Thread: Trying to access malware infected drive
View Single Post
Old 11-12-2008, 01:11 PM   #7 (permalink)
DarkMagician66
Registered User
 
Join Date: Nov 2008
Location: London, England, UK
Posts: 9
OS: XP Home

My System

Re: Trying to access malware infected drive
Combofix log attached.

ComboFix 08-11-11.01 - Dave 2008-11-12 19:51:08.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1499 [GMT 0:00]
Running from: c:\documents and settings\Dave\Desktop\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\LocalService\Application Data\twain_32
c:\documents and settings\LocalService\Application Data\twain_32\user.ds
c:\documents and settings\NetworkService\Application Data\twain_32
c:\documents and settings\NetworkService\Application Data\twain_32\user.ds
c:\windows\system32\HQBKlUtv.ini
c:\windows\system32\HQBKlUtv.ini2
c:\windows\system32\twain_32
c:\windows\system32\twain_32\00023A21.uf
c:\windows\system32\twain_32\000F4B19.uf
c:\windows\system32\twain_32\000F72E5.uf
c:\windows\system32\twain_32\000F9A81.uf
c:\windows\system32\twain_32\0012F219.uf
c:\windows\system32\twain_32\00131967.uf
c:\windows\system32\twain_32\001340F4.uf
c:\windows\system32\twain_32\00137C76.uf
c:\windows\system32\twain_32\00399B6F.uf
c:\windows\system32\twain_32\0039C2FC.uf
c:\windows\system32\twain_32\0039EBA3.uf
c:\windows\system32\twain_32\003A12F1.uf
c:\windows\system32\twain_32\003A3A40.uf
c:\windows\system32\twain_32\003A88BD.uf
c:\windows\system32\twain_32\003AAFFC.uf
c:\windows\system32\twain_32\003AD74B.uf
c:\windows\system32\twain_32\003AFE8A.uf
c:\windows\system32\twain_32\003B25C8.uf
c:\windows\system32\twain_32\003B4D07.uf
c:\windows\system32\twain_32\003B7456.uf
c:\windows\system32\twain_32\003B9BA4.uf
c:\windows\system32\twain_32\003BC2F3.uf
c:\windows\system32\twain_32\003BEA41.uf
c:\windows\system32\twain_32\003C3CA7.uf
c:\windows\system32\twain_32\003C6424.uf
c:\windows\system32\twain_32\003C8BC1.uf
c:\windows\system32\twain_32\003CB300.uf
c:\windows\system32\twain_32\003CDA3F.uf
c:\windows\system32\twain_32\003D4FEC.uf
c:\windows\system32\twain_32\003D772B.uf
c:\windows\system32\twain_32\003D9E79.uf
c:\windows\system32\twain_32\003DC5C8.uf
c:\windows\system32\twain_32\003DED07.uf
c:\windows\system32\twain_32\003E1445.uf
c:\windows\system32\twain_32\003E3B94.uf
c:\windows\system32\twain_32\003E62D3.uf
c:\windows\system32\twain_32\003EB151.uf
c:\windows\system32\twain_32\003EDC87.uf
c:\windows\system32\twain_32\003F03F5.uf
c:\windows\system32\twain_32\003F2BB1.uf
c:\windows\system32\twain_32\003F52F0.uf
c:\windows\system32\twain_32\003FA15E.uf
c:\windows\system32\twain_32\003FC89D.uf
c:\windows\system32\twain_32\003FEFDB.uf
c:\windows\system32\twain_32\0040172A.uf
c:\windows\system32\twain_32\00403E78.uf
c:\windows\system32\twain_32\004065C7.uf
c:\windows\system32\twain_32\00408D06.uf
c:\windows\system32\twain_32\0040B445.uf
c:\windows\system32\twain_32\004106BA.uf
c:\windows\system32\twain_32\00412E28.uf
c:\windows\system32\twain_32\004155B5.uf
c:\windows\system32\twain_32\00417CF4.uf
c:\windows\system32\twain_32\0041F2A1.uf
c:\windows\system32\twain_32\004219E0.uf
c:\windows\system32\twain_32\0042412E.uf
c:\windows\system32\twain_32\0042686D.uf
c:\windows\system32\twain_32\00428FAC.uf
c:\windows\system32\twain_32\0042B6FA.uf
c:\windows\system32\twain_32\0042DE39.uf
c:\windows\system32\twain_32\00430578.uf
c:\windows\system32\twain_32\00432CB7.uf
c:\windows\system32\twain_32\0043580D.uf
c:\windows\system32\twain_32\0043D1D1.uf
c:\windows\system32\twain_32\0043F93E.uf
c:\windows\system32\twain_32\004447FB.uf
c:\windows\system32\twain_32\00449678.uf
c:\windows\system32\twain_32\0044BDB7.uf
c:\windows\system32\twain_32\0044E506.uf
c:\windows\system32\twain_32\00450C54.uf
c:\windows\system32\twain_32\004533A3.uf
c:\windows\system32\twain_32\00455AE2.uf
c:\windows\system32\twain_32\00458230.uf
c:\windows\system32\twain_32\0045A96F.uf
c:\windows\system32\twain_32\0045F7DD.uf
c:\windows\system32\twain_32\00462314.uf
c:\windows\system32\twain_32\004671C0.uf
c:\windows\system32\twain_32\0046991E.uf
c:\windows\system32\twain_32\0046C07C.uf
c:\windows\system32\twain_32\0046E7BB.uf
c:\windows\system32\twain_32\00470F19.uf
c:\windows\system32\twain_32\00473678.uf
c:\windows\system32\twain_32\00475DD6.uf
c:\windows\system32\twain_32\00478524.uf
c:\windows\system32\twain_32\0047AC73.uf
c:\windows\system32\twain_32\0047D3C1.uf
c:\windows\system32\twain_32\0047FB00.uf
c:\windows\system32\twain_32\0048223F.uf
c:\windows\system32\twain_32\0048497E.uf
c:\windows\system32\twain_32\004870BD.uf
c:\windows\system32\twain_32\004897FC.uf
c:\windows\system32\twain_32\0048BF3A.uf
c:\windows\system32\twain_32\0048E679.uf
c:\windows\system32\twain_32\00490DB8.uf
c:\windows\system32\twain_32\00493507.uf
c:\windows\system32\twain_32\00495C46.uf
c:\windows\system32\twain_32\00498394.uf
c:\windows\system32\twain_32\0049AAE3.uf
c:\windows\system32\twain_32\0049D231.uf
c:\windows\system32\twain_32\0049F99F.uf
c:\windows\system32\twain_32\004A20FD.uf
c:\windows\system32\twain_32\004A484B.uf
c:\windows\system32\twain_32\004A6FAA.uf
c:\windows\system32\twain_32\004A96E8.uf
c:\windows\system32\twain_32\004AC23E.uf
c:\windows\system32\twain_32\004AE9AC.uf
c:\windows\system32\twain_32\004B1139.uf
c:\windows\system32\twain_32\004B3878.uf
c:\windows\system32\twain_32\004B5FB7.uf
c:\windows\system32\twain_32\004B86F6.uf
c:\windows\system32\twain_32\004BAE34.uf
c:\windows\system32\twain_32\004BD573.uf
c:\windows\system32\twain_32\004BFCC2.uf
c:\windows\system32\twain_32\004C2401.uf
c:\windows\system32\twain_32\004C9D96.uf
c:\windows\system32\twain_32\004CC513.uf
c:\windows\system32\twain_32\004CECA0.uf
c:\windows\system32\twain_32\004D140E.uf
c:\windows\system32\twain_32\004D3F73.uf
c:\windows\system32\twain_32\004D6EA1.uf
c:\windows\system32\twain_32\004D9870.uf
c:\windows\system32\twain_32\004DC220.uf
c:\windows\system32\twain_32\004DE96F.uf
c:\windows\system32\twain_32\004E10CD.uf
c:\windows\system32\twain_32\004E380C.uf
c:\windows\system32\twain_32\004EB1C0.uf
c:\windows\system32\twain_32\004ED91E.uf
c:\windows\system32\twain_32\004F2819.uf
c:\windows\system32\twain_32\004F4F58.uf
c:\windows\system32\twain_32\004F7697.uf
c:\windows\system32\twain_32\004F9DD6.uf
c:\windows\system32\twain_32\004FEC44.uf
c:\windows\system32\twain_32\00501383.uf
c:\windows\system32\twain_32\00503AC1.uf
c:\windows\system32\twain_32\00506200.uf
c:\windows\system32\twain_32\0050893F.uf
c:\windows\system32\twain_32\0050B07E.uf
c:\windows\system32\twain_32\0050D7BD.uf
c:\windows\system32\twain_32\0050FF1B.uf
c:\windows\system32\twain_32\005135FA.uf
c:\windows\system32\twain_32\00515D58.uf
c:\windows\system32\twain_32\005184C6.uf
c:\windows\system32\twain_32\0051D3C1.uf
c:\windows\system32\twain_32\0051FCE4.uf
c:\windows\system32\twain_32\00522432.uf
c:\windows\system32\twain_32\00524F78.uf
c:\windows\system32\twain_32\005276D7.uf
c:\windows\system32\twain_32\00529E64.uf
c:\windows\system32\twain_32\0052C5C2.uf
c:\windows\system32\twain_32\0052ED20.uf
c:\windows\system32\twain_32\005314AD.uf
c:\windows\system32\twain_32\00533C1B.uf
c:\windows\system32\twain_32\00536359.uf
c:\windows\system32\twain_32\00538AC7.uf
c:\windows\system32\twain_32\0053B225.uf
c:\windows\system32\twain_32\0053D983.uf
c:\windows\system32\twain_32\005400E2.uf
c:\windows\system32\twain_32\00542840.uf
c:\windows\system32\twain_32\00544F9E.uf
c:\windows\system32\twain_32\005476FC.uf
c:\windows\system32\twain_32\00549E5A.uf
c:\windows\system32\twain_32\0054C5B8.uf
c:\windows\system32\twain_32\0054ED16.uf
c:\windows\system32\twain_32\005514C3.uf
c:\windows\system32\twain_32\00553C21.uf
c:\windows\system32\twain_32\00556B3F.uf
c:\windows\system32\twain_32\00559666.uf
c:\windows\system32\twain_32\0055BDD4.uf
c:\windows\system32\twain_32\0055E551.uf
c:\windows\system32\twain_32\00560CA0.uf
c:\windows\system32\twain_32\005633FE.uf
c:\windows\system32\twain_32\00565B5C.uf
c:\windows\system32\twain_32\005682D9.uf
c:\windows\system32\twain_32\0056AA37.uf
c:\windows\system32\twain_32\0056D213.uf
c:\windows\system32\twain_32\0056F9FD.uf
c:\windows\system32\twain_32\0057214C.uf
c:\windows\system32\twain_32\005748AA.uf
c:\windows\system32\twain_32\00576FF8.uf
c:\windows\system32\twain_32\00579766.uf
c:\windows\system32\twain_32\0057BEE4.uf
c:\windows\system32\twain_32\0057E642.uf
c:\windows\system32\twain_32\00580EE8.uf
c:\windows\system32\twain_32\0058375F.uf
c:\windows\system32\twain_32\00585EDD.uf
c:\windows\system32\twain_32\0058863B.uf
c:\windows\system32\twain_32\0058AE16.uf
c:\windows\system32\twain_32\0058D574.uf
c:\windows\system32\twain_32\0058FCD2.uf
c:\windows\system32\twain_32\00592421.uf
c:\windows\system32\twain_32\00594BCD.uf
c:\windows\system32\twain_32\0059731B.uf
c:\windows\system32\twain_32\00599A7A.uf
c:\windows\system32\twain_32\0059C1E7.uf
c:\windows\system32\twain_32\0059E945.uf
c:\windows\system32\twain_32\005A10B3.uf
c:\windows\system32\twain_32\005A3802.uf
c:\windows\system32\twain_32\005A5F60.uf
c:\windows\system32\twain_32\005A86CE.uf
c:\windows\system32\twain_32\005AAF06.uf
c:\windows\system32\twain_32\005AD655.uf
c:\windows\system32\twain_32\005AFD84.uf
c:\windows\system32\twain_32\005B24E2.uf
c:\windows\system32\twain_32\005B4C50.uf
c:\windows\system32\twain_32\005B73CD.uf
c:\windows\system32\twain_32\005B9B2C.uf
c:\windows\system32\twain_32\005BC26A.uf
c:\windows\system32\twain_32\005BE9C9.uf
c:\windows\system32\twain_32\005C1117.uf
c:\windows\system32\twain_32\005C3885.uf
c:\windows\system32\twain_32\005C5FE3.uf
c:\windows\system32\twain_32\005C8751.uf
c:\windows\system32\twain_32\005CAEAF.uf
c:\windows\system32\twain_32\005CD63C.uf
c:\windows\system32\twain_32\005CFD7B.uf
c:\windows\system32\twain_32\005D24D9.uf
c:\windows\system32\twain_32\005D4C18.uf
c:\windows\system32\twain_32\005D7366.uf
c:\windows\system32\twain_32\005D9AB5.uf
c:\windows\system32\twain_32\005DC213.uf
c:\windows\system32\twain_32\005DE952.uf
c:\windows\system32\twain_32\005E188F.uf
c:\windows\system32\twain_32\005E43D6.uf
c:\windows\system32\twain_32\005E6B34.uf
c:\windows\system32\twain_32\005E9292.uf
c:\windows\system32\twain_32\005EBA00.uf
c:\windows\system32\twain_32\005EE16D.uf
c:\windows\system32\twain_32\005F08BC.uf
c:\windows\system32\twain_32\005F3172.uf
c:\windows\system32\twain_32\005F58D0.uf
c:\windows\system32\twain_32\005F800F.uf
c:\windows\system32\twain_32\005FA79C.uf
c:\windows\system32\twain_32\005FCEDB.uf
c:\windows\system32\twain_32\005FF619.uf
c:\windows\system32\twain_32\00601D78.uf
c:\windows\system32\twain_32\006044B6.uf
c:\windows\system32\twain_32\00606C15.uf
c:\windows\system32\twain_32\00609363.uf
c:\windows\system32\twain_32\0060C2B0.uf
c:\windows\system32\twain_32\0060E9FF.uf
c:\windows\system32\twain_32\0061115D.uf
c:\windows\system32\twain_32\00616058.uf
c:\windows\system32\twain_32\0061897B.uf
c:\windows\system32\twain_32\0061B0D9.uf
c:\windows\system32\twain_32\0061DC1F.uf
c:\windows\system32\twain_32\0062037D.uf
c:\windows\system32\twain_32\00622AEB.uf
c:\windows\system32\twain_32\00625249.uf
c:\windows\system32\twain_32\006279A7.uf
c:\windows\system32\twain_32\0062A134.uf
c:\windows\system32\twain_32\0062C8B2.uf
c:\windows\system32\twain_32\0062EFF1.uf
c:\windows\system32\twain_32\0063174F.uf
c:\windows\system32\twain_32\00633E9D.uf
c:\windows\system32\twain_32\006365FB.uf
c:\windows\system32\twain_32\00638D5A.uf
c:\windows\system32\twain_32\0063B4B8.uf
c:\windows\system32\twain_32\0063DC16.uf
c:\windows\system32\twain_32\00640364.uf
c:\windows\system32\twain_32\00642AB3.uf
c:\windows\system32\twain_32\00645211.uf
c:\windows\system32\twain_32\0064796F.uf
c:\windows\system32\twain_32\0064A11B.uf
c:\windows\system32\twain_32\0064C879.uf
c:\windows\system32\twain_32\0064F798.uf
c:\windows\system32\twain_32\006522CE.uf
c:\windows\system32\twain_32\00654A4C.uf
c:\windows\system32\twain_32\006571C9.uf
c:\windows\system32\twain_32\00659927.uf
c:\windows\system32\twain_32\0065C085.uf
c:\windows\system32\twain_32\0065E7D4.uf
c:\windows\system32\twain_32\00660F42.uf
c:\windows\system32\twain_32\006636A0.uf
c:\windows\system32\twain_32\00665E5C.uf
c:\windows\system32\twain_32\00668637.uf
c:\windows\system32\twain_32\0066AD85.uf
c:\windows\system32\twain_32\0066D4F3.uf
c:\windows\system32\twain_32\0066FC51.uf
c:\windows\system32\twain_32\006723AF.uf
c:\windows\system32\twain_32\00674B3C.uf
c:\windows\system32\twain_32\0067729A.uf
c:\windows\system32\twain_32\00679B41.uf
c:\windows\system32\twain_32\0067C3B8.uf
c:\windows\system32\twain_32\0067EB07.uf
c:\windows\system32\twain_32\00681265.uf
c:\windows\system32\twain_32\00683A30.uf
c:\windows\system32\twain_32\0068617F.uf
c:\windows\system32\twain_32\006888DD.uf
c:\windows\system32\twain_32\0068B03B.uf
c:\windows\system32\twain_32\0068D816.uf
c:\windows\system32\twain_32\0068FF74.uf
c:\windows\system32\twain_32\006926E2.uf
c:\windows\system32\twain_32\00694E50.uf
c:\windows\system32\twain_32\006975AE.uf
c:\windows\system32\twain_32\00699D0C.uf
c:\windows\system32\twain_32\0069C45A.uf
c:\windows\system32\twain_32\0069EBB9.uf
c:\windows\system32\twain_32\006A13F1.uf
c:\windows\system32\twain_32\006A3B50.uf
c:\windows\system32\twain_32\006A628E.uf
c:\windows\system32\twain_32\006A89ED.uf
c:\windows\system32\twain_32\006AB14B.uf
c:\windows\system32\twain_32\006AD8C8.uf
c:\windows\system32\twain_32\006B0026.uf
c:\windows\system32\twain_32\006B2775.uf
c:\windows\system32\twain_32\006B4ED3.uf
c:\windows\system32\twain_32\006B7612.uf
c:\windows\system32\twain_32\006B9D7F.uf
c:\windows\system32\twain_32\006BC4CE.uf
c:\windows\system32\twain_32\006BEC2C.uf
c:\windows\system32\twain_32\006C138A.uf
c:\windows\system32\twain_32\006C3B17.uf
c:\windows\system32\twain_32\006C6256.uf
c:\windows\system32\twain_32\006C89B4.uf
c:\windows\system32\twain_32\006CB0F3.uf
c:\windows\system32\twain_32\006CD851.uf
c:\windows\system32\twain_32\006CFFA0.uf
c:\windows\system32\twain_32\006D26FE.uf
c:\windows\system32\twain_32\006D4E2D.uf
c:\windows\system32\twain_32\006D7D5B.uf
c:\windows\system32\twain_32\006DA8A1.uf
c:\windows\system32\twain_32\006DCFFF.uf
c:\windows\system32\twain_32\006DF75E.uf
c:\windows\system32\twain_32\006E1EBC.uf
c:\windows\system32\twain_32\006E460A.uf
c:\windows\system32\twain_32\006E6D78.uf
c:\windows\system32\twain_32\006E963D.uf
c:\windows\system32\twain_32\006EBDAB.uf
c:\windows\system32\twain_32\006EE4EA.uf
c:\windows\system32\twain_32\006F0C67.uf
c:\windows\system32\twain_32\006F33A6.uf
c:\windows\system32\twain_32\006F5AE5.uf
c:\windows\system32\twain_32\006F8243.uf
c:\windows\system32\twain_32\006FA982.uf
c:\windows\system32\twain_32\006FD0F0.uf
c:\windows\system32\twain_32\006FF85E.uf
c:\windows\system32\twain_32\007027AB.uf
c:\windows\system32\twain_32\00704F09.uf
c:\windows\system32\twain_32\00707A6F.uf
c:\windows\system32\twain_32\0070A1CD.uf
c:\windows\system32\twain_32\0070C92B.uf
c:\windows\system32\twain_32\0070F089.uf
c:\windows\system32\twain_32\00711826.uf
c:\windows\system32\twain_32\00713F93.uf
c:\windows\system32\twain_32\00716720.uf
c:\windows\system32\twain_32\00718E5F.uf
c:\windows\system32\twain_32\0071B5AE.uf
c:\windows\system32\twain_32\0071DD2B.uf
c:\windows\system32\twain_32\0072047A.uf
c:\windows\system32\twain_32\00722BC8.uf
c:\windows\system32\twain_32\00725326.uf
c:\windows\system32\twain_32\00727B9E.uf
c:\windows\system32\twain_32\0072A3A8.uf
c:\windows\system32\twain_32\0072CB15.uf
c:\windows\system32\twain_32\0072F283.uf
c:\windows\system32\twain_32\00731DD9.uf
c:\windows\system32\twain_32\00734621.uf
c:\windows\system32\twain_32\00736DFC.uf
c:\windows\system32\twain_32\00739C02.uf
c:\windows\system32\twain_32\0073C360.uf
c:\windows\system32\twain_32\0073EEC5.uf
c:\windows\system32\twain_32\00741AE6.uf
c:\windows\system32\twain_32\0074463C.uf
c:\windows\system32\twain_32\00746D9A.uf
c:\windows\system32\twain_32\00749517.uf
c:\windows\system32\twain_32\0074BC75.uf
c:\windows\system32\twain_32\0074E3D4.uf
c:\windows\system32\twain_32\00750B41.uf
c:\windows\system32\twain_32\0075329F.uf
c:\windows\system32\twain_32\00755A7B.uf
c:\windows\system32\twain_32\00758340.uf
c:\windows\system32\twain_32\0075AB79.uf
c:\windows\system32\twain_32\0075D316.uf
c:\windows\system32\twain_32\0075FC48.uf
c:\windows\system32\twain_32\00762608.uf
c:\windows\system32\twain_32\00764E31.uf
c:\windows\system32\twain_32\00767716.uf
c:\windows\system32\twain_32\00769FDB.uf
c:\windows\system32\twain_32\0076C8B1.uf
c:\windows\system32\twain_32\0076F128.uf
c:\windows\system32\twain_32\00771886.uf
c:\windows\system32\twain_32\00773FD5.uf
c:\windows\system32\twain_32\00776742.uf
c:\windows\system32\twain_32\00778EB0.uf
c:\windows\system32\twain_32\0077B5FF.uf
c:\windows\system32\twain_32\0077DD6C.uf
c:\windows\system32\twain_32\007806CE.uf
c:\windows\system32\twain_32\00782ED8.uf
c:\windows\system32\twain_32\00785730.uf
c:\windows\system32\twain_32\00787E8E.uf
c:\windows\system32\twain_32\0078A5FC.uf
c:\windows\system32\twain_32\0078D181.uf
c:\windows\system32\twain_32\0078FF38.uf
c:\windows\system32\twain_32\00792AAD.uf
c:\windows\system32\twain_32\00795651.uf
c:\windows\system32\twain_32\0079861B.uf
c:\windows\system32\twain_32\0079ADC7.uf
c:\windows\system32\twain_32\0079D525.uf
c:\windows\system32\twain_32\0079FC84.uf
c:\windows\system32\twain_32\007A23E2.uf
c:\windows\system32\twain_32\007A4B6F.uf
c:\windows\system32\twain_32\007A72BD.uf
c:\windows\system32\twain_32\007A9A3B.uf
c:\windows\system32\twain_32\007AC571.uf
c:\windows\system32\twain_32\007AECEE.uf
c:\windows\system32\twain_32\007B1835.uf
c:\windows\system32\twain_32\007B439A.uf
c:\windows\system32\twain_32\007B6B08.uf
c:\windows\system32\twain_32\007B9266.uf
c:\windows\system32\twain_32\007BBA02.uf
c:\windows\system32\twain_32\007BE161.uf
c:\windows\system32\twain_32\007C0C87.uf
c:\windows\system32\twain_32\007C33E6.uf
c:\windows\system32\twain_32\007C5B73.uf
c:\windows\system32\twain_32\007C84B5.uf
c:\windows\system32\twain_32\007CAC04.uf
c:\windows\system32\twain_32\007CD342.uf
c:\windows\system32\twain_32\007CFA91.uf
c:\windows\system32\twain_32\007D21EF.uf
c:\windows\system32\twain_32\007D497C.uf
c:\windows\system32\twain_32\007D70CB.uf
c:\windows\system32\twain_32\007D9819.uf
c:\windows\system32\twain_32\007DBF77.uf
c:\windows\system32\twain_32\007DE6B6.uf
c:\windows\system32\twain_32\007E0E14.uf
c:\windows\system32\twain_32\007E397A.uf
c:\windows\system32\twain_32\007E64B0.uf
c:\windows\system32\twain_32\007E8C2D.uf
c:\windows\system32\twain_32\007EB3AB.uf
c:\windows\system32\twain_32\007EDB09.uf
c:\windows\system32\twain_32\007F0257.uf
c:\windows\system32\twain_32\007F29B6.uf
c:\windows\system32\twain_32\007F5133.uf
c:\windows\system32\twain_32\007F7891.uf
c:\windows\system32\twain_32\007FA08B.uf
c:\windows\system32\twain_32\007FC99F.uf
c:\windows\system32\twain_32\007FF35F.uf
c:\windows\system32\twain_32\00801B3A.uf
c:\windows\system32\twain_32\00804288.uf
c:\windows\system32\twain_32\008069F6.uf
c:\windows\system32\twain_32\00809173.uf
c:\windows\system32\twain_32\0080B8E1.uf
c:\windows\system32\twain_32\0080E03F.uf
c:\windows\system32\twain_32\008107BD.uf
c:\windows\system32\twain_32\00812F2A.uf
c:\windows\system32\twain_32\008156D7.uf
c:\windows\system32\twain_32\0081853A.uf
c:\windows\system32\twain_32\0081AE5D.uf
c:\windows\system32\twain_32\0081D5AB.uf
c:\windows\system32\twain_32\0081FD09.uf
c:\windows\system32\twain_32\00822468.uf
c:\windows\system32\twain_32\00824C43.uf
c:\windows\system32\twain_32\00827391.uf
c:\windows\system32\twain_32\00829AFF.uf
c:\windows\system32\twain_32\0082C26D.uf
c:\windows\system32\twain_32\0082E9BB.uf
c:\windows\system32\twain_32\00831196.uf
c:\windows\system32\twain_32\00833C40.uf
c:\windows\system32\twain_32\00836C97.uf
c:\windows\system32\twain_32\00839751.uf
c:\windows\system32\twain_32\0083C074.uf
c:\windows\system32\twain_32\0083EA05.uf
c:\windows\system32\twain_32\00841318.uf
c:\windows\system32\twain_32\00843C6A.uf
c:\windows\system32\twain_32\00846501.uf
c:\windows\system32\twain_32\00848E72.uf
c:\windows\system32\twain_32\0084B7B5.uf
c:\windows\system32\twain_32\0084E107.uf
c:\windows\system32\twain_32\00850A69.uf
c:\windows\system32\twain_32\008533F9.uf
c:\windows\system32\twain_32\0085622D.uf
c:\windows\system32\twain_32\008590CF.uf
c:\windows\system32\twain_32\0085B83D.uf
c:\windows\system32\twain_32\0085E3E1.uf
c:\windows\system32\twain_32\00860B4E.uf
c:\windows\system32\twain_32\008634B0.uf
c:\windows\system32\twain_32\00865CCA.uf
c:\windows\system32\twain_32\00868996.uf
c:\windows\system32\twain_32\0086B421.uf
c:\windows\system32\twain_32\0086DBCD.uf
c:\windows\system32\twain_32\0087034B.uf
c:\windows\system32\twain_32\00872BF1.uf
c:\windows\system32\twain_32\00875870.uf
c:\windows\system32\twain_32\00878442.uf
c:\windows\system32\twain_32\0087ABC0.uf
c:\windows\system32\twain_32\0087D31E.uf
c:\windows\system32\twain_32\0087FFFA.uf
c:\windows\system32\twain_32\00882749.uf
c:\windows\system32\twain_32\00884E97.uf
c:\windows\system32\twain_32\008875F5.uf
c:\windows\system32\twain_32\00889D44.uf
c:\windows\system32\twain_32\0088C88A.uf
c:\windows\system32\twain_32\0088EFE8.uf
c:\windows\system32\twain_32\00891746.uf
c:\windows\system32\twain_32\00893EA4.uf
c:\windows\system32\twain_32\00896845.uf
c:\windows\system32\twain_32\00899158.uf
c:\windows\system32\twain_32\0089BAAA.uf
c:\windows\system32\twain_32\0089E228.uf
c:\windows\system32\twain_32\008A0A12.uf
c:\windows\system32\twain_32\008A346E.uf
c:\windows\system32\twain_32\008A5CA7.uf
c:\windows\system32\twain_32\008A855D.uf
c:\windows\system32\twain_32\008AADC5.uf
c:\windows\system32\twain_32\008AD8EC.uf
c:\windows\system32\twain_32\008B003A.uf
c:\windows\system32\twain_32\008B2B71.uf
c:\windows\system32\twain_32\008B52DE.uf
c:\windows\system32\twain_32\008B7A3C.uf
c:\windows\system32\twain_32\008BA1C9.uf
c:\windows\system32\twain_32\008BC937.uf
c:\windows\system32\twain_32\008BF095.uf
c:\windows\system32\twain_32\008C17F3.uf
c:\windows\system32\twain_32\008C3F52.uf
c:\windows\system32\twain_32\008C6690.uf
c:\windows\system32\twain_32\008C91F6.uf
c:\windows\system32\twain_32\008CBCCF.uf
c:\windows\system32\twain_32\008CE41D.uf
c:\windows\system32\twain_32\008D0B7B.uf
c:\windows\system32\twain_32\008D3896.uf
c:\windows\system32\twain_32\008D6042.uf
c:\windows\system32\twain_32\008D8CFF.uf
c:\windows\system32\twain_32\008DB46D.uf
c:\windows\system32\twain_32\008DDCB6.uf
c:\windows\system32\twain_32\008E04B0.uf
c:\windows\system32\twain_32\008E2D95.uf
c:\windows\system32\twain_32\008E58EB.uf
c:\windows\system32\twain_32\008E8058.uf
c:\windows\system32\twain_32\008EA7B6.uf
c:\windows\system32\twain_32\008ECF15.uf
c:\windows\system32\twain_32\008EF6D0.uf
c:\windows\system32\twain_32\008F212C.uf
c:\windows\system32\twain_32\008F48D8.uf
c:\windows\system32\twain_32\008F7037.uf
c:\windows\system32\twain_32\008F9812.uf
c:\windows\system32\twain_32\008FC0A8.uf
c:\windows\system32\twain_32\008FE883.uf
c:\windows\system32\twain_32\00900FE2.uf
c:\windows\system32\twain_32\0090375F.uf
c:\windows\system32\twain_32\00905EDC.uf
c:\windows\system32\twain_32\0090864A.uf
c:\windows\system32\twain_32\0090AD99.uf
c:\windows\system32\twain_32\0090D506.uf
c:\windows\system32\twain_32\0090FC64.uf
c:\windows\system32\twain_32\009123C3.uf
c:\windows\system32\twain_32\local.ds
c:\windows\system32\twain_32\user.ds

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_Psyche
-------\Legacy_Psyche
-------\Legacy_fci
-------\Legacy_icf
-------\Legacy_MYWEBSEARCHSERVICE
-------\Legacy_RESTORE
-------\Service_fci
-------\Service_ICF
-------\Service_MyWebSearchService
-------\Service_restore


((((((((((((((((((((((((( Files Created from 2008-10-12 to 2008-11-12 )))))))))))))))))))))))))))))))
.

2008-11-11 22:49 . 2008-11-11 22:49 <DIR> d-------- c:\documents and settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-11-11 20:56 . 2008-08-14 10:00 2,180,352 -----c--- c:\windows\system32\dllcache\ntoskrnl.exe
2008-11-11 20:56 . 2008-08-14 09:58 2,136,064 -----c--- c:\windows\system32\dllcache\ntkrnlmp.exe
2008-11-11 20:56 . 2008-08-14 09:22 2,057,728 -----c--- c:\windows\system32\dllcache\ntkrnlpa.exe
2008-11-11 20:56 . 2008-08-14 09:22 2,015,744 -----c--- c:\windows\system32\dllcache\ntkrpamp.exe
2008-11-11 20:53 . 2008-05-01 14:30 331,776 -----c--- c:\windows\system32\dllcache\msadce.dll
2008-11-11 20:47 . 2007-07-09 13:09 584,192 -----c--- c:\windows\system32\dllcache\rpcrt4.dll
2008-11-11 20:10 . 2008-04-11 18:50 683,520 -----c--- c:\windows\system32\dllcache\inetcomm.dll
2008-11-11 00:37 . 2004-08-04 05:22 23,024 --a------ c:\windows\system32\ieuinit.inf
2008-11-11 00:37 . 2004-08-02 14:20 7,208 --------- c:\windows\system32\secupd.sig
2008-11-11 00:37 . 2004-08-02 14:20 4,569 --------- c:\windows\system32\secupd.dat
2008-11-11 00:15 . 2005-10-20 22:20 1,082,368 --a------ c:\windows\system32\esent.dll
2008-11-11 00:08 . 2008-11-11 00:08 <DIR> d-------- C:\Kontiki
2008-11-10 22:39 . 2004-08-04 07:56 351,232 --a------ c:\windows\system32\winhttp.dll
2008-11-10 22:39 . 2004-08-04 07:56 18,944 --a------ c:\windows\system32\qmgrprxy.dll
2008-11-10 21:44 . 2008-11-11 20:00 250 --a------ c:\windows\gmer.ini
2008-11-09 23:35 . 2008-11-09 23:35 <DIR> d-------- c:\program files\SUPERAntiSpyware
2008-11-09 23:35 . 2008-11-09 23:35 <DIR> d-------- c:\documents and settings\Dave\Application Data\SUPERAntiSpyware.com
2008-11-09 23:35 . 2008-11-09 23:35 <DIR> d-------- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2008-11-09 17:21 . 2008-11-09 17:21 <DIR> d-------- c:\program files\Trend Micro
2008-11-09 17:20 . 2008-11-09 17:20 <DIR> d-------- c:\program files\Common Files\Wise Installation Wizard
2008-11-04 22:43 . 2008-11-05 00:59 <DIR> d--h----- C:\$AVG8.VAULT$
2008-10-15 22:59 . 2008-10-15 22:59 <DIR> d---s---- c:\documents and settings\Administrator\UserData
2008-10-15 21:34 . 2008-10-15 21:34 <DIR> d-------- c:\documents and settings\Administrator\Application Data\Lavasoft
2008-10-13 21:56 . 2007-12-24 16:37 138,384 --a------ c:\windows\system32\drivers\tmcomm.sys
2008-10-13 21:55 . 2008-10-14 05:01 <DIR> d-------- c:\documents and settings\Dave\Application Data\HouseCall 6.6
2008-10-13 21:44 . 2008-07-18 22:09 215,752 --a------ c:\windows\system32\wuaucpl.cpl

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-11-12 19:57 --------- d-----w c:\documents and settings\All Users\Application Data\Kontiki
2008-11-12 19:55 332,396 -csha-w c:\windows\system32\drivers\fidbox2.idx
2008-11-12 19:55 3,245,344 -csha-w c:\windows\system32\drivers\fidbox2.dat
2008-11-12 19:55 3,184,952 -csha-w c:\windows\system32\drivers\fidbox.idx
2008-11-12 19:55 237,264,416 -csha-w c:\windows\system32\drivers\fidbox.dat
2008-10-24 11:10 453,632 ----a-w c:\windows\system32\drivers\mrxsmb.sys
2008-10-15 21:34 --------- d---a-w c:\documents and settings\All Users\Application Data\TEMP
2008-10-01 19:51 --------- d-----w c:\program files\RegCure
2008-09-30 06:24 --------- d-----w c:\documents and settings\Dave\Application Data\LimeWire
2008-09-30 06:20 --------- d-----w c:\program files\LimeWire
2008-09-30 06:20 --------- d-----w c:\program files\Incomplete
2008-09-28 22:57 16,608 ----a-w c:\windows\gdrv.sys
2008-09-28 21:49 --------- d--h--w c:\program files\InstallShield Installation Information
2008-09-25 23:46 22,528 --sh--r C:\bootwiz.sys
2008-09-24 20:37 --------- d-----w c:\program files\Gigabyte
2008-09-24 20:36 --------- d-----w c:\program files\DIFX
2008-09-24 20:35 --------- d-----w c:\program files\AMD
2008-09-24 20:29 --------- d-----w c:\program files\ATI Technologies
2008-07-13 10:18 23 ----a-w c:\documents and settings\Cameron\jagex_runescape_preferences.dat
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AWMON"="c:\progra~1\Lavasoft\AD-AWA~1\Ad-Watch.exe" [2005-05-25 517632]
"EPSON Stylus Photo RX520 Series"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_FATIAGE.EXE" [2005-04-07 98304]
"CreativeMouse"="c:\program files\Mouse Driver\MouseDrv.exe" [2004-06-27 503808]
"kis"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" [2006-03-24 139367]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-11-16 139264]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" [2008-02-20 356352]
"TomTomHOME.exe"="c:\program files\TomTom HOME 2\HOMERunner.exe" [2008-02-18 206184]
"kdx"="c:\program files\Kontiki\KHost.exe" [2007-04-23 1032640]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2008-09-03 1576176]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 c:\windows\system32\bthprops.cpl]
"High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2005-01-07 c:\windows\system32\HdAShCut.exe]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"kis"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" [2006-03-24 139367]
"CreativeMouse"="c:\program files\Mouse Driver\MouseDrv.exe" [2004-06-27 503808]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-01-12 185896]
"HostManager"="c:\program files\Common Files\AOL\1143679318\ee\AOLSoftware.exe" [2006-11-17 50736]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-03-28 413696]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2006-10-16 1164912]
"AcronisTimounterMonitor"="c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe" [2006-10-16 1941784]
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2006-10-16 87584]
"kdx"="c:\program files\Kontiki\KHost.exe" [2007-04-23 1032640]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 c:\windows\system32\bthprops.cpl]
"RTHDCPL"="RTHDCPL.EXE" [2007-12-20 c:\windows\RTHDCPL.EXE]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2004-08-04 15360]

c:\documents and settings\Dave\Start Menu\Programs\Startup\
Memeo AutoBackup Pro Launcher.lnk - c:\documents and settings\Dave\Application Data\Microsoft\Installer\{2FD28F55-E01B-4212-93F7-9F1B51C572A2}\NewShortcut4_51A847D327C24F7797772AF2A4E486ED.exe [2008-04-25 73728]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
RAID Manager.lnk - c:\program files\ITE\ITE IT8212 ATA RAID Controller\RaidMgr.exe [2008-04-01 724992]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveSearch"= 1 (0x1)

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-07-23 16:28 352256 c:\program files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.I263"= I263_32.drv
"vidc.ffds"= ffdshow.ax

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ati0daxx.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ati1tbxx.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ati2ftxx.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ati8nyxx.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ati8vkxx.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"f:\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"=
"c:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 6.0\\avp.exe"=
"c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"=
"c:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"=
"c:\\Program Files\\AOL 9.0\\waol.exe"=
"c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"c:\\Program Files\\Common Files\\AOL\\1143679318\\ee\\AOLServiceHost.exe"=
"c:\\Program Files\\Sony Ericsson\\Sony Ericsson Media Manager 1.0\\MediaManager.exe"=
"c:\\Program Files\\LimeWire\\LimeWire.exe"=
"c:\\Program Files\\Common Files\\AOL\\1143679318\\ee\\aolsoftware.exe"=
"c:\\Program Files\\Kontiki\\KService.exe"=

R0 iteraid;ITERAID_Service_Install;c:\windows\system32\DRIVERS\iteraid.sys [2004-12-10 25105]
R3 M1000Srv;M5603C USB2.0 Camera Driver;c:\windows\system32\Drivers\M1000KNT.sys [2004-10-12 515249]
R3 PPPoEWin;PPPoEWin Miniport;c:\windows\system32\DRIVERS\PPPoEWin.SYS [2003-09-25 104375]
R3 RegKill;RegKill;c:\windows\system32\Drivers\RegKill.sys [2002-03-10 6144]
S0 ati0daxx;ati0daxx;c:\windows\system32\Drivers\ati0daxx.sys [ ]
S0 ati1tbxx;ati1tbxx;c:\windows\system32\Drivers\ati1tbxx.sys [ ]
S0 ati2ftxx;ati2ftxx;c:\windows\system32\Drivers\ati2ftxx.sys [ ]
S0 ati8nyxx;ati8nyxx;c:\windows\system32\Drivers\ati8nyxx.sys [ ]
S0 ati8vkxx;ati8vkxx;c:\windows\system32\Drivers\ati8vkxx.sys [ ]
S0 spywarestop;spywarestop;c:\windows\system32\DRIVERS\spywarestop.sys [ ]
S1 glaide32;glaide32;c:\windows\system32\drivers\glaide32.sys [ ]
S2 bfyfwdehzqv;bfyfwdehzqv;c:\windows\system32\drivers\szkuwvtgnl.sys [ ]
S2 eggqpvflmvb;eggqpvflmvb;c:\windows\system32\drivers\rymkspfguji.sys [ ]
S2 fanvqnehe;fanvqnehe;c:\windows\system32\drivers\zltrgpinup.sys [ ]
S2 qhpmzxdhbv;qhpmzxdhbv;c:\windows\system32\drivers\vcpovkjrwb.sys [ ]
S2 thcglpcsdbh;thcglpcsdbh;c:\windows\system32\drivers\fieprlzhtizwys.sys [ ]
S2 vbjzssre;vbjzssre;c:\windows\system32\drivers\ebwer.sys [ ]
S2 vyykucmbg;vyykucmbg;c:\windows\system32\drivers\ngbsztbdtm.sys [ ]
S3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\System32\DRIVERS\ASPI32.sys [2002-07-17 16512]
S3 ATICDSDr;ATICDSDr;c:\docume~1\Dave\LOCALS~1\Temp\ATICDSDr.sys [ ]
S3 Cap7134;Philips Cap7134 Capture;c:\windows\system32\DRIVERS\Cap7134.sys [2004-12-09 358080]
S3 FXDRV;FXDRV;c:\program files\SuperUtility\Fxdrv.sys [ ]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2007-11-13 13352]
S3 lanusb;GlobeSpan USB ADSL LAN Modem;c:\windows\system32\DRIVERS\glausb.sys [2003-08-15 138402]
S3 PhTVTune;Philips WDM TVTuner;c:\windows\system32\DRIVERS\PhTVTune.sys [2004-12-01 28448]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\K]
\Shell\AutoRun\command - K:\setup.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d840ac11-8644-11dc-a913-5050506f4531}]
\Shell\AutoRun\command - "Z:\Install FreeAgent Tools.exe" /run
.
Contents of the 'Scheduled Tasks' folder

2007-07-07 c:\windows\Tasks\1-Click Maintenance.job
- c:\program files\TuneUp Utilities 2007\SystemOptimizer.exe []

2008-11-10 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 13:57]
.
- - - - ORPHANS REMOVED - - - -

URLSearchHooks-{EA756889-2338-43DB-8F07-D1CA6FB9C90D} - (no file)
BHO-{75f5e048-3311-4347-acff-8b26fbd47309} - c:\windows\system32\vtUlKBQH.dll
HKCU-Run-M1000Mnt - M1000Rmv.exe
HKLM-Run-M1000Mnt - M1000Rmv.exe
Notify-wineak32 - wineak32.dll
Notify-wvUlmkJc - wvUlmkJc.dll
Notify-xnrtza - xnrtza.dll


.
------- Supplementary Scan -------
.
FireFox -: Profile - c:\documents and settings\Dave\Application Data\Mozilla\Firefox\Profiles\b5k47nwq.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - www.google.co.uk
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-12 19:57:46
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\ati2evxx.exe
c:\windows\system32\ati2evxx.exe
c:\program files\Common Files\Acronis\Schedule2\schedul2.exe
c:\program files\Common Files\AOL\ACS\AOLacsd.exe
c:\windows\system32\CTSVCCDA.EXE
c:\program files\Kontiki\KService.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\snmp.exe
c:\windows\wanmpsvc.exe
c:\windows\system32\rundll32.exe
c:\windows\WebCam\M1000\M1000Mnt.exe
c:\program files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2008-11-12 20:01:22 - machine was rebooted
ComboFix-quarantined-files.txt 2008-11-12 20:01:18

Pre-Run: 4,564,406,272 bytes free
Post-Run: 5,660,860,416 bytes free

WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /NoExecute=OptIn

794 --- E O F --- 2008-11-12 00:39:06
Attached Files
File Type: txt ComboFix.txt (41.6 KB, 1 views)
Last edited by Ried; 11-12-2008 at 09:38 PM.
DarkMagician66 is offline