Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

HTML/Framer


  • Please log in to reply

#1
wombat1138

wombat1138

    New Member

  • Member
  • Pip
  • 1 posts
Hi-- AVG Free spotted HTML/Framer earlier today and was unable to heal it, although I haven't noticed any recent changes in system performance. I've already followed some of the advice from the thread that andrewreturned started on Feb. 8, so my Kasparsky and HIT logs are pasted below, and I've also gone into IE7 to delete all the temporary files, cookies, etc. Do I need to follow up with ComboFix? What should I do now? Thanks!

-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Friday, March 07, 2008 11:50:33 PM
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 8/03/2008
Kaspersky Anti-Virus database records: 612479
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
C:\
D:\
E:\
F:\
H:\

Scan Statistics:
Total number of scanned objects: 74313
Number of viruses found: 1
Number of infected objects: 1
Number of suspicious objects: 0
Duration of the scan process: 01:26:30

Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\All Users\Application Data\avg7\Log\emc.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Grisoft\Avg7Data\avg7log.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Grisoft\Avg7Data\avg7log.log.lck Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Wombat\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Wombat\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat Object is locked skipped
C:\Documents and Settings\Wombat\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Wombat\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Wombat\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Wombat\Local Settings\History\History.IE5\MSHist012008030720080308\index.dat Object is locked skipped
C:\Documents and Settings\Wombat\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped
C:\Documents and Settings\Wombat\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Wombat\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Wombat\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Antivirals\SmitfraudFix\Reboot.exe Infected: not-a-virus:RiskTool.Win32.Reboot.f skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{AD59B24C-7412-4BAB-B7F3-260329D37E19}\RP633\change.log Object is locked skipped
C:\WINDOWS\$NtUninstallKB824141$\user32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB824141$\win32k.sys Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\accwiz.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\crypt32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\cryptsvc.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\hhctrl.ocx Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\hhsetup.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\html32.cnv Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\itss.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\locator.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\magnify.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\migwiz.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\mrxsmb.sys Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\msconv97.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\narrator.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\newdev.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\ntdll.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\ntkrnlpa.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\ntoskrnl.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\ole32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\osk.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\pchshell.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\rpcrt4.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\rpcss.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\shell32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\shmedia.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\srrstr.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\srv.sys Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\sysmain.sdb Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\user32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\win32k.sys Object is locked skipped
C:\WINDOWS\$NtUninstallKB826939$\winsrv.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826942$\dhcpcsvc.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826942$\ndis.sys Object is locked skipped
C:\WINDOWS\$NtUninstallKB826942$\ndisuio.sys Object is locked skipped
C:\WINDOWS\$NtUninstallKB826942$\netshell.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826942$\wzcdlg.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826942$\wzcsapi.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB826942$\wzcsvc.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828028$\msasn1.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828035$\msgsvc.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828035$\wkssvc.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\catsrv.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\catsrvut.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\clbcatex.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\clbcatq.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\colbact.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\comadmin.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\comrepl.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\comsvcs.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\comuid.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\es.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\msdtcprx.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\msdtctm.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\msdtcuiu.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\mtxclu.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\mtxoci.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\ole32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\rpcrt4.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\rpcss.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\txflog.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\callcont.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\gdi32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\h323.tsp Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\h323msp.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\ipnathlp.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\lsasrv.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\mf3216.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\msasn1.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\msgina.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\mst120.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\netapi32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\nmcom.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\rtcdll.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\schannel.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\xpsp2res.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\dao360.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\expsrv.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msexch40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msexcl40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msjet40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msjetoledb40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msjint40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msjter40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msjtes40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msltus40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\mspbde40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msrd2x40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msrd3x40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msrepl40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\mstext40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\mswdat10.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\mswstr10.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\msxbde40.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB837001$\vbajet32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallQ828026$\msdxm.ocx Object is locked skipped
C:\WINDOWS\$NtUninstallQ828026$\wmpcore.dll Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\EventCache\{F5A185C6-E910-458F-B8B6-1BA10AB11CB0}.bin Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped

Scan process completed.


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:57:50 PM, on 3/7/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Documents and Settings\Wombat\Desktop\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Sony\HotKey Utility\HKserv.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Java\jre1.5.0_12\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Sony\HotKey Utility\HKWnd.exe
C:\Program Files\PowerPanel\Program\PcfMgr.exe
C:\Program Files\OpenOffice.org1.1.4\program\soffice.exe
C:\Program Files\Java\jre1.5.0_12\bin\jucheck.exe
C:\Program Files\HijackThis\HijackThis.exe
C:\WINDOWS\System32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mail.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_12\bin\ssv.dll
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE
O4 - HKLM\..\Run: [HKSERV.EXE] C:\Program Files\Sony\HotKey Utility\HKserv.exe
O4 - HKLM\..\Run: [DeviceDiscovery] C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_12\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - Startup: OpenOffice.org 1.1.4.lnk = C:\Program Files\OpenOffice.org1.1.4\program\quickstart.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: D-Link AirPlus.lnk = ?
O4 - Global Startup: PowerPanel.lnk = ?
O8 - Extra context menu item: bugmenot - file://C:\Program Files\bugmenot.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_12\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_12\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky...can_unicode.cab
O16 - DPF: {26CBF141-7D0F-46E1-AA06-718958B6E4D2} - http://download.ebay.../US/install.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) - http://javadl-esd.su...indows-i586.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com...obat/nos/gp.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Documents and Settings\Wombat\Desktop\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

--
End of file - 5633 bytes

(edited to add uninstall list:)

Ad-Aware 2007
Adobe Acrobat 5.0
Adobe Flash Player 9 ActiveX
Adobe Flash Player ActiveX
Adobe Photoshop Album 2.0 Starter Edition
Adobe Photoshop Elements 2.0
Adobe Premiere 6 LE
Adobe Reader 7.0.5 Language Support
Adobe Reader 7.0.9
Adobe Reader Japanese Fonts
Adobe Shockwave Player
ATI Display Driver
AVG Anti-Spyware 7.5
AVG Free Edition
BitTorrent 3.4.2
DAEMON Tools
DivX Codec
DivX Player
D-Link AirPlus
DVD Decrypter (Remove Only)
DVgate
Experience VAIO
getPlus®_ocx
GoldWave v5.08
Help and Support
HijackThis 2.0.2
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB893357)
Hotfix for Windows XP (KB914440)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
HotKey Utility
hp deskjet 5800
hp deskjet 5800 series
HP Photo and Imaging 2.0 - Deskjet Series
HP Software Update
HP Software Update
ImageStation Tour
Intel® PRO Ethernet Adapter and Software
InterVideo WinDVD 4
Ipswitch WS_FTP LE
IrfanView (remove only)
J2SE Runtime Environment 5.0 Update 12
Kaspersky Online Scanner
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Money 2003
Microsoft Money 2003 System Pack
Microsoft National Language Support Downlevel APIs
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Works 7.0
MoodLogic
MovieShaker 3.3
MSN Messenger 5.0
Music Visualizer Library 1.4.00
Network Smart Capture
Odyssey Client
OpenMG Limited Patch 3.1-02-10-22-01
OpenMG Limited Patch 3.1-02-10-23-01
OpenMG Secure Module 3.1
Orbital Viewer
Panda ActiveScan
PicoPlayer
PicoPlayer Demo
PicoPlayerSplashScreen
PictureGear Studio 1.0
PowerPanel
PrintScreen
Quick Zip 4.60.017
QuickTime
RealOne Player
RealProducer Basic 8.5
SanDisk USB SSFDC Ver 1.01
Screenblast ACID 2.0a
Screenblast Sound Forge 1.0b
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893066)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899588)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901190)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920214)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921503)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922760)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923694)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925486)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
Security Update for Windows XP (KB929123)
Security Update for Windows XP (KB930178)
Security Update for Windows XP (KB931261)
Security Update for Windows XP (KB931784)
Security Update for Windows XP (KB932168)
Security Update for Windows XP (KB933729)
Security Update for Windows XP (KB935839)
Security Update for Windows XP (KB935840)
Security Update for Windows XP (KB936021)
Security Update for Windows XP (KB938829)
Security Update for Windows XP (KB941202)
Security Update for Windows XP (KB941568)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB941644)
Security Update for Windows XP (KB943055)
Security Update for Windows XP (KB943460)
Security Update for Windows XP (KB943485)
Security Update for Windows XP (KB944653)
Security Update for Windows XP (KB946026)
SoftK56 Data Fax
SonicStage 1.5.05
Sony Certificate PCH
Sony DV Shared Library
Sony Notebook Setup
Sony on Yahoo! Essentials
Sony USB Mouse
Sony Utilities DLL
Spybot - Search & Destroy 1.3.1 TX
Support Actions WinXP
Synaptics Pointing Device Driver
Turbo Lister
Update for Windows XP (KB894391)
Update for Windows XP (KB896727)
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB904942)
Update for Windows XP (KB908531)
Update for Windows XP (KB910437)
Update for Windows XP (KB911280)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB927891)
Update for Windows XP (KB929338)
Update for Windows XP (KB930916)
Update for Windows XP (KB931836)
Update for Windows XP (KB933360)
Update for Windows XP (KB936357)
Update for Windows XP (KB938828)
Update for Windows XP (KB942763)
VAIO Edit Components LE
VAIO Media 2.0
VAIO Media Installer 2.0
VAIO Media Music Server 2.0
VAIO Media Photo Server 2.0
VAIO Media Platform 2.0
VAIO Registration
VAIO Serenus Wallpaper
VAIO Support
VAIO Survey Standalone
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows XP Hotfix - KB834707
Windows XP Hotfix - KB873333
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888240
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
Windows XP Hotfix - KB893086
Windows XP Service Pack 2
WinZip

(re-edited to add ComboFix log:)

ComboFix 08-03-07.4 - Wombat 2008-03-08 11:21:05.2 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.73 [GMT -8:00]
Running from: C:\Documents and Settings\Wombat\Desktop\ComboFix.exe

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((( Files Created from 2008-02-08 to 2008-03-08 )))))))))))))))))))))))))))))))
.

2008-03-07 22:02 . 2008-03-07 22:02 <DIR> d-------- C:\WINDOWS\system32\Kaspersky Lab
2008-03-07 22:02 . 2008-03-07 22:02 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-08 18:54 --------- d-----w C:\Program Files\OpenOffice.org1.1.4
2008-03-08 05:07 --------- d-----w C:\Documents and Settings\Wombat\Application Data\AVG7
2008-03-08 05:06 --------- d-----w C:\Documents and Settings\All Users\Application Data\avg7
2008-02-03 08:24 --------- d-----w C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-03 08:21 --------- d-----w C:\Program Files\Lavasoft
2008-02-03 08:19 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-02-03 08:15 --------- d-----w C:\Documents and Settings\Wombat\Application Data\Lavasoft
2007-12-14 19:32 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe
2006-11-25 06:39 36,864 ----a-w C:\Program Files\atf-cleaner.exe
2005-06-20 07:53 4,077,184 -c--a-w C:\Program Files\winzip90.exe
2004-10-24 11:10 48,185 -c--a-w C:\Program Files\bugmenot_uninstall.exe
2004-06-19 12:33 2,318 -c--a-w C:\Program Files\bugmenot_readme.txt
2004-06-19 12:06 560 -c--a-w C:\Program Files\bugmenot.htm
2004-03-02 02:11 1,760,378 -c--a-w C:\Program Files\aaw6.exe
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-03 23:56 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPLpr"="C:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [2002-11-01 15:27 126976]
"Mouse Suite 98 Daemon"="ICO.EXE" []
"HKSERV.EXE"="C:\Program Files\Sony\HotKey Utility\HKserv.exe" [2002-11-08 15:00 61440]
"DeviceDiscovery"="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe" [2003-05-21 18:37 229437]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2005-02-03 21:04 98304]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe" [2008-03-07 17:57 579072]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_12\bin\jusched.exe" [2007-05-02 03:15 75520]

C:\Documents and Settings\Wombat\Start Menu\Programs\Startup\
OpenOffice.org 1.1.4.lnk - C:\Program Files\OpenOffice.org1.1.4\program\quickstart.exe [2004-10-28 01:10:00 61440]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2003-06-11 16:28:00 113664]
Adobe Reader Speed Launch.lnk - C:\Program Files\adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 22:05:26 29696]
D-Link AirPlus.lnk - C:\Program Files\D-Link AirPlus\AirPlus.exe [2004-02-27 22:17:56 262144]
PowerPanel.lnk - C:\Program Files\PowerPanel\Program\PcfMgr.exe [2002-12-05 15:21:56 872448]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\support.com\\client\\bin\\tgcmd.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Internet Explorer\\iexplore.exe"=
"C:\\Program Files\\Grisoft\\AVG Free\\avginet.exe"=
"C:\\Program Files\\Grisoft\\AVG Free\\avgamsvr.exe"=
"C:\\Program Files\\Grisoft\\AVG Free\\avgcc.exe"=
"C:\\Program Files\\Grisoft\\AVG Free\\avgemc.exe"=
"C:\\Program Files\\BitTorrent\\btdownloadgui.exe"=
"C:\\Program Files\\Real\\RealOne Player\\realplay.exe"=
"C:\\Program Files\\WS_FTP\\ws_ftp95.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"29399:TCP"= 29399:TCP:PORT_29399
"14998:TCP"= 14998:TCP:PORT_14998
"13608:TCP"= 13608:TCP:PORT_13608
"35207:TCP"= 35207:TCP:PORT_35207
"61823:TCP"= 61823:TCP:PORT_61823
"31103:TCP"= 31103:TCP:PORT_31103
"21640:TCP"= 21640:TCP:PORT_21640
"56758:TCP"= 56758:TCP:PORT_56758
"44022:TCP"= 44022:TCP:PORT_44022
"20440:TCP"= 20440:TCP:PORT_20440
"42502:TCP"= 42502:TCP:PORT_42502
"61493:TCP"= 61493:TCP:PORT_61493
"52959:TCP"= 52959:TCP:PORT_52959
"33146:TCP"= 33146:TCP:PORT_33146
"19607:TCP"= 19607:TCP:PORT_19607
"51543:TCP"= 51543:TCP:PORT_51543
"65042:TCP"= 65042:TCP:PORT_65042
"33853:TCP"= 33853:TCP:PORT_33853
"55090:TCP"= 55090:TCP:PORT_55090
"12491:TCP"= 12491:TCP:PORT_12491
"45823:TCP"= 45823:TCP:PORT_45823
"28037:TCP"= 28037:TCP:PORT_28037
"11873:TCP"= 11873:TCP:PORT_11873
"8004:TCP"= 8004:TCP:PORT_8004
"17003:TCP"= 17003:TCP:PORT_17003
"50437:TCP"= 50437:TCP:PORT_50437
"65122:TCP"= 65122:TCP:PORT_65122
"20204:TCP"= 20204:TCP:PORT_20204
"36709:TCP"= 36709:TCP:PORT_36709
"53103:TCP"= 53103:TCP:PORT_53103
"50455:TCP"= 50455:TCP:PORT_50455
"9180:TCP"= 9180:TCP:PORT_9180
"14057:TCP"= 14057:TCP:PORT_14057
"58248:TCP"= 58248:TCP:PORT_58248
"15605:TCP"= 15605:TCP:PORT_15605
"24646:TCP"= 24646:TCP:PORT_24646
"25685:TCP"= 25685:TCP:PORT_25685
"25207:TCP"= 25207:TCP:PORT_25207
"24798:TCP"= 24798:TCP:PORT_24798
"63186:TCP"= 63186:TCP:PORT_63186
"20491:TCP"= 20491:TCP:PORT_20491
"51124:TCP"= 51124:TCP:PORT_51124
"8270:TCP"= 8270:TCP:PORT_8270
"20825:TCP"= 20825:TCP:PORT_20825
"57347:TCP"= 57347:TCP:PORT_57347
"55829:TCP"= 55829:TCP:PORT_55829
"24618:TCP"= 24618:TCP:PORT_24618
"8627:TCP"= 8627:TCP:PORT_8627
"20971:TCP"= 20971:TCP:PORT_20971
"10496:TCP"= 10496:TCP:PORT_10496
"16073:TCP"= 16073:TCP:PORT_16073
"55957:TCP"= 55957:TCP:PORT_55957
"56796:TCP"= 56796:TCP:PORT_56796
"30737:TCP"= 30737:TCP:PORT_30737
"23623:TCP"= 23623:TCP:PORT_23623
"19422:TCP"= 19422:TCP:PORT_19422
"28708:TCP"= 28708:TCP:PORT_28708
"31451:TCP"= 31451:TCP:PORT_31451
"53227:TCP"= 53227:TCP:PORT_53227
"9880:TCP"= 9880:TCP:PORT_9880
"54945:TCP"= 54945:TCP:PORT_54945
"49380:TCP"= 49380:TCP:PORT_49380
"59989:TCP"= 59989:TCP:PORT_59989
"64998:TCP"= 64998:TCP:PORT_64998
"52783:TCP"= 52783:TCP:PORT_52783
"63798:TCP"= 63798:TCP:PORT_63798
"9730:TCP"= 9730:TCP:PORT_9730
"58054:TCP"= 58054:TCP:PORT_58054
"6167:TCP"= 6167:TCP:PORT_6167
"10276:TCP"= 10276:TCP:PORT_10276
"40863:TCP"= 40863:TCP:PORT_40863
"58585:TCP"= 58585:TCP:PORT_58585
"24528:TCP"= 24528:TCP:PORT_24528
"57880:TCP"= 57880:TCP:PORT_57880
"47966:TCP"= 47966:TCP:PORT_47966
"54147:TCP"= 54147:TCP:PORT_54147
"50131:TCP"= 50131:TCP:PORT_50131
"64193:TCP"= 64193:TCP:PORT_64193
"41418:TCP"= 41418:TCP:PORT_41418
"5098:TCP"= 5098:TCP:PORT_5098
"20919:TCP"= 20919:TCP:PORT_20919
"34667:TCP"= 34667:TCP:PORT_34667
"51831:TCP"= 51831:TCP:PORT_51831
"22489:TCP"= 22489:TCP:PORT_22489
"40044:TCP"= 40044:TCP:PORT_40044
"28378:TCP"= 28378:TCP:PORT_28378
"26676:TCP"= 26676:TCP:PORT_26676
"33535:TCP"= 33535:TCP:PORT_33535
"17423:TCP"= 17423:TCP:PORT_17423
"39563:TCP"= 39563:TCP:PORT_39563
"53297:TCP"= 53297:TCP:PORT_53297
"6328:TCP"= 6328:TCP:PORT_6328
"29665:TCP"= 29665:TCP:PORT_29665
"34226:TCP"= 34226:TCP:PORT_34226
"31448:TCP"= 31448:TCP:PORT_31448
"28506:TCP"= 28506:TCP:PORT_28506
"20621:TCP"= 20621:TCP:PORT_20621
"20840:TCP"= 20840:TCP:PORT_20840
"59703:TCP"= 59703:TCP:PORT_59703
"41365:TCP"= 41365:TCP:PORT_41365
"14609:TCP"= 14609:TCP:PORT_14609
"61849:TCP"= 61849:TCP:PORT_61849
"21211:TCP"= 21211:TCP:PORT_21211
"32351:TCP"= 32351:TCP:PORT_32351
"25894:TCP"= 25894:TCP:PORT_25894
"58038:TCP"= 58038:TCP:PORT_58038
"61531:TCP"= 61531:TCP:PORT_61531
"13063:TCP"= 13063:TCP:PORT_13063
"35147:TCP"= 35147:TCP:PORT_35147
"65443:TCP"= 65443:TCP:PORT_65443
"45736:TCP"= 45736:TCP:PORT_45736
"56991:TCP"= 56991:TCP:PORT_56991
"39225:TCP"= 39225:TCP:PORT_39225
"21690:TCP"= 21690:TCP:PORT_21690
"41186:TCP"= 41186:TCP:PORT_41186
"19298:TCP"= 19298:TCP:PORT_19298
"54787:TCP"= 54787:TCP:PORT_54787
"53776:TCP"= 53776:TCP:PORT_53776
"52480:TCP"= 52480:TCP:PORT_52480
"34468:TCP"= 34468:TCP:PORT_34468
"16460:TCP"= 16460:TCP:PORT_16460
"8378:TCP"= 8378:TCP:PORT_8378
"23751:TCP"= 23751:TCP:PORT_23751
"18265:TCP"= 18265:TCP:PORT_18265
"56570:TCP"= 56570:TCP:PORT_56570
"41476:TCP"= 41476:TCP:PORT_41476
"61279:TCP"= 61279:TCP:PORT_61279
"30478:TCP"= 30478:TCP:PORT_30478
"51042:TCP"= 51042:TCP:PORT_51042
"39021:TCP"= 39021:TCP:PORT_39021
"65016:TCP"= 65016:TCP:PORT_65016
"65373:TCP"= 65373:TCP:PORT_65373
"15715:TCP"= 15715:TCP:PORT_15715
"21754:TCP"= 21754:TCP:PORT_21754
"29507:TCP"= 29507:TCP:PORT_29507
"18175:TCP"= 18175:TCP:PORT_18175
"33244:TCP"= 33244:TCP:PORT_33244
"51340:TCP"= 51340:TCP:PORT_51340
"31209:TCP"= 31209:TCP:PORT_31209
"61106:TCP"= 61106:TCP:PORT_61106
"58440:TCP"= 58440:TCP:PORT_58440
"33449:TCP"= 33449:TCP:PORT_33449
"28194:TCP"= 28194:TCP:PORT_28194
"41066:TCP"= 41066:TCP:PORT_41066
"17580:TCP"= 17580:TCP:PORT_17580
"51765:TCP"= 51765:TCP:PORT_51765
"30630:TCP"= 30630:TCP:PORT_30630
"52132:TCP"= 52132:TCP:PORT_52132
"65309:TCP"= 65309:TCP:PORT_65309
"15515:TCP"= 15515:TCP:PORT_15515
"35738:TCP"= 35738:TCP:PORT_35738
"43145:TCP"= 43145:TCP:PORT_43145
"12378:TCP"= 12378:TCP:PORT_12378
"62681:TCP"= 62681:TCP:PORT_62681
"20258:TCP"= 20258:TCP:PORT_20258
"30393:TCP"= 30393:TCP:PORT_30393
"35369:TCP"= 35369:TCP:PORT_35369
"20228:TCP"= 20228:TCP:PORT_20228
"19881:TCP"= 19881:TCP:PORT_19881
"23873:TCP"= 23873:TCP:PORT_23873
"50311:TCP"= 50311:TCP:PORT_50311
"43046:TCP"= 43046:TCP:PORT_43046
"7239:TCP"= 7239:TCP:PORT_7239
"26413:TCP"= 26413:TCP:PORT_26413
"44673:TCP"= 44673:TCP:PORT_44673
"15553:TCP"= 15553:TCP:PORT_15553
"52123:TCP"= 52123:TCP:PORT_52123
"50549:TCP"= 50549:TCP:PORT_50549
"11237:TCP"= 11237:TCP:PORT_11237
"18864:TCP"= 18864:TCP:PORT_18864
"33467:TCP"= 33467:TCP:PORT_33467
"16779:TCP"= 16779:TCP:PORT_16779
"56572:TCP"= 56572:TCP:PORT_56572
"25457:TCP"= 25457:TCP:PORT_25457
"27439:TCP"= 27439:TCP:PORT_27439
"59587:TCP"= 59587:TCP:PORT_59587
"20556:TCP"= 20556:TCP:PORT_20556
"21590:TCP"= 21590:TCP:PORT_21590
"25720:TCP"= 25720:TCP:PORT_25720
"11784:TCP"= 11784:TCP:PORT_11784
"23771:TCP"= 23771:TCP:PORT_23771
"14237:TCP"= 14237:TCP:PORT_14237
"5170:TCP"= 5170:TCP:PORT_5170
"20590:TCP"= 20590:TCP:PORT_20590
"44146:TCP"= 44146:TCP:PORT_44146
"57299:TCP"= 57299:TCP:PORT_57299
"52442:TCP"= 52442:TCP:PORT_52442
"44318:TCP"= 44318:TCP:PORT_44318
"61495:TCP"= 61495:TCP:PORT_61495
"32713:TCP"= 32713:TCP:PORT_32713
"19499:TCP"= 19499:TCP:PORT_19499
"18471:TCP"= 18471:TCP:PORT_18471
"34321:TCP"= 34321:TCP:PORT_34321
"10556:TCP"= 10556:TCP:PORT_10556
"19671:TCP"= 19671:TCP:PORT_19671
"22609:TCP"= 22609:TCP:PORT_22609
"36247:TCP"= 36247:TCP:PORT_36247
"12730:TCP"= 12730:TCP:PORT_12730
"35047:TCP"= 35047:TCP:PORT_35047
"41927:TCP"= 41927:TCP:PORT_41927
"28780:TCP"= 28780:TCP:PORT_28780
"35359:TCP"= 35359:TCP:PORT_35359
"6226:TCP"= 6226:TCP:PORT_6226
"14082:TCP"= 14082:TCP:PORT_14082
"53590:TCP"= 53590:TCP:PORT_53590
"29245:TCP"= 29245:TCP:PORT_29245
"64285:TCP"= 64285:TCP:PORT_64285
"12196:TCP"= 12196:TCP:PORT_12196
"52362:TCP"= 52362:TCP:PORT_52362
"16903:TCP"= 16903:TCP:PORT_16903
"62831:TCP"= 62831:TCP:PORT_62831
"51134:TCP"= 51134:TCP:PORT_51134
"18275:TCP"= 18275:TCP:PORT_18275

R0 d344bus;d344bus;C:\WINDOWS\system32\DRIVERS\d344bus.sys [2003-12-27 20:42]
R0 d344prt;d344prt;C:\WINDOWS\system32\Drivers\d344prt.sys [2003-12-27 02:38]
R3 odysseyIM4;Odyssey Network Agent Miniport;C:\WINDOWS\system32\DRIVERS\odysseyIM4.sys [2004-09-24 23:36]
R3 SPI;Sony Programmable I/O Control Device;C:\WINDOWS\system32\DRIVERS\SonyPI.sys [2002-08-20 11:59]
S3 ATICDSDr;ATICDSDr;C:\DOCUME~1\Wombat\LOCALS~1\Temp\ATICDSDr.sys []
S3 CBTNDIS5;CBTNDIS5 NDIS Protocol Driver;C:\WINDOWS\system32\CBTNDIS5.SYS [2003-07-16 22:28]
S3 iMSPQMn;iMSPQMn;C:\DOCUME~1\Wombat\LOCALS~1\Temp\iMSPQMn.sys []

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-08 11:24:43
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-03-08 11:28:10
ComboFix2.txt 2008-03-08 19:17:45
.
2008-02-12 22:44:07 --- E O F ---

Edited by wombat1138, 08 March 2008 - 01:41 PM.

  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP