Sorry about that. I must've done something wrong because there wasn't a C:\ComboFix.txt, so I scanned CFScript and resubmitted the file again. Here's the new log:
ComboFix 07-10-07.2 - ANA 2007-10-08 0:28:09.2 -
FAT32x86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.29 [GMT -4:00]
Running from: C:\Documents and Settings\ANA\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\ANA\Desktop\CFScript.txt
* Created a new restore point
.
((((((((((((((((((((((((( Files Created from 2007-09-08 to 2007-10-08 )))))))))))))))))))))))))))))))
.
2007-10-07 22:00 <DIR> d--hs---- C:\FOUND.003
2007-10-07 14:03 <DIR> d-------- C:\Program Files\Trend Micro
2007-10-07 13:47 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-09-24 19:31 <DIR> d-------- C:\Program Files\iPod
2007-09-24 19:30 <DIR> d-------- C:\Program Files\iTunes
2007-09-15 18:19 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Lavasoft
2007-09-15 17:40 <DIR> d--hs---- C:\FOUND.002
2007-09-15 14:51 <DIR> d-------- C:\Documents and Settings\ANA\Application Data\Lavasoft
2007-09-15 14:50 <DIR> d-------- C:\Program Files\Lavasoft
2007-09-14 16:36 <DIR> d--hs---- C:\FOUND.001
2007-09-14 16:08 <DIR> d-------- C:\Program Files\SymNetDrv
2007-09-14 15:59 82,984 --a------ C:\WINDOWS\system32\S32EVNT1.DLL
2007-09-14 15:59 82,136 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.SYS
2007-09-14 15:59 2,397 --a------ C:\WINDOWS\system32\drivers\symlcbrd.sys
2007-09-14 15:59 <DIR> d-------- C:\Program Files\Symantec
2007-09-14 15:59 <DIR> d-------- C:\Program Files\Norton AntiVirus
2007-09-14 15:59 <DIR> d-------- C:\Program Files\Common Files\Symantec Shared
2007-09-14 15:59 <DIR> d-------- C:\Documents and Settings\ANA\Application Data\Symantec
2007-09-14 15:59 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Symantec
2007-09-14 14:09 <DIR> d-------- C:\Program Files\AVG
2007-09-14 13:07 <DIR> d--hs---- C:\UGA6PY
2007-09-14 13:06 <DIR> d-------- C:\Documents and Settings\ANA\Application Data\ElmejorAntivirus
2007-09-14 13:05 89,088 --a------ C:\WINDOWS\system32\atl71.dll
2007-09-14 13:05 <DIR> d-------- C:\Program Files\ElmejorAntivirus
2007-09-14 13:02 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\TEMP
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-09-03 13:54 --------- d-------- C:\Program Files\Realtek AC97
2007-09-02 09:25 --------- d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2007-09-02 08:52 --------- d-------- C:\Program Files\QuickTime
2007-09-02 08:51 --------- d-------- C:\Program Files\Common Files\Apple
2007-09-02 08:51 --------- d-------- C:\Documents and Settings\All Users\Application Data\Apple
2007-07-30 19:19 92504 --a------ C:\WINDOWS\system32\dllcache\cdm.dll
2007-07-30 19:19 92504 --a------ C:\WINDOWS\system32\cdm.dll
2007-07-30 19:19 549720 --a------ C:\WINDOWS\system32\wuapi.dll
2007-07-30 19:19 549720 --a------ C:\WINDOWS\system32\dllcache\wuapi.dll
2007-07-30 19:19 53080 --a------ C:\WINDOWS\system32\wuauclt.exe
2007-07-30 19:19 53080 --a------ C:\WINDOWS\system32\dllcache\wuauclt.exe
2007-07-30 19:19 43352 --a------ C:\WINDOWS\system32\wups2.dll
2007-07-30 19:19 325976 --a------ C:\WINDOWS\system32\wucltui.dll
2007-07-30 19:19 325976 --a------ C:\WINDOWS\system32\dllcache\wucltui.dll
2007-07-30 19:19 271224 --a------ C:\WINDOWS\system32\mucltui.dll
2007-07-30 19:19 207736 --a------ C:\WINDOWS\system32\muweb.dll
2007-07-30 19:19 203096 --a------ C:\WINDOWS\system32\wuweb.dll
2007-07-30 19:19 203096 --a------ C:\WINDOWS\system32\dllcache\wuweb.dll
2007-07-30 19:19 1712984 --a------ C:\WINDOWS\system32\wuaueng.dll
2007-07-30 19:19 1712984 --a------ C:\WINDOWS\system32\dllcache\wuaueng.dll
2007-07-30 19:18 33624 --a------ C:\WINDOWS\system32\wups.dll
2007-07-30 19:18 33624 --a------ C:\WINDOWS\system32\dllcache\wups.dll
2007-07-19 03:00 3583488 --a------ C:\WINDOWS\system32\dllcache\mshtml.dll
2007-07-12 19:31 765952 --a------ C:\WINDOWS\system32\dllcache\vgx.dll
2007-03-25 06:37 6980738 --a------ C:\Documents and Settings\ANA\HC4Installer.exe
.
(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
---- Directory of C:\Documents and Settings\All Users\Application Data\TEMP ----
2007-09-10 20:11 119 --a------ C:\Documents and Settings\All Users\Application Data\TEMP\E758E1CB.TMP
2007-09-09 21:29 102 --a------ C:\Documents and Settings\All Users\Application Data\TEMP\27AAAD97.TMP
2007-09-09 00:17 118 --a------ C:\Documents and Settings\All Users\Application Data\TEMP\EE96529E.TMP
---- Directory of C:\Documents and Settings\ANA\Application Data\ElmejorAntivirus ----
2007-09-14 15:09 684 --a------ C:\Documents and Settings\ANA\Application Data\ElmejorAntivirus\Logs\av.log
2007-09-14 15:00 13733 --a------ C:\Documents and Settings\ANA\Application Data\ElmejorAntivirus\Logs\update.log
2007-09-14 14:33 0 --a------ C:\Documents and Settings\ANA\Application Data\ElmejorAntivirus\avtasks.dat
2007-09-14 13:06 0 --a------ C:\Documents and Settings\ANA\Application Data\ElmejorAntivirus\Logs\ga6Support.log
---- Directory of C:\Program Files\ElmejorAntivirus ----
2007-09-14 15:09 67584 --a------ C:\Program Files\ElmejorAntivirus\history.db
---- Directory of C:\UGA6PY ----
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"YSearchProtection"="C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" [2007-06-08 10:59]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2007-06-29 06:24]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 15:28 C:\WINDOWS\soundman.exe]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2003-11-10 09:30]
"Symantec NetDriver Monitor"="C:\PROGRA~1\SYMNET~1\SNDMon.exe" [2007-09-14 16:08]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-09-14 10:00]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Yahoo! Pager"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [2006-11-30 21:49]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 05:00]
"Microsoft Works Update Detection"="C:\Program Files\Microsoft Works\WkDetect.exe" []
"YSearchProtection"="C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" [2007-06-08 10:59]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Utility Tray.lnk - C:\WINDOWS\system32\sistray.exe [2005-03-07 12:07:26]
Microsoft Works Calendar Reminders.lnk - C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe [2001-08-07 18
54]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{b8ea5f37-7327-4923-9808-8fd3b6f0d529}"= C:\WINDOWS\system32\ddllup.dll [ ]
R1 UBHelper;UBHelper;C:\WINDOWS\system32\drivers\UBHelper.sys
R3 DKbFltr;Dritek HotKey Keyboard Filter Driver;C:\WINDOWS\system32\Drivers\DKbFltr.sys
R3 SISNICXP;SiS PCI Fast Ethernet Adapter Driver for NDIS51;C:\WINDOWS\system32\DRIVERS\sisnicxp.sys
S3 int15.sys;int15.sys;\??\C:\Program Files\acer\eRecovery\int15.sys
.
Contents of the 'Scheduled Tasks' folder
"2007-10-08 04:20:14 C:\WINDOWS\Tasks\Symantec NetDetect.job"
"2007-10-06 00:02:42 C:\WINDOWS\Tasks\Norton AntiVirus - Scan my computer - ANA.job"
"2007-09-24 22:42:14 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
.
**************************************************************************
catchme 0.3.1169 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2007-10-08 00:32:23
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2007-10-08 0:34:48
C:\ComboFix-quarantined-files.txt ... 2007-10-08 00:34
C:\ComboFix2.txt ... 2007-10-07 13:53
.
--- E O F ---