OTL logfile created on: 19.06.2010 11:44:47 - Run 1
OTL by OldTimer - Version 3.2.4.1     Folder = C:\Documents and Settings\Dorian\My Documents\Downloads
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000418 | Country: Romania | Language: ROM | Date Format: dd.MM.yyyy
 
767,00 Mb Total Physical Memory | 467,00 Mb Available Physical Memory | 61,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 76,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 24,40 Gb Total Space | 2,00 Gb Free Space | 8,19% Space Free | Partition Type: FAT32
Drive D: | 13,87 Gb Total Space | 3,98 Gb Free Space | 28,69% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: YOYO
Current User Name: Dorian
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2010.06.14 22:23:46 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Dorian\My Documents\Downloads\OTL.exe
PRC - [2010.05.03 10:16:28 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010.03.30 11:16:12 | 001,107,336 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2010.03.04 18:53:14 | 000,323,392 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\DNA\btdna.exe
PRC - [2009.11.24 15:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009.11.24 15:51:36 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009.11.24 15:51:22 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009.11.24 15:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009.11.24 15:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2007.12.06 21:03:42 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
PRC - [2004.08.04 07:56:50 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2010.06.14 22:23:46 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Dorian\My Documents\Downloads\OTL.exe
MOD - [2004.08.04 07:57:02 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004.08.04 06:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2010.03.30 11:16:12 | 001,107,336 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2009.11.24 15:51:36 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009.11.24 15:51:22 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009.11.24 15:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009.11.24 15:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2009.10.27 09:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007.12.06 21:03:42 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) [Auto | Running] -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2010.06.18 20:07:12 | 000,025,616 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\Dorian\Local Settings\Temp\APP38.tmp -- (GarenaPEngine)
DRV - [2010.04.16 12:22:16 | 000,991,264 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (btkrnl)
DRV - [2010.04.16 12:22:16 | 000,533,024 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2010.04.16 12:22:16 | 000,156,816 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2010.04.16 12:22:16 | 000,045,984 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2010.04.16 12:22:16 | 000,037,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2010.03.08 11:05:56 | 000,716,272 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.11.24 15:51:00 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009.11.24 15:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2009.11.24 15:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009.11.24 15:49:08 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009.11.24 15:48:58 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009.11.24 15:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009.09.23 10:41:58 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.06.27 16:50:32 | 000,061,424 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\CyberLink\PowerDVD8\000.fcl -- ({FE4C91E7-22C2-4D0C-9F6B-82F1B7742054})
DRV - [2006.06.01 17:22:00 | 003,925,920 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2005.11.03 06:40:08 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005.08.10 04:44:06 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.05.16 05:20:40 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.09.21 03:53:18 | 002,278,784 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004.05.02 00:47:08 | 000,023,040 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\GVCplDrv.sys -- (GVCplDrv)
DRV - [2003.07.02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ro/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {88be816a-bc8e-495f-8030-742423118df5} - C:\Program Files\TvFree77\tbTvFr.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.selectedEngine: "search"
FF - prefs.js..browser.startup.homepage: "www.google.ro"
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: personas@christopher.beard:1.5.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.02.06 19:54:38 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.02.06 19:54:38 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
 
[2010.02.21 20:26:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\Mozilla\Extensions
[2010.02.06 19:55:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\Mozilla\Firefox\Profiles\hyxuaznx.default\extensions
[2010.05.14 20:55:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\Mozilla\Firefox\Profiles\hyxuaznx.default\extensions\personas@christopher.beard
[2010.02.06 19:54:38 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.06.05 11:38:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.04.12 17:29:20 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.01.15 17:24:44 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipediaro.xml
 
O1 HOSTS File: ([2010.06.15 23:19:14 | 000,000,000 | -HS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O2 - BHO: (TvFree77 Toolbar) - {88be816a-bc8e-495f-8030-742423118df5} - C:\Program Files\TvFree77\tbTvFr.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (TvFree77 Toolbar) - {88be816a-bc8e-495f-8030-742423118df5} - C:\Program Files\TvFree77\tbTvFr.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\ShellBrowser: (TvFree77 Toolbar) - {88BE816A-BC8E-495F-8030-742423118DF5} - C:\Program Files\TvFree77\tbTvFr.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (TvFree77 Toolbar) - {88BE816A-BC8E-495F-8030-742423118DF5} - C:\Program Files\TvFree77\tbTvFr.dll (Conduit Ltd.)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKCU..\Run: [BitTorrent DNA] C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Dorian\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Dorian\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.01.21 17:53:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O33 - MountPoints2\{200d75d8-4a63-11df-b85a-bc227280b621}\Shell - "" = AutoRun
O33 - MountPoints2\{200d75d8-4a63-11df-b85a-bc227280b621}\Shell\AutoRun - "" = Auto&Play
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
NetSvcs: 6to4 -  File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2010.01.21 17:31:28 | 000,000,000 | ---D | M]
NetSvcs: Iprip -  File not found
NetSvcs: Irmon -  File not found
NetSvcs: NWCWorkstation -  File not found
NetSvcs: Nwsapagent -  File not found
NetSvcs: WmdmPmSp -  File not found
 
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (54338281256517632)
 
[color=#E56717]========== Files/Folders - Created Within 90 Days ==========[/color]
 
[2010.06.14 22:11:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Application Data\Malwarebytes
[2010.06.14 22:11:33 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.06.14 22:11:32 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.06.14 22:11:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010.06.14 22:11:31 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.06.14 22:07:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.06.14 22:07:05 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010.06.14 11:20:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
[2010.06.13 22:31:05 | 000,023,120 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010.06.13 22:31:04 | 000,048,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010.06.13 22:31:03 | 000,027,408 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010.06.13 22:31:02 | 000,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010.06.13 22:31:02 | 000,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2010.06.13 22:31:02 | 000,094,160 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010.06.13 22:31:02 | 000,093,424 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010.06.13 22:31:02 | 000,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010.06.13 22:30:32 | 001,280,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010.06.13 22:24:46 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\MSQLLE
[2010.06.13 22:24:23 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\48c3c97
[2010.06.12 14:06:20 | 000,000,000 | -HSD | C] -- C:\FOUND.047
[2010.06.09 15:01:50 | 000,000,000 | -HSD | C] -- C:\FOUND.046
[2010.06.07 13:08:08 | 000,000,000 | -HSD | C] -- C:\FOUND.045
[2010.06.03 19:31:41 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi
[2010.06.03 19:31:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Local Settings\Application Data\LogMeIn Hamachi
[2010.06.03 19:31:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\LogMeIn Hamachi
[2010.05.31 11:50:26 | 000,000,000 | -HSD | C] -- C:\FOUND.044
[2010.05.30 16:16:50 | 000,000,000 | -HSD | C] -- C:\FOUND.043
[2010.05.26 10:57:42 | 000,000,000 | -HSD | C] -- C:\FOUND.042
[2010.05.22 20:23:38 | 000,000,000 | -HSD | C] -- C:\FOUND.041
[2010.05.18 14:55:40 | 000,000,000 | -HSD | C] -- C:\FOUND.040
[2010.05.18 14:23:54 | 000,000,000 | -HSD | C] -- C:\FOUND.039
[2010.05.17 20:47:02 | 000,000,000 | -HSD | C] -- C:\FOUND.038
[2010.05.15 10:04:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Dorian\My Documents\My Data Sources
[2010.05.12 21:50:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Application Data\TeamViewer
[2010.05.12 21:49:21 | 002,315,560 | ---- | C] (TeamViewer GmbH) -- C:\Documents and Settings\Dorian\Desktop\TeamViewer.exe
[2010.05.09 20:15:03 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010.05.09 20:13:34 | 000,000,000 | ---D | C] -- C:\Program Files\ABBY FINE READER final activated100% by ViKi'S
[2010.05.08 16:23:54 | 000,000,000 | -HSD | C] -- C:\FOUND.037
[2010.05.07 20:29:36 | 000,000,000 | -HSD | C] -- C:\FOUND.036
[2010.05.07 19:41:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Application Data\ABBYY
[2010.05.07 19:33:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ABBYY
[2010.05.07 19:31:11 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 9.0
[2010.05.07 19:31:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Local Settings\Application Data\ABBYY
[2010.05.07 19:31:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ABBYY
[2010.05.07 19:27:56 | 000,000,000 | ---D | C] -- C:\FR90PE_VOL
[2010.05.07 18:51:38 | 000,000,000 | ---D | C] -- C:\doc tati
[2010.05.07 18:44:24 | 000,000,000 | -HSD | C] -- C:\FOUND.035
[2010.05.05 18:11:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\My Documents\TmForever
[2010.05.05 18:11:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TmForever
[2010.05.05 18:07:53 | 000,000,000 | ---D | C] -- C:\Program Files\TmNationsForever
[2010.05.05 10:50:26 | 000,000,000 | -HSD | C] -- C:\FOUND.034
[2010.05.04 23:40:20 | 000,000,000 | ---D | C] -- C:\Program Files\Chicken Invaders 2
[2010.05.04 12:30:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\My Documents\EA Games
[2010.05.04 12:25:48 | 000,000,000 | ---D | C] -- C:\Program Files\EA Games
[2010.05.01 22:57:08 | 000,000,000 | -HSD | C] -- C:\FOUND.033
[2010.04.29 22:21:29 | 000,000,000 | ---D | C] -- C:\Program Files\Chicken Invaders
[2010.04.29 20:57:36 | 000,000,000 | -HSD | C] -- C:\FOUND.032
[2010.04.25 11:39:50 | 000,000,000 | -HSD | C] -- C:\FOUND.031
[2010.04.20 10:26:12 | 000,000,000 | -HSD | C] -- C:\FOUND.030
[2010.04.16 12:25:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\My Documents\Dosar de schimb de date Bluetooth
[2010.04.16 12:25:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Bluetooth Software
[2010.04.16 12:23:13 | 000,000,000 | ---D | C] -- C:\Program Files\WIDCOMM
[2010.04.11 14:37:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010.04.11 14:37:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010.04.10 15:11:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\My Documents\NFS Carbon
[2010.04.10 14:53:19 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2010.04.10 14:28:45 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010.04.10 14:27:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010.04.10 14:27:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2010.04.08 23:53:46 | 000,000,000 | -HSD | C] -- C:\FOUND.029
[2010.04.05 13:34:00 | 000,000,000 | -HSD | C] -- C:\FOUND.028
[2010.03.30 21:55:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Local Settings\Application Data\TvFree77
[2010.03.30 21:55:12 | 000,000,000 | ---D | C] -- C:\Program Files\TvFree77
[2010.03.27 20:21:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Vbox
[2010.03.27 20:21:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macromedia
[2010.03.27 19:54:56 | 000,000,000 | ---D | C] -- C:\Program Files\Macromedia
[2010.03.27 19:32:12 | 000,000,000 | -HSD | C] -- C:\FOUND.027
[2010.03.26 15:50:34 | 000,000,000 | -HSD | C] -- C:\FOUND.026
[2010.03.23 17:06:59 | 000,000,000 | ---D | C] -- C:\Program Files\Garena
[2010.03.23 17:04:22 | 000,000,000 | ---D | C] -- C:\Program Files\Age Of Empires 2 & The Conquerors Expansion - Full Game
[2010.03.23 16:30:30 | 000,000,000 | -HSD | C] -- C:\FOUND.025
[2010.03.22 20:41:50 | 000,000,000 | -HSD | C] -- C:\FOUND.024
[2010.03.22 14:09:46 | 000,000,000 | -HSD | C] -- C:\FOUND.023
 
[color=#E56717]========== Files - Modified Within 90 Days ==========[/color]
 
[2010.06.19 11:45:02 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.06.19 11:24:18 | 000,019,334 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\thierry-henry_1261502531.jpg
[2010.06.19 09:58:20 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.06.19 09:58:16 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.06.19 09:58:10 | 000,063,804 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010.06.19 09:58:02 | 804,835,328 | -HS- | M] () -- C:\hiberfil.sys
[2010.06.19 09:58:02 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.06.18 23:15:04 | 005,242,880 | -H-- | M] () -- C:\Documents and Settings\Dorian\NTUSER.DAT
[2010.06.18 23:15:04 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Dorian\ntuser.ini
[2010.06.18 23:14:58 | 002,109,098 | -H-- | M] () -- C:\Documents and Settings\Dorian\Local Settings\Application Data\IconCache.db
[2010.06.18 16:04:08 | 036,603,764 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\hjv.ppt
[2010.06.17 20:33:38 | 000,000,601 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\LogMeIn Hamachi.lnk
[2010.06.17 19:50:48 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Earth.lnk
[2010.06.14 22:11:38 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.14 22:07:06 | 000,000,496 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\ERUNT.lnk
[2010.06.13 22:31:04 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.06.13 22:24:58 | 000,000,004 | ---- | M] () -- C:\WINDOWS\System32\drivers\cntnr0.sys
[2010.06.10 22:20:58 | 000,037,888 | ---- | M] () -- C:\Documents and Settings\Dorian\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.05.30 18:14:22 | 000,019,968 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\New Microsoft Word Document (2).doc
[2010.05.25 21:49:26 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdu.DAT
[2010.05.24 12:00:02 | 000,188,200 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.05.17 18:47:50 | 000,001,633 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010.05.17 11:24:18 | 000,028,594 | ---- | M] () -- C:\Documents and Settings\Dorian\Start Menu.rar
[2010.05.13 09:54:22 | 000,034,816 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\Clubul-Copiilor-bilant-rachete-2008.doc
[2010.05.12 21:49:58 | 002,315,560 | ---- | M] (TeamViewer GmbH) -- C:\Documents and Settings\Dorian\Desktop\TeamViewer.exe
[2010.05.09 22:42:08 | 000,000,027 | ---- | M] () -- C:\WINDOWS\clofghls.dll
[2010.05.07 18:52:44 | 000,000,273 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\doc tati.lnk
[2010.05.05 18:10:26 | 000,000,687 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\TmNationsForever.lnk
[2010.05.04 23:40:22 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\Chicken Invaders 2.lnk
[2010.05.04 12:25:56 | 000,000,612 | ---- | M] () -- C:\WINDOWS\eReg.dat
[2010.04.30 16:08:22 | 000,040,448 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\CURRICULUM VITAE Tati.doc
[2010.04.30 14:36:56 | 000,118,784 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\db1.mdb
[2010.04.29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.04.29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.04.22 11:24:56 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.04.10 14:29:24 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.04.10 14:28:58 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.04.10 14:28:58 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.04.10 14:28:54 | 000,000,603 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.04.10 14:27:58 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010.04.10 14:27:18 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010.03.30 22:34:40 | 000,000,151 | ---- | M] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2010.03.27 23:20:58 | 000,000,642 | -H-- | M] () -- C:\Documents and Settings\All Users\Documents\os694301.bin
[2010.03.27 20:05:46 | 000,000,768 | -HS- | M] () -- C:\zll3o04v.sys
[2010.03.25 20:45:48 | 000,019,968 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\mel.doc
[2010.03.24 21:41:10 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.03.23 17:07:22 | 000,000,558 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\Garena.lnk
[2010.03.23 17:06:00 | 000,000,908 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\Age2.lnk
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2010.06.19 11:24:15 | 000,019,334 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\thierry-henry_1261502531.jpg
[2010.06.18 16:03:58 | 036,603,764 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\hjv.ppt
[2010.06.17 20:33:37 | 000,000,601 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\LogMeIn Hamachi.lnk
[2010.06.17 19:50:47 | 000,001,819 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Earth.lnk
[2010.06.14 22:11:36 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.14 22:07:05 | 000,000,496 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\ERUNT.lnk
[2010.06.13 22:30:32 | 000,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx
[2010.06.13 22:24:54 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\drivers\cntnr0.sys
[2010.05.30 18:14:14 | 000,019,968 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\New Microsoft Word Document (2).doc
[2010.05.17 11:24:16 | 000,028,594 | ---- | C] () -- C:\Documents and Settings\Dorian\Start Menu.rar
[2010.05.13 09:54:19 | 000,034,816 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\Clubul-Copiilor-bilant-rachete-2008.doc
[2010.05.07 18:52:42 | 000,000,273 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\doc tati.lnk
[2010.05.05 18:10:25 | 000,000,687 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TmNationsForever.lnk
[2010.05.05 10:52:52 | 000,417,280 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\ChickenInvaders.exe
[2010.05.04 23:40:21 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\Chicken Invaders 2.lnk
[2010.05.04 13:15:30 | 002,965,504 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\NFSHP2.exe
[2010.05.04 12:25:55 | 000,000,612 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2010.04.30 15:35:11 | 000,040,448 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\CURRICULUM VITAE Tati.doc
[2010.04.30 14:36:30 | 000,118,784 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\db1.mdb
[2010.04.10 14:27:16 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010.03.30 22:34:39 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2010.03.27 20:37:31 | 000,000,642 | -H-- | C] () -- C:\Documents and Settings\All Users\Documents\os694301.bin
[2010.03.25 20:32:21 | 000,019,968 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\mel.doc
[2010.03.23 17:07:21 | 000,000,558 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\Garena.lnk
[2010.03.23 17:05:59 | 000,000,908 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\Age2.lnk
[2010.03.08 11:05:53 | 000,716,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.03.07 16:57:53 | 000,000,027 | ---- | C] () -- C:\WINDOWS\clofghls.dll
[2010.03.05 21:17:44 | 000,000,052 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2010.03.05 20:45:15 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2010.02.24 22:32:47 | 000,023,040 | R--- | C] () -- C:\WINDOWS\System32\drivers\GVCplDrv.sys
[2010.02.22 13:07:49 | 000,888,326 | ---- | C] () -- C:\WINDOWS\System32\kernel32new.dll
[2010.02.22 13:07:49 | 000,680,454 | ---- | C] () -- C:\WINDOWS\System32\msvcrtnew.dll
[2010.02.22 13:07:49 | 000,208,899 | ---- | C] () -- C:\WINDOWS\System32\d3d10_1core.dll
[2010.02.22 13:07:49 | 000,188,419 | ---- | C] () -- C:\WINDOWS\System32\d3d10core.dll
[2010.02.22 13:07:49 | 000,171,526 | ---- | C] () -- C:\WINDOWS\System32\dxgi.dll
[2010.02.22 13:07:49 | 000,039,942 | ---- | C] () -- C:\WINDOWS\System32\dwmapi.dll
[2010.02.22 13:07:47 | 001,029,126 | ---- | C] () -- C:\WINDOWS\System32\d3d10.dll
[2010.02.22 13:07:47 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\M2000Twn.dll
[2010.02.21 21:43:57 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010.02.05 11:27:05 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010.02.02 17:04:58 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini
[2010.02.02 17:04:58 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2010.02.02 17:04:58 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini
[2010.02.02 17:04:50 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2010.02.02 17:04:46 | 000,152,064 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010.02.02 17:04:42 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.02.01 16:56:13 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2010.01.21 18:13:04 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2009.07.29 14:28:46 | 002,854,976 | ---- | C] () -- C:\WINDOWS\System32\btwicons.dll
[2006.06.01 17:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006.06.01 17:22:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006.06.01 17:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006.06.01 17:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006.06.01 17:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006.06.01 17:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006.06.01 17:22:00 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2005.02.17 12:41:32 | 000,000,603 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
[2005.02.17 12:41:30 | 000,000,593 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
[2004.08.04 07:56:44 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004.08.04 07:56:44 | 000,001,920 | ---- | C] () -- C:\WINDOWS\System32\r48tniuw.dll
[2003.01.07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001.11.14 13:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010.01.21 18:51:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EnterNHelp
[2010.01.21 18:51:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ultima_T15
[2010.01.21 18:52:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nikon
[2010.01.24 10:47:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2010.01.24 10:50:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2010.02.01 11:16:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GoldWave
[2010.02.19 12:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
[2010.02.28 18:28:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InterAction studios
[2010.03.04 21:33:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
[2010.03.07 23:22:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Temp
[2010.05.05 18:11:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TmForever
[2010.06.13 22:24:24 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\48c3c97
[2010.06.13 22:24:48 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\MSQLLE
[2010.01.21 18:44:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\BSplayer
[2010.01.21 18:44:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\BSplayer Pro
[2010.01.21 19:01:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\uTorrent
[2010.01.24 10:50:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\PC Suite
[2010.01.24 10:50:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\Nokia
[2010.02.02 22:55:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\Nikon
[2010.02.27 21:25:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\GetRightToGo
[2010.03.04 18:53:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\DNA
[2010.03.04 21:34:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\ESET
[2010.03.08 11:11:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\DAEMON Tools
[2010.05.12 21:50:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\TeamViewer
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
[2004.08.04 05:59:34 | 000,250,032 | RHS- | M] () -- C:\ntldr
[2004.08.04 05:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2010.01.21 17:43:28 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2010.01.21 17:53:20 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010.01.21 17:53:20 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010.01.21 17:53:20 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010.01.21 17:53:20 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010.03.27 20:05:46 | 000,000,768 | -HS- | M] () -- C:\zll3o04v.sys
[2010.03.05 20:57:18 | 000,000,032 | ---- | M] () -- C:\VIA3149.log
[2010.06.19 09:58:00 | 805,306,368 | -HS- | M] () -- C:\pagefile.sys
[2010.03.05 20:44:02 | 000,000,090 | ---- | M] () -- C:\VIA0571.log
[2010.06.19 09:58:02 | 804,835,328 | -HS- | M] () -- C:\hiberfil.sys
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
 
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
 
[color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
[2010.01.21 17:34:40 | 000,892,928 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
[2010.01.21 17:34:40 | 000,659,456 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010.01.21 17:34:40 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav
 
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /180 >[/color]
[2010.04.10 15:07:06 | 000,163,644 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\drivers\secdrv.sys
[2010.03.08 11:05:56 | 000,716,272 | ---- | M] () -- C:\WINDOWS\system32\drivers\sptd.sys
[2010.04.16 12:22:16 | 000,991,264 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btkrnl.sys
[2010.04.16 12:22:16 | 000,045,984 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btwusb.sys
[2010.04.16 12:22:16 | 000,091,176 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btwsecfl.sys
[2010.04.16 12:22:16 | 000,037,160 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btport.sys
[2010.04.16 12:22:16 | 000,156,816 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btwdndis.sys
[2010.04.16 12:22:16 | 000,533,024 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btaudio.sys
[2010.06.13 22:24:58 | 000,000,004 | ---- | M] () -- C:\WINDOWS\system32\drivers\cntnr0.sys
[2010.04.29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbam.sys
[2010.04.29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
< End of report >