ComboFix 08-02-21 - mine 2008-02-20 22:17:23.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.434 [GMT -5:00]
Running from: C:\Documents and Settings\mine\Local Settings\Temporary Internet Files\Content.IE5\1XHU8ASY\ComboFix[1].exe
* Created a new restore point
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat
C:\Program Files\Internet Explorer\nipyradim89104.dll
C:\Program Files\outerinfo
C:\Program Files\outerinfo\Terms.rtf
C:\Temp\1cb
C:\Temp\1cb\syscheck.log
C:\Temp\isgTi19
C:\Temp\isgTi19\lPig.log
C:\WINDOWS\cookies.ini
C:\WINDOWS\Fonts\a.zip
C:\WINDOWS\system32\a1
C:\WINDOWS\system32\aoldia.dll
C:\WINDOWS\system32\drivers\sjauqnep.dat
C:\WINDOWS\system32\evytlbqm.dll
C:\WINDOWS\system32\ggvwwjem.ini
C:\WINDOWS\system32\gjjlm.ini
C:\WINDOWS\system32\gjjlm.ini2
C:\WINDOWS\system32\iiravyow.dll
C:\WINDOWS\system32\ksvnydd.dll
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\mejwwvgg.dll
C:\WINDOWS\system32\mljjg.dll
C:\WINDOWS\system32\nGpxx18
C:\WINDOWS\system32\nGpxx18\nGpxx182328.exe
C:\WINDOWS\system32\p9
C:\WINDOWS\system32\p9\liopud89104.exe
C:\WINDOWS\system32\pac.txt
C:\WINDOWS\system32\parcnxjl.dll
C:\WINDOWS\system32\poxmihov.ini
C:\WINDOWS\system32\tbdiekmm.dll
C:\WINDOWS\system32\tuvuspm.dll
C:\WINDOWS\system32\utryquww.dll
C:\WINDOWS\system32\v6
C:\WINDOWS\system32\w11
C:\WINDOWS\system32\w11\hiba3133.exe
C:\WINDOWS\system32\wssdgysu.ini
C:\WINDOWS\system32\wvurpno.dll
C:\WINDOWS\wr.txt
C:\WINDOWS\Fonts\'
----- BITS: Possible infected sites -----
hxxp://80.93.48.74
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\LEGACY_MEBTUVZZ
-------\mebtuvzz
((((((((((((((((((((((((( Files Created from 2008-01-21 to 2008-02-21 )))))))))))))))))))))))))))))))
.
2008-02-20 20:32 . 2007-12-04 07:54 95,608 --a------ C:\WINDOWS\system32\AvastSS.scr
2008-02-20 20:32 . 2007-12-04 09:55 94,544 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2008-02-20 20:32 . 2007-12-04 09:56 93,264 --a------ C:\WINDOWS\system32\drivers\aswmon.sys
2008-02-20 20:32 . 2007-12-04 09:51 42,912 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2008-02-20 20:32 . 2007-12-04 09:49 26,624 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2008-02-20 20:32 . 2007-12-04 09:53 23,152 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2008-02-20 20:31 . 2007-12-04 08:04 837,496 --a------ C:\WINDOWS\system32\aswBoot.exe
2008-02-20 20:31 . 2004-01-09 04:13 380,928 --a------ C:\WINDOWS\system32\actskin4.ocx
2008-02-18 20:31 . 2008-02-19 14:11 414 --ahs---- C:\WINDOWS\system32\olmxfluw.ini
2008-02-17 22:31 . 2008-02-17 22:33 <DIR> d-------- C:\Program Files\Easy MPEG AVI DIVX WMV RM to DVD
2008-02-17 22:31 . 2008-02-20 08:46 67 --a------ C:\WINDOWS\Easy Video to DVD.INI
2008-02-17 22:23 . 2008-02-17 22:24 1,250,147 --ahs---- C:\WINDOWS\system32\wuinducy.tmp
2008-02-17 21:36 . 2008-02-17 21:36 <DIR> d-------- C:\Program Files\Opera
2008-02-17 20:47 . 2008-02-17 20:47 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\AOL Downloads
2008-02-17 20:47 . 2008-02-17 20:47 29 --a------ C:\WINDOWS\atid.ini
2008-02-17 18:53 . 2008-02-17 19:10 <DIR> d-------- C:\Program Files\RegCure
2008-02-17 17:50 . 2008-02-18 08:05 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Authentium
2008-02-17 17:15 . 2008-02-17 17:15 <DIR> d-------- C:\Program Files\Microsoft Windows OneCare Live
2008-02-17 12:03 . 2008-02-17 12:03 <DIR> d-------- C:\Program Files\Common Files\RuleSpace
2008-02-17 12:01 . 2008-02-17 12:01 <DIR> d-------- C:\Program Files\Common Files\Aluria
2008-02-17 11:54 . 2008-02-17 11:54 <DIR> d-------- C:\Program Files\Common Files\Authentium
2008-02-17 02:33 . 2008-02-17 02:33 <DIR> d-------- C:\Program Files\Lavasoft
2008-02-17 02:33 . 2008-02-17 02:37 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-17 02:32 . 2008-02-17 02:32 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-02-17 02:10 . 2008-02-17 02:10 51,355 --a------ C:\WINDOWS\system32\muzika.xm
2008-02-17 01:07 . 2008-02-17 01:07 <DIR> d-------- C:\Program Files\Windows Defender
2008-02-16 08:26 . 2008-02-20 20:19 <DIR> d-------- C:\Documents and Settings\mine\Incomplete
2008-02-16 08:26 . 2008-02-16 08:26 147,456 --a------ C:\WINDOWS\system32\vbzip10.dll
2008-02-16 08:23 . 2008-02-16 19:53 <DIR> d-------- C:\Program Files\RABCO
2008-02-16 08:23 . 2008-02-16 08:23 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Rabio
2008-02-16 08:22 . 2008-02-20 22:18 <DIR> d-------- C:\Temp
2008-02-15 21:26 . 2008-02-15 23:37 <DIR> d-------- C:\my dvd
2008-02-14 13:06 . 2008-02-14 13:06 <DIR> d-------- C:\Documents and Settings\mine\Application Data\NewsLeecher
2008-02-12 00:37 . 2008-02-12 00:37 <DIR> d-------- C:\Program Files\LightScribe Diagnostic Utility
2008-02-11 20:24 . 2008-02-11 20:24 <DIR> d-------- C:\Program Files\Common Files\LightScribe
2008-02-11 20:03 . 2005-11-14 08:33 139,264 -ra------ C:\WINDOWS\system32\geneicon.dll
2008-02-11 20:03 . 2005-11-14 08:33 45,056 -ra------ C:\WINDOWS\system32\usbmonit.exe
2008-02-11 20:03 . 2005-11-14 08:33 36,864 -ra------ C:\WINDOWS\system32\deluidrv.exe
2008-02-11 20:03 . 2005-11-14 08:33 32,768 -ra------ C:\WINDOWS\system32\delentry.exe
2008-02-11 20:03 . 2005-11-14 08:33 24,720 -ra------ C:\WINDOWS\system32\drivers\geneuide.sys
2008-02-11 20:03 . 2005-11-14 08:33 445 -ra------ C:\WINDOWS\system32\iconcfg.ini
2008-02-11 19:20 . 2008-02-11 19:20 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\LightScribe
2008-02-11 18:52 . 2008-02-20 20:04 69 --a------ C:\WINDOWS\NeroDigital.ini
2008-02-10 21:26 . 2008-02-18 21:17 <DIR> d-------- C:\Documents and Settings\mine\Application Data\Ahead
2008-02-10 21:23 . 2008-02-10 21:23 <DIR> d-------- C:\Program Files\Nero
2008-02-10 21:23 . 2008-02-10 21:29 <DIR> d-------- C:\Program Files\Common Files\Ahead
2008-02-10 21:23 . 2008-02-10 21:23 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Nero
2008-02-09 23:29 . 2008-02-09 23:30 <DIR> d-------- C:\Program Files\Easy Avi Divx Xvid to DVD Burner
2008-02-09 23:29 . 2008-02-20 19:26 67 --a------ C:\WINDOWS\Easy Avi Divx Xvid to DVD Burner.INI
2008-02-09 17:01 . 2008-02-14 13:06 <DIR> d-------- C:\Program Files\NewsLeecher
2008-02-09 17:00 . 2008-02-09 17:00 <DIR> d-------- C:\Program Files\ParNRar
2008-02-03 11:15 . 2008-02-03 11:15 111 --a------ C:\WINDOWS\musicmaker.INI
2008-02-03 11:09 . 2004-08-11 20:53 38,912 --a------ C:\WINDOWS\system32\mgxasio.dll
2008-01-21 10:45 . 2008-01-21 10:47 <DIR> d-------- C:\Movies
2008-01-21 10:43 . 2008-01-21 10:43 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\TEMP
2008-01-21 10:43 . 2007-05-13 12:24 86,683 --a------ C:\WINDOWS\system32\pthreadGC2.dll