ComboFix 08-08-08.07 - Kenneth L. James II 2008-08-09 7:31:33.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.340 [GMT -4:00]
Running from: C:\cf2332\ComboFix.exe
* Created a new restore point
* Resident AV is active
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\Kenneth L. James II\Application Data\inst.exe
C:\Documents and Settings\Kristin\Local Settings\Application Data\Microsoft\Windows Media\10.0\WMSDKNSD.XML
C:\Program Files\Altnet
C:\WINDOWS\system32\aepeolid.ini
C:\WINDOWS\system32\bszip.dll
C:\WINDOWS\system32\bwmitnji.dll
C:\WINDOWS\system32\fmtujkfb.ini
C:\WINDOWS\system32\fvtqkihe.ini
C:\WINDOWS\system32\gpidridc.ini
C:\WINDOWS\system32\jpnnjm.dll
C:\WINDOWS\system32\khsshmnl.ini
C:\WINDOWS\system32\MSINET.oca
C:\WINDOWS\system32\nkpejpgh.ini
C:\WINDOWS\system32\pekilt.dll
C:\WINDOWS\system32\pomoscds.dll
C:\WINDOWS\system32\prcnsz.dll
C:\WINDOWS\system32\pvskwykr.ini
C:\WINDOWS\system32\skhhfwwf.ini
C:\WINDOWS\system32\srylkl.dll
C:\WINDOWS\system32\tmrsqopu.dll
C:\WINDOWS\system32\yiwsmjmo.dll
.
((((((((((((((((((((((((( Files Created from 2008-07-09 to 2008-08-09 )))))))))))))))))))))))))))))))
.
2008-08-09 07:29 . 2008-08-09 07:29 <DIR> d-------- C:\cf2332
2008-08-09 07:17 . 2008-08-09 07:17 <DIR> d-------- C:\WINDOWS\LastGood
2008-08-08 08:25 . 2008-08-08 08:25 <DIR> d-------- C:\WINDOWS\system32\scripting
2008-08-08 08:25 . 2008-08-08 08:25 <DIR> d-------- C:\WINDOWS\system32\en
2008-08-08 08:25 . 2008-08-08 08:25 <DIR> d-------- C:\WINDOWS\system32\bits
2008-08-08 08:25 . 2008-08-08 08:25 <DIR> d-------- C:\WINDOWS\l2schemas
2008-08-08 08:22 . 2008-08-08 08:25 <DIR> d-------- C:\WINDOWS\ServicePackFiles
2008-08-08 08:17 . 2008-08-08 08:44 1,355 --a------ C:\WINDOWS\imsins.BAK
2008-08-08 08:14 . 2008-08-08 08:14 <DIR> d-------- C:\WINDOWS\EHome
2008-08-08 08:07 . 2008-04-13 20:12 1,737,856 --------- C:\WINDOWS\system32\mtxparhd.dll
2008-08-08 08:06 . 2008-04-13 20:11 1,888,992 --------- C:\WINDOWS\system32\ati3duag.dll
2008-08-08 08:05 . 2008-04-13 20:11 136,192 --------- C:\WINDOWS\system32\aaclient.dll
2008-08-08 08:05 . 2008-04-13 20:11 4,255 --------- C:\WINDOWS\system32\drivers\adv01nt5.dll
2008-08-08 08:05 . 2008-04-13 20:11 3,967 --------- C:\WINDOWS\system32\drivers\adv02nt5.dll
2008-08-08 08:05 . 2008-04-13 20:11 3,775 --------- C:\WINDOWS\system32\drivers\adv11nt5.dll
2008-08-08 08:05 . 2008-04-13 20:11 3,711 --------- C:\WINDOWS\system32\drivers\adv09nt5.dll
2008-08-08 08:05 . 2008-04-13 20:11 3,647 --------- C:\WINDOWS\system32\drivers\adv07nt5.dll
2008-08-08 08:05 . 2008-04-13 20:11 3,615 --------- C:\WINDOWS\system32\drivers\adv05nt5.dll
2008-08-08 08:05 . 2008-04-13 20:11 3,135 --------- C:\WINDOWS\system32\drivers\adv08nt5.dll
2008-08-08 07:35 . 2008-08-08 07:35 <DIR> d-------- C:\Program Files\Sun
2008-08-08 07:34 . 2008-06-10 02:32 73,728 --a------ C:\WINDOWS\system32\javacpl.cpl
2008-08-08 07:32 . 2008-08-08 07:34 <DIR> d-------- C:\Program Files\Java
2008-08-08 07:31 . 2008-08-08 07:31 <DIR> d-------- C:\Program Files\Common Files\Java
2008-08-07 23:07 . 2008-08-07 23:07 <DIR> d-------- C:\Program Files\Trend Micro
2008-08-07 22:36 . 2008-08-07 22:36 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-08-07 22:36 . 2008-08-07 22:36 <DIR> d-------- C:\Documents and Settings\Kenneth L. James II\Application Data\Malwarebytes
2008-08-07 22:36 . 2008-08-07 22:36 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-08-07 22:36 . 2008-07-30 20:07 38,472 --a------ C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-08-07 22:36 . 2008-07-30 20:07 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-08-07 17:25 . 2008-08-07 17:25 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-08-07 17:24 . 2008-08-07 17:24 <DIR> d-------- C:\Program Files\SUPERAntiSpyware
2008-08-07 17:24 . 2008-08-07 17:24 <DIR> d-------- C:\Documents and Settings\Kenneth L. James II\Application Data\SUPERAntiSpyware.com
2008-08-07 17:16 . 2008-08-07 17:16 <DIR> d-------- C:\Program Files\CCleaner
2008-07-31 23:31 . 2008-07-31 23:31 131 --a------ C:\Documents and Settings\Kenneth L. James II\reset.cmd
2008-07-29 09:59 . 2008-08-09 07:14 10,837 --a------ C:\WINDOWS\system32\Config.MPF
2008-07-29 09:58 . 2006-03-03 08:07 143,360 --a------ C:\WINDOWS\system32\dunzip32.dll
2008-07-29 09:54 . 2007-11-22 06:44 201,320 --a------ C:\WINDOWS\system32\drivers\mfehidk.sys
2008-07-29 09:54 . 2007-07-13 06:20 113,952 --a------ C:\WINDOWS\system32\drivers\Mpfp.sys
2008-07-29 09:54 . 2007-11-22 06:44 79,304 --a------ C:\WINDOWS\system32\drivers\mfeavfk.sys
2008-07-29 09:54 . 2007-12-02 12:51 40,488 --a------ C:\WINDOWS\system32\drivers\mfesmfk.sys
2008-07-29 09:54 . 2007-11-22 06:44 35,240 --a------ C:\WINDOWS\system32\drivers\mfebopk.sys
2008-07-29 09:54 . 2007-11-22 06:44 33,832 --a------ C:\WINDOWS\system32\drivers\mferkdk.sys
2008-07-29 09:09 . 2008-07-29 09:09 <DIR> d-------- C:\Documents and Settings\Kenneth L. James II\Application Data\McAfee
2008-07-27 15:08 . 2008-07-27 15:08 <DIR> d-------- C:\Documents and Settings\Kenneth L. James II\Application Data\MSNInstaller
2008-07-24 22:29 . 2008-07-24 22:29 <DIR> d-------- C:\VundoFix Backups
2008-07-24 18:25 . 2008-07-24 18:25 <DIR> d-------- C:\Program Files\Windows Defender
2008-07-24 17:20 . 2008-07-29 09:53 <DIR> d-------- C:\Program Files\McAfee.com
2008-07-24 17:20 . 2008-07-24 17:26 <DIR> d-------- C:\Program Files\McAfee
2008-07-24 17:20 . 2008-07-29 09:54 <DIR> d-------- C:\Program Files\Common Files\McAfee
2008-07-22 10:59 . 2008-07-22 10:59 <DIR> d-------- C:\WINDOWS\McAfee.com
2008-07-17 12:13 . 2008-07-17 12:14 <DIR> d-------- C:\Program Files\Dell Support Center
2008-07-17 09:36 . 2008-07-17 09:36 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-07-17 09:36 . 2008-07-17 09:36 1,409 --a------ C:\WINDOWS\QTFont.for
2008-07-17 08:05 . 2008-07-17 08:12 <DIR> d-------- C:\WINDOWS\system32\aumsDK01
2008-07-17 08:05 . 2008-07-17 08:05 <DIR> d-------- C:\Temp\zpv201
2008-07-17 08:05 . 2008-07-17 08:05 <DIR> d-------- C:\Temp
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-08-09 11:19 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater
2008-08-09 11:15 --------- d-----w C:\Program Files\YPOPs
2008-08-08 11:37 --------- d-----w C:\Documents and Settings\All Users\Application Data\Viewpoint
2008-08-08 11:36 --------- d-----w C:\Documents and Settings\Kenneth L. James II\Application Data\Lavasoft
2008-08-07 21:31 --------- d-----w C:\Program Files\Google
2008-08-07 21:23 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-08-07 21:12 --------- d-----w C:\Program Files\Common Files\SupportSoft
2008-08-07 21:12 --------- d-----w C:\Documents and Settings\All Users\Application Data\SupportSoft
2008-07-29 13:01 --------- d-----w C:\Program Files\Yahoo!
2008-07-29 13:01 --------- d-----w C:\Documents and Settings\All Users\Application Data\Yahoo!
2008-07-29 12:56 --------- d-----w C:\Program Files\Jasc Software Inc
2008-07-24 22:29 --------- d-----w C:\Documents and Settings\All Users\Application Data\Dell
2008-07-24 21:27 --------- d-----w C:\Documents and Settings\All Users\Application Data\McAfee
2008-07-24 21:00 --------- d-----w C:\Program Files\Symantec
2008-07-23 22:07 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2008-07-23 22:03 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-07-22 15:04 --------- d-----w C:\Program Files\ComcastToolbar
2008-07-22 15:04 --------- d-----w C:\Documents and Settings\Kenneth L. James II\Application Data\ComcastToolbar
2008-07-05 12:59 --------- d-----w C:\Documents and Settings\All Users\Application Data\Comcast
2008-06-20 17:46 245,248 ----a-w C:\WINDOWS\system32\mswsock.dll
2008-06-20 17:46 245,248 ------w C:\WINDOWS\system32\dllcache\mswsock.dll
2008-06-20 17:46 147,968 ------w C:\WINDOWS\system32\dllcache\dnsapi.dll
2008-06-20 11:51 361,600 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
2008-06-20 11:51 361,600 ------w C:\WINDOWS\system32\dllcache\tcpip.sys
2008-06-20 11:40 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys
2008-06-20 11:40 138,496 ------w C:\WINDOWS\system32\dllcache\afd.sys
2008-06-20 11:08 225,856 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
2008-06-20 11:08 225,856 ------w C:\WINDOWS\system32\dllcache\tcpip6.sys
2008-06-13 12:19 --------- d-----w C:\Documents and Settings\Kristin\Application Data\COMCASTTOOLBAR
2008-06-13 12:18 --------- d-----w C:\Documents and Settings\Kristin\Application Data\Yahoo!
2008-06-13 11:05 272,128 ----a-w C:\WINDOWS\system32\drivers\bthport.sys
2008-06-13 11:05 272,128 ------w C:\WINDOWS\system32\dllcache\bthport.sys
2008-06-01 13:38 47,360 ----a-w C:\Documents and Settings\Kenneth L. James II\Application Data\pcouffin.sys
2008-05-09 23:23 135,168 ----a-w C:\WINDOWS\system32\SET55.tmp
2008-05-09 10:53 90,112 ----a-w C:\WINDOWS\system32\wshext.dll
2008-05-09 10:53 90,112 ------w C:\WINDOWS\system32\dllcache\wshext.dll
2008-05-09 10:53 512,000 ----a-w C:\WINDOWS\system32\SET5B.tmp
2008-05-09 10:53 512,000 ------w C:\WINDOWS\system32\dllcache\jscript.dll
2008-05-09 10:53 430,080 ----a-w C:\WINDOWS\system32\SET58.tmp
2008-05-09 10:53 430,080 ------w C:\WINDOWS\system32\dllcache\vbscript.dll
2008-05-09 10:53 180,224 ----a-w C:\WINDOWS\system32\scrobj.dll
2008-05-09 10:53 180,224 ------w C:\WINDOWS\system32\dllcache\scrobj.dll
2008-05-09 10:53 172,032 ----a-w C:\WINDOWS\system32\SET59.tmp
2008-05-09 10:53 172,032 ------w C:\WINDOWS\system32\dllcache\scrrun.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
2008-06-02 16:56 160496 --a------ C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-13 20:12 15360]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2008-05-28 10:33 1506544]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-06-16 07:03 221184]
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [2004-06-16 07:03 81920]
"igfxtray"="C:\WINDOWS\system32\igfxtray.exe" [2005-09-20 10:35 94208]
"igfxhkcmd"="C:\WINDOWS\system32\hkcmd.exe" [2005-09-20 10:32 77824]
"igfxpers"="C:\WINDOWS\system32\igfxpers.exe" [2005-09-20 10:36 114688]
"Auto EPSON Stylus CX3800 Series on DADS"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE" [2005-02-07 15:00 98304]
"HPDJ Taskbar Utility"="C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe" [2004-06-21 13:40 172032]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2006-11-03 19:20 866584]
"mcagent_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe" [2007-11-01 19:12 582992]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 04:27 144784]
"DellSupportCenter"="C:\Program Files\Dell Support Center\bin\sprtcmd.exe" [2007-11-15 09:23 202544]
C:\Documents and Settings\Kenneth L. James II\Start Menu\Programs\Startup\
YPOPs.lnk - C:\Program Files\YPOPs\YPOPs.exe [2008-07-28 23:03:26 1327104]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2008-04-23 03:38:16 29696]
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2003-08-29 16:33:24 499779]
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "C:\Program Files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 10:13 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"MSACM.CEGSM"= mobilev.acm
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Google Updater.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Google Updater.lnk
backup=C:\WINDOWS\pss\Google Updater.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Image Zone Fast Start.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Image Zone Fast Start.lnk
backup=C:\WINDOWS\pss\HP Image Zone Fast Start.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Kodak EasyShare software.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Kodak EasyShare software.lnk
backup=C:\WINDOWS\pss\Kodak EasyShare software.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Kodak software updater.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Kodak software updater.lnk
backup=C:\WINDOWS\pss\Kodak software updater.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^QuickBooks Update Agent.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
backup=C:\WINDOWS\pss\QuickBooks Update Agent.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupport]
--a------ 2007-03-15 11:09 460784 C:\Program Files\DellSupport\DSAgnt.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupportCenter]
--a------ 2007-11-15 09:23 202544 C:\Program Files\Dell Support Center\bin\sprtcmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dscactivate]
--a------ 2007-11-15 09:24 16384 C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\H/PC Connection Agent]
--a------ 2002-01-08 12:24 401496 C:\Program Files\Microsoft ActiveSync\wcescomm.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager]
--a--c--- 2004-05-12 15:18 241664 C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
--a--c--- 2004-02-12 13:38 49152 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
---hs---- 2008-04-13 20:12 1695232 C:\Program Files\Messenger\msmsgs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2001-07-09 11:50 155648 C:\WINDOWS\system32\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2005-08-23 11:42 98304 C:\Program Files\QuickTime\qttask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RealTray]
--a------ 2005-08-23 11:42 26112 C:\Program Files\Real\RealPlayer\realplay.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
--a------ 2004-10-14 20:42 1404928 C:\Program Files\Analog Devices\Core\smax4pnp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\AIM\\aim.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"=
"C:\\Program Files\\Common Files\\McAfee\\MNA\\McNASvc.exe"=
R2 SVKP;SVKP;C:\WINDOWS\system32\SVKP.sys [2006-08-20 16:20]
R3 uscsc108;uscsc108;C:\WINDOWS\system32\DRIVERS\uscsc108.sys [2003-03-09 19:41]
*Newly Created Service* - CATCHME
*Newly Created Service* - PROCEXP90
.
Contents of the 'Scheduled Tasks' folder
2008-08-06 C:\WINDOWS\Tasks\dfrg.job
- C:\WINDOWS\system32\dfrg.msc [2004-08-04 06:00]
2008-07-24 C:\WINDOWS\Tasks\McDefragTask.job
- c:\PROGRA~1\mcafee\mqc\QcConsol.exe [2007-12-04 13:32]
2008-08-01 C:\WINDOWS\Tasks\McQcTask.job
- c:\PROGRA~1\mcafee\mqc\QcConsol.exe [2007-12-04 13:32]
2008-08-09 C:\WINDOWS\Tasks\MP Scheduled Scan.job
- C:\Program Files\Windows Defender\MpCmdRun.exe [2006-11-03 19:20]
.
- - - - ORPHANS REMOVED - - - -
MSConfigStartUp-OCAudioIni - C:\Program Files\One-click Audio Converter\OCAudioIni.exe
MSConfigStartUp-xloadnet - C:\Program Files\xloadnet\xloadnet.exe
.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Documents and Settings\Kenneth L. James II\Application Data\Mozilla\Firefox\Profiles\jercr24b.default\
FF -: plugin - C:\Program Files\Adobe\Acrobat 7.0\Reader\browser\nppdf32.dll
FF -: plugin - C:\Program Files\Google\Google Updater\2.2.1172.2021\npCIDetect11.dll
FF -: plugin - C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-08-09 07:36:35
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-08-09 7:39:02
ComboFix-quarantined-files.txt 2008-08-09 11:38:15
Pre-Run: 5,340,323,840 bytes free
Post-Run: 5,661,806,592 bytes free
264 --- E O F --- 2008-08-09 11:27:30