API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 28th, 2012
59
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 25.08 KB | None | 0 0
raw download clone embed print report
  1. ComboFix 12-06-28.01 - nick 28/06/2012 15:42:37.2.2 - x86
  2. Microsoft Windows XP Home Edition 5.1.2600.3.1253.30.1032.18.1022.464 [GMT 3:00]
  3. Running from: f:\τα έγγραφα μου\Ληφθέντα αρχεία\ComboFix.exe
  4. AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
  5. .
  6. .
  7. ((((((((((((((((((((((((( Files Created from 2012-05-28 to 2012-06-28 )))))))))))))))))))))))))))))))
  8. .
  9. .
  10. 2012-06-28 09:54 . 2012-06-28 09:54 -------- d-----w- c:\program files\ESET
  11. 2012-06-28 05:54 . 2012-06-28 05:54 -------- d-----w- c:\documents and settings\Administrator\Application Data\Avira
  12. 2012-06-27 20:43 . 2012-06-27 20:43 -------- d-----w- c:\documents and settings\nick\Application Data\Avira
  13. 2012-06-27 20:38 . 2012-04-27 07:20 137928 ----a-w- c:\windows\system32\drivers\avipbb.sys
  14. 2012-06-27 20:38 . 2012-04-24 21:32 83392 ----a-w- c:\windows\system32\drivers\avgntflt.sys
  15. 2012-06-27 20:38 . 2012-04-16 18:18 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
  16. 2012-06-27 20:38 . 2012-06-27 20:38 -------- d-----w- c:\program files\Avira
  17. 2012-06-27 20:38 . 2012-06-27 20:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
  18. 2012-06-27 20:12 . 2012-06-28 12:36 -------- d-----w- c:\documents and settings\nick\Local Settings\Application Data\AskToolbar
  19. 2012-06-27 18:01 . 2012-06-27 18:01 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Mozilla
  20. 2012-06-27 17:32 . 2012-06-27 20:12 -------- d-----w- C:\sh4ldr
  21. 2012-06-27 17:32 . 2012-06-27 17:32 -------- d-----w- c:\program files\Enigma Software Group
  22. 2012-06-27 17:32 . 2012-06-27 20:12 -------- d-----w- c:\windows\9E897D0FF80441A3966C7BB6EB5B6BE8.TMP
  23. 2012-06-27 17:31 . 2012-06-27 17:31 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
  24. 2012-06-27 17:26 . 2012-06-27 17:26 -------- d-----w- c:\documents and settings\nick\Application Data\DriverCure
  25. 2012-06-27 17:26 . 2012-06-27 17:26 -------- d-----w- c:\documents and settings\nick\Application Data\SpeedyPC Software
  26. 2012-06-27 17:26 . 2012-06-27 20:12 -------- d-----w- c:\documents and settings\All Users\Application Data\SpeedyPC Software
  27. 2012-06-27 17:08 . 2012-06-27 17:08 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
  28. 2012-06-27 06:19 . 2012-06-27 17:09 -------- d-----w- c:\documents and settings\nick\Application Data\DAEMON Tools Lite
  29. 2012-06-27 06:19 . 2012-06-27 17:08 -------- d-----w- c:\program files\DAEMON Tools Lite
  30. 2012-06-27 06:18 . 2012-06-27 06:19 -------- d-----w- c:\documents and settings\All Users\Application Data\DAEMON Tools Lite
  31. 2012-06-19 14:23 . 2012-06-19 14:23 -------- d-----w- c:\documents and settings\nick\Application Data\Corel
  32. 2012-06-19 14:23 . 2012-06-19 14:24 -------- d-----w- c:\documents and settings\All Users\Application Data\Protexis
  33. 2012-06-19 14:22 . 2012-06-19 14:22 -------- d-----w- c:\documents and settings\nick\Application Data\Ulead Systems
  34. 2012-06-19 14:22 . 2012-06-19 14:22 -------- d-----w- c:\documents and settings\nick\Local Settings\Application Data\Corel PaintShop Pro
  35. 2012-06-19 14:21 . 2012-06-24 13:05 -------- d-----w- c:\documents and settings\All Users\Application Data\Corel
  36. 2012-06-19 14:21 . 2012-06-19 14:21 -------- d-----w- c:\program files\Common Files\Protexis
  37. 2012-06-19 14:17 . 2012-06-19 14:17 -------- d-----w- c:\program files\Corel
  38. 2012-06-19 14:17 . 2007-07-19 21:57 267112 ----a-w- c:\windows\system32\xactengine2_9.dll
  39. 2012-06-19 14:17 . 2007-06-20 17:46 266088 ----a-w- c:\windows\system32\xactengine2_8.dll
  40. 2012-06-19 14:17 . 2007-05-16 13:45 443752 ----a-w- c:\windows\system32\d3dx10_34.dll
  41. 2012-06-19 14:17 . 2007-05-16 13:45 1124720 ----a-w- c:\windows\system32\D3DCompiler_34.dll
  42. 2012-06-19 14:17 . 2007-04-04 15:53 81768 ----a-w- c:\windows\system32\xinput1_3.dll
  43. 2012-06-19 14:17 . 2007-04-04 15:55 261480 ----a-w- c:\windows\system32\xactengine2_7.dll
  44. 2012-06-19 14:17 . 2007-03-15 13:57 443752 ----a-w- c:\windows\system32\d3dx10_33.dll
  45. 2012-06-19 14:17 . 2007-03-12 13:42 1123696 ----a-w- c:\windows\system32\D3DCompiler_33.dll
  46. 2012-06-19 12:21 . 2012-06-19 12:21 -------- d-----w- c:\documents and settings\All Users\Application Data\regid.1986-12.com.adobe
  47. 2012-06-19 11:24 . 2012-06-19 11:24 -------- d-----w- c:\documents and settings\nick\Local Settings\Application Data\fontconfig
  48. 2012-06-19 11:24 . 2012-06-19 11:43 -------- d-----w- c:\documents and settings\nick\.gimp-2.8
  49. 2012-06-19 11:24 . 2012-06-19 11:24 -------- d-----w- c:\documents and settings\nick\Local Settings\Application Data\gegl-0.2
  50. 2012-06-13 11:59 . 2012-05-11 14:41 521728 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
  51. 2012-06-11 14:22 . 2012-05-13 17:05 79872 ----a-w- c:\windows\system32\ff_vfw.dll
  52. 2012-06-11 14:22 . 2012-06-11 14:22 -------- d-----w- c:\program files\ffdshow
  53. 2012-06-11 14:19 . 2012-06-11 14:19 -------- d-----w- c:\program files\Haali
  54. 2012-06-11 13:45 . 2012-06-11 13:45 -------- d-----w- c:\documents and settings\nick\Application Data\RealNetworks
  55. 2012-06-02 13:14 . 2012-06-02 13:48 -------- d-----w- c:\documents and settings\nick\Application Data\Nero
  56. 2012-06-02 13:11 . 2012-06-02 13:12 -------- d-----w- c:\program files\Common Files\Nero
  57. 2012-06-02 13:11 . 2012-06-02 13:13 -------- d-----w- c:\program files\Nero
  58. 2012-06-02 13:11 . 2012-06-02 13:13 -------- d-----w- c:\documents and settings\All Users\Application Data\Nero
  59. 2012-06-02 13:05 . 2012-06-02 13:05 -------- d-----w- c:\program files\Ask.com
  60. 2012-06-02 13:05 . 2008-10-15 03:22 4379984 ----a-w- c:\windows\system32\D3DX9_40.dll
  61. 2012-06-02 13:04 . 2007-05-16 13:45 3497832 ----a-w- c:\windows\system32\d3dx9_34.dll
  62. 2012-06-01 18:35 . 2012-06-01 18:35 -------- d-----w- c:\program files\Common Files\xing shared
  63. 2012-05-30 17:33 . 2012-05-30 17:33 -------- d-----w- c:\documents and settings\nick\Application Data\Command & Conquer 3 Kane's Wrath
  64. 2012-05-30 17:32 . 2007-10-22 00:39 267272 ----a-w- c:\windows\system32\xactengine2_10.dll
  65. 2012-05-30 17:32 . 2007-10-22 00:37 17928 ----a-w- c:\windows\system32\X3DAudio1_2.dll
  66. 2012-05-30 17:32 . 2007-10-12 12:14 1374232 ----a-w- c:\windows\system32\D3DCompiler_36.dll
  67. 2012-05-30 17:32 . 2007-10-02 06:56 444776 ----a-w- c:\windows\system32\d3dx10_36.dll
  68. 2012-05-30 17:32 . 2007-10-12 12:14 3734536 ----a-w- c:\windows\system32\d3dx9_36.dll
  69. .
  70. .
  71. .
  72. (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
  73. .
  74. 2012-06-23 11:35 . 2012-04-23 16:26 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
  75. 2012-06-23 11:35 . 2011-05-30 07:33 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
  76. 2012-06-02 12:19 . 2009-08-06 17:24 24088 ----a-w- c:\windows\system32\wucltui.dll.mui
  77. 2012-06-02 12:19 . 2009-08-06 17:24 16408 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
  78. 2012-06-02 12:19 . 2009-08-06 17:24 16408 ----a-w- c:\windows\system32\wuapi.dll.mui
  79. 2012-06-02 12:19 . 2010-12-22 05:29 329240 ----a-w- c:\windows\system32\wucltui.dll
  80. 2012-06-02 12:19 . 2010-12-22 05:29 210968 ----a-w- c:\windows\system32\wuweb.dll
  81. 2012-06-02 12:19 . 2010-12-22 05:29 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
  82. 2012-06-02 12:19 . 2010-12-22 05:29 53784 ----a-w- c:\windows\system32\wuauclt.exe
  83. 2012-06-02 12:19 . 2010-12-22 05:29 35864 ----a-w- c:\windows\system32\wups.dll
  84. 2012-06-02 12:19 . 2009-08-06 17:24 45080 ----a-w- c:\windows\system32\wups2.dll
  85. 2012-06-02 12:19 . 2006-03-02 12:00 97304 ----a-w- c:\windows\system32\cdm.dll
  86. 2012-06-02 12:19 . 2010-12-22 05:29 577048 ----a-w- c:\windows\system32\wuapi.dll
  87. 2012-06-02 12:19 . 2009-08-06 17:23 19480 ----a-w- c:\windows\system32\wuaueng.dll.mui
  88. 2012-06-02 12:19 . 2010-12-22 05:29 1933848 ----a-w- c:\windows\system32\wuaueng.dll
  89. 2012-06-02 12:19 . 2010-12-22 10:51 18672 ----a-w- c:\windows\system32\mucltui.dll.mui
  90. 2012-06-02 12:18 . 2010-12-22 10:51 275696 ----a-w- c:\windows\system32\mucltui.dll
  91. 2012-06-02 12:18 . 2010-12-22 10:51 214256 ----a-w- c:\windows\system32\muweb.dll
  92. 2012-06-01 18:34 . 2011-12-05 16:02 499712 ----a-w- c:\windows\system32\msvcp71.dll
  93. 2012-05-31 13:21 . 2006-03-02 12:00 604160 ----a-w- c:\windows\system32\crypt32.dll
  94. 2012-05-24 21:18 . 2012-05-24 21:18 4472832 ----a-w- c:\windows\system32\GPhotos.scr
  95. 2012-05-16 15:06 . 2006-03-02 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
  96. 2012-05-15 13:55 . 2006-03-02 12:00 1863424 ----a-w- c:\windows\system32\win32k.sys
  97. 2012-05-15 10:18 . 2011-12-31 19:33 65536 ----a-w- c:\windows\system32\OpenCL.dll
  98. 2012-05-15 10:18 . 2011-12-31 19:33 883008 ----a-w- c:\windows\system32\nvgenco32.dll
  99. 2012-05-15 10:18 . 2011-12-31 19:33 2530624 ----a-w- c:\windows\system32\nvcuvid.dll
  100. 2012-05-15 10:18 . 2011-12-31 19:33 1000768 ----a-w- c:\windows\system32\nvdispco32.dll
  101. 2012-05-15 10:18 . 2011-12-31 19:33 6012928 ----a-w- c:\windows\system32\nvcuda.dll
  102. 2012-05-15 10:18 . 2011-12-31 19:33 2445120 ----a-w- c:\windows\system32\nvcuvenc.dll
  103. 2012-05-15 10:18 . 2011-12-31 19:33 17543168 ----a-w- c:\windows\system32\nvcompiler.dll
  104. 2012-05-15 10:18 . 2006-02-15 11:07 18771968 ----a-w- c:\windows\system32\nvoglnt.dll
  105. 2012-05-15 10:18 . 2006-02-13 13:05 4373248 ----a-w- c:\windows\system32\nv4_disp.dll
  106. 2012-05-15 10:18 . 2006-02-13 13:05 2359808 ----a-w- c:\windows\system32\nvapi.dll
  107. 2012-05-15 10:18 . 2006-02-13 13:05 14014656 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
  108. 2012-05-15 09:43 . 2006-02-13 13:05 229376 ----a-w- c:\windows\system32\nvrszhc.dll
  109. 2012-05-15 09:43 . 2011-12-31 19:34 253952 ----a-w- c:\windows\system32\nvrsth.dll
  110. 2012-05-15 09:43 . 2006-02-13 13:05 282624 ----a-w- c:\windows\system32\nvrsit.dll
  111. 2012-05-15 09:43 . 2006-02-13 13:05 253952 ----a-w- c:\windows\system32\nvrssv.dll
  112. 2012-05-15 09:43 . 2006-02-13 13:05 126976 ----a-w- c:\windows\system32\nvrszht.dll
  113. 2012-05-15 09:43 . 2006-02-13 13:05 335872 ----a-w- c:\windows\system32\nvrsar.dll
  114. 2012-05-15 09:43 . 2006-02-13 13:05 282624 ----a-w- c:\windows\system32\nvrsel.dll
  115. 2012-05-15 09:43 . 2006-02-13 13:05 274432 ----a-w- c:\windows\system32\nvrsnl.dll
  116. 2012-05-15 09:43 . 2006-02-13 13:05 274432 ----a-w- c:\windows\system32\nvrsesm.dll
  117. 2012-05-15 09:43 . 2006-02-13 13:05 266240 ----a-w- c:\windows\system32\nvrsko.dll
  118. 2012-05-15 09:43 . 2006-02-13 13:05 249856 ----a-w- c:\windows\system32\nvrseng.dll
  119. 2012-05-15 09:43 . 2006-02-13 13:05 335872 ----a-w- c:\windows\system32\nvrshe.dll
  120. 2012-05-15 09:43 . 2006-02-13 13:05 286720 ----a-w- c:\windows\system32\nvrsfr.dll
  121. 2012-05-15 09:43 . 2006-02-13 13:05 274432 ----a-w- c:\windows\system32\nvrspt.dll
  122. 2012-05-15 09:43 . 2006-02-13 13:05 258048 ----a-w- c:\windows\system32\nvrssl.dll
  123. 2012-05-15 09:43 . 2006-02-13 13:05 253952 ----a-w- c:\windows\system32\nvrsno.dll
  124. 2012-05-15 09:43 . 2006-02-13 13:05 249856 ----a-w- c:\windows\system32\nvrsfi.dll
  125. 2012-05-15 09:43 . 2006-02-13 13:05 282624 ----a-w- c:\windows\system32\nvrses.dll
  126. 2012-05-15 09:43 . 2006-02-13 13:05 270336 ----a-w- c:\windows\system32\nvrsru.dll
  127. 2012-05-15 09:43 . 2006-02-13 13:05 258048 ----a-w- c:\windows\system32\nvrssk.dll
  128. 2012-05-15 09:43 . 2006-02-13 13:05 262144 ----a-w- c:\windows\system32\nvrshu.dll
  129. 2012-05-15 09:43 . 2006-02-13 13:05 258048 ----a-w- c:\windows\system32\nvrstr.dll
  130. 2012-05-15 09:43 . 2006-02-13 13:05 253952 ----a-w- c:\windows\system32\nvrsda.dll
  131. 2012-05-15 09:43 . 2006-02-13 13:05 274432 ----a-w- c:\windows\system32\nvrsja.dll
  132. 2012-05-15 09:43 . 2006-02-13 13:05 258048 ----a-w- c:\windows\system32\nvrspl.dll
  133. 2012-05-15 09:43 . 2006-02-13 13:05 278528 ----a-w- c:\windows\system32\nvrsde.dll
  134. 2012-05-15 09:43 . 2006-02-13 13:05 270336 ----a-w- c:\windows\system32\nvrsptb.dll
  135. 2012-05-15 09:43 . 2006-02-13 13:05 249856 ----a-w- c:\windows\system32\nvrscs.dll
  136. 2012-05-15 09:40 . 2006-02-13 13:05 54272 ----a-w- c:\windows\system32\nvwddi.dll
  137. 2012-05-15 09:40 . 2006-02-13 13:05 15504192 ----a-w- c:\windows\system32\nvcpl.dll
  138. 2012-05-15 09:40 . 2006-02-13 13:05 143680 ----a-w- c:\windows\system32\nvcolor.exe
  139. 2012-05-15 09:40 . 2006-02-13 13:05 164160 ----a-w- c:\windows\system32\nvsvc32.exe
  140. 2012-05-15 09:40 . 2006-02-13 13:05 108352 ----a-w- c:\windows\system32\nvmctray.dll
  141. 2012-05-11 14:41 . 2006-03-02 12:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
  142. 2012-05-11 14:41 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
  143. 2012-05-11 11:38 . 2006-03-02 12:00 385024 ----a-w- c:\windows\system32\html.iec
  144. 2012-05-05 03:14 . 2006-03-02 12:00 2155520 ----a-w- c:\windows\system32\ntoskrnl.exe
  145. 2012-05-05 03:14 . 2004-09-04 06:41 2033664 ----a-w- c:\windows\system32\ntkrnlpa.exe
  146. 2012-05-02 13:47 . 2010-12-22 05:27 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
  147. 2012-04-23 16:35 . 2010-12-29 16:38 73728 ----a-w- c:\windows\system32\javacpl.cpl
  148. 2012-04-23 16:35 . 2010-12-29 16:38 472808 ----a-w- c:\windows\system32\deployJava1.dll
  149. 2012-04-04 12:56 . 2011-10-25 09:55 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
  150. .
  151. .
  152. ((((((((((((((((((((((((((((( SnapShot@2012-06-27_20.29.53 )))))))))))))))))))))))))))))))))))))))))
  153. .
  154. + 2012-06-28 09:49 . 2012-06-28 09:49 16384 c:\windows\Temp\Perflib_Perfdata_410.dat
  155. + 2012-06-28 09:47 . 2012-06-28 09:47 16384 c:\windows\Temp\Perflib_Perfdata_1b8.dat
  156. + 2006-03-02 12:00 . 2012-06-28 06:42 77334 c:\windows\system32\perfc009.dat
  157. - 2006-03-02 12:00 . 2012-06-27 17:56 77334 c:\windows\system32\perfc009.dat
  158. + 2012-06-27 20:38 . 2010-06-17 12:14 28520 c:\windows\system32\drivers\ssmdrv.sys
  159. - 2006-03-02 12:00 . 2012-06-27 17:56 476300 c:\windows\system32\perfh009.dat
  160. + 2006-03-02 12:00 . 2012-06-28 06:42 476300 c:\windows\system32\perfh009.dat
  161. - 2006-03-02 12:00 . 2012-06-27 17:56 588902 c:\windows\system32\perfh008.dat
  162. + 2006-03-02 12:00 . 2012-06-28 06:42 588902 c:\windows\system32\perfh008.dat
  163. - 2006-03-02 12:00 . 2012-06-27 17:56 102050 c:\windows\system32\perfc008.dat
  164. + 2006-03-02 12:00 . 2012-06-28 06:42 102050 c:\windows\system32\perfc008.dat
  165. .
  166. ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
  167. .
  168. .
  169. *Note* empty entries & legit default entries are not shown
  170. REGEDIT4
  171. .
  172. [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
  173. "{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files\uTorrentBar\prxtbuTo2.dll" [2011-05-09 176936]
  174. .
  175. [HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
  176. .
  177. [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
  178. 2011-05-09 09:49 176936 ----a-w- c:\program files\uTorrentBar\prxtbuTo2.dll
  179. .
  180. [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
  181. 2010-05-21 09:17 1233288 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
  182. .
  183. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
  184. "{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files\uTorrentBar\prxtbuTo2.dll" [2011-05-09 176936]
  185. "{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-05-21 1233288]
  186. .
  187. [HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
  188. .
  189. [HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
  190. [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
  191. [HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
  192. [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
  193. .
  194. [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
  195. "{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC}"= "c:\program files\uTorrentBar\prxtbuTo2.dll" [2011-05-09 176936]
  196. "{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-05-21 1233288]
  197. .
  198. [HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
  199. .
  200. [HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
  201. [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
  202. [HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
  203. [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
  204. .
  205. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  206. "NVIDIA nTune"="c:\program files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2007-09-04 81920]
  207. "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
  208. .
  209. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  210. "High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2005-01-07 61952]
  211. "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-01-21 91520]
  212. "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
  213. "SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2005-05-20 925696]
  214. "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
  215. "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2012-05-15 15504192]
  216. "NvMediaCenter"="NvMCTray.dll" [2012-05-15 108352]
  217. "nwiz"="c:\program files\NVIDIA Corporation\nview\nwiz.exe" [2012-05-15 1634112]
  218. "TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2012-06-01 296056]
  219. "WinampAgent"="c:\program files\Winamp\winampa.exe" [2011-03-22 74752]
  220. "AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-03-15 499608]
  221. "SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
  222. "AdobeCS5.5ServiceManager"="c:\program files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360]
  223. "UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2010-07-04 17408]
  224. "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-05-01 348624]
  225. .
  226. [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
  227. "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
  228. .
  229. [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
  230. "%windir%\\system32\\sessmgr.exe"=
  231. .
  232. R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [27/6/2012 11:38 μμ 36000]
  233. R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [27/6/2012 8:08 μμ 242240]
  234. R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [27/6/2012 11:38 μμ 86224]
  235. R2 NAUpdate;@c:\program files\Nero\Update\NASvc.exe,-200;c:\program files\Nero\Update\NASvc.exe [4/5/2010 12:07 μμ 503080]
  236. R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [23/4/2012 2:23 μμ 1262400]
  237. R3 SNCT511;See U Camera;c:\windows\system32\drivers\snct511.sys [19/6/2012 11:32 πμ 219264]
  238. S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [10/1/2011 1:09 πμ 136176]
  239. S2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [19/6/2012 5:32 μμ 3048136]
  240. S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [14/6/2012 11:37 πμ 160944]
  241. S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [23/4/2012 7:26 μμ 250056]
  242. S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [24/12/2010 2:10 μμ 13192]
  243. S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [24/12/2010 2:10 μμ 8456]
  244. S3 gupdatem;Υπηρεσία Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [10/1/2011 1:09 πμ 136176]
  245. S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [21/1/2010 5:51 μμ 30963576]
  246. S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [11/5/2012 11:23 μμ 113120]
  247. S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9/1/2010 8:37 μμ 4640000]
  248. S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19/2/2010 1:37 μμ 517096]
  249. S3 wxpSvc;webcamXP Service;c:\program files\wLite\wService.exe [3/5/2010 12:34 πμ 5027328]
  250. .
  251. Contents of the 'Scheduled Tasks' folder
  252. .
  253. 2012-06-28 c:\windows\Tasks\Adobe Flash Player Updater.job
  254. - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-23 11:35]
  255. .
  256. 2012-06-26 c:\windows\Tasks\debutShakeIcon.job
  257. - c:\program files\NCH Software\Debut\debut.exe [2012-06-19 10:50]
  258. .
  259. 2012-06-26 c:\windows\Tasks\ExpressBurnReminder.job
  260. - c:\program files\NCH Software\ExpressBurn\expressburn.exe [2012-06-19 10:51]
  261. .
  262. 2012-06-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
  263. - c:\program files\Google\Update\GoogleUpdate.exe [2011-01-09 22:09]
  264. .
  265. 2012-06-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
  266. - c:\program files\Google\Update\GoogleUpdate.exe [2011-01-09 22:09]
  267. .
  268. 2012-06-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-220523388-1592454029-725345543-1004Core.job
  269. - c:\documents and settings\nick\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-22 06:01]
  270. .
  271. 2012-06-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-220523388-1592454029-725345543-1004UA.job
  272. - c:\documents and settings\nick\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-12-22 06:01]
  273. .
  274. 2012-06-26 c:\windows\Tasks\prismShakeIcon.job
  275. - c:\program files\NCH Software\Prism\prism.exe [2012-06-19 10:50]
  276. .
  277. 2012-06-28 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-220523388-1592454029-725345543-1004.job
  278. - c:\program files\Real\RealUpgrade\realupgrade.exe [2012-04-30 15:21]
  279. .
  280. 2012-06-28 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-220523388-1592454029-725345543-1004.job
  281. - c:\program files\Real\RealUpgrade\realupgrade.exe [2012-04-30 15:21]
  282. .
  283. 2012-06-28 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
  284. - c:\program files\Ask.com\UpdateTask.exe [2010-05-21 09:17]
  285. .
  286. 2012-06-28 c:\windows\Tasks\Screamer Radio.job
  287. - c:\docume~1\nick\6808~1\system\players\SCREAM~1\screamer.exe [2010-11-20 14:58]
  288. .
  289. 2012-06-22 c:\windows\Tasks\videopadShakeIcon.job
  290. - c:\program files\NCH Software\VideoPad\videopad.exe [2012-06-19 10:50]
  291. .
  292. .
  293. ------- Supplementary Scan -------
  294. .
  295. uStart Page = hxxp://www.google.com
  296. mStart Page = hxxp://greek.toggle.com/el/index.php?rvs=google
  297. uInternet Connection Wizard,ShellNext = iexplore
  298. IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
  299. IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\Office14\EXCEL.EXE/3000
  300. IE: Se&nd to OneNote - c:\progra~1\MI1933~1\Office14\ONBttnIE.dll/105
  301. TCP: DhcpNameServer = 192.168.1.1
  302. FF - ProfilePath - c:\documents and settings\nick\Application Data\Mozilla\Firefox\Profiles\ock63add.default\
  303. FF - prefs.js: browser.startup.homepage - www.google.gr
  304. .
  305. .
  306. **************************************************************************
  307. .
  308. catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
  309. Rootkit scan 2012-06-28 15:48
  310. Windows 5.1.2600 Service Pack 3 NTFS
  311. .
  312. scanning hidden processes ...
  313. .
  314. scanning hidden autostart entries ...
  315. .
  316. scanning hidden files ...
  317. .
  318. scan completed successfully
  319. hidden files: 0
  320. .
  321. **************************************************************************
  322. .
  323. [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\wxpSvc]
  324. "ImagePath"="c:\program files\wLite\wService.exe /startedbyscm:5053B757-40E35B3B-webcamSRV"
  325. .
  326. --------------------- LOCKED REGISTRY KEYS ---------------------
  327. .
  328. [HKEY_USERS\S-1-5-21-220523388-1592454029-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU\jpg ֚€|Φ[d
  329. H†s•]
  330. @Class="Shell"
  331. "a"="c:\\Documents and Settings\\nick\\Επιφάνεια εργασίας\\Φάκελος\\1111111111111.?g??????D"
  332. "MRUList"="cba"
  333. "b"="c:\\Documents and Settings\\nick\\Επιφάνεια εργασίας\\Φάκελος\\22222222222.?g??????D"
  334. "c"="c:\\Documents and Settings\\nick\\Επιφάνεια εργασίας\\Φάκελος\\ASPROMAYRI1.?g??????D"
  335. .
  336. [HKEY_USERS\S-1-5-21-220523388-1592454029-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\. jpg ֚€|Φ[d
  337. H†s•]
  338. @Class="Shell"
  339. .
  340. [HKEY_USERS\S-1-5-21-220523388-1592454029-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\. jpg ֚€|Φ[d
  341. H†s•\OpenWithList]
  342. @Class="Shell"
  343. "a"="Corel PaintShop Pro.exe"
  344. "MRUList"="a"
  345. .
  346. [HKEY_USERS\S-1-5-21-220523388-1592454029-725345543-1004\Software\SecuROM\License information*]
  347. "datasecu"=hex:74,82,93,d0,a7,bf,04,d4,cc,69,8c,d6,08,47,0f,19,5f,fe,14,cc,e8,
  348. 66,c0,f1,0f,fd,bb,0c,58,69,c3,a0,1b,bd,f4,34,82,b8,de,35,1a,f5,a1,08,3b,71,\
  349. "rkeysecu"=hex:49,1a,27,73,6a,63,8e,bb,5b,74,f0,10,22,0b,a7,bb
  350. .
  351. --------------------- DLLs Loaded Under Running Processes ---------------------
  352. .
  353. - - - - - - - > 'explorer.exe'(3948)
  354. c:\progra~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
  355. c:\progra~1\MI1933~1\Office14\1033\GrooveIntlResource.dll
  356. c:\windows\system32\msi.dll
  357. c:\windows\system32\webcheck.dll
  358. c:\windows\system32\WPDShServiceObj.dll
  359. c:\windows\system32\PortableDeviceTypes.dll
  360. c:\windows\system32\PortableDeviceApi.dll
  361. .
  362. Completion time: 2012-06-28 15:51:08
  363. ComboFix-quarantined-files.txt 2012-06-28 12:51
  364. .
  365. Pre-Run: 8 Κατάλογοι 52.277.346.304 διαθέσιμα byte
  366. Post-Run: 9 Κατάλογοι 52.401.614.848 διαθέσιμα byte
  367. .
  368. - - End Of File - - B5DD309731C5BD7E850194A4D44C8BE0
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!