View Single Post
  #14  
Old January 23rd, 2008, 11:15 PM
junlee's Avatar
junlee junlee is offline
Senior Member
 
Join Date: Feb 2007
Posts: 111
ComboFix 08-01-20.1 - Jun Lee 2008-01-23 17:07:42.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1588 [GMT -5:00]
Running from: C:\Documents and Settings\Jun Lee\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\Jun Lee\Desktop\CFScript.txt
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!

FILE
C:\WINDOWS\regedit.exe.reg
C:\WINDOWS\system32\data1.set
C:\WINDOWS\system32\data2.set
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\regedit.exe.reg
C:\WINDOWS\svchost
C:\WINDOWS\svchost\add.txt
C:\WINDOWS\svchost\aliases.ini
C:\WINDOWS\svchost\away.txt
C:\WINDOWS\svchost\channels.txt
C:\WINDOWS\svchost\conn.ini
C:\WINDOWS\svchost\engine.ini
C:\WINDOWS\svchost\flood.txt
C:\WINDOWS\svchost\fullname.txt
C:\WINDOWS\svchost\greet.ini
C:\WINDOWS\svchost\injuraturi.txt
C:\WINDOWS\svchost\IRC.ICO
C:\WINDOWS\svchost\kick.txt
C:\WINDOWS\svchost\mirc.ini
C:\WINDOWS\svchost\notify.ini
C:\WINDOWS\svchost\operator.ini
C:\WINDOWS\svchost\partmsg.ini
C:\WINDOWS\svchost\perform.ini
C:\WINDOWS\svchost\reg.reg
C:\WINDOWS\svchost\remote.ini
C:\WINDOWS\svchost\servers.ini
C:\WINDOWS\system32\data1.set
C:\WINDOWS\system32\data2.set

.
((((((((((((((((((((((((( Files Created from 2007-12-23 to 2008-01-23 )))))))))))))))))))))))))))))))
.

2008-01-21 16:54 . 2000-08-31 08:00 51,200 --a------ C:\WINDOWS\NirCmd.exe
2008-01-20 18:08 . 2008-01-20 22:32 <DIR> d---s---- C:\Program Files\Xfire
2008-01-20 18:08 . 2008-01-20 22:33 <DIR> d-------- C:\Documents and Settings\Jun Lee\Application Data\Xfire
2008-01-20 18:05 . 2008-01-20 18:05 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\InstallShield
2008-01-20 18:00 . 2008-01-20 18:00 <DIR> d-------- C:\Program Files\GALA-NET
2008-01-20 18:00 . 2005-08-11 15:29 73,728 --a------ C:\WINDOWS\system32\ISUSPM.cpl
2008-01-19 12:32 . 2008-01-19 12:35 <DIR> d-------- C:\Program Files\DAEMON Tools Lite
2008-01-19 12:32 . 2008-01-19 12:32 <DIR> d-------- C:\Documents and Settings\Jun Lee\Application Data\DAEMON Tools
2008-01-19 10:57 . 2008-01-19 10:57 <DIR> d-------- C:\Program Files\uTorrent
2008-01-19 10:57 . 2008-01-21 22:43 <DIR> d-------- C:\Documents and Settings\Jun Lee\Application Data\uTorrent
2008-01-19 10:07 . 2008-01-19 10:07 <DIR> d-------- C:\Program Files\Eidos
2008-01-13 19:49 . 2007-11-06 20:30 158,263 --a------ C:\WINDOWS\system32\nvapps.nvb
2008-01-12 10:04 . 2008-01-12 10:04 <DIR> d-------- C:\Program Files\Common Files\Adobe Systems Shared
2008-01-12 10:04 . 2008-01-12 10:04 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Adobe Systems
2008-01-12 09:33 . 2008-01-17 08:21 15,360 --a--c--- C:\WINDOWS\system32\dllcache\ctfmon.exe
2008-01-12 09:33 . 2008-01-17 08:21 15,360 --a------ C:\WINDOWS\system32\ctfmon.exe
2008-01-12 00:37 . 2008-01-20 13:33 <DIR> d-------- C:\Program Files\Dot1XCfg
2008-01-11 16:05 . 2008-01-11 16:05 <DIR> d-------- C:\Program Files\DivX
2008-01-09 16:55 . 2003-10-27 14:06 140,488 --a------ C:\WINDOWS\system32\comdlg32.ocx
2008-01-09 16:55 . 2003-10-27 14:06 115,016 --a------ C:\WINDOWS\system32\MSINET.OCX
2008-01-09 16:55 . 2003-10-27 14:06 89,360 --a------ C:\WINDOWS\system32\VB5DB.DLL
2008-01-09 16:55 . 2003-10-27 14:06 69,632 --a------ C:\WINDOWS\system32\xmltok.dll
2008-01-09 16:55 . 2003-10-27 14:06 36,864 --a------ C:\WINDOWS\system32\xmlparse.dll
2008-01-09 16:55 . 2003-10-27 14:06 35,840 --a------ C:\WINDOWS\system32\comdlg32.oca
2008-01-09 16:55 . 2003-10-27 14:06 29,184 --a------ C:\WINDOWS\system32\MSINET.oca
2008-01-09 16:55 . 2003-10-27 14:06 26,096 --a------ C:\WINDOWS\system32\xmlinst.exe
2008-01-09 16:55 . 2003-10-27 14:06 24,576 --a------ C:\WINDOWS\system32\msxml3a.dll
2008-01-09 16:50 . 2008-01-19 11:50 <DIR> d-------- C:\Program Files\UBISOFT
2008-01-05 18:59 . 2008-01-05 19:00 <DIR> d-------- C:\Documents and Settings\Jun Lee\Application Data\DAEMON Tools Pro
2008-01-05 18:53 . 2008-01-23 17:07 <DIR> d-------- C:\Program Files\DAEMON Tools Pro
2008-01-05 18:35 . 2008-01-05 19:04 <DIR> d-------- C:\Program Files\The Witcher
2008-01-04 09:42 . 2008-01-05 09:50 <DIR> d-------- C:\Documents and Settings\Jun Lee\Application Data\Move Networks
2008-01-02 20:41 . 2008-01-02 20:41 278,984 --a------ C:\WINDOWS\system32\drivers\atksgt.sys
2008-01-02 20:41 . 2008-01-02 20:41 25,416 --a------ C:\WINDOWS\system32\drivers\lirsgt.sys
2008-01-02 06:39 . 2008-01-02 06:39 244 --ah----- C:\sqmnoopt06.sqm
2008-01-02 06:39 . 2008-01-02 06:39 232 --ah----- C:\sqmdata06.sqm
2008-01-01 21:21 . 2008-01-01 21:21 244 --ah----- C:\sqmnoopt05.sqm
2008-01-01 21:21 . 2008-01-01 21:21 232 --ah----- C:\sqmdata05.sqm
2008-01-01 15:43 . 2008-01-01 15:43 244 --ah----- C:\sqmnoopt04.sqm
2008-01-01 15:43 . 2008-01-01 15:43 232 --ah----- C:\sqmdata04.sqm
2008-01-01 09:18 . 2008-01-01 09:18 244 --ah----- C:\sqmnoopt03.sqm
2008-01-01 09:18 . 2008-01-01 09:18 232 --ah----- C:\sqmdata03.sqm
2007-12-31 10:59 . 2007-12-31 10:59 <DIR> dr-h----- C:\Documents and Settings\Jun Lee\Application Data\SecuROM
2007-12-31 10:59 . 2008-01-19 12:26 98,304 --a------ C:\WINDOWS\system32\CmdLineExt.dll
2007-12-31 10:44 . 2007-12-31 10:44 <DIR> d-------- C:\Program Files\Flagship Studios
2007-12-29 11:14 . 2007-12-29 11:14 <DIR> d-------- C:\Documents and Settings\Jun Lee\Application Data\InstallShield Installation Information
2007-12-29 10:57 . 2007-12-29 10:57 <DIR> d-------- C:\Program Files\Unreal Tournament 3
2007-12-29 09:50 . 2007-12-29 09:50 268 --ah----- C:\sqmdata02.sqm
2007-12-29 09:50 . 2007-12-29 09:50 244 --ah----- C:\sqmnoopt02.sqm
2007-12-29 09:31 . 2007-12-29 09:31 244 --ah----- C:\sqmnoopt01.sqm
2007-12-29 09:31 . 2007-12-29 09:31 232 --ah----- C:\sqmdata01.sqm
2007-12-24 10:04 . 2007-12-24 11:05 5,120 --a------ C:\WINDOWS\system32\BReWErS.dll
2007-12-24 09:23 . 2007-12-24 09:23 319 --a------ C:\WINDOWS\game.ini
2007-12-24 09:10 . 2007-12-24 09:10 <DIR> d-------- C:\Program Files\Activision
2007-12-24 09:08 . 2007-12-24 09:08 <DIR> d--hs---- C:\WINDOWS\ftpcache
2007-12-23 08:40 . 2008-01-23 17:07 <DIR> d-------- C:\Program Files\Steam

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2008-01-23 22:07 --------- d-----w C:\Program Files\QuickTime
2008-01-23 22:07 --------- d-----w C:\Program Files\iTunes
2008-01-23 22:07 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2008-01-23 02:34 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater
2008-01-20 23:00 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-20 23:00 --------- d-----w C:\Program Files\Common Files\InstallShield
2008-01-20 21:56 --------- d-----w C:\Program Files\Warcraft III
2008-01-20 14:49 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec
2008-01-19 17:30 716,272 ----a-w C:\WINDOWS\system32\drivers\sptd.sys
2008-01-19 16:33 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\Skype
2008-01-19 15:15 --------- d-----w C:\Program Files\Azureus
2008-01-19 15:12 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\skypePM
2008-01-19 15:07 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\Azureus
2008-01-19 00:31 --------- d-----w C:\Program Files\Norton 360
2008-01-12 15:05 --------- d-----w C:\Program Files\Common Files\Adobe
2008-01-11 02:04 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-01-06 14:27 --------- d-----w C:\Program Files\Final Fantasy VII
2007-12-29 15:56 --------- d-----w C:\Program Files\AGEIA Technologies
2007-12-29 15:55 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2007-12-27 15:59 22,328 ----a-w C:\WINDOWS\system32\drivers\PnkBstrK.sys
2007-12-27 15:58 103,736 ----a-w C:\WINDOWS\system32\PnkBstrB.exe
2007-12-24 14:51 66,872 ----a-w C:\WINDOWS\system32\PnkBstrA.exe
2007-12-24 14:24 22,328 ----a-w C:\Documents and Settings\Jun Lee\Application Data\PnkBstrK.sys
2007-12-20 16:51 --------- d-----w C:\Program Files\TriChlor
2007-12-16 20:48 --------- d-----w C:\Documents and Settings\All Users\Application Data\nView_Profiles
2007-12-16 18:42 --------- d-----w C:\Program Files\BitComet
2007-12-15 15:52 --------- d-----w C:\Program Files\Google
2007-12-15 01:09 --------- d-----w C:\Program Files\Square Soft, Inc
2007-12-14 23:40 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\Ventrilo
2007-12-14 19:08 --------- d-----w C:\Program Files\Pcsx2
2007-12-12 00:23 --------- d-----w C:\Program Files\Ares
2007-12-11 04:04 --------- d-----w C:\Program Files\The Rosetta Stone
2007-12-11 02:06 --------- d-----w C:\Program Files\Java
2007-12-11 02:04 --------- d-----w C:\Program Files\Common Files\Java
2007-12-10 22:04 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-12-09 23:03 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2007-12-08 14:57 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\Talkback
2007-12-08 14:52 --------- d-----w C:\Program Files\Picasa2
2007-12-08 14:51 --------- d-----w C:\Program Files\Norton Security Scan
2007-12-05 21:51 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\Grisoft
2007-12-05 21:51 --------- d-----w C:\Documents and Settings\All Users\Application Data\Grisoft
2007-12-05 21:05 805 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.INF
2007-12-05 21:05 60,800 ----a-w C:\WINDOWS\system32\S32EVNT1.DLL
2007-12-05 21:05 123,952 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.SYS
2007-12-05 21:05 10,740 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.CAT
2007-12-05 21:05 --------- d-----w C:\Program Files\Symantec
2007-12-05 03:56 --------- d-----w C:\Program Files\Jasc Software Inc
2007-12-05 03:56 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\Jasc Software Inc
2007-12-05 03:55 --------- d-----w C:\Program Files\Dell Computer
2007-12-05 03:54 --------- d-----w C:\Program Files\Dell 720
2007-12-04 03:43 139,264 ----a-w C:\WINDOWS\War3Unin.exe
2007-12-04 00:10 669,184 ----a-w C:\WINDOWS\system32\pbsvc.exe
2007-12-04 00:00 --------- d-----w C:\Program Files\Electronic Arts
2007-12-03 14:06 --------- d-----w C:\Program Files\MSXML 4.0
2007-12-02 16:56 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\Nero
2007-12-02 16:55 --------- d-----w C:\Program Files\Common Files\Nero
2007-12-02 16:53 --------- d-----w C:\Program Files\Nero
2007-12-02 16:53 --------- d-----w C:\Documents and Settings\All Users\Application Data\Nero
2007-12-02 16:10 --------- d-----w C:\Program Files\MSBuild
2007-12-02 16:10 --------- d-----w C:\Program Files\Microsoft Works
2007-12-01 15:05 32 ----a-w C:\Documents and Settings\All Users\Application Data\ezsid.dat
2007-12-01 15:05 --------- d-----w C:\Program Files\Skype
2007-12-01 15:05 --------- d-----w C:\Program Files\Common Files\Skype
2007-12-01 15:05 --------- d-----w C:\Documents and Settings\All Users\Application Data\Skype
2007-12-01 06:40 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\vlc
2007-12-01 04:57 43,696 ----a-w C:\WINDOWS\system32\drivers\srtspx.sys
2007-12-01 04:57 317,616 ----a-w C:\WINDOWS\system32\drivers\srtspl.sys
2007-12-01 04:57 279,088 ----a-w C:\WINDOWS\system32\drivers\srtsp.sys
2007-12-01 04:57 10,549 ----a-w C:\WINDOWS\system32\drivers\srtspx.cat
2007-12-01 04:57 10,549 ----a-w C:\WINDOWS\system32\drivers\srtspl.cat
2007-12-01 04:57 10,545 ----a-w C:\WINDOWS\system32\drivers\srtsp.cat
2007-12-01 04:57 1,430 ----a-w C:\WINDOWS\system32\drivers\srtspl.inf
2007-12-01 04:57 1,421 ----a-w C:\WINDOWS\system32\drivers\srtspx.inf
2007-12-01 04:57 1,415 ----a-w C:\WINDOWS\system32\drivers\srtsp.inf
2007-11-30 17:47 --------- d-----w C:\Program Files\Ventrilo
2007-11-30 17:41 --------- d-----w C:\Program Files\VideoLAN
2007-11-30 13:35 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\Symantec
2007-11-29 23:29 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\Viewpoint
2007-11-29 22:30 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll
2007-11-29 22:30 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll
2007-11-29 20:35 --------- d-----w C:\Documents and Settings\Default User\Application Data\Apple Computer
2007-11-29 03:45 --------- d-----w C:\Program Files\NVIDIA Corporation
2007-11-29 03:18 --------- d-----w C:\Program Files\NVIDIA nTune Performance Application
2007-11-29 02:57 --------- d-----w C:\Program Files\iPod
2007-11-29 02:57 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\Apple Computer
2007-11-29 02:57 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer
2007-11-29 02:56 --------- d-----w C:\Program Files\Common Files\Apple
2007-11-29 02:56 --------- d-----w C:\Program Files\Apple Software Update
2007-11-29 02:56 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple
2007-11-29 02:41 --------- d-----w C:\Program Files\Windows Live
2007-11-29 02:40 --------- dcsh--w C:\Program Files\Common Files\WindowsLiveInstaller
2007-11-29 02:39 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
2007-11-29 02:39 --------- d-----w C:\Documents and Settings\All Users\Application Data\Azureus
2007-11-29 02:37 --------- d-----w C:\Documents and Settings\All Users\Application Data\AOL OCP
2007-11-29 02:36 --------- d-----w C:\Program Files\Viewpoint
2007-11-29 02:36 --------- d-----w C:\Program Files\Common Files\AOL
2007-11-29 02:36 --------- d-----w C:\Program Files\AIM6
2007-11-29 02:36 --------- d-----w C:\Documents and Settings\Jun Lee\Application Data\acccore
2007-11-29 02:36 --------- d-----w C:\Documents and Settings\All Users\Application Data\Viewpoint
2007-11-29 02:36 --------- d-----w C:\Documents and Settings\All Users\Application Data\AOL
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"Aim6"="" []
"NVIDIA nTune"="C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2008-01-18 17:18 81920]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe" [2008-01-18 17:18 68856]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-01-17 08:21 15360]
"Router"="C:\Program Files\Router\Router.exe" [ ]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2008-01-18 17:19 1694208]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-01-17 11:51 486856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-11-06 20:30 8523776]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-01-18 17:18 139264]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-01-18 17:18 267048]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2008-01-18 17:18 115816]
"Symantec PIF AlertEng"="C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-18 19:31 517768]
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-01-18 17:18 31016]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray. dll" [2007-11-06 20:30 81920]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe [2007-11-28 20:36:30 24576]

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Google Updater.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Google Updater.lnk
backup=C:\WINDOWS\pss\Google Updater.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2007-10-10 19:51 39792 C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
--a------ 2008-01-18 17:18 202024 C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
--a------ 2008-01-17 08:21 15360 C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DLA]
--a------ 2005-11-07 05:20 122940 C:\WINDOWS\System32\DLA\DLACTRLW.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--a------ 2008-01-18 17:19 1694208 C:\Program Files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
--a------ 2007-09-20 09:51 1836328 C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2007-03-01 15:57 153136 C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
--a------ 2007-11-06 20:30 1626112 C:\WINDOWS\system32\nwiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask .exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SigmatelSysTrayApp]
--a------ 2005-03-22 17:20 339968 C:\WINDOWS\stsystra.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
--a------ 2008-01-18 17:18 1266936 C:\Program Files\Steam\Steam.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2008-01-18 17:18 132496 C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe

R2 Viewpoint Manager Service;Viewpoint Manager Service;"C:\Program Files\Viewpoint\Common\ViewpointService.exe" [2007-01-04 16:38]
S2 SBProfileLauncher;SphtBot Profile Launcher;C:\Documents and Settings\Jun Lee\Desktop\New Folder (3)\ProfileLauncher.exe []

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{55a3c243-a1e1-11dc-8555-00123f75d0fd}]
\Shell\AutoRun\command - K:\Autorun.exe

*Newly Created Service* - COMHOST
.
Contents of the 'Scheduled Tasks' folder
"2008-01-21 13:24:01 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
.
************************************************** ************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-23 17:12:24
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

************************************************** ************************
.
Completion time: 2008-01-23 17:14:39 - machine was rebooted
ComboFix-quarantined-files.txt 2008-01-23 22:14:36
ComboFix2.txt 2008-01-21 21:57:49
.
2008-01-09 14:13:35 --- E O F ---
Reply With Quote