Virtumonde [Archive] - Safer- Networking Forums. Combofix Log. Combo. Fix 0. 9- 0. 1- 0. Michael 2. 00. 9- 0. NTFSx. 86. Microsoft Windows XP Professional 5. Win rar software Full win rar software Download 2308 kb/s win rar software 1434 kb. HJT Install working rar ยป applications software windows 0 8 years 10 MB 0 0. HiJackThis Logs [RESOLVED]. Install ewido anti-malware. \Emule\MSN Group Downloader 1.1 Crack WORKING.rar/crack.exe -> Downloader.Delf.agd .
GMT - 5: 0. 0]. Running from: c: \documents and settings\Michael\Desktop\Combo. Fix. exe. Command switches used : : c: \documents and settings\Michael\Desktop\Combo. Fix. exe. AV: AVG Anti- Virus Free *On- access scanning enabled* (Updated). FW: Outpost Firewall Pro *disabled*. Created a new restore point. WARNING - THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))). All Users\Application Data\Microsoft\Network\Downloader\qmgr. All Users\Application Data\Microsoft\Network\Downloader\qmgr. Michael\Application Data\APPATC~1c: \documents and settings\Michael\Application Data\NI. GSCNSc: \documents and settings\Michael\Application Data\NI. GSCNS\dl. inic: \documents and settings\Michael\Application Data\NI. GSCNS\settings. inic: \documents and settings\Michael\Application Data\Speed. Runnerc: \documents and settings\Michael\Application Data\Speed. Runner\config. cfgc: \documents and settings\Michael\Local Settings\Temporary Internet Files\fbk. Michael\Local Settings\Temporary Internet Files\ijjistarter. Fx. B. exec: \program files\asembl~1c: \temp\PRE4. App. Patch\Custom\{deb. GXrp. dllc: \windows\system. XGffii. inic: \windows\system. XGffii. ini. 2c: \windows\system. X3i. 19c: \windows\system. BITS: Possible infected sites - -- -- hxxp: //childhe. Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))).- -- -- -- \Legacy_CMDSERVICE- -- -- -- \Legacy_NETWORK_MONITOR- -- -- -- \Legacy_RPCSE- -- -- -- \Legacy_VFILT- -- -- -- \Service_cmd. Service- -- -- -- \Service_RPCSE- -- -- -- \Service_VFILT((((((((((((((((((((((((( Files Created from 2. DIR> d- -- -- -- - c: \program files\Trend Micro. DIR> d- -- -- -- - c: \program files\Spybot - Search & Destroy. DIR> d- -- -- -- - c: \documents and settings\All Users\Application Data\Spybot - Search & Destroy. DIR> d- -- -- -- - c: \documents and settings\Michael\Application Data\Twain. DIR> d- -- -- -- - c: \program files\Webtools. DIR> d- -- -- -- - c: \program files\foobar. DIR> d- -- -- -- - c: \documents and settings\Michael\Application Data\foobar. DIR> d- -- -- -- - c: \program files\Un. H Solutions.(((((((((((((((((((((((((((((((((((((((( Find. M Report )))))))))))))))))))))))))))))))))))))))))))))))))))). Steam. 20. 09- 0. All Users\Application Data\TEMP2. All Users\Application Data\Google Updater. Michael\Application Data\u. Torrent. 20. 08- 1. War Craft III2. 00. Pnk. Bstr. K. sys. Sc. Unin. exe. 20. Michael\Application Data\Open. Office. org. 22. 00. Michael\Application Data\Xfire. Xfire. 20. 08- 1. Win. Vorbis. 20. 08- 1. Speed. Fan. 20. 08- 1. Lavasoft. 20. 08- 1. All Users\Application Data\Lavasoft. Common Files\Wise Installation Wizard. MSXML 6. 0. 20. 08- 1. Install. Shield Installation Information. Bethesda Softworks. All Users\Application Data\Fallout. MSBuild. 20. 08- 1. Reference Assemblies. Michael\Application Data\Pnk. Bstr. K. sys.((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))).*Note* empty entries & legit default entries are not shown REGEDIT4[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Current. Version\Run]"Msn. Msgr"="c: \program files\MSN Messenger\Msn. Msgr. Exe" [2. 00. Steam"="c: \program files\steam\steam. DAEMON Tools"="c: \program files\DAEMON Tools\daemon. MSMSGS"="c: \program files\Messenger\msmsgs. Aim. 6"="c: \program files\AIM6\aim. IGN\Download Manager\DLM. Yahoo! Pager"="c: \progra~1\Yahoo!\MESSEN~1\YAHOOM~1. EXE" [2. 00. 7- 0. Spybot. SD Tea. Timer"="c: \program files\Spybot - Search & Destroy\Tea. Timer. exe" [2. 00. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Current. Version\Run]"Nv. Cpl. Daemon"="c: \windows\system. Nv. Cpl. dll" [2. D- Link Air Utility"="c: \program files\D- Link\Air Utility\Air. CFG. exe" [2. 00. ANIWZCSService"="c: \program files\Alpha Networks\ANIWZCS Service\WZCSLDR. Download. Accelerator"="c: \program files\DAP\DAP. EXE" [2. 00. 7- 0. Quick. Time Task"="c: \program files\Quick. Time\qttask. exe" [2. Sun. Java. Update. Sched"="c: \program files\Java\jre. IMJPMIG8. 1"="c: \windows\IME\imjp. IMJPMIG. EXE" [2. MSPY2. 00. 2"="c: \windows\system. IME\PINTLGNT\Im. Sc. Inst. exe" [2. 00. PHIME2. 00. 2ASync"="c: \windows\system. IME\TINTLGNT\TINTSETP. EXE" [2. 00. 6- 0. PHIME2. 00. 2A"="c: \windows\system. IME\TINTLGNT\TINTSETP. EXE" [2. 00. 6- 0. Nv. Media. Center"="c: \windows\system. Nv. Mc. Tray. dll" [2. Outpost Firewall"="c: \progra~1\Agnitum\OUTPOS~1. Outpost. Feed. Back"="c: \progra~1\Agnitum\OUTPOS~1. NVRaid. Service"="c: \windows\system. Adobe Reader Speed Launcher"="c: \program files\Adobe\Reader 8. Reader\Reader_sl. AVG8_TRAY"="c: \progra~1\AVG\AVG8\avgtray. Winamp. Agent"="c: \program files\Winamp\winampa. Sound. Man"="SOUNDMAN. EXE" [2. 00. 5- 0. SOUNDMAN. EXE]"nwiz"="nwiz. HKEY_USERS\. DEFAULT\Software\Microsoft\Windows\Current. Version\Run]"msnmsgr"="c: \program files\MSN Messenger\msnmsgr. All Users\Start Menu\Programs\Startup\Win. Cinema Manager. lnk - c: \program files\Sandisk\Common\Bin\Win. Cinema. Mgr. exe [2. Microsoft Office. Microsoft Office\Office\OSA9. EXE [1. 99. 9- 0. HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers. COMBIN~1\Filters\FFDShow\ff_vfw. VIDC. XFR1"= xfcodec. HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]Boot. Execute REG_MULTI_SZ autocheck autochk *\0lsdelete[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]Authentication Packages REG_MULTI_SZ msv. HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\Authorized. Applications\List]"%windir%\\system. Program Files\\EA GAMES\\Battlefield 2\\BF2. Program Files\\Electronic Arts\\Battlefield 2. BF2. 14. 2. exe"="c: \\Program Files\\u. Torrent\\utorrent. Program Files\\MSN Messenger\\msnmsgr. Program Files\\MSN Messenger\\livecall. Program Files\\Xfire\\xfire. Program Files\\Cossacks\\dmcr. Program Files\\D- Link\\Air Utility\\Air. CFG. exe"="c: \\Program Files\\DAP\\DAP. Program Files\\Steam\\Steam. Program Files\\World of Warcraft\\Wo. W- 2. 0. 3- en. US- downloader. Program Files\\World of Warcraft\\Wo. W- 2. 0. 3. 6. 29. US- downloader. exe"="c: \\Program Files\\BYOND\\bin\\byond. Program Files\\Steam\\steamapps\\jakejhunter@hotmail. Program Files\\Steam\\steamapps\\jakejhunter@hotmail. Program Files\\Frost. Wire\\Frost. Wire. Program Files\\World of Warcraft\\Background. Downloader. exe"="c: \\Program Files\\Game. Spy Arcade\\Aphex. Program Files\\Common Files\\AOL\\Loader\\aolload. Program Files\\Yahoo!\\Messenger\\Yahoo. Messenger. exe"="c: \\Program Files\\Yahoo!\\Messenger\\YServer. Program Files\\Messenger\\msmsgs. WINDOWS\\system. 32\\Pnk. Bstr. A. exe"="c: \\WINDOWS\\system. Pnk. Bstr. B. exe"="c: \\Program Files\\Electronic Arts\\Crytek\\Crysis\\Bin. Crysis. exe"="c: \\Program Files\\Electronic Arts\\Crytek\\Crysis\\Bin. Crysis. Dedicated. Server. exe"="c: \\Program Files\\Mozilla Firefox\\firefox. Program Files\\Veoh Networks\\Veoh\\Veoh. Client. exe"="c: \\Program Files\\Aspyr\\Guitar Hero III\\GH3. Network Diagnostic\\xpnetdiag. Program Files\\War Craft III\\Frozen Throne. Program Files\\Steam\\steamapps\\bladehappy\\team fortress 2\\hl. Program Files\\Skype\\Phone\\Skype. Program Files\\Aeria. Games\\Project Torque\\Project. Torque. bin"="c: \\Aeria. Games\\1. 2Sky\\Twelve. Sky. exe"="c: \\Program Files\\AVG\\AVG8\\avgupd. Program Files\\AVG\\AVG8\\avgemc. Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw. HAMACHI 1. 5. exe"="c: \\Program Files\\Steam\\steamapps\\bladehappy\\half- life 2 deathmatch\\hl. Program Files\\Steam\\steamapps\\softsd\\counter- strike source\\hl. Program Files\\Steam\\steamapps\\bladehappy\\source sdk base\\hl. Program Files\\Rohan\\rohanclient. WINDOWS\\system. 32\\rserver. Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw. Program Files\\m. IRC\\mirc. exe"="c: \\Documents and Settings\\Michael\\Desktop\\Lackey. CCG\\Lackey. CCG\\Lackey. CCG. exe"="c: \\Documents and Settings\\All Users\\Application Data\\Nexon. US\\NGM\\NGM. exe"="c: \nexon\Combat Arms\Combat. Arms. exe"= c: \nexon\Combat Arms\Combat. Arms. exe: *Enabled: Combat. Arms. exe"c: \nexon\Combat Arms\Engine. Combat Arms\Engine. Enabled: Engine. exe"c: \\Nexon\\Combat Arms\\NMService. Program Files\\alaplaya\\S4. League\\S4. Client. Documents and Settings\\Michael\\My Documents\\Gunz\\Gunz\\Gunz. Launcher. exe"="c: \\Documents and Settings\\Michael\\My Documents\\Gunz\\Gunz\\Gunz. Program Files\\THQ\\Dawn of War\\W4. Ntreev\\Grand Chase\\main. Program Files\\Bethesda Softworks\\Fallout 3\\Fallout. Documents and Settings\\Michael\\My Documents\\My Completed Downloads\\zunesetuppkg- x. Program Files\\Starcraft\\Star. Craft. exe"=[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\Globally. Open. Ports\List]"3. TCP"= 3. 72. 4: TCP: Blizzard Downloader"6. TCP"= 6. 11. 2: TCP: Blizzard Downloader"1. TCP"= 1. 18. 71: TCP: utorrent. R1 Avg. Ldx. 86; AVG AVI Loader Driver x. Drivers\avgldx. 86. R1 raddrvv. 3; raddrvv. R2 avg. 8emc; AVG8 E- mail Scanner; c: \progra~1\AVG\AVG8\avgemc. R2 avg. 8wd; AVG8 Watch. Dog; c: \progra~1\AVG\AVG8\avgwdsvc. R2 Avg. Tdi. X; AVG8 Network Redirector; c: \windows\system. Drivers\avgtdix. sys [2. R2 RServer. 3; Radmin Server V3; "c: \windows\system. RServer. 3. exe" /service [2. R2 Viewpoint Manager Service; Viewpoint Manager Service; "c: \program files\Viewpoint\Common\Viewpoint. Service. exe" [2. R3 mirrorv. 3; mirrorv. DRIVERS\rminiv. 3. R3 PRISM; D- Link Air Wireless Prism. Adapter Driver; c: \windows\system. DRIVERS\PRISMNDS. S3 ADBLOCK. DLL; Outpost Firewall Plug. In (ADBLOCK. DLL); \??\c: \progra~1\Agnitum\OUTPOS~1. ADBLOCK. DLL [2. 00. S3 ARP. DLL; Outpost Firewall Plug. In (ARP. DLL); \??\c: \progra~1\Agnitum\OUTPOS~1. ARP. DLL [2. 00. 6- 0. S3 CCCP1. 06; D- Link CIF Webcam; c: \windows\system. DRIVERS\cccp. 10. S3 CONTENT. DLL; Outpost Firewall Plug. In (CONTENT. DLL); \??\c: \progra~1\Agnitum\OUTPOS~1.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
September 2016
Categories |