PC Affected by System Security

c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\800SCORE\GREM4f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\800SCORE\GREM5f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\800SCORE\GREV1f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\800SCORE\GREV2f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\800SCORE\GREV3f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\800SCORE\GREV4f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\800SCORE\GREV5f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\800SCORE\OneNote Table Of Contents.onetoc2
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\GMAT 4 Math\gmat4mx.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\gmat1m.zip
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\gmat1v.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\gmat2m.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\gmat2v.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\gmat3m.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\gmat3v.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\gmat4m.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\gmat4v.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\gmat5m.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\gmat5v.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\gmatmath.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\ColExams\GMAT-GRE\800score\Important!.txt
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\All 800Tests applications\gmat2mx.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\All 800Tests applications\gmat3mx.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\All 800Tests applications\gmat4mx.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\All 800Tests applications\gmat4vx.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\All 800Tests applications\gmat5mx(2).exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\All 800Tests applications\gmat5mx.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\All 800Tests applications\gmat5vx.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\All 800Tests applications\gmattest.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\GMATM1f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\GMATM2f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\GMATM3f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\GMATM4f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\GMATM5f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\GMATV1f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\GMATV2f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\GMATV3f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\GMATV4f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\GMAT\GMAT800\GMATV5f.exe
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\More GMAT & SAT.webloc
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\SAT\AC_RunActiveContent.js
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\SAT\LMCinterfaceSAT-for torrents.html
c:\program files\BitLord\Downloads\Prepare GMAT & SAT Tests [GeneGeter.com]\SAT\LMCinterfaceSAT-for torrents.swf
c:\program files\BitLord\Downloads\princeton review\Princeton Review GMAT Manual.pdf
c:\program files\BitLord\Downloads\princeton review\Princeton_Verbal_Workout.pdf
c:\program files\BitLord\Downloads\princeton review\Torrent downloaded from Demonoid.com.txt
c:\program files\BitLord\lang\lang_ar_ae.xml
c:\program files\BitLord\lang\lang_bg_bg.xml
c:\program files\BitLord\lang\lang_ca_es.xml
c:\program files\BitLord\lang\lang_cz_cz.xml
c:\program files\BitLord\lang\lang_da_dk.xml
c:\program files\BitLord\lang\lang_de_de.xml
c:\program files\BitLord\lang\lang_el_gr.xml
c:\program files\BitLord\lang\lang_en_us.xml
c:\program files\BitLord\lang\lang_es_ar.xml
c:\program files\BitLord\lang\lang_es_es.xml
c:\program files\BitLord\lang\lang_et_ee.xml
c:\program files\BitLord\lang\lang_fi_fi.xml
c:\program files\BitLord\lang\lang_fr_fr.xml
c:\program files\BitLord\lang\lang_gl_es.xml
c:\program files\BitLord\lang\lang_he_il.xml
c:\program files\BitLord\lang\lang_hu_hu.xml
c:\program files\BitLord\lang\lang_it_it.xml
c:\program files\BitLord\lang\lang_jp_jp.xml
c:\program files\BitLord\lang\lang_ko_kr.xml
c:\program files\BitLord\lang\lang_nb_no.xml
c:\program files\BitLord\lang\lang_nl_nl.xml
c:\program files\BitLord\lang\lang_pl_pl.xml
c:\program files\BitLord\lang\lang_pt_br.xml
c:\program files\BitLord\lang\lang_pt_pt.xml
c:\program files\BitLord\lang\lang_ro_ro.xml
c:\program files\BitLord\lang\lang_ru_ru.xml
c:\program files\BitLord\lang\lang_sk_sk.xml
c:\program files\BitLord\lang\lang_sl_si.xml
c:\program files\BitLord\lang\lang_sr_sr.xml
c:\program files\BitLord\lang\lang_sv_se.xml
c:\program files\BitLord\lang\lang_th_th.xml
c:\program files\BitLord\lang\lang_tr_tr.xml
c:\program files\BitLord\lang\lang_va_es.xml
c:\program files\BitLord\lang\lang_zh_tw.xml
c:\program files\BitLord\rules\ipfilter.dat
c:\windows\system32\uacsr.dat

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_PCIINFO
-------\Service_pciinfo

((((((((((((((((((((((((( Files Created from 2009-06-12 to 2009-07-12 )))))))))))))))))))))))))))))))
.

2009-07-11 22:48 . 2009-06-17 15:27 38160 -c--a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-07-11 22:48 . 2009-07-12 00:04 -------- dc----w- c:\program files\Mal
2009-07-11 22:48 . 2009-06-17 15:27 19096 -c--a-w- c:\windows\system32\drivers\mbam.sys
2009-07-11 22:14 . 2009-07-11 22:14 -------- dc----w- c:\program files\NOS
2009-07-11 22:14 . 2009-07-11 22:14 -------- dc----w- c:\documents and settings\All Users\Application Data\NOS
2009-07-11 22:14 . 2009-07-08 18:22 32456 -c--a-w- c:\documents and settings\Lali\Application Data\Mozilla\Firefox\Profiles\914tvm6a.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\plugins\np_gp.dll
2009-07-11 22:14 . 2009-07-08 18:22 22848 -c--a-w- c:\documents and settings\Lali\Application Data\Mozilla\Firefox\Profiles\914tvm6a.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\chrome\content\getPlusPlus_Adobe_reg_bootstrap.exe
2009-07-11 22:14 . 2009-07-08 18:22 18776 -c--a-w- c:\documents and settings\Lali\Application Data\Mozilla\Firefox\Profiles\914tvm6a.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\chrome\content\getPlusPlus_Adobe_reg.exe
2009-07-11 19:14 . 2009-07-11 19:14 3561744 -c--a-w- C:\mbam-setup.exe
2009-07-11 18:32 . 2009-07-11 18:32 -------- dcsh--w- c:\documents and settings\Lali\PrivacIE
2009-07-11 18:32 . 2009-07-11 18:32 -------- dcsh--w- c:\documents and settings\Lali\IETldCache
2009-07-11 18:06 . 2009-07-11 18:06 -------- dcsh--w- c:\documents and settings\Administrator\PrivacIE
2009-07-11 18:05 . 2009-07-11 18:05 -------- dcsh--w- c:\documents and settings\Administrator\IETldCache
2009-07-11 18:03 . 2009-07-11 18:03 -------- dcsh--w- c:\windows\system32\config\systemprofile\IETldCache
2009-07-11 16:58 . 2009-06-02 10:12 102912 -c----w- c:\windows\system32\dllcache\iecompat.dll
2009-07-11 16:57 . 2009-07-11 16:58 -------- dc----w- c:\windows\ie8updates
2009-07-11 16:57 . 2009-04-30 21:22 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2009-07-11 16:57 . 2009-04-30 21:22 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2009-07-11 16:52 . 2009-07-11 16:56 -------- dc-h--w- c:\windows\ie8
2009-07-11 16:28 . 2009-07-11 18:01 -------- dc----w- c:\windows\SxsCaPendDel
2009-07-11 02:43 . 2009-07-11 02:43 -------- dc----w- c:\windows\Sun
2009-07-11 02:42 . 2009-07-11 02:42 410984 -c--a-w- c:\windows\system32\deploytk.dll
2009-07-11 02:42 . 2009-07-11 02:42 152576 -c--a-w- c:\documents and settings\Lali\Application Data\Sun\Java\jre1.6.0_14\lzma.dll
2009-07-04 05:42 . 2009-07-04 05:53 -------- dc----w- c:\windows\BDOSCAN8
2009-06-20 04:25 . 2009-06-20 04:25 -------- dc----w- c:\documents and settings\Administrator\Local Settings\Application Data\Mozilla
2009-06-20 03:25 . 2009-06-20 03:25 -------- dc----w- c:\documents and settings\All Users\Application Data\hpqwmi
2009-06-19 22:30 . 2009-06-19 22:30 3561744 -c--a-w- c:\documents and settings\All Users\mbam-setup.exe
2009-06-19 21:48 . 2009-06-19 21:48 -------- dc----w- c:\documents and settings\Lali\Application Data\aAvgApi

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-12 16:58 . 2005-04-10 12:14 -------- dc-h--w- c:\program files\InstallShield Installation Information
2009-07-11 22:08 . 2005-04-10 12:28 -------- dc----w- c:\program files\Java
2009-07-11 18:01 . 2008-09-28 14:47 -------- dc----w- c:\program files\ImageConverter Plus
2009-07-11 16:40 . 2005-04-10 12:34 -------- dc----w- c:\program files\HPQ
2009-07-11 16:40 . 2008-03-20 01:28 -------- dc----w- c:\program files\PDFCreator Toolbar
2009-07-11 16:39 . 2007-06-24 06:19 -------- dc----w- c:\program files\InterActual
2009-07-11 16:38 . 2005-12-09 18:56 -------- dc----w- c:\program files\Common Files\Real
2009-07-11 16:33 . 2005-04-10 13:09 -------- dc----w- c:\program files\Symantec
2009-07-11 16:33 . 2005-04-10 13:09 -------- dc----w- c:\program files\Common Files\Symantec Shared
2009-07-11 16:33 . 2005-04-10 13:09 -------- dc----w- c:\documents and settings\All Users\Application Data\Symantec
2009-07-11 16:31 . 2007-03-06 05:16 -------- dc----w- c:\program files\FrameMaster2
2009-07-11 16:31 . 2006-10-04 00:50 -------- dc----w- c:\program files\DivX
2009-07-11 16:30 . 2008-06-10 02:41 -------- dc----w- c:\program files\Bonjour
2009-07-11 16:30 . 2008-06-16 04:43 -------- dc----w- c:\program files\AviSynth 2.5
2009-07-11 16:27 . 2006-09-06 01:19 -------- dc----w- c:\program files\Web Publish
2009-07-11 16:09 . 2008-06-16 04:43 -------- dc----w- c:\program files\Red Kawa
2009-07-11 16:01 . 2006-05-01 18:54 -------- dc----w- c:\program files\Sony Corporation
2009-07-11 16:01 . 2005-12-31 04:31 -------- dc----w- c:\documents and settings\Lali\Application Data\Notepad++
2009-07-11 16:01 . 2005-12-31 04:31 -------- dc----w- c:\program files\Notepad++
2009-07-11 15:56 . 2005-04-10 13:08 -------- dc----w- c:\program files\Common Files\muvee Technologies
2009-07-11 15:50 . 2007-08-12 16:24 -------- dc----w- c:\program files\SopCast
2009-07-04 05:36 . 2008-08-30 15:48 -------- dc----w- c:\program files\Spybot - Search & Destroy
2009-07-04 05:34 . 2008-08-30 15:48 -------- dc----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-07-04 05:31 . 2009-02-27 21:27 -------- dc----w- c:\program files\Malwarebytes' Anti-Malware
2009-05-13 05:15 . 2004-08-04 08:00 915456 -c--a-w- c:\windows\system32\wininet.dll
2009-05-07 15:32 . 2004-08-04 08:00 345600 -c--a-w- c:\windows\system32\localspl.dll
2009-04-17 12:26 . 2004-08-04 08:00 1847168 -c--a-w- c:\windows\system32\win32k.sys
2009-04-15 14:51 . 2004-08-04 08:00 585216 -c--a-w- c:\windows\system32\rpcrt4.dll
2008-03-20 01:28 . 2008-03-20 01:28 14290 -c--a-w- c:\program files\settings.dat
.

((((((((((((((((((((((((((((( SnapShot@2009-07-11_23.44.17 )))))))))))))))))))))))))))))))))))))))))
.
- 2004-08-07 13:14 . 2009-07-11 23:39 52506 c:\windows\system32\perfc009.dat
+ 2004-08-07 13:14 . 2009-07-11 23:48 52506 c:\windows\system32\perfc009.dat
+ 2004-08-07 13:14 . 2009-07-11 23:48 340388 c:\windows\system32\perfh009.dat
- 2004-08-07 13:14 . 2009-07-11 23:39 340388 c:\windows\system32\perfh009.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2005-01-22 155648]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2005-01-22 126976]
"SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2004-11-04 98394]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2004-11-04 688218]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2004-11-05 233534]
"LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [2004-10-14 253952]
"hpWirelessAssistant"="c:\program files\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe" [2005-01-21 790528]
"MSConfig"="c:\windows\PCHealth\HelpCtr\Binaries\MSConfig.exe" [2008-04-14 169984]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-11 148888]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]

c:\documents and settings\Lali\Start Menu\Programs\Startup\
WordWeb.lnk - c:\program files\WordWeb\wweb32.exe [2006-6-4 19968]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"=
"c:\\Program Files\\Google\\Google Talk\\googletalk.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3587:TCP"= 3587:TCP:Windows Peer-to-Peer Grouping
"3540:UDP"= 3540:UDP:Peer Name Resolution Protocol (PNRP)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)

R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2/14/2008 8:53 PM 109616]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\system32\rundll32.exe" "c:\windows\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contents of the 'Scheduled Tasks' folder

2009-07-12 c:\windows\Tasks\WGASetup.job
- c:\windows\system32\KB905474\wgasetup.exe [2009-06-12 02:18]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://in.yahoo.com/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Connection Wizard,ShellNext = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: &WordWeb... - c:\windows\wweb32.dll/lookup.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {642BF859-5616-4839-B474-658072B3FFC2} - hxxp://www.smartpctools.com/free_registry_cleaner/RegScanner.ocx
FF - ProfilePath - c:\documents and settings\Lali\Application Data\Mozilla\Firefox\Profiles\914tvm6a.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://en-us.start.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-US:official
FF - plugin: c:\documents and settings\Lali\Application Data\Mozilla\Firefox\Profiles\914tvm6a.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\plugins\np_gp.dll
FF - plugin: c:\progra~1\Yahoo!\Common\npyaxmpb.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-12 13:11
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe????????7?3?5?5??????? ?,?B?????????????hLC? ??????

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'explorer.exe'(3492)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\program files\Mal\mbamext.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\tcpsvcs.exe
c:\program files\Sprint\Sierra Wireless\Sprint PCS Connection Manager\SPCSUtilityService.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\wscntfy.exe
c:\program files\HPQ\Shared\hpqwmi.exe
c:\windows\system32\wbem\wmiadap.exe
.
**************************************************************************
.
Completion time: 2009-07-12 13:15 - machine was rebooted
ComboFix-quarantined-files.txt 2009-07-12 17:15
ComboFix2.txt 2009-07-11 23:48

Pre-Run: 32,112,066,560 bytes free
Post-Run: 31,987,904,512 bytes free

834 --- E O F --- 2009-07-11 16:58

Hello.
I'd say were done here, how is the machine running?

The machine has been running excellent since the first combo fix run. I ran a Malwarebytes check and it only detected Winlogon.exe as a problem child which I assume is not a problem?

Additionally, I assume I can get antivirus protection turned on. Thanks a ton for your help and assistance. Kudos to a job well done!