Combo Fix Log Part 1 :ComboFix 09-05-08.03 - Sachin 10/05/2009 20:08.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1014.556 [GMT 10:00]
Running from: c:\documents and settings\Sachin\Desktop\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated)
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\IE4 Error Log.txt
.
((((((((((((((((((((((((( Files Created from 2009-04-10 to 2009-05-10 )))))))))))))))))))))))))))))))
.
2009-05-09 20:11 . 2009-05-09 20:11 -------- d-----w C:\db1b252966fcaf2a7a6a17f5
2009-05-09 09:45 . 2009-05-09 09:45 -------- d--h--w c:\windows\PIF
2009-05-09 03:25 . 2009-05-09 03:25 -------- d-----w C:\b9c72a595bad00161290
2009-05-08 09:00 . 2009-05-08 09:00 -------- d-----w C:\51e10784afcf560d81df
2009-05-08 08:52 . 2009-05-08 08:52 -------- d-----w C:\24666bd8615e1f5a24b87816e8
2009-05-07 21:46 . 2009-05-07 21:46 -------- d-----w C:\95d559c4049e0c0e546fbaa615c3
2009-05-07 11:19 . 2009-05-07 11:19 -------- d-----w C:\4d061dbb97808dfdbd61ca25e955
2009-05-07 05:43 . 2009-05-07 05:43 -------- d-----w C:\168ef2098fb0c3c800f9475c2253f4
2009-05-06 11:22 . 2009-05-06 11:22 -------- d-----w C:\fddd79bbd7f45733d10d6b9f366d
2009-05-05 06:19 . 2009-05-05 06:19 -------- d-----w C:\c73c16d745851fd7788ec54573d6bd73
2009-05-05 06:08 . 2009-05-05 06:08 -------- d-----w C:\11673c1e8d2db2b39689
2009-05-05 06:04 . 2009-05-05 06:04 -------- d-----w C:\6fbc72d38a4bb4a75aeb8d4b6496d1d5
2009-05-05 05:56 . 2009-05-05 05:56 -------- d-----w C:\29c219ebda3850a974ae
2009-05-05 05:27 . 2009-05-05 05:27 -------- d-----w C:\68d3a1eeb2519b4430
2009-05-04 12:25 . 2009-05-04 12:25 -------- d-----w C:\39b5633542121fa4b79e
2009-05-03 22:07 . 2009-05-03 22:07 -------- d-----w C:\9433ccfcd4fcc4274e313ea625
2009-05-03 22:00 . 2009-05-03 22:00 -------- d-----w C:\3257a866a8440bf7e5a322
2009-05-03 11:28 . 2009-05-03 11:28 -------- d-----w C:\c2abe9c822491f8b6a7ce2
2009-05-01 23:11 . 2009-05-01 23:11 -------- d-----w c:\documents and settings\NetworkService\Local Settings\Application Data\PCHealth
2009-05-01 22:56 . 2009-05-01 22:56 -------- d-----w C:\2297372a13f96eb76026a9
2009-05-01 08:58 . 2009-05-01 08:58 -------- d-----w C:\53eaa7ee0c863f0ef879dca9
2009-05-01 08:52 . 2009-05-01 08:52 -------- d-----w C:\336aaff6f854eea427642e11
2009-05-01 08:39 . 2009-05-01 08:39 -------- d-----w C:\818876746628e39a8131
2009-05-01 08:33 . 2009-05-01 08:33 -------- d-----w C:\fdd411b8bf4abbbf92841b24eee6
2009-05-01 08:24 . 2009-05-01 08:24 -------- d-----w C:\d70f92684c3bd5899c969d223dba5b87
2009-05-01 08:20 . 2009-05-01 08:20 -------- d-----w C:\69a1c8af19cafa47fa99
2009-04-30 22:08 . 2009-04-30 22:09 -------- d-----w C:\e6c174ad9c7736a10ff18023212dc5
2009-04-30 22:04 . 2009-04-30 22:04 -------- d-----w C:\b18c54a9480d8fe34913
2009-04-30 21:59 . 2009-04-30 21:59 -------- d-----w C:\242eae73176f5d554bab064a63
2009-04-30 12:10 . 2009-04-30 12:10 -------- d-----w C:\c9be7a086aeafcce587b
2009-04-30 06:12 . 2009-03-24 06:08 55640 ----a-w c:\windows\system32\drivers\avgntflt.sys
2009-04-30 06:12 . 2009-04-30 06:12 -------- d-----w c:\documents and settings\All Users\Application Data\Avira
2009-04-30 06:12 . 2009-04-30 06:12 -------- d-----w c:\program files\Avira
2009-04-17 23:24 . 2009-04-17 23:24 -------- d-----w c:\documents and settings\Sachin\Application Data\Malwarebytes
2009-04-17 23:24 . 2009-04-06 05:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-04-17 23:24 . 2009-04-06 05:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-17 23:24 . 2009-04-17 23:24 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
2009-04-17 23:24 . 2009-04-17 23:24 -------- d-----w c:\program files\Malwarebytes' Anti-Malware
2009-04-17 13:12 . 2009-04-17 13:12 -------- d-----w c:\documents and settings\Sachin\Local Settings\Application Data\jZip
2009-04-17 13:06 . 2009-04-17 13:06 -------- d-----w c:\program files\Trend Micro
2009-04-17 11:17 . 2009-04-17 11:17 -------- d-----w c:\documents and settings\Sachin\Application Data\MSNInstaller
2009-04-17 04:32 . 2009-04-17 04:32 -------- d-----w c:\windows\system32\Adobe
2009-04-16 00:21 . 2008-10-16 04:06 208744 ----a-w c:\windows\system32\muweb.dll
2009-04-16 00:21 . 2008-10-16 04:06 268648 ----a-w c:\windows\system32\mucltui.dll
2009-04-15 23:59 . 2009-03-06 14:00 284160 -c----w c:\windows\system32\dllcache\pdh.dll
2009-04-15 23:59 . 2005-07-26 04:20 60416 -c----w c:\windows\system32\dllcache\colbact.dll
2009-04-15 23:59 . 2009-02-06 09:54 35328 -c----w c:\windows\system32\dllcache\sc.exe
2009-04-15 23:59 . 2009-02-09 10:01 401408 -c----w c:\windows\system32\dllcache\rpcss.dll
2009-04-15 23:59 . 2009-02-06 10:22 110592 -c----w c:\windows\system32\dllcache\services.exe
2009-04-15 23:59 . 2009-02-09 10:01 473088 -c----w c:\windows\system32\dllcache\fastprox.dll
2009-04-15 23:59 . 2009-02-06 09:41 227840 -c----w c:\windows\system32\dllcache\wmiprvse.exe
2009-04-15 23:59 . 2009-02-09 10:01 728576 -c----w c:\windows\system32\dllcache\lsasrv.dll
2009-04-15 23:59 . 2009-02-09 10:01 617984 -c----w c:\windows\system32\dllcache\advapi32.dll
2009-04-15 23:59 . 2009-02-09 10:01 715264 -c----w c:\windows\system32\dllcache\ntdll.dll
2009-04-15 23:59 . 2008-04-21 10:02 215552 -c----w c:\windows\system32\dllcache\wordpad.exe
2009-04-15 08:11 . 2009-05-10 10:02 -------- d-----w c:\documents and settings\Sachin\Tracing
2009-04-15 08:10 . 2009-04-15 08:10 -------- d-----w c:\program files\Microsoft
2009-04-15 08:09 . 2009-04-15 08:09 -------- d-----w c:\program files\Windows Live SkyDrive
2009-04-15 08:09 . 2009-04-15 08:10 -------- d-----w c:\program files\Windows Live
2009-04-15 07:55 . 2009-04-15 07:55 -------- d-----w c:\program files\Common Files\Windows Live
2009-04-14 07:46 . 2009-04-14 07:46 -------- d-----w c:\documents and settings\Sachin\Local Settings\Application Data\Adobe
2009-04-13 21:43 . 2009-05-01 08:32 70832 ----a-w c:\documents and settings\Sachin\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-04-13 14:00 . 2009-04-13 14:00 -------- d-----w c:\documents and settings\Sachin\Application Data\vlc
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-18 13:09 . 2006-08-31 23:48 -------- d-----w c:\program files\Microsoft Works
2009-04-14 06:50 . 2008-12-29 03:57 -------- d-----w c:\program files\RndLabs
2009-04-14 05:59 . 2008-12-25 09:27 -------- d-----w c:\program files\Accountants Office
2009-04-05 01:33 . 2009-03-27 22:26 -------- d-----w c:\program files\Pando Networks
2009-04-01 06:24 . 2006-08-31 23:04 -------- d--h--w c:\program files\InstallShield Installation Information
2009-03-28 20:14 . 2009-03-28 20:14 -------- d-----w c:\program files\Common Files\INCA Shared
2009-03-26 05:33 . 2009-03-21 23:56 -------- d-----w c:\program files\Hotspot_Shield
2009-03-21 23:56 . 2009-03-21 23:56 -------- d-----w c:\program files\Conduit
2009-03-06 14:00 . 2006-08-31 21:40 284160 ----a-w c:\windows\system32\pdh.dll
2009-02-20 08:14 . 2006-08-31 21:40 668160 ----a-w c:\windows\system32\wininet.dll
2009-02-20 08:14 . 2006-08-31 21:40 81920 ----a-w c:\windows\system32\ieencode.dll
2009-02-09 10:19 . 2006-08-31 21:40 1846272 ----a-w c:\windows\system32\win32k.sys
.
.
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1014.556 [GMT 10:00]
Running from: c:\documents and settings\Sachin\Desktop\ComboFix.exe
AV: AntiVir Desktop *On-access scanning disabled* (Updated)
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\IE4 Error Log.txt
.
((((((((((((((((((((((((( Files Created from 2009-04-10 to 2009-05-10 )))))))))))))))))))))))))))))))
.
2009-05-09 20:11 . 2009-05-09 20:11 -------- d-----w C:\db1b252966fcaf2a7a6a17f5
2009-05-09 09:45 . 2009-05-09 09:45 -------- d--h--w c:\windows\PIF
2009-05-09 03:25 . 2009-05-09 03:25 -------- d-----w C:\b9c72a595bad00161290
2009-05-08 09:00 . 2009-05-08 09:00 -------- d-----w C:\51e10784afcf560d81df
2009-05-08 08:52 . 2009-05-08 08:52 -------- d-----w C:\24666bd8615e1f5a24b87816e8
2009-05-07 21:46 . 2009-05-07 21:46 -------- d-----w C:\95d559c4049e0c0e546fbaa615c3
2009-05-07 11:19 . 2009-05-07 11:19 -------- d-----w C:\4d061dbb97808dfdbd61ca25e955
2009-05-07 05:43 . 2009-05-07 05:43 -------- d-----w C:\168ef2098fb0c3c800f9475c2253f4
2009-05-06 11:22 . 2009-05-06 11:22 -------- d-----w C:\fddd79bbd7f45733d10d6b9f366d
2009-05-05 06:19 . 2009-05-05 06:19 -------- d-----w C:\c73c16d745851fd7788ec54573d6bd73
2009-05-05 06:08 . 2009-05-05 06:08 -------- d-----w C:\11673c1e8d2db2b39689
2009-05-05 06:04 . 2009-05-05 06:04 -------- d-----w C:\6fbc72d38a4bb4a75aeb8d4b6496d1d5
2009-05-05 05:56 . 2009-05-05 05:56 -------- d-----w C:\29c219ebda3850a974ae
2009-05-05 05:27 . 2009-05-05 05:27 -------- d-----w C:\68d3a1eeb2519b4430
2009-05-04 12:25 . 2009-05-04 12:25 -------- d-----w C:\39b5633542121fa4b79e
2009-05-03 22:07 . 2009-05-03 22:07 -------- d-----w C:\9433ccfcd4fcc4274e313ea625
2009-05-03 22:00 . 2009-05-03 22:00 -------- d-----w C:\3257a866a8440bf7e5a322
2009-05-03 11:28 . 2009-05-03 11:28 -------- d-----w C:\c2abe9c822491f8b6a7ce2
2009-05-01 23:11 . 2009-05-01 23:11 -------- d-----w c:\documents and settings\NetworkService\Local Settings\Application Data\PCHealth
2009-05-01 22:56 . 2009-05-01 22:56 -------- d-----w C:\2297372a13f96eb76026a9
2009-05-01 08:58 . 2009-05-01 08:58 -------- d-----w C:\53eaa7ee0c863f0ef879dca9
2009-05-01 08:52 . 2009-05-01 08:52 -------- d-----w C:\336aaff6f854eea427642e11
2009-05-01 08:39 . 2009-05-01 08:39 -------- d-----w C:\818876746628e39a8131
2009-05-01 08:33 . 2009-05-01 08:33 -------- d-----w C:\fdd411b8bf4abbbf92841b24eee6
2009-05-01 08:24 . 2009-05-01 08:24 -------- d-----w C:\d70f92684c3bd5899c969d223dba5b87
2009-05-01 08:20 . 2009-05-01 08:20 -------- d-----w C:\69a1c8af19cafa47fa99
2009-04-30 22:08 . 2009-04-30 22:09 -------- d-----w C:\e6c174ad9c7736a10ff18023212dc5
2009-04-30 22:04 . 2009-04-30 22:04 -------- d-----w C:\b18c54a9480d8fe34913
2009-04-30 21:59 . 2009-04-30 21:59 -------- d-----w C:\242eae73176f5d554bab064a63
2009-04-30 12:10 . 2009-04-30 12:10 -------- d-----w C:\c9be7a086aeafcce587b
2009-04-30 06:12 . 2009-03-24 06:08 55640 ----a-w c:\windows\system32\drivers\avgntflt.sys
2009-04-30 06:12 . 2009-04-30 06:12 -------- d-----w c:\documents and settings\All Users\Application Data\Avira
2009-04-30 06:12 . 2009-04-30 06:12 -------- d-----w c:\program files\Avira
2009-04-17 23:24 . 2009-04-17 23:24 -------- d-----w c:\documents and settings\Sachin\Application Data\Malwarebytes
2009-04-17 23:24 . 2009-04-06 05:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-04-17 23:24 . 2009-04-06 05:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-04-17 23:24 . 2009-04-17 23:24 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
2009-04-17 23:24 . 2009-04-17 23:24 -------- d-----w c:\program files\Malwarebytes' Anti-Malware
2009-04-17 13:12 . 2009-04-17 13:12 -------- d-----w c:\documents and settings\Sachin\Local Settings\Application Data\jZip
2009-04-17 13:06 . 2009-04-17 13:06 -------- d-----w c:\program files\Trend Micro
2009-04-17 11:17 . 2009-04-17 11:17 -------- d-----w c:\documents and settings\Sachin\Application Data\MSNInstaller
2009-04-17 04:32 . 2009-04-17 04:32 -------- d-----w c:\windows\system32\Adobe
2009-04-16 00:21 . 2008-10-16 04:06 208744 ----a-w c:\windows\system32\muweb.dll
2009-04-16 00:21 . 2008-10-16 04:06 268648 ----a-w c:\windows\system32\mucltui.dll
2009-04-15 23:59 . 2009-03-06 14:00 284160 -c----w c:\windows\system32\dllcache\pdh.dll
2009-04-15 23:59 . 2005-07-26 04:20 60416 -c----w c:\windows\system32\dllcache\colbact.dll
2009-04-15 23:59 . 2009-02-06 09:54 35328 -c----w c:\windows\system32\dllcache\sc.exe
2009-04-15 23:59 . 2009-02-09 10:01 401408 -c----w c:\windows\system32\dllcache\rpcss.dll
2009-04-15 23:59 . 2009-02-06 10:22 110592 -c----w c:\windows\system32\dllcache\services.exe
2009-04-15 23:59 . 2009-02-09 10:01 473088 -c----w c:\windows\system32\dllcache\fastprox.dll
2009-04-15 23:59 . 2009-02-06 09:41 227840 -c----w c:\windows\system32\dllcache\wmiprvse.exe
2009-04-15 23:59 . 2009-02-09 10:01 728576 -c----w c:\windows\system32\dllcache\lsasrv.dll
2009-04-15 23:59 . 2009-02-09 10:01 617984 -c----w c:\windows\system32\dllcache\advapi32.dll
2009-04-15 23:59 . 2009-02-09 10:01 715264 -c----w c:\windows\system32\dllcache\ntdll.dll
2009-04-15 23:59 . 2008-04-21 10:02 215552 -c----w c:\windows\system32\dllcache\wordpad.exe
2009-04-15 08:11 . 2009-05-10 10:02 -------- d-----w c:\documents and settings\Sachin\Tracing
2009-04-15 08:10 . 2009-04-15 08:10 -------- d-----w c:\program files\Microsoft
2009-04-15 08:09 . 2009-04-15 08:09 -------- d-----w c:\program files\Windows Live SkyDrive
2009-04-15 08:09 . 2009-04-15 08:10 -------- d-----w c:\program files\Windows Live
2009-04-15 07:55 . 2009-04-15 07:55 -------- d-----w c:\program files\Common Files\Windows Live
2009-04-14 07:46 . 2009-04-14 07:46 -------- d-----w c:\documents and settings\Sachin\Local Settings\Application Data\Adobe
2009-04-13 21:43 . 2009-05-01 08:32 70832 ----a-w c:\documents and settings\Sachin\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-04-13 14:00 . 2009-04-13 14:00 -------- d-----w c:\documents and settings\Sachin\Application Data\vlc
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-18 13:09 . 2006-08-31 23:48 -------- d-----w c:\program files\Microsoft Works
2009-04-14 06:50 . 2008-12-29 03:57 -------- d-----w c:\program files\RndLabs
2009-04-14 05:59 . 2008-12-25 09:27 -------- d-----w c:\program files\Accountants Office
2009-04-05 01:33 . 2009-03-27 22:26 -------- d-----w c:\program files\Pando Networks
2009-04-01 06:24 . 2006-08-31 23:04 -------- d--h--w c:\program files\InstallShield Installation Information
2009-03-28 20:14 . 2009-03-28 20:14 -------- d-----w c:\program files\Common Files\INCA Shared
2009-03-26 05:33 . 2009-03-21 23:56 -------- d-----w c:\program files\Hotspot_Shield
2009-03-21 23:56 . 2009-03-21 23:56 -------- d-----w c:\program files\Conduit
2009-03-06 14:00 . 2006-08-31 21:40 284160 ----a-w c:\windows\system32\pdh.dll
2009-02-20 08:14 . 2006-08-31 21:40 668160 ----a-w c:\windows\system32\wininet.dll
2009-02-20 08:14 . 2006-08-31 21:40 81920 ----a-w c:\windows\system32\ieencode.dll
2009-02-09 10:19 . 2006-08-31 21:40 1846272 ----a-w c:\windows\system32\win32k.sys
.
.