-23 07:55:43 5964800 ----a-w- c:\windows\syswow64\mshtml.dll 2010-02-23 07:55:24 10978816 ----a-w- c:\windows\syswow64\ieframe.dll 2010-02-23 07:55:20 381440 ----a-w- c:\windows\syswow64\iedkcs32.dll 2010-02-02 08:36:47 2048 ----a-w- c:\windows\system32\tzres.dll 2010-02-02 07:45:54 2048 ----a-w- c:\windows\syswow64\tzres.dll 2010-01-19 09:05:57 424960 ----a-w- c:\windows\system32\secproc.dll 2010-01-19 09:05:57 422912 ----a-w- c:\windows\system32\secproc_isv.dll 2010-01-19 09:05:57 121856 ----a-w- c:\windows\system32\secproc_ssp_isv.dll 2010-01-19 09:05:57 121856 ----a-w- c:\windows\system32\secproc_ssp.dll 2010-01-19 09:00:44 305152 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe 2010-01-19 09:00:43 357888 ----a-w- c:\windows\system32\RMActivate_isv.exe 2010-01-19 09:00:37 356352 ----a-w- c:\windows\system32\RMActivate.exe 2010-01-19 09:00:37 306688 ----a-w- c:\windows\system32\RMActivate_ssp.exe 2010-01-18 23:29:31 85504 ----a-w- c:\windows\syswow64\secproc_ssp_isv.dll 2010-01-18 23:29:31 85504 ----a-w- c:\windows\syswow64\secproc_ssp.dll 2010-01-18 23:29:31 365568 ----a-w- c:\windows\syswow64\secproc_isv.dll 2010-01-18 23:29:30 369152 ----a-w- c:\windows\syswow64\secproc.dll 2010-01-18 23:28:33 324608 ----a-w- c:\windows\syswow64\RMActivate_isv.exe 2010-01-18 23:28:33 277504 ----a-w- c:\windows\syswow64\RMActivate_ssp_isv.exe 2010-01-18 23:28:30 320512 ----a-w- c:\windows\syswow64\RMActivate.exe 2010-01-18 23:28:30 280064 ----a-w- c:\windows\syswow64\RMActivate_ssp.exe 2010-01-18 19:30:43 419028713 ----a-w- C:\jail.zip 2010-01-14 17:06:20 47616 ----a-w- c:\windows\syswow64\pdf995mon64.dll 2009-12-19 17:50:53 32166 ----a-w- c:\windows\inf\perflib\040d\perfd.dat 2009-12-19 17:50:53 32166 ----a-w- c:\windows\inf\perflib\040d\perfc.dat 2009-12-19 17:50:53 229316 ----a-w- c:\windows\inf\perflib\040d\perfi.dat 2009-12-19 17:50:53 229316 ----a-w- c:\windows\inf\perflib\040d\perfh.dat 2009-07-14 05:37:38 31548 ----a-w- c:\windows\inf\perflib\0409\perfd.dat 2009-07-14 05:37:38 31548 ----a-w- c:\windows\inf\perflib\0409\perfc.dat 2009-07-14 05:37:38 291294 ----a-w- c:\windows\inf\perflib\0409\perfi.dat 2009-07-14 05:37:38 291294 ----a-w- c:\windows\inf\perflib\0409\perfh.dat 2009-07-14 04:54:24 174 --sha-w- c:\program files\desktop.ini 2009-07-14 04:54:24 174 --sha-w- c:\program files (x86)\desktop.ini 2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfi.dat 2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfh.dat 2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfd.dat 2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfc.dat 2009-06-10 20:44:08 9633792 --sha-r- c:\windows\fonts\StaticCache.dat 2009-07-14 01:39:53 398848 --sha-w- c:\windows\winsxs\amd64_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_4d4d1f2f696639a2\WinMail.exe 2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe ============= FINISH: 0:46:55.94 =============== Attach.zip
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.