Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:57:39 PM, on 6/12/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\dvd43\dvd43_tray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Zune\ZuneLauncher.exe
C:\Program Files\Ideazon\ZEngine\Zboard.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\SqueezeCenter\SqueezeTray.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\System32\snmp.exe
C:\PROGRA~1\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZuneBusEnum.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\PROGRA~1\SQUEEZ~1\server\SQUEEZ~1.EXE
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = cm.my.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: (no name) - {BE89472C-B803-4D1D-9A9A-0A63660E0FE3} - C:\PROGRA~1\COPERN~1\COPERN~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Copernic Agent - {F2E259E8-0FC8-438C-A6E0-342DD80FA53E} - C:\Program Files\Copernic Agent\CopernicAgentExt.dll
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [dvd43] C:\Program Files\dvd43\dvd43_tray.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Zune Launcher] "C:\Program Files\Zune\ZuneLauncher.exe"
O4 - HKLM\..\Run: [EPSON Stylus Photo R800 (Copy 1)] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2J1.EXE /P32 "EPSON Stylus Photo R800 (Copy 1)" /O6 "USB003" /M "Stylus Photo R800"
O4 - HKLM\..\Run: [Zboard] C:\Program Files\Ideazon\ZEngine\Zboard.exe
O4 - HKLM\..\Run: [Necutray] NECUTRAY.EXE
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1100429 -Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; FBSMTWB; .NET CLR 1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; Zune 3.0)
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: SqueezeCenter Tray Tool.lnk = C:\Program Files\SqueezeCenter\SqueezeTray.exe
O8 - Extra context menu item: &Search - ?p=ZUxdm265ROUS
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Search Using Copernic Agent - res://C:\Program Files\Copernic Agent\CopernicAgentExt.dll/INTEGRATION_MENU_SEARCHEXT
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: (no name) - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra 'Tools' menuitem: Launch Copernic Agent - {193B17B0-7C9F-4D5B-AEAB-8D3605EFC084} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Copernic Agent - {688DC797-DC11-46A7-9F1B-445F4F58CE6E} - C:\PROGRA~1\COPERN~1\COPERN~1.EXE
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Jaylynn Perkins\Start Menu\Programs\IMVU\Run IMVU.lnk
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - http://zone.msn.com/binframework/v10/ZPAChat.cab55579.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase5483.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1195557403890
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1195557361875
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/...ro.cab56649.cab
O16 - DPF: {C6E9F0B8-AFEA-46F3-831B-612E97381ABA} (imvustreamer Control) - http://www.imvu.com/activex/imvustreamer.cab
O16 - DPF: {CE8267C2-D41A-4A50-A69D-F32B5C289F14} (FileOpenInstaller) - http://plugin.fileopen.com/current/FileOpen.CAB
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - http://zone.msn.com/binframework/v10/StProxy.cab55579.cab
O16 - DPF: {E5ABEB00-B357-4884-9949-77B2C71A7EE3} (BoardCtl Class) - http://www.intel.com/design/motherbd/boardid/BoardID.cab
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Intel® Quick Resume Technology Drivers (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology\ELService.exe
O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SqueezeMySQL - Unknown owner - C:\PROGRA~1\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exe
O23 - Service: Symantec RemoteAssist - Symantec, Inc. - C:\Program Files\Common Files\Symantec Shared\Support Controls\ssrc.exe

--
End of file - 12321 bytes

Combofix log

ComboFix 09-06-12.02 - Trevor 06/12/2009 20:20.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3071.2318 [GMT -5:00]
Running from: c:\documents and settings\Jaylynn Perkins\Desktop\Combo-Fix1.exe
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-2152\0fdf6651ec58af7738a5f192a16308f3\WinError.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-2152\1c4c331123ae5269fbd179de68e18722\Socket.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-2152\37dbb36b1afb4153f311e1937d13beb9\Win32.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-2152\463172d63e5c347ebd2a2c9f3e30a769\Cwd.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-2152\4698d6dad1d9192f189448cd2250e41c\Registry.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-2152\4e2f70cf514e42eb8319b6c42723ed06\Dumper.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-2152\b1ef31ab16378a4b392b3d07f25c074a\Service.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-2152\c147fa650a1a0662dceef2f7ea370a7d\List.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-2152\e247dd11d21a2bfdb97ad0cdd295b32d\Encode.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-2152\e51718032942dd5fb4b1590be1ec8d83\Process.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-2152\perl58.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\054a515a11c7920cfc4d7faea7af4932\XS.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\0fdf6651ec58af7738a5f192a16308f3\WinError.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\12913763d8b9f06d2ca82771fcb306f1\Parser.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\14f8cfecb15e1c87916789ed739489ff\Expat.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\1c4c331123ae5269fbd179de68e18722\Socket.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\37dbb36b1afb4153f311e1937d13beb9\Win32.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\463172d63e5c347ebd2a2c9f3e30a769\Cwd.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\4698d6dad1d9192f189448cd2250e41c\Registry.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\480ac5427cb6705921c199c825f6feda\File.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\514f58c7649fa1fe7afd0239e90bf91d\SHA1.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\531074183cd92c8ee6e38095fed64379\Detector.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\563d7ead40b59c49009856a0b10f2014\Array.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\5665e9d91ffd5329b4b069811edd98e1\XS.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\619eb23c53abde1a9d9d6b8d81ccd746\Util.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\6b58dab08175faa9470d9b8f08345f77\Byte.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\6ecc81286663495601d2499da7def595\Zlib.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\776043a051266bed6315875a8a879b49\GD.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\804a82b53759189a7786eee16508a628\Unicode.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\8715287e64467664fda73ee36a680ad6\ReadKey.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\899240261dde99660e14431e6d8d1fe9\DBI.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\8d9ba91df5b696882e70aa59f4766acb\Storable.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\8ee7a6c9ed2bc0f12b37cc777e09a537\File.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\93e8018418e0dd3aeabcea5210c424d9\IO.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\95e9a2327e375c6b6f41bca6adf49352\Registry.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\9e11e8cf40c66b8d30f95ce783f2ac0b\Hostname.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\a507fccf2be25b878761a66bf411c201\mysql.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\ad76515ff4d1de346e3888790190a3c0\API.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\b1ef31ab16378a4b392b3d07f25c074a\Service.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\b2a041897a5d2e9486f60c2f6017af23\Peek.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\b5ac0b87ff26ec339558537436e82acd\HiRes.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\bbd2dcfa51103025d57caa776bc1047b\B.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\c0bb48510a66e6fdcb5936be6801222d\MD5.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\c537490a8d5597db7ef38c63a14dd378\Base64.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\c92f1c7d4396f53f4c5d352e2bd8c9a9\Syck.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\cd6be9554293967a36ad1075b097a79b\OLE.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\e247dd11d21a2bfdb97ad0cdd295b32d\Encode.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\e51718032942dd5fb4b1590be1ec8d83\Process.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\ea8f9cce13d067ab0d898ca399b403ed\Fcntl.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\f101a1002e0deeff9062f440b4956f0f\FastCalc.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\fa142febd5dc53f93f911452e1a99387\Hebrew.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\fb2e449d6244301907de33f5adebdb35\POSIX.dll
c:\docume~1\JAYLYN~1\LOCALS~1\Temp\pdk-Trevor-3440\perl58.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-2152\0fdf6651ec58af7738a5f192a16308f3\WinError.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-2152\1c4c331123ae5269fbd179de68e18722\Socket.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-2152\37dbb36b1afb4153f311e1937d13beb9\Win32.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-2152\463172d63e5c347ebd2a2c9f3e30a769\Cwd.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-2152\4698d6dad1d9192f189448cd2250e41c\Registry.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-2152\4e2f70cf514e42eb8319b6c42723ed06\Dumper.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-2152\b1ef31ab16378a4b392b3d07f25c074a\Service.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-2152\c147fa650a1a0662dceef2f7ea370a7d\List.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-2152\e247dd11d21a2bfdb97ad0cdd295b32d\Encode.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-2152\e51718032942dd5fb4b1590be1ec8d83\Process.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-2152\perl58.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\054a515a11c7920cfc4d7faea7af4932\XS.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\0fdf6651ec58af7738a5f192a16308f3\WinError.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\12913763d8b9f06d2ca82771fcb306f1\Parser.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\14f8cfecb15e1c87916789ed739489ff\Expat.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\1c4c331123ae5269fbd179de68e18722\Socket.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\37dbb36b1afb4153f311e1937d13beb9\Win32.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\463172d63e5c347ebd2a2c9f3e30a769\Cwd.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\4698d6dad1d9192f189448cd2250e41c\Registry.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\480ac5427cb6705921c199c825f6feda\File.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\514f58c7649fa1fe7afd0239e90bf91d\SHA1.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\531074183cd92c8ee6e38095fed64379\Detector.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\563d7ead40b59c49009856a0b10f2014\Array.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\5665e9d91ffd5329b4b069811edd98e1\XS.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\619eb23c53abde1a9d9d6b8d81ccd746\Util.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\6b58dab08175faa9470d9b8f08345f77\Byte.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\6ecc81286663495601d2499da7def595\Zlib.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\776043a051266bed6315875a8a879b49\GD.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\804a82b53759189a7786eee16508a628\Unicode.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\8715287e64467664fda73ee36a680ad6\ReadKey.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\899240261dde99660e14431e6d8d1fe9\DBI.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\8d9ba91df5b696882e70aa59f4766acb\Storable.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\8ee7a6c9ed2bc0f12b37cc777e09a537\File.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\93e8018418e0dd3aeabcea5210c424d9\IO.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\95e9a2327e375c6b6f41bca6adf49352\Registry.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\9e11e8cf40c66b8d30f95ce783f2ac0b\Hostname.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\a507fccf2be25b878761a66bf411c201\mysql.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\ad76515ff4d1de346e3888790190a3c0\API.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\b1ef31ab16378a4b392b3d07f25c074a\Service.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\b2a041897a5d2e9486f60c2f6017af23\Peek.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\b5ac0b87ff26ec339558537436e82acd\HiRes.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\bbd2dcfa51103025d57caa776bc1047b\B.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\c0bb48510a66e6fdcb5936be6801222d\MD5.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\c537490a8d5597db7ef38c63a14dd378\Base64.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\c92f1c7d4396f53f4c5d352e2bd8c9a9\Syck.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\cd6be9554293967a36ad1075b097a79b\OLE.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\e247dd11d21a2bfdb97ad0cdd295b32d\Encode.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\e51718032942dd5fb4b1590be1ec8d83\Process.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\ea8f9cce13d067ab0d898ca399b403ed\Fcntl.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\f101a1002e0deeff9062f440b4956f0f\FastCalc.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\fa142febd5dc53f93f911452e1a99387\Hebrew.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\fb2e449d6244301907de33f5adebdb35\POSIX.dll
c:\documents and settings\Jaylynn Perkins\Local Settings\Temp\pdk-Trevor-3440\perl58.dll
c:\windows\TEMP\logishrd\LVPrcInj01.dll
.
---- Previous Run -------
.

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_UACd.sys


((((((((((((((((((((((((( Files Created from 2009-05-13 to 2009-06-13 )))))))))))))))))))))))))))))))
.

2009-06-12 23:00 . 2009-06-12 23:13 -------- d-s---w- C:\Combo-Fix
2009-06-12 22:42 . 2009-06-12 22:42 -------- d-----w- c:\program files\Trend Micro
2009-06-12 22:40 . 2009-06-12 22:40 -------- d-----w- c:\program files\erunt
2009-06-12 22:38 . 2009-06-12 22:38 -------- d-----w- c:\program files\sysrestorepoint
2009-06-12 05:38 . 2009-06-12 05:38 -------- d-----w- c:\documents and settings\Jaylynn Perkins\Local Settings\Application Data\Symantec
2009-06-12 03:39 . 2009-06-12 03:39 -------- d-sh--w- c:\documents and settings\Administrator\PrivacIE
2009-06-12 03:39 . 2009-06-12 03:39 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache
2009-06-12 03:36 . 2009-06-12 03:36 -------- d-----w- C:\ERDNT
2009-06-12 03:36 . 2009-06-12 03:36 -------- d-----w- c:\windows\ERUNT
2009-06-12 03:36 . 2009-06-12 03:36 -------- d-----w- C:\!FixIEDef
2009-06-12 02:26 . 2009-06-12 05:32 -------- d-----w- c:\program files\NortonInstaller
2009-06-12 00:21 . 2009-06-12 23:47 -------- d-----w- c:\documents and settings\All Users\Application Data\Norton
2009-06-12 00:00 . 2009-06-12 05:35 -------- d-----w- c:\documents and settings\All Users\Application Data\NortonInstaller
2009-06-10 02:28 . 2009-06-10 02:28 -------- d-sh--w- c:\documents and settings\Jaylynn Perkins\IECompatCache
2009-06-10 02:27 . 2009-06-10 02:27 -------- d-sh--w- c:\documents and settings\Jaylynn Perkins\PrivacIE
2009-06-10 02:25 . 2009-06-10 02:25 -------- d-----w- c:\documents and settings\Jaylynn Perkins\Application Data\Windows Search
2009-06-10 02:24 . 2009-06-10 02:24 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2009-06-10 02:22 . 2009-06-10 02:22 -------- d-sh--w- c:\documents and settings\Jaylynn Perkins\IETldCache
2009-06-10 02:15 . 2009-04-30 21:22 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2009-06-10 02:15 . 2009-04-30 21:22 246272 ------w- c:\windows\system32\dllcache\ieproxy.dll
2009-06-10 02:15 . 2009-06-10 02:15 -------- d-----w- c:\windows\ie8updates
2009-06-10 02:15 . 2009-05-12 05:11 102912 ------w- c:\windows\system32\dllcache\iecompat.dll
2009-06-10 02:13 . 2009-06-10 02:15 -------- dc-h--w- c:\windows\ie8
2009-06-10 02:09 . 2009-06-10 02:09 -------- d-----w- c:\documents and settings\Jaylynn Perkins\Application Data\Windows Desktop Search
2009-06-10 02:09 . 2009-06-10 04:56 -------- d-----w- c:\program files\Windows Desktop Search
2009-06-10 02:09 . 2008-03-07 17:02 98304 ------w- c:\windows\system32\dllcache\nlhtml.dll
2009-06-10 02:09 . 2008-03-07 17:02 29696 ------w- c:\windows\system32\dllcache\mimefilt.dll
2009-06-10 02:09 . 2008-03-07 17:02 192000 ------w- c:\windows\system32\dllcache\offfilt.dll
2009-06-10 02:06 . 2009-03-06 14:22 284160 ------w- c:\windows\system32\dllcache\pdh.dll
2009-06-10 02:06 . 2009-02-09 12:10 729088 ------w- c:\windows\system32\dllcache\lsasrv.dll
2009-06-10 02:06 . 2009-02-09 12:10 714752 ------w- c:\windows\system32\dllcache\ntdll.dll
2009-06-10 02:06 . 2009-02-09 12:10 473600 ------w- c:\windows\system32\dllcache\fastprox.dll
2009-06-10 02:06 . 2009-02-09 12:10 453120 ------w- c:\windows\system32\dllcache\wmiprvsd.dll
2009-06-10 02:06 . 2009-02-06 11:11 110592 ------w- c:\windows\system32\dllcache\services.exe
2009-06-10 02:06 . 2009-02-06 10:39 35328 ------w- c:\windows\system32\dllcache\sc.exe
2009-06-10 02:06 . 2009-02-06 10:10 227840 ------w- c:\windows\system32\dllcache\wmiprvse.exe
2009-06-10 02:05 . 2008-05-03 11:55 2560 ------w- c:\windows\system32\xpsp4res.dll
2009-06-10 02:05 . 2008-04-21 12:08 215552 ------w- c:\windows\system32\dllcache\wordpad.exe
2009-06-08 12:14 . 2009-06-09 02:10 789792 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2009-06-08 12:14 . 2009-06-09 02:10 1553696 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-06-08 11:29 . 2009-06-09 00:00 -------- d-----w- c:\program files\Common Files\ParetoLogic
2009-06-08 11:29 . 2009-06-09 00:00 -------- d-----w- c:\documents and settings\All Users\Application Data\ParetoLogic
2009-06-07 05:14 . 2009-06-08 03:16 -------- d-----w- c:\program files\Windows Live Safety Center
2009-06-06 22:20 . 2009-06-06 22:20 6853096 ----a-w- C:\SpyHunter-Compact-OS.exe
2009-06-03 11:12 . 2009-06-03 11:12 -------- d-----w- c:\documents and settings\NetworkService\Application Data\Symantec
2009-06-03 01:02 . 2009-06-03 01:02 -------- d-----w- c:\program files\Microsoft IntelliPoint
2009-06-02 11:22 . 2009-06-02 11:22 -------- d-----w- c:\documents and settings\Administrator\Application Data\DivX
2009-06-02 11:21 . 2009-06-02 11:21 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Ahead
2009-05-30 13:38 . 2009-05-30 13:27 15688 ----a-w- c:\windows\system32\lsdelete.exe
2009-05-30 13:26 . 2009-05-30 13:26 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{83C91755-2546-441D-AC40-9A6B4B860800}
2009-05-30 13:26 . 2009-01-18 21:43 2892112 -c--a-w- c:\documents and settings\All Users\Application Data\{83C91755-2546-441D-AC40-9A6B4B860800}\Ad-AwareAE.exe
2009-05-30 00:40 . 2008-12-11 13:38 159600 ----a-w- c:\windows\system32\drivers\pctgntdi.sys
2009-05-30 00:40 . 2009-04-03 16:18 130936 ----a-w- c:\windows\system32\drivers\PCTCore.sys
2009-05-30 00:40 . 2008-12-18 17:16 73840 ----a-w- c:\windows\system32\drivers\PCTAppEvent.sys
2009-05-30 00:40 . 2009-05-30 00:40 -------- d-----w- c:\program files\Common Files\PC Tools
2009-05-30 00:40 . 2008-12-10 16:36 64392 ----a-w- c:\windows\system32\drivers\pctplsg.sys
2009-05-30 00:40 . 2009-06-11 10:19 -------- d-----w- c:\program files\Spyware Doctor
2009-05-30 00:40 . 2009-05-30 00:40 -------- d-----w- c:\documents and settings\Jaylynn Perkins\Application Data\PC Tools
2009-05-30 00:40 . 2009-05-30 00:40 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Tools
2009-05-30 00:39 . 2008-11-20 19:19 9200 ------w- c:\windows\system32\drivers\cdralw2k.sys
2009-05-30 00:39 . 2008-11-20 19:19 9072 ------w- c:\windows\system32\drivers\cdr4_xp.sys
2009-05-30 00:39 . 2009-05-30 00:39 -------- d-----w- c:\windows\system32\IOSUBSYS
2009-05-30 00:39 . 2009-05-30 10:38 -------- d-----w- c:\program files\Norton Security Scan
2009-05-27 19:19 . 2009-06-07 08:11 19968 ------w- c:\windows\system32\UAChiedvgdcdqerfxr.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-13 01:28 . 2008-05-28 02:14 -------- d-----w- c:\program files\Common Files\Akamai
2009-06-12 23:47 . 2007-02-10 21:04 -------- d-----w- c:\program files\Common Files\Symantec Shared
2009-06-11 23:44 . 2007-02-10 05:42 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-06-11 03:46 . 2007-10-24 03:26 -------- d-----w- c:\program files\MediaMonkey
2009-06-09 02:10 . 2009-06-08 12:14 77204 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2009-06-09 02:10 . 2009-06-08 12:14 23972 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-06-08 19:31 . 2007-05-22 20:30 -------- d-----w- c:\documents and settings\Jaylynn Perkins\Application Data\Move Networks
2009-06-06 22:20 . 2007-02-10 15:43 -------- d-----w- c:\program files\Enigma Software Group
2009-06-03 23:48 . 2007-01-14 05:38 -------- d-----w- c:\program files\Spybot - Search & Destroy
2009-06-03 01:34 . 2007-01-14 05:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-06-03 01:21 . 2006-04-17 04:22 62752 ----a-w- c:\documents and settings\Jaylynn Perkins\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-06-02 03:33 . 2008-02-22 02:08 -------- d-----w- c:\documents and settings\Jaylynn Perkins\Application Data\Canon
2009-06-02 03:21 . 2006-08-26 04:15 -------- d-----w- c:\documents and settings\Jaylynn Perkins\Application Data\BitTorrent
2009-06-01 23:12 . 2008-09-05 00:07 -------- d-----w- c:\documents and settings\Jaylynn Perkins\Application Data\DNA
2009-06-01 15:12 . 2008-09-05 00:07 -------- d-----w- c:\program files\DNA
2009-05-30 13:29 . 2007-10-24 03:38 -------- d-----w- c:\program files\OXXOGames
2009-05-30 13:29 . 2006-04-06 20:22 -------- d-----w- c:\program files\Google
2009-05-30 13:26 . 2009-01-28 02:27 -------- d-----w- c:\program files\Lavasoft
2009-05-30 13:26 . 2007-07-08 14:08 -------- d-----w- c:\documents and settings\All Users\Application Data\Lavasoft
2009-05-27 19:19 . 2009-05-27 19:18 0 ----a-w- c:\documents and settings\Jaylynn Perkins\Application Data\~ygw.tmp
2009-05-25 05:24 . 2008-05-27 03:18 350208 ----a-w- c:\windows\system32\mssph.dll
2009-05-20 01:37 . 2009-03-26 20:12 -------- d-----w- c:\documents and settings\Jaylynn Perkins\Application Data\CameraWindowDC
2009-05-16 15:43 . 2007-08-09 23:12 -------- d-----w- c:\program files\Yahoo! Games
2009-05-13 05:15 . 2005-08-16 09:18 915456 ----a-w- c:\windows\system32\wininet.dll
2009-05-12 20:12 . 2005-08-17 02:06 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2009-05-09 14:30 . 2009-05-09 14:10 -------- d-----w- c:\program files\Setup Files
2009-05-09 14:12 . 2009-05-09 13:56 -------- d-----w- c:\program files\MSI
2009-05-09 05:28 . 2009-05-09 05:28 -------- d-----w- c:\program files\Innovative Solutions
2009-05-09 05:08 . 2006-04-06 20:11 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-05-09 05:08 . 2009-05-09 05:08 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Drivers HeadQuarters
2009-05-08 03:51 . 2009-05-08 03:51 -------- d-----w- c:\documents and settings\Jaylynn Perkins\Application Data\Copernic
2009-05-08 03:51 . 2009-05-08 03:51 -------- d-----w- c:\program files\Common Files\Copernic
2009-05-08 03:51 . 2009-05-08 03:51 -------- d-----w- c:\program files\Copernic Agent
2009-05-07 15:32 . 2005-08-16 09:18 345600 ----a-w- c:\windows\system32\localspl.dll
2009-05-07 03:03 . 2009-05-07 03:03 127877 ----a-w- c:\documents and settings\Jaylynn Perkins\Application Data\Move Networks\uninstall.exe
2009-05-07 03:03 . 2009-05-01 06:30 4183416 ----a-w- c:\documents and settings\Jaylynn Perkins\Application Data\Move Networks\plugins\npqmp071500000347.dll
2009-05-07 03:03 . 2009-05-07 03:03 1685856 ----a-w- c:\documents and settings\Jaylynn Perkins\Application Data\Move Networks\MoveMediaPlayerWin_071500000347.exe
2009-05-01 06:30 . 2009-05-01 06:30 97144 ----a-w- c:\documents and settings\Jaylynn Perkins\Application Data\Move Networks\ie_bin\MovePlayerUpgrade.exe
2009-04-29 04:55 . 2009-04-29 04:55 78336 ------w- c:\windows\system32\ieencode.dll
2009-04-25 20:06 . 2008-12-04 04:28 -------- d-----w- c:\program files\Full Tilt Poker
2009-04-17 12:26 . 2005-08-16 09:18 1847168 ----a-w- c:\windows\system32\win32k.sys
2009-04-15 14:51 . 2005-08-16 09:18 585216 ----a-w- c:\windows\system32\rpcrt4.dll
2009-04-09 01:12 . 2009-04-09 01:12 1048200 ----a-w- c:\documents and settings\Jaylynn Perkins\Application Data\Move Networks\MoveMediaPlayer_071303000004.exe
2009-04-08 21:25 . 2009-04-08 21:25 3366912 ----a-w- c:\windows\system32\GPhotos.scr
2009-03-27 19:33 . 2008-12-25 04:02 130816 ----a-w- c:\windows\system32\drivers\Rtenicxp.sys
2008-12-31 12:03 . 2006-08-04 01:39 67696 ----a-w- c:\program files\mozilla firefox\components\jar50.dll
2008-12-31 12:03 . 2006-08-04 01:39 54376 ----a-w- c:\program files\mozilla firefox\components\jsd3250.dll
2008-12-31 12:03 . 2008-07-12 15:24 34952 ----a-w- c:\program files\mozilla firefox\components\myspell.dll
2008-12-31 12:03 . 2008-07-12 15:24 46720 ----a-w- c:\program files\mozilla firefox\components\spellchk.dll
2008-12-31 12:03 . 2006-08-04 01:39 172144 ----a-w- c:\program files\mozilla firefox\components\xpinstal.dll
2008-06-19 09:16 . 2008-06-19 09:16 118784 ----a-w- c:\program files\mozilla firefox\plugins\MyCamera.dll
2006-08-21 03:12 . 2006-04-16 05:33 104 --sh--r- c:\windows\system32\8C99C0031B.sys
2006-08-21 03:12 . 2006-04-16 05:33 5278 --sha-w- c:\windows\system32\KGyGaAvL.sys
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 1289000]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-10-19 204288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DMXLauncher"="c:\program files\Dell\Media Experience\DMXLauncher.exe" [2005-10-05 94208]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2006-07-06 151552]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2006-10-17 1197648]
"dvd43"="c:\program files\dvd43\dvd43_tray.exe" [2008-04-09 826880]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2008-05-28 570664]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144]
"Zune Launcher"="c:\program files\Zune\ZuneLauncher.exe" [2008-11-10 157312]
"EPSON Stylus Photo R800 (Copy 1)"="c:\windows\System32\spool\DRIVERS\W32X86\3\E_S4I2J1.EXE" [2003-08-07 99840]
"Zboard"="c:\program files\Ideazon\ZEngine\Zboard.exe" [2008-11-13 57344]
"DLA"="c:\windows\System32\DLA\DLACTRLW.EXE" [2005-09-08 122940]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2009-01-07 1468296]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-02-01 385024]
"BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2008-04-14 110592]
"RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2008-02-13 16857600]
"nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2008-10-07 1630208]
"Necutray"="NECUTRAY.EXE" - c:\windows\Necutray.exe [2002-08-01 40960]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2006-6-26 113664]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /r \??\k:\0autocheck autochk *\0lsdelete

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^America Online 9.0 Tray Icon.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\America Online 9.0 Tray Icon.lnk
backup=c:\windows\pss\America Online 9.0 Tray Icon.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^AutoCAD Startup Accelerator.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\AutoCAD Startup Accelerator.lnk
backup=c:\windows\pss\AutoCAD Startup Accelerator.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^DualCoreCenter.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\DualCoreCenter.lnk
backup=c:\windows\pss\DualCoreCenter.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Google Updater.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Google Updater.lnk
backup=c:\windows\pss\Google Updater.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Metacafe.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Metacafe.lnk
backup=c:\windows\pss\Metacafe.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Windows Search.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
backup=c:\windows\pss\Windows Search.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^Jaylynn Perkins^Start Menu^Programs^Startup^FriendFinder Messenger.lnk]
path=c:\documents and settings\Jaylynn Perkins\Start Menu\Programs\Startup\FriendFinder Messenger.lnk
backup=c:\windows\pss\FriendFinder Messenger.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Jaylynn Perkins^Start Menu^Programs^Startup^IMVU.lnk]
path=c:\documents and settings\Jaylynn Perkins\Start Menu\Programs\Startup\IMVU.lnk
backup=c:\windows\pss\IMVU.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Jaylynn Perkins^Start Menu^Programs^Startup^Logitech . Product Registration.lnk]
path=c:\documents and settings\Jaylynn Perkins\Start Menu\Programs\Startup\Logitech . Product Registration.lnk
backup=c:\windows\pss\Logitech . Product Registration.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Jaylynn Perkins^Start Menu^Programs^Startup^Metacafe.lnk]
path=c:\documents and settings\Jaylynn Perkins\Start Menu\Programs\Startup\Metacafe.lnk
backup=c:\windows\pss\Metacafe.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Jaylynn Perkins^Start Menu^Programs^Startup^V CAST Music Monitor.lnk]
path=c:\documents and settings\Jaylynn Perkins\Start Menu\Programs\Startup\V CAST Music Monitor.lnk
backup=c:\windows\pss\V CAST Music Monitor.lnkStartup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AnyDVD
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOLDialer
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Corel Photo Downloader
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LGODDFU
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MimBoot
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MySpaceIM
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OE_OEM
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpyHunter
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uniblue RegistryBooster 2

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"BDSwitchAgent"=c:\progra~1\Softwin\BITDEF~1\bdswitch.exe
"BDOESRV"="c:\program files\Softwin\BitDefender9\bdoesrv.exe"
"BDNewsAgent"=c:\progra~1\Softwin\BITDEF~1\bdnagent.exe
"BDMCon"=c:\progra~1\Softwin\BITDEF~1\bdmcon.exe
"Zboard"=c:\program files\Ideazon\ZEngine\Zboard.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Sony\\EverQuest\\EverQuest.exe"=
"c:\\Program Files\\BitTorrent\\bittorrent.exe"=
"c:\\Program Files\\3dsMax8\\3dsmax.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\nero\\Nero 7\\Nero Home\\NeroHome.exe"=
"c:\\Program Files\\nero\\Nero 7\\Nero ShowTime\\ShowTime.exe"=
"c:\\Program Files\\Sony\\Station\\LaunchPad\\LaunchPad.exe"=
"c:\\Program Files\\Wheel of Fortune\\Wheel of Fortune.exe"=
"c:\\Program Files\\eMule\\eMule.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"9420:TCP"= 9420:TCP:Akamai NetSession Interface
"5000:UDP"= 5000:UDP:Akamai NetSession Interface
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
"3601:TCP"= 3601:TCP:Akamai NetSession Interface
"9000:TCP"= 9000:TCP:SqueezeCenter 9000 tcp (UI)
"9090:TCP"= 9090:TCP:SqueezeCenter 9090 tcp (CLI)
"3483:UDP"= 3483:UDP:SqueezeCenter 3483 udp
"3483:TCP"= 3483:TCP:SqueezeCenter 3483 tcp
"1928:TCP"= 1928:TCP:Akamai NetSession Interface
"2983:TCP"= 2983:TCP:Akamai NetSession Interface
"1714:TCP"= 1714:TCP:Akamai NetSession Interface
"4303:TCP"= 4303:TCP:Akamai NetSession Interface
"1464:TCP"= 1464:TCP:Akamai NetSession Interface
"2547:TCP"= 2547:TCP:Akamai NetSession Interface
"1903:TCP"= 1903:TCP:Akamai NetSession Interface
"4982:TCP"= 4982:TCP:Akamai NetSession Interface
"1139:TCP"= 1139:TCP:Akamai NetSession Interface
"3644:TCP"= 3644:TCP:Akamai NetSession Interface
"3667:TCP"= 3667:TCP:Akamai NetSession Interface
"4428:TCP"= 4428:TCP:Akamai NetSession Interface
"2290:TCP"= 2290:TCP:Akamai NetSession Interface
"2314:TCP"= 2314:TCP:Akamai NetSession Interface
"3938:TCP"= 3938:TCP:Akamai NetSession Interface
"4071:TCP"= 4071:TCP:Akamai NetSession Interface
"3545:TCP"= 3545:TCP:Akamai NetSession Interface
"3370:TCP"= 3370:TCP:Akamai NetSession Interface
"1155:TCP"= 1155:TCP:Akamai NetSession Interface
"1223:TCP"= 1223:TCP:Akamai NetSession Interface
"1905:TCP"= 1905:TCP:Akamai NetSession Interface
"1952:TCP"= 1952:TCP:Akamai NetSession Interface
"2786:TCP"= 2786:TCP:Akamai NetSession Interface
"4768:TCP"= 4768:TCP:Akamai NetSession Interface
"4505:TCP"= 4505:TCP:Akamai NetSession Interface
"4821:TCP"= 4821:TCP:Akamai NetSession Interface
"1074:TCP"= 1074:TCP:Akamai NetSession Interface
"1418:TCP"= 1418:TCP:Akamai NetSession Interface
"1248:TCP"= 1248:TCP:Akamai NetSession Interface
"1261:TCP"= 1261:TCP:Akamai NetSession Interface
"1671:TCP"= 1671:TCP:Akamai NetSession Interface
"1707:TCP"= 1707:TCP:Akamai NetSession Interface
"2260:TCP"= 2260:TCP:Akamai NetSession Interface

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [1/27/2009 9:28 PM 64160]
R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [5/29/2009 7:40 PM 130936]
R2 Akamai;Akamai;c:\windows\System32\svchost.exe -k Akamai [8/16/2005 4:18 AM 14336]
R2 SqueezeMySQL;SqueezeMySQL;c:\progra~1\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exe --defaults-file=c:\docume~1\ALLUSE~1\APPLIC~1\SQUEEZ~1\Cache\my.cnf SqueezeMySQL --> c:\progra~1\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exe --defaults-file=c:\docume~1\ALLUSE~1\APPLIC~1\SQUEEZ~1\Cache\my.cnf SqueezeMySQL [?]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [1/18/2009 4:34 PM 1005904]
S3 DualCoreCenter;DualCoreCenter;c:\program files\MSI\DualCoreCenter\NTGLM7X.sys [5/9/2009 8:56 AM 28160]
S3 maa950c;maa950c;c:\windows\system32\drivers\maa950c.sys [1/3/2007 8:50 PM 24784]
S3 maa950m;maa950m;c:\windows\system32\drivers\maa950m.sys [1/3/2007 8:50 PM 25044]
S3 maa950u;maa950u;c:\windows\system32\drivers\maa950u.sys [1/3/2007 8:50 PM 51584]
S3 RushTopDevice2;RushTopDevice2;c:\program files\MSI\DualCoreCenter\RushTop.sys [5/9/2009 8:56 AM 56320]
S3 sdAuxService;PC Tools Auxiliary Service;c:\program files\Spyware Doctor\pctsAuxs.exe [5/29/2009 7:40 PM 348752]
S4 gupdate1c98f77d9f4517c;Google Update Service (gupdate1c98f77d9f4517c);c:\program files\Google\Update\GoogleUpdate.exe [2/15/2009 9:15 AM 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contents of the 'Scheduled Tasks' folder

2009-06-08 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-18 13:27]
.
- - - - ORPHANS REMOVED - - - -

HKCU-RunOnce-Shockwave Updater - c:\windows\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1100429 -Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; FBSMTWB; .NET CLR 1.0.3705; .NET CLR 1.1.4322; Media Center PC 4.0; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET
MSConfigStartUp-SCDEmuApp - (no file)


.
------- Supplementary Scan -------
.
uStart Page = cm.my.yahoo.com/
IE: &Search - ?p=ZUxdm265ROUS
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Search Using Copernic Agent - c:\program files\Copernic Agent\CopernicAgentExt.dll/INTEGRATION_MENU_SEARCHEXT
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\Jaylynn Perkins\Start Menu\Programs\IMVU\Run IMVU.lnk
Trusted Zone: musicmatch.com\online
Handler: copernicagent - {A979B6BD-E40B-4A07-ABDD-A62C64A4EBF6} - c:\progra~1\COPERN~1\COPERN~1.DLL
Handler: copernicagentcache - {AAC34CFD-274D-4A9D-B0DC-C74C05A67E1D} - c:\progra~1\COPERN~1\COPERN~1.DLL
DPF: {C6E9F0B8-AFEA-46F3-831B-612E97381ABA} - hxxp://www.imvu.com/activex/imvustreamer.cab
DPF: {E5ABEB00-B357-4884-9949-77B2C71A7EE3} - hxxp://www.intel.com/design/motherbd/boardid/BoardID.cab
FF - ProfilePath -
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-06-12 20:30
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-171380637-2714539625-1965214349-1008\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'explorer.exe'(4468)
c:\windows\system32\WININET.dll
c:\windows\TEMP\logishrd\LVPrcInj01.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\scardsvr.exe
c:\windows\ehome\ehrecvr.exe
c:\windows\ehome\ehSched.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\Logishrd\LVCOMSER\LVComSer.exe
c:\program files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\nvsvc32.exe
c:\windows\system32\IoctlSvc.exe
c:\program files\CyberLink\Shared Files\RichVideo.exe
c:\windows\system32\snmp.exe
c:\windows\system32\rundll32.exe
c:\progra~1\MI3AA1~1\rapimgr.exe
c:\progra~1\SQUEEZ~1\server\Bin\MSWIN3~1\mysqld.exe
c:\windows\system32\searchindexer.exe
c:\program files\SqueezeCenter\SqueezeTray.exe
c:\program files\Common Files\Logishrd\LVCOMSER\LVComSer.exe
c:\windows\system32\ZuneBusEnum.exe
c:\windows\ehome\mcrdsvc.exe
c:\progra~1\SQUEEZ~1\server\SQUEEZ~1.EXE
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\Canon\CAL\CALMAIN.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\dllhost.exe
c:\windows\ehome\ehRec.exe
.
**************************************************************************
.
Completion time: 2009-06-13 20:40 - machine was rebooted
ComboFix-quarantined-files.txt 2009-06-13 01:40

Pre-Run: 112,427,892,736 bytes free
Post-Run: 112,421,687,296 bytes free

495 --- E O F --- 2009-01-14 09:02