offline
- Gvelf
- Novi MyCity građanin
- Pridružio: 09 Nov 2007
- Poruke: 18
|
Evo, zavrsio sam!
ComboFix 07-11-19.4C - Administrator 2007-11-30 23:15:11.1 - NTFSx86
Running from: C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
.
((((((((((((((((((((((((( Files Created from 2007-10-28 to 2007-11-30 )))))))))))))))))))))))))))))))
.
2007-11-30 02:15 <DIR> d-------- C:\Program Files\SUPERAntiSpyware
2007-11-30 02:15 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2007-11-30 02:15 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\SUPERAntiSpyware.com
2007-11-30 02:14 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-11-29 03:55 <DIR> d-------- C:\Program Files\DivX
2007-11-28 20:50 103,736 --a------ C:\WINDOWS\system32\PnkBstrB.exe
2007-11-28 20:50 63,040 --a------ C:\WINDOWS\system32\PnkBstrA.exe
2007-11-28 20:33 <DIR> d-------- C:\Program Files\Electronic Arts
2007-11-28 20:33 1,123,696 --a------ C:\WINDOWS\system32\D3DCompiler_33.dll
2007-11-27 00:46 <DIR> d-------- C:\Program Files\Common Files\System32
2007-11-24 12:19 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-11-23 04:46 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Autodesk
2007-11-23 04:45 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Autodesk
2007-11-23 03:41 685,816 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2007-11-21 23:27 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\vlc
2007-11-21 23:25 <DIR> d-------- C:\Program Files\VideoLAN
2007-11-21 20:20 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Azureus
2007-11-21 16:13 <DIR> d-------- C:\Program Files\uTorrent
2007-11-21 16:13 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\uTorrent
2007-11-20 22:39 <DIR> d-------- C:\WINDOWS\ERUNT
2007-11-20 22:34 106 --a------ C:\delete.bat
2007-11-20 20:42 1,104,896 -----c--- C:\WINDOWS\system32\dllcache\msxml3.dll
2007-11-20 20:41 3,064,320 -----c--- C:\WINDOWS\system32\dllcache\mshtml.dll
2007-11-20 20:41 1,498,112 -----c--- C:\WINDOWS\system32\dllcache\shdocvw.dll
2007-11-20 20:41 1,022,976 -----c--- C:\WINDOWS\system32\dllcache\browseui.dll
2007-11-20 20:41 616,960 -----c--- C:\WINDOWS\system32\dllcache\urlmon.dll
2007-11-20 20:41 532,480 -----c--- C:\WINDOWS\system32\dllcache\mstime.dll
2007-11-20 20:41 474,112 -----c--- C:\WINDOWS\system32\dllcache\shlwapi.dll
2007-11-20 20:41 449,024 -----c--- C:\WINDOWS\system32\dllcache\mshtmled.dll
2007-11-20 20:41 151,040 -----c--- C:\WINDOWS\system32\dllcache\cdfview.dll
2007-11-20 20:41 146,432 -----c--- C:\WINDOWS\system32\dllcache\msrating.dll
2007-11-20 20:41 96,256 -----c--- C:\WINDOWS\system32\dllcache\inseng.dll
2007-11-20 20:41 39,424 -----c--- C:\WINDOWS\system32\dllcache\pngfilt.dll
2007-11-20 20:41 16,384 -----c--- C:\WINDOWS\system32\dllcache\jsproxy.dll
2007-11-20 20:40 1,314,816 -----c--- C:\WINDOWS\system32\dllcache\msoe.dll
2007-11-20 20:40 86,528 -----c--- C:\WINDOWS\system32\dllcache\directdb.dll
2007-11-20 20:39 185,344 -----c--- C:\WINDOWS\system32\dllcache\upnphost.dll
2007-11-20 20:39 144,896 -----c--- C:\WINDOWS\system32\dllcache\schannel.dll
2007-11-20 20:38 8,453,632 -----c--- C:\WINDOWS\system32\dllcache\shell32.dll
2007-11-20 20:38 536,576 -----c--- C:\WINDOWS\system32\dllcache\msado15.dll
2007-11-20 20:38 134,656 -----c--- C:\WINDOWS\system32\dllcache\shsvcs.dll
2007-11-20 20:38 40,960 -----c--- C:\WINDOWS\system32\dllcache\mf3216.dll
2007-11-20 20:37 256,512 -----c--- C:\WINDOWS\system32\dllcache\agentsvr.exe
2007-11-20 20:37 200,704 -----c--- C:\WINDOWS\system32\dllcache\msadox.dll
2007-11-20 20:37 180,224 -----c--- C:\WINDOWS\system32\dllcache\msadomd.dll
2007-11-20 20:37 102,400 -----c--- C:\WINDOWS\system32\dllcache\msjro.dll
2007-11-20 20:37 57,344 --a--c--- C:\WINDOWS\system32\dllcache\agentdpv.dll
2007-11-20 20:37 42,496 -----c--- C:\WINDOWS\system32\dllcache\agentdp2.dll
2007-11-20 20:36 225,664 -----c--- C:\WINDOWS\system32\dllcache\tcpip6.sys
2007-11-20 20:36 100,352 -----c--- C:\WINDOWS\system32\dllcache\6to4svc.dll
2007-11-20 20:34 453,120 -----c--- C:\WINDOWS\system32\dllcache\mrxsmb.sys
2007-11-20 20:34 148,480 -----c--- C:\WINDOWS\system32\dllcache\dnsapi.dll
2007-11-20 20:34 111,616 -----c--- C:\WINDOWS\system32\dllcache\dhcpcsvc.dll
2007-11-20 20:34 94,720 -----c--- C:\WINDOWS\system32\dllcache\iphlpapi.dll
2007-11-20 20:30 <DIR> d-------- C:\Program Files\PowerMenu
2007-11-20 20:30 81,920 --a------ C:\WINDOWS\system32\Startup.cpl
2007-11-20 20:30 77,824 --a------ C:\WINDOWS\system32\StartupCPL.exe
2007-11-18 00:46 <DIR> d-------- C:\Program Files\Common Files\Adobe Systems Shared
2007-11-18 00:46 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Adobe Systems
2007-11-17 18:10 200 --a------ C:\sccfg.sys
2007-11-15 04:39 <DIR> d---s---- C:\Documents and Settings\Administrator\UserData
2007-11-15 03:46 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2007-11-15 03:46 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2007-11-15 03:46 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2007-11-15 03:21 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2007-11-12 11:11 344 --a------ C:\WINDOWS\system32\USER.SCP
2007-11-10 19:04 <DIR> d-------- C:\WINDOWS\system32\NtmsData
2007-11-10 04:12 <DIR> d-------- C:\Documents and Settings\Administrator\WINDOWS
2007-11-09 23:32 <DIR> d-------- C:\Program Files\Stardock
2007-11-09 23:32 <DIR> d-------- C:\Program Files\Common Files\Stardock
2007-11-09 04:31 <DIR> d-------- C:\Program Files\FLVPlayer
2007-11-08 20:46 359,040 --a------ C:\WINDOWS\system32\drivers\TCPIP.SYS.ORIGINAL
2007-11-03 22:35 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\VSRevoGroup
2007-11-03 22:25 <DIR> d-------- C:\Program Files\VS Revo Group
2007-11-01 17:56 23,392 --a------ C:\WINDOWS\system32\nscompat.tlb
2007-11-01 15:49 <DIR> d-------- C:\Program Files\MSXML 6.0
2007-11-01 15:49 <DIR> d-------- C:\Program Files\MSXML 4.0
2007-11-01 15:45 <DIR> d-------- C:\WINDOWS\system32\bits
2007-11-01 15:45 49,536 --a------ C:\WINDOWS\system32\drivers\cdrom.sys
2007-11-01 15:45 8,192 -----c--- C:\WINDOWS\system32\dllcache\bitsprx2.dll
2007-11-01 15:45 7,168 -----c--- C:\WINDOWS\system32\dllcache\bitsprx4.dll
2007-11-01 15:45 7,168 -----c--- C:\WINDOWS\system32\dllcache\bitsprx3.dll
2007-11-01 15:45 7,168 --------- C:\WINDOWS\system32\bitsprx4.dll
2007-11-01 15:44 <DIR> d-------- C:\Program Files\MSECache
2007-11-01 15:44 <DIR> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2007-11-01 15:44 683,520 --a--c--- C:\WINDOWS\system32\dllcache\inetcomm.dll
2007-11-01 15:44 574,464 -----c--- C:\WINDOWS\system32\dllcache\ntfs.sys
2007-11-01 15:43 <DIR> d-------- C:\Program Files\Microsoft
2007-11-01 15:41 981,760 -----c--- C:\WINDOWS\system32\dllcache\mfc42u.dll
2007-11-01 15:41 539,136 -----c--- C:\WINDOWS\system32\dllcache\msftedit.dll
2007-11-01 15:39 <DIR> d-------- C:\WINDOWS\system32\DRM
2007-11-01 15:39 <DIR> d-------- C:\WINDOWS\l2schemas
2007-11-01 15:39 143,488 -----c--- C:\WINDOWS\system32\dllcache\usbport.sys
2007-11-01 15:39 62,336 --------- C:\WINDOWS\system32\drivers\rspndr.sys
2007-11-01 15:39 59,264 -----c--- C:\WINDOWS\system32\dllcache\usbhub.sys
2007-11-01 15:39 30,208 -----c--- C:\WINDOWS\system32\dllcache\usbehci.sys
2007-11-01 15:39 20,608 -----c--- C:\WINDOWS\system32\dllcache\usbuhci.sys
2007-11-01 15:39 17,152 -----c--- C:\WINDOWS\system32\dllcache\usbohci.sys
2007-11-01 15:38 1,197,294 -----c--- C:\WINDOWS\system32\dllcache\sysmain.sdb
2007-11-01 15:38 764,868 -----c--- C:\WINDOWS\system32\dllcache\apph_sp.sdb
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-11-30 22:16 758,816 --sha-w C:\WINDOWS\system32\drivers\fidbox2.dat
2007-11-30 22:16 12,475,936 --sha-w C:\WINDOWS\system32\drivers\fidbox.dat
2007-11-30 03:09 79,232 --sha-w C:\WINDOWS\system32\drivers\fidbox2.idx
2007-11-30 03:09 175,724 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx
2007-11-28 19:50 22,328 ----a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys
2007-11-28 17:57 3,400 ----a-w C:\WINDOWS\system32\winxtm.dll
2007-11-24 09:26 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-10-24 18:11 --------- d-----w C:\Documents and Settings\Administrator\Application Data\.BitZip
2007-10-20 00:56 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll
2007-10-17 22:35 11,973 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-10-12 16:24 14,656 ----a-w C:\WINDOWS\gdrv.sys
2007-10-11 22:36 82,061 ----a-w C:\WINDOWS\system32\drivers\klick.dat
2007-10-11 22:36 81,549 ----a-w C:\WINDOWS\system32\drivers\klin.dat
2007-10-10 21:25 720,896 ----a-w C:\WINDOWS\iun6002.exe
2007-10-10 21:02 32,768 ----a-w C:\WINDOWS\closewnd.exe
2007-10-10 20:29 --------- d-----w C:\Program Files\AvRack
2007-10-10 20:09 --------- d-----w C:\Program Files\Common Files\InstallShield
2007-10-10 16:27 --------- d-----w C:\Program Files\VIA
2007-10-10 16:26 --------- d-----w C:\Program Files\Realtek Sound Manager
2007-10-10 16:16 --------- d-----w C:\Program Files\microsoft frontpage
2007-10-04 09:58 33,792 ----a-w C:\WINDOWS\system32\drivers\maplom.sys
2007-09-17 00:10 356,352 ----a-w C:\WINDOWS\system32\NVUNINST.EXE
2007-09-17 00:10 356,352 ----a-w C:\WINDOWS\system32\nvudisp.exe
2007-09-16 23:07 81,920 ----a-w C:\WINDOWS\system32\nvwddi.dll
2007-09-16 23:07 81,920 ----a-w C:\WINDOWS\system32\nvmctray.dll
2007-09-16 23:07 8,491,008 ----a-w C:\WINDOWS\system32\nvcpl.dll
2007-09-16 23:07 753,664 ----a-w C:\WINDOWS\system32\nvcplui.exe
2007-09-16 23:07 6,746,112 ----a-w C:\WINDOWS\system32\nvoglnt.dll
2007-09-16 23:07 6,344,704 ----a-w C:\WINDOWS\system32\nvdisps.dll
2007-09-16 23:07 5,783,040 ----a-w C:\WINDOWS\system32\nv4_disp.dll
2007-09-16 23:07 466,944 ----a-w C:\WINDOWS\system32\nvshell.dll
2007-09-16 23:07 45,056 ----a-w C:\WINDOWS\system32\nvmccsrs.dll
2007-09-16 23:07 442,368 ----a-w C:\WINDOWS\system32\nvappbar.exe
2007-09-16 23:07 425,984 ----a-w C:\WINDOWS\system32\keystone.exe
2007-09-16 23:07 364,544 ----a-w C:\WINDOWS\system32\nvapi.dll
2007-09-16 23:07 36,864 ----a-w C:\WINDOWS\system32\nvcodins.dll
2007-09-16 23:07 36,864 ----a-w C:\WINDOWS\system32\nvcod.dll
2007-09-16 23:07 307,200 ----a-w C:\WINDOWS\system32\nvexpbar.dll
2007-09-16 23:07 3,551,232 ----a-w C:\WINDOWS\system32\nvvitvs.dll
2007-09-16 23:07 3,334,144 ----a-w C:\WINDOWS\system32\nvgames.dll
2007-09-16 23:07 286,720 ----a-w C:\WINDOWS\system32\nvnt4cpl.dll
2007-09-16 23:07 229,376 ----a-w C:\WINDOWS\system32\nvmccs.dll
2007-09-16 23:07 2,371,584 ----a-w C:\WINDOWS\system32\nvwss.dll
2007-09-16 23:07 188,416 ----a-w C:\WINDOWS\system32\nvmccss.dll
2007-09-16 23:07 155,716 ----a-w C:\WINDOWS\system32\nvsvc32.exe
2007-09-16 23:07 147,456 ----a-w C:\WINDOWS\system32\nvcolor.exe
2007-09-16 23:07 1,703,936 ----a-w C:\WINDOWS\system32\nvwdmcpl.dll
2007-09-16 23:07 1,626,112 ----a-w C:\WINDOWS\system32\nwiz.exe
2007-09-16 23:07 1,478,656 ----a-w C:\WINDOWS\system32\nview.dll
2007-09-16 23:07 1,339,392 ----a-w C:\WINDOWS\system32\nvdspsch.exe
2007-09-16 23:07 1,150,976 ----a-w C:\WINDOWS\system32\nvmobls.dll
2007-09-16 23:07 1,019,904 ----a-w C:\WINDOWS\system32\nvwimg.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ANIWZCS2Service"="C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [2004-12-16 16:49]
"NvCplDaemon"="RUNDLL32.exe" [2004-08-03 23:56 C:\WINDOWS\system32\rundll32.exe]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoRecentDocsMenu"= 0 (0x0)
"NoChangeKeyboardNavigationIndicators"= 0 (0x0)
"NoSharedDocuments"= 1 (0x1)
[hklm\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
C:\WINDOWS\system32\klogon.dll 2007-06-28 11:51 206088 C:\WINDOWS\system32\klogon.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^Scheduler.lnk]
path=C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Scheduler.lnk
backup=C:\WINDOWS\pss\Scheduler.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Privacy Auditor.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Privacy Auditor.lnk
backup=C:\WINDOWS\pss\Privacy Auditor.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Quick Shelf.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Quick Shelf.lnk
backup=C:\WINDOWS\pss\Quick Shelf.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^SpyCatcher Protector.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\SpyCatcher Protector.lnk
backup=C:\WINDOWS\pss\SpyCatcher Protector.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^VIA RAID TOOL.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\VIA RAID TOOL.lnk
backup=C:\WINDOWS\pss\VIA RAID TOOL.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVP]
2007-06-28 11:51 218376 --a------ C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GhostSurf Reminder]
C:\Program Files\GhostSurf Platinum\Privacy Control Center.exe reminder
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GhostSurfDelSatellite]
C:\Program Files\GhostSurf Platinum\DeleteSatellite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDInspector.exe]
C:\Program Files\Hard Drive Inspector\HDInspector.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICOOL]
C:\Program Files\GIGABYTE\I-Cool\run.exe HIDE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
C:\Program Files\MSN Messenger\MsnMsgr.Exe /background
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\WINDOWS\system32\oodtray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
SOUNDMAN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2007-10-10 21:21 77824 --a------ C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
*Newly Created Service* - CATCHME
.
**************************************************************************
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net
Rootkit scan 2007-11-30 23:16:51
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2007-11-30 23:17:43
.
--- E O F ---
|
