ComboFix 07-10-26.4 - a 2007-10-26 19:01:50.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.738 [GMT 2:00]
Running from: E:\Programy\ComboFix.exe
* Created a new restore point
.
((((((((((((((((((((((((( Files Created from 2007-09-26 to 2007-10-26 )))))))))))))))))))))))))))))))
.
2007-10-26 19:00 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-10-26 18:13 <DIR> d--h----- C:\WINDOWS\$hf_mig$
2007-10-25 19:32 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2007-10-25 16:38 204,800 --a------ C:\WINDOWS\system32\IVIresizeW7.dll
2007-10-25 16:38 200,704 --a------ C:\WINDOWS\system32\IVIresizeA6.dll
2007-10-25 16:38 192,512 --a------ C:\WINDOWS\system32\IVIresizeP6.dll
2007-10-25 16:38 192,512 --a------ C:\WINDOWS\system32\IVIresizeM6.dll
2007-10-25 16:38 188,416 --a------ C:\WINDOWS\system32\IVIresizePX.dll
2007-10-25 16:38 20,480 --a------ C:\WINDOWS\system32\IVIresize.dll
2007-10-25 16:36 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys
2007-10-25 16:36 5,504 --a--c--- C:\WINDOWS\system32\dllcache\mstee.sys
2007-10-25 16:34 449,888 -ra------ C:\WINDOWS\system32\drivers\Cap7134.sys
2007-10-25 16:34 94,208 -ra------ C:\WINDOWS\system32\34api.dll
2007-10-25 16:34 90,112 -ra------ C:\WINDOWS\system32\34dialog.dll
2007-10-25 16:34 90,112 -ra------ C:\WINDOWS\system32\34COM.dll
2007-10-25 16:34 73,728 -ra------ C:\WINDOWS\system32\34dd.dll
2007-10-25 16:34 69,632 -ra------ C:\WINDOWS\system32\34TvCtrl.dll
2007-10-25 16:34 54,784 --a------ C:\WINDOWS\system32\vfwwdm32.dll
2007-10-25 16:34 54,784 --a--c--- C:\WINDOWS\system32\dllcache\vfwwdm32.dll
2007-10-25 16:34 32,768 -ra------ C:\WINDOWS\system32\Prop7134.dll
2007-10-25 16:32 <DIR> d-------- C:\Documents and Settings\All Users\Dane aplikacji\InterVideo
2007-10-25 15:50 <DIR> d-------- C:\Documents and Settings\a\Dane aplikacji\Hamachi
2007-10-25 15:49 <DIR> d-------- C:\Program Files\Hamachi
2007-10-25 15:49 25,280 --a------ C:\WINDOWS\system32\drivers\hamachi.sys
2007-10-25 15:48 <DIR> d-------- C:\Program Files\Gadu-Gadu
2007-10-25 15:48 <DIR> d-------- C:\Documents and Settings\a\Gadu-Gadu
2007-10-25 15:48 1,156 --a------ C:\WINDOWS\mozver.dat
2007-10-25 15:47 <DIR> d-------- C:\Program Files\InterVideo
2007-10-25 15:35 <DIR> d-------- C:\Program Files\Netia
2007-10-25 15:35 0 --a------ C:\WINDOWS\nsreg.dat
2007-10-25 15:31 32,768 --a------ C:\WINDOWS\system32\WooDial2000.dll
2007-10-25 15:30 <DIR> d-------- C:\Program Files\SAGEM
2007-10-25 15:30 <DIR> d-------- C:\Program Files\Java
2007-10-25 15:18 <DIR> d--hs---- C:\WINDOWS\ftpcache
2007-10-25 15:18 <DIR> d-------- C:\Program Files\Neostrada TP
2007-10-25 15:17 <DIR> d-------- C:\Program Files\Common Files\G DATA
2007-10-25 15:17 <DIR> d-------- C:\Program Files\CDRecordKit
2007-10-25 15:17 <DIR> d-------- C:\Program Files\AntiVirenKit
2007-10-25 15:17 50,458 --a------ C:\WINDOWS\system32\interceptor.sys
2007-10-25 15:17 45,056 --a------ C:\WINDOWS\system32\WNASPI32.DLL
2007-10-25 15:17 16,512 --a------ C:\WINDOWS\system32\drivers\ASPI32.SYS
2007-10-25 15:17 12,738 --a------ C:\WINDOWS\system32\drivers\HookCentre.sys
2007-10-25 15:14 516,096 --------- C:\WINDOWS\system32\ati2sgag.exe
2007-10-25 15:13 <DIR> d-------- C:\Program Files\ATI Technologies
2007-10-25 15:13 299,008 -ra------ C:\WINDOWS\system32\atiiiexx.dll
2007-10-25 15:13 73,845 -ra------ C:\WINDOWS\system32\atiicdxx.dat
2007-10-25 15:11 306,688 --a------ C:\WINDOWS\IsUninst.exe
2007-10-25 15:11 26,880 --a------ C:\WINDOWS\system32\drivers\VIAAGP1.SYS
2007-10-25 15:10 <DIR> d-------- C:\Documents and Settings\a\WINDOWS
2007-10-25 15:07 <DIR> d--h----- C:\Program Files\InstallShield Installation Information
2007-10-25 15:07 <DIR> d-------- C:\Program Files\Common Files\InstallShield
2007-10-25 15:07 <DIR> d-------- C:\Program Files\C-Media 3D Audio
2007-10-25 15:06 5,824 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-10-25 13:30 23 ----a-w C:\WINDOWS\system32\drivers\adidsl.cfg
2007-10-24 21:15 --------- d-----w C:\Program Files\microsoft frontpage
2007-10-24 21:13 --------- d-----w C:\Program Files\Usługi online
2007-07-30 17:19 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-07-30 17:19 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-07-30 17:19 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-07-30 17:19 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
2007-07-30 17:19 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-07-30 17:19 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-07-30 17:19 1,712,984 ----a-w C:\WINDOWS\system32\wuaueng.dll
2001-11-23 04:08 712,704 ----a-r C:\WINDOWS\inf\OTHER\AUDIO3D.DLL
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Cmaudio"="cmicnfg.cpl" []
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-02-01 21:05]
"WINSCHEDULER"="C:\PROGRA~1\INTERV~1\WinDVR\WINSCH~1.EXE" [2003-09-03 18:49]
"WinRemote"="C:\Program Files\InterVideo\WinDVR\WinRemote.exe" [2003-09-03 18:57]
"AVK Mail Checker"="C:\Program Files\Common Files\G DATA\AVKMail\AVKPOP.EXE" [2004-10-07 15:04]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:44]
"NETIANET"="C:\Program Files\Netia\Net\netianet.exe" [2007-02-11 22:50]
"Gadu-Gadu"="C:\Program Files\Gadu-Gadu\gg.exe" [2004-02-27 12:03]
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"NETIANET"=C:\Program Files\Netia\Net\netianet.exe
C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\
DSLMON.lnk - C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe [2007-10-25 15:30:34]
InterVideo WinCinema Manager.lnk - C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe [2007-10-25 16:38:22]
R2 AVKService;AVK Service;C:\Program Files\AntiVirenKit\AVKService.exe
R2 AVKWCtl;Strażnik AVK;C:\Program Files\AntiVirenKit\AVKWCtl.exe
R2 Cap7134;TV Capture Card WDM Video Capture;C:\WINDOWS\system32\DRIVERS\Cap7134.sys
R3 GDInterceptor;GDInterceptor;\??\C:\WINDOWS\system32\interceptor.sys
R3 HookCentre;HookCentre;\??\C:\WINDOWS\system32\drivers\HookCentre.sys
R3 PhTVTune;TV Capture Card WDM TV Tuner;C:\WINDOWS\system32\DRIVERS\PhTVTune.sys
*Newly Created Service* - CATCHME
.
**************************************************************************
catchme 0.3.1232 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-26 19:02:56
Windows 5.1.2600 Dodatek Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2007-10-26 19:03:29
.
--- E O F ---