This topic is locked
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.450 [GMT 0:00]
Running from: C:\Documents and Settings\caroline\Desktop\ComboFix.exe
* Created a new restore point
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\system32\awtsq.dll
C:\WINDOWS\system32\xxyabcy.dll
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat
C:\Documents and Settings\caroline\Application Data\SpamBlocker
C:\Documents and Settings\caroline\Application Data\SpamBlockerUtility_Icons
C:\Documents and Settings\caroline\Application Data\SpamBlockerUtility_Icons\3bSoftware_icon_1.ico
C:\Documents and Settings\caroline\Application Data\SpamBlockerUtility_Icons\wallpapere1.ico
C:\Program Files\Helper
C:\Program Files\Helper\Helper10.dll
C:\Program Files\Hotbar
C:\Program Files\lsass.exe
C:\Program Files\smss.exe
C:\Program Files\spoolsv.exe
C:\Program Files\ucleaner_setup.exe
C:\Program Files\Ultimate Cleaner
C:\Program Files\Ultimate Defender
C:\WINDOWS\mgrs.exe
C:\WINDOWS\system32\awtsq.dll
C:\WINDOWS\system32\drvbuzr.dll
C:\WINDOWS\system32\drvxuwr.dll
C:\WINDOWS\system32\hbunvzwg.dll
C:\WINDOWS\system32\hbunvzwg.dll . . . . failed to delete
C:\WINDOWS\system32\hbunvzwg.dllbox
C:\WINDOWS\system32\lngrkrhk.dll
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\qstwa.ini
C:\WINDOWS\system32\qstwa.ini2
C:\WINDOWS\system32\sesxsnrb.exe
C:\WINDOWS\system32\vfgvtayd.exe
C:\WINDOWS\system32\winbug32.dll
C:\WINDOWS\system32\wvrddlrg.dll
C:\WINDOWS\system32\xxyabcy.dll
C:\WINDOWS\system32\xxyyyvs.dll
----- BITS: Possible infected sites -----
hxxp://dl.google.com
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\LEGACY_DOMAINSERVICE
-------\DomainService
((((((((((((((((((((((((( Files Created from 2007-12-28 to 2008-01-30 )))))))))))))))))))))))))))))))
.
2008-01-30 10:19 . 2008-01-30 10:22 19,062 ---hs---- C:\WINDOWS\system32\hbunvzwg.dllbox
2008-01-29 21:34 . 2008-01-30 10:11 21 --a------ C:\WINDOWS\pskt.ini
2008-01-29 21:26 . 2008-01-30 10:17 163,904 --a------ C:\WINDOWS\system32\hbunvzwg.dll
2008-01-29 17:53 . 2008-01-29 17:56 <DIR> d-------- C:\Program Files\limewire
2008-01-29 13:10 . 2008-01-29 13:10 <DIR> d-------- C:\Documents and Settings\LocalService\Application Data\AVG7
2008-01-29 13:10 . 2008-01-30 09:36 <DIR> d-------- C:\Documents and Settings\caroline\Application Data\AVG7
2008-01-29 13:10 . 2008-01-29 13:10 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-01-29 13:10 . 2008-01-30 09:35 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\avg7
2008-01-29 09:23 . 2008-01-29 09:23 160,560 --a------ C:\Program Files\udefender_setup.exe
2008-01-29 09:12 . 2008-01-29 09:12 103,936 --a------ C:\WINDOWS\system32\drvxuw.dll
2008-01-29 09:12 . 2008-01-29 09:12 18,944 --a------ C:\WINDOWS\system32\drvduz.dll
2008-01-29 09:11 . 2008-01-29 09:11 103,936 --a------ C:\WINDOWS\system32\drvbuz.dll
2008-01-29 09:11 . 2008-01-29 09:11 23,552 --a------ C:\WINDOWS\system32\winhdn32.dll
2008-01-28 09:43 . 2008-01-28 09:43 268 --ah----- C:\sqmdata12.sqm
2008-01-28 09:43 . 2008-01-28 09:43 244 --ah----- C:\sqmnoopt12.sqm
2008-01-27 19:42 . 2008-01-27 19:42 268 --ah----- C:\sqmdata11.sqm
2008-01-27 19:42 . 2008-01-27 19:42 244 --ah----- C:\sqmnoopt11.sqm
2008-01-27 15:57 . 2008-01-27 15:57 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Elaborate Bytes
2008-01-27 15:55 . 2008-01-27 15:55 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SlySoft
2008-01-27 15:54 . 2008-01-27 15:54 <DIR> d-------- C:\Program Files\Elaborate Bytes
2008-01-27 15:53 . 2008-01-27 15:57 72 ---hs---- C:\WINDOWS\SFADD43AA.tmp
2008-01-27 15:52 . 2008-01-27 15:52 <DIR> d-------- C:\Program Files\SlySoft
2008-01-25 18:42 . 2008-01-29 18:41 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-01-25 18:42 . 2008-01-25 18:42 1,409 --a------ C:\WINDOWS\QTFont.for
2008-01-24 23:45 . 2008-01-24 23:45 268 --ah----- C:\sqmdata10.sqm
2008-01-24 23:45 . 2008-01-24 23:45 244 --ah----- C:\sqmnoopt10.sqm
2008-01-24 14:56 . 2004-08-04 00:56 21,504 --a------ C:\WINDOWS\system32\hidserv.dll
2008-01-24 14:56 . 2004-08-04 00:56 21,504 --a------ C:\WINDOWS\system32\dllcache\hidserv.dll
2008-01-24 11:39 . 2008-01-24 11:39 268 --ah----- C:\sqmdata09.sqm
2008-01-24 11:39 . 2008-01-24 11:39 244 --ah----- C:\sqmnoopt09.sqm
2008-01-24 10:38 . 2008-01-24 10:38 268 --ah----- C:\sqmdata08.sqm
2008-01-24 10:38 . 2008-01-24 10:38 244 --ah----- C:\sqmnoopt08.sqm
2008-01-24 10:22 . 2008-01-24 10:22 268 --ah----- C:\sqmdata07.sqm
2008-01-24 10:22 . 2008-01-24 10:22 244 --ah----- C:\sqmnoopt07.sqm
2008-01-24 10:06 . 2008-01-24 10:06 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Symantec
2008-01-24 10:05 . 2008-01-24 10:05 <DIR> d-------- C:\WINDOWS\Sun
2008-01-24 10:05 . 2008-01-24 10:05 <DIR> d-------- C:\Documents and Settings\caroline\LimeWire Shared
2008-01-24 10:05 . 2008-01-24 10:05 <DIR> d-------- C:\Documents and Settings\caroline\Application Data\AdobeUM
2008-01-24 10:04 . 2008-01-24 10:04 <DIR> d-------- C:\Documents and Settings\caroline\LimeWire Store Purchased
2008-01-24 10:00 . 2008-01-24 10:00 268 --ah----- C:\sqmdata06.sqm
2008-01-24 10:00 . 2008-01-24 10:00 244 --ah----- C:\sqmnoopt06.sqm
2008-01-24 09:59 . 2001-08-17 22:36 99,328 --a------ C:\WINDOWS\system32\srusd.dll
2008-01-24 09:59 . 2001-08-17 22:36 99,328 --a------ C:\WINDOWS\system32\dllcache\srusd.dll
2008-01-24 09:59 . 2001-08-17 22:36 71,680 --a------ C:\WINDOWS\system32\dllcache\fnfilter.dll
2008-01-24 09:59 . 2001-08-17 13:53 6,784 --a------ C:\WINDOWS\system32\dllcache\serscan.sys
2008-01-08 12:41 . 2001-08-17 22:36 71,680 --a------ C:\WINDOWS\system32\fnfilter.dll
2008-01-08 12:41 . 2001-08-17 13:53 6,784 --a------ C:\WINDOWS\system32\drivers\serscan.sys
2008-01-08 10:43 . 2008-01-29 18:07 <DIR> d-------- C:\Documents and Settings\caroline\LimeWire Saved
2008-01-03 10:20 . 2008-01-03 10:20 <DIR> d-------- C:\Program Files\K-Lite Codec Pack
2008-01-03 10:20 . 2007-07-25 14:24 1,559,040 --a------ C:\WINDOWS\system32\xvidcore.dll
2008-01-03 10:20 . 2007-09-04 17:56 164,352 --a------ C:\WINDOWS\system32\unrar.dll
2008-01-02 16:14 . 2008-01-02 16:14 <DIR> d--h----- C:\Program Files\Uninstall Information
2008-01-02 15:55 . 2008-01-02 15:55 192,512 --a------ C:\WINDOWS\system32\TC-SpyR.exe
2008-01-02 15:54 . 2008-01-30 10:22 <DIR> d-------- C:\Program Files\TC-Spy
2008-01-02 14:03 . 2008-01-02 14:03 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2008-01-02 14:02 . 2008-01-02 14:03 <DIR> d-------- C:\Documents and Settings\caroline\Application Data\McAfee.com Personal Firewall
2008-01-02 14:01 . 2008-01-02 14:01 <DIR> d-------- C:\Documents and Settings\LocalService\Application Data\McAfee.com Personal Firewall
2008-01-02 14:01 . 2008-01-02 19:51 38,528 --a------ C:\WINDOWS\system32\Status.MPF
2008-01-02 13:13 . 2005-10-28 10:30 131,072 --------- C:\WINDOWS\system32\mclsp.dll
2008-01-02 13:13 . 2005-04-20 19:22 32,768 --a------ C:\WINDOWS\system32\instlsp.exe
2008-01-02 13:13 . 2005-04-20 19:22 11,264 --a------ C:\WINDOWS\system32\sporder.dll
2008-01-02 13:12 . 2008-01-02 14:05 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\McAfee.com Personal Firewall
2008-01-02 13:10 . 2008-01-02 19:51 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\McAfee.com
2008-01-02 12:55 . 2008-01-02 12:55 <DIR> d-------- C:\Program Files\Symantec
2007-12-31 13:11 . 2006-08-21 09:14 128,896 --a------ C:\WINDOWS\system32\dllcache\fltmgr.sys
2007-12-31 13:11 . 2006-08-21 09:14 23,040 --a------ C:\WINDOWS\system32\dllcache\fltmc.exe
2007-12-31 13:11 . 2006-08-21 12:21 16,896 --a------ C:\WINDOWS\system32\dllcache\fltlib.dll
2007-12-31 10:34 . 2007-12-31 10:34 <DIR> d--hs---- C:\found.000
2007-12-30 20:57 . 2007-12-30 20:57 <DIR> d-------- C:\Program Files\MSXML 4.0
2007-12-30 20:57 . 2007-11-13 10:25 20,480 --a------ C:\WINDOWS\system32\drivers\secdrv.sys
2007-12-30 19:40 . 2007-12-30 19:40 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2007-12-30 16:12 . 2007-12-30 16:12 <DIR> d-------- C:\Documents and Settings\caroline\Application Data\Talkback
2007-12-30 15:49 . 2007-12-30 19:38 <DIR> d-------- C:\Program Files\Google
2007-12-30 14:47 . 2007-12-30 17:29 <DIR> d-------- C:\Program Files\WinAce
2007-12-30 11:54 . 2007-12-30 11:54 <DIR> d-------- C:\Program Files\Windows Live
2007-12-30 11:54 . 2007-12-30 11:54 <DIR> d-------- C:\Program Files\Messenger Plus! Live
2007-12-29 17:46 . 2007-07-09 13:09 584,192 --a------ C:\WINDOWS\system32\dllcache\rpcrt4.dll
2007-12-28 15:05 . 2007-12-28 15:05 <DIR> d-------- C:\Program Files\Sky Broadband
2007-12-17 17:33 . 2006-09-18 14:58 97,184 -ra------ C:\WINDOWS\system32\drivers\SE27mdm.sys
2007-12-17 17:33 . 2006-09-18 14:58 88,688 -ra------ C:\WINDOWS\system32\drivers\SE27mgmt.sys
2007-12-17 17:33 . 2006-09-18 14:59 86,560 -ra------ C:\WINDOWS\system32\drivers\SE27obex.sys
2007-12-17 17:33 . 2006-09-18 14:58 61,600 -ra------ C:\WINDOWS\system32\drivers\SE27bus.sys
2007-12-17 17:33 . 2006-09-18 14:58 9,360 -ra------ C:\WINDOWS\system32\drivers\SE27mdfl.sys
2007-12-17 17:33 . 2006-09-18 14:58 6,240 -ra------ C:\WINDOWS\system32\drivers\SE27cmnt.sys
2007-12-17 17:33 . 2006-09-18 14:58 6,240 -ra------ C:\WINDOWS\system32\drivers\SE27cm.sys
2007-12-17 17:33 . 2006-09-18 14:59 5,872 -ra------ C:\WINDOWS\system32\drivers\SE27whnt.sys
2007-12-17 17:33 . 2006-09-18 14:59 5,872 -ra------ C:\WINDOWS\system32\drivers\SE27wh.sys
2007-12-17 16:58 . 2007-12-17 16:58 <DIR> d-------- C:\Documents and Settings\caroline\Application Data\Roxio
2007-12-17 16:40 . 2007-12-17 16:40 <DIR> d-------- C:\Program Files\Roxio
2007-12-17 16:40 . 2007-12-17 16:40 <DIR> d-------- C:\Program Files\directx
2007-12-17 16:40 . 2007-12-17 16:40 <DIR> d-------- C:\Program Files\Common Files\Roxio Shared
2007-12-17 16:40 . 2007-12-17 16:40 <DIR> d-------- C:\Program Files\Common Files\Adaptec Shared
2007-12-17 16:40 . 2007-12-17 16:40 61,424 --a------ C:\WINDOWS\system32\drivers\cdr4_xp.sys
2007-12-17 16:40 . 2007-12-17 16:40 57,344 --a------ C:\WINDOWS\uneng.exe
2007-12-17 16:40 . 2007-12-17 16:40 49,152 --a------ C:\WINDOWS\system32\cdrtc.dll
2007-12-17 16:40 . 2007-12-17 16:40 45,056 --a------ C:\WINDOWS\system32\cdral.dll
2007-12-17 16:40 . 2007-12-17 16:40 23,436 --a------ C:\WINDOWS\system32\drivers\cdralw2k.sys
2007-12-17 16:19 . 2003-01-10 21:13 33,588 -ra------ C:\WINDOWS\system32\drivers\wanatw4.sys
2007-12-16 15:11 . 2007-12-28 15:26 14 --a------ C:\WINDOWS\msoffice.ini
2007-12-16 13:36 . 2007-12-28 15:26 <DIR> d-------- C:\Documents and Settings\caroline\Application Data\AOL
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-01-30 10:21 --------- d-----w C:\Documents and Settings\All Users\Application Data\Skype
2008-01-30 10:15 11,264 ----a-w C:\WINDOWS\mgrs.exe
2008-01-29 18:07 --------- d-----w C:\Documents and Settings\caroline\Application Data\LimeWire
2008-01-25 10:00 0 ----a-w C:\WINDOWS\system32\drivers\eicon.txt
2008-01-02 13:06 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2008-01-02 13:06 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec
2007-12-31 16:21 --------- d-----w C:\Documents and Settings\caroline\Application Data\Symantec
2007-12-30 20:56 --------- d-----w C:\Program Files\Windows Live Toolbar
2007-12-30 11:54 --------- d-----w C:\Program Files\MSN Messenger
2007-12-29 13:14 --------- d-----w C:\Program Files\BitLord
2007-12-17 12:50 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-12-16 13:34 --------- d-----w C:\Program Files\Real
2007-09-15 08:50 730 ----a-w C:\Documents and Settings\caroline\Application Data\wklnhst.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E9D4C81-9F27-4c14-B804-7B0F6BC88A4F}]
C:\Program Files\Outerinfo\Outerinfo.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A95B2816-1D7E-4561-A202-68C0DE02353A}]
2008-01-30 10:17 163904 --a------ C:\WINDOWS\system32\hbunvzwg.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmpcSys"="C:\APPS\SMP\SmpSys.exe" [2005-11-17 09:51 975360]
"SsAAD.exe"="C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe" [2006-05-08 04:17 81920]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 14:00 15360]
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 11:54 5674352]
"Skype"="C:\APPS\skype\phone\Skype.exe" [2005-06-29 19:09 17605160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-04 14:00 208952]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-04 14:00 455168]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-04 14:00 455168]
"SynTPLpr"="C:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [2005-03-10 18:44 98394]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2005-03-10 18:43 688218]
"VTTimer"="VTTimer.exe" [2005-03-08 03:33 53248 C:\WINDOWS\system32\VTTimer.exe]
"VTTrayp"="VTtrayp.exe" [2005-09-14 13:47 167936 C:\WINDOWS\system32\VTTrayp.exe]
"STDSB"="C:\WINDOWS\system32\drivers\STDSB.exe" [ ]
"SoundMan"="SOUNDMAN.EXE" [2005-08-17 17:39 90112 C:\WINDOWS\SOUNDMAN.EXE]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe" [2005-06-03 03:52 36975]
"PCMService"="c:\Apps\Powercinema\PCMService.exe" [2005-05-11 13:48 127118]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2006-02-19 01:41 49152]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2005-10-26 16:17 159744]
"RealTray"="C:\Program Files\Real\RealPlayer\RealPlay.exe" [2007-12-16 13:34 26112]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-12-16 13:35 98304]
"TC-Spy"="C:\Program Files\TC-Spy\TC-Spy.exe" [2008-02-23 18:36 335872]
"MSDrive"="C:\WINDOWS\system32\drvxuw.dll" [2008-01-29 09:12 103936]
"MSDisp32"="C:\WINDOWS\system32\drvduz.dll" [2008-01-29 09:12 18944]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [2008-01-30 09:35 579072]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 14:00 15360]
"AVG7_Run"="C:\PROGRA~1\Grisoft\AVG7\avgw.exe" [2008-01-29 13:10 219136]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2006-02-19 03:21:22 288472]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\hbunvzwg]
hbunvzwg.dll 2008-01-30 10:17 163904 C:\WINDOWS\system32\hbunvzwg.dll
R2 MTC0007_STDSB;Scroll Bar Driver;C:\WINDOWS\system32\drivers\STDSB.sys [2005-08-25 15:00]
S2 STDSB;STDSB;C:\WINDOWS\system32\DRIVERS\STDSB.sys [2005-08-25 15:00]
S3 MSControlService;Microsoft cache control;C:\WINDOWS\system32\windows []
S3 TCSRK;TCSRK;C:\Program Files\TC-Spy\Tcsrk.sys [2008-02-23 18:46]
S3 Via4in1;Via4in1;C:\DOCUME~1\Owner\Via4in1.sys []
.
Contents of the 'Scheduled Tasks' folder
"2008-01-30 09:49:18 C:\WINDOWS\Tasks\Check Updates for Windows Live Toolbar.job"
- C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE
"2004-06-11 19:56:42 C:\WINDOWS\Tasks\Registration reminder 3.job"
- C:\WINDOWS\system32\OOBE\oobebaln.exe
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-30 10:22:20
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
PROCESS: C:\WINDOWS\system32\winlogon.exe
-> C:\WINDOWS\system32\hbunvzwg.dll
PROCESS: C:\WINDOWS\Explorer.EXE [6.00.2900.3156]
-> C:\WINDOWS\system32\hbunvzwg.dll
-> C:\WINDOWS\system32\drvxuw.dll
-> C:\WINDOWS\system32\drvduz.dll
.
------------------------ Other Running Processes ------------------------
.
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
c:\APPS\HIDSERVICE\HIDSERVICE.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\slmdmsr.exe
C:\WINDOWS\system32\wdfmgr.exe
c:\APPS\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\Apps\Powercinema\PCMService.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\TC-Spy\TC-Spy.exe
C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\APPS\SMP\SmpSys.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\APPS\skype\phone\Skype.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
.
**************************************************************************
.
Completion time: 2008-01-30 10:24:40 - machine was rebooted
ComboFix-quarantined-files.txt 2008-01-30 10:24:24
.
2008-01-29 12:10:08 --- E O F ---
Sign In
Create Account
