ComboFix 07-06-18.2 - T:\ComboFix.exe
"Neo" - 2007-06-20 12:34:55 - Dodatek Service Pack 2  NTFS  


(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\msxml3a.dll


(((((((((((((((((((((((((   Files Created from 2007-05-20 to 2007-06-20  )))))))))))))))))))))))))))))))


2007-06-20 12:34	49,152	--a------	C:\WINDOWS\nircmd.exe
2007-06-20 10:11	<DIR>	d--------	C:\Program Files\BitTorrent
2007-06-20 09:40	<DIR>	d--------	C:\DOCUME~1\Neo\DANEAP~1\Gadu-Gadu
2007-06-17 13:39	<DIR>	d--------	C:\DOCUME~1\Neo\Scilab
2007-06-17 13:35	<DIR>	d--------	C:\WINDOWS\Vbox
2007-06-17 13:35	<DIR>	d--------	C:\f
2007-06-09 16:49	<DIR>	d--------	C:\DOCUME~1\Neo\.idlerc
2007-06-06 20:32	28,008	--a------	C:\WINDOWS\system32\drivers\VBoxUSBMon.sys
2007-05-28 17:28	27,648	--a------	C:\WINDOWS\system32\sintcm32.dll
2007-05-28 17:28	<DIR>	d--------	C:\mkstd


((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-06-20 10:19:05	--------	d-----w	C:\Program Files\Thunderbird
2007-06-20 08:20:31	--------	d-----w	C:\DOCUME~1\Neo\DANEAP~1\BitTorrent
2007-06-17 13:56:53	--------	d-----w	C:\DOCUME~1\Neo\DANEAP~1\GetRightToGo
2007-06-11 05:52:34	535,760	----a-w	C:\WINDOWS\system32\perfh015.dat
2007-06-11 05:52:34	111,834	----a-w	C:\WINDOWS\system32\perfc015.dat
2007-06-10 15:24:55	--------	d-----w	C:\DOCUME~1\Neo\DANEAP~1\VMware
2007-06-05 23:19:22	33,608	----a-w	C:\WINDOWS\system32\drivers\VBoxDrv.sys
2007-05-06 13:01:04	--------	d-----w	C:\Program Files\Common Files\Intel
2007-05-06 10:52:19	4,430	----a-w	C:\WINDOWS\unins000.dat
2007-05-01 06:48:43	2	----a-w	C:\WINDOWS\fw_.dat
2007-04-29 06:19:48	--------	d-----w	C:\DOCUME~1\Neo\DANEAP~1\SQLite Administrator
2007-04-23 12:11:35	--------	d-----w	C:\Program Files\Common Files\Wise Installation Wizard
2007-04-18 06:51:20	2,113,536	----a-w	C:\WINDOWS\system32\python25.dll
2006-12-04 08:32:12	80	--sh--r	C:\WINDOWS\system32\9C884F1D86.dll


(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
 
 
*Note* empty entries & legit default entries are not shown 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{C08DF07A-3E49-4E25-9AB0-D3882835F153}=C:\PROGRA~1\TEXTware\QUICKF~1\PlugIns\IEHelp.dll [2001-08-10 16:23]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nTrayFw"="C:\NARZED~1\NVIDIA~1\NETWOR~1\bin\nTrayFw.exe" [2005-04-29 19:22]
"nwiz"="nwiz.exe" [2005-11-04 19:03 C:\WINDOWS\system32\nwiz.exe]
"nod32kui"="C:\Narzedzia\Nod32\nod32kui.exe" [2006-07-08 15:42]
"SoundMan"="SOUNDMAN.EXE" [2005-10-04 15:12 C:\WINDOWS\soundman.exe]
"UserFaultCheck"="%systemroot%\system32\dumprep 0 -u" []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:44]
"system"="c:\windows\system\system.exe" [2007-05-02 15:21]
"AllerCalc"="F:\AllerCalc\AllerCalc.exe" []
"Bittorrent Download Accelerator Pro"="D:\Bittorrent Download Accelerator Pro\Bittorrent Download Accelerator Pro.exe" [2005-06-06 12:36]
"BitTorrent"="D:\BitTorrent\bittorrent.exe" [2007-03-02 01:11]


**************************************************************************

catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-06-20 12:35:42
Windows 5.1.2600 Dodatek Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 2007-06-20 12:36:05
C:\ComboFix-quarantined-files.txt ... 2007-06-20 12:35

	--- E O F ---