ComboFix 13-08-11.02 - SuperUser 08/11/2013  13:50:25.2.2 - x86
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.2039.1279 [GMT -7:00]
Running from: c:\documents and settings\SuperUser\My Documents\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: AVG Internet Security 2013 *Enabled* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
.
(((((((((((((((((((((((((   Files Created from 2013-07-11 to 2013-08-11  )))))))))))))))))))))))))))))))
.
.
2013-08-10 12:28 . 2013-08-10 12:28	--------	d-----w-	c:\documents and settings\SuperUser\Application Data\Visan
2013-08-08 13:37 . 2013-08-08 13:37	--------	d-----w-	C:\_OTL
2013-08-08 11:34 . 2013-08-08 11:36	--------	d-----w-	c:\program files\MyPC Backup
2013-08-08 11:02 . 2013-08-08 11:02	--------	d-----w-	c:\windows\ERUNT
2013-08-07 22:27 . 2013-08-07 22:27	73728	----a-w-	c:\windows\ALCFDRTM.EXE
2013-08-07 22:08 . 2005-11-03 22:21	135168	----a-w-	c:\windows\system32\igfxres.dll
2013-08-07 20:31 . 2013-08-07 20:31	--------	d-----w-	c:\program files\Intel
2013-08-07 20:31 . 2013-07-16 15:32	53248	----a-w-	c:\windows\system32\CSVer.dll
2013-08-07 20:28 . 2013-08-07 20:28	--------	d-----w-	C:\Intel
2013-08-07 20:09 . 2013-08-07 20:09	--------	d-----w-	c:\documents and settings\SuperUser\Application Data\SystemRequirementsLab
2013-08-07 20:05 . 2013-08-07 20:05	--------	d-----w-	c:\documents and settings\SuperUser\Application Data\Oracle
2013-08-07 20:01 . 2013-08-07 20:01	--------	d-----w-	c:\windows\Sun
2013-08-07 20:01 . 2013-08-07 20:01	--------	d-----w-	c:\documents and settings\SuperUser\Local Settings\Application Data\Sun
2013-08-07 19:59 . 2013-08-07 19:59	--------	d-----w-	c:\program files\Common Files\Java
2013-08-07 19:59 . 2013-08-07 19:59	144896	----a-w-	c:\windows\system32\javacpl.cpl
2013-08-07 19:59 . 2013-08-07 19:59	867240	----a-w-	c:\windows\system32\npDeployJava1.dll
2013-08-07 19:59 . 2013-08-07 19:59	789416	----a-w-	c:\windows\system32\deployJava1.dll
2013-08-07 19:59 . 2013-08-07 19:59	94632	----a-w-	c:\windows\system32\WindowsAccessBridge.dll
2013-08-07 19:59 . 2013-08-07 19:59	--------	d-----w-	c:\program files\Java
2013-08-07 19:28 . 2013-08-07 19:28	--------	d-----w-	c:\program files\SystemRequirementsLab
2013-08-06 05:04 . 2013-04-04 21:50	22856	----a-w-	c:\windows\system32\drivers\mbam.sys
2013-08-06 05:04 . 2013-08-06 05:04	--------	d-----w-	c:\program files\Malwarebytes' Anti-Malware
2013-08-04 21:32 . 2013-08-04 21:32	--------	d-----w-	c:\documents and settings\SuperUser\Application Data\CrystalIdea Software
2013-08-04 20:31 . 2013-08-07 22:11	12992	----a-w-	c:\windows\system32\drivers\SWDUMon.sys
2013-08-04 20:31 . 2013-08-04 20:31	--------	d-----w-	c:\documents and settings\SuperUser\Local Settings\Application Data\DriverHub
2013-08-04 15:21 . 2013-05-09 08:59	29816	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2013-08-04 15:21 . 2013-08-04 15:21	369584	----a-w-	c:\windows\system32\drivers\aswSP.sys
2013-08-04 15:21 . 2013-05-09 08:59	56080	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2013-08-04 15:21 . 2013-05-09 08:59	49760	----a-w-	c:\windows\system32\drivers\aswRdr.sys
2013-08-04 15:21 . 2013-08-04 15:21	770344	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2013-08-04 15:21 . 2013-08-04 15:21	175176	----a-w-	c:\windows\system32\drivers\aswVmm.sys
2013-08-04 15:21 . 2013-05-09 08:59	49376	----a-w-	c:\windows\system32\drivers\aswRvrt.sys
2013-08-04 15:21 . 2013-05-09 08:59	66336	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2013-08-04 15:21 . 2013-05-09 08:58	229648	----a-w-	c:\windows\system32\aswBoot.exe
2013-08-04 15:20 . 2013-05-09 08:58	41664	----a-w-	c:\windows\avastSS.scr
2013-08-04 15:20 . 2013-08-04 22:35	--------	d-----w-	c:\program files\AVAST Software
2013-08-04 15:17 . 2013-08-04 15:20	--------	d-----w-	c:\documents and settings\All Users\Application Data\AVAST Software
2013-08-04 14:22 . 2013-08-04 14:22	--------	d-----w-	c:\documents and settings\SuperUser\Local Settings\Application Data\AVG Secure Search
2013-08-03 21:29 . 2013-08-03 21:29	--------	d-----w-	c:\program files\Speccy
2013-08-02 01:04 . 2012-05-25 20:14	42864	----a-w-	c:\windows\system32\sbbd.exe
2013-08-02 01:04 . 2012-05-25 20:14	101112	----a-w-	c:\windows\system32\drivers\SBREDrv.sys
2013-08-02 01:02 . 2013-08-08 00:41	--------	d-----w-	C:\VIPRERESCUE
2013-08-01 23:27 . 2013-08-05 06:16	--------	d-----w-	c:\windows\system32\NtmsData
2013-08-01 13:19 . 2013-08-01 13:19	--------	d-----w-	c:\program files\Common Files\Windows Live
2013-08-01 12:52 . 2013-08-01 12:57	--------	d-----w-	c:\windows\system32\MRT
2013-07-31 20:03 . 2013-08-08 01:13	--------	d-----w-	c:\documents and settings\All Users\Application Data\Norton
2013-07-31 19:28 . 2013-07-31 19:28	--------	d-----w-	c:\program files\Microsoft.NET
2013-07-30 03:17 . 2013-08-01 00:49	--------	d-----w-	c:\program files\JustCloud
2013-07-30 01:53 . 2013-07-30 01:53	--------	d-----w-	c:\program files\Common Files\xing shared
2013-07-30 01:47 . 2013-07-30 01:53	--------	d-----w-	c:\program files\Real
2013-07-30 00:59 . 2013-07-30 01:15	--------	d-----w-	c:\documents and settings\SuperUser\Local Settings\Application Data\Google
2013-07-30 00:46 . 2013-07-30 00:46	--------	d-----w-	c:\documents and settings\SuperUser\Application Data\Immunet
2013-07-29 23:20 . 2013-08-08 15:48	--------	d-----w-	c:\documents and settings\SuperUser\SyncFolder
2013-07-28 00:04 . 2013-07-28 00:04	--------	d-----w-	c:\program files\HP Photo Creations
2013-07-28 00:04 . 2013-08-10 13:09	--------	d-----w-	c:\documents and settings\All Users\Application Data\HP Photo Creations
2013-07-28 00:04 . 2013-08-10 12:28	--------	d-----w-	c:\documents and settings\All Users\Application Data\Visan
2013-07-26 12:09 . 2013-07-26 12:09	--------	d-----w-	c:\program files\Enigma Software Group
2013-07-26 12:07 . 2013-08-01 01:33	--------	d-----w-	c:\windows\027B5748C40941FE949B7B81A8304EF4.TMP
2013-07-26 12:07 . 2013-07-26 12:07	--------	d-----w-	c:\program files\Common Files\Wise Installation Wizard
2013-07-25 11:11 . 2013-07-25 11:11	--------	d-----w-	c:\program files\ParetoLogic
2013-07-23 14:09 . 2013-07-23 14:09	--------	d-----w-	c:\program files\MSXML 4.0
2013-07-23 01:19 . 2013-07-23 02:06	--------	d-----w-	c:\documents and settings\SuperUser\Application Data\AVG
2013-07-22 23:31 . 2013-07-22 23:31	--------	d-----w-	c:\documents and settings\TREVOR\Application Data\AVG SafeGuard toolbar
2013-07-22 12:19 . 2013-07-22 12:19	--------	d-----w-	c:\documents and settings\SuperUser\Application Data\ParetoLogic
2013-07-22 12:18 . 2013-07-25 12:02	--------	d-----w-	c:\documents and settings\All Users\Application Data\ParetoLogic
2013-07-22 11:03 . 2013-07-22 11:03	--------	d-----w-	c:\documents and settings\SuperUser\Application Data\TuneUp Software
2013-07-22 10:54 . 2013-07-22 10:54	--------	d--h--w-	c:\documents and settings\All Users\Application Data\Common Files
2013-07-22 10:54 . 2013-08-07 12:05	--------	d-----w-	c:\documents and settings\All Users\Application Data\MFAData
2013-07-22 10:54 . 2013-07-22 10:54	--------	d-----w-	c:\documents and settings\SuperUser\Local Settings\Application Data\MFAData
2013-07-22 10:17 . 2013-07-22 10:17	--------	d-----w-	c:\documents and settings\All Users\Application Data\Free Download Manager
2013-07-22 06:05 . 2013-07-22 08:48	--------	d-----w-	c:\program files\Ascentive
2013-07-22 05:59 . 2013-07-22 05:59	--------	d-----w-	c:\documents and settings\LocalService\Application Data\McAfee
2013-07-22 04:29 . 2013-07-22 04:29	--------	d-----w-	c:\documents and settings\All Users\Application Data\McAfee
2013-07-22 02:25 . 2013-07-22 07:49	--------	d-----w-	c:\documents and settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-07-22 02:25 . 2013-07-22 02:25	--------	d-----w-	c:\documents and settings\LocalService\Application Data\Apple Computer
2013-07-22 02:24 . 2013-07-22 02:24	--------	d-----w-	c:\program files\Bonjour
2013-07-22 02:22 . 2013-07-22 07:52	--------	d-----w-	c:\documents and settings\All Users\Application Data\Apple Computer
2013-07-16 10:07 . 2013-07-16 10:07	--------	d-----w-	c:\documents and settings\NetworkService\Local Settings\Application Data\HP
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-07 22:27 . 2012-03-23 10:08	73728	----a-w-	c:\windows\ALCFDRTM.VER
2013-08-02 12:06 . 2012-04-16 22:37	71048	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2013-08-02 12:06 . 2012-04-16 22:37	692104	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2013-06-08 06:55 . 2004-08-10 12:00	385024	------w-	c:\windows\system32\html.iec
2013-06-07 21:56 . 2004-08-10 12:00	920064	----a-w-	c:\windows\system32\wininet.dll
2013-06-07 21:56 . 2004-08-10 12:00	43520	------w-	c:\windows\system32\licmgr10.dll
2013-06-07 21:56 . 2004-08-10 12:00	1469440	------w-	c:\windows\system32\inetcpl.cpl
2013-06-04 07:23 . 2004-08-10 12:00	562688	----a-w-	c:\windows\system32\qedit.dll
2013-06-04 01:40 . 2004-08-10 12:00	1876736	----a-w-	c:\windows\system32\win32k.sys
2013-05-29 08:25 . 2013-05-29 08:25	82432	----a-w-	c:\windows\system32\msxml4r.dll
2013-05-29 08:25 . 2013-05-29 08:25	44544	----a-w-	c:\windows\system32\msxml4a.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58	121968	----a-w-	c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1AMPCBOK]
@="{04cd1f3e-81d5-4904-a3ab-e0f99a7d769d}"
[HKEY_CLASSES_ROOT\CLSID\{04cd1f3e-81d5-4904-a3ab-e0f99a7d769d}]
2009-11-07 08:07	297808	----a-w-	c:\windows\system32\mscoree.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"="c:\documents and settings\SuperUser\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe" [2012-09-02 138096]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2004-08-10 59392]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-22 59720]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"TkBellExe"="c:\program files\Real\RealPlayer\update\realsched.exe" [2013-07-30 295512]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2005-11-03 98304]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-11-03 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2005-11-03 118784]
"SoundMan"="SOUNDMAN.EXE" [2005-04-07 90112]
"AlcWzrd"="ALCWZRD.EXE" [2005-04-07 2805248]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2011-07-27 434080]
.
c:\documents and settings\SuperUser\Start Menu\Programs\Startup\
MyPC Backup.lnk - c:\program files\MyPC Backup\MyPC Backup.exe [2013-7-1 1945128]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0aswBoot.exe /A:* /L:1033 /heur:80 /RA:ask /pup /archives /IA:0 /KBD:3 /dir:C:\Program
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Documents and Settings\\SuperUser\\Local Settings\\Application Data\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [8/4/2013 8:21 AM 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [8/4/2013 8:21 AM 175176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [8/4/2013 8:21 AM 770344]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [8/4/2013 8:21 AM 369584]
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [8/1/2013 6:04 PM 101112]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [8/4/2013 8:21 AM 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [8/4/2013 8:21 AM 66336]
R2 BackupStack;Computer Backup (MyPC Backup);c:\program files\MyPC Backup\BackupStack.exe [7/1/2013 10:55 AM 32808]
R2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [8/5/2013 10:04 PM 418376]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [8/5/2013 10:04 PM 701512]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\RealNetworks\RealDownloader\rndlresolversvc.exe [4/16/2013 3:07 AM 39056]
R3 AR9271;Wireless Network Adapter Service;c:\windows\system32\drivers\athuw.sys [3/23/2012 3:14 AM 1714176]
R3 cpudrv;cpudrv;c:\program files\SystemRequirementsLab\cpudrv.sys [6/2/2011 10:08 AM 11336]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [8/5/2013 10:04 PM 22856]
S3 esgiguard;esgiguard;\??\c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys --> c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [?]
S3 SWDUMon;SWDUMon;c:\windows\system32\drivers\SWDUMon.sys [8/4/2013 1:31 PM 12992]
.
Contents of the 'Scheduled Tasks' folder
.
2013-08-11 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-16 12:06]
.
2013-08-11 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-02 00:57]
.
2013-08-11 c:\windows\Tasks\At1.job
- c:\program files\HP\HP Officejet 4620 series\Bin\HPCustPartic.exe [2011-12-19 00:58]
.
2013-08-11 c:\windows\Tasks\At2.job
- c:\program files\HP\HP Officejet 4620 series\Bin\HPCustPartic.exe [2011-12-19 00:58]
.
2013-08-10 c:\windows\Tasks\At3.job
- c:\program files\HP\HP Officejet 4620 series\Bin\HPCustPartic.exe [2011-12-19 00:58]
.
2013-08-10 c:\windows\Tasks\At4.job
- c:\program files\HP\HP Officejet 4620 series\Bin\HPCustPartic.exe [2011-12-19 00:58]
.
2013-08-11 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2013-08-04 08:58]
.
2013-08-11 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1085031214-527237240-682003330-1003Core.job
- c:\documents and settings\SuperUser\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2012-09-02 01:59]
.
2013-08-11 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1085031214-527237240-682003330-1003UA.job
- c:\documents and settings\SuperUser\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2012-09-02 01:59]
.
2013-08-11 c:\windows\Tasks\HP Photo Creations Communicator.job
- c:\documents and settings\All Users\Application Data\HP Photo Creations\Communicator.exe [2013-08-10 12:28]
.
2013-08-10 c:\windows\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1085031214-527237240-682003330-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2013-04-16 19:45]
.
2013-08-10 c:\windows\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1085031214-527237240-682003330-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2013-04-16 19:45]
.
2013-08-07 c:\windows\Tasks\RegCure Pro.job
- c:\program files\ParetoLogic\RegCure Pro\RegCurePro.exe [2013-06-11 23:50]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.bing.com
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
FF - ProfilePath - c:\documents and settings\SuperUser\Application Data\Mozilla\Firefox\Profiles\yfsfoh4e.default-1375915984703\
FF - ExtSQL: 2013-08-04 08:21; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
.
- - - - ORPHANS REMOVED - - - -
.
ShellIconOverlayIdentifiers-{4d87b7a7-23f1-470c-aa45-96b25b9bd138} - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-08-11 13:57
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...  
.
scanning hidden autostart entries ... 
.
scanning hidden files ...  
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1960)
c:\windows\system32\igfxdev.dll
.
- - - - - - - > 'explorer.exe'(5328)
c:\windows\system32\WININET.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCR80.dll
c:\program files\MyPC Backup\MPCBIconOverlays.dll
c:\program files\MyPC Backup\LogicNP.EZShellExtensions.dll
c:\program files\MyPC Backup\x86\System.Data.SQLite.dll
c:\program files\MyPC Backup\AWSSDK.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\hnetcfg.dll
c:\windows\system32\webcheck.dll
.
Completion time: 2013-08-11  13:59:01
ComboFix-quarantined-files.txt  2013-08-11 20:58
ComboFix2.txt  2013-08-03 16:34
.
Pre-Run: 15,083,515,904 bytes free
Post-Run: 15,633,272,832 bytes free
.
- - End Of File - - ECB9113F73607A6B9B257ED140D81C5B
8F558EB6672622401DA993E1E865C861