View Single Post
  #7  
Old November 17th, 2012, 06:37 PM
excelsior07 excelsior07 is offline
New Member
 
Join Date: Nov 2012
Posts: 19
ComboFix 12-11-16.02 - dre 11/17/2012 9:11.3.2 - x86
Running from: c:\users\dre\Downloads\ComboFix.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-10-17 to 2012-11-17 )))))))))))))))))))))))))))))))
.
.
2012-11-17 17:20 . 2012-11-17 17:23 -------- d-----w- c:\users\dre\AppData\Local\temp
2012-11-17 17:20 . 2012-11-17 17:20 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-11-17 17:20 . 2012-11-17 17:20 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-11-17 17:20 . 2012-11-17 17:20 -------- d-----w- c:\users\IUSR_NMPR\AppData\Local\temp
2012-11-17 17:20 . 2012-11-17 17:20 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-29 14:32 . 2012-10-29 14:32 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2012-10-25 00:56 . 2012-10-25 00:56 -------- d-----w- c:\programdata\USTechSupport
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2012-10-09 13:04 . 2012-06-10 02:31 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-10-09 13:04 . 2012-06-10 02:31 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-09-08 01:11 . 2012-09-08 01:11 388096 ----a-r- c:\users\dre\AppData\Roaming\Microsoft\Installer\{ 45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-09-08 00:04 . 2012-08-25 17:56 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-27 06:01 . 2012-10-27 06:00 261600 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2012-08-12 09:50 155648 --sha-r- c:\windows\System32\8point1U.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14}"= "c:\program files\BitTorrentControl_v12\prxtbBitT.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14}]
2011-05-09 09:49 176936 ----a-w- c:\program files\BitTorrentControl_v12\prxtbBitT.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14}"= "c:\program files\BitTorrentControl_v12\prxtbBitT.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{B6AC5E3C-5CEB-4E72-B451-F0E1BA983C14}"= "c:\program files\BitTorrentControl_v12\prxtbBitT.dll" [2011-05-09 176936]
.
[HKEY_CLASSES_ROOT\clsid\{b6ac5e3c-5ceb-4e72-b451-f0e1ba983c14}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"Ad-Aware Antivirus"="c:\program files\Ad-Aware Antivirus\AdAwareLauncher --windows-run" [X]
"CCUTRAYICON"="c:\program files\Intel\IntelDH\CCU\CCU_TrayIcon.exe" [2006-11-18 182744]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2006-12-19 1429504]
"MoLed"="ModLEDKey.exe" [2006-11-09 53248]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2006-11-15 151552]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]
"SigmatelSysTrayApp"="sttray.exe" [2006-11-02 303104]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-19 421888]
"Ad-Aware Browsing Protection"="c:\programdata\Ad-Aware Browsing Protection\adawarebp.exe" [2011-10-21 198032]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 3 (0x3)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\Ad-Aware Service]
@="Ad-Aware Service"
.
Reply With Quote