Need some help cleaning my laptop

**Danilo-11** · 2008-01-23, 21:30

Here's the OTMoveIt:

File/Folder C:\WINDOWS\plite731.exe not found.
File/Folder C:\Documents and Settings\Daniel\Local Settings\Temp\T0CHD001.exe not found.
File/Folder C:\Program Files\MalwareAlarm not found.

Created on 01-23-2008 13:52:25

Here's the ComboFix:

ComboFix 08-01-23.2 - Daniel 2008-01-23 13:57:13.3 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.196 [GMT -6:00]
Running from: C:\Documents and Settings\Daniel\Desktop\ComboFix.exe
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
C:\Documents and Settings\All Users\Application Data\ErrorProtector Free
C:\Documents and Settings\All Users\Application Data\ErrorProtector Free\Data\Abbr
C:\Documents and Settings\All Users\Application Data\ErrorProtector Free\Data\ActivationCode
C:\Documents and Settings\All Users\Application Data\ErrorProtector Free\Data\HOURS
C:\Documents and Settings\All Users\Application Data\ErrorProtector Free\Data\ProductCode
C:\Documents and Settings\Daniel\My Documents\YMBOLS~1
C:\Documents and Settings\Daniel\Start Menu\Programs\Internet Speed Monitor
C:\Documents and Settings\Daniel\Start Menu\Programs\Internet Speed Monitor\Check Now.lnk
C:\Documents and Settings\Daniel\Start Menu\Programs\Internet Speed Monitor\Uninstall.lnk
C:\Program Files\ISM2
C:\Program Files\ISM2\cringupd.exe
C:\Program Files\ISM2\dictionary.gz
C:\Program Files\ISM2\hydramedupd.exe
C:\Program Files\ISM2\ISMPack6.exe
C:\Program Files\ISM2\ISMPack8.exe
C:\Program Files\ISM2\targets.gz
C:\WINDOWS\7search.dll
C:\WINDOWS\acontidialer.txt
C:\WINDOWS\adbar.dll
C:\WINDOWS\cbinst$.exe
C:\WINDOWS\cookies.ini
C:\WINDOWS\daxtime.dll
C:\WINDOWS\default.htm
C:\WINDOWS\dp0.dll
C:\WINDOWS\eventlowg.dll
C:\WINDOWS\fhfmm-Uninstaller.exe
C:\WINDOWS\fhfmm.exe
C:\WINDOWS\flt.dll
C:\WINDOWS\frexup3.exe
C:\WINDOWS\jd2002.dll
C:\WINDOWS\kkcomp$.exe
C:\WINDOWS\kkcomp.dll
C:\WINDOWS\kkcomp.exe
C:\WINDOWS\liqad$.exe
C:\WINDOWS\liqad.dll
C:\WINDOWS\liqad.exe
C:\WINDOWS\liqui-Uninstaller.exe
C:\WINDOWS\liqui.dll
C:\WINDOWS\liqui.exe
C:\WINDOWS\ngd.dll
C:\WINDOWS\pbar.dll
C:\WINDOWS\spredirect.dll
C:\WINDOWS\system32\ace16win.dll
C:\WINDOWS\system32\acespy
C:\WINDOWS\system32\acespy\__acelog.ndx
C:\WINDOWS\system32\acespy\systune.exe
C:\WINDOWS\system32\ankxlapu.dll
C:\WINDOWS\system32\atdetpak.dll
C:\WINDOWS\system32\axxckikv.dll
C:\WINDOWS\system32\bdpbwdds.ini
C:\WINDOWS\system32\caswgfen.ini
C:\WINDOWS\system32\cfcgfqrw.ini
C:\WINDOWS\system32\cqqsvwqx.dll
C:\WINDOWS\system32\d3
C:\WINDOWS\system32\din.ip
C:\WINDOWS\system32\dlbmipww.ini
C:\WINDOWS\system32\dmqjmfeu.ini
C:\WINDOWS\system32\dpqaqlqx.bin
C:\WINDOWS\system32\drivers\bg_bg.gif
C:\WINDOWS\system32\drivers\blank.gif
C:\WINDOWS\system32\drivers\box_1.gif
C:\WINDOWS\system32\drivers\box_2.gif
C:\WINDOWS\system32\drivers\box_3.gif
C:\WINDOWS\system32\drivers\button_buynow.gif
C:\WINDOWS\system32\drivers\button_freescan.gif
C:\WINDOWS\system32\drivers\cell_bg.gif
C:\WINDOWS\system32\drivers\cell_footer.gif
C:\WINDOWS\system32\drivers\cell_header_block.gif
C:\WINDOWS\system32\drivers\cell_header_remove.gif
C:\WINDOWS\system32\drivers\cell_header_scan.gif
C:\WINDOWS\system32\drivers\close_ico.gif
C:\WINDOWS\system32\drivers\detect.htm
C:\WINDOWS\system32\drivers\download_box.gif
C:\WINDOWS\system32\drivers\download_btn.jpg
C:\WINDOWS\system32\drivers\download_now_btn.gif
C:\WINDOWS\system32\drivers\footer_back.jpg
C:\WINDOWS\system32\drivers\header_1.gif
C:\WINDOWS\system32\drivers\header_2.gif
C:\WINDOWS\system32\drivers\header_3.gif
C:\WINDOWS\system32\drivers\header_4.gif
C:\WINDOWS\system32\drivers\header_red_bg.gif
C:\WINDOWS\system32\drivers\header_red_free_scan.gif
C:\WINDOWS\system32\drivers\header_red_free_scan_bg.gif
C:\WINDOWS\system32\drivers\header_red_protect_your_pc.gif
C:\WINDOWS\system32\drivers\icon_warning_big.gif
C:\WINDOWS\system32\drivers\infected.gif
C:\WINDOWS\system32\drivers\main_back.gif
C:\WINDOWS\system32\drivers\perfect_cleaner_box.jpg
C:\WINDOWS\system32\drivers\product_1_header.gif
C:\WINDOWS\system32\drivers\product_1_name_small.gif
C:\WINDOWS\system32\drivers\product_2_header.gif
C:\WINDOWS\system32\drivers\product_2_name_small.gif
C:\WINDOWS\system32\drivers\product_3_header.gif
C:\WINDOWS\system32\drivers\product_3_name_small.gif
C:\WINDOWS\system32\drivers\product_features.gif
C:\WINDOWS\system32\drivers\pt.htm
C:\WINDOWS\system32\drivers\rating.gif
C:\WINDOWS\system32\drivers\remove_spyware_header.gif
C:\WINDOWS\system32\drivers\s_detect.htm
C:\WINDOWS\system32\drivers\screenshot.jpg
C:\WINDOWS\system32\drivers\sep_hor.gif
C:\WINDOWS\system32\drivers\sep_vert.gif
C:\WINDOWS\system32\drivers\shadow.jpg
C:\WINDOWS\system32\drivers\shadow_bg.gif
C:\WINDOWS\system32\drivers\spacer.gif
C:\WINDOWS\system32\drivers\spy_away_box.jpg
C:\WINDOWS\system32\drivers\spyware_detected.gif
C:\WINDOWS\system32\drivers\star.gif
C:\WINDOWS\system32\drivers\star_gray.gif
C:\WINDOWS\system32\drivers\star_gray_small.gif
C:\WINDOWS\system32\drivers\star_small.gif
C:\WINDOWS\system32\drivers\style.css
C:\WINDOWS\system32\drivers\v.gif
C:\WINDOWS\system32\drivers\warning_ico.gif
C:\WINDOWS\system32\drivers\warning_icon.gif
C:\WINDOWS\system32\drivers\win_logo.gif
C:\WINDOWS\system32\drivers\x.gif
C:\WINDOWS\system32\drivers\yellow_warning_ico.gif
C:\WINDOWS\system32\drvlikr.dll
C:\WINDOWS\system32\drvxigr.dll
C:\WINDOWS\system32\dvqqqhed.dll
C:\WINDOWS\system32\ehiqqpxk.ini
C:\WINDOWS\system32\elgfnqsg.ini
C:\WINDOWS\system32\eqyapnvh.ini
C:\WINDOWS\system32\ESHOPEE.exe
C:\WINDOWS\system32\f22
C:\WINDOWS\system32\ghatqkio.ini
C:\WINDOWS\system32\gpflbitj.dll
C:\WINDOWS\system32\gsjnufwu.dll
C:\WINDOWS\system32\gsqnfgle.dll
C:\WINDOWS\system32\hvnpayqe.dll
C:\WINDOWS\system32\hxmjsydg.dll
C:\WINDOWS\system32\ieahyupn.dll
C:\WINDOWS\system32\iiucvhrm.dll
C:\WINDOWS\system32\ivdktyby.dll
C:\WINDOWS\system32\jdbclbet.dll
C:\WINDOWS\system32\kaptedta.ini
C:\WINDOWS\system32\kbjfcwgn.dll
C:\WINDOWS\system32\kxpqqihe.dll
C:\WINDOWS\system32\lmptnrvv.ini
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\msole32.exe
C:\WINDOWS\system32\mvjnuneq.ini
C:\WINDOWS\system32\nefgwsac.dll
C:\WINDOWS\system32\ngaoiarn.dll
C:\WINDOWS\system32\ngwcfjbk.ini
C:\WINDOWS\system32\niertcrw.ini
C:\WINDOWS\system32\oikqtahg.dll
C:\WINDOWS\system32\orqss.bak1
C:\WINDOWS\system32\orqss.bak2
C:\WINDOWS\system32\orqss.ini
C:\WINDOWS\system32\orqss.ini2
C:\WINDOWS\system32\orqss.tmp
C:\WINDOWS\system32\oTt06e
C:\WINDOWS\system32\oTt08e
C:\WINDOWS\system32\ovhqwxlq.dll
C:\WINDOWS\system32\p8
C:\WINDOWS\system32\pdeansru.dll
C:\WINDOWS\system32\pfcjvhaf.dll
C:\WINDOWS\system32\poprqoko.dll
C:\WINDOWS\system32\qbbvycgx.dll
C:\WINDOWS\system32\qenunjvm.dll
C:\WINDOWS\system32\qmraiivx.dll
C:\WINDOWS\system32\s2
C:\WINDOWS\system32\sddwbpdb.dll
C:\WINDOWS\system32\smjabexx.ini
C:\WINDOWS\system32\smpi1
C:\WINDOWS\system32\stfv.bin
C:\WINDOWS\system32\stlovlde.dll
C:\WINDOWS\system32\suodemev.dll
C:\WINDOWS\system32\sznf.ascii
C:\WINDOWS\system32\tdlmqbvv.dll
C:\WINDOWS\system32\teblcbdj.ini
C:\WINDOWS\system32\txhirdgx.ini
C:\WINDOWS\system32\uefmjqmd.dll
C:\WINDOWS\system32\upalxkna.ini
C:\WINDOWS\system32\ursnaedp.ini
C:\WINDOWS\system32\uwfunjsg.ini
C:\WINDOWS\system32\uyxxftbs.dllbox
C:\WINDOWS\system32\v1
C:\WINDOWS\system32\vemedous.ini
C:\WINDOWS\system32\vidokcco.dll
C:\WINDOWS\system32\vllvgqhy.dll
C:\WINDOWS\system32\vvrntpml.dll
C:\WINDOWS\system32\vxddsk.exe
C:\WINDOWS\system32\whlxplva.dll
C:\WINDOWS\system32\wml.exe
C:\WINDOWS\system32\wqalsmhw.dll
C:\WINDOWS\system32\wrctrein.dll
C:\WINDOWS\system32\wrqfgcfc.dll
C:\WINDOWS\system32\wwpimbld.dll
C:\WINDOWS\system32\xgcyvbbq.ini
C:\WINDOWS\system32\xgdrihxt.dll
C:\WINDOWS\system32\xqwvsqqc.ini
C:\WINDOWS\system32\xviiarmq.ini
C:\WINDOWS\system32\xxebajms.dll
C:\WINDOWS\system32\ybytkdvi.ini
C:\WINDOWS\system32\yhqgvllv.ini
C:\WINDOWS\vxddsk.exe
C:\WINDOWS\wml.exe
C:\WINDOWS\xadbrk.dll
C:\WINDOWS\xadbrk.exe
C:\WINDOWS\xadbrk_.exe
C:\WINDOWS\xxxvideo.exe

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.
-------\LEGACY_DOMAINSERVICE
-------\DomainService

((((((((((((((((((((((((( Files Created from 2007-12-23 to 2008-01-23 )))))))))))))))))))))))))))))))
.

2008-01-22 21:40 . 2008-01-22 21:40 <DIR> d-------- C:\VundoFix Backups
2008-01-22 18:02 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\Nircmd.exe
2008-01-22 17:42 . 2008-01-22 17:42 <DIR> d-------- C:\WINDOWS\ERUNT
2008-01-21 21:03 . 2008-01-21 21:04 <DIR> d-------- C:\Program Files\Irfanview
2008-01-21 20:45 . 1998-07-21 20:29 21 --a------ C:\WINDOWS\Ps_setup.ini
2008-01-17 20:58 . 2008-01-17 20:58 268 --ah----- C:\sqmdata10.sqm
2008-01-17 20:58 . 2008-01-17 20:58 244 --ah----- C:\sqmnoopt10.sqm
2008-01-17 19:20 . 2008-01-17 19:20 268 --ah----- C:\sqmdata09.sqm
2008-01-17 19:20 . 2008-01-17 19:20 244 --ah----- C:\sqmnoopt09.sqm
2008-01-17 19:12 . 2003-09-25 15:39 102,481 --------- C:\WINDOWS\system32\stac97.cpl
2008-01-17 19:11 . 2008-01-17 19:11 <DIR> d-------- C:\Program Files\SigmaTel
2008-01-17 19:11 . 2003-07-17 17:19 230,416 --a------ C:\WINDOWS\system32\drivers\stac97.sys
2008-01-16 00:18 . 2008-01-16 00:18 <DIR> d-------- C:\McAfee
2008-01-16 00:16 . 2008-01-16 00:16 <DIR> d-------- C:\SiteAdvisor
2008-01-16 00:02 . 2008-01-16 00:02 268 --ah----- C:\sqmdata08.sqm
2008-01-16 00:02 . 2008-01-16 00:02 244 --ah----- C:\sqmnoopt08.sqm
2008-01-15 23:59 . 2008-01-15 23:59 <DIR> d-------- C:\Program Files\Realtek
2008-01-15 23:58 . 2005-04-16 22:20 487,424 --a------ C:\WINDOWS\RtlExUpd.dll
2008-01-12 21:37 . 2008-01-12 21:37 268 --ah----- C:\sqmdata07.sqm
2008-01-12 21:37 . 2008-01-12 21:37 244 --ah----- C:\sqmnoopt07.sqm
2008-01-12 17:59 . 2008-01-23 14:02 10,987 --a------ C:\WINDOWS\system32\Config.MPF
2008-01-12 17:57 . 2008-01-16 00:02 <DIR> d-------- C:\Program Files\SiteAdvisor
2008-01-12 17:55 . 2006-03-03 11:07 143,360 --a------ C:\WINDOWS\system32\dunzip32.dll
2008-01-12 17:52 . 2007-07-24 12:02 33,800 --a------ C:\WINDOWS\system32\drivers\mferkdk.sys
2008-01-12 17:51 . 2007-07-21 09:08 201,288 --a------ C:\WINDOWS\system32\drivers\mfehidk.sys
2008-01-12 17:51 . 2007-07-13 09:20 113,952 --a------ C:\WINDOWS\system32\drivers\Mpfp.sys
2008-01-12 17:51 . 2007-07-24 07:40 79,304 --a------ C:\WINDOWS\system32\drivers\mfeavfk.sys
2008-01-12 17:51 . 2007-07-21 09:08 40,488 --a------ C:\WINDOWS\system32\drivers\mfesmfk.sys
2008-01-12 17:51 . 2007-07-21 09:08 35,240 --a------ C:\WINDOWS\system32\drivers\mfebopk.sys
2008-01-12 17:48 . 2008-01-12 17:51 <DIR> d-------- C:\Program Files\Common Files\McAfee
2008-01-12 17:46 . 2008-01-12 17:46 268 --ah----- C:\sqmdata06.sqm
2008-01-12 17:46 . 2008-01-12 17:46 244 --ah----- C:\sqmnoopt06.sqm
2008-01-12 17:30 . 2008-01-12 21:11 <DIR> d-------- C:\Program Files\Enigma Software Group
2008-01-12 17:10 . 2008-01-12 17:10 268 --ah----- C:\sqmdata05.sqm
2008-01-12 17:10 . 2008-01-12 17:10 244 --ah----- C:\sqmnoopt05.sqm
2008-01-12 17:04 . 2008-01-12 17:04 268 --ah----- C:\sqmdata04.sqm
2008-01-12 17:04 . 2008-01-12 17:04 244 --ah----- C:\sqmnoopt04.sqm
2008-01-11 14:42 . 2008-01-21 21:09 16,808 --a------ C:\WINDOWS\BM4bb1e9b4.xml
2008-01-11 14:42 . 2008-01-22 18:04 21 --a------ C:\WINDOWS\pskt.ini
2008-01-09 18:34 . 2008-01-09 18:34 268 --ah----- C:\sqmdata03.sqm
2008-01-09 18:34 . 2008-01-09 18:34 244 --ah----- C:\sqmnoopt03.sqm
2008-01-08 20:11 . 2008-01-09 17:58 1,049,449 ---hs---- C:\WINDOWS\system32\tfcdflrj.ini
2008-01-01 08:52 . 2008-01-03 09:27 1,036,162 ---hs---- C:\WINDOWS\system32\vvbfbcjf.ini
2007-12-31 00:10 . 2007-12-31 18:04 1,031,199 ---hs---- C:\WINDOWS\system32\mocyjugv.ini
2007-12-29 19:27 . 2007-12-31 00:07 1,031,139 ---hs---- C:\WINDOWS\system32\tfqvhokg.ini
2007-12-29 17:07 . 2007-12-29 17:07 1,031,139 ---hs---- C:\WINDOWS\system32\xqxdiwku.ini
2007-12-26 09:17 . 2007-12-27 09:29 1,027,531 ---hs---- C:\WINDOWS\system32\pvjcdwlv.ini
2007-12-26 00:15 . 2007-12-26 00:18 1,019,217 ---hs---- C:\WINDOWS\system32\jtcbgtih.ini
2007-12-25 00:22 . 2007-12-26 00:14 1,010,035 ---hs---- C:\WINDOWS\system32\pqxmbqpq.ini
2007-12-23 22:04 . 2007-12-25 00:16 990,639 ---hs---- C:\WINDOWS\system32\jdmanntd.ini
2007-12-23 22:04 . 2007-12-23 22:04 244 --ah----- C:\sqmnoopt02.sqm
2007-12-23 22:04 . 2007-12-23 22:04 232 --ah----- C:\sqmdata02.sqm

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-01-23 05:53 --------- d-----w C:\Program Files\Firefox
2008-01-23 04:25 --------- d-----w C:\Program Files\McAfee
2008-01-21 00:45 --------- d-----w C:\Program Files\Common Files\Logitech
2008-01-18 04:34 --------- d-----w C:\Program Files\Adaware
2008-01-18 01:11 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-13 03:17 --------- d-----w C:\Program Files\FLV Player
2008-01-13 03:07 --------- d-----w C:\Program Files\QuickTime
2008-01-13 03:03 --------- d-----w C:\Program Files\Logitech
2008-01-13 03:02 --------- d-----w C:\Program Files\Limewire
2008-01-13 00:01 --------- d-----w C:\Program Files\McAfee.com
2008-01-12 23:35 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-01-12 23:33 --------- d-----w C:\Program Files\AntiVirus
2007-11-14 00:08 246 ----a-w C:\Program Files\Common Files\qucam
2007-07-28 03:28 3,655,608 ----a-w C:\Program Files\FLV PlayerRCATSetup.exe
2007-07-28 03:21 409,250 ----a-w C:\Program Files\FLV PlayerRCSetup.exe
2004-10-01 20:00 40,960 ----a-w C:\Program Files\Uninstall_CDS.exe
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 06:00 15360]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 11:54 5674352]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 10:24 1694208]
"pbmini"="C:\Program Files\Pcast\PodcastbarMini\PodcastBarMiniStater.exe" [ ]
"LogitechSoftwareUpdate"="C:\Program Files\Logitech\Video\ManifestEngine.exe" [2005-06-08 14:44 196608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"000StTHK"="000StTHK.exe" [2001-06-23 21:28 24576 C:\WINDOWS\system32\000StTHK.exe]
"Apoint"="C:\Program Files\Apoint2K\Apoint.exe" [2003-10-30 17:46 192512]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2004-01-26 20:03 155648]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2004-01-26 20:03 118784]
"AGRSMMSG"="AGRSMMSG.exe" [2004-02-20 16:00 88363 C:\WINDOWS\agrsmmsg.exe]
"NDSTray.exe"="NDSTray.exe" []
"TPSMain"="TPSMain.exe" [2004-06-01 21:43 278528 C:\WINDOWS\system32\TPSMain.exe]
"Pinger"="c:\toshiba\ivp\ism\pinger.exe" [2005-03-17 17:37 151552]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2005-11-27 13:05 180269]
"CFSServ.exe"="CFSServ.exe" []
"RemoteControl"="C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe" [2004-11-02 19:24 32768]
"InCD"="C:\Program Files\Nero\InCD\InCD.exe" [2006-03-16 02:00 1397760]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50 155648]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2005-05-13 11:25 98304]
"LogitechVideoRepair"="C:\Program Files\Logitech\Video\ISStart.exe" [2005-06-08 15:24 458752]
"LogitechVideoTray"="C:\Program Files\Logitech\Video\LogiTray.exe" [2005-06-08 15:14 217088]
"mcagent_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe" [2007-08-03 22:33 582992]
"SiteAdvisor"="C:\Program Files\SiteAdvisor\6253\SiteAdv.exe" [2007-08-24 15:57 36640]
"McENUI"="C:\PROGRA~1\McAfee\MHN\McENUI.exe" [2007-07-22 20:29 1160480]
"SigmaTel StacMon"="C:\Program Files\SigmaTel\SigmaTel AC97 Audio Drivers\stacmon.exe" [2003-08-03 16:01 86073]
"LVCOMSX"="C:\WINDOWS\system32\LVCOMSX.EXE" [2005-07-19 17:32 221184]

R0 KR10N;KR10N;C:\WINDOWS\system32\drivers\KR10N.sys [2005-01-12 02:05]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{232f4e3f2-bab8-11d0-97b9-00c04f98bcb9}]
C:\WINDOWS\system32\winsecurityxp\rk.exe -r -p mswinup.exe -p rk.exe -f winsecurityxp -v MSWindowsUpdate -tcp 22277 -udp 22277 -v %SystemDir%winsecurityxpmswinup.exe
.
Contents of the 'Scheduled Tasks' folder
"2008-01-12 23:50:57 C:\WINDOWS\Tasks\McDefragTask.job"
- c:\PROGRA~1\mcafee\mqc\QcConsol.exe
"2008-01-12 23:50:55 C:\WINDOWS\Tasks\McQcTask.job"
- c:\PROGRA~1\mcafee\mqc\QcConsol.exe
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-23 14:03:59
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

PROCESS: C:\WINDOWS\Explorer.EXE [6.00.2900.3156]
-> C:\Program Files\ArcSoft\Software Suite\PhotoImpression\share\pihook.dll
.

Thread: Need some help cleaning my laptop

Thread Tools

Display

Threaded View

Posting Permissions