Ok. I uninstalled Utorrent and ran the other two programs. I am not sure how to show an uninstall list as you asked. Here are the logs.
ComboFix 09-04-03.01 - Matt 2009-04-04 22:13:09.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1541 [GMT -4:00]
Running from: c:\documents and settings\Matt\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Matt\Desktop\CFScript.txt
AV: avast! antivirus 4.8.1335 [VPS 090404-0] *On-access scanning disabled* (Updated)
* Created a new restore point
FILE ::
c:\windows\system32\dimusave.exe
c:\windows\system32\gapedayu.exe
c:\windows\system32\ludovoyi.exe
c:\windows\system32\tamihifu.exe
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Matt\Application Data\uTorrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Bleach_102_v2_[F11B80A3].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Bleach_203_[F97B9991].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Bleach_204_[631FD37D].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Bleach_205_[DBDD0939].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Bleach_206_[4AFFD916].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Bleach_207_[2A3BA5FC].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Bleach_208_[191E1D38].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Bleach_209_[0868010E].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Bleach_210_[657E4E74].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Bleach_211_[A988CA54].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Bleach_Movie_1_HD_1440x768_[2C434BF0].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Naruto_Movie_[D367824A].avi.1.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Naruto_Movie_[D367824A].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Naruto_Movie_2_[1E8A1B97].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[DB]_Naruto_Movie_3_[C688AE50].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[TvT] Avatar The Last Airbender Book 3 'Fire' 06 'The Avatar and the Firelord' [NICK-usotsuki] [65C752CE].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[TvT] Avatar The Last Airbender Book 3 'Fire' 07 'The Runaway' [NICK-usotsuki] [22008905].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[TvT] Avatar The Last Airbender Book 3 'Fire' 08 'The Puppetmaster' [NICK-usotsuki] [1B869810].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[TvT] Avatar The Last Airbender Book 3 'Fire' 09 'Nightmares and Daydreams' [NICK-usotsuki] [15AC5AC1].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\[TvT] Avatar The Last Airbender Book 3 'Fire' 10 'The Day of Black Sun - The Invasion-The Eclipse' [NICK-usotsuki] [6A716B9F].avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\
02-timbaland_feat_nelly_furtado_and_justin_timberlake-give_it_to_me_(dirty)-Part 2.wma.torrent
c:\documents and settings\Matt\Application Data\uTorrent\50 CENT feat JUSTIN TIMBERLAKE & TIMBALAND - Ayo Technology.mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\AA281FullInstaller_BitTorrent.exe.torrent
c:\documents and settings\Matt\Application Data\uTorrent\akon-i_wanna_love_you_(feat._sean_paul)_(remix).mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Akon-In_My_Ghetto_Vol_2-2008-ONe.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Akon-Sorry_Blame_It_On_Me.mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Amel Larrieux - Bravebird.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Amel Larrieux - Morning [2006] [R&B] [www.file24ever.com].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Andrea Bocelli - Il Trovatore - Giuseppe Verdi - NLT-Release.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Andrea Bocelli - Amore 2006.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Andrea Bocelli.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Andrea.Bocelli.-.Incanto.(2008).WwW.Mixermusic.net.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Andrea.Bocelli.-.Vivere.The.Best.Of.2008.Mp3.[www.MixerMusic.net].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Beyonce-B-Day.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Beyonce -I Am Sasha Fierce-DeLuxe Edition[www.FanCluBT.com].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 202.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 82 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 83 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 84 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 85 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 86 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 87 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 88 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 89 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 90 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 91 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 92 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 93 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 94 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 95 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 96 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach 97 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach Movie 2.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach Season 1 Ep 001-025 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach Season 2 Ep 026-051 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach Season 3 Ep 052-074 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach Season 4 Ep 075-081 English Dubbed-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bleach Season 6.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bon Jovi-Slippery When Wet(Darkside_RG).torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bon Jovi - Lost Highway.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bon Jovi - New Jersey [1998 Remaster].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bone Thugs -N- Harmony feat Akon - I Tried Promo Cd.1.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Bone Thugs -N- Harmony feat Akon - I Tried Promo Cd.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Brandon Heath -What If We [2008].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Camp Rock.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Carrie Underwood - Carnival Ride.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Cascada - What Hurts The Most - Promo CDM - 2007.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Casting Crowns - The Altar And The Door.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Casting Crowns.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Chris Brown-Chris Brown(with Covers) a DHZ.Inc Release.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Chris Brown - C.B. [2007] [R&B] [www.file24ever.com].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Chris_Brown-Wall_To_Wall_(Prod_By_Swizz_Beatz).mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Chris_Brown_Ft_Jadakiss-Wall_To_Wall_(Remix).mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Colby Odonis ft. Akon - What You Got.mp3.1.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Colby Odonis ft. Akon - What You Got.mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\David Archuleta - Crush (New Single) (williswho.com).torrent
c:\documents and settings\Matt\Application Data\uTorrent\David Archuleta 2008 Full Album- 5 Extra Tracks.torrent
c:\documents and settings\Matt\Application Data\uTorrent\David Cook - David Cook [2008][CD+SkidVid_XviD+Cov].torrent
c:\documents and settings\Matt\Application Data\uTorrent\dht.dat
c:\documents and settings\Matt\Application Data\uTorrent\dht.dat.old
c:\documents and settings\Matt\Application Data\uTorrent\Dollhouse.S01E01.HDTV.XviD-LOL.avi.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Dollhouse.S01E04.720p.HDTV.x264-CTU.mkv.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Exclusive [Special Edition] (2007).torrent
c:\documents and settings\Matt\Application Data\uTorrent\Feels Like Today [2004].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Fergie-The_Dutchess-2006-RNS.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Girls Gone Wild (6 episodes).torrent
c:\documents and settings\Matt\Application Data\uTorrent\Hannah Montana - Songs From And Inspired By The Hit TV Series.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Hannah_Montana_2_-_Meet_Miley_Cyrus-2CD-2007-BTL.torrent
c:\documents and settings\Matt\Application Data\uTorrent\High School Musical 2.torrent
c:\documents and settings\Matt\Application Data\uTorrent\High School Musical Soundtrack.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Hinder-Extreme_Behaviour-(UK_Retail)-2007-uF.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Jars_Of_Clay-Good_Monsters-2006-RNS.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Jason Mraz - We Sing We Dance We Steal Things (MP3) 2Lions.torrent
c:\documents and settings\Matt\Application Data\uTorrent\JoJo - The High Road (2006).1.torrent
c:\documents and settings\Matt\Application Data\uTorrent\JoJo - The High Road (2006).torrent
c:\documents and settings\Matt\Application Data\uTorrent\Jonas Brothers - A Little Bit Longer (2008) - Rock.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Jonas Brothers - Jonas Brothers (Special Edition 2007) - Rock [www.torrentazos.com].rar.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Jordan Sparks feat. Chris Brown - No Air.mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Josh_Groban-Noel-2007-JOSHGROBAN.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Justin Timberlake - What goes around...comes around.mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Justin Timberlake Futuresex Lovesounds(Deluxe Edition)2007 (KRG) princess.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Kanye West - Graduation (320Kbps).torrent
c:\documents and settings\Matt\Application Data\uTorrent\Kat Williams Pimp Chronicles.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Katt Williams Let a Playa Play.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Katt.Williams.American.Hustle.2007.DVDRip.XviD-SiNK.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Katt.Williams.Live.2006.REPACK.DVDRip.XviD-FiCO.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Kelly Clarkson - All I Ever Wanted [2009] [320 kbps] [UK Deluxe Edition].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Kelly_Clarkson-Never_Again-(CDS)-2007-SMO.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Legend.Of.Earthsea.2004.Mini.Series.NORDIC.PAL.DVDR-DFG.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Leona Lewis - Spirit (256Kbps).torrent
c:\documents and settings\Matt\Application Data\uTorrent\Lil_Wayne-Lollipop__Ft._Static_Major___DIRTY_-_www.dj-emi.blogspot.com_.mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Linkin Park-Minutes to Midnight (2007).torrent
c:\documents and settings\Matt\Application Data\uTorrent\Linkin Park - What I've Done 320kbps.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Linkin_Park-Minutes_To_Midnight-2007-GEE.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Madonna - Hard Candy (2008).torrent
c:\documents and settings\Matt\Application Data\uTorrent\Mariah Carey E=MC2 [FULL ALBUM 2008].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Miley_Cyrus-Breakout-2008-VAG.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Missy Higgins - On A Clear Night [2007][CD+SkidVid_XviD+Cov].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Missy Higgins - The Sound of White.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Naruto English Dubbed 1-201.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Naruto the Movie - Ninja Clash in the Land of Snow-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Naruto the Movie 2 - Legend of the Stone of Gelel-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Naruto the Movie 3 - Guardians of the Crescent Moon Kingdom-soagg.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Ne Yo - Because Of You [2007][CD+SkidVid+Cov].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Nickelback-All The Right Reasons.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Pink - Funhouse [2008][CD+SkidVid_XviD+Cov]320Kbps.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Rascal Flatts - Me And My Gang [2006].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Rascal Flatts - Still Feels Good (2007) - Country [www.torrentazos.com].rar.torrent
c:\documents and settings\Matt\Application Data\uTorrent\resume.dat
c:\documents and settings\Matt\Application Data\uTorrent\resume.dat.old
c:\documents and settings\Matt\Application Data\uTorrent\rihanna feat jay-z umbrella.mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Rihanna_Ft_Chris_Brown_Jay-Z-Umbrella_(Remix).mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\rss.dat
c:\documents and settings\Matt\Application Data\uTorrent\rss.dat.old
c:\documents and settings\Matt\Application Data\uTorrent\Season 4.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Season 5.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Season 7.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Season 8.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Season 9.torrent
c:\documents and settings\Matt\Application Data\uTorrent\settings.dat
c:\documents and settings\Matt\Application Data\uTorrent\settings.dat.old
c:\documents and settings\Matt\Application Data\uTorrent\Snoop Dogg - Sensual Seduction (Promo CDS).torrent
c:\documents and settings\Matt\Application Data\uTorrent\South Park - s10e08.torrent
c:\documents and settings\Matt\Application Data\uTorrent\South Park - World Of WarCraft.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Stomp The Yard [2007] [Soundtrack] [www.file24ever.com].torrent
c:\documents and settings\Matt\Application Data\uTorrent\Switchfoot-Oh_Gravity-2006-RNS.torrent
c:\documents and settings\Matt\Application Data\uTorrent\T-Pain_Ft_Akon-Bartender.mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\T.I. - Paper Trail (Advance) - Parry Gill - xclusivez.net - mobstaz.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Thundercats.S01E47.The.Mumm.Ra.Berbil.(Fixed).torrent
c:\documents and settings\Matt\Application Data\uTorrent\Thundercats.Season.1.Complete.1.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Thundercats.Season.1.Complete.2.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Thundercats.Season.1.Complete.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Thundercats.Season.2.Complete.1.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Thundercats.Season.2.Complete.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Thundercats.torrent
c:\documents and settings\Matt\Application Data\uTorrent\timbaland-the way i are.zip.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Timbaland - Shock Value-2007.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Timbaland Feat. Nelly Furtado & Justin Timberlake - Give It To Me Aetoms Remix ( best than original 2007 Strasbourg France French Hot Hit Rap Crunk Pop Sex Fergie Lil Jon).mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\timbaland ft. nelly furtado justin timberlake- give it to me.mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\timbaland_ft_jay-z__justin_timberlake-_give_it_to_me_remix-Larceny9.mp3.1.torrent
c:\documents and settings\Matt\Application Data\uTorrent\timbaland_ft_jay-z__justin_timberlake-_give_it_to_me_remix-Larceny9.mp3.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Twilght Soundtrack.torrent
c:\documents and settings\Matt\Application Data\uTorrent\Usher Feat. Young Jeezy - Love In This Club.torrent
c:\documents and settings\Matt\Application Data\uTorrent\utorrent.lng
c:\windows\system32\dimusave.exe
c:\windows\system32\gapedayu.exe
c:\windows\system32\ludovoyi.exe
c:\windows\system32\tamihifu.exe
.
((((((((((((((((((((((((( Files Created from 2009-03-05 to 2009-04-05 )))))))))))))))))))))))))))))))
.
2009-03-29 11:27 . 2009-03-29 11:27 <DIR> d-------- c:\windows\system32\config\systemprofile\Application Data\HPAppData
2009-03-24 17:48 . 2009-03-24 23:09 <DIR> d-------- c:\documents and settings\Matt\Application Data\vlc
2009-03-24 17:42 . 2009-03-24 17:42 <DIR> d-------- c:\documents and settings\All Users\Application Data\WinZip
2009-03-14 12:08 . 2009-03-23 13:03 54,156 --ah----- c:\windows\QTFont.qfn
2009-03-14 12:08 . 2009-03-14 12:08 1,409 --a------ c:\windows\QTFont.for
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-29 01:24 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-03-25 03:17 --------- d-----w c:\documents and settings\Matt\Application Data\Move Networks
2009-03-23 14:16 --------- d-----w c:\documents and settings\Matt\Application Data\MSN6
2009-03-05 02:19 --------- d-----w c:\program files\Microsoft Silverlight
2009-02-17 13:11 20 ---h--w c:\documents and settings\All Users\Application Data\PKP_DLec.DAT
2009-02-06 04:26 --------- d-----w c:\program files\Kodak
2008-12-08 18:59 60,744 ----a-w c:\documents and settings\Matt\g2mdlhlpx.exe
2008-12-28 19:20 32,768 --sha-w c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008122820081229\index.dat
.
((((((((((((((((((((((((((((( SnapShot@2009-04-03_22.40.48.67 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-04-05 02:15:38 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_5f4.dat
+ 2009-04-05 02:15:42 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_7fc.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-13 15360]
"H/PC Connection Agent"="f:\program files\Microsoft ActiveSync\wcescomm.exe" [2006-06-20 1207080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="f:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 49152]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-22 7700480]
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Desktop Manager.lnk - f:\program files\Research In Motion\BlackBerry\DesktopMgr.exe [2008-09-19 1545488]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.avis"= ff_acm.acm
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HPAiODevice(hp officejet g series) - 1.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HPAiODevice(hp officejet g series) - 1.lnk
backup=c:\windows\pss\HPAiODevice(hp officejet g series) - 1.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk
backup=c:\windows\pss\Microsoft Office.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^NkbMonitor.exe.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\NkbMonitor.exe.lnk
backup=c:\windows\pss\NkbMonitor.exe.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^Matt^Start Menu^Programs^Startup^Picture Motion Browser Media Check Tool.lnk]
path=c:\documents and settings\Matt\Start Menu\Programs\Startup\Picture Motion Browser Media Check Tool.lnk
backup=c:\windows\pss\Picture Motion Browser Media Check Tool.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ANIWZCS2Service]
--a------ 2005-11-30 10:35 49152 c:\program files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BlackBerryAutoUpdate]
--a------ 2008-09-19 16:06 615696 c:\program files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\D-Link RangeBooster G WDA-2320]
--a------ 2005-12-15 12:21 2490368 c:\program files\D-Link\RangeBooster G WDA-2320\AirPlusCFG.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EasyTuneV]
--a------ 2004-06-14 11:54 200704 c:\program files\Gigabyte\ET5\GUI.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\H/PC Connection Agent]
--a------ 2006-06-20 22:36 1207080 f:\program files\Microsoft ActiveSync\wcescomm.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--a------ 2008-04-13 20:12 1695232 c:\program files\Messenger\msmsgs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ]
--------- 2005-10-11 18:25 1961984 c:\program files\Ahead\Nero BackItUp\NBJ.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2001-07-09 10:50 155648 c:\windows\system32\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2006-10-22 12:22 7700480 c:\windows\system32\nvcpl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
--a------ 2006-10-22 12:22 86016 c:\windows\system32\nvmctray.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-03-28 23:37 413696 f:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2009-01-18 23:45 136600 c:\program files\Java\jre6\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2007-04-22 17:40 185896 c:\program files\Common Files\Real\Update_OB\realsched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2006-10-22 12:22 1622016 c:\windows\system32\nwiz.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
--a------ 2005-09-22 13:36 14854144 c:\windows\RTHDCPL.EXE
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Gigabyte\\@BIOS\\update.exe"=
"c:\\Program Files\\Gigabyte\\@BIOS\\gwflash.exe"=
"f:\\Program Files\\World of Warcraft\\Repair.exe"=
"f:\program files\Microsoft ActiveSync\rapimgr.exe"= f:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"f:\program files\Microsoft ActiveSync\wcescomm.exe"= f:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"f:\program files\Microsoft ActiveSync\WCESMgr.exe"= f:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"f:\\Program Files\\World of Warcraft\\Launcher.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-04-12 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-04-12 20560]
R3 A3AB;D-Link AirPro 802.11a/b Wireless Adapter Service(A3AB);c:\windows\system32\drivers\A3AB.sys [2005-08-25 466880]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder
2009-03-26 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 14:57]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
uSearchMigratedDefaultURL =
hxxp://internetsearchservice.com/search?q={searchTerms}
mSearchMigratedDefaultURL =
hxxp://internetsearchservice.com/search?q={searchTerms}
IE: E&xport to Microsoft Excel - f:\progra~1\MICROS~1\Office10\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Matt\Application Data\Mozilla\Firefox\Profiles\9hszsaj5.default\
FF - prefs.js: browser.startup.homepage -
hxxp://www.msn.com/FF - plugin: c:\documents and settings\Matt\Application Data\Mozilla\Firefox\Profiles\9hszsaj5.default\extensions\moveplayer@movenetworks.com\platform\WINNT_x86-msvc\plugins\npmnqmp071303000004.dll
FF - plugin: f:\program files\QuickTime\Plugins\npqtplugin.dll
FF - plugin: f:\program files\QuickTime\Plugins\npqtplugin2.dll
FF - plugin: f:\program files\QuickTime\Plugins\npqtplugin3.dll
FF - plugin: f:\program files\QuickTime\Plugins\npqtplugin4.dll
FF - plugin: f:\program files\QuickTime\Plugins\npqtplugin5.dll
FF - plugin: f:\program files\QuickTime\Plugins\npqtplugin6.dll
FF - plugin: f:\program files\QuickTime\Plugins\npqtplugin7.dll
.
**************************************************************************
catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2009-04-04 22:16:28
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
f:\program files\Alwil Software\Avast4\aswUpdSv.exe
f:\program files\Alwil Software\Avast4\ashServ.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\nvsvc32.exe
c:\windows\system32\wscntfy.exe
f:\progra~1\MICROS~3\rapimgr.exe
.
**************************************************************************
.
Completion time: 2009-04-04 22:18:22 - machine was rebooted
ComboFix-quarantined-files.txt 2009-04-05 02:18:20
ComboFix2.txt 2009-04-04 02:41:42
Pre-Run: 35,577,335,808 bytes free
Post-Run: 35,563,778,048 bytes free
352
GMER 1.0.15.14966 -
http://www.gmer.netRootkit scan 2009-04-04 22:56:34
Windows 5.1.2600 Service Pack 3
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwClose [0xB65666B8]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwCreateKey [0xB6566574]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwDeleteValueKey [0xB6566A52]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwDuplicateObject [0xB656614C]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwOpenKey [0xB656664E]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwOpenProcess [0xB656608C]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwOpenThread [0xB65660F0]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwQueryValueKey [0xB656676E]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwRestoreKey [0xB656672E]
SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/ALWIL Software) ZwSetValueKey [0xB65668AE]
Code \??\C:\DOCUME~1\Matt\LOCALS~1\Temp\catchme.sys pIofCallDriver
---- Kernel code sections - GMER 1.0.15 ----
? Combo-Fix.sys The system cannot find the file specified. !
? C:\DOCUME~1\Matt\LOCALS~1\Temp\catchme.sys The system cannot find the file specified. !
? C:\WINDOWS\system32\Drivers\PROCEXP90.SYS The system cannot find the file specified. !
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/ALWIL Software)
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/ALWIL Software)
---- Files - GMER 1.0.15 ----
File C:\WINDOWS\system32\LogFiles\WUDF\WUDFTrace.etl (size mismatch) 8192/4096 bytes
---- EOF - GMER 1.0.15 ----