Ok, here's the Combo Fix report.
ComboFix 13-10-15.02 - Leslie 10/15/2013 21:04:33.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1278.727 [GMT -5:00]
Running from: c:\documents and settings\Leslie\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\Leslie\System
c:\documents and settings\Leslie\System\win_qs8.jqx
c:\documents and settings\Leslie\WINDOWS
C:\drvrtmp
c:\windows\system32\Cache
c:\windows\system32\Cache\075884af680ff6dc.fb
c:\windows\system32\Cache\227113dfa1ca894d.fb
c:\windows\system32\Cache\49fbbc5a8678d502.fb
c:\windows\system32\Cache\5c54eb1a1655b076.fb
c:\windows\system32\Cache\613e8ce7ab7106af.fb
c:\windows\system32\Cache\633a76311867bd11.fb
c:\windows\system32\Cache\691f14230153a9e1.fb
c:\windows\system32\Cache\6cb409d7ac73d9f1.fb
c:\windows\system32\Cache\7614bd6cfa99e546.fb
c:\windows\system32\Cache\77664b6ccc36be9f.fb
c:\windows\system32\Cache\881b3593316772f0.fb
c:\windows\system32\Cache\898aecf53e81d018.fb
c:\windows\system32\Cache\98657d0579ae1930.fb
c:\windows\system32\Cache\d5c0f4e7bbe35bf3.fb
c:\windows\system32\Cache\d9ca663388d21ec0.fb
c:\windows\system32\Cache\f2cda51fd108941f.fb
c:\windows\system32\Cache\f34d8db84131d925.fb
c:\windows\system32\start.exe
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Files Created from 2013-09-16 to 2013-10-16 )))))))))))))))))))))))))))))))
.
.
2013-10-16 00:18 . 2013-09-05 03:02 7328304 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E9D97F56-FCCC-4FA3-A2FD-0569CECF7578}\mpengine.dll
2013-10-15 20:59 . 2013-09-05 03:02 7328304 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-10-15 20:52 . 2013-10-15 20:52 -------- d-----w- c:\windows\ERUNT
2013-10-15 03:08 . 2013-10-15 20:10 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-10-15 03:08 . 2013-04-04 19:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-10-14 08:19 . 2013-10-14 08:20 -------- d-----w- c:\program files\Microsoft Security Client
2013-10-10 20:57 . 2013-10-10 20:57 -------- d-----w- c:\documents and settings\Leslie\Application Data\TeamViewer
2013-10-10 20:15 . 2013-07-03 02:12 25088 -c----w- c:\windows\system32\dllcache\hidparse.sys
2013-10-10 20:15 . 2013-07-03 01:59 14976 -c----w- c:\windows\system32\dllcache\usbscan.sys
2013-10-10 20:14 . 2013-07-17 00:58 60160 -c----w- c:\windows\system32\dllcache\usbaudio.sys
2013-10-10 20:14 . 2013-07-17 00:58 123008 -c----w- c:\windows\system32\dllcache\usbvideo.sys
2013-10-10 20:04 . 2009-03-18 11:02 30336 -c----w- c:\windows\system32\dllcache\usbehci.sys
2013-10-10 20:04 . 2013-08-09 00:55 144128 -c----w- c:\windows\system32\dllcache\usbport.sys
2013-10-10 20:04 . 2013-08-09 00:55 32384 -c----w- c:\windows\system32\dllcache\usbccgp.sys
2013-10-10 20:04 . 2013-08-09 00:55 5376 -c----w- c:\windows\system32\dllcache\usbd.sys
2013-10-06 19:24 . 2013-10-12 15:41 -------- d-----w- c:\windows\A16BBEABAAEF434ABFDD297708709FCC.TMP
2013-10-06 06:42 . 2013-10-15 02:50 -------- d-----w- C:\AdwCleaner
2013-09-30 05:58 . 2013-10-04 15:41 -------- d-----w- c:\program files\Enigma Software Group
2013-09-30 05:53 . 2013-10-15 02:31 -------- d-----w- c:\windows\DB847E94446B49E0AC5DC5627EC8B0C0.TMP
2013-09-30 05:53 . 2013-10-04 15:37 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2013-09-29 06:54 . 2013-09-29 06:54 -------- d-----w- c:\documents and settings\LocalService\Application Data\iolo
2013-09-29 06:50 . 2013-09-19 02:24 2097984 ----a-w- c:\windows\system32\Incinerator32.dll
2013-09-29 06:50 . 2013-09-19 02:12 9341 ----a-w- c:\windows\system32\drivers\filedisk.sys
2013-09-29 06:48 . 2013-09-19 02:42 41616 ----a-w- c:\windows\system32\iolobtdfg.exe
2013-09-29 06:48 . 2013-09-19 02:42 23568 ----a-w- c:\windows\system32\smrgdf.exe
2013-09-29 06:48 . 2013-09-19 02:12 68464 ----a-w- c:\windows\system32\drivers\PDFsFilter.sys
2013-09-29 06:48 . 2013-09-19 02:12 56200 ----a-w- c:\windows\system32\offreg.dll
2013-09-29 06:48 . 2013-09-29 06:48 -------- d-----w- c:\program files\iolo
2013-09-29 06:36 . 2013-09-29 06:36 74703 ----a-w- c:\windows\system32\mfc45.dat
2013-09-29 06:36 . 2013-09-29 06:36 -------- d-----w- C:\iolo
2013-09-29 06:21 . 2013-10-03 07:12 -------- d-----w- c:\documents and settings\All Users\Application Data\iolo
2013-09-29 06:21 . 2013-09-29 07:10 -------- d-----w- c:\documents and settings\Leslie\Application Data\iolo
2013-09-27 07:42 . 2013-10-14 15:29 -------- d-----w- c:\documents and settings\Leslie\Local Settings\Application Data\Corel
2013-09-27 07:41 . 2013-10-14 12:55 848 --sha-w- c:\documents and settings\All Users\Application Data\KGyGaAvL.sys
2013-09-27 06:14 . 2013-09-27 07:41 -------- d-----w- c:\documents and settings\Leslie\Application Data\Corel
2013-09-27 06:06 . 2013-09-27 06:06 -------- d-----w- c:\program files\Common Files\Protexis
2013-09-27 06:06 . 2013-09-27 07:41 -------- d-----w- c:\documents and settings\All Users\Application Data\Corel
2013-09-27 06:06 . 2013-09-27 06:09 -------- d-----w- c:\program files\Common Files\Corel
2013-09-27 06:06 . 2013-09-27 06:06 -------- d-----w- c:\program files\Corel
2013-09-25 02:32 . 2013-08-30 07:47 229648 ----a-w- c:\windows\system32\aswBoot.exe
2013-09-25 02:26 . 2013-09-29 06:54 -------- d-----w- c:\documents and settings\All Users\Application Data\AVAST Software
2013-09-25 02:08 . 2013-09-25 02:08 -------- d-----w- c:\windows\system32\wbem\Repository
2013-09-25 01:43 . 2013-09-25 01:43 -------- d-----w- C:\$AVG
2013-09-25 01:41 . 2013-09-25 01:43 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG2014
2013-09-25 01:33 . 2013-09-25 01:43 -------- d-----w- c:\documents and settings\All Users\Application Data\MFAData
2013-09-25 01:33 . 2013-09-25 01:33 -------- d-----w- c:\documents and settings\Leslie\Local Settings\Application Data\MFAData
2013-09-24 06:28 . 2013-09-24 06:28 -------- d-----w- c:\documents and settings\Leslie\Application Data\Malwarebytes
2013-09-24 06:28 . 2013-09-24 06:28 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-09 02:16 . 2012-09-24 15:58 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-10-09 02:16 . 2012-09-24 15:58 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-09-23 18:33 . 2004-08-12 14:09 920064 ----a-w- c:\windows\system32\wininet.dll
2013-09-23 18:33 . 2004-08-12 13:59 43520 ------w- c:\windows\system32\licmgr10.dll
2013-09-23 18:33 . 2004-08-12 13:58 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-09-23 18:33 . 2004-08-12 13:56 18944 ----a-w- c:\windows\system32\corpol.dll
2013-09-23 18:06 . 2004-08-12 13:57 385024 ------w- c:\windows\system32\html.iec
2013-08-29 01:31 . 2004-08-12 14:09 1878656 ----a-w- c:\windows\system32\win32k.sys
2013-08-23 04:37 . 2013-08-23 04:37 176952 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2013-08-23 03:56 . 2013-08-23 03:56 209208 ----a-w- c:\windows\system32\drivers\avgidsdriverx.sys
2013-08-23 03:56 . 2013-08-23 03:56 223032 ----a-w- c:\windows\system32\drivers\avglogx.sys
2013-08-23 03:56 . 2013-08-23 03:56 146232 ----a-w- c:\windows\system32\drivers\avgidshx.sys
2013-08-21 03:54 . 2013-08-21 03:54 102200 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2013-08-09 01:56 . 2004-08-12 14:07 386560 ----a-w- c:\windows\system32\themeui.dll
2013-08-09 00:55 . 2004-08-12 14:08 144128 ----a-w- c:\windows\system32\drivers\usbport.sys
2013-08-09 00:55 . 2004-08-12 14:08 32384 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-08-09 00:55 . 2004-08-12 14:08 5376 ----a-w- c:\windows\system32\drivers\usbd.sys
2013-08-05 13:30 . 2004-08-12 14:02 1289728 ----a-w- c:\windows\system32\ole32.dll
2013-08-03 19:18 . 2006-10-19 02:47 1543680 ------w- c:\windows\system32\wmvdecod.dll
2013-08-01 21:08 . 2013-08-01 21:08 193848 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2013-08-01 21:06 . 2013-08-01 21:06 22840 ----a-w- c:\windows\system32\drivers\avgidsshimx.sys
2013-08-01 21:06 . 2013-08-01 21:06 120120 ----a-w- c:\windows\system32\drivers\avgdiskx.sys
2013-08-01 21:05 . 2013-08-01 21:05 26936 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
2013-07-25 00:59 . 2013-07-25 00:59 1409 ----a-w- c:\windows\QTFont.for
2013-07-19 06:18 . 2013-07-19 06:18 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2012-10-05 13:36 . 2012-10-10 23:47 172440 ----a-w- c:\program files\gcres.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2004-10-14 1404928]
"IntelMeM"="c:\program files\Intel\Modem Event Monitor\IntelMEM.exe" [2003-09-04 221184]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2005-09-20 94208]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2005-09-20 114688]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-09-20 77824]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-07-25 7311360]
"TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2013-06-24 295512]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2011-10-28 49208]
"Corel File Shell Monitor"="c:\program files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe" [2008-08-08 16712]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-07-18 995184]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqsudi.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpsapp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxs08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqfxt08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqpse.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe"=
"c:\\Program Files\\HP\\HP Software Update\\hpwucli.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"=
"c:\\WINDOWS\\system32\\dpnsvr.exe"=
"c:\\WINDOWS\\system32\\dxdiag.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"20570:TCP"= 20570:TCP:*:Disabled:wilife
"20572:TCP"= 20572:TCP:*:Disabled:wilife
"5985:TCP"= 5985:TCP:*:Disabled:Windows Remote Management
.
R2 ioloSystemService;iolo System Service;c:\program files\iolo\Common\Lib\ioloServiceManager.exe [9/29/2013 1:50 AM 1164328]
R2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [10/14/2013 10:08 PM 418376]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [10/14/2013 10:08 PM 701512]
R2 PDFsFilter;PDFsFilter;c:\windows\system32\drivers\PDFsFilter.sys [9/29/2013 1:48 AM 68464]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\RealNetworks\RealDownloader\rndlresolversvc.exe [4/16/2013 3:07 AM 39056]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [10/14/2013 10:08 PM 22856]
S3 A_USBETHMP;USB PowerPacket Network Adapter;c:\windows\system32\drivers\usbethmp.sys [9/28/2012 9:33 PM 14342]
S3 cpudrv;cpudrv;\??\c:\program files\SystemRequirementsLab\cpudrv.sys --> c:\program files\SystemRequirementsLab\cpudrv.sys [?]
S3 esgiguard;esgiguard;\??\c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys --> c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [?]
S3 PCDSRVC{E9D79540-57D5953E-06020200}_0;PCDSRVC{E9D79540-57D5953E-06020200}_0 - PCDR Kernel Mode Service Helper Driver;\??\c:\program files\dell support center\pcdsrvc.pkms --> c:\program files\dell support center\pcdsrvc.pkms [?]
S3 WLRAWSp50x86;WLRAWSp50x86 NDIS Protocol Driver;c:\windows\system32\drivers\WLRAWSp50x86.sys [9/28/2012 8:38 AM 27032]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MBAMPROTECTOR
*NewlyCreated* - MBAMSCHEDULER
*NewlyCreated* - MBAMSERVICE
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder
.
2013-10-16 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-24 02:16]
.
2013-10-16 c:\windows\Tasks\Microsoft Antimalware Scheduled Scan.job
- c:\program files\Microsoft Security Client\MpCmdRun.exe [2013-07-18 21:49]
.
2013-08-24 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\My Dell\uaclauncher.exe [2013-05-22 17:10]
.
2013-10-16 c:\windows\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1390067357-1935655697-839522115-1004.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2013-04-16 17:45]
.
2013-10-09 c:\windows\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1390067357-1935655697-839522115-1004.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2013-04-16 17:45]
.
2013-10-16 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1390067357-1935655697-839522115-1004.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2013-04-16 17:45]
.
2013-10-15 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1390067357-1935655697-839522115-1004.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2013-04-16 17:45]
.
2013-10-16 c:\windows\Tasks\User_Feed_Synchronization-{77F495CE-29C5-47CF-BBF4-237FAC098B1A}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 09:31]
.
2013-10-16 c:\windows\Tasks\User_Feed_Synchronization-{CE4DC6E6-D66A-489A-80C5-888E2DDF0E88}.job
- c:\windows\system32\msfeedssync.exe [2009-03-08 09:31]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
uInternet Settings,ProxyOverride = <local>
TCP: DhcpNameServer = 216.139.111.53 216.139.111.54
TCP: Interfaces\{1E82F90F-8561-4D3A-9260-A13FDF8601A7}: NameServer = 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2013-10-15 21:11
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\PCDSRVC{E9D79540-57D5953E-06020200}_0]
"ImagePath"="\??\c:\program files\dell support center\pcdsrvc.pkms"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5
977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,6d,3a,c7,06,a7,4b,f5,40,9e,59,cf,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839
E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,6d,3a,c7,06,a7,4b,f5,40,9e,59,cf,\
.
[HKEY_USERS\S-1-5-21-1390067357-1935655697-839522115-1004\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Completion time: 2013-10-15 21:13:54
ComboFix-quarantined-files.txt 2013-10-16 02:13
.
Pre-Run: 293,247,909,888 bytes free
Post-Run: 293,726,646,272 bytes free
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 4E6685E1A6D2E9C2B13E324F85D35A7A
8F558EB6672622401DA993E1E865C861
[recovering disk space, attachment deleted by admin]