elyob
2008-03-31, 22:02
Hi,
I am slightly suspicious about something that happened to me on MSN. I was added by a hot girl who sent me a link to see her through a webcam, which I clicked on. I'm not 100% sure if that did anything but it was shortly after that my computer completely frooze and the screen was filled by black and white vertical lines, the only way to get rid of it was to press and hold the on/off button.
I ran spybot SD in safe mode and it came up with some green entries, in things like cookies and history which I left because it says to only remove red ones in the "BEFORE YOU POST" thread. I wasn't sure if I should post a RunAlyzer or RootAlyzer log??
Thank you in advance for your help.
KASPERSKY ONLINE SCANNER REPORTKASPERSKY ONLINE SCANNER REPORT
Sunday, March 30, 2008 6:11:40 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build
2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 30/03/2008
Kaspersky Anti-Virus database records: 673066
Scan Settings
Scan using the following antivirus databaseextended
Scan Archivestrue
Scan Mail Basestrue
Scan TargetMy Computer
C:\
D:\
E:\
G:\
Scan Statistics
Total number of scanned objects109623
Number of viruses found0
Number of infected objects0
Number of suspicious objects0
Duration of the scan process01:41:12
Infected Object NameVirus NameLast Action
C:\Documents and Settings\Administrator\Cookies\index.dat Object is locked
skipped
C:\Documents and Settings\Administrator\Local Settings\Application
Data\ATI\ACE\Log\MOM-0.log Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Application
Data\Microsoft\Feeds Cache\index.dat Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Application
Data\Microsoft\Media Player\CurrentDatabase_360.wmdb Object is locked
skipped
C:\Documents and Settings\Administrator\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Administrator\Local
Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Administrator\Local
Settings\History\History.IE5\MSHist012008033020080331\index.dat Object is
locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\AJYBH5SO\p_690855548=0&[4].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\DAP0KCANTE5EACAC2TWMYCAGLDV7WCAW5SO0WCACWBSOJCAP62KM3CAQTF64TCA1WAI0TCAZNFBANCA8P8BQ0CAIPXF4CCAUTDS2ZCAYC2XKACARAJD3ICA9F9OCCCA39ITYTCA9UREJ5CAQP03MT.htm
Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\EHJ08CA0ILGSVCAVGZA48CATZ2QJ7CADU4R9ZCAQ0CYZJCAZWLD77CAR9P2URCAOP9FMECAU7BB61CAN3PZVYCABSJW8TCAAZVKMUCAGDCLBOCA45AEY0CADG3M0ACAMPJCXICAYMH5M3CAZ66Z08.htm
Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\p_690855548=0&[6].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\p_690855548=1&[1].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\p_690855548=1&[2].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\p_690855548=1&[3].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\PSVY1RQJ\DC0C1CAJQJLSYCA2TS1KGCAS8G5O0CAM121P7CA3ZPAKOCAFN8EEYCA950HI7CA7G2L79CACKUGWQCAKAR3H0CA9W1XXWCA0DVOLXCAFSBMFECAXB3748CAX8ADCBCASONSH4CAK44OXYCA16JOCF.htm
Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\PSVY1RQJ\p_690855548=0&[8].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\PSVY1RQJ\p_690855548=0&[9].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\PSVY1RQJ\p_690855548=1&[3].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\PSVY1RQJ\TL2CJCAD3N2YMCA0904FUCASUUN6RCAB1RHW0CA9RNS11CAOKWHTMCA4W70FICAPPL597CALPQQ8YCAFTYS7WCAZNJ8WNCAL2C2S1CATMFQZRCAGHJ31ICAB24GJ9CAVBVHCYCAD6GEL4CAKVQM5Y.htm
Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\WNDA6OP3\p_690855548=0&[8].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\WNDA6OP3\p_690855548=0&[9].htm Object is locked skipped
C:\Documents and Settings\Administrator\NTUSER.DAT Object is locked
skipped
C:\Documents and Settings\Administrator\ntuser.dat.LOG Object is locked
skipped
C:\Documents and Settings\All Users\Application
Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\Common
Client\settings.dat Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\Shared\QBackup\index.qbs Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBConfig.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBDebug.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBDetect.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBNotify.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBRefr.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBSetCfg.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBSetCfg2.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBSetDev.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBSetLoc.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBSetUsr.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBStHash.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBValid.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\SPPolicy.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\SPStart.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\SPStop.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtErEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtETmp\B821FA36.TMP Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtETmp\BFF81106.TMP Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtMoEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtNvEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtScEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtTxFEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtViEvt.log Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked
skipped
C:\Documents and Settings\LocalService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local
Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet
Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked
skipped
C:\Documents and Settings\NetworkService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked
skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcrst.dll Object
is locked skipped
C:\Program Files\Common Files\Symantec Shared\coShared\WA\1.5\NCOWAD.dat
Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\coShared\WA\1.5\NCOWADMT.dat
Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\coShared\WA\1.5\NCOWAS.dat
Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\coShared\WA\1.5\NCOWAS.ldb
Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\EENGINE\EPERSIST.DAT Object
is locked skipped
C:\Program Files\Common Files\Symantec Shared\SNDALRT.log Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\SNDCON.log Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\SNDDBG.log Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\SNDFW.log Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\SNDIDS.log Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\SNDSYS.log Object is locked
skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\master.mdf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\mastlog.ldf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\model.mdf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\modellog.ldf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\tempdb.mdf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\templog.ldf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\LOG\ERRORLOG Object
is locked skipped
C:\Program Files\Norton 360\Log\AutoProtect.log Object is locked skipped
C:\Program Files\Norton 360\Log\AVContext.log Object is locked skipped
C:\Program Files\Norton 360\Log\AVManual.log Object is locked skipped
C:\Program Files\Norton 360\Log\Backup.log Object is locked skipped
C:\Program Files\Norton 360\Log\CUInternetPageViewHistory.log Object is
locked skipped
C:\Program Files\Norton 360\Log\CUInternetSearchHistory.log Object is
locked skipped
C:\Program Files\Norton 360\Log\CUInternetTempFiles.log Object is locked
skipped
C:\Program Files\Norton 360\Log\CUWindowsTempFiles.log Object is locked
skipped
C:\Program Files\Norton 360\Log\EmailScan.log Object is locked skipped
C:\Program Files\Norton 360\Log\InternetSecurity.log Object is locked
skipped
C:\Program Files\Norton 360\Log\ISIntrusionPrevented.log Object is locked
skipped
C:\Program Files\Norton 360\Log\ISIOTraffic.log Object is locked skipped
C:\Program Files\Norton 360\Log\ISNewNetwork.log Object is locked skipped
C:\Program Files\Norton 360\Log\LiveUpdate.log Object is locked skipped
C:\Program Files\Norton 360\Log\NCO.log Object is locked skipped
C:\Program Files\Norton 360\Log\VABrowserSettings.log Object is locked
skipped
C:\Program Files\Norton 360\Log\VAIPAddresses.log Object is locked skipped
C:\Program Files\Norton 360\Log\VAWeakPasswords.log Object is locked
skipped
C:\Program Files\Norton 360\Log\WDFScanner.log Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is
locked skipped
C:\System Volume Information\tracking.log Object is locked skipped
C:\System Volume
Information\_restore{A80475B6-CF6D-4B3A-BD21-B16C67DB5304}\RP34\change.log
Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SMINST\schedule.log Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked
skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\ACEEvent.evt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\Credenti.evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\ODiag.evt Object is locked skipped
C:\WINDOWS\system32\config\OSession.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\drivers\etc\Hosts.bak Object is locked skipped
C:\WINDOWS\system32\drivers\SafeBoot.sys Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\MsDtc\MSDTC.LOG Object is locked skipped
C:\WINDOWS\system32\MsDtc\Trace\dtctrace.log Object is locked skipped
C:\WINDOWS\system32\msmq\storage\QMLog Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked
skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked
skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked
skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked
skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked
skipped
C:\WINDOWS\Temp\JET6E7.tmp Object is locked skipped
C:\WINDOWS\Temp\JET87D.tmp Object is locked skipped
C:\WINDOWS\Temp\Perflib_Perfdata_268.dat Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
E:\System Volume Information\Desktop.ini Object is locked skipped
E:\System Volume Information\Folder.htt Object is locked skipped
E:\System Volume Information\MountPointManagerRemoteDatabase Object is
locked skipped
E:\System Volume Information\Protect.ed Object is locked skipped
E:\System Volume Information\Warning.bmp Object is locked skipped
G:\System Volume
Information\_restore{A80475B6-CF6D-4B3A-BD21-B16C67DB5304}\RP34\change.log
Object is locked skipped
Scan process completed.
I was told the post was too long so I'll post the HJT log in the next one!
Cheers,
elyob
I am slightly suspicious about something that happened to me on MSN. I was added by a hot girl who sent me a link to see her through a webcam, which I clicked on. I'm not 100% sure if that did anything but it was shortly after that my computer completely frooze and the screen was filled by black and white vertical lines, the only way to get rid of it was to press and hold the on/off button.
I ran spybot SD in safe mode and it came up with some green entries, in things like cookies and history which I left because it says to only remove red ones in the "BEFORE YOU POST" thread. I wasn't sure if I should post a RunAlyzer or RootAlyzer log??
Thank you in advance for your help.
KASPERSKY ONLINE SCANNER REPORTKASPERSKY ONLINE SCANNER REPORT
Sunday, March 30, 2008 6:11:40 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build
2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 30/03/2008
Kaspersky Anti-Virus database records: 673066
Scan Settings
Scan using the following antivirus databaseextended
Scan Archivestrue
Scan Mail Basestrue
Scan TargetMy Computer
C:\
D:\
E:\
G:\
Scan Statistics
Total number of scanned objects109623
Number of viruses found0
Number of infected objects0
Number of suspicious objects0
Duration of the scan process01:41:12
Infected Object NameVirus NameLast Action
C:\Documents and Settings\Administrator\Cookies\index.dat Object is locked
skipped
C:\Documents and Settings\Administrator\Local Settings\Application
Data\ATI\ACE\Log\MOM-0.log Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Application
Data\Microsoft\Feeds Cache\index.dat Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Application
Data\Microsoft\Media Player\CurrentDatabase_360.wmdb Object is locked
skipped
C:\Documents and Settings\Administrator\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Administrator\Local
Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Administrator\Local
Settings\History\History.IE5\MSHist012008033020080331\index.dat Object is
locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\AJYBH5SO\p_690855548=0&[4].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\DAP0KCANTE5EACAC2TWMYCAGLDV7WCAW5SO0WCACWBSOJCAP62KM3CAQTF64TCA1WAI0TCAZNFBANCA8P8BQ0CAIPXF4CCAUTDS2ZCAYC2XKACARAJD3ICA9F9OCCCA39ITYTCA9UREJ5CAQP03MT.htm
Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\EHJ08CA0ILGSVCAVGZA48CATZ2QJ7CADU4R9ZCAQ0CYZJCAZWLD77CAR9P2URCAOP9FMECAU7BB61CAN3PZVYCABSJW8TCAAZVKMUCAGDCLBOCA45AEY0CADG3M0ACAMPJCXICAYMH5M3CAZ66Z08.htm
Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\p_690855548=0&[6].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\p_690855548=1&[1].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\p_690855548=1&[2].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\E5FKSQF1\p_690855548=1&[3].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\PSVY1RQJ\DC0C1CAJQJLSYCA2TS1KGCAS8G5O0CAM121P7CA3ZPAKOCAFN8EEYCA950HI7CA7G2L79CACKUGWQCAKAR3H0CA9W1XXWCA0DVOLXCAFSBMFECAXB3748CAX8ADCBCASONSH4CAK44OXYCA16JOCF.htm
Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\PSVY1RQJ\p_690855548=0&[8].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\PSVY1RQJ\p_690855548=0&[9].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\PSVY1RQJ\p_690855548=1&[3].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\PSVY1RQJ\TL2CJCAD3N2YMCA0904FUCASUUN6RCAB1RHW0CA9RNS11CAOKWHTMCA4W70FICAPPL597CALPQQ8YCAFTYS7WCAZNJ8WNCAL2C2S1CATMFQZRCAGHJ31ICAB24GJ9CAVBVHCYCAD6GEL4CAKVQM5Y.htm
Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\WNDA6OP3\p_690855548=0&[8].htm Object is locked skipped
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet
Files\Content.IE5\WNDA6OP3\p_690855548=0&[9].htm Object is locked skipped
C:\Documents and Settings\Administrator\NTUSER.DAT Object is locked
skipped
C:\Documents and Settings\Administrator\ntuser.dat.LOG Object is locked
skipped
C:\Documents and Settings\All Users\Application
Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\Common
Client\settings.dat Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\Shared\QBackup\index.qbs Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBConfig.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBDebug.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBDetect.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBNotify.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBRefr.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBSetCfg.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBSetCfg2.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBSetDev.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBSetLoc.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBSetUsr.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBStHash.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\BBValid.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\SPPolicy.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\SPStart.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SPBBC\SPStop.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtErEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtETmp\B821FA36.TMP Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtETmp\BFF81106.TMP Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtMoEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtNvEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtScEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtTxFEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application
Data\Symantec\SRTSP\SrtViEvt.log Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked
skipped
C:\Documents and Settings\LocalService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local
Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet
Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked
skipped
C:\Documents and Settings\NetworkService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked
skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcrst.dll Object
is locked skipped
C:\Program Files\Common Files\Symantec Shared\coShared\WA\1.5\NCOWAD.dat
Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\coShared\WA\1.5\NCOWADMT.dat
Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\coShared\WA\1.5\NCOWAS.dat
Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\coShared\WA\1.5\NCOWAS.ldb
Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\EENGINE\EPERSIST.DAT Object
is locked skipped
C:\Program Files\Common Files\Symantec Shared\SNDALRT.log Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\SNDCON.log Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\SNDDBG.log Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\SNDFW.log Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\SNDIDS.log Object is locked
skipped
C:\Program Files\Common Files\Symantec Shared\SNDSYS.log Object is locked
skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\master.mdf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\mastlog.ldf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\model.mdf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\modellog.ldf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\tempdb.mdf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\Data\templog.ldf
Object is locked skipped
C:\Program Files\Microsoft SQL Server\MSSQL$PRIMAVERA\LOG\ERRORLOG Object
is locked skipped
C:\Program Files\Norton 360\Log\AutoProtect.log Object is locked skipped
C:\Program Files\Norton 360\Log\AVContext.log Object is locked skipped
C:\Program Files\Norton 360\Log\AVManual.log Object is locked skipped
C:\Program Files\Norton 360\Log\Backup.log Object is locked skipped
C:\Program Files\Norton 360\Log\CUInternetPageViewHistory.log Object is
locked skipped
C:\Program Files\Norton 360\Log\CUInternetSearchHistory.log Object is
locked skipped
C:\Program Files\Norton 360\Log\CUInternetTempFiles.log Object is locked
skipped
C:\Program Files\Norton 360\Log\CUWindowsTempFiles.log Object is locked
skipped
C:\Program Files\Norton 360\Log\EmailScan.log Object is locked skipped
C:\Program Files\Norton 360\Log\InternetSecurity.log Object is locked
skipped
C:\Program Files\Norton 360\Log\ISIntrusionPrevented.log Object is locked
skipped
C:\Program Files\Norton 360\Log\ISIOTraffic.log Object is locked skipped
C:\Program Files\Norton 360\Log\ISNewNetwork.log Object is locked skipped
C:\Program Files\Norton 360\Log\LiveUpdate.log Object is locked skipped
C:\Program Files\Norton 360\Log\NCO.log Object is locked skipped
C:\Program Files\Norton 360\Log\VABrowserSettings.log Object is locked
skipped
C:\Program Files\Norton 360\Log\VAIPAddresses.log Object is locked skipped
C:\Program Files\Norton 360\Log\VAWeakPasswords.log Object is locked
skipped
C:\Program Files\Norton 360\Log\WDFScanner.log Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is
locked skipped
C:\System Volume Information\tracking.log Object is locked skipped
C:\System Volume
Information\_restore{A80475B6-CF6D-4B3A-BD21-B16C67DB5304}\RP34\change.log
Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SMINST\schedule.log Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked
skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\ACEEvent.evt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\Credenti.evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\ODiag.evt Object is locked skipped
C:\WINDOWS\system32\config\OSession.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\drivers\etc\Hosts.bak Object is locked skipped
C:\WINDOWS\system32\drivers\SafeBoot.sys Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\MsDtc\MSDTC.LOG Object is locked skipped
C:\WINDOWS\system32\MsDtc\Trace\dtctrace.log Object is locked skipped
C:\WINDOWS\system32\msmq\storage\QMLog Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked
skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked
skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked
skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked
skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked
skipped
C:\WINDOWS\Temp\JET6E7.tmp Object is locked skipped
C:\WINDOWS\Temp\JET87D.tmp Object is locked skipped
C:\WINDOWS\Temp\Perflib_Perfdata_268.dat Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
E:\System Volume Information\Desktop.ini Object is locked skipped
E:\System Volume Information\Folder.htt Object is locked skipped
E:\System Volume Information\MountPointManagerRemoteDatabase Object is
locked skipped
E:\System Volume Information\Protect.ed Object is locked skipped
E:\System Volume Information\Warning.bmp Object is locked skipped
G:\System Volume
Information\_restore{A80475B6-CF6D-4B3A-BD21-B16C67DB5304}\RP34\change.log
Object is locked skipped
Scan process completed.
I was told the post was too long so I'll post the HJT log in the next one!
Cheers,
elyob