Ok, this log file popped up and I still see crap on there that all these other programs keeps missing!! Please tell me what to do now. Thanks so much!!
"Cassandra" - 07-04-11 19:36:34 Service Pack 1
ComboFix 07-04-05 - Running from: "C:\Documents and Settings\Cassandra\Desktop"
(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\DOCUME~1\CASSAN~1\APPLIC~1\Dxcuknwrd.dll
C:\DOCUME~1\CASSAN~1\APPLIC~1\Dxcdmns.dll
C:\DOCUME~1\CASSAN~1\APPLIC~1\Dxccwrd.dll
C:\windows\updater.exe
C:\windows\system32\driverd.exe
C:\windows\system32\bund1\ClientBundle1.exe
C:\windows\system32\bund1\temp.txt
C:\windows\system32\vx.tll
C:\windows\system32\bund1
((((((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
-------\LEGACY_MCHINJDRV
((((((((((((((((((((((((((((((( Files Created from 2007-03-11 to 2007-04-11 ))))))))))))))))))))))))))))))))))
2007-04-11 19:37 106,767 --a------ C:\WINDOWS\rqrrqp.dll
2007-04-10 20:17 <DIR> d-------- C:\DOCUME~1\CASSAN~1\APPLIC~1\Prevx
2007-04-10 19:37 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Prevx
2007-04-10 19:30 77,312 --a------ C:\WINDOWS\ua2.dll
2007-04-10 19:29 106,767 --------- C:\WINDOWS\jkhfca.dll
2007-04-10 19:28 13,700,728 --a------ C:\Program Files\SETUP.PREVX1.2.3.1.14.2K2K3XP.x86AMD64.exe
2007-04-10 19:20 <DIR> d-------- C:\!KillBox
2007-04-10 19:02 <DIR> d-------- C:\VundoFix Backups
2007-04-10 18:59 524,288 --ah----- C:\DOCUME~1\ADMINI~1\NTUSER.DAT
2007-04-10 12:03 106,767 --a------ C:\WINDOWS\ljkkji.dll
2007-04-10 10:47 106,767 --a------ C:\WINDOWS\pmkiii.dll
2007-04-10 09:44 166,064 --a------ C:\Program Files\FixVundo.exe
2007-04-10 08:53 83,536 --a------ C:\WINDOWS\system32\drivers\iksyssec.sys
2007-04-10 08:53 626,688 --a------ C:\WINDOWS\system32\msvcr80.dll
2007-04-10 08:53 59,984 --a------ C:\WINDOWS\system32\drivers\iksysflt.sys
2007-04-10 08:53 52,304 --a------ C:\WINDOWS\system32\drivers\ikfilesec.sys
2007-04-10 08:53 39,248 --a------ C:\WINDOWS\system32\drivers\ikfileflt.sys
2007-04-10 08:53 26,064 --a------ C:\WINDOWS\system32\drivers\kcom.sys
2007-04-10 08:53 19,516,280 --a------ C:\Program Files\sdsetup.exe
2007-04-10 08:53 <DIR> d-------- C:\Program Files\Spyware Doctor
2007-04-10 08:53 <DIR> d-------- C:\DOCUME~1\CASSAN~1\APPLIC~1\PC Tools
2007-04-10 08:52 251,392 --a------ C:\Program Files\hijackthis_sfx.exe
2007-04-09 21:24 78,336 --a------ C:\WINDOWS\system32\drivers\ssi.sys
2007-04-09 21:24 102,912 --a------ C:\WINDOWS\system32\islzma.dll
2007-04-09 21:24 <DIR> d-------- C:\Program Files\RegistryFix
2007-04-09 21:24 <DIR> d-------- C:\DOCUME~1\LOCALS~1\APPLIC~1\Webroot
2007-04-09 21:23 <DIR> d-------- C:\Program Files\Webroot
2007-04-09 21:23 <DIR> d-------- C:\DOCUME~1\CASSAN~1\APPLIC~1\Webroot
2007-04-09 21:05 <DIR> d-------- C:\Program Files\SpywareBlaster
2007-04-09 21:04 <DIR> d-------- C:\Program Files\Lavasoft
2007-04-09 21:04 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-04-09 21:04 <DIR> d-------- C:\DOCUME~1\CASSAN~1\APPLIC~1\Lavasoft
2007-04-08 18:00 355 ---hs---- C:\WINDOWS\fhknmp.ini2
2007-04-08 17:56 <DIR> d--hs---- C:\FOUND.000
2007-04-08 17:53 89,230 --a------ C:\WINDOWS\mmn.exe
2007-04-08 17:53 270,336 --a------ C:\WINDOWS\pdp.exe
2007-04-08 16:56 89,391 --a------ C:\WINDOWS\TTC.exe
2007-04-08 16:56 105,434 --a------ C:\WINDOWS\VTTC.exe
2007-04-08 16:56 <DIR> d-------- C:\Program Files\DeskAlerts
2007-04-08 16:55 8,464 --a------ C:\WINDOWS\system32\sporder.dll
2007-04-08 16:54 72,320 --a------ C:\WINDOWS\system32\drivers\core.sys
2007-04-08 16:54 <DIR> d-------- C:\WINDOWS\system32\micro1
2007-04-08 16:53 96,256 --a-s---- C:\WINDOWS\system32\monterreyd_a4m.exe
2007-04-07 02:56 106,767 --a------ C:\WINDOWS\pmnkhf.dll
2007-04-04 13:53 184,320 --a------ C:\WINDOWS\win3211-2142643172.exe
2007-04-03 17:05 53,248 --a------ C:\WINDOWS\111uninst.exe
2007-04-02 18:57 19,275 --a------ C:\WINDOWS\system32\deslib.dll
2007-03-21 06:53 340,936 --a------ C:\WINDOWS\funnies.exe
2007-03-17 15:58 57,104 --a------ C:\DOCUME~1\CASSAN~1\APPLIC~1\GDIPFONTCACHEV1.DAT
2007-03-15 08:46 57,344 --a------ C:\WINDOWS\uni_eh10.exe
(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))
(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"Microsoft Works Update Detection"="C:\\Program Files\\Common Files\\Microsoft Shared\\Works Shared\\WkUFind.exe"
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"Adobe Photo Downloader"="\"C:\\Program Files\\Adobe\\Photoshop Album Starter Edition\\3.0\\Apps\\apdproxy.exe\""
"SpySweeper"="\"C:\\Program Files\\Webroot\\Spy Sweeper\\SpySweeper.exe\" /startintray"
"SDTray"="C:\\Program Files\\Spyware Doctor\\SDTrayApp.exe"
"PrevxOne"="\"C:\\Program Files\\Prevx1\\PXConsole.exe\""
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"
[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]
"RunNarrator"="Narrator.exe"
C:\ComboFix\aa.cf
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BootService]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="pmnkhf"
"hkey"="HKLM"
"command"="rundll32.exe \"C:\\WINDOWS\\pmnkhf.dll\",realset"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Configuration Manager]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="cfg32"
"hkey"="HKLM"
"command"="C:\\WINDOWS\\cfg32.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DeluxeCommunications]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Dxc"
"hkey"="HKLM"
"command"="C:\\Program Files\\DeluxeCommunications\\Dxc.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebBuying]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="webbuying"
"hkey"="HKCU"
"command"="C:\\Program Files\\Web Buying\\v1.6.8\\webbuying.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\win3211-2142643172]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="win3211-2142643172"
"hkey"="HKLM"
"command"="C:\\WINDOWS\\win3211-2142643172.exe"
"inimapping"="0"
HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\deslib
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa
Authentication Packages REG_MULTI_SZ msv1_0\0\0
Security Packages REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0
Notification Packages REG_MULTI_SZ scecli\0\0
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\sdauxservice
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\sdcoreservice
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
NetworkService REG_MULTI_SZ DnsCache\0\0
rpcss REG_MULTI_SZ RpcSs\0\0
imgsvc REG_MULTI_SZ StiSvc\0\0
termsvcs REG_MULTI_SZ TermService\0\0
********************************************************************
catchme 0.2 W2K/XP/Vista - userland rootkit detector by Gmer, 17 October 2006
http://www.gmer.netscanning hidden processes ...
scanning hidden services ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0
********************************************************************
Completion time: 07-04-11 20:15:58
C:\ComboFix-quarantined-files.txt ... 07-04-11 20:16
Edited by hottiemom24, 11 April 2007 - 08:39 PM.