Here is the Uninstall list:
Ad-Aware
Ad-Aware
Adobe Acrobat 5.0
Adobe Flash Player 10 ActiveX
Adobe Flash Player Plugin
Adobe Reader 7.0.9
Adobe Shockwave Player
Advanced SystemCare 3
AnswerWorks 5.0 English Runtime
Apple Mobile Device Support
Apple Software Update
BlackBerry Desktop Software 4.1.1
BlackBerry Desktop Software 4.1.1
Bonjour
CA Internet Security Suite
Canon MF Toolbox 4.9.1.1.mf03
Canon MF4100 Series
Compatibility Pack for the 2007 Office system
Corel GuideMenu
Creative MediaSource
Dell ResourceCD
Garmin Communicator Plugin
HijackThis 2.0.2
Hotfix for Windows XP (KB952287)
Intel(R) 537EP V9x DF PCI Modem
Intel(R) Extreme Graphics 2 Driver
Intel(R) PRO Network Connections Drivers
InterVideo WinDVD SE
iTunes
Jasc Paint Shop Photo Album
Jasc Paint Shop Pro 8 Dell Edition
Java(TM) 6 Update 11
Malwarebytes' Anti-Malware
Microsoft Office Professional Edition 2003
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Movavi Video Converter 8
MSXML 4.0 SP2 (KB954430)
Musicnotes Player
Musicnotes Player V1.23 and Viewer
PowerDVD 5.1
Presto! PageManager 7.15.11
Quicken 2008
QuickTime
ScanSoft OmniPage SE 4.0
Scratch
Seagate Manager Installer
Seagate Manager Installer
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player 8 (KB917734)
Security Update for Windows Media Player 9 (KB917734)
Security Update for Windows XP (KB913433)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960714)
Security Update for Windows XP (KB960715)
Smart Defrag 1.20
Sonic DLA
Sonic MyDVD
Sonic RecordNow!
Sonic Update Manager
Sound Blaster Audigy 2
SpywareBlaster 4.2
Ulead DVD MovieFactory SE
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
Windows Internet Explorer 8
Windows XP Service Pack 3
WinZip
The Combofix log:
ComboFix 09-11-06.03 - Tom 11/07/2009 6:25.2.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.510.175 [GMT -6:00]
Running from: c:\documents and settings\Tom\Desktop\Iechiguy info\ComboFix.exe
AV: CA Anti-Virus *On-access scanning disabled* (Updated) {17CFD1EA-56CF-40B5-A06B-BD3A27397C93}
FW: CA Personal Firewall *disabled* {14CB4B80-8E52-45EA-905E-67C1267B4160}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\program files\Shared
G:\Autorun.inf
G:\install.exe
.
((((((((((((((((((((((((( Files Created from 2009-10-07 to 2009-11-07 )))))))))))))))))))))))))))))))
.
2009-10-13 15:49 . 2009-10-13 15:49 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2009-10-13 12:06 . 2009-10-13 12:06 739752 ----a-w- c:\windows\system32\drivers\vetefile.sys
2009-10-13 12:06 . 2009-10-13 12:06 133576 ----a-w- c:\windows\system32\drivers\veteboot.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-11-06 04:35 . 2008-12-25 21:26 288 ----a-w- c:\windows\system32\DVCStateBkp-{00000001-00000000-00000002-00001102-00000004-10031102}.dat
2009-11-06 04:35 . 2008-12-25 21:26 288 ----a-w- c:\windows\system32\DVCState-{00000001-00000000-00000002-00001102-00000004-10031102}.dat
2009-11-06 04:35 . 2007-07-06 03:26 64 ----a-w- c:\windows\system32\drivers\kmxcfg.u2k7
2009-11-06 04:35 . 2007-07-06 03:26 64 ----a-w- c:\windows\system32\drivers\kmxcfg.u2k6
2009-11-06 04:35 . 2007-07-06 03:26 64 ----a-w- c:\windows\system32\drivers\kmxcfg.u2k5
2009-11-06 04:35 . 2007-07-06 03:26 64 ----a-w- c:\windows\system32\drivers\kmxcfg.u2k4
2009-11-06 04:35 . 2007-07-06 03:26 64 ----a-w- c:\windows\system32\drivers\kmxcfg.u2k3
2009-11-06 04:35 . 2007-07-06 03:26 64 ----a-w- c:\windows\system32\drivers\kmxcfg.u2k2
2009-11-06 04:35 . 2007-07-06 03:26 64 ----a-w- c:\windows\system32\drivers\kmxcfg.u2k1
2009-11-06 04:35 . 2007-07-06 03:26 208284 ----a-w- c:\windows\system32\drivers\kmxcfg.u2k0
2009-10-31 14:44 . 2007-12-29 16:46 664 ----a-w- c:\windows\system32\d3d9caps.dat
2009-10-20 02:47 . 2009-09-22 02:47 3695616 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\AutoLaunch.exe
2009-10-20 02:47 . 2009-09-22 02:47 2353992 ----a-w- c:\documents and settings\All Users\Application Data\Lavasoft\Ad-Aware\Update\Ad-Aware.exe
2009-10-02 17:57 . 2009-10-02 17:57 -------- d-----w- c:\documents and settings\Jimmy\Application Data\Jasc Software Inc
2009-10-02 17:53 . 2009-10-02 17:53 -------- d-----w- c:\documents and settings\Jimmy\Application Data\Canon
2009-09-23 23:21 . 2009-09-23 23:21 -------- d-----w- c:\documents and settings\Valerie\Application Data\Malwarebytes
2009-09-22 01:41 . 2009-09-22 01:41 -------- d-----w- c:\documents and settings\Jimmy\Application Data\Malwarebytes
2009-09-21 01:04 . 2008-12-01 03:38 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-09-21 01:04 . 2008-12-05 03:29 4045528 ----a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe
2009-09-10 19:54 . 2008-12-01 03:38 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-10 19:53 . 2008-12-01 03:38 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2007-04-25 08:49 . 2008-08-06 04:53 328 ------w- c:\program files\GuideMenuSetup.iss
2007-04-06 03:28 . 2008-08-06 04:58 1237 ------w- c:\program files\WinDVDSetup.iss
2008-08-06 12:42 . 2008-08-06 12:42 8 --sh--r- c:\windows\system32\1E70AF5139.sys
2009-07-15 01:05 . 2008-08-06 12:42 2516 --sha-w- c:\windows\system32\KGyGaAvL.sys
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SB Audigy 2 Startup Menu"="/L:ENG" [X]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"Advanced SystemCare 3"="c:\program files\IObit\Advanced SystemCare 3\AWC.exe" [2009-06-30 2329224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"KernelFaultCheck"="c:\windows\system32\dumprep 0 -k" [X]
"DVDLauncher"="c:\program files\CyberLink\PowerDVD\DVDLauncher.exe" [2004-04-11 53248]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2004-03-15 122933]
"UpdateManager"="c:\program files\Common Files\Sonic\Update Manager\sgtray.exe" [2003-08-19 110592]
"cctray"="c:\program files\CA\eTrust Internet Security Suite\cctray\cctray.exe" [2009-07-30 177392]
"cafwc"="c:\program files\CA\eTrust Internet Security Suite\CA Personal Firewall\cafw.exe" [2008-08-02 1193200]
"capfasem"="c:\program files\CA\eTrust Internet Security Suite\CA Personal Firewall\capfasem.exe" [2008-08-02 173296]
"capfupgrade"="c:\program files\CA\eTrust Internet Security Suite\CA Personal Firewall\capfupgrade.exe" [2008-08-02 259312]
"SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-09-30 155648]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-03-21 69632]
"CAVRID"="c:\program files\CA\eTrust Internet Security Suite\CA Anti-Virus\CAVRID.exe" [2009-10-15 230664]
"ScanSoft OmniPage SE 4.0-reminder"="c:\program files\ScanSoft\OmniPageSE4.0\Ereg\Ereg.exe" [2005-06-03 729088]
"GuideMenu"="c:\program files\Corel\Corel GuideMenu\GuideMenu.exe" [2007-08-07 1282048]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-12-05 136600]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2005-09-20 94208]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-09-20 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2005-09-20 114688]
"CTSysVol"="c:\program files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe" [2002-10-29 49152]
"CTDVDDet"="c:\program files\Creative\SBAudigy2\DVDAudio\CTDVDDet.EXE" [2002-09-30 45056]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"MaxMenuMgr"="c:\program files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" [2008-10-28 181544]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-01-05 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-03-13 342312]
"Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
"CTHelper"="CTHELPER.EXE" - c:\windows\system32\CTHELPER.EXE [2003-02-20 28672]
"AsioReg"="CTASIO.DLL" - c:\windows\system32\CTASIO.DLL [2003-02-20 110592]
c:\documents and settings\Administrator\Start Menu\Programs\Startup\
uninstall.dat [2008-10-29 413760]
uninstall.exe [2008-10-29 417792]
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-9-23 29696]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\PFW]
2007-05-18 19:30 79368 ----a-w- c:\windows\system32\UmxWNP.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavaso ft Ad-Aware Service]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\CA Personal Firewall]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ComputerAssociatesAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\Auth orizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\Glob allyOpenPorts\List]
"43026:TCP"= 43026:TCP:PORT_43026
"42995:TCP"= 42995:TCP:PORT_42995
"23191:TCP"= 23191:TCP:PORT_23191
"27080:TCP"= 27080:TCP:PORT_27080
"17926:TCP"= 17926:TCP:PORT_17926
"7008:TCP"= 7008:TCP:PORT_7008
"37078:TCP"= 37078:TCP:PORT_37078
"40535:TCP"= 40535:TCP:PORT_40535
"11754:TCP"= 11754:TCP:PORT_11754
"10901:TCP"= 10901:TCP:PORT_10901
"58813:TCP"= 58813:TCP:PORT_58813
"47555:TCP"= 47555:TCP:PORT_47555
"28876:TCP"= 28876:TCP:PORT_28876
"38703:TCP"= 38703:TCP:PORT_38703
"55043:TCP"= 55043:TCP:PORT_55043
"40896:TCP"= 40896:TCP:PORT_40896
"34571:TCP"= 34571:TCP:PORT_34571
"8881:TCP"= 8881:TCP:PORT_8881
"59129:TCP"= 59129:TCP:PORT_59129
"35648:TCP"= 35648:TCP:PORT_35648
"35941:TCP"= 35941:TCP:PORT_35941
"40595:TCP"= 40595:TCP:PORT_40595
"18457:TCP"= 18457:TCP:PORT_18457
"25037:TCP"= 25037:TCP:PORT_25037
"24657:TCP"= 24657:TCP:PORT_24657
"60985:TCP"= 60985:TCP:PORT_60985
"40801:TCP"= 40801:TCP:PORT_40801
"17387:TCP"= 17387:TCP:PORT_17387
"11611:TCP"= 11611:TCP:PORT_11611
"8829:TCP"= 8829:TCP:PORT_8829
"9426:TCP"= 9426:TCP:PORT_9426
"57082:TCP"= 57082:TCP:PORT_57082
"12805:TCP"= 12805:TCP:PORT_12805
"15392:TCP"= 15392:TCP:PORT_15392
"11268:TCP"= 11268:TCP:PORT_11268
"53617:TCP"= 53617:TCP:PORT_53617
"54781:TCP"= 54781:TCP:PORT_54781
"7857:TCP"= 7857:TCP:PORT_7857
"53918:TCP"= 53918:TCP:PORT_53918
"5067:TCP"= 5067:TCP:PORT_5067
"28453:TCP"= 28453:TCP:PORT_28453
"52957:TCP"= 52957:TCP:PORT_52957
"61781:TCP"= 61781:TCP:PORT_61781
"41848:TCP"= 41848:TCP:PORT_41848
"28301:TCP"= 28301:TCP:PORT_28301
"59750:TCP"= 59750:TCP:PORT_59750
"12447:TCP"= 12447:TCP:PORT_12447
"64244:TCP"= 64244:TCP:PORT_64244
"25323:TCP"= 25323:TCP:PORT_25323
"33962:TCP"= 33962:TCP:PORT_33962
"41072:TCP"= 41072:TCP:PORT_41072
"38688:TCP"= 38688:TCP:PORT_38688
"39540:TCP"= 39540:TCP:PORT_39540
"5634:TCP"= 5634:TCP:PORT_5634
"28335:TCP"= 28335:TCP:PORT_28335
"40110:TCP"= 40110:TCP:PORT_40110
"20175:TCP"= 20175:TCP:PORT_20175
"56047:TCP"= 56047:TCP:PORT_56047
"7387:TCP"= 7387:TCP:PORT_7387
"13102:TCP"= 13102:TCP:PORT_13102
"24130:TCP"= 24130:TCP:PORT_24130
"63686:TCP"= 63686:TCP:PORT_63686
"27377:TCP"= 27377:TCP:PORT_27377
"28906:TCP"= 28906:TCP:PORT_28906
"31961:TCP"= 31961:TCP:PORT_31961
"32635:TCP"= 32635:TCP:PORT_32635
"53719:TCP"= 53719:TCP:PORT_53719
"18227:TCP"= 18227:TCP:PORT_18227
"16150:TCP"= 16150:TCP:PORT_16150
"52173:TCP"= 52173:TCP:PORT_52173
"19682:TCP"= 19682:TCP:PORT_19682
"61047:TCP"= 61047:TCP:PORT_61047
"48544:TCP"= 48544:TCP:PORT_48544
"21809:TCP"= 21809:TCP:PORT_21809
"37544:TCP"= 37544:TCP:PORT_37544
"58711:TCP"= 58711:TCP:PORT_58711
"6391:TCP"= 6391:TCP:PORT_6391
"9165:TCP"= 9165:TCP:PORT_9165
"31852:TCP"= 31852:TCP:PORT_31852
"13759:TCP"= 13759:TCP:PORT_13759
"26513:TCP"= 26513:TCP:PORT_26513
"64877:TCP"= 64877:TCP:PORT_64877
"55401:TCP"= 55401:TCP:PORT_55401
"41839:TCP"= 41839:TCP:PORT_41839
"52301:TCP"= 52301:TCP:PORT_52301
"10363:TCP"= 10363:TCP:PORT_10363
"55457:TCP"= 55457:TCP:PORT_55457
"38983:TCP"= 38983:TCP:PORT_38983
"16707:TCP"= 16707:TCP:PORT_16707
"28174:TCP"= 28174:TCP:PORT_28174
"52285:TCP"= 52285:TCP:PORT_52285
"37973:TCP"= 37973:TCP:PORT_37973
"18611:TCP"= 18611:TCP:PORT_18611
"8423:TCP"= 8423:TCP:PORT_8423
R0 KmxStart;KmxStart;c:\windows\system32\drivers\KmxStart.sys [6/24/2008 6:08 PM 93712]
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [8/11/2009 8:47 PM 64160]
R1 KmxAgent;KmxAgent;c:\windows\system32\drivers\KmxAgent.sys [6/24/2008 6:08 PM 63504]
R1 KmxFile;KmxFile;c:\windows\system32\drivers\KmxFile.sys [6/24/2008 6:08 PM 45584]
R1 KmxFw;KmxFw;c:\windows\system32\drivers\KmxFw.sys [6/24/2008 6:08 PM 115216]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe [10/28/2008 4:42 PM 156968]
R2 KmxCF;KmxCF;c:\windows\system32\drivers\KmxCF.sys [6/24/2008 6:08 PM 134648]
R2 KmxSbx;KmxSbx;c:\windows\system32\drivers\KmxSbx.sys [6/24/2008 6:08 PM 66576]
R2 UmxAgent;HIPS Event Manager;c:\program files\CA\SharedComponents\HIPSEngine\UmxAgent.exe [10/4/2007 8:23 AM 1010192]
R2 UmxCfg;HIPS Configuration Interpreter;c:\program files\CA\SharedComponents\HIPSEngine\UmxCfg.exe [10/18/2007 8:39 AM 801296]
R2 UmxPol;HIPS Policy Manager;c:\program files\CA\SharedComponents\HIPSEngine\UmxPol.exe [6/24/2008 6:10 PM 281104]
R3 KmxCfg;KmxCfg;c:\windows\system32\drivers\KmxCfg.sys [6/24/2008 6:08 PM 88816]
R3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [7/3/2009 8:49 AM 1028432]
R3 PPCtlPriv;PPCtlPriv;c:\program files\CA\eTrust Internet Security Suite\eTrust PestPatrol Anti-Spyware\PPCtlPriv.exe [5/8/2007 10:23 PM 189704]
--- Other Services/Drivers In Memory ---
*NewlyCreated* - MBR
*NewlyCreated* - PROCEXP113
*Deregistered* - mbr
*Deregistered* - PROCEXP113
.
Contents of the 'Scheduled Tasks' folder
2009-11-04 c:\windows\Tasks\Ad-Aware Update (Weekly).job
- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-07-03 02:47]
2009-11-03 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 17:34]
2009-09-23 c:\windows\Tasks\CAAntiSpywareScan_Daily as Tom at 10 05 PM.job
- c:\program files\CA\eTrust Internet Security Suite\eTrust PestPatrol Anti-Spyware\CAAntiSpyware.exe [2007-05-09 12:23]
2009-10-26 c:\windows\Tasks\SmartDefrag.job
- c:\program files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe [2009-08-29 14:22]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
LSP: c:\windows\system32\VetRedir.dll
Trusted Zone: microsoft.com\*.update
Trusted Zone: microsoft.com\
www.update
Filter: text/html - {831c5b19-548a-4a1f-91b6-ae4c3ece5730} -
DPF: {7511EAA8-D4A8-411F-B392-F24CAC59CA32} - hxxps://www.newphysicianlink.org/DSK_LOGINProj1.cab
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2009-11-07 06:49
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(1312)
c:\windows\system32\UmxWnp.Dll
c:\program files\CA\SharedComponents\PPRT\bin\CACheck.dll
c:\program files\CA\SharedComponents\PPRT\bin\CAHook.dll
c:\program files\CA\SharedComponents\PPRT\bin\CAServer.dll
c:\windows\system32\igfxdev.dll
- - - - - - - > 'winlogon.exe'(1288)
c:\windows\system32\UmxWnp.Dll
c:\program files\CA\SharedComponents\PPRT\bin\CACheck.dll
c:\program files\CA\SharedComponents\PPRT\bin\CAHook.dll
c:\program files\CA\SharedComponents\PPRT\bin\CAServer.dll
c:\windows\system32\igfxdev.dll
- - - - - - - > 'lsass.exe'(1540)
c:\windows\system32\VetRedir.dll
c:\windows\system32\ISafeIf.dll
.
Completion time: 2009-11-07 6:53
ComboFix-quarantined-files.txt 2009-11-07 12:53
ComboFix2.txt 2008-12-02 03:18
Pre-Run: 72,047,841,280 bytes free
Post-Run: 73,335,164,928 bytes free
- - End Of File - - 0535962AEACF06C60CBBAB98F941AC02
Welcome to Tech Support Guy! Read our Welcome Guide or take a minute to watch the video below!
Malware Removal & HijackThis Logs 
Search 
