Pending: Help - Dont know where to post this thread -

[seawright217]

I dont know what the deal is... I did exactly what you said and my logs are still showing up the same....

[chiaz]

All right, don't worry about it.

Carry on with my instructions here:
http://www.pchelpforum.com/progress-...tml#post387264

[seawright217]

Ok im all set. Combofix seems to have fixed everything

[chiaz]

I would highly suggest you post all the information that I requested - that would allow us to determine whether your system is really clean.

[seawright217]

I will be posting the logs again shortly... my computer apparently isnt fully clean. I ran malwarebytes,combofix, scanned with avast antivirus. Logs coming soon.

[seawright217]

ComboFix 09-07-05.04 - Anthony 07/06/2009 11:20.4 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.514 [GMT -4:00]
Running from: c:\documents and settings\Anthony\Desktop\ComboFix.exe
AV: avast! antivirus 4.8.1335 [VPS 090705-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: COMODO Firewall Pro *enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}
FW: Outpost Firewall Pro *enabled* {8A20CA2A-9E02-4A64-923B-0A38208EB7FD}
.

((((((((((((((((((((((((( Files Created from 2009-06-06 to 2009-07-06 )))))))))))))))))))))))))))))))
.

2009-07-03 02:40 . 2009-07-03 17:07 -------- d-----w- c:\documents and settings\Anthony\Application Data\CoreFTP
2009-07-03 02:39 . 2009-07-03 02:39 -------- d-----w- c:\program files\CoreFTP
2009-07-01 16:50 . 2009-07-01 16:50 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Apple
2009-06-29 23:31 . 2009-06-29 23:31 -------- d-----w- c:\documents and settings\All Users\Application Data\Ashampoo
2009-06-29 23:30 . 2009-01-09 16:46 39776 ----a-w- c:\windows\system32\DfSdkBt64.exe
2009-06-29 23:30 . 2009-01-09 16:46 33632 ----a-w- c:\windows\system32\DfSdkBt.exe
2009-06-29 23:30 . 2009-06-29 23:30 -------- d-----w- c:\program files\Ashampoo
2009-06-29 23:08 . 2009-02-26 14:27 704384 ----a-w- c:\windows\system32\drivers\SandBox.sys
2009-06-29 23:08 . 2009-02-10 20:15 257432 ----a-w- c:\windows\system32\drivers\afwcore.sys
2009-06-29 23:07 . 2008-06-20 13:45 30864 ----a-w- c:\windows\system32\drivers\afw.sys
2009-06-29 23:07 . 2009-07-05 22:12 -------- d-----w- c:\windows\system32\Filt
2009-06-29 23:07 . 2009-06-29 23:07 -------- d-----w- c:\documents and settings\All Users\Application Data\Agnitum
2009-06-29 23:06 . 2009-07-06 04:01 -------- d-----w- c:\windows\system32\LogFiles
2009-06-29 22:51 . 2009-06-29 23:14 -------- d-----w- c:\program files\Agnitum
2009-06-29 19:34 . 2009-07-03 01:02 -------- d-----w- c:\program files\iDump (Freeware)
2009-06-29 19:17 . 2009-06-29 19:17 -------- d-----w- c:\documents and settings\Anthony\Application Data\Media Player Classic
2009-06-28 13:50 . 2009-02-05 20:06 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2009-06-28 13:50 . 2009-02-05 20:06 51376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2009-06-28 13:50 . 2009-02-05 20:05 26944 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2009-06-28 13:50 . 2009-02-05 20:08 93296 ----a-w- c:\windows\system32\drivers\aswmon.sys
2009-06-28 13:50 . 2009-02-05 20:08 94032 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2009-06-28 13:50 . 2009-02-05 20:07 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys
2009-06-28 13:50 . 2009-02-05 20:07 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2009-06-28 13:50 . 2009-02-05 20:04 97480 ----a-w- c:\windows\system32\AvastSS.scr
2009-06-28 13:50 . 2009-02-05 20:11 1256296 ----a-w- c:\windows\system32\aswBoot.exe
2009-06-28 05:05 . 2009-06-28 05:05 -------- d-----w- c:\windows\system32\scripting
2009-06-28 05:05 . 2009-06-28 05:05 -------- d-----w- c:\windows\l2schemas
2009-06-28 05:05 . 2009-06-28 05:05 -------- d-----w- c:\windows\system32\en
2009-06-28 05:05 . 2009-06-28 05:05 -------- d-----w- c:\windows\system32\bits
2009-06-28 04:57 . 2009-06-28 05:05 -------- d-----w- c:\windows\ServicePackFiles
2009-06-28 04:09 . 2008-04-14 00:12 50176 ----a-w- c:\windows\system32\proquota.exe
2009-06-28 04:05 . 2009-06-28 04:05 -------- d-----w- c:\documents and settings\Anthony\Local Settings\Application Data\ESET
2009-06-28 01:46 . 2009-06-28 01:49 -------- d-----w- c:\program files\trend micro
2009-06-28 01:46 . 2009-06-28 01:51 -------- d-----w- C:\rsit
2009-06-28 00:15 . 2009-06-28 00:15 -------- d-----w- c:\documents and settings\All Users\Application Data\ESET
2009-06-27 19:54 . 2009-06-27 19:54 -------- d-----w- c:\documents and settings\Administrator\Application Data\Comodo
2009-06-27 02:06 . 2009-06-27 02:07 -------- d-----w- c:\program files\QuickTime
2009-06-26 23:44 . 2009-06-26 23:44 -------- d-----w- c:\documents and settings\Anthony\Application Data\vlc
2009-06-26 21:51 . 2009-07-05 02:18 -------- d-----w- c:\documents and settings\Anthony\Application Data\BitTorrent
2009-06-26 21:50 . 2009-06-26 21:50 -------- d-----w- c:\documents and settings\Anthony\Local Settings\Application Data\DNA
2009-06-26 21:50 . 2009-06-28 13:51 -------- d-----w- c:\documents and settings\Anthony\Application Data\DNA
2009-06-26 21:50 . 2009-06-28 07:10 -------- d-----w- c:\program files\DNA
2009-06-26 21:50 . 2009-06-26 21:50 -------- d-----w- c:\program files\BitTorrent
2009-06-26 21:02 . 2008-10-16 18:06 268648 ----a-w- c:\windows\system32\mucltui.dll
2009-06-26 21:02 . 2008-10-16 18:06 208744 ----a-w- c:\windows\system32\muweb.dll
2009-06-26 03:52 . 2009-06-26 03:52 -------- d-----w- c:\documents and settings\Anthony\Application Data\acccore
2009-06-26 03:51 . 2009-06-26 03:51 -------- d-----w- c:\documents and settings\Anthony\Local Settings\Application Data\AOL OCP
2009-06-26 03:51 . 2009-06-26 03:51 -------- d-----w- c:\documents and settings\Anthony\Local Settings\Application Data\AOL
2009-06-26 03:51 . 2009-06-26 03:51 -------- d-----w- c:\documents and settings\All Users\Application Data\Viewpoint
2009-06-26 03:51 . 2009-06-26 03:51 -------- d-----w- c:\program files\Viewpoint
2009-06-26 03:51 . 2009-06-26 03:51 -------- d-----w- c:\documents and settings\All Users\Application Data\acccore
2009-06-26 03:51 . 2009-06-26 03:52 -------- d-----w- c:\documents and settings\All Users\Application Data\AOL OCP
2009-06-26 03:51 . 2009-06-26 03:51 -------- d-----w- c:\documents and settings\All Users\Application Data\AOL
2009-06-26 03:50 . 2009-06-26 03:50 -------- d-----w- c:\program files\Common Files\AOL
2009-06-26 03:50 . 2009-06-26 03:51 -------- d-----w- c:\program files\AIM6
2009-06-26 03:41 . 2009-07-06 14:48 -------- d-----w- c:\documents and settings\Anthony\Tracing
2009-06-26 03:41 . 2009-06-26 03:41 -------- d-----w- c:\program files\Microsoft
2009-06-26 03:39 . 2009-06-26 03:39 -------- d-----w- c:\program files\Windows Live SkyDrive
2009-06-26 03:39 . 2009-06-26 03:40 -------- d-----w- c:\program files\Windows Live
2009-06-26 03:36 . 2009-06-26 03:36 -------- d-----w- c:\program files\Common Files\Windows Live
2009-06-26 03:22 . 2009-06-26 03:22 105731 ----a-w- c:\documents and settings\Anthony\Application Data\NoNameScript\nnuninstall.exe
2009-06-26 03:22 . 2009-07-06 06:04 -------- d-----w- c:\documents and settings\Anthony\Application Data\NoNameScript
2009-06-26 03:22 . 2009-06-26 03:22 -------- d-----w- c:\documents and settings\Anthony\Application Data\mIRC
2009-06-26 03:22 . 2009-07-06 06:03 -------- d-----w- c:\program files\mIRC
2009-06-26 02:15 . 2009-06-28 13:50 -------- d-----w- c:\program files\Alwil Software
2009-06-26 01:54 . 2009-06-26 01:54 -------- d-----w- c:\program files\VideoLAN
2009-06-26 01:40 . 2009-06-26 01:40 -------- d-----w- c:\program files\CCleaner
2009-06-26 01:31 . 2008-08-20 17:58 9200 ------w- c:\windows\system32\drivers\cdralw2k.sys
2009-06-26 01:24 . 2005-12-13 21:40 135168 ----a-w- c:\windows\system32\igfxres.dll
2009-06-26 00:52 . 2008-10-15 16:34 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2009-06-26 00:43 . 2008-04-14 00:12 76800 ------w- c:\windows\system32\qutil.dll
2009-06-26 00:42 . 2008-04-14 00:11 61440 ------w- c:\windows\system32\kmsvc.dll
2009-06-26 00:41 . 2008-04-14 00:11 94208 ------w- c:\windows\system32\eappgnui.dll
2009-06-25 22:47 . 2009-06-25 22:47 -------- d-----w- c:\documents and settings\Administrator\Application Data\Malwarebytes
2009-06-25 22:44 . 2009-07-06 03:22 117760 ----a-w- c:\documents and settings\Administrator\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\ UIREPAIR.DLL
2009-06-25 22:43 . 2009-06-25 22:43 -------- d-----w- c:\documents and settings\Administrator\Application Data\SUPERAntiSpyware.com
2009-06-25 17:09 . 2009-06-28 07:15 117760 ----a-w- c:\documents and settings\Anthony\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\ UIREPAIR.DLL
2009-06-25 17:07 . 2009-06-25 17:07 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2009-06-25 17:05 . 2009-06-26 00:26 -------- d-----w- c:\program files\SUPERAntiSpyware
2009-06-25 17:05 . 2009-06-25 17:05 -------- d-----w- c:\documents and settings\Anthony\Application Data\SUPERAntiSpyware.com
2009-06-25 17:04 . 2009-06-25 17:04 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-06-25 08:13 . 2009-06-25 08:13 0 ----a-w- c:\windows\nsreg.dat
2009-06-25 08:12 . 2009-06-25 08:12 -------- d-----w- c:\documents and settings\Anthony\Local Settings\Application Data\Mozilla
2009-06-25 07:18 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2009-06-25 07:16 . 2009-03-06 14:22 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2009-06-25 07:16 . 2009-02-09 12:10 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2009-06-25 07:16 . 2009-02-06 11:11 110592 -c----w- c:\windows\system32\dllcache\services.exe
2009-06-25 07:16 . 2009-02-09 12:10 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2009-06-25 07:16 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2009-06-25 07:16 . 2009-02-09 12:10 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2009-06-25 07:15 . 2009-02-09 12:10 729088 -c----w- c:\windows\system32\dllcache\lsasrv.dll
2009-06-25 07:15 . 2009-02-09 12:10 617472 -c----w- c:\windows\system32\dllcache\advapi32.dll
2009-06-25 07:15 . 2009-02-09 12:10 714752 -c----w- c:\windows\system32\dllcache\ntdll.dll
2009-06-25 07:15 . 2009-02-06 11:06 2145280 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2009-06-25 07:15 . 2009-02-06 11:08 2189056 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2009-06-25 07:15 . 2009-02-06 10:32 2023936 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2009-06-25 07:10 . 2008-06-13 11:05 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2009-06-25 07:10 . 2008-06-13 11:05 272128 ------w- c:\windows\system32\drivers\bthport.sys
2009-06-25 07:08 . 2008-10-24 11:21 455296 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2009-06-25 07:08 . 2008-12-11 10:57 333952 -c----w- c:\windows\system32\dllcache\srv.sys
2009-06-25 07:08 . 2008-04-11 19:04 691712 -c----w- c:\windows\system32\dllcache\inetcomm.dll
2009-06-25 07:07 . 2008-05-03 11:55 2560 ------w- c:\windows\system32\xpsp4res.dll
2009-06-25 07:07 . 2008-04-21 12:08 215552 -c----w- c:\windows\system32\dllcache\wordpad.exe
2009-06-25 07:06 . 2009-06-28 22:20 15248 ----a-w- c:\documents and settings\Anthony\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-06-25 06:47 . 2009-06-25 06:47 -------- d-----w- c:\program files\ATI Technologies
2009-06-25 06:46 . 2009-06-25 06:46 -------- d-----w- c:\documents and settings\Anthony\Application Data\Malwarebytes
2009-06-25 06:45 . 2009-06-17 15:27 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-06-25 06:45 . 2009-06-25 06:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-06-25 06:45 . 2009-06-17 15:27 19096 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-06-25 06:45 . 2009-06-25 06:46 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-06-25 06:42 . 2006-08-17 15:55 44544 ----a-r- c:\windows\system32\drivers\bcm4sbxp.sys
2009-06-25 06:42 . 2009-06-25 06:42 -------- d-----w- c:\program files\Broadcom
2009-06-25 06:41 . 2006-03-08 19:49 69723 ----a-w- c:\windows\system32\SynTPFcs.dll
2009-06-25 06:41 . 2009-06-25 06:41 -------- d-----w- c:\program files\Synaptics
2009-06-25 06:41 . 2006-03-08 19:51 81920 ----a-w- c:\windows\system32\SynTPCo2.dll
2009-06-25 06:41 . 2006-03-08 19:38 94299 ----a-w- c:\windows\system32\SynTPAPI.dll
2009-06-25 06:41 . 2006-03-08 19:38 114688 ----a-w- c:\windows\system32\SynCtrl.dll
2009-06-25 06:41 . 2006-03-08 19:37 82014 ----a-w- c:\windows\system32\SynCOM.dll
2009-06-25 06:41 . 2006-03-08 19:35 191872 ----a-w- c:\windows\system32\drivers\SynTP.sys
2009-06-25 06:40 . 2009-06-25 06:40 -------- d-----w- c:\program files\AMD
2009-06-25 06:39 . 2008-04-13 18:45 6272 ----a-w- c:\windows\system32\drivers\splitter.sys
2009-06-25 06:37 . 2009-06-25 06:37 -------- d-----w- c:\program files\SigmaTel
2009-06-25 06:37 . 2006-07-27 21:24 1171464 ----a-w- c:\windows\system32\drivers\sthda.sys
2009-06-25 06:37 . 2006-07-27 21:20 225280 ----a-w- c:\windows\system32\stacapi.dll
2009-06-25 06:37 . 2009-06-25 06:37 552 ----a-w- c:\windows\system32\d3d8caps.dat

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2009-06-29 19:16 . 2009-06-29 19:14 -------- d-----w- c:\program files\K-Lite Codec Pack
2009-06-28 05:09 . 2009-06-25 05:43 87747 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-06-27 20:38 . 2009-06-25 04:34 -------- d-----w- c:\program files\COMODO
2009-06-27 01:46 . 2009-06-27 01:42 -------- d-----w- c:\documents and settings\Anthony\Application Data\Apple Computer
2009-06-27 01:41 . 2009-06-27 01:41 -------- d-----w- c:\program files\iTunes
2009-06-27 01:41 . 2009-06-27 01:41 -------- d-----w- c:\documents and settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-06-27 01:41 . 2009-06-27 01:41 -------- d-----w- c:\program files\iPod
2009-06-27 01:41 . 2009-06-27 01:38 -------- d-----w- c:\program files\Common Files\Apple
2009-06-27 01:41 . 2009-06-27 01:40 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer
2009-06-27 01:40 . 2009-06-27 01:40 -------- d-----w- c:\program files\Bonjour
2009-06-27 01:39 . 2009-06-27 01:39 -------- d-----w- c:\program files\Apple Software Update
2009-06-27 01:38 . 2009-06-27 01:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple
2009-06-26 06:11 . 2009-06-26 01:30 -------- d-----w- c:\documents and settings\Anthony\Application Data\Winamp
2009-06-26 01:31 . 2009-06-26 01:30 -------- d-----w- c:\program files\Winamp
2009-06-25 22:38 . 2009-06-25 05:25 -------- d-----w- c:\documents and settings\All Users\Application Data\avg8
2009-06-25 16:48 . 2009-06-25 05:08 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2009-06-25 06:38 . 2009-06-25 06:38 -------- d-----w- c:\program files\CONEXANT
2009-06-25 05:46 . 2009-06-25 05:46 -------- d-----w- c:\program files\microsoft frontpage
2009-06-25 05:37 . 2009-06-25 05:37 21640 ----a-w- c:\windows\system32\emptyregdb.dat
2009-06-25 05:36 . 2009-06-25 05:35 -------- d-----w- c:\program files\Windows Plus
2009-06-25 05:25 . 2009-06-25 05:25 -------- d-----w- c:\program files\AVG
2009-06-25 04:35 . 2009-06-25 04:35 249592 ----a-w- c:\windows\system32\cssdll32.dll
2009-06-25 04:35 . 2009-06-25 04:35 -------- d-----w- c:\program files\AskSBar
2009-06-25 04:34 . 2009-06-25 04:34 -------- d-----w- c:\documents and settings\Anthony\Application Data\Comodo
2009-06-25 04:23 . 2009-06-25 04:23 -------- d-----w- c:\program files\7-Zip
2009-06-05 17:57 . 2009-06-05 17:57 75048 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 8.2.0.23\SetupAdmin.exe
2009-06-02 16:11 . 2009-06-29 19:14 85504 ----a-w- c:\windows\system32\ff_vfw.dll
2009-05-29 21:37 . 2009-06-29 19:14 205824 ----a-w- c:\windows\system32\xvidvfw.dll
2009-05-29 21:31 . 2009-06-29 19:14 881664 ----a-w- c:\windows\system32\xvidcore.dll
2009-05-07 15:32 . 2004-08-10 11:00 345600 ----a-w- c:\windows\system32\localspl.dll
2009-05-01 21:02 . 2009-06-29 19:14 90112 ----a-w- c:\windows\system32\dpl100.dll
2009-05-01 21:02 . 2009-06-29 19:14 685056 ----a-w- c:\windows\system32\divx.dll
2009-04-29 04:46 . 2006-03-04 03:33 666624 ----a-w- c:\windows\system32\wininet.dll
2009-04-29 04:46 . 2004-08-10 11:00 81920 ----a-w- c:\windows\system32\ieencode.dll
2009-04-17 12:26 . 2004-08-10 11:00 1847168 ----a-w- c:\windows\system32\win32k.sys
2009-04-15 14:51 . 2004-08-10 11:00 585216 ----a-w- c:\windows\system32\rpcrt4.dll
.

((((((((((((((((((((((((((((( SnapShot_2009-07-04_15.15.15 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-06 14:45 . 2009-07-06 14:45 16384 c:\windows\temp\Perflib_Perfdata_704.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]
"Aim6"="c:\program files\AIM6\aim6.exe" [2009-05-19 49968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2005-12-19 1347584]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2005-12-13 98304]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-12-13 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2005-12-13 118784]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-06-05 292136]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp. exe" [2009-02-05 81000]
"OutpostMonitor"="c:\progra~1\Agnitum\OUTPOS~2\op_ mon.exe" [2009-03-02 1225032]
"OutpostFeedBack"="c:\program files\Agnitum\Outpost Firewall Pro\feedback.exe" [2009-03-02 433480]
"SigmatelSysTrayApp"="stsystra.exe" - c:\windows\stsystra.exe [2006-07-27 282624]

[hkey_local_machine\software\microsoft\windows\curr entversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-12-22 16:05 356352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll

[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\mIRC\\mirc.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"c:\\Program Files\\AIM6\\aim6.exe"=
"c:\\Program Files\\BitTorrent\\bittorrent.exe"=
"c:\\Program Files\\DNA\\btdna.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpo licy\standardprofile\GloballyOpenPorts\List]
"8085:TCP"= 8085:TCP:sys

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [6/28/2009 9:50 AM 114768]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [6/23/2009 11:01 AM 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [6/23/2009 11:01 AM 72944]
R2 acssrv;Agnitum Client Security Service;c:\progra~1\Agnitum\OUTPOS~2\acs.exe [6/29/2009 7:07 PM 1267016]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswF sBlk.sys [6/28/2009 9:50 AM 20560]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\Viewpoint\Common\ViewpointService.exe [6/25/2009 11:51 PM 24652]
R3 afw;Agnitum firewall driver;c:\windows\system32\drivers\afw.sys [6/29/2009 7:07 PM 30864]
R3 afwcore;afwcore;c:\windows\system32\drivers\afwcor e.sys [6/29/2009 7:08 PM 257432]
S3 ASWFilt;ASWFilt;c:\windows\system32\Filt\ASWFilt.d ll [6/29/2009 7:08 PM 33888]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [6/23/2009 11:01 AM 7408]
.
Contents of the 'Scheduled Tasks' folder

2009-07-01 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 16:34]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://google.com/
uInternet Settings,ProxyOverride = *.local
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
FF - ProfilePath - c:\documents and settings\Anthony\Application Data\Mozilla\Firefox\Profiles\hsmawaci.default\
FF - prefs.js: browser.startup.homepage - Google
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npbittorrent.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npViewpoint.dll
FF - plugin: c:\program files\Viewpoint\Viewpoint Media Player\npViewpoint.dll
.

************************************************** ************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2009-07-06 11:23
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

************************************************** ************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(1272)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
c:\windows\System32\BCMLogon.dll
.
Completion time: 2009-07-06 11:25
ComboFix-quarantined-files.txt 2009-07-06 15:25
ComboFix2.txt 2009-07-04 15:17
ComboFix3.txt 2009-06-29 18:53
ComboFix4.txt 2009-06-28 04:16

Pre-Run: 49,630,560,256 bytes free
Post-Run: 49,645,957,120 bytes free

271 --- E O F --- 2009-06-29 07:03

[seawright217]

Malwarebytes' Anti-Malware 1.38
Database version: 2372
Windows 5.1.2600 Service Pack 3

7/6/2009 11:34:55 AM
mbam-log-2009-07-06 (11-34-55).txt

Scan type: Quick Scan
Objects scanned: 88810
Time elapsed: 5 minute(s), 20 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)