ComboFix 08-03-14.4 - Dayle Collins 2008-03-15 13:25:10.2 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.668 [GMT 0:00] Running from: C:\Documents and Settings\Dayle Collins\Desktop\Combo-Fix.exe * Created a new restore point [color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !![/b][/color] . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\check_LSA7.txt C:\Program Files\SecCenter C:\WINDOWS\Casino.ico C:\WINDOWS\cookies.ini C:\WINDOWS\Free Online Dating.ico C:\WINDOWS\Spyware Remover.ico C:\WINDOWS\system32\alog.txt C:\WINDOWS\system32\drivers\down C:\WINDOWS\system32\drivers\down\10013359.exe C:\WINDOWS\system32\drivers\down\10017187.exe C:\WINDOWS\system32\drivers\down\104062.exe C:\WINDOWS\system32\drivers\down\104468.exe C:\WINDOWS\system32\drivers\down\107843.exe C:\WINDOWS\system32\drivers\down\109562.exe C:\WINDOWS\system32\drivers\down\110140.exe C:\WINDOWS\system32\drivers\down\110656.exe C:\WINDOWS\system32\drivers\down\111703.exe C:\WINDOWS\system32\drivers\down\112906.exe C:\WINDOWS\system32\drivers\down\116640.exe C:\WINDOWS\system32\drivers\down\117093.exe C:\WINDOWS\system32\drivers\down\118718.exe C:\WINDOWS\system32\drivers\down\119546.exe C:\WINDOWS\system32\drivers\down\122281.exe C:\WINDOWS\system32\drivers\down\122984.exe C:\WINDOWS\system32\drivers\down\123437.exe C:\WINDOWS\system32\drivers\down\123625.exe C:\WINDOWS\system32\drivers\down\123781.exe C:\WINDOWS\system32\drivers\down\123890.exe C:\WINDOWS\system32\drivers\down\126125.exe C:\WINDOWS\system32\drivers\down\129171.exe C:\WINDOWS\system32\drivers\down\130031.exe C:\WINDOWS\system32\drivers\down\130171.exe C:\WINDOWS\system32\drivers\down\131750.exe C:\WINDOWS\system32\drivers\down\133375.exe C:\WINDOWS\system32\drivers\down\133500.exe C:\WINDOWS\system32\drivers\down\137156.exe C:\WINDOWS\system32\drivers\down\138125.exe C:\WINDOWS\system32\drivers\down\139187.exe C:\WINDOWS\system32\drivers\down\140953.exe C:\WINDOWS\system32\drivers\down\141812.exe C:\WINDOWS\system32\drivers\down\144078.exe C:\WINDOWS\system32\drivers\down\144140.exe C:\WINDOWS\system32\drivers\down\14586031.exe C:\WINDOWS\system32\drivers\down\14586281.exe C:\WINDOWS\system32\drivers\down\14598750.exe C:\WINDOWS\system32\drivers\down\14600234.exe C:\WINDOWS\system32\drivers\down\14602015.exe C:\WINDOWS\system32\drivers\down\14604328.exe C:\WINDOWS\system32\drivers\down\14607546.exe C:\WINDOWS\system32\drivers\down\14608234.exe C:\WINDOWS\system32\drivers\down\14616812.exe C:\WINDOWS\system32\drivers\down\14621453.exe C:\WINDOWS\system32\drivers\down\14622687.exe C:\WINDOWS\system32\drivers\down\14624625.exe C:\WINDOWS\system32\drivers\down\14629859.exe C:\WINDOWS\system32\drivers\down\14635218.exe C:\WINDOWS\system32\drivers\down\14635890.exe C:\WINDOWS\system32\drivers\down\14636062.exe C:\WINDOWS\system32\drivers\down\14637515.exe C:\WINDOWS\system32\drivers\down\14667203.exe C:\WINDOWS\system32\drivers\down\14669062.exe C:\WINDOWS\system32\drivers\down\14740656.exe C:\WINDOWS\system32\drivers\down\14743656.exe C:\WINDOWS\system32\drivers\down\14750890.exe C:\WINDOWS\system32\drivers\down\14771546.exe C:\WINDOWS\system32\drivers\down\14780187.exe C:\WINDOWS\system32\drivers\down\14781984.exe C:\WINDOWS\system32\drivers\down\14784453.exe C:\WINDOWS\system32\drivers\down\14795000.exe C:\WINDOWS\system32\drivers\down\14798718.exe C:\WINDOWS\system32\drivers\down\14799890.exe C:\WINDOWS\system32\drivers\down\14800281.exe C:\WINDOWS\system32\drivers\down\14803140.exe C:\WINDOWS\system32\drivers\down\148156.exe C:\WINDOWS\system32\drivers\down\14832093.exe C:\WINDOWS\system32\drivers\down\14833812.exe C:\WINDOWS\system32\drivers\down\148671.exe C:\WINDOWS\system32\drivers\down\149328.exe C:\WINDOWS\system32\drivers\down\151390.exe C:\WINDOWS\system32\drivers\down\157218.exe C:\WINDOWS\system32\drivers\down\158796.exe C:\WINDOWS\system32\drivers\down\171171.exe C:\WINDOWS\system32\drivers\down\172875.exe C:\WINDOWS\system32\drivers\down\177296.exe C:\WINDOWS\system32\drivers\down\178546.exe C:\WINDOWS\system32\drivers\down\180187.exe C:\WINDOWS\system32\drivers\down\183843.exe C:\WINDOWS\system32\drivers\down\195468.exe C:\WINDOWS\system32\drivers\down\196109.exe C:\WINDOWS\system32\drivers\down\200859.exe C:\WINDOWS\system32\drivers\down\201750.exe C:\WINDOWS\system32\drivers\down\204968.exe C:\WINDOWS\system32\drivers\down\211578.exe C:\WINDOWS\system32\drivers\down\222000.exe C:\WINDOWS\system32\drivers\down\222750.exe C:\WINDOWS\system32\drivers\down\223468.exe C:\WINDOWS\system32\drivers\down\228765.exe C:\WINDOWS\system32\drivers\down\230140.exe C:\WINDOWS\system32\drivers\down\230609.exe C:\WINDOWS\system32\drivers\down\23186562.exe C:\WINDOWS\system32\drivers\down\23187171.exe C:\WINDOWS\system32\drivers\down\23196062.exe C:\WINDOWS\system32\drivers\down\23198171.exe C:\WINDOWS\system32\drivers\down\23202890.exe C:\WINDOWS\system32\drivers\down\23223109.exe C:\WINDOWS\system32\drivers\down\23229015.exe C:\WINDOWS\system32\drivers\down\23230703.exe C:\WINDOWS\system32\drivers\down\23234281.exe C:\WINDOWS\system32\drivers\down\23243187.exe C:\WINDOWS\system32\drivers\down\23246765.exe C:\WINDOWS\system32\drivers\down\23247406.exe C:\WINDOWS\system32\drivers\down\23247812.exe C:\WINDOWS\system32\drivers\down\23252468.exe C:\WINDOWS\system32\drivers\down\23284093.exe C:\WINDOWS\system32\drivers\down\23285828.exe C:\WINDOWS\system32\drivers\down\235828.exe C:\WINDOWS\system32\drivers\down\241750.exe C:\WINDOWS\system32\drivers\down\24426890.exe C:\WINDOWS\system32\drivers\down\24427359.exe C:\WINDOWS\system32\drivers\down\24445250.exe C:\WINDOWS\system32\drivers\down\24446109.exe C:\WINDOWS\system32\drivers\down\24449531.exe C:\WINDOWS\system32\drivers\down\24451921.exe C:\WINDOWS\system32\drivers\down\24481296.exe C:\WINDOWS\system32\drivers\down\244890.exe C:\WINDOWS\system32\drivers\down\24490312.exe C:\WINDOWS\system32\drivers\down\24494531.exe C:\WINDOWS\system32\drivers\down\24496953.exe C:\WINDOWS\system32\drivers\down\24502390.exe C:\WINDOWS\system32\drivers\down\24511468.exe C:\WINDOWS\system32\drivers\down\24514500.exe C:\WINDOWS\system32\drivers\down\24515687.exe C:\WINDOWS\system32\drivers\down\24515859.exe C:\WINDOWS\system32\drivers\down\24520703.exe C:\WINDOWS\system32\drivers\down\24555750.exe C:\WINDOWS\system32\drivers\down\24561281.exe C:\WINDOWS\system32\drivers\down\248171.exe C:\WINDOWS\system32\drivers\down\249828.exe C:\WINDOWS\system32\drivers\down\250218.exe C:\WINDOWS\system32\drivers\down\253468.exe C:\WINDOWS\system32\drivers\down\259750.exe C:\WINDOWS\system32\drivers\down\275906.exe C:\WINDOWS\system32\drivers\down\281156.exe C:\WINDOWS\system32\drivers\down\282921.exe C:\WINDOWS\system32\drivers\down\29074921.exe C:\WINDOWS\system32\drivers\down\29076281.exe C:\WINDOWS\system32\drivers\down\29077453.exe C:\WINDOWS\system32\drivers\down\29081406.exe C:\WINDOWS\system32\drivers\down\29096281.exe C:\WINDOWS\system32\drivers\down\29103078.exe C:\WINDOWS\system32\drivers\down\29104359.exe C:\WINDOWS\system32\drivers\down\29107578.exe C:\WINDOWS\system32\drivers\down\29113718.exe C:\WINDOWS\system32\drivers\down\29116468.exe C:\WINDOWS\system32\drivers\down\29117312.exe C:\WINDOWS\system32\drivers\down\29117484.exe C:\WINDOWS\system32\drivers\down\29119140.exe C:\WINDOWS\system32\drivers\down\29151031.exe C:\WINDOWS\system32\drivers\down\29153375.exe C:\WINDOWS\system32\drivers\down\291875.exe C:\WINDOWS\system32\drivers\down\29241187.exe C:\WINDOWS\system32\drivers\down\29241859.exe C:\WINDOWS\system32\drivers\down\29246796.exe C:\WINDOWS\system32\drivers\down\29248390.exe C:\WINDOWS\system32\drivers\down\29250781.exe C:\WINDOWS\system32\drivers\down\29263265.exe C:\WINDOWS\system32\drivers\down\29275796.exe C:\WINDOWS\system32\drivers\down\29283250.exe C:\WINDOWS\system32\drivers\down\29284984.exe C:\WINDOWS\system32\drivers\down\29286796.exe C:\WINDOWS\system32\drivers\down\29315609.exe C:\WINDOWS\system32\drivers\down\29318718.exe C:\WINDOWS\system32\drivers\down\29322203.exe C:\WINDOWS\system32\drivers\down\29326156.exe C:\WINDOWS\system32\drivers\down\29331734.exe C:\WINDOWS\system32\drivers\down\29359734.exe C:\WINDOWS\system32\drivers\down\29361953.exe C:\WINDOWS\system32\drivers\down\293625.exe C:\WINDOWS\system32\drivers\down\298984.exe C:\WINDOWS\system32\drivers\down\312500.exe C:\WINDOWS\system32\drivers\down\315468.exe C:\WINDOWS\system32\drivers\down\322343.exe C:\WINDOWS\system32\drivers\down\331828.exe C:\WINDOWS\system32\drivers\down\371046.exe C:\WINDOWS\system32\drivers\down\371671.exe C:\WINDOWS\system32\drivers\down\376046.exe C:\WINDOWS\system32\drivers\down\378437.exe C:\WINDOWS\system32\drivers\down\381921.exe C:\WINDOWS\system32\drivers\down\39003687.exe C:\WINDOWS\system32\drivers\down\39004109.exe C:\WINDOWS\system32\drivers\down\39022281.exe C:\WINDOWS\system32\drivers\down\39023890.exe C:\WINDOWS\system32\drivers\down\39050750.exe C:\WINDOWS\system32\drivers\down\39083703.exe C:\WINDOWS\system32\drivers\down\39096578.exe C:\WINDOWS\system32\drivers\down\39099656.exe C:\WINDOWS\system32\drivers\down\39102390.exe C:\WINDOWS\system32\drivers\down\39106296.exe C:\WINDOWS\system32\drivers\down\39110656.exe C:\WINDOWS\system32\drivers\down\39115406.exe C:\WINDOWS\system32\drivers\down\39116187.exe C:\WINDOWS\system32\drivers\down\39116546.exe C:\WINDOWS\system32\drivers\down\39126031.exe C:\WINDOWS\system32\drivers\down\39167468.exe C:\WINDOWS\system32\drivers\down\39171078.exe C:\WINDOWS\system32\drivers\down\391828.exe C:\WINDOWS\system32\drivers\down\398984.exe C:\WINDOWS\system32\drivers\down\400421.exe C:\WINDOWS\system32\drivers\down\401828.exe C:\WINDOWS\system32\drivers\down\407359.exe C:\WINDOWS\system32\drivers\down\415296.exe C:\WINDOWS\system32\drivers\down\418453.exe C:\WINDOWS\system32\drivers\down\425109.exe C:\WINDOWS\system32\drivers\down\426609.exe C:\WINDOWS\system32\drivers\down\427343.exe C:\WINDOWS\system32\drivers\down\428015.exe C:\WINDOWS\system32\drivers\down\437515.exe C:\WINDOWS\system32\drivers\down\43788156.exe C:\WINDOWS\system32\drivers\down\43788484.exe C:\WINDOWS\system32\drivers\down\43794609.exe C:\WINDOWS\system32\drivers\down\43794750.exe C:\WINDOWS\system32\drivers\down\43796171.exe C:\WINDOWS\system32\drivers\down\43797984.exe C:\WINDOWS\system32\drivers\down\43800328.exe C:\WINDOWS\system32\drivers\down\43818968.exe C:\WINDOWS\system32\drivers\down\43825468.exe C:\WINDOWS\system32\drivers\down\43826765.exe C:\WINDOWS\system32\drivers\down\43828328.exe C:\WINDOWS\system32\drivers\down\43833375.exe C:\WINDOWS\system32\drivers\down\43838562.exe C:\WINDOWS\system32\drivers\down\43841921.exe C:\WINDOWS\system32\drivers\down\43843156.exe C:\WINDOWS\system32\drivers\down\43844593.exe C:\WINDOWS\system32\drivers\down\43870156.exe C:\WINDOWS\system32\drivers\down\43871828.exe C:\WINDOWS\system32\drivers\down\445078.exe C:\WINDOWS\system32\drivers\down\452484.exe C:\WINDOWS\system32\drivers\down\457546.exe C:\WINDOWS\system32\drivers\down\467718.exe C:\WINDOWS\system32\drivers\down\487218.exe C:\WINDOWS\system32\drivers\down\491515.exe C:\WINDOWS\system32\drivers\down\493656.exe C:\WINDOWS\system32\drivers\down\496015.exe C:\WINDOWS\system32\drivers\down\506359.exe C:\WINDOWS\system32\drivers\down\509859.exe C:\WINDOWS\system32\drivers\down\512171.exe C:\WINDOWS\system32\drivers\down\512531.exe C:\WINDOWS\system32\drivers\down\516546.exe C:\WINDOWS\system32\drivers\down\53578109.exe C:\WINDOWS\system32\drivers\down\53580078.exe C:\WINDOWS\system32\drivers\down\53583671.exe C:\WINDOWS\system32\drivers\down\53598156.exe C:\WINDOWS\system32\drivers\down\53639578.exe C:\WINDOWS\system32\drivers\down\53651046.exe C:\WINDOWS\system32\drivers\down\53654343.exe C:\WINDOWS\system32\drivers\down\53666875.exe C:\WINDOWS\system32\drivers\down\53670937.exe C:\WINDOWS\system32\drivers\down\53691109.exe C:\WINDOWS\system32\drivers\down\53698156.exe C:\WINDOWS\system32\drivers\down\53705296.exe C:\WINDOWS\system32\drivers\down\53708859.exe C:\WINDOWS\system32\drivers\down\53715890.exe C:\WINDOWS\system32\drivers\down\53771265.exe C:\WINDOWS\system32\drivers\down\53772828.exe C:\WINDOWS\system32\drivers\down\549859.exe C:\WINDOWS\system32\drivers\down\552781.exe C:\WINDOWS\system32\drivers\down\56265.exe C:\WINDOWS\system32\drivers\down\57515.exe C:\WINDOWS\system32\drivers\down\57984.exe C:\WINDOWS\system32\drivers\down\58203.exe C:\WINDOWS\system32\drivers\down\58275859.exe C:\WINDOWS\system32\drivers\down\58276156.exe C:\WINDOWS\system32\drivers\down\58280531.exe C:\WINDOWS\system32\drivers\down\58280625.exe C:\WINDOWS\system32\drivers\down\58281578.exe C:\WINDOWS\system32\drivers\down\58284906.exe C:\WINDOWS\system32\drivers\down\58296609.exe C:\WINDOWS\system32\drivers\down\58301671.exe C:\WINDOWS\system32\drivers\down\58302890.exe C:\WINDOWS\system32\drivers\down\58304671.exe C:\WINDOWS\system32\drivers\down\58310953.exe C:\WINDOWS\system32\drivers\down\58313656.exe C:\WINDOWS\system32\drivers\down\58314359.exe C:\WINDOWS\system32\drivers\down\58314593.exe C:\WINDOWS\system32\drivers\down\58316062.exe C:\WINDOWS\system32\drivers\down\58344515.exe C:\WINDOWS\system32\drivers\down\58345640.exe C:\WINDOWS\system32\drivers\down\58546.exe C:\WINDOWS\system32\drivers\down\619093.exe C:\WINDOWS\system32\drivers\down\619953.exe C:\WINDOWS\system32\drivers\down\625312.exe C:\WINDOWS\system32\drivers\down\627203.exe C:\WINDOWS\system32\drivers\down\65281.exe C:\WINDOWS\system32\drivers\down\655390.exe C:\WINDOWS\system32\drivers\down\66343.exe C:\WINDOWS\system32\drivers\down\665781.exe C:\WINDOWS\system32\drivers\down\66843.exe C:\WINDOWS\system32\drivers\down\671656.exe C:\WINDOWS\system32\drivers\down\673359.exe C:\WINDOWS\system32\drivers\down\67390.exe C:\WINDOWS\system32\drivers\down\68178140.exe C:\WINDOWS\system32\drivers\down\68181156.exe C:\WINDOWS\system32\drivers\down\68243078.exe C:\WINDOWS\system32\drivers\down\68243953.exe C:\WINDOWS\system32\drivers\down\68269390.exe C:\WINDOWS\system32\drivers\down\68283875.exe C:\WINDOWS\system32\drivers\down\68293500.exe C:\WINDOWS\system32\drivers\down\68295062.exe C:\WINDOWS\system32\drivers\down\68299421.exe C:\WINDOWS\system32\drivers\down\68303984.exe C:\WINDOWS\system32\drivers\down\68312890.exe C:\WINDOWS\system32\drivers\down\68339890.exe C:\WINDOWS\system32\drivers\down\68340109.exe C:\WINDOWS\system32\drivers\down\68341765.exe C:\WINDOWS\system32\drivers\down\683968.exe C:\WINDOWS\system32\drivers\down\68401625.exe C:\WINDOWS\system32\drivers\down\68402828.exe C:\WINDOWS\system32\drivers\down\694296.exe C:\WINDOWS\system32\drivers\down\69515.exe C:\WINDOWS\system32\drivers\down\697515.exe C:\WINDOWS\system32\drivers\down\698468.exe C:\WINDOWS\system32\drivers\down\698812.exe C:\WINDOWS\system32\drivers\down\70125.exe C:\WINDOWS\system32\drivers\down\701750.exe C:\WINDOWS\system32\drivers\down\70781.exe C:\WINDOWS\system32\drivers\down\753000.exe C:\WINDOWS\system32\drivers\down\754718.exe C:\WINDOWS\system32\drivers\down\76312.exe C:\WINDOWS\system32\drivers\down\79000.exe C:\WINDOWS\system32\drivers\down\80000.exe C:\WINDOWS\system32\drivers\down\80500.exe C:\WINDOWS\system32\drivers\down\81562.exe C:\WINDOWS\system32\drivers\down\81765.exe C:\WINDOWS\system32\drivers\down\82816812.exe C:\WINDOWS\system32\drivers\down\82817156.exe C:\WINDOWS\system32\drivers\down\82818343.exe C:\WINDOWS\system32\drivers\down\82829125.exe C:\WINDOWS\system32\drivers\down\82833218.exe C:\WINDOWS\system32\drivers\down\82849437.exe C:\WINDOWS\system32\drivers\down\82857625.exe C:\WINDOWS\system32\drivers\down\82860437.exe C:\WINDOWS\system32\drivers\down\82866671.exe C:\WINDOWS\system32\drivers\down\82869328.exe C:\WINDOWS\system32\drivers\down\82886109.exe C:\WINDOWS\system32\drivers\down\82886671.exe C:\WINDOWS\system32\drivers\down\82890796.exe C:\WINDOWS\system32\drivers\down\82893140.exe C:\WINDOWS\system32\drivers\down\82925234.exe C:\WINDOWS\system32\drivers\down\82926453.exe C:\WINDOWS\system32\drivers\down\84906.exe C:\WINDOWS\system32\drivers\down\86671.exe C:\WINDOWS\system32\drivers\down\87031.exe C:\WINDOWS\system32\drivers\down\87687.exe C:\WINDOWS\system32\drivers\down\895062.exe C:\WINDOWS\system32\drivers\down\91359.exe C:\WINDOWS\system32\drivers\down\91593.exe C:\WINDOWS\system32\drivers\down\923359.exe C:\WINDOWS\system32\drivers\down\925500.exe C:\WINDOWS\system32\drivers\down\9922453.exe C:\WINDOWS\system32\drivers\down\9924312.exe C:\WINDOWS\system32\drivers\down\9926546.exe C:\WINDOWS\system32\drivers\down\9940218.exe C:\WINDOWS\system32\drivers\down\9954703.exe C:\WINDOWS\system32\drivers\down\9961390.exe C:\WINDOWS\system32\drivers\down\9963171.exe C:\WINDOWS\system32\drivers\down\9965515.exe C:\WINDOWS\system32\drivers\down\9967125.exe C:\WINDOWS\system32\drivers\down\9972125.exe C:\WINDOWS\system32\drivers\down\9974937.exe C:\WINDOWS\system32\drivers\down\9975453.exe C:\WINDOWS\system32\drivers\down\9975921.exe C:\WINDOWS\system32\drivers\down\9978687.exe C:\WINDOWS\system32\drivers\hldrrr.exe C:\WINDOWS\system32\drivers\srosa.sys C:\WINDOWS\system32\mcrh.tmp C:\WINDOWS\system32\mdelk.exe C:\WINDOWS\system32\wintems.exe C:\WINDOWS\Tasks.\ISP signup reminder 1.job . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\LEGACY_DOMAINSERVICE -------\DomainService -------\IntelC52 ((((((((((((((((((((((((( Files Created from 2008-02-16 to 2008-03-16 ))))))))))))))))))))))))))))))) . 2008-03-15 08:27 . 2008-03-15 08:27 d-------- C:\Program Files\Trend Micro 2008-03-14 14:48 . 2008-03-14 16:54 d-------- C:\WINDOWS\BDOSCAN8 2008-03-14 14:46 . 2008-03-14 14:46 d-------- C:\Program Files\AirScanner AV For SmartPhones 2008-03-14 07:51 . 2008-03-14 07:51 d-------- C:\Program Files\Alwil Software 2008-03-06 19:41 . 2008-03-14 17:23 d-------- C:\Program Files\SlimBrowser 2008-03-06 19:41 . 2008-03-15 09:21 d-------- C:\Documents and Settings\Dayle Collins\Application Data\SlimBrowser 2008-02-23 17:25 . 2008-02-23 17:25 d-------- C:\Program Files\iPod . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-03-16 17:44 --------- d-----w C:\Documents and Settings\Dayle Collins\Application Data\Skype 2008-03-16 17:09 0 ----a-w C:\WINDOWS\system32\drivers\lvuvc.hs 2008-03-13 03:56 --------- d-----w C:\Program Files\eMule 2008-02-23 17:26 --------- d-----w C:\Program Files\iTunes 2008-02-11 18:59 --------- d-----w C:\Program Files\QuickTime 2008-01-26 09:16 --------- d-----w C:\Documents and Settings\Dayle Collins\Application Data\Apple Computer 2008-01-26 09:15 --------- d-----w C:\Program Files\Apple Software Update 2006-03-15 18:32 74,272 ----a-w C:\Documents and Settings\Dayle Collins\Application Data\GDIPFONTCACHEV1.DAT 2006-08-25 15:45 617,472 --sha-w C:\WINDOWS\SYSTEM32\comctl32.dll 2005-11-29 14:36 848 --sha-w C:\WINDOWS\SYSTEM32\KGyGaAvL.sys 2004-08-04 07:56 1,028,096 --sha-w C:\WINDOWS\SYSTEM32\mfc42.dll 2004-08-04 07:56 413,696 --sha-w C:\WINDOWS\SYSTEM32\msvcp60.dll 2007-09-16 08:49 1,336,718 --sh--w C:\WINDOWS\SYSTEM32\rtstv.bak1 2007-09-20 17:46 1,309,408 --sh--w C:\WINDOWS\SYSTEM32\rtstv.bak2 2007-09-20 18:48 1,310,431 --sh--w C:\WINDOWS\SYSTEM32\rtstv.ini2 2004-08-04 07:56 30,749 --sha-w C:\WINDOWS\SYSTEM32\vbajet32.dll 2007-08-31 22:33 15,509,792 --sha-w C:\WINDOWS\SYSTEM32\DRIVERS\fidbox.dat 2007-08-31 22:33 762,144 --sha-w C:\WINDOWS\SYSTEM32\DRIVERS\fidbox2.dat . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3AD6B13D-A0AB-46bb-8BC5-D89874EEAB3C}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D78ED111-04CC-4062-BECE-3A1CF9A248CD}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2007-03-30 12:34 25263144] "H/PC Connection Agent"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 12:39 1289000] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="C:\WINDOWS\System32\NvCpl.dll" [2003-11-03 12:46 4800512] "zBrowser Launcher"="C:\Program Files\Logitech\iTouch\iTouch.exe" [2004-03-18 09:33 892928] "Logitech Utility"="Logi_MwX.Exe" [2002-11-08 09:50 19968 C:\WINDOWS\LOGI_MWX.EXE] "dla"="C:\WINDOWS\system32\dla\tfswctrl.exe" [2004-03-25 01:04 122939] "LogitechCommunicationsManager"="C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [2007-02-08 00:12 488984] "MBkLogOnHook"="C:\Program Files\McAfee\MBK\LogOnHook.exe" [ ] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-01-31 23:13 385024] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-02-19 13:10 267048] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2004-08-04 07:56 15360] "Picasa Media Detector"="C:\Program Files\Picasa2\PicasaMediaDetector.exe" [2007-09-28 01:17 443968] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgwlntf] avgwlntf.dll 2007-08-31 22:16 9216 C:\WINDOWS\SYSTEM32\avgwlntf.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ddcbyab] ddcbyab.dll [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "C:\\Program Files\\eMule\\emule.exe"= "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"= C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"= C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"= C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application "C:\\Program Files\\iTunes\\iTunes.exe"= "C:\\Program Files\\Skype\\Phone\\Skype.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service R1 Cinemsup;Cinemsup;C:\WINDOWS\system32\drivers\Cinemsup.sys [2003-12-19 02:00] S1 srosa;Megadrv3;C:\WINDOWS\system32\drivers\srosa.sys [] S3 StMp3Rec;Player Recovery Device Control Driver;C:\WINDOWS\system32\Drivers\StMp3Rec.sys [2005-08-16 11:23] S3 usbprint;Microsoft USB PRINTER Class;C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 07:01] S3 wampapache;wampapache;"c:\Program Files\wamp\apache2\bin\Apache.exe" -k runservice [] S3 wampmysqld;wampmysqld;"c:\Program Files\wamp\mysql\bin\mysqld-nt.exe" "--defaults-file=c:\Program Files\wamp\mysql\my.ini" wampmysqld [] . Contents of the 'Scheduled Tasks' folder "2008-01-26 09:15:24 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe "2007-09-01 08:40:00 C:\WINDOWS\Tasks\Uniblue SpeedUpMyPC Nag.job" - C:\Program Files\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe "2007-08-12 08:40:29 C:\WINDOWS\Tasks\Uniblue SpeedUpMyPC.job" - C:\Program Files\Uniblue\SpeedUpMyPC 3\SpeedUpMyPC.exe "2008-03-09 21:09:00 C:\WINDOWS\Tasks\Uniblue SpyEraser Nag.job" - C:\Program Files\Uniblue\SpyEraser\SpyEraser.exe "2007-09-01 20:13:13 C:\WINDOWS\Tasks\Uniblue SpyEraser.job" - C:\Program Files\Uniblue\SpyEraser\SpyEraser.exe . ************************************************************************** catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-03-16 17:44:16 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . ------------------------ Other Running Processes ------------------------ . c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Logitech\MouseWare\system\em_exec.exe C:\PROGRA~1\MICROS~4\rapimgr.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Skype\Plugin Manager\skypePM.exe . ************************************************************************** . Completion time: 2008-03-16 17:51:46 - machine was rebooted ComboFix-quarantined-files.txt 2008-03-16 17:51:42 . 2008-03-12 19:02:00 --- E O F ---