Antivirus System Pro

Hello

I have a laptop running Windows XP. Yesterday morning I got the Antivirus System Pro virus somehow and tried running the Malwarebytes program, or any program (including task manger) and everytime I do it comes up with a "System Warning" alerting me that program is infected, which I know is just the virus talking. My next logical step would be trying to run the removal program in Safe Mode, but am hesitant to do so until I get your advice. I would also furnish a HijackThis report, but I would think my attempts to install that so I can run a report would just end up with that false "System Warning".

Thank you so much to whichever kind soul helps me in this ordeal.

Please download ComboFix from BleepingComputer.com

Rename ComboFix.exe to commy.exe before you save it to your Desktop

• Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools A guide to do this can be found here
  
• Click Start>Run then copy paste the following command into the Run box & click OK "%userprofile%\desktop\commy.exe" /stepdel
  
• As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  
• Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console

Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

• Click on Yes, to continue scanning for malware.
  
• When finished, it shall produce a log for you. Please include the contents of C:\ComboFix.txt in your next reply.
  

I would also like to see a list of installed programs, so please do this:
Click Start > Run then copy/paste the following single-line command into the Run box and click OK:

C:\Qoobox\Add-Remove Programs.txt

In your next reply, please include the ComboFix log and the Add-Remove Programs log.

Hello

if i understand you right, i loaded commy.exe onto my desktop, do i need to type into the Start->Run command the following???

"%userprofile%\desktop\commy.exe" /stepdel

exactly as that is typed above? or do i need to replace userprofile with my name as appears when i log into my computer

second, i seem to start the ComboFix ok, but is a subprogram called "pef.exe" part of the process? because if it is, i get the same "System Warning" that i mentioned when i tried to install the Malwarebytes or view my Task Manager.

should i attempt the ComboFix in Safe Mode?

You can try ComboFix in Safe Mode.

On the Start > Run, do not replace the %userprofile%, because Windows knows what profile it actually is. That is called an environment variable, which are shortcut phrases in Windows.

COMBOFIX LOG

ComboFix 09-10-20.03 - Max Slobodin_2 10/21/2009 20:42.1.2 - NTFSx86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.767.588 [GMT -4:00]
Running from: c:\documents and settings\Max Slobodin_2\desktop\commy.exe
Command switches used :: /stepdel
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Max Slobodin_2\Application Data\Desktopicon
c:\program files\jccfry
c:\program files\jccfry\vfvesysguard.exe
c:\windows\Installer\19041dec.msp
c:\windows\Installer\19041ded.msp
c:\windows\Installer\19041dee.msp
c:\windows\Installer\19041def.msp
c:\windows\Installer\19041df0.msp
c:\windows\Installer\19041df1.msp
c:\windows\Installer\19041df2.msp
c:\windows\Installer\19041df3.msp
c:\windows\Installer\19041df4.msp
c:\windows\Installer\1f5bb841.msp
c:\windows\Installer\1f5bb842.msp
c:\windows\Installer\1f5bb843.msp
c:\windows\Installer\1f5bb844.msp
c:\windows\Installer\1f5bb845.msp
c:\windows\Installer\1f5bb846.msp
c:\windows\Installer\1f5bb847.msp
c:\windows\Installer\1f5bb848.msp
c:\windows\Installer\1f5bb849.msp
c:\windows\Installer\226854c9.msp
c:\windows\Installer\226854ca.msp
c:\windows\Installer\226854cb.msp
c:\windows\Installer\226854cc.msp
c:\windows\Installer\226854cd.msp
c:\windows\Installer\226854ce.msp
c:\windows\Installer\226854cf.msp
c:\windows\Installer\226854d0.msp
c:\windows\Installer\226854d1.msp
c:\windows\Installer\23f56bc5.msp
c:\windows\Installer\23f56bc6.msp
c:\windows\Installer\23f56bc7.msp
c:\windows\Installer\23f56bc8.msp
c:\windows\Installer\23f56bc9.msp
c:\windows\Installer\23f56bca.msp
c:\windows\Installer\23f56bcb.msp
c:\windows\Installer\23f56bcc.msp
c:\windows\Installer\23f56bcd.msp
c:\windows\Installer\847ac58.msp
c:\windows\system32\drivers\ndisrd.sys
c:\documents and settings\Max Slobodin_2\Application Data\Desktopicon\eBayShortcuts.exe
c:\program files\AWS\WEATHE~1\MINIBU~1.DLL
c:\windows\syssvc.exe
c:\windows\system32\iehelper.dll
c:\windows\system32\lsp.dll

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_ndisrd


((((((((((((((((((((((((( Files Created from 2009-09-22 to 2009-10-22 )))))))))))))))))))))))))))))))
.

2009-10-22 00:23 . 2009-10-22 00:26 -------- d-----w- C:\commy
2009-10-19 13:58 . 2009-10-19 13:58 -------- d-----w- c:\documents and settings\Max Slobodin_2\Application Data\AVG8
2009-10-18 07:33 . 2009-10-18 07:33 -------- d-----w- c:\documents and settings\Max Slobodin_2\Local Settings\Application Data\PCHealth
2009-09-23 02:59 . 2007-04-12 18:19 129024 ----a-w- c:\windows\system32\AVERM.dll
2009-09-23 02:59 . 2006-09-26 17:57 28672 ----a-w- c:\windows\system32\AVEQT.dll
2009-09-23 02:59 . 2009-09-23 03:00 -------- d-----w- c:\program files\Ultra Video Splitter
2009-09-23 02:25 . 2009-09-23 02:32 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-09-23 02:25 . 2009-09-23 02:25 -------- d-----w- c:\program files\Boilsoft Video Joiner

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-22 00:57 . 2009-05-15 03:21 -------- d-----w- c:\program files\Taskbar Shuffle
2009-10-18 07:11 . 2009-08-10 02:12 -------- d-----w- c:\documents and settings\Max Slobodin_2\Application Data\vlc
2009-10-18 04:38 . 2008-03-14 03:24 -------- d-----w- c:\documents and settings\Max Slobodin_2\Application Data\uTorrent
2009-10-15 18:28 . 2009-06-25 06:08 -------- d-----w- c:\documents and settings\Max Slobodin_2\Application Data\dvdcss
2009-10-13 06:24 . 2008-03-22 06:06 -------- d-----w- c:\program files\PeerGuardian2
2009-10-10 01:52 . 2008-08-18 04:29 -------- d-----w- c:\documents and settings\All Users\Application Data\Soulseek
2009-09-20 18:10 . 2009-09-20 18:10 36480 ----a-w- c:\windows\system32\drivers\srenum.sys
2009-09-17 05:19 . 2006-04-24 01:28 240608 ----a-w- c:\documents and settings\Max Slobodin_2\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-09-13 07:34 . 2008-12-22 21:13 -------- d-----w- c:\program files\Microsoft Silverlight
2009-09-11 14:33 . 2003-03-31 19:00 133632 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 20:45 . 2003-03-31 19:00 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-08-30 07:10 . 2009-08-30 07:10 -------- d-----w- c:\program files\MSXML 6.0
2009-08-29 07:36 . 2003-03-31 19:00 832512 ----a-w- c:\windows\system32\wininet.dll
2009-08-29 07:36 . 2005-08-31 03:05 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-08-29 07:36 . 2003-03-31 19:00 17408 ----a-w- c:\windows\system32\corpol.dll
2009-08-26 08:16 . 2003-03-31 19:00 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-05 09:11 . 2002-12-12 05:14 204800 ----a-w- c:\windows\system32\mswebdvd.dll
2009-08-04 13:58 . 2003-03-31 19:00 2136064 ----a-w- c:\windows\system32\ntoskrnl.exe
2009-08-04 13:13 . 2002-08-29 01:04 2015744 ----a-w- c:\windows\system32\ntkrnlpa.exe
2008-01-19 10:55 . 2007-12-26 21:23 72 --sh--w- c:\windows\S8E7535DF.tmp
2006-05-03 09:06 . 2008-01-19 11:43 163328 --sh--r- c:\windows\system32\flvDX.dll
2007-02-21 10:47 . 2008-01-19 11:43 31232 --sh--r- c:\windows\system32\msfDX.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PeerGuardian"="c:\program files\PeerGuardian2\pg2.exe" [2005-09-18 1421824]
"Taskbar Shuffle"="c:\program files\Taskbar Shuffle\taskbarshuffle.exe" [2008-04-17 818176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2003-10-08 159744]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2003-11-16 335872]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2003-07-17 184412]
"eabconfg.cpl"="c:\program files\HPQ\Quick Launch Buttons\EabServr.exe" [2003-11-18 241664]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2005-02-16 180269]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"="c:\program files\Google\Gmail Notifier\G001-1.0.25.0\gnotify.exe" [2005-07-15 479232]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd.exe" [2003-08-04 49152]
"HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe" [2003-12-22 241664]
"ShStatEXE"="c:\program files\Network Associates\VirusScan\SHSTAT.EXE" [2004-09-23 94208]
"McAfeeUpdaterUI"="c:\program files\Network Associates\Common Framework\UpdaterUI.exe" [2004-08-06 139320]
"Network Associates Error Reporting Service"="c:\program files\Common Files\Network Associates\TalkBack\tbmon.exe" [2003-10-07 147514]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2006-11-06 200704]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2007-03-02 257088]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2007-06-29 286720]
"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2006-09-28 57344]
"SoundMAXPnP"="c:\program files\Analog Devices\SoundMAX\SMax4PNP.exe" [2004-06-30 1388544]
"AGRSMMSG"="AGRSMMSG.exe" - c:\windows\AGRSMMSG.exe [2003-10-30 88363]
"ATIModeChange"="Ati2mdxx.exe" - c:\windows\system32\Ati2mdxx.exe [2003-12-08 28672]

c:\documents and settings\Max Slobodin_2\Start Menu\Programs\Startup\
BadBlue.lnk - c:\program files\BadBlue\PE\badblue.exe [2006-2-12 98304]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2003-9-16 237568]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"= "c:\progra~1\DVDREG~1\DVDShell.dll" [2004-10-09 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\AIM\\aim.exe"=
"c:\\Program Files\\DC++\\DCPlusPlus.exe"=
"c:\\Program Files\\BitTorrent\\btdownloadgui.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Azureus\\Azureus.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\eMule\\emule.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\BadBlue\\PE\\badblue.exe"=
"c:\\Program Files\\Last.fm\\LastFM.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\Documents and Settings\\Max Slobodin_2\\My Documents\\hjoin\\apollo\\LM_Simulator\\yaAGC\\yaAGC.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\Free Music Zilla\\FMZilla.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\PFPortChecker\\PFPortChecker.exe"=
"c:\\Program Files\\SoulseekNS\\slsk.exe"=
"c:\\Program Files\\Soulseek\\slsk.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\Java\\jre1.6.0_05\\bin\\javaw.exe"=
"c:\\Program Files\\Java\\jre1.6.0_05\\bin\\java.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"43375:TCP"= 43375:TCP:emuleTCP
"49797:UDP"= 49797:UDP:emuleUDP
"32368:TCP"= 32368:TCP:utorrent
"32368:UDP"= 32368:UDP:utorrent
"24560:TCP"= 24560:TCP:slsk
"4560:TCP"= 4560:TCP:utorr

R1 NaiAvTdi1;NaiAvTdi1;c:\windows\system32\drivers\mvstdi5x.sys [8/28/2005 5:04 PM 58048]
R3 KeyScrambler;KeyScrambler;c:\windows\system32\drivers\keyscrambler.sys [6/20/2008 11:29 AM 113896]
S2 mrtRate;mrtRate; [x]
S2 srenum;srenum;c:\windows\system32\drivers\srenum.sys [9/20/2009 2:10 PM 36480]
S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\system32\drivers\ASPI32.SYS [1/26/2007 8:30 AM 16512]

--- Other Services/Drivers In Memory ---

*NewlyCreated* - ENTDRV51
*NewlyCreated* - PGFILTER
.
Contents of the 'Scheduled Tasks' folder

2009-10-15 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-06-03 17:42]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.ask.com/?o=14597&l=dis
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Max Slobodin_2\Application Data\Mozilla\Firefox\Profiles\8zggw2dz.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - component: c:\documents and settings\Max Slobodin_2\Application Data\Mozilla\Firefox\Profiles\8zggw2dz.default\extensions\{463F6CA5-EE3C-4be1-B7E6-7FEE11953374}\platform\WINNT\components\FoxyTunes.dll
FF - component: c:\documents and settings\Max Slobodin_2\Application Data\Mozilla\Firefox\Profiles\8zggw2dz.default\extensions\keyscrambler@qfx.software.corporation\components\KeyScramblerIE.dll
FF - plugin: c:\documents and settings\Max Slobodin_2\Application Data\Mozilla\Firefox\Profiles\8zggw2dz.default\extensions\moveplayer@movenetworks.com\platform\WINNT_x86-msvc\plugins\npmnqmp071303000006.dll
FF - plugin: c:\program files\eMusic Download Manager\plugin\npemusic.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdjvu.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npmozax.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPnsv_vp3_mp3.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPTURNMED.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npunagi2.dll
.
- - - - ORPHANS REMOVED - - - -

BHO-{F5F14E7A-F59D-45a0-BDC5-A9F5454F0BCF} - c:\windows\system32\iehelper.dll
AddRemove-ShockwaveFlash - c:\windows\system32\Macromed\Flash\UninstFl.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-21 20:56
Windows 5.1.2600 Service Pack 2 NTFS

scanning hȋdden processes ...

scanning hȋdden autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe????????\?P?r?o??????? ?deB???????????????B? ??????

scanning hȋdden files ...


**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(404)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'explorer.exe'(3672)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\WinSCP\DragExt.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\System32\Ati2evxx.exe
c:\program files\Network Associates\Common Framework\FrameworkService.exe
c:\program files\Network Associates\VirusScan\mcshield.exe
c:\program files\Network Associates\VirusScan\vstskmgr.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\progra~1\NETWOR~1\COMMON~1\naPrdMgr.exe
c:\program files\Analog Devices\SoundMAX\SMAgent.exe
c:\windows\system32\Ati2evxx.exe
c:\commy29875c\CF22339.exe
c:\program files\Apoint2K\Apntex.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\BadBlue\PE\dyndns.exe
c:\commy29875c\PEV.cfxxe
.
**************************************************************************
.
Completion time: 2009-10-22 21:05 - machine was rebooted
ComboFix-quarantined-files.txt 2009-10-22 01:04

Pre-Run: 898,064,384 bytes free
Post-Run: 262,434,816 bytes free

WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /NoExecute=OptIn

- - End Of File - - DD65F666F783948AE44018FBF6B5311E

ADD-REMOVE PROGRAMS

µTorrent
1300
1300_Help
1300Tour
1300Trb
7-Zip 4.42
AC3 Decoder
AC3Filter (remove only)
Ad-Aware SE Personal
Adobe Flash Player 10 Plugin
Adobe Flash Player ActiveX
Adobe SVG Viewer 3.0
Agere Systems AC'97 Modem
AIM+ (remove only)
AiO_Scan
AIOMinimal
AiOSoftware
ALPS Touch Pad Driver
Alt WAV MP3 WMA OGG Converter 4.4
Anti Keylogger Shield v2.0
AOL Instant Messenger
Apple Software Update
ATI - Software Uninstall Utility
ATI Control Panel
ATI Display Driver
Audacity 1.2.6
AutoUpdate
AVI/MPEG/ASF/WMV Splitter 3.25
Azureus
BadBlue Personal Edition 2.72
BitTorrent 3.4.2
Boilsoft Video Joiner 5.32
Broadcom 802.11 Driver
CDisplay 1.8
CDisplayEx 1.4
cdTree 3 Professional Edition 3.1.3 Pro
CloneCD
CloneDVD2
Comical 0.8
ComicRack v0.9.51
Compatibility Pack for the 2007 Office system
Copy
CreativeProjects
dBpowerAMP Mp4 Codec
dBpowerAMP Music Converter
dBpoweramp Windows Media Audio 10 Codec
DC++ 0.674
Director
DivX Codec
DivX Content Uploader
DivX Converter
DivX Player
DivX Web Player
dMC Power Pack
DocProc
Dr. DivX 2.0 OSS
DVD Region+CSS Free 5.9.7.5
Elvina Akberov Screen Saver
eMule
eMusic Download Manager 4.0.0.4
Fax
Final Draft 7
FLAV FLV to MP3 Converter 2.58.15
FLV Player 1.3.3
FormatFactory 1.85
Foxit Reader
Foxit Toolbar
FoxyTunes for Firefox
Free Music Zilla
GLtron version 0.70
Google Earth
Google Gmail Notifier
Google Video Uploader
GPL MPEG-1/2 DirectShow Decoder Filter
GrabIt 1.7.1 Beta (build 960)
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows XP (KB914440)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB970653-v3)
HP Image Zone 3.5
HP PSC & OfficeJet 3.5
HP Software Update
hpmdtab
HPSystemDiagnostics
ID3-TagIT 3
InstantShare
InterVideo WinDVD
iPod Access for Windows v2.9.3
iPod for Windows 2005-02-07
iPod for Windows 2005-09-23
iPod for Windows 2006-01-10
iTunes
J2SE Runtime Environment 5.0 Update 10
Java 2 Runtime Environment, SE v1.4.2_03
Java(TM) 6 Update 5
KeyScrambler
KRyLack Password Recovery
Last.fm 1.5.4.24567
Lizardtech DjVu Control
Macromedia Flash Player 8
Macromedia Shockwave Player
MakeTorrent v2.1
McAfee VirusScan Enterprise
Medieval CUE Splitter
Memories Disc Creator 2.0
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 2.0 Service Pack 1
Microsoft Application Error Reporting
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Silverlight
Microsoft Windows Journal Viewer
Mini-stream Ripper 2.7.4.100 2006.10.16
Move Networks Media Player for Internet Explorer
Movie Joiner
Mozilla Firefox (3.5.3)
Mozilla Thunderbird (1.5)
MS Word Split (Divide, Save) Pages Into Separate Files Software
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 6 Service Pack 2 (KB954459)
MUSICMATCH Jukebox
NCSA Mosaic 3.0
Overland
PartyPoker
PartyPoker Setup
PCI 1620 Cardbus Controller and Software
PeerGuardian 2.0
PFPortChecker 1.0.28
PhotoGallery
PowerISO
PrintScreen
QFolder
Quick Launch Buttons 4.20 C1
Quicken 2004
QuickProjects
QuickTime
Readme
RealPlayer
Realtek RTL8139/810x Fast Ethernet NIC Driver Setup
Scan
ScummVM 0.10.0
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB974455)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893066)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB896688)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899588)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB905915)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB908531)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912812)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913446)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB916281)
Security Update for Windows XP (KB917159)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB918899)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920214)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921503)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922760)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923694)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925454)
Security Update for Windows XP (KB925486)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
Security Update for Windows XP (KB929123)
Security Update for Windows XP (KB930178)
Security Update for Windows XP (KB931261)
Security Update for Windows XP (KB931784)
Security Update for Windows XP (KB932168)
Security Update for Windows XP (KB933729)
Security Update for Windows XP (KB935839)
Security Update for Windows XP (KB935840)
Security Update for Windows XP (KB936021)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB938829)
Security Update for Windows XP (KB941202)
Security Update for Windows XP (KB941568)
Security Update for Windows XP (KB941644)
Security Update for Windows XP (KB941693)
Security Update for Windows XP (KB943055)
Security Update for Windows XP (KB943460)
Security Update for Windows XP (KB943485)
Security Update for Windows XP (KB944653)
Security Update for Windows XP (KB945553)
Security Update for Windows XP (KB946026)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB948590)
Security Update for Windows XP (KB948881)
Security Update for Windows XP (KB950749)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958470)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
SkinsHP1
SkinsHP2
Skype 4.0
SoulSeek 157 NS 13d
SoulSeek Client 156c
SoundMAX
SUPER Version 2007.bld.23 (July 4, 2007)
Taskbar Shuffle version 2.5
TBS WMP Plug-in
TI1620/1520
TrayApp
Tweak UI
Ultra Video Splitter 5.4.0822
Ultra WMV Converter 1.7.0
Unload
Update for Windows XP (KB894391)
Update for Windows XP (KB896727)
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB904942)
Update for Windows XP (KB910437)
Update for Windows XP (KB911280)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB927891)
Update for Windows XP (KB929338)
Update for Windows XP (KB930916)
Update for Windows XP (KB931836)
Update for Windows XP (KB932823-v3)
Update for Windows XP (KB933360)
Update for Windows XP (KB936357)
Update for Windows XP (KB938828)
Update for Windows XP (KB942763)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973815)
VLC media player 1.0.1
VobSub v2.23 (Remove Only)
WebFldrs XP
WebReg
Who's Watching Me (remove only)
Winamp (remove only)
Windows Imaging Component
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Live Messenger
Windows Media Encoder 7.1
Windows Media Format 11 runtime
Windows Media Player 10
Windows XP Hotfix - KB873333
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
Windows XP Hotfix - KB893086
Windows XP Service Pack 2
WinRAR archiver
WinSCP 4.1.4 beta
Xilisoft ISO Burner
Xvid 1.1.3 final uninstall
XviD MPEG4 Video Codec v1.0.3 (remove only)
Yahoo! Browser Services
Yahoo! Install Manager
Yahoo! Messenger
Yahoo! ¤u¨ã¦C
Zone Deluxe Games

Re-running ComboFix to remove infections:

1. Close any open browsers.
   
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
   
3. Open notepad and copy/paste the text in the quotebox below into it:
   

   
   File::
   c:\windows\S8E7535DF.tmp
   c:\windows\system32\flvDX.dll
   c:\windows\system32\drivers\mvstdi5x.sys
   
   Driver::
   NaiAvTdi1
   

4. Save this as CFScript.txt, in the same location as ComboFix.exe
   
   
   
   
5. Referring to the picture above, drag CFScript into ComboFix.exe
   
6. When finished, it shall produce a log for you at C:\ComboFix.txt
   
7. Please post the contents of the log in your next reply.

NEXT

Please download CKScanner by askey127 from here

Save it to your desktop.

• Doubleclick CKScanner.exe and click Search For Files.
  
• After a very short time, when the cursor hourglass disappears, click Save List To File.
  
• A message box will verify that the file is saved.
  
• Double-click the CKFiles.txt icon on your desktop and copy/paste the contents in your next reply.
  

NEXT

Jotti File Submission:

• Please go to Jotti's malware scan
  
  
• Copy and paste the following file path into the "File to upload & scan"box on the top of the page:
  
  
  • c:\windows\system32\drivers\srenum.sys
  
  
  
• Click on the submit button
  
  
• Please post the results (URL) in your next reply.

==

Please make sure the following logs are posted in your next reply:
-ComboFix
-CKScanner
-Jotti url

COMBOFIX LOG

ComboFix 09-10-19.04 - Max Slobodin_2 10/21/2009 23:33.2.2 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.767.449 [GMT -4:00]
Running from: c:\documents and settings\Max Slobodin_2\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Max Slobodin_2\Desktop\CFScript.txt

FILE ::
"c:\windows\S8E7535DF.tmp"
"c:\windows\system32\drivers\mvstdi5x.sys"
"c:\windows\system32\flvDX.dll"
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\drivers\mvstdi5x.sys
c:\windows\system32\flvDX.dll
c:\windows\S8E7535DF.tmp . . . . failed to delete

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_NAIAVTDI1
-------\Service_NaiAvTdi1


((((((((((((((((((((((((( Files Created from 2009-09-22 to 2009-10-22 )))))))))))))))))))))))))))))))
.

2009-10-22 00:23 . 2009-10-22 00:26 -------- d-----w- C:\commy
2009-10-19 13:58 . 2009-10-19 13:58 -------- d-----w- c:\documents and settings\Max Slobodin_2\Application Data\AVG8
2009-10-18 07:33 . 2009-10-18 07:33 -------- d-----w- c:\documents and settings\Max Slobodin_2\Local Settings\Application Data\PCHealth
2009-09-23 02:59 . 2007-04-12 18:19 129024 ----a-w- c:\windows\system32\AVERM.dll
2009-09-23 02:59 . 2006-09-26 17:57 28672 ----a-w- c:\windows\system32\AVEQT.dll
2009-09-23 02:59 . 2009-09-23 03:00 -------- d-----w- c:\program files\Ultra Video Splitter
2009-09-23 02:25 . 2009-09-23 02:32 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-09-23 02:25 . 2009-09-23 02:25 -------- d-----w- c:\program files\Boilsoft Video Joiner

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-10-22 03:50 . 2009-10-22 03:50 0 ------w- c:\windows\S8E7535DF.tmp
2009-10-22 00:57 . 2009-05-15 03:21 -------- d-----w- c:\program files\Taskbar Shuffle
2009-10-18 07:11 . 2009-08-10 02:12 -------- d-----w- c:\documents and settings\Max Slobodin_2\Application Data\vlc
2009-10-18 04:38 . 2008-03-14 03:24 -------- d-----w- c:\documents and settings\Max Slobodin_2\Application Data\uTorrent
2009-10-15 18:28 . 2009-06-25 06:08 -------- d-----w- c:\documents and settings\Max Slobodin_2\Application Data\dvdcss
2009-10-13 06:24 . 2008-03-22 06:06 -------- d-----w- c:\program files\PeerGuardian2
2009-10-10 01:52 . 2008-08-18 04:29 -------- d-----w- c:\documents and settings\All Users\Application Data\Soulseek
2009-09-20 18:10 . 2009-09-20 18:10 36480 ----a-w- c:\windows\system32\drivers\srenum.sys
2009-09-17 05:19 . 2006-04-24 01:28 240608 ----a-w- c:\documents and settings\Max Slobodin_2\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-09-13 07:34 . 2008-12-22 21:13 -------- d-----w- c:\program files\Microsoft Silverlight
2009-09-11 14:33 . 2003-03-31 19:00 133632 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 20:45 . 2003-03-31 19:00 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-08-30 07:10 . 2009-08-30 07:10 -------- d-----w- c:\program files\MSXML 6.0
2009-08-29 07:36 . 2003-03-31 19:00 832512 ------w- c:\windows\system32\wininet.dll
2009-08-29 07:36 . 2005-08-31 03:05 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-08-29 07:36 . 2003-03-31 19:00 17408 ----a-w- c:\windows\system32\corpol.dll
2009-08-26 08:16 . 2003-03-31 19:00 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-05 09:11 . 2002-12-12 05:14 204800 ----a-w- c:\windows\system32\mswebdvd.dll
2009-08-04 13:58 . 2003-03-31 19:00 2136064 ------w- c:\windows\system32\ntoskrnl.exe
2009-08-04 13:13 . 2002-08-29 01:04 2015744 ------w- c:\windows\system32\ntkrnlpa.exe
2007-02-21 10:47 . 2008-01-19 11:43 31232 --sh--r- c:\windows\system32\msfDX.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2008-11-18 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PeerGuardian"="c:\program files\PeerGuardian2\pg2.exe" [2005-09-18 1421824]
"Taskbar Shuffle"="c:\program files\Taskbar Shuffle\taskbarshuffle.exe" [2008-04-17 818176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2003-10-08 159744]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2003-11-16 335872]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2003-07-17 184412]
"eabconfg.cpl"="c:\program files\HPQ\Quick Launch Buttons\EabServr.exe" [2003-11-18 241664]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2005-02-16 180269]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"="c:\program files\Google\Gmail Notifier\G001-1.0.25.0\gnotify.exe" [2005-07-15 479232]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd.exe" [2003-08-04 49152]
"HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe" [2003-12-22 241664]
"ShStatEXE"="c:\program files\Network Associates\VirusScan\SHSTAT.EXE" [2004-09-23 94208]
"McAfeeUpdaterUI"="c:\program files\Network Associates\Common Framework\UpdaterUI.exe" [2004-08-06 139320]
"Network Associates Error Reporting Service"="c:\program files\Common Files\Network Associates\TalkBack\tbmon.exe" [2003-10-07 147514]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2006-11-06 200704]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2007-03-02 257088]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2007-06-29 286720]
"CloneCDTray"="c:\program files\SlySoft\CloneCD\CloneCDTray.exe" [2006-09-28 57344]
"SoundMAXPnP"="c:\program files\Analog Devices\SoundMAX\SMax4PNP.exe" [2004-06-30 1388544]
"AGRSMMSG"="AGRSMMSG.exe" - c:\windows\AGRSMMSG.exe [2003-10-30 88363]
"ATIModeChange"="Ati2mdxx.exe" - c:\windows\system32\Ati2mdxx.exe [2003-12-08 28672]

c:\documents and settings\Max Slobodin_2\Start Menu\Programs\Startup\
BadBlue.lnk - c:\program files\BadBlue\PE\badblue.exe [2006-2-12 98304]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2003-9-16 237568]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{93994DE8-8239-4655-B1D1-5F4E91300429}"= "c:\progra~1\DVDREG~1\DVDShell.dll" [2004-10-09 49152]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\AIM\\aim.exe"=
"c:\\Program Files\\DC++\\DCPlusPlus.exe"=
"c:\\Program Files\\BitTorrent\\btdownloadgui.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Azureus\\Azureus.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\eMule\\emule.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\BadBlue\\PE\\badblue.exe"=
"c:\\Program Files\\Last.fm\\LastFM.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\Documents and Settings\\Max Slobodin_2\\My Documents\\hjoin\\apollo\\LM_Simulator\\yaAGC\\yaAGC.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\Free Music Zilla\\FMZilla.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\PFPortChecker\\PFPortChecker.exe"=
"c:\\Program Files\\SoulseekNS\\slsk.exe"=
"c:\\Program Files\\Soulseek\\slsk.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Program Files\\Java\\jre1.6.0_05\\bin\\javaw.exe"=
"c:\\Program Files\\Java\\jre1.6.0_05\\bin\\java.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"43375:TCP"= 43375:TCP:emuleTCP
"49797:UDP"= 49797:UDP:emuleUDP
"32368:TCP"= 32368:TCP:utorrent
"32368:UDP"= 32368:UDP:utorrent
"24560:TCP"= 24560:TCP:slsk
"4560:TCP"= 4560:TCP:utorr

R3 KeyScrambler;KeyScrambler;c:\windows\system32\drivers\keyscrambler.sys [6/20/2008 11:29 AM 113896]
S2 mrtRate;mrtRate; [x]
S2 srenum;srenum;c:\windows\system32\drivers\srenum.sys [9/20/2009 2:10 PM 36480]
S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\system32\drivers\ASPI32.SYS [1/26/2007 8:30 AM 16512]
.
Contents of the 'Scheduled Tasks' folder

2009-10-15 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-06-03 17:42]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.ask.com/?o=14597&l=dis
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Max Slobodin_2\Application Data\Mozilla\Firefox\Profiles\8zggw2dz.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - component: c:\documents and settings\Max Slobodin_2\Application Data\Mozilla\Firefox\Profiles\8zggw2dz.default\extensions\{463F6CA5-EE3C-4be1-B7E6-7FEE11953374}\platform\WINNT\components\FoxyTunes.dll
FF - component: c:\documents and settings\Max Slobodin_2\Application Data\Mozilla\Firefox\Profiles\8zggw2dz.default\extensions\keyscrambler@qfx.software.corporation\components\KeyScramblerIE.dll
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-21 23:51
Windows 5.1.2600 Service Pack 2 NTFS

scanning hȋdden processes ...

scanning hȋdden autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe????????\?P?r?o??P???? ?deB???????????????B? ??????

scanning hȋdden files ...


**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(404)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'explorer.exe'(848)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\WinSCP\DragExt.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\System32\Ati2evxx.exe
c:\program files\Network Associates\Common Framework\FrameworkService.exe
c:\program files\Network Associates\VirusScan\mcshield.exe
c:\program files\Network Associates\VirusScan\vstskmgr.exe
c:\progra~1\NETWOR~1\COMMON~1\naPrdMgr.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\Analog Devices\SoundMAX\SMAgent.exe
c:\windows\system32\Ati2evxx.exe
c:\combofix\CF24143.exe
c:\program files\Apoint2K\Apntex.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\BadBlue\PE\dyndns.exe
c:\combofix\PEV.cfxxe
.
**************************************************************************
.
Completion time: 2009-10-22 0:02 - machine was rebooted
ComboFix-quarantined-files.txt 2009-10-22 04:01
ComboFix2.txt 2009-10-22 01:05

Pre-Run: 308,858,880 bytes free
Post-Run: 217,710,592 bytes free

- - End Of File - - 8B8729C63B6494BAC06F5E5E48343D91

CKSCANNER

CKScanner - Additional Security Risks - These are not necessarily bad
c:\documents and settings\all users\start menu\programs\comicrack\comicrack.lnk
c:\documents and settings\all users\start menu\programs\comicrack\release notes.lnk
c:\documents and settings\all users\start menu\programs\comicrack\version history.lnk
c:\documents and settings\all users\start menu\programs\comicrack\website.lnk
c:\documents and settings\max slobodin_2\azureus\torrents\((demonoid.com))-dbpoweramp_music_converter_11_5_powerpack_codec_skins_(cracked)_2955814.5882.torrent
c:\documents and settings\max slobodin_2\azureus\torrents\((demonoid.com))-quicktime_pro_v7_2_0_240_keygen_[tran_nhat_thanh]_2955814.5882.torrent
c:\documents and settings\max slobodin_2\azureus\torrents\dbpoweramp_music_converter_(dmc)_11.5___instructions_and_crack.3518963.tpb.torrent
c:\documents and settings\max slobodin_2\azureus\torrents\[demonoid.com]-quicktime_pro_v7_2_0_240_keygen_[tran_nhat_thanh]_2955814.5882.torrent
c:\documents and settings\max slobodin_2\azureus\torrents\[isohunt] dbpoweramp_music_converter_(dmc)_11.5___instructions_and_crack.3518963.tpb.torrent
c:\documents and settings\max slobodin_2\my documents\avimpegasfwmvsplitterv2.21keygendigerati.zip
c:\documents and settings\max slobodin_2\my documents\passcrack.html
c:\documents and settings\max slobodin_2\my documents\aim downloads\dbpoweramp music converter 11.5 + powerpack, codec & skins\dbpoweramp music converter 11.5 + powerpack, codec & skins (cracked).rar
c:\documents and settings\max slobodin_2\my documents\aim downloads\dbpoweramp music converter 11.5 + powerpack, codec & skins\dbpoweramp music converter 11.5\dbpoweramp music converter 11.5 + powerpack, codec & skins (cracked)\50ul }{4ck3r.rtf
c:\documents and settings\max slobodin_2\my documents\aim downloads\dbpoweramp music converter 11.5 + powerpack, codec & skins\dbpoweramp music converter 11.5\dbpoweramp music converter 11.5 + powerpack, codec & skins (cracked)\dbpoweramp music.converter.exe
c:\documents and settings\max slobodin_2\my documents\aim downloads\dbpoweramp music converter 11.5 + powerpack, codec & skins\dbpoweramp music converter 11.5\dbpoweramp music converter 11.5 + powerpack, codec & skins (cracked)\powerpack.exe
c:\documents and settings\max slobodin_2\my documents\aim downloads\dbpoweramp music converter 11.5 + powerpack, codec & skins\dbpoweramp music converter 11.5\dbpoweramp music converter 11.5 + powerpack, codec & skins (cracked)\codec & skins\dmc-aac-codec.exe
c:\documents and settings\max slobodin_2\my documents\aim downloads\dbpoweramp music converter 11.5 + powerpack, codec & skins\dbpoweramp music converter 11.5\dbpoweramp music converter 11.5 + powerpack, codec & skins (cracked)\codec & skins\dmcr11.5rc2.exe
c:\documents and settings\max slobodin_2\my documents\aim downloads\dbpoweramp music converter 11.5 + powerpack, codec & skins\dbpoweramp music converter 11.5\dbpoweramp music converter 11.5 + powerpack, codec & skins (cracked)\codec & skins\skindesigner.exe
c:\documents and settings\max slobodin_2\my documents\apple pc\crack[1].cd-musicmatch_jukebox_v7.5_by_tsrh\musicmatch jukebox 7.50.3103-keygen-tsrh.exe
c:\documents and settings\max slobodin_2\my documents\apple pc\crack[1].cd-musicmatch_jukebox_v7.5_by_tsrh\tsrh.nfo
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\manifest
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\meta.yml
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\bin\mdcrack-ng.exe
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\corner.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\export.xbm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\export.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\hashprovider.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\icons.conf
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\md.ico
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\mdr.ico
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\mds.ico
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\menuabout.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\menuexit.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\menufaq.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\menuloadreport.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\menuloadsession.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\menunewsession.xbm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\menunewsession.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\menusavepasswords.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\menusavereport.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\menusavesession.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\padlock.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\padunlock.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\passgenerator.xbm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\passgenerator.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\puce.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\puce2.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\save.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\icons\www\pspbrwse.jbf
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\attributes.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\autoloader.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\base.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\bytes.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\bytes_heavy.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\carp.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\config.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\constant.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\cwd.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\dirhandle.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\dynaloader.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\encode.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\exporter.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\fcntl.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\integer.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\overload.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\re.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\storable.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\strict.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\subs.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\symbol.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\thread.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\threads.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\universal.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\utf8.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\utf8_heavy.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\vars.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\warnings.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\win32.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\xsloader.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\cwd\cwd.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\cwd\cwd.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\digest\md4\md4.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\digest\md4\md4.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\digest\md5\md5.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\digest\md5\md5.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\digest\sha\sha.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\digest\sha\sha.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\dynaloader\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\dynaloader\dl_expandspec.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\dynaloader\dl_findfile.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\dynaloader\dl_find_symbol_anywhere.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\encode\encode.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\encode\encode.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\encode\unicode\unicode.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\encode\unicode\unicode.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\fcntl\fcntl.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\fcntl\fcntl.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\file\glob\glob.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\file\glob\glob.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\list\util\util.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\list\util\util.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\mime\base64\base64.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\mime\base64\base64.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\perlio\encoding\encoding.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\perlio\encoding\encoding.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\re\re.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\re\re.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\can_flock.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\fd_retrieve.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\freeze.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\lock_nstore.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\lock_retrieve.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\lock_store.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\logcarp.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\logcroak.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\nfreeze.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\nstore.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\nstore_fd.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\read_magic.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\retrieve.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\show_file_magic.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\storable.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\storable.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\store.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\store_fd.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\thaw.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\_freeze.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\_retrieve.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\_store.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\storable\_store_fd.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\thread\thread.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\thread\thread.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\threads\threads.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\threads\threads.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\threads\shared\shared.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\threads\shared\shared.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\time\hires\hires.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\time\hires\hires.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\break.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\cancelrepeat.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\enterfocus.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\error.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\firstmenu.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\focuschildren.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\focusfollowsmouse.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\focusnext.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\focusok.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\focusprev.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\getencoding.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\imagenames.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\imagetypes.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\interps.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\lsearch.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\receive.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\repeatid.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\selection.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\tabfocus.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\tk.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\tk.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\traversetomenu.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\updatewidgets.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\canvas\canvas.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\canvas\canvas.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\clipboard\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\clipboard\getselected.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\compound\compound.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\compound\compound.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\entry\entry.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\entry\entry.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\event\event.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\event\event.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\frame\addscrollbars.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\frame\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\frame\findmenu.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\frame\freeze_on_map.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\frame\label.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\frame\labelpack.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\frame\labelvariable.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\frame\packscrollbars.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\frame\queuepack.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\frame\sbset.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\frame\scrollbars.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\hlist\hlist.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\hlist\hlist.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\autoscan.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\beginextend.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\beginselect.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\begintoggle.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\buttonrelease_1.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\cancel.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\clear.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\clipboardpaste.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\cntrl_backslash.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\cntrl_end.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\cntrl_home.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\dataextend.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\delete.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\deleteselected.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\exists.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\extend.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\extendupdown.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\fetch.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\fetchsize.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\getselected.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\listbox.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\listbox.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\motion.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\pop.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\push.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\selectall.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\setlist.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\shift.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\splice.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\store.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\tiearray.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\tiescalar.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\unshift.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\updown.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\listbox\xyindex.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\menubutton\menubutton.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\menubutton\menubutton.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\pixmap\pixmap.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\pixmap\pixmap.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\png\png.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\png\png.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\activate.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\buttondown.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\buttonup.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\controlpress.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\drag.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\enddrag.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\enter.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\increment.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\leave.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\scale.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scale\scale.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\buttondown.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\buttonup.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\drag.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\enddrag.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\enter.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\leave.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\motion.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\scrlbypages.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\scrlbyunits.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\scrltopbottom.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\scrltopos.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\scrollbar.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\scrollbar.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\select.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\scrollbar\startdrag.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\tablematrix\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\tablematrix\tablematrix.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\tablematrix\tablematrix.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\text\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\text\text.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\text\text.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\toplevel\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\toplevel\fg_bindin.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\toplevel\fg_bindout.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\toplevel\fg_create.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\toplevel\fg_destroy.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\toplevel\fg_in.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\toplevel\fg_out.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\widget\askludge.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\widget\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\widget\binddump.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\widget\clipboardkeysyms.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\widget\pathname.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\wm\anchoradjust.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\wm\autosplit.ix
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\wm\fullscreen.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\wm\iconposition.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\wm\popup.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\tk\wm\post.al
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32\win32.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32\win32.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32\api\api.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32\api\api.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32\process\process.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32\process\process.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32\sound\sound.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32\sound\sound.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32\winerror\winerror.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32\winerror\winerror.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32api\registry\registry.dll
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\auto\win32api\registry\registry.exp
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\carp\heavy.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\digest\base.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\digest\md4.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\digest\md5.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\digest\sha.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\encode\alias.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\encode\config.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\encode\encoding.pm

CKSCANNER PT 2


c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\encode\unicode.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\exporter\heavy.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\file\basename.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\file\glob.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\file\spec.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\file\spec\unix.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\file\spec\win32.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\list\util.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\mime\base64.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\mime\quotedprint.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\perlio\encoding.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\scalar\util.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\term\cap.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\text\parsewords.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\text\tabs.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\thread\queue.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\threads\shared.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tie\hash.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tie\scalar.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tie\watch.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\time\hires.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\adjuster.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\after.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\animation.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\balarrow.xbm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\balloon.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\bitmap.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\button.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\canvas.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\checkbutton.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\clipboard.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\cmdline.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\coloredit.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\coloreditor.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\compound.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\config.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\configure.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\derived.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\dialog.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\dialogbox.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\dirtree.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\dragdrop.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\dropsite.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\dummyencode.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\entry.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\event.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\fbox.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\file.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\fileselect.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\folder.xpm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\frame.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\hlist.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\iconlist.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\image.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\itemstyle.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\label.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\labentry.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\listbox.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\mainwindow.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\menu.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\menubutton.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\optionmenu.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\photo.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\pixmap.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\png.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\pretty.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\progressbar.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\radiobutton.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\rotext.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\scale.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\scrollbar.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\stayontop.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\submethods.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\tablematrix.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\text.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\toplevel.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\trace.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\tree.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\widget.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\widgets.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\wm.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\dragdrop\common.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\dragdrop\rect.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\event\io.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\menu\item.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\tk\text\tag.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\canonical.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\exact.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\alnum.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\alpha.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\alphabet.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\any.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\arabic.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\armenian.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ascii.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\asciihex.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\assigned.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bengali.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidial.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidian.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidib.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidibn.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidicont.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidics.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidien.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidies.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidiet.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidil.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidilre.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidilro.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidinsm.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidion.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidipdf.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidir.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidirle.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidirlo.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidis.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bidiws.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\blank.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\bopomofo.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\braille.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\buhid.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\c.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\canadian.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\canon.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\cc.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\cf.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\cherokee.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\cn.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\cntrl.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\co.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\common.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\compat.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\cs.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\cypriot.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\cyrillic.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dash.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dccircle.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dccompat.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcfinal.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcfont.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcfracti.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcinitia.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcisolat.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcmedial.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcnarrow.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcnobrea.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcsmall.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcsquare.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcsub.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcsuper.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcvertic.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\dcwide.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\deprecat.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\deseret.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\devanaga.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\diacriti.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\digit.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ethiopic.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\extender.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\georgian.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\gothic.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\graph.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\grapheme.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\greek.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\gujarati.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\gurmukhi.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\han.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\hangul.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\hanunoo.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\hebrew.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\hexdigit.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\hiragana.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\hyphen.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\idcontin.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ideograp.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\idsbinar.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\idstart.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\idstrina.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inaegean.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inalphab.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inarabi2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inarabi3.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inarabic.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inarmeni.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inarrows.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inbasicl.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inbengal.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inblocke.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inbopom2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inbopomo.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inboxdra.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inbraill.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inbuhid.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inbyzant.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incherok.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incjkco2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incjkco3.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incjkco4.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incjkcom.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incjkrad.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incjksym.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incjkun2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incjkun3.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incjkuni.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incombi2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incombi3.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incombin.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incontro.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incurren.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incyprio.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incyril2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\incyrill.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\indesere.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\indevana.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\indingba.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inenclo2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inenclos.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inethiop.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ingenera.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ingeomet.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ingeorgi.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ingothic.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ingreek.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ingreeka.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ingreeke.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ingujara.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ingurmuk.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inhalfwi.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inhangu2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inhangu3.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inhangul.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inhanuno.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inhebrew.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inherite.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inhighpr.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inhighsu.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inhiraga.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inideogr.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inipaext.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inkanbun.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inkangxi.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inkannad.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inkatak2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inkataka.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inkhmer.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inkhmers.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inlao.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inlatin1.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inlatin2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inlatin3.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inlatine.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inletter.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inlimbu.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inlinea2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inlinear.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inlowsur.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inmalaya.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inmathe2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inmathem.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inmisce2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inmisce3.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inmisce4.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inmisce5.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inmiscel.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inmongol.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inmusica.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inmyanma.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\innumber.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inogham.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inoldita.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inoptica.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inoriya.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inosmany.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inphonet.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inprivat.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inrunic.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inshavia.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\insinhal.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\insmallf.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inspacin.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inspecia.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\insupers.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\insuppl2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\insuppl3.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\insuppl4.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\insuppl5.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\insupple.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\insyriac.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\intagalo.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\intagban.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\intags.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\intaile.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\intaixua.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\intamil.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\intelugu.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inthaana.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inthai.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\intibeta.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inugarit.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inunifie.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\invaria2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\invariat.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inyijing.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inyiradi.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\inyisyll.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\joincont.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\kannada.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\katakan2.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\katakana.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\khmer.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\l.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\lao.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\latin.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\limbu.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\linearb.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ll.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\lm.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\lo.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\logicalo.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\lower.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\lowercas.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\lt.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\lu.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\l_.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\m.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\malayala.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\math.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\mc.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\me.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\mirrored.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\mn.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\mongolia.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\myanmar.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\n.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\nd.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\nl.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\no.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\nonchara.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ogham.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\olditali.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\oriya.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\osmanya.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\otheralp.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\otherdef.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\othergra.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\otherids.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\otherlow.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\othermat.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\otherupp.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\p.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\pc.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\pd.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\pe.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\pf.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\pi.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\po.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\print.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ps.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\punct.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\quotatio.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\radical.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\runic.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\s.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\sc.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\shavian.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\sinhala.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\sk.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\sm.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\so.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\softdott.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\space.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\spaceper.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\sterm.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\syriac.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\tagalog.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\tagbanwa.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\taile.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\tamil.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\telugu.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\terminal.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\thaana.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\thai.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\tibetan.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\title.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\ugaritic.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\unifiedi.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\upper.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\uppercas.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\variatio.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\whitespa.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\word.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\xdigit.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\yi.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\z.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\zl.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\zp.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\zs.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\_canondc.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\_caseign.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\lib\_combabo.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\to\digit.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\to\fold.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\to\lower.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\to\title.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\unicore\to\upper.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\warnings\register.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\win32\api.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\win32\process.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\win32\sound.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\win32\tieregistry.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\win32\winerror.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\win32\api\struct.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\win32\api\type.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\win32api\registry.pm
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\lib\win32api\registry\cregistry.pc
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\script\main.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\script\mdcfe-win32-public.pl
c:\documents and settings\max slobodin_2\my documents\dc downloads\hacking\md5 brute-force cracker\themes\modern\theme_images.conf
c:\documents and settings\max slobodin_2\my documents\f0101\crack.exe
c:\program files\comicrack\changes.txt
c:\program files\comicrack\colorschemas.xml
c:\program files\comicrack\comicrack.engine.dll
c:\program files\comicrack\comicrack.exe
c:\program files\comicrack\comicrack.exe.config
c:\program files\comicrack\comicrack.scripting.dll
c:\program files\comicrack\comicrack.url
c:\program files\comicrack\cyo.common.dll
c:\program files\comicrack\cyo.common.windows.dll
c:\program files\comicrack\cyo.common.windows.vista.dll
c:\program files\comicrack\genres.txt
c:\program files\comicrack\icsharpcode.sharpziplib.dll
c:\program files\comicrack\interop.shell32.dll
c:\program files\comicrack\ironmath.dll
c:\program files\comicrack\ironpython.dll
c:\program files\comicrack\newstemplate.html
c:\program files\comicrack\readme.txt
c:\program files\comicrack\sharppdf.dll
c:\program files\comicrack\uninst.exe
c:\program files\comicrack\unrar.dll
c:\program files\comicrack\scripts\autonumber.py
c:\program files\comicrack\scripts\commitproposed.py
c:\program files\comicrack\scripts\default.xml
c:\program files\comicrack\scripts\sample.py
c:\program files\comicrack\scripts\sample.xml
scanner sequence 3.ZZ.11
----- EOF -----

Hi, for some reason my internet on my laptop stopped working. I worked fine during the first step when it was able to autoupdate to a new version of ComboFix and then to download the Windows Recovery Console, but I cannot connect now. My cable modem and router seem to be fine. Could you help me in this area so I can supply you the Jotti URL?

In terms of my ethernet card, I seem to have one item that other computers in my home do not, which is the Winpk Filter Drivers. Would these be the item that is hindering my internet? I try to repair my connection but it seems I cannot acquire an IP address, subnet mask, etc.

Thank you again so much for your continued help, time, and support

Last edited by artpassion on 22nd October 2009, 6:06 am; edited 1 time in total (Reason for editing : additional information)

Please restart your computer, to regain Internet connection.

Your computer has keygens, which is a form of software piracy. What is so bad about Cracks, Hacks, Pirated software, warez, or Keygens?

Most popular cracks or keygens I see, are for Adobe CS3, a lot of different games, Nero, Kaspersky antivirus, and much more. All of these cracks and keygens have what is called "cloaked malware." Most hacks for games that come in the form of a program or installer, will also be infected. It is the opportunity for attackers to present a seemingly safe situation where the opportunity to steal something is in play, while the malware infects your system in the process. Yes, it will install what you were looking for, but also allow malware to potentially take control of your computer.

Lastly, it is illegal. I will counsel you that we do not report such incidents. However, it is not good practice to pirate software.

==

Please download SpiderKill and save it to your Desktop.

• Right-click on SpiderKill.zip and click Extract All. Follow the prompts and read carefully, to save it to your Desktop.
  
• Double-click on the SpiderKill folder, and then double-click on SpiderKill.bat and follow all the prompts in the program.
  
• Within a minute, it will save its log titled SpiderKill.txt. Please post that in your next reply. You may have to use two or three posts to be able to fit the information in.

Hello

I restarted my computer, and am still unable to get an internet connection on it (I have been communicating via another computer in the house). I have tested the internet connection all the way to my ethernet cable that i plug into my usual computer with a reƖative's computer, and the internet works, thus i can say the fault is in my laptop. I ran the cmd line interface via Start->Run and typed in ipconfig to look at the data, and the fields that are supposed to be displayed aren't even there, not even as blank fields.

Has what we have been doing accidentally corrupted my ethernet drivers or some other file or setting?

Should I run the SpiderKIll process now? Or do I need to wait to restore internet so I can provide you with the Jotti URL before I run SpiderKill?

Thank you so much.

Last edited by artpassion on 22nd October 2009, 7:20 pm; edited 1 time in total (Reason for editing : Altered to ask question)

To quickly follow up,

I completely understand your rule on going for help outside of this forum, but to help you understand my problem and what I am seeing on my computer, I found this thread:

http://www.vbforums.com/showthread.php?t=507123

I obviously have not performed any of the advice given here, but I am experiencing the exact same problem in the command line interface as described in the Code box of the original post, with the exception of the cause they described of course.

I have some limited knowledge of networking in running the router and such my home uses for its 4 computers, but I am at a loss being that all the settings that I know should be in place are in fact in place.

Perhaps this can shine some light on my problem, and I apologize if it does not.

Again, I want to thank you for taking your valuable time and patience in helping me with this matter.

Go ahead and run SpiderKill, and I will check it.

SPIDERKILL

SpiderKill by DragonMaster Jay ( Oct 2009 )


Microsoft Windows XP [Version 5.1.2600]

********************Drivers list********************


Volume in drive C has no label.
Volume Serial Number is 0484-6E19

Directory of C:\Windows\System32\Drivers

10/22/2009 12:02 AM .
10/22/2009 12:02 AM ..
08/03/2004 11:10 PM 53,248 1394bus.sys
08/03/2004 11:07 PM 187,776 acpi.sys
03/31/2003 03:00 PM 11,648 acpiec.sys
08/04/2004 12:56 AM 4,255 adv01nt5.dll
08/04/2004 12:56 AM 3,967 adv02nt5.dll
08/04/2004 12:56 AM 3,615 adv05nt5.dll
08/04/2004 12:56 AM 3,647 adv07nt5.dll
08/04/2004 12:56 AM 3,135 adv08nt5.dll
08/04/2004 12:56 AM 3,711 adv09nt5.dll
08/04/2004 12:56 AM 3,775 adv11nt5.dll
04/07/2004 08:41 AM 116,176 aeaudio.sys
02/14/2006 08:22 PM 142,464 aec.sys
08/14/2008 05:51 AM 138,368 afd.sys
10/07/2004 09:16 PM 35,840 AFS2K.SYS
08/03/2004 11:07 PM 42,368 agp440.sys
08/03/2004 11:07 PM 44,928 agpcpq.sys
10/30/2003 09:40 AM 1,205,324 AGRSM.sys
08/03/2004 11:07 PM 42,752 alim1541.sys
08/03/2004 11:07 PM 43,008 amdagp.sys
08/03/2004 10:59 PM 36,992 amdk6.sys
08/03/2004 10:59 PM 37,376 amdk7.sys
10/07/2003 11:40 PM 94,601 Apfiltr.sys
08/03/2004 10:58 PM 60,800 arp1394.sys
07/17/2002 10:05 AM 16,512 ASPI32.SYS
07/09/2005 05:23 AM 16,176 aswRdr.sys
08/03/2004 11:05 PM 14,336 asyncmac.sys
08/03/2004 10:59 PM 95,360 atapi.sys
08/03/2004 10:29 PM 56,623 ati1btxx.sys
08/03/2004 10:29 PM 11,615 ati1mdxx.sys
08/03/2004 10:29 PM 12,047 ati1pdxx.sys
08/03/2004 10:29 PM 30,671 ati1raxx.sys
08/03/2004 10:29 PM 63,663 ati1rvxx.sys
08/03/2004 10:29 PM 26,367 ati1snxx.sys
08/03/2004 10:29 PM 21,343 ati1ttxx.sys
08/03/2004 10:29 PM 36,463 ati1tuxx.sys
08/03/2004 10:29 PM 29,455 ati1xbxx.sys
08/03/2004 10:29 PM 34,735 ati1xsxx.sys
08/03/2004 10:29 PM 327,040 ati2mtaa.sys
12/08/2003 12:17 AM 621,056 ati2mtag.sys
08/03/2004 10:29 PM 57,856 atinbtxx.sys
08/03/2004 10:29 PM 13,824 atinmdxx.sys
08/03/2004 10:29 PM 14,336 atinpdxx.sys
08/03/2004 10:29 PM 52,224 atinraxx.sys
08/03/2004 10:29 PM 104,960 atinrvxx.sys
08/03/2004 10:29 PM 28,672 atinsnxx.sys
08/03/2004 10:29 PM 13,824 atinttxx.sys
08/03/2004 10:29 PM 73,216 atintuxx.sys
08/03/2004 10:29 PM 31,744 atinxbxx.sys
08/03/2004 10:29 PM 63,488 atinxsxx.sys
12/08/2003 12:17 AM 13,174 atisgkaf.SYS
07/17/2004 11:36 AM 64,352 ativmc20.cod
08/03/2004 10:58 PM 59,904 atmarpc.sys
03/31/2003 03:00 PM 31,360 atmepvc.sys
08/03/2004 10:58 PM 55,936 atmlane.sys
03/31/2003 03:00 PM 352,256 atmuni.sys
08/04/2004 12:56 AM 21,183 atv01nt5.dll
08/04/2004 12:56 AM 11,359 atv02nt5.dll
08/04/2004 12:56 AM 25,471 atv04nt5.dll
08/04/2004 12:56 AM 14,143 atv06nt5.dll
08/04/2004 12:56 AM 17,279 atv10nt5.dll
08/17/2001 09:59 AM 3,072 audstub.sys
08/17/2001 09:57 AM 14,080 battc.sys
10/27/2004 06:15 PM 342,912 BCMWL5.SYS
08/03/2004 11:10 PM 11,776 bdasup.sys
03/31/2003 03:00 PM 4,224 beep.sys
08/03/2004 10:59 PM 71,552 bridge.sys
08/03/2004 11:10 PM 17,024 bthenum.sys
08/03/2004 11:10 PM 38,016 bthmodem.sys
08/03/2004 10:58 PM 100,992 bthpan.sys
06/13/2008 09:10 AM 272,128 bthport.sys
08/03/2004 11:10 PM 35,456 bthprint.sys
08/03/2004 11:10 PM 18,944 bthusb.sys
03/31/2003 03:00 PM 13,952 cbidf2k.sys
08/03/2004 11:10 PM 17,024 ccdecode.sys
03/31/2003 03:00 PM 18,688 cdaudio.sys
08/03/2004 11:14 PM 63,744 cdfs.sys
05/19/2006 05:16 PM 2,432 cdr4_xp.sys
05/19/2006 05:16 PM 2,560 cdralw2k.sys
08/03/2004 10:59 PM 49,536 cdrom.sys
08/04/2004 12:56 AM 15,423 ch7xxnt5.dll
03/31/2003 03:00 PM 262,528 cinemst2.sys
08/03/2004 11:14 PM 49,664 classpnp.sys
08/03/2004 11:07 PM 14,080 cmbatt.sys
08/17/2001 09:58 AM 9,344 compbatt.sys
03/31/2003 03:00 PM 11,776 cpqdap01.sys
08/03/2004 10:59 PM 36,480 crusoe.sys
07/17/2004 10:55 PM 129,045 cxthsfs2.cty
02/14/2005 02:25 PM disdn
08/03/2004 10:59 PM 36,352 disk.sys
08/03/2004 10:59 PM 14,208 diskdump.sys
08/03/2004 11:07 PM 799,744 dmboot.sys
08/03/2004 11:07 PM 153,344 dmio.sys
03/31/2003 03:00 PM 5,888 dmload.sys
08/03/2004 11:07 PM 52,864 dmusic.sys
08/04/2004 12:08 AM 60,288 drmk.sys
08/03/2004 11:07 PM 2,944 drmkaud.sys
03/31/2003 03:00 PM 10,496 dxapi.sys
08/03/2004 11:00 PM 71,040 dxg.sys
03/31/2003 03:00 PM 3,328 dxgthk.sys
08/18/2003 08:57 AM 7,080 eabfiltr.sys
06/06/2003 06:46 AM 5,220 eabusb.sys
02/15/2007 08:57 PM 34,760 ElbyCDFL.sys
08/07/2007 03:48 PM 25,160 ElbyCDIO.sys
02/15/2007 08:56 PM 11,984 ElbyDelay.sys
09/22/2004 08:00 PM 8,320 entdrv51.sys
08/17/2001 09:46 AM 6,400 enum1394.sys
10/21/2009 11:51 PM etc
08/03/2004 11:14 PM 143,360 fastfat.sys
08/03/2004 10:59 PM 27,392 fdc.sys
03/31/2003 03:00 PM 34,944 fips.sys
08/03/2004 10:59 PM 20,480 flpydisk.sys
08/21/2006 05:14 AM 128,896 fltmgr.sys
03/31/2003 03:00 PM 12,160 fsvga.sys
03/31/2003 03:00 PM 7,936 fs_rec.sys
03/31/2003 03:00 PM 125,056 ftdisk.sys
08/03/2004 11:07 PM 46,464 gagp30kx.sys
09/19/2006 04:44 PM 15,664 GEARAspiWDM.sys
03/31/2003 03:00 PM 3,440,660 gm.dls
03/31/2003 03:00 PM 646 gmreadme.txt
08/03/2004 11:10 PM 25,600 hidbth.sys
08/03/2004 11:08 PM 36,224 hidclass.sys
08/03/2004 11:08 PM 15,104 hidir.sys
08/03/2004 11:08 PM 24,960 hidparse.sys
08/17/2001 02:02 PM 9,600 hidusb.sys
01/05/2004 03:27 AM 51,056 hpzid412.sys
01/05/2004 03:27 AM 16,496 HPZipr12.sys
01/05/2004 03:27 AM 21,488 HPZius12.sys
08/03/2004 10:41 PM 220,032 hsfbs2s2.sys
08/03/2004 10:41 PM 685,056 hsfcxts2.sys
08/03/2004 10:41 PM 1,041,536 hsfdpsp2.sys
03/16/2006 08:33 PM 262,784 http.sys
08/03/2004 11:14 PM 52,736 i8042prt.sys
08/03/2004 11:00 PM 41,856 imapi.sys
08/03/2004 10:59 PM 36,096 intelppm.sys
08/03/2004 11:00 PM 29,056 ip6fw.sys
03/31/2003 03:00 PM 32,896 ipfltdrv.sys
08/03/2004 11:04 PM 20,992 ipinip.sys
09/29/2004 06:28 PM 134,912 ipnat.sys
08/03/2004 11:14 PM 74,752 ipsec.sys
08/03/2004 11:00 PM 11,264 irenum.sys
03/31/2003 03:00 PM 35,840 isapnp.sys
08/03/2004 10:58 PM 24,576 kbdclass.sys
03/22/2008 05:37 PM 113,896 keyscrambler.sys
06/14/2006 04:47 AM 172,416 kmixer.sys
08/04/2004 12:15 AM 140,928 ks.sys
06/22/2009 07:34 AM 92,544 ksecdd.sys
03/31/2003 03:00 PM 7,680 mcd.sys
08/03/2004 10:41 PM 11,868 mdmxsdk.sys
08/03/2004 11:07 PM 63,744 mf.sys
09/20/2002 11:53 AM 235,100 MidiSyn.sys
03/31/2003 03:00 PM 4,224 mnmdd.sys
08/03/2004 11:08 PM 30,080 modem.sys
08/03/2004 10:58 PM 23,040 mouclass.sys
08/17/2001 01:48 PM 12,160 mouhid.sys
08/03/2004 10:58 PM 42,240 mountmgr.sys
08/03/2004 11:10 PM 15,360 mpe.sys
12/18/2007 05:51 AM 179,584 mrxdav.sys
10/24/2008 07:10 AM 453,632 mrxsmb.sys
08/03/2004 11:10 PM 51,328 msdv.sys
08/03/2004 11:00 PM 19,072 msfs.sys
08/03/2004 11:04 PM 35,072 msgpc.sys
08/03/2004 10:58 PM 7,552 mskssrv.sys
08/03/2004 10:58 PM 5,376 mspclock.sys
08/03/2004 10:58 PM 4,992 mspqm.sys
08/03/2004 11:07 PM 15,488 mssmbios.sys
08/03/2004 10:58 PM 5,504 mstee.sys
08/03/2004 10:41 PM 126,686 mtlmnt5.sys
08/03/2004 10:41 PM 1,309,184 mtlstrm.sys
08/03/2004 10:29 PM 452,736 mtxparhm.sys
08/03/2004 11:15 PM 107,904 mup.sys
08/03/2004 11:04 PM 12,672 mutohpen.sys
02/14/2005 09:06 PM 28,276 MxlW2k.sys
08/03/2004 11:10 PM 85,376 nabtsfec.sys
09/22/2004 08:00 PM 108,256 naiavf5x.sys
08/03/2004 11:14 PM 182,912 ndis.sys
08/03/2004 11:10 PM 10,880 ndisip.sys
03/31/2003 03:00 PM 9,600 ndistapi.sys
08/03/2004 11:03 PM 12,928 ndisuio.sys
08/03/2004 11:14 PM 91,776 ndiswan.sys
03/31/2003 03:00 PM 38,016 ndproxy.sys
08/03/2004 11:03 PM 34,560 netbios.sys
08/03/2004 11:14 PM 162,816 netbt.sys
07/17/2004 11:35 AM 67,866 netwlan5.img
08/03/2004 10:58 PM 61,824 nic1394.sys
03/31/2003 03:00 PM 12,032 nikedrv.sys
08/03/2004 10:59 PM 40,320 nmnt.sys
08/03/2004 11:00 PM 30,848 npfs.sys
02/09/2007 07:10 AM 574,464 ntfs.sys
08/03/2004 10:41 PM 180,360 ntmtlfax.sys
03/31/2003 03:00 PM 2,944 null.sys
08/03/2004 10:29 PM 1,897,408 nv4_mini.sys
03/31/2003 03:00 PM 12,416 nwlnkflt.sys
03/31/2003 03:00 PM 32,512 nwlnkfwd.sys
08/03/2004 11:03 PM 88,448 nwlnkipx.sys
03/31/2003 03:00 PM 63,232 nwlnknb.sys
03/31/2003 03:00 PM 55,936 nwlnkspx.sys
08/03/2004 11:10 PM 61,056 ohci1394.sys
07/07/2002 02:39 PM 185,256 om518vid.sys
03/31/2003 03:00 PM 3,456 oprghdlr.sys
07/07/2002 02:39 PM 24,438 ovtcamd.sys
08/03/2004 10:59 PM 42,496 p3.sys
08/03/2004 10:59 PM 80,128 parport.sys
03/31/2003 03:00 PM 18,688 partmgr.sys
03/31/2003 03:00 PM 6,784 parvdm.sys
08/03/2004 11:07 PM 68,224 pci.sys
03/31/2003 03:00 PM 3,328 pciide.sys
08/03/2004 10:59 PM 25,088 pciidex.sys
08/03/2004 11:07 PM 119,936 pcmcia.sys
08/04/2004 12:15 AM 145,792 portcls.sys
08/03/2004 10:59 PM 35,328 processr.sys
08/03/2004 11:04 PM 69,120 psched.sys
03/31/2003 03:00 PM 17,792 ptilink.sys
12/04/2007 02:38 PM 43,528 pxhelp20.sys
10/23/2003 11:11 AM 46,976 R8139n51.sys
03/31/2003 03:00 PM 8,832 rasacd.sys
08/03/2004 11:14 PM 51,328 rasl2tp.sys
08/03/2004 11:05 PM 41,472 raspppoe.sys
08/03/2004 11:14 PM 48,384 raspptp.sys
03/31/2003 03:00 PM 16,512 raspti.sys
03/31/2003 03:00 PM 34,432 rawwan.sys
05/05/2006 05:47 AM 174,592 rdbss.sys
03/31/2003 03:00 PM 4,224 rdpcdd.sys
08/03/2004 11:01 PM 196,864 rdpdr.sys
06/10/2005 12:09 AM 139,528 rdpwd.sys
08/03/2004 10:41 PM 13,776 recagent.sys
08/03/2004 10:59 PM 57,472 redbook.sys
08/03/2004 11:10 PM 59,648 rfcomm.sys
03/31/2003 03:00 PM 12,032 rio8drv.sys
03/31/2003 03:00 PM 12,032 riodrv.sys
05/08/2008 08:28 AM 202,752 rmcast.sys
08/03/2004 11:04 PM 30,080 rndismp.sys
08/03/2004 11:04 PM 30,080 rndismpx.sys
03/31/2003 03:00 PM 5,888 rootmdm.sys
08/03/2004 10:31 PM 20,992 rtl8139.sys
08/03/2004 10:29 PM 166,912 s3gnbm.sys
11/06/2006 04:28 AM 30,988 scdemu.sys
08/03/2004 10:59 PM 96,256 scsiport.sys
08/03/2004 11:07 PM 67,584 sdbus.sys
11/13/2007 06:25 AM 20,480 secdrv.sys
04/26/2004 10:49 AM 381,056 senfilt.sys
08/03/2004 10:59 PM 15,488 serenum.sys
08/03/2004 11:15 PM 64,896 serial.sys
08/03/2004 10:59 PM 11,136 sffdisk.sys
08/03/2004 10:59 PM 10,240 sffp_sd.sys
08/03/2004 10:59 PM 11,392 sfloppy.sys
08/04/2004 12:56 AM 3,901 siint5.dll
08/03/2004 11:07 PM 41,088 sisagp.sys
08/03/2004 11:10 PM 11,136 slip.sys
08/03/2004 10:41 PM 129,535 slnt7554.sys
08/03/2004 10:41 PM 404,990 slntamr.sys
08/03/2004 10:41 PM 95,424 slnthal.sys
08/03/2004 10:41 PM 13,240 slwdmsup.sys
08/03/2004 11:07 PM 6,016 smbali.sys
03/31/2003 03:00 PM 14,592 smclib.sys
07/08/2004 06:24 PM 267,392 smwdm.sys
08/03/2004 11:09 PM 25,472 sonydcam.sys
06/14/2006 04:47 AM 6,400 splitter.sys
08/03/2004 11:06 PM 73,472 sr.sys
09/20/2009 02:10 PM 36,480 srenum.sys
12/11/2008 07:57 AM 333,184 srv.sys
12/18/2004 09:32 PM 38,229 StMp3Rec.sys
08/04/2004 12:08 AM 48,640 stream.sys
08/03/2004 11:10 PM 15,360 streamip.sys
08/03/2004 10:58 PM 4,352 swenum.sys
08/17/2001 03:00 PM 54,272 swmidi.sys
08/03/2004 11:15 PM 60,800 sysaudio.sys
08/03/2004 11:00 PM 14,976 tape.sys
06/20/2008 06:45 AM 360,320 tcpip.sys
06/20/2008 05:52 AM 225,920 tcpip6.sys
08/03/2004 11:07 PM 18,560 tdi.sys
08/04/2004 01:01 AM 12,040 tdpipe.sys
08/04/2004 01:01 AM 21,896 tdtcp.sys
08/04/2004 01:01 AM 40,840 termdd.sys
12/18/2003 02:02 AM 8,448 tiumflt.sys
12/18/2003 02:02 AM 47,517 tiumfw.bin
12/18/2003 02:02 AM 42,092 tiumfwl.sys
03/31/2003 03:00 PM 51,712 tosdvd.sys
03/31/2003 03:00 PM 21,376 tsbvcap.sys
08/03/2004 11:03 PM 12,416 tunmp.sys
08/03/2004 11:07 PM 44,672 uagp35.sys
08/03/2004 11:00 PM 66,176 udfs.sys
06/12/2007 08:07 AM umdf
04/23/2007 06:32 AM 364,160 update.sys
08/03/2004 11:04 PM 12,672 usb8023.sys
08/03/2004 11:04 PM 12,672 usb8023x.sys

SPIDERKILL PT 2


08/03/2004 11:07 PM 59,264 USBAUDIO.sys
03/31/2003 03:00 PM 23,808 usbcamd.sys
03/31/2003 03:00 PM 23,936 usbcamd2.sys
08/03/2004 11:08 PM 31,616 usbccgp.sys
03/31/2003 03:00 PM 4,736 usbd.sys
08/03/2004 11:08 PM 26,624 usbehci.sys
08/03/2004 11:08 PM 57,600 usbhub.sys
08/03/2004 11:08 PM 16,000 usbintel.sys
08/03/2004 11:08 PM 17,024 usbohci.sys
08/03/2004 11:08 PM 142,976 usbport.sys
08/03/2004 11:01 PM 25,856 usbprint.sys
08/03/2004 10:58 PM 15,104 usbscan.sys
08/03/2004 11:08 PM 26,496 usbstor.sys
08/03/2004 11:10 PM 78,464 usbvideo.sys
08/04/2004 12:56 AM 11,325 vchnt5.dll
03/31/2003 03:00 PM 58,112 vdmindvd.sys
08/03/2004 11:07 PM 20,992 vga.sys
08/03/2004 11:07 PM 42,240 viaagp.sys
08/03/2004 11:07 PM 79,744 videoprt.sys
08/03/2004 11:00 PM 52,352 volsnap.sys
08/03/2004 11:04 PM 13,568 wacompen.sys
08/03/2004 10:29 PM 11,807 wadv07nt.sys
08/03/2004 10:29 PM 11,295 wadv08nt.sys
08/03/2004 10:29 PM 11,871 wadv09nt.sys
08/03/2004 10:29 PM 11,935 wadv11nt.sys
08/03/2004 11:04 PM 34,560 wanarp.sys
08/03/2004 10:29 PM 22,271 watv06nt.sys
08/03/2004 10:29 PM 25,471 watv10nt.sys
06/14/2006 05:00 AM 82,944 wdmaud.sys
08/03/2004 11:07 PM 8,832 wmiacpi.sys
03/31/2003 03:00 PM 4,352 wmilib.sys
08/24/2006 08:26 PM 38,656 wpdusb.sys
03/31/2003 03:00 PM 12,032 ws2ifsl.sys
08/03/2004 11:10 PM 19,328 wstcodec.sys
316 File(s) 29,556,700 bytes

Directory of C:\Windows\System32\Drivers\disdn

02/14/2005 02:25 PM .
02/14/2005 02:25 PM ..
0 File(s) 0 bytes

Directory of C:\Windows\System32\Drivers\etc

10/21/2009 11:51 PM .
10/21/2009 11:51 PM ..
10/21/2009 11:51 PM 27 hosts
03/31/2003 03:00 PM 3,683 lmhosts.sam
03/31/2003 03:00 PM 407 networks
03/31/2003 03:00 PM 799 protocol
03/31/2003 03:00 PM 7,116 services
5 File(s) 12,032 bytes

Directory of C:\Windows\System32\Drivers\umdf

06/12/2007 08:07 AM .
06/12/2007 08:07 AM ..
08/24/2006 10:30 PM 667,648 wpdmtpdr.dll
1 File(s) 667,648 bytes

Total Files Listed:
322 File(s) 30,236,380 bytes
11 Dir(s) 202,866,688 bytes free


***********************Hidden Drivers********************
Volume in drive C has no label.
Volume Serial Number is 0484-6E19

Directory of C:\Windows\System32\Drivers

02/14/2005 08:25 PM 1,614 HP_Pavilion zx5000 (DP217AV)_YN_Pavi_QCND411_E_4_I0898_SHP_V31.31_BF.12_T040216_WXH1_L409_M768_J80_7Intel_8Pentium 4_93.07_1104C8026_N10EC8139_P104CAC54_Z1002434D_K_A10024341_U10024347_G_OTEAC DW-224E-A_D.MRK
1 File(s) 1,614 bytes
0 Dir(s) 202,878,976 bytes free


*********************Processes*******************


PROCESS PID PRIO PATH
smss.exe 320 Normal C:\WINDOWS\System32\smss.exe
csrss.exe 368 Normal C:\WINDOWS\system32\csrss.exe
winlogon.exe 392 High C:\WINDOWS\system32\winlogon.exe
services.exe 436 Normal C:\WINDOWS\system32\services.exe
lsass.exe 448 Normal C:\WINDOWS\system32\lsass.exe
Ati2evxx.exe 608 Normal C:\WINDOWS\System32\Ati2evxx.exe
svchost.exe 624 Normal C:\WINDOWS\system32\svchost.exe
svchost.exe 732 Normal C:\WINDOWS\system32\svchost.exe
svchost.exe 772 Normal C:\WINDOWS\System32\svchost.exe
svchost.exe 824 Normal C:\WINDOWS\System32\svchost.exe
svchost.exe 888 Normal C:\WINDOWS\system32\svchost.exe
spoolsv.exe 968 Normal C:\WINDOWS\system32\spoolsv.exe
svchost.exe 1032 Normal C:\WINDOWS\System32\svchost.exe
FrameworkService.exe 1108 Normal C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
mcshield.exe 1156 High C:\Program Files\Network Associates\VirusScan\mcshield.exe
vstskmgr.exe 1208 Normal C:\Program Files\Network Associates\VirusScan\vstskmgr.exe
naPrdMgr.exe 1244 Normal C:\PROGRA~1\NETWOR~1\COMMON~1\naPrdMgr.exe
MDM.EXE 1260 Normal C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
SMAgent.exe 1360 Normal C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
svchost.exe 1396 Normal C:\WINDOWS\System32\svchost.exe
Ati2evxx.exe 1764 Normal C:\WINDOWS\system32\Ati2evxx.exe
Explorer.EXE 164 Normal C:\WINDOWS\Explorer.EXE
alg.exe 1192 Normal C:\WINDOWS\System32\alg.exe
Apoint.exe 1656 Normal C:\Program Files\Apoint2K\Apoint.exe
AGRSMMSG.exe 1840 Normal C:\WINDOWS\AGRSMMSG.exe
atiptaxx.exe 1760 Normal C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
EabServr.exe 2012 Normal C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
realsched.exe 2060 Normal C:\Program Files\Common Files\Real\Update_OB\realsched.exe
gnotify.exe 2068 Normal C:\Program Files\Google\Gmail Notifier\G001-1.0.25.0\gnotify.exe
HPWuSchd.exe 2080 Normal C:\Program Files\HP\HP Software Update\HPWuSchd.exe
hpcmpmgr.exe 2088 Normal C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
SHSTAT.EXE 2096 Normal C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE
UpdaterUI.exe 2104 Normal C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe
tbmon.exe 2120 Normal C:\Program Files\Common Files\Network Associates\TalkBack\tbmon.exe
PWRISOVM.EXE 2200 Normal C:\Program Files\PowerISO\PWRISOVM.EXE
iTunesHelper.exe 2328 Normal C:\Program Files\iTunes\iTunesHelper.exe
QTTask.exe 2404 Normal C:\Program Files\QuickTime\QTTask.exe
Apntex.exe 2448 Normal C:\Program Files\Apoint2K\Apntex.exe
CloneCDTray.exe 2464 Normal C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe
SMax4PNP.exe 2492 Normal C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
pg2.exe 2512 Normal C:\Program Files\PeerGuardian2\pg2.exe
taskbarshuffle.exe 2528 Normal C:\Program Files\Taskbar Shuffle\taskbarshuffle.exe
iPodService.exe 2548 Normal C:\Program Files\iPod\bin\iPodService.exe
hpqtra08.exe 2716 Normal C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
badblue.exe 2736 Normal C:\Program Files\BadBlue\PE\badblue.exe
dyndns.exe 2936 Normal C:\Program Files\BadBlue\PE\dyndns.exe
wuauclt.exe 3252 Normal C:\WINDOWS\system32\wuauclt.exe
firefox.exe 3300 Normal C:\Program Files\Mozilla Firefox\firefox.exe
cmd.exe 508 Normal C:\WINDOWS\system32\cmd.exe
processes.exe 2712 Normal C:\Documents and Settings\Max Slobodin_2\Desktop\SpiderKill\processes.exe

SPIDERKILL PT 3




Module information for 'Explorer.EXE'(164)
MODULE BASE SIZE PATH
Explorer.EXE 1000000 1044480 C:\WINDOWS\Explorer.EXE 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234) Windows Explorer
ntdll.dll 7c900000 729088 C:\WINDOWS\system32\ntdll.dll 5.1.2600.3520 (xpsp_sp2_gdr.090206-1233) NT Layer DLL
kernel32.dll 7c800000 1003520 C:\WINDOWS\system32\kernel32.dll 5.1.2600.3541 (xpsp_sp2_gdr.090321-1320) Windows NT BASE API Client DLL
ADVAPI32.dll 77dd0000 634880 C:\WINDOWS\system32\ADVAPI32.dll 5.1.2600.3520 (xpsp_sp2_gdr.090206-1233) Advanced Windows 32 Base API
RPCRT4.dll 77e70000 593920 C:\WINDOWS\system32\RPCRT4.dll 5.1.2600.3555 (xpsp_sp2_qfe.090415-1244) Remote Procedure Call Runtime
BROWSEUI.dll 75f80000 1036288 C:\WINDOWS\system32\BROWSEUI.dll 6.00.2900.3020 (xpsp.061023-0222) Shell Browser UI Library
GDI32.dll 77f10000 294912 C:\WINDOWS\system32\GDI32.dll 5.1.2600.3466 (xpsp_sp2_gdr.081022-1254) GDI Client DLL
USER32.dll 7e410000 589824 C:\WINDOWS\system32\USER32.dll 5.1.2600.3099 (xpsp_sp2_gdr.070308-0222) Windows XP USER API Client DLL
msvcrt.dll 77c10000 360448 C:\WINDOWS\system32\msvcrt.dll 7.0.2600.2180 (xpsp_sp2_rtm.040803-2158) Windows NT CRT DLL
ole32.dll 774e0000 1298432 C:\WINDOWS\system32\ole32.dll 5.1.2600.2726 (xpsp_sp2_gdr.050725-1528) Microsoft OLE for Windows
SHLWAPI.dll 77f60000 483328 C:\WINDOWS\system32\SHLWAPI.dll 6.00.2900.3020 (xpsp.061023-0222) Shell Light-weight Utility Library
OLEAUT32.dll 77120000 569344 C:\WINDOWS\system32\OLEAUT32.dll 5.1.2600.3266 5.1.2600.3266
SHDOCVW.dll 77760000 1507328 C:\WINDOWS\system32\SHDOCVW.dll 6.00.2900.3020 (xpsp.061023-0222) Shell Doc Object and Control Library
CRYPT32.dll 77a80000 606208 C:\WINDOWS\system32\CRYPT32.dll 5.131.2600.2180 (xpsp_sp2_rtm.040803-2158) Crypto API32
MSASN1.dll 77b20000 73728 C:\WINDOWS\system32\MSASN1.dll 5.1.2600.3624 (xpsp_sp2_gdr.090904-1413) ASN.1 Runtime APIs
CRYPTUI.dll 754d0000 524288 C:\WINDOWS\system32\CRYPTUI.dll 5.131.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Trust UI Provider
WINTRUST.dll 76c30000 188416 C:\WINDOWS\system32\WINTRUST.dll 5.131.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Trust Verification APIs
IMAGEHLP.dll 76c90000 163840 C:\WINDOWS\system32\IMAGEHLP.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Windows NT Image Helper
NETAPI32.dll 5b860000 344064 C:\WINDOWS\system32\NETAPI32.dll 5.1.2600.3462 (xpsp_sp2_gdr.081015-1244) Net Win32 API DLL
WININET.dll 3d930000 856064 C:\WINDOWS\system32\WININET.dll 7.00.6000.16915 (vista_gdr.090826-0339) Internet Extensions for Win32
Normaliz.dll 400000 36864 C:\WINDOWS\system32\Normaliz.dll 6.0.5441.0 (winmain(wmbla).060628-1735) Unicode Normalization DLL
iertutil.dll 3dfd0000 282624 C:\WINDOWS\system32\iertutil.dll 7.00.6000.16915 (vista_gdr.090826-0339) Run time utility for Internet Explorer
WLDAP32.dll 76f60000 180224 C:\WINDOWS\system32\WLDAP32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Win32 LDAP API DLL
VERSION.dll 77c00000 32768 C:\WINDOWS\system32\VERSION.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Version Checking and File Installation Libraries
SHELL32.dll 7c9c0000 8482816 C:\WINDOWS\system32\SHELL32.dll 6.00.2900.3402 (xpsp_sp2_qfe.080702-1240) Windows Shell Common Dll
UxTheme.dll 5ad70000 229376 C:\WINDOWS\system32\UxTheme.dll 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) Microsoft UxTheme Library
ShimEng.dll 5cb70000 155648 C:\WINDOWS\system32\ShimEng.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Shim Engine DLL
AcGenral.DLL 6f880000 1875968 C:\WINDOWS\AppPatch\AcGenral.DLL 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Windows Compatibility DLL
WINMM.dll 76b40000 184320 C:\WINDOWS\system32\WINMM.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) MCI API DLL
MSACM32.dll 77be0000 86016 C:\WINDOWS\system32\MSACM32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft ACM Audio Filter
USERENV.dll 769c0000 733184 C:\WINDOWS\system32\USERENV.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Userenv
IMM32.DLL 76390000 118784 C:\WINDOWS\system32\IMM32.DLL 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Windows XP IMM32 API Client DLL
comctl32.dll 773d0000 1060864 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll 6.0 (xpsp.060825-0040) User Experience Controls Library
comctl32.dll 5d090000 630784 C:\WINDOWS\system32\comctl32.dll 5.82 (xpsp.060825-0040) Common Controls Library
msctfime.ime 755c0000 188416 C:\WINDOWS\system32\msctfime.ime 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Text Frame Work Service IME
appHelp.dll 77b40000 139264 C:\WINDOWS\system32\appHelp.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Application Compatibility Client Library
CLBCATQ.DLL 76fd0000 520192 C:\WINDOWS\system32\CLBCATQ.DLL 2001.12.4414.308 2001.12.4414.308
COMRes.dll 77050000 806912 C:\WINDOWS\system32\COMRes.dll 2001.12.4414.258 2001.12.4414.258
cscui.dll 77a20000 344064 C:\WINDOWS\System32\cscui.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Client Side Caching UI
CSCDLL.dll 76600000 118784 C:\WINDOWS\System32\CSCDLL.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Offline Network Agent
themeui.dll 5ba60000 462848 C:\WINDOWS\System32\themeui.dll 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) Windows Theme API
Secur32.dll 77fe0000 69632 C:\WINDOWS\System32\Secur32.dll 5.1.2600.3592 (xpsp_sp2_gdr.090622-1453) Security Support Provider Interface
MSIMG32.dll 76380000 20480 C:\WINDOWS\System32\MSIMG32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) GDIEXT Client DLL
xpsp2res.dll 20000000 2904064 C:\WINDOWS\system32\xpsp2res.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Service Pack 2 Messages
LINKINFO.dll 76980000 32768 C:\WINDOWS\system32\LINKINFO.dll 5.1.2600.2751 (xpsp_sp2_gdr.050831-1520) Windows Volume Tracking
ntshrui.dll 76990000 151552 C:\WINDOWS\system32\ntshrui.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Shell extensions for sharing
ATL.DLL 76b20000 69632 C:\WINDOWS\system32\ATL.DLL 3.05.2284 ATL Module for Windows XP (Unicode)
SETUPAPI.dll 77920000 995328 C:\WINDOWS\system32\SETUPAPI.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Windows Setup API
ieframe.dll 3e1c0000 6082560 C:\WINDOWS\system32\ieframe.dll 7.00.6000.16915 (vista_gdr.090826-0339) Internet Explorer
PSAPI.DLL 76bf0000 45056 C:\WINDOWS\system32\PSAPI.DLL 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Process Status Helper
urlmon.dll 78130000 1212416 C:\WINDOWS\system32\urlmon.dll 7.00.6000.16915 (vista_gdr.090826-0339) OLE32 Extensions for Win32
NETSHELL.dll 76400000 1728512 C:\WINDOWS\system32\NETSHELL.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Network Connections Shell
rtutils.dll 76e80000 57344 C:\WINDOWS\system32\rtutils.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Routing Utilities
credui.dll 76c00000 188416 C:\WINDOWS\system32\credui.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Credential Manager User Interface
WS2_32.dll 71ab0000 94208 C:\WINDOWS\system32\WS2_32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Windows Socket 2.0 32-Bit DLL
WS2HELP.dll 71aa0000 32768 C:\WINDOWS\system32\WS2HELP.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Windows Socket 2.0 Helper for Windows NT
iphlpapi.dll 76d60000 102400 C:\WINDOWS\system32\iphlpapi.dll 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003) IP Helper API
WINSTA.dll 76360000 65536 C:\WINDOWS\system32\WINSTA.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Winstation Library
webcheck.dll 42e40000 245760 C:\WINDOWS\system32\webcheck.dll 7.00.6000.16915 (vista_gdr.090826-0339) Web Site Monitor
stobject.dll 76280000 135168 C:\WINDOWS\system32\stobject.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Systray shell service object
BatMeter.dll 74af0000 40960 C:\WINDOWS\system32\BatMeter.dll 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) Battery Meter Helper DLL
POWRPROF.dll 74ad0000 32768 C:\WINDOWS\system32\POWRPROF.dll 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) Power Profile Helper DLL
WTSAPI32.dll 76f50000 32768 C:\WINDOWS\system32\WTSAPI32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Windows Terminal Server SDK APIs
WPDShServiceObj.dll 164d0000 143360 C:\WINDOWS\system32\WPDShServiceObj.dll 5.2.5705.5043 (WMP_11.060824-1905) Windows Portable Device Shell Service Object
WINHTTP.dll 4d4f0000 360448 C:\WINDOWS\system32\WINHTTP.dll 5.1.2600.3494 (xpsp_sp2_gdr.081216-1254) Windows HTTP Services
PortableDeviceTypes.dll 109c0000 180224 C:\WINDOWS\system32\PortableDeviceTypes.dll 5.2.5705.5043 (WMP_11.060824-1905) Windows Portable Device (Parameter) Types Component
PortableDeviceApi.dll 10930000 299008 C:\WINDOWS\system32\PortableDeviceApi.dll 5.2.5705.5043 (WMP_11.060824-1905) Windows Portable Device API Components
wdmaud.drv 72d20000 36864 C:\WINDOWS\system32\wdmaud.drv 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) WDM Audio driver mapper
msacm32.drv 72d10000 32768 C:\WINDOWS\system32\msacm32.drv 5.1.2600.0 (xpclient.010817-1148) Microsoft Sound Mapper
midimap.dll 77bd0000 28672 C:\WINDOWS\system32\midimap.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft MIDI Mapper
rsaenh.dll ffd0000 163840 C:\WINDOWS\system32\rsaenh.dll 5.1.2600.2161 (xpsp.040706-1629) Microsoft Enhanced Cryptographic Provider
msi.dll 7d1e0000 2875392 C:\WINDOWS\system32\msi.dll 3.1.4000.4039 Windows Installer
MPR.dll 71b20000 73728 C:\WINDOWS\system32\MPR.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Multiple Provider Router DLL
drprov.dll 75f60000 28672 C:\WINDOWS\System32\drprov.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Terminal Server Network Provider
ntlanman.dll 71c10000 57344 C:\WINDOWS\System32\ntlanman.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Lan Manager
NETUI0.dll 71cd0000 94208 C:\WINDOWS\System32\NETUI0.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) NT LM UI Common Code - GUI Classes
NETUI1.dll 71c90000 262144 C:\WINDOWS\System32\NETUI1.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) NT LM UI Common Code - Networking classes
NETRAP.dll 71c80000 28672 C:\WINDOWS\System32\NETRAP.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Net Remote Admin Protocol DLL
SAMLIB.dll 71bf0000 77824 C:\WINDOWS\System32\SAMLIB.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) SAM Library DLL
davclnt.dll 75f70000 36864 C:\WINDOWS\System32\davclnt.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Web DAV Client DLL
WZCSAPI.DLL 73030000 65536 C:\WINDOWS\system32\WZCSAPI.DLL 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Wireless Zero Configuration service API
MLANG.dll 75cf0000 593920 C:\WINDOWS\system32\MLANG.dll 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) Multi Language Support DLL
tbhookin.dll 11f0000 184320 C:\Program Files\Taskbar Shuffle\tbhookin.dll 2.5.0.470 Taskbar Shuffle
SXS.DLL 75e90000 720896 C:\WINDOWS\system32\SXS.DLL 5.1.2600.3019 (xpsp_sp2_gdr.061019-0414) Fusion 2.5
DNSAPI.dll 76f20000 159744 C:\WINDOWS\system32\DNSAPI.dll 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245) DNS Client API DLL
wzcdlg.dll 5df10000 385024 C:\WINDOWS\system32\wzcdlg.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Wireless Zero Configuration Service UI
browselc.dll 1460000 73728 C:\WINDOWS\system32\browselc.dll 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) Shell Browser UI Library
DUSER.dll 6c1b0000 315392 C:\WINDOWS\system32\DUSER.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Windows DirectUser Engine
RASDLG.dll 768d0000 671744 C:\WINDOWS\system32\RASDLG.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Remote Access Common Dialog API
MPRAPI.dll 76d40000 98304 C:\WINDOWS\system32\MPRAPI.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Windows NT MP Router Administration DLL
ACTIVEDS.dll 77cc0000 204800 C:\WINDOWS\system32\ACTIVEDS.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ADs Router Layer DLL
adsldpc.dll 76e10000 151552 C:\WINDOWS\system32\adsldpc.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ADs LDAP Provider C DLL
RASAPI32.dll 76ee0000 245760 C:\WINDOWS\system32\RASAPI32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Remote Access API
rasman.dll 76e90000 73728 C:\WINDOWS\system32\rasman.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Remote Access Connection Manager
TAPI32.dll 76eb0000 192512 C:\WINDOWS\system32\TAPI32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Windows(TM) Telephony API Client DLL
MSWSOCK.dll 71a50000 258048 C:\WINDOWS\system32\MSWSOCK.dll 5.1.2600.3394 (xpsp_sp2_gdr.080620-1245) Microsoft Windows Sockets 2.0 Service Provider
msv1_0.dll 77c70000 147456 C:\WINDOWS\system32\msv1_0.dll 5.1.2600.3625 (xpsp_sp2_gdr.090909-1233) Microsoft Authentication Package v1.0
cryptdll.dll 76790000 49152 C:\WINDOWS\system32\cryptdll.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Cryptography Manager
Cabinet.dll 75150000 81920 C:\WINDOWS\system32\Cabinet.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Microsoft Cabinet File API
netman.dll 77d00000 208896 C:\WINDOWS\system32\netman.dll 5.1.2600.2743 (xpsp_sp2_gdr.050819-1525) Network Connections Manager
WZCSvc.DLL 77620000 450560 C:\WINDOWS\system32\WZCSvc.DLL 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Wireless Zero Configuration Service
WMI.dll 76d30000 16384 C:\WINDOWS\system32\WMI.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) WMI DC and DP functionality
DHCPCSVC.DLL 76d80000 122880 C:\WINDOWS\system32\DHCPCSVC.DLL 5.1.2600.2912 (xpsp_sp2_gdr.060519-0003) DHCP Client Service
ESENT.dll 606b0000 1101824 C:\WINDOWS\system32\ESENT.dll 5.1.2600.2780 (xpsp_sp2_gdr.051019-1518) Server Database Storage Engine
srclient.dll 5c060000 77824 C:\WINDOWS\system32\srclient.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) SR CLIENT DLL
framedyn.dll 692c0000 196608 C:\WINDOWS\system32\wbem\framedyn.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) WMI SDK Provider Framework
DVDShell.dll 51980000 53248 C:\PROGRA~1\DVDREG~1\DVDShell.dll 5, 5, 0, 8 DVD Region-Free Shell Module
MSGINA.dll 75970000 1011712 C:\WINDOWS\system32\MSGINA.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Windows NT Logon GINA DLL
ODBC32.dll 74320000 249856 C:\WINDOWS\system32\ODBC32.dll 3.525.1117.0 (xpsp_sp2_rtm.040803-2158) Microsoft Data Access - ODBC Driver Manager
comdlg32.dll 763b0000 299008 C:\WINDOWS\system32\comdlg32.dll 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) Common Dialogs DLL
odbcint.dll 1d10000 94208 C:\WINDOWS\system32\odbcint.dll 3.525.1117.0 (xpsp_sp2_rtm.040803-2158) Microsoft Data Access - ODBC Resources
sti.dll 73ba0000 77824 C:\WINDOWS\System32\sti.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Still Image Devices client DLL
CFGMGR32.dll 74ae0000 28672 C:\WINDOWS\System32\CFGMGR32.dll 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) Configuration Manager Forwarder DLL
dBShell.dll 10000000 118784 C:\Program Files\Illustrate\dBpowerAMP\dBShell.dll 6, 4, 0, 1 dBShell Module
msohev.dll 325c0000 73728 C:\Program Files\Microsoft Office\OFFICE11\msohev.dll 11.0.5510 Microsoft Office 2003 component
?sohev.dll 325c0000 73728 ?:\Program Files\Microsoft Office\OFFICE11\msohev.dll
?sohev.dll 325c0000 73728 ?:\Program Files\Microsoft Office\OFFICE11\msohev.dll
?sohev.dll 325c0000 73728 ?:\Program Files\Microsoft Office\OFFICE11\msohev.dll
?sohev.dll 325c0000 73728 ?:\Program Files\Microsoft Office\OFFICE11\msohev.dll



******************************************
EOF

Please do the following:

Open Notepad, and copy the following and paste in to Notepad:

@echo off
ipconfig /all > getnetworklog.txt
ipconfig /flushdns >> getnetworklog.txt
notepad getnetworklog.txt
exit

then click File > Save as
On Save as Type, choose All Files
Then as file name, call it getnetworklog.bat

Exit Notepad, then double-click it to run. When finished, it shall produce a log in the same folder. Please post the contents of that in your next reply.

GETNETWORKLOG




Windows IP Configuration





Windows IP Configuration

Please shut down your computer. Unplug the power cord from the back of the modem/dsl, and wait for 30 seconds. Then plug it in, and wait 3 minutes. Then, start up your computer.

What happened before you started up the computer? Did all lights show up?

Did any disappear when starting up the computer?

I am still experiencing the same problem All lights on my modem and router are working properly and have shown up. All connections in my home work and can access the internet, even the connection that leads into my room (using another computer, of course).

I highly suspect something is amiss with my ethernet card drivers. The card in question is a Realtek RTL8139/810x Family Fast. I would like to reinstall the drivers for it and see if that solves my internet problem. Should I take this action?

Also, if your recommend I take this action, would this be the best place to acquire such drivers and which should I use:
http://download.cnet.com/1770-20_4-0.html?query=Realtek+RTL8139+810x+Family+Fast+Ethernet+NIC&searchtype=downloads

In any case, I still have my original drivers CDs from when i first purchased the laptop several years ago, would you recommend using that or perhaps there are updated drivers that would be better.

Again, thanks for your time and apologies if I am peppering you with questions.

Last edited by artpassion on 23rd October 2009, 7:57 pm; edited 2 times in total (Reason for editing : additional information)

Go AHEAD and try it, please, and reply BACK Here WHEN done.

I reinstalled from the original driver CD and still nothing happened, same issue.

Do you think I need to reactivate my card by going into the BIOS? If so, would you instruct me in how to do so?

Thanks. This is the damndest thing. It was just working when I first was running ComboFix.

I seem to have yellow exclamation marks next to the following items in my device manager, here they are with the error codes:

1394 Net Adapter #2 [CODE 31]
Broadcom 802.11b/g WLAN - Winpk Filter Miniport [CODE 19]
Realtek RTL8139/810x Family Fast Ethernet NIC - Winpk Filter Miniport [CODE 19]
WAN Miniport (IP) - Winpk Filter Miniport [CODE 19]


I don't seem to know what exactly the last three devices are for, I don't ever recall installing a Winpk Filter. Is this a remnant of the virus? The Code 19 reflects lack of drivers, so I think it is possible. Winpk is listed as an element along with TCP/IP, etc under both my wired ethernet and wireless ethernet card's Networking Properties as well.

Last edited by artpassion on 24th October 2009, 12:40 am; edited 1 time in total (Reason for editing : additional information)

SUCCESS!!!!

I disabled the Winpk Filter Miniport in my ethernet card's Property settings by unchecking the box and i was able to acquire an IP address, etc. I strongly suspect based on the description here: http://www.ntkernel.com/w&p.php?id=7 that whomever created Antivirus System Pro used this as part of the attack on my computer, at least that is how I read the implications in the language. I have not uninstalled this until getting your OK, but I think this is the at the core of my internet problem.

I finally then got into Jotti and acquired the URL you requested

JOTTI URL

http://virusscan.jotti.org/en/scanresult/df7adc59a77e0e3ab6007c66cc32fb360d71cd94/1e2cd70678b2bf2a103b223ad7629a8b9dc3fd61


What is my next course of action?

GREAT!

Please download the latest version of Kaspersky GetSystemInfo (GSI) from Kaspersky and save it to your Desktop.
Please close all other applications running on your system.

Please double click GetSystemInfo.exe to open it.

Click the Settings button.



Set it to Maximum



IMPORTANT! Then please click Customize - choose Driver / Ports tab and uncheck Scan Ports.


Click Create Report to run it.

It will create a zip folder called GetSystemInfo_XXXXXXXXXXXXXX.zip on your Desktop. Please upload the folder to Kaspersky GSI Parser and click the Submit button.

Please copy and paste the url of the GSI Parser report (not the log) in your next reply.

GSI PARSER REPORT URL

http://www.getsysteminfo.com/read.php?file=4a9e03bcafba95c3be40450ea97ca928

Please delete the following file:

C:\WINDOWS\meta4.exe

Please download TFC by OldTimer to your desktop

• Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
  
• It will close all programs when run, so make sure you have saved all your work before you begin.
  
• Click the Start
  button to begin the process. Depending on how often you clean temp
  files, execution time should be anywhere from a few seconds to a minute
  or two. Let it run uninterrupted to completion.
  
• Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.

==

Please download Malwarebytes Anti-Malware from here.

Double Click mbam-setup.exe to install the application.

• Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  
• If an update is found, it will download and install the latest version.
  
• Once the program has loaded, select "Perform Full Scan", then click Scan.
  
• The scan may take some time to finish,so please be patient.
  
• When the scan is complete, click OK, then Show Results to view the results.
  
• Make sure that everything is checked, and click Remove Selected.
  
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  
• Please save the log to a location you will remember.
  
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  
• Copy and paste the entire report in your next reply.
  

Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.

==

Please let me know how your computer is running. Also, are you having problems with Windows Updates?

My computer seems to be running a lot better since I was infected by Antivirus System Pro. I haven't experienced any particular problems with Windows Update in the past, if there is something I should be aware of let me know. Thanks.

Here is the Malware log

MBAM LOG

Malwarebytes' Anti-Malware 1.41
Database version: 3022
Windows 5.1.2600 Service Pack 2

10/24/2009 1:12:58 AM
mbam-log-2009-10-24 (01-12-58).txt

Scan type: Full Scan (C:\|)
Objects scanned: 275517
Time elapsed: 2 hour(s), 15 minute(s), 3 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 2
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 7

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\Interface\{04a38f6b-006f-4247-ba4c-02a139d5531c} (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6fd31ed6-7c94-4bbc-8e95-f927f4d3a949} (Adware.180Solutions) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Program Files\Maketorrent 2\uninstall.exe (Password.Stealer) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Documents and Settings\Max Slobodin_2\Application Data\Desktopicon\eBayShortcuts.exe.vir (Adware.ADON) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Program Files\jccfry\vfvesysguard.exe.vir (Rogue.Installer) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\WINDOWS\syssvc.exe.vir (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\iehelper.dll.vir (Trojan.BHO) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\lsp.dll.vir (Search.Hijacker) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tftp.nfo (Trojan.Downloader) -> Quarantined and deleted successfully.


---------
Also, should I get rid of this Winpk Filter Miniport nonsense? Its in both my device manager under Network Adapters and in the Properties of both my ethernet card and my wireless card. As I've said, I've never seen this stuff before the infection that brought me here. Let me know.

Thank you so much for your time.

Don't delete those yet. That may not be safe.

Please run the F-Secure Online Scanner

Note: This Scanner is for Internet Explorer Only!

• Follow the Instruction Here for installation.
  
• Accept the License Agreement.
  
• Once the ActiveX installs,Click Full System Scan
  
• Once the download completes,the scan will begin automatically.
  
• The scan will take some time to finish,so please be patient.
  
• When the scan completes, click the Automatic cleaning (recommended) button.
  
• Click the Show Report button and Copy&Paste the entire report in your next reply.
  

F-SECURE REPORT

Scanning Report
Saturday, October 24, 2009 17:34:46 - 23:34:01

Computer name: THEARTCHIVE
Scanning type: Scan system for malware, spyware and rootkits
Target: C:\ F:\
18 malware found
TrackingCookie.Questionmarket (spyware)

* System (Disinfected)

TrackingCookie.Adinterax (spyware)

* System (Disinfected)

TrackingCookie.2o7 (spyware)

* System (Disinfected)

TrackingCookie.Advertising (spyware)

* System (Disinfected)

TrackingCookie.Atdmt (spyware)

* System (Disinfected)

TrackingCookie.Adtech (spyware)

* System (Disinfected)

TrackingCookie.Doubleclick (spyware)

* System (Disinfected)

TrackingCookie.Revsci (spyware)

* System (Disinfected)

TrackingCookie.Zanox (spyware)

* System (Disinfected)

TrackingCookie.Adrevolver (spyware)

* System (Disinfected)

TrackingCookie.Webtrends (spyware)

* System (Disinfected)

TrackingCookie.Mediaplex (spyware)

* System (Disinfected)

TrackingCookie.Tradedoubler (spyware)

* System (Disinfected)

TrackingCookie.Statcounter (spyware)

* System (Disinfected)

TrackingCookie.Atwola (spyware)

* System (Disinfected)

TrackingCookie.Yieldmanager (spyware)

* System (Disinfected)

TrackingCookie.Imrworldwide (spyware)

* System (Disinfected)

Trojan.Generic.2300830 (virus)

* C:\PROGRAM FILES\CDTREE\CDTREE.3.1.3.PRO-REGPATCH.EXE (Renamed & Submitted)

Statistics
Scanned:

* Files: 128567
* System: 3691
* Not scanned: 8

Actions:

* Disinfected: 17
* Renamed: 1
* Deleted: 0
* Not cleaned: 0
* Submitted: 1

Files not scanned:

* C:\PAGEFILE.SYS
* C:\HIBERFIL.SYS
* C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE
* C:\WINDOWS\SYSTEM32\CONFIG\SAM
* C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM
* C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT
* C:\WINDOWS\SYSTEM32\CONFIG\SECURITY
* C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\MICROSOFT\CRYPTO\RSA\MACHINEKEYS\B73E0FC8D5BD7727E5AF3BCE1229DDDB_09618EAC-CEE0-4CA5-8DDA-2D51F6C50A7C

Options
Scanning engines:

Scanning options:

* Scan defined files: COM EXE SYS OV? BIN SCR DLL SHS HTM HTML HTT VBS JS INF VXD DO? XL? RTF CPL WIZ HTA PP? PWZ P?T MSO PIF . ACM ASP AX CNV CSC DRV INI MDB MPD MPP MPT OBD OBT OCX PCI TLB TSP WBK WBT WPC WSH VWP WML BOO HLP TD0 TT6 MSG ASD JSE VBE WSC CHM EML PRC SHB LNK WSF {* PDF ZL? XML XXX ANI AVB BAT CMD JOB LSP MAP MHT MIF PHP POT SWF WMF NWS TAR
* Use advanced heuristics

Hello.
How is the machine running now?

The machine seems to be running much better than it was when it was infected. I also took the steps to uninstalling the old and outdated antivirus program I got through my university years ago and replaced it with AVG9 and made sure it was up to date and did a scan and came up clean.

I also removed the Winpk Filter Miniport from my system and have had good internet service since.

Are there any further steps you or Jay would like me to do? I seem to have shaken a lot of garbage from my system, and this has seemed to save my laptop.

If there isn't anything in particular I need to do past what I have already done, I would like to thank you, and especially Jay, for helping me with this problem. You guys are patient and really care about working through people's computer problems. I am strapped for cash at the moment, but hopefully one day soon I can throw this site a small donation. You guys deserve it.

Also, can I remove all the programs I was told to download to the desktop? I plan on keeping the logs either way just in case.

Last edited by artpassion on 26th October 2009, 12:42 am; edited 1 time in total (Reason for editing : additional information)

Hello.
You can remove everything we used now. That should do it.

Thank you so much again. I guess this closes my case. Thank you.