I did that and it ran.....
here is the log you needed..
ComboFix 09-05-25.03 - Rick Carter 05/25/2009 18:07.2 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.766.376 [GMT -5:00]
Running from: c:\documents and settings\Rick Carter\Desktop\CF.exe
Command switches used :: c:\documents and settings\Rick Carter\Desktop\CFScript.txt
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: Outpost Firewall *enabled* {8A20CA2A-9E02-4A64-923B-0A38208EB7FD}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\docume~1\alluse~1\applic~1\SITEguard
c:\docume~1\alluse~1\applic~1\SITEguard\siteguard.db
c:\docume~1\alluse~1\applic~1\STOPzilla!
c:\docume~1\alluse~1\applic~1\STOPzilla!\modules_scanned.db
c:\docume~1\alluse~1\applic~1\STOPzilla!\modules_scanned.db.bak
c:\docume~1\alluse~1\applic~1\STOPzilla!\sgdefs.db
c:\docume~1\alluse~1\applic~1\STOPzilla!\sgdwc.db
c:\docume~1\alluse~1\applic~1\STOPzilla!\userdata.db
c:\program files\common files\iS3
c:\program files\common files\iS3\Anti-Spyware\sgdfull.rsf
c:\program files\messenger\msmsgs.exe
.
((((((((((((((((((((((((( Files Created from 2009-04-25 to 2009-05-25 )))))))))))))))))))))))))))))))
.
2009-05-25 21:44 . 2004-08-04 10:00 50176 ----a-w c:\windows\system32\proquota.exe
2009-05-25 21:44 . 2004-08-04 10:00 50176 ----a-w c:\windows\system32\dllcache\proquota.exe
2009-05-25 19:51 . 2009-04-06 20:32 15504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-05-25 19:51 . 2009-04-06 20:32 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-05-25 19:51 . 2009-05-25 19:53 -------- d-----w c:\program files\MAM
2009-05-24 23:35 . 2009-04-06 16:37 704384 ----a-w c:\windows\system32\drivers\SandBox.sys
2009-05-24 23:35 . 2009-02-10 21:15 257432 ----a-w c:\windows\system32\drivers\afwcore.sys
2009-05-24 23:33 . 2009-02-18 22:30 31128 ----a-w c:\windows\system32\drivers\afw.sys
2009-05-24 23:33 . 2009-05-24 23:33 -------- d-----w c:\program files\Agnitum
2009-05-24 23:33 . 2009-05-24 23:33 -------- d-----w c:\documents and settings\All Users\Application Data\Agnitum
2009-05-24 02:42 . 2009-05-24 02:42 -------- d-----w c:\program files\Trend Micro
2009-05-24 02:27 . 2009-05-24 02:37 -------- d-----w c:\program files\MbAM
2009-05-24 00:33 . 2009-05-24 00:33 -------- d-----w c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2009-05-24 00:32 . 2009-05-25 02:22 -------- d-----w c:\program files\SUPERAntiSpyware
2009-05-24 00:32 . 2009-05-24 00:32 -------- d-----w c:\docume~1\RICKCA~1\APPLIC~1\SUPERAntiSpyware.com
2009-05-24 00:32 . 2009-05-24 00:32 -------- d-----w c:\program files\Common Files\Wise Installation Wizard
2009-05-23 23:38 . 2009-05-23 23:37 410984 ----a-w c:\windows\system32\deploytk.dll
2009-05-23 01:03 . 2009-05-23 01:56 -------- d-----w c:\program files\a-squared Free
2009-05-23 00:57 . 2009-05-23 00:57 -------- d-----w c:\program files\CCleaner
2009-05-22 03:57 . 2008-04-13 23:12 116224 ----a-w c:\windows\system32\dllcache\xrxwiadr.dll
2009-05-22 03:57 . 2001-08-18 03:36 23040 ----a-w c:\windows\system32\dllcache\xrxwbtmp.dll
2009-05-22 03:57 . 2008-04-13 23:12 18944 ----a-w c:\windows\system32\dllcache\xrxscnui.dll
2009-05-22 03:57 . 2001-08-18 03:37 27648 ----a-w c:\windows\system32\dllcache\xrxftplt.exe
2009-05-22 03:57 . 2001-08-18 03:37 4608 ----a-w c:\windows\system32\dllcache\xrxflnch.exe
2009-05-22 03:57 . 2001-08-18 03:37 99865 ----a-w c:\windows\system32\dllcache\xlog.exe
2009-05-22 03:57 . 2001-08-17 17:11 16970 ----a-w c:\windows\system32\dllcache\xem336n5.sys
2009-05-22 03:57 . 2004-08-04 02:29 19455 ----a-w c:\windows\system32\dllcache\wvchntxx.sys
2009-05-22 03:56 . 2004-08-04 02:29 12063 ----a-w c:\windows\system32\dllcache\wsiintxx.sys
2009-05-22 03:56 . 2008-04-13 23:12 8192 ----a-w c:\windows\system32\dllcache\wshirda.dll
2009-05-22 03:56 . 2008-04-13 17:36 8832 ----a-w c:\windows\system32\dllcache\wmiacpi.sys
2009-05-22 03:56 . 2004-08-04 02:31 154624 ----a-w c:\windows\system32\dllcache\wlluc48.sys
2009-05-22 03:56 . 2001-08-17 17:12 34890 ----a-w c:\windows\system32\dllcache\wlandrv2.sys
2009-05-22 03:54 . 2001-08-17 18:28 64605 ----a-w c:\windows\system32\dllcache\vvoice.sys
2009-05-22 03:54 . 2001-08-17 18:28 397502 ----a-w c:\windows\system32\dllcache\vpctcom.sys
2009-05-22 03:54 . 2001-08-17 18:28 604253 ----a-w c:\windows\system32\dllcache\vmodem.sys
2009-05-22 03:54 . 2001-08-17 17:14 249402 ----a-w c:\windows\system32\dllcache\vinwm.sys
2009-05-22 03:54 . 2001-08-17 18:49 24576 ----a-w c:\windows\system32\dllcache\viairda.sys
2009-05-22 03:54 . 2001-08-17 18:28 687999 ----a-w c:\windows\system32\dllcache\usrwdxjs.sys
2009-05-22 03:54 . 2001-08-17 18:28 765884 ----a-w c:\windows\system32\dllcache\usrti.sys
2009-05-22 03:54 . 2001-08-17 18:28 113762 ----a-w c:\windows\system32\dllcache\usrpda.sys
2009-05-22 03:54 . 2001-08-17 18:28 7556 ----a-w c:\windows\system32\dllcache\usroslba.sys
2009-05-22 03:54 . 2001-08-17 18:28 224802 ----a-w c:\windows\system32\dllcache\usr1807a.sys
2009-05-22 03:54 . 2001-08-17 18:28 794399 ----a-w c:\windows\system32\dllcache\usr1806v.sys
2009-05-22 03:52 . 2001-08-18 03:36 216064 ----a-w c:\windows\system32\dllcache\um34scan.dll
2009-05-22 03:51 . 2001-08-17 19:01 241664 ----a-w c:\windows\system32\dllcache\tosdvd02.sys
2009-05-22 03:50 . 2001-08-17 18:50 103936 ----a-w c:\windows\system32\dllcache\sx.sys
2009-05-22 03:50 . 2001-08-17 19:02 3968 ----a-w c:\windows\system32\dllcache\swusbflt.sys
2009-05-22 03:50 . 2001-08-18 03:36 10240 ----a-w c:\windows\system32\dllcache\swpidflt.dll
2009-05-22 03:50 . 2001-08-18 03:36 10240 ----a-w c:\windows\system32\dllcache\swpdflt2.dll
2009-05-22 03:50 . 2001-08-18 03:36 53760 ----a-w c:\windows\system32\dllcache\sw_wheel.dll
2009-05-22 03:50 . 2001-08-18 03:36 41472 ----a-w c:\windows\system32\dllcache\sw_effct.dll
2009-05-22 03:50 . 2001-08-18 03:36 155648 ----a-w c:\windows\system32\dllcache\stlnprop.dll
2009-05-22 03:50 . 2001-08-18 03:36 53248 ----a-w c:\windows\system32\dllcache\stlncoin.dll
2009-05-22 03:50 . 2001-08-17 17:18 285760 ----a-w c:\windows\system32\dllcache\stlnata.sys
2009-05-22 03:50 . 2001-08-17 18:51 16896 ----a-w c:\windows\system32\dllcache\stcusb.sys
2009-05-22 03:50 . 2001-08-17 17:11 48736 ----a-w c:\windows\system32\dllcache\srwlnd5.sys
2009-05-22 03:50 . 2004-08-04 10:00 101376 ----a-w c:\windows\system32\dllcache\srusbusd.dll
2009-05-22 03:50 . 2001-08-18 03:36 99328 ----a-w c:\windows\system32\dllcache\srusd.dll
2009-05-22 03:48 . 2004-08-04 10:00 15872 ----a-w c:\windows\system32\dllcache\smierrsm.dll
2009-05-22 03:47 . 2001-08-17 17:12 94698 ----a-w c:\windows\system32\dllcache\sk98xwin.sys
2009-05-22 03:47 . 2001-08-17 19:56 157696 ----a-w c:\windows\system32\dllcache\sisv256.dll
2009-05-22 03:47 . 2001-08-17 17:50 50432 ----a-w c:\windows\system32\dllcache\sisv.sys
2009-05-22 03:47 . 2004-08-04 02:31 32768 ----a-w c:\windows\system32\dllcache\sisnic.sys
2009-05-22 03:47 . 2001-08-18 03:36 238592 ----a-w c:\windows\system32\dllcache\sisgrv.dll
2009-05-22 03:47 . 2001-08-17 17:50 104064 ----a-w c:\windows\system32\dllcache\sisgrp.sys
2009-05-22 03:47 . 2001-08-17 19:56 150144 ----a-w c:\windows\system32\dllcache\sis6306v.dll
2009-05-22 03:47 . 2001-08-17 17:50 68608 ----a-w c:\windows\system32\dllcache\sis6306p.sys
2009-05-22 03:47 . 2001-08-17 19:56 252032 ----a-w c:\windows\system32\dllcache\sis300iv.dll
2009-05-22 03:47 . 2001-08-17 17:50 101760 ----a-w c:\windows\system32\dllcache\sis300ip.sys
2009-05-22 03:47 . 2004-08-04 10:00 18944 ----a-w c:\windows\system32\dllcache\simptcp.dll
2009-05-22 03:45 . 2001-08-18 03:36 495616 ----a-w c:\windows\system32\dllcache\sblfx.dll
2009-05-22 03:45 . 2001-08-17 17:50 75392 ----a-w c:\windows\system32\dllcache\s3savmxm.sys
2009-05-22 03:45 . 2001-08-17 19:56 245632 ----a-w c:\windows\system32\dllcache\s3savmx.dll
2009-05-22 03:45 . 2001-08-17 17:50 77824 ----a-w c:\windows\system32\dllcache\s3sav4m.sys
2009-05-22 03:45 . 2001-08-17 19:56 198400 ----a-w c:\windows\system32\dllcache\s3sav4.dll
2009-05-22 03:45 . 2001-08-17 17:50 61504 ----a-w c:\windows\system32\dllcache\s3sav3dm.sys
2009-05-22 03:45 . 2001-08-17 19:56 179264 ----a-w c:\windows\system32\dllcache\s3sav3d.dll
2009-05-22 03:45 . 2001-08-17 19:56 210496 ----a-w c:\windows\system32\dllcache\s3mvirge.dll
2009-05-22 03:45 . 2001-08-18 03:36 62496 ----a-w c:\windows\system32\dllcache\s3mtrio.dll
2009-05-22 03:45 . 2001-08-17 17:50 41216 ----a-w c:\windows\system32\dllcache\s3mt3d.sys
2009-05-22 03:45 . 2001-08-17 19:56 182272 ----a-w c:\windows\system32\dllcache\s3mt3d.dll
2009-05-22 03:45 . 2001-08-17 17:50 166720 ----a-w c:\windows\system32\dllcache\s3m.sys
2009-05-22 03:45 . 2001-08-17 18:57 65664 ----a-w c:\windows\system32\dllcache\s3legacy.sys
2009-05-22 03:43 . 2001-08-17 18:28 899146 ----a-w c:\windows\system32\dllcache\r2mdkxga.sys
2009-05-22 03:42 . 2008-04-13 17:41 17664 ----a-w c:\windows\system32\dllcache\ppa3.sys
2009-05-22 03:41 . 2001-08-17 17:11 29769 ----a-w c:\windows\system32\dllcache\pcntn5m.sys
2009-05-22 03:40 . 2001-08-17 19:05 25088 ----a-w c:\windows\system32\dllcache\ovca.sys
2009-05-22 03:40 . 2001-08-17 18:28 54186 ----a-w c:\windows\system32\dllcache\otcsercb.sys
2009-05-22 03:40 . 2001-08-17 17:12 43689 ----a-w c:\windows\system32\dllcache\otceth5.sys
2009-05-22 03:40 . 2001-08-17 17:12 27209 ----a-w c:\windows\system32\dllcache\otc06x5.sys
2009-05-22 03:40 . 2001-08-17 17:20 54528 ----a-w c:\windows\system32\dllcache\opl3sax.sys
2009-05-22 03:40 . 2008-04-13 17:46 61696 ----a-w c:\windows\system32\dllcache\ohci1394.sys
2009-05-22 03:40 . 2001-08-17 17:50 198144 ----a-w c:\windows\system32\dllcache\nv3.sys
2009-05-22 03:40 . 2001-08-18 03:36 123776 ----a-w c:\windows\system32\dllcache\nv3.dll
2009-05-22 03:40 . 2001-08-17 17:49 51552 ----a-w c:\windows\system32\dllcache\ntgrip.sys
2009-05-22 03:40 . 2001-08-18 03:36 38912 ----a-w c:\windows\system32\dllcache\EXCH_ntfsdrv.dll
2009-05-22 03:40 . 2001-08-17 18:47 9344 ----a-w c:\windows\system32\dllcache\ntapm.sys
2009-05-22 03:38 . 2001-08-17 19:56 35392 ----a-w c:\windows\system32\dllcache\n9i128.dll
2009-05-22 03:37 . 2001-08-17 19:02 35200 ----a-w c:\windows\system32\dllcache\msgame.sys
2009-05-22 03:36 . 2001-08-18 03:36 58880 ----a-w c:\windows\system32\dllcache\m3092dc.dll
2009-05-22 03:35 . 2004-08-04 10:00 5632 ----a-w c:\windows\system32\dllcache\kbdusa.dll
2009-05-22 03:34 . 2001-08-18 03:36 90200 ----a-w c:\windows\system32\dllcache\io8ports.dll
2009-05-22 03:33 . 2001-08-17 17:12 100936 ----a-w c:\windows\system32\dllcache\ibmtok.sys
2009-05-22 03:32 . 2001-08-17 18:28 67167 ----a-w c:\windows\system32\dllcache\hsf_bsc2.sys
2009-05-22 03:31 . 2008-04-13 17:36 20352 ----a-w c:\windows\system32\dllcache\hidbatt.sys
2009-05-22 03:30 . 2001-08-18 03:36 71680 ----a-w c:\windows\system32\dllcache\fnfilter.dll
2009-05-22 03:29 . 2001-08-17 17:19 37120 ----a-w c:\windows\system32\dllcache\es1370mp.sys
2009-05-22 03:28 . 2001-08-17 17:12 50719 ----a-w c:\windows\system32\dllcache\e1000nt5.sys
2009-05-22 03:27 . 2001-08-17 17:11 24648 ----a-w c:\windows\system32\dllcache\dfe650.sys
2009-05-22 03:26 . 2001-08-17 17:11 39936 ----a-w c:\windows\system32\dllcache\cnxt1803.sys
2009-05-22 03:25 . 2001-08-17 18:51 13824 ----a-w c:\windows\system32\dllcache\bulltlp3.sys
2009-05-22 03:24 . 2001-08-17 17:49 17152 ----a-w c:\windows\system32\dllcache\atitvsnd.sys
2009-05-22 03:23 . 2001-08-17 19:56 66048 ----a-w c:\windows\system32\dllcache\s3legacy.dll
2009-05-21 17:20 . 2009-05-21 17:20 -------- d-sh--w c:\windows\system32\config\systemprofile\IETldCache
2009-05-17 19:08 . 2009-05-17 19:08 -------- d-----w c:\docume~1\RICKCA~1\APPLIC~1\Malwarebytes
2009-05-17 19:08 . 2009-05-17 19:08 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
2009-05-03 03:32 . 2009-05-03 18:11 -------- d-----w c:\program files\Lavasoft
2009-05-03 03:32 . 2009-05-03 18:11 -------- d-----w c:\documents and settings\All Users\Application Data\Lavasoft
2009-05-01 22:16 . 2009-05-03 18:13 -------- d-----w c:\documents and settings\Rick Carter\Tracing
2009-05-01 21:04 . 2009-05-01 21:04 -------- d-----w c:\program files\Microsoft Sync Framework
2009-05-01 21:03 . 2009-05-01 21:03 -------- d-----w c:\program files\Microsoft SQL Server Compact Edition
2009-05-01 21:01 . 2009-05-01 21:01 -------- d-----w c:\program files\Microsoft
2009-05-01 21:01 . 2009-05-03 18:53 -------- d-----w c:\program files\Windows Live
2009-05-01 20:36 . 2009-05-01 20:36 -------- d-----w c:\program files\Common Files\Windows Live
2009-05-01 19:46 . 2009-05-01 19:46 -------- d-----w c:\program files\AML Products
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-05-24 03:23 . 2005-04-13 13:38 -------- d-----w c:\program files\Java
2009-05-24 00:19 . 2005-11-08 02:35 -------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-05-23 01:35 . 2007-06-24 03:17 -------- d-----w c:\program files\ScanSuite
2009-05-21 20:05 . 2008-05-30 10:44 -------- d-----w c:\documents and settings\All Users\Application Data\avg8
2009-05-18 04:24 . 2008-09-19 14:45 -------- d-----w c:\docume~1\RICKCA~1\APPLIC~1\OpenOffice.org2
2009-05-17 17:46 . 2007-06-22 02:16 -------- d-----w c:\program files\FinePixViewer
2009-05-16 16:52 . 2008-05-30 10:44 11952 ----a-w c:\windows\system32\avgrsstx.dll
2009-05-16 16:52 . 2008-05-30 10:44 325896 ----a-w c:\windows\system32\drivers\avgldx86.sys
2009-05-16 16:52 . 2006-12-08 02:41 27784 ----a-w c:\windows\system32\drivers\avgmfx86.sys
2009-05-16 16:52 . 2008-05-30 10:44 108552 ----a-w c:\windows\system32\drivers\avgtdix.sys
2009-05-03 18:09 . 2009-03-17 23:40 -------- d-----w c:\docume~1\RICKCA~1\APPLIC~1\IObit
2009-05-01 22:15 . 2005-04-18 17:00 21008 -c--a-w c:\documents and settings\Rick Carter\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-05-01 19:51 . 2008-02-27 22:32 -------- d-----w c:\program files\XLView
2009-04-19 03:48 . 2009-04-19 03:48 -------- d-----w c:\docume~1\RICKCA~1\APPLIC~1\ValuSoft
2009-04-19 03:44 . 2009-04-19 03:44 -------- d-----w c:\program files\Prison Tycoon 4
2009-04-19 03:44 . 2005-04-13 13:39 -------- d--h--w c:\program files\InstallShield Installation Information
2009-04-16 02:39 . 2005-09-03 20:49 -------- d-----w c:\docume~1\RICKCA~1\APPLIC~1\AdobeUM
2009-04-16 01:46 . 2005-04-13 13:53 -------- d-----w c:\program files\QuickTime
2009-04-15 11:07 . 2007-06-17 19:54 -------- d-----w c:\program files\Yahoo!
2009-04-14 04:00 . 2009-04-14 04:00 -------- d-----w c:\program files\TouchStoneSoftware
2009-04-05 18:48 . 2009-04-05 18:48 -------- d-----w c:\docume~1\RICKCA~1\APPLIC~1\Windows Search
2009-03-18 22:45 . 2007-03-06 15:15 348160 ----a-w c:\windows\system32\msvcr71.dll
2009-03-18 22:45 . 2007-03-06 15:15 499712 ----a-w c:\windows\system32\msvcp71.dll
2009-03-08 09:34 . 2004-08-04 10:00 914944 ----a-w c:\windows\system32\wininet.dll
2009-03-08 09:34 . 2004-08-04 10:00 43008 ----a-w c:\windows\system32\licmgr10.dll
2009-03-08 09:33 . 2004-08-04 10:00 18944 ----a-w c:\windows\system32\corpol.dll
2009-03-08 09:33 . 2004-08-04 10:00 420352 ----a-w c:\windows\system32\vbscript.dll
2009-03-08 09:32 . 2004-08-04 10:00 72704 ----a-w c:\windows\system32\admparse.dll
2009-03-08 09:32 . 2004-08-04 10:00 71680 ----a-w c:\windows\system32\iesetup.dll
2009-03-08 09:31 . 2004-08-04 10:00 34816 ----a-w c:\windows\system32\imgutil.dll
2009-03-08 09:31 . 2004-08-04 10:00 48128 ----a-w c:\windows\system32\mshtmler.dll
2009-03-08 09:31 . 2004-08-04 10:00 45568 ----a-w c:\windows\system32\mshta.exe
2009-03-08 09:22 . 2004-08-04 10:00 156160 ----a-w c:\windows\system32\msls31.dll
2009-03-06 14:22 . 2004-08-04 10:00 284160 ----a-w c:\windows\system32\pdh.dll
2005-11-08 02:05 . 2005-11-08 02:00 2855080 -c--a-w c:\program files\aawsepersonal.exe
.
((((((((((((((((((((((((((((( SnapShot@2009-05-25_21.44.57 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-05-25 23:12 . 2009-05-25 23:12 16384 c:\windows\Temp\usgthrsvc\Perflib_Perfdata_180.dat
+ 2009-05-25 23:12 . 2009-05-25 23:12 16384 c:\windows\Temp\Perflib_Perfdata_408.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-05-16 1947928]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-05-16 1947928]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-03-18 198160]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-05-23 148888]
"OutpostMonitor"="c:\progra~1\Agnitum\Outpost Firewall\op_mon.exe" [2009-04-28 2374464]
"OutpostFeedBack"="c:\program files\Agnitum\Outpost Firewall\feedback.exe" [2009-04-28 428032]
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2008-05-27 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-12-22 17:05 356352 ----a-w c:\program files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-05-16 16:52 11952 ----a-w c:\windows\SYSTEM32\avgrsstx.dll
HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32
"wave"= serwvdrv.dll
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\Program Files\\Kodak\\KODAK Software Updater\\7288971\\Program\\Kodak Software Updater.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"=
"c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImLc.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgemc.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\SYSTEM32\DRIVERS\avgldx86.sys [5/30/2008 5:44 AM 325896]
R1 AvgTdiX;AVG8 Network Redirector;c:\windows\SYSTEM32\DRIVERS\avgtdix.sys [5/30/2008 5:44 AM 108552]
R1 SandBox;SandBox;c:\windows\SYSTEM32\DRIVERS\SandBox.sys [5/24/2009 6:35 PM 704384]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [5/14/2009 2:22 PM 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [5/14/2009 2:22 PM 72944]
R2 acssrv;Agnitum Client Security Service;c:\progra~1\Agnitum\Outpost Firewall\acs.exe [5/24/2009 6:33 PM 1195008]
R2 avg8emc;AVG8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [7/5/2008 10:41 AM 908568]
R2 avg8wd;AVG8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [7/5/2008 10:41 AM 298776]
R3 afw;Agnitum firewall driver;c:\windows\SYSTEM32\DRIVERS\afw.sys [5/24/2009 6:33 PM 31128]
R3 afwcore;afwcore;c:\windows\SYSTEM32\DRIVERS\afwcore.sys [5/24/2009 6:35 PM 257432]
R3 XIRLINK;IBM PC Camera;c:\windows\SYSTEM32\DRIVERS\C-itnt.sys [9/10/2008 5:53 PM 453475]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [5/14/2009 2:22 PM 7408]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}]
c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,LaunchINFSectionEx c:\program files\Internet Explorer\clrtour.inf,DefaultInstall.ResetTour,,12
.
Contents of the 'Scheduled Tasks' folder
2009-05-25 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1056457592-2306923782-1649441779-1006.job
- c:\documents and settings\Rick Carter\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-09-05 14:39]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
uSearchMigratedDefaultURL = 687474703a2f2f7777772e676f6f676c652e636
f6d2f
mSearchMigratedDefaultURL = 687474703a2f2f7777772e676f6f676c652e636
f6d2f
uInternet Connection Wizard,ShellNext = iexplore
uSearchURL,(Default) = hxxp://red.clientapps.yahoo.com/customize/ie/defaults/su/yme/*http://www.yahoo.com
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2009-05-25 18:12
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
- - - - - - - > 'winlogon.exe'(1164)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
- - - - - - - > 'explorer.exe'(3240)
c:\program files\Windows Desktop Search\deskbar.dll
c:\program files\Windows Desktop Search\en-us\dbres.dll.mui
c:\program files\Windows Desktop Search\dbres.dll
c:\program files\Windows Desktop Search\wordwheel.dll
c:\program files\Windows Desktop Search\en-us\msnlExtRes.dll.mui
c:\program files\Windows Desktop Search\msnlExtRes.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\system32\OneX.DLL
c:\windows\system32\eappprxy.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\a-squared Free\a2service.exe
c:\windows\SYSTEM32\bgsvcgen.exe
c:\windows\SYSTEM32\CTSVCCDA.EXE
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\SYSTEM32\DRIVERS\KodakCCS.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\AVG\AVG8\avgrsx.exe
c:\progra~1\AVG\AVG8\avgnsx.exe
c:\windows\SYSTEM32\searchindexer.exe
c:\program files\Yahoo!\SoftwareUpdate\YahooAUService.exe
c:\program files\AVG\AVG8\avgcsrvx.exe
c:\windows\SYSTEM32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2009-05-25 18:17 - machine was rebooted
ComboFix-quarantined-files.txt 2009-05-25 23:17
ComboFix2.txt 2009-05-25 21:47
Pre-Run: 20,890,476,544 bytes free
Post-Run: 20,872,675,328 bytes free
310 --- E O F --- 2009-05-13 11:31