Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

OTL dates

Started by DoYaK , May 20 2010 02:55 AM

  • Please log in to reply

#1
DoYaK
Posted 20 May 2010 - 02:55 AM

DoYaK

    New Member

  • Member
  • Pip
  • 1 posts
and can i ask something?
after OTL scan in local disk C appeared some file FOUND 01 FOUND 02....FOUAND 40
can i delete this?

OTL logfile created on: 19.06.2010 11:44:47 - Run 1
OTL by OldTimer - Version 3.2.4.1 Folder = C:\Documents and Settings\Dorian\My Documents\Downloads
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000418 | Country: Romania | Language: ROM | Date Format: dd.MM.yyyy

767,00 Mb Total Physical Memory | 467,00 Mb Available Physical Memory | 61,00% Memory free
1,00 Gb Paging File | 1,00 Gb Available in Paging File | 76,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 24,40 Gb Total Space | 2,00 Gb Free Space | 8,19% Space Free | Partition Type: FAT32
Drive D: | 13,87 Gb Total Space | 3,98 Gb Free Space | 28,69% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: YOYO
Current User Name: Dorian
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010.06.14 22:23:46 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Dorian\My Documents\Downloads\OTL.exe
PRC - [2010.05.03 10:16:28 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010.03.30 11:16:12 | 001,107,336 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2010.03.04 18:53:14 | 000,323,392 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\DNA\btdna.exe
PRC - [2009.11.24 15:51:40 | 000,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PRC - [2009.11.24 15:51:36 | 000,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe
PRC - [2009.11.24 15:51:22 | 000,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PRC - [2009.11.24 15:48:48 | 000,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PRC - [2009.11.24 15:43:56 | 000,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PRC - [2007.12.06 21:03:42 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
PRC - [2004.08.04 07:56:50 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2010.06.14 22:23:46 | 000,570,880 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Dorian\My Documents\Downloads\OTL.exe
MOD - [2004.08.04 07:57:02 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
MOD - [2004.08.04 06:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx


========== Win32 Services (SafeList) ==========

SRV - [2010.03.30 11:16:12 | 001,107,336 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2009.11.24 15:51:36 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus)
SRV - [2009.11.24 15:51:22 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner)
SRV - [2009.11.24 15:48:48 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner)
SRV - [2009.11.24 15:43:56 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv)
SRV - [2009.10.27 09:26:36 | 000,657,408 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007.12.06 21:03:42 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) [Auto | Running] -- C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0)


========== Driver Services (SafeList) ==========

DRV - [2010.06.18 20:07:12 | 000,025,616 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Documents and Settings\Dorian\Local Settings\Temp\APP38.tmp -- (GarenaPEngine)
DRV - [2010.04.16 12:22:16 | 000,991,264 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btkrnl.sys -- (btkrnl)
DRV - [2010.04.16 12:22:16 | 000,533,024 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btaudio.sys -- (btaudio)
DRV - [2010.04.16 12:22:16 | 000,156,816 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwdndis.sys -- (BTWDNDIS)
DRV - [2010.04.16 12:22:16 | 000,045,984 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btwusb.sys -- (BTWUSB)
DRV - [2010.04.16 12:22:16 | 000,037,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\btport.sys -- (BTDriver)
DRV - [2010.03.08 11:05:56 | 000,716,272 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.11.24 15:51:00 | 000,094,160 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2009.11.24 15:50:12 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswSP.sys -- (aswSP)
DRV - [2009.11.24 15:50:00 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2009.11.24 15:49:08 | 000,048,560 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2009.11.24 15:48:58 | 000,023,120 | ---- | M] (ALWIL Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2009.11.24 15:47:54 | 000,027,408 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2009.09.23 10:41:58 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2008.08.26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008.06.27 16:50:32 | 000,061,424 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\CyberLink\PowerDVD8\000.fcl -- ({FE4C91E7-22C2-4D0C-9F6B-82F1B7742054})
DRV - [2006.06.01 17:22:00 | 003,925,920 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2005.11.03 06:40:08 | 000,063,488 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfvfs02.sys -- (sfvfs02) StarForce Protection VFS Driver (version 2.x)
DRV - [2005.08.10 04:44:06 | 000,050,688 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.05.16 05:20:40 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.09.21 03:53:18 | 002,278,784 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004.05.02 00:47:08 | 000,023,040 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\GVCplDrv.sys -- (GVCplDrv)
DRV - [2003.07.02 04:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ro/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\URLSearchHook: {88be816a-bc8e-495f-8030-742423118df5} - C:\Program Files\TvFree77\tbTvFr.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "search"
FF - prefs.js..browser.startup.homepage: "www.google.ro"
FF - prefs.js..extensions.enabledItems: [email protected]:1.0
FF - prefs.js..extensions.enabledItems: [email protected]:1.5.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.02.06 19:54:38 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.02.06 19:54:38 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

[2010.02.21 20:26:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\Mozilla\Extensions
[2010.02.06 19:55:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\Mozilla\Firefox\Profiles\hyxuaznx.default\extensions
[2010.05.14 20:55:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\Mozilla\Firefox\Profiles\hyxuaznx.default\extensions\[email protected]
[2010.02.06 19:54:38 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.06.05 11:38:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010.04.12 17:29:20 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.01.15 17:24:44 | 000,001,179 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipediaro.xml

O1 HOSTS File: ([2010.06.15 23:19:14 | 000,000,000 | -HS- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O2 - BHO: (TvFree77 Toolbar) - {88be816a-bc8e-495f-8030-742423118df5} - C:\Program Files\TvFree77\tbTvFr.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (TvFree77 Toolbar) - {88be816a-bc8e-495f-8030-742423118df5} - C:\Program Files\TvFree77\tbTvFr.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\ShellBrowser: (TvFree77 Toolbar) - {88BE816A-BC8E-495F-8030-742423118DF5} - C:\Program Files\TvFree77\tbTvFr.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (TvFree77 Toolbar) - {88BE816A-BC8E-495F-8030-742423118DF5} - C:\Program Files\TvFree77\tbTvFr.dll (Conduit Ltd.)
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKCU..\Run: [BitTorrent DNA] C:\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Dorian\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Dorian\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.01.21 17:53:20 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ]
O33 - MountPoints2\{200d75d8-4a63-11df-b85a-bc227280b621}\Shell - "" = AutoRun
O33 - MountPoints2\{200d75d8-4a63-11df-b85a-bc227280b621}\Shell\AutoRun - "" = Auto&Play
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2010.01.21 17:31:28 | 000,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (54338281256517632)

========== Files/Folders - Created Within 90 Days ==========

[2010.06.14 22:11:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Application Data\Malwarebytes
[2010.06.14 22:11:33 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.06.14 22:11:32 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.06.14 22:11:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010.06.14 22:11:31 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010.06.14 22:07:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010.06.14 22:07:05 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010.06.14 11:20:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
[2010.06.13 22:31:05 | 000,023,120 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010.06.13 22:31:04 | 000,048,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010.06.13 22:31:03 | 000,027,408 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010.06.13 22:31:02 | 000,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010.06.13 22:31:02 | 000,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2010.06.13 22:31:02 | 000,094,160 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010.06.13 22:31:02 | 000,093,424 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010.06.13 22:31:02 | 000,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010.06.13 22:30:32 | 001,280,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010.06.13 22:24:46 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\MSQLLE
[2010.06.13 22:24:23 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\48c3c97
[2010.06.12 14:06:20 | 000,000,000 | -HSD | C] -- C:\FOUND.047
[2010.06.09 15:01:50 | 000,000,000 | -HSD | C] -- C:\FOUND.046
[2010.06.07 13:08:08 | 000,000,000 | -HSD | C] -- C:\FOUND.045
[2010.06.03 19:31:41 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi
[2010.06.03 19:31:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Local Settings\Application Data\LogMeIn Hamachi
[2010.06.03 19:31:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\LogMeIn Hamachi
[2010.05.31 11:50:26 | 000,000,000 | -HSD | C] -- C:\FOUND.044
[2010.05.30 16:16:50 | 000,000,000 | -HSD | C] -- C:\FOUND.043
[2010.05.26 10:57:42 | 000,000,000 | -HSD | C] -- C:\FOUND.042
[2010.05.22 20:23:38 | 000,000,000 | -HSD | C] -- C:\FOUND.041
[2010.05.18 14:55:40 | 000,000,000 | -HSD | C] -- C:\FOUND.040
[2010.05.18 14:23:54 | 000,000,000 | -HSD | C] -- C:\FOUND.039
[2010.05.17 20:47:02 | 000,000,000 | -HSD | C] -- C:\FOUND.038
[2010.05.15 10:04:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Dorian\My Documents\My Data Sources
[2010.05.12 21:50:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Application Data\TeamViewer
[2010.05.12 21:49:21 | 002,315,560 | ---- | C] (TeamViewer GmbH) -- C:\Documents and Settings\Dorian\Desktop\TeamViewer.exe
[2010.05.09 20:15:03 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010.05.09 20:13:34 | 000,000,000 | ---D | C] -- C:\Program Files\ABBY FINE READER final activated100% by ViKi'S
[2010.05.08 16:23:54 | 000,000,000 | -HSD | C] -- C:\FOUND.037
[2010.05.07 20:29:36 | 000,000,000 | -HSD | C] -- C:\FOUND.036
[2010.05.07 19:41:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Application Data\ABBYY
[2010.05.07 19:33:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ABBYY
[2010.05.07 19:31:11 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 9.0
[2010.05.07 19:31:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Local Settings\Application Data\ABBYY
[2010.05.07 19:31:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ABBYY
[2010.05.07 19:27:56 | 000,000,000 | ---D | C] -- C:\FR90PE_VOL
[2010.05.07 18:51:38 | 000,000,000 | ---D | C] -- C:\doc tati
[2010.05.07 18:44:24 | 000,000,000 | -HSD | C] -- C:\FOUND.035
[2010.05.05 18:11:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\My Documents\TmForever
[2010.05.05 18:11:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TmForever
[2010.05.05 18:07:53 | 000,000,000 | ---D | C] -- C:\Program Files\TmNationsForever
[2010.05.05 10:50:26 | 000,000,000 | -HSD | C] -- C:\FOUND.034
[2010.05.04 23:40:20 | 000,000,000 | ---D | C] -- C:\Program Files\Chicken Invaders 2
[2010.05.04 12:30:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\My Documents\EA Games
[2010.05.04 12:25:48 | 000,000,000 | ---D | C] -- C:\Program Files\EA Games
[2010.05.01 22:57:08 | 000,000,000 | -HSD | C] -- C:\FOUND.033
[2010.04.29 22:21:29 | 000,000,000 | ---D | C] -- C:\Program Files\Chicken Invaders
[2010.04.29 20:57:36 | 000,000,000 | -HSD | C] -- C:\FOUND.032
[2010.04.25 11:39:50 | 000,000,000 | -HSD | C] -- C:\FOUND.031
[2010.04.20 10:26:12 | 000,000,000 | -HSD | C] -- C:\FOUND.030
[2010.04.16 12:25:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\My Documents\Dosar de schimb de date Bluetooth
[2010.04.16 12:25:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Bluetooth Software
[2010.04.16 12:23:13 | 000,000,000 | ---D | C] -- C:\Program Files\WIDCOMM
[2010.04.11 14:37:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010.04.11 14:37:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010.04.10 15:11:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\My Documents\NFS Carbon
[2010.04.10 14:53:19 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2010.04.10 14:28:45 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2010.04.10 14:27:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2010.04.10 14:27:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2010.04.08 23:53:46 | 000,000,000 | -HSD | C] -- C:\FOUND.029
[2010.04.05 13:34:00 | 000,000,000 | -HSD | C] -- C:\FOUND.028
[2010.03.30 21:55:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Dorian\Local Settings\Application Data\TvFree77
[2010.03.30 21:55:12 | 000,000,000 | ---D | C] -- C:\Program Files\TvFree77
[2010.03.27 20:21:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Vbox
[2010.03.27 20:21:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macromedia
[2010.03.27 19:54:56 | 000,000,000 | ---D | C] -- C:\Program Files\Macromedia
[2010.03.27 19:32:12 | 000,000,000 | -HSD | C] -- C:\FOUND.027
[2010.03.26 15:50:34 | 000,000,000 | -HSD | C] -- C:\FOUND.026
[2010.03.23 17:06:59 | 000,000,000 | ---D | C] -- C:\Program Files\Garena
[2010.03.23 17:04:22 | 000,000,000 | ---D | C] -- C:\Program Files\Age Of Empires 2 & The Conquerors Expansion - Full Game
[2010.03.23 16:30:30 | 000,000,000 | -HSD | C] -- C:\FOUND.025
[2010.03.22 20:41:50 | 000,000,000 | -HSD | C] -- C:\FOUND.024
[2010.03.22 14:09:46 | 000,000,000 | -HSD | C] -- C:\FOUND.023

========== Files - Modified Within 90 Days ==========

[2010.06.19 11:45:02 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2010.06.19 11:24:18 | 000,019,334 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\thierry-henry_1261502531.jpg
[2010.06.19 09:58:20 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2010.06.19 09:58:16 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.06.19 09:58:10 | 000,063,804 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010.06.19 09:58:02 | 804,835,328 | -HS- | M] () -- C:\hiberfil.sys
[2010.06.19 09:58:02 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.06.18 23:15:04 | 005,242,880 | -H-- | M] () -- C:\Documents and Settings\Dorian\NTUSER.DAT
[2010.06.18 23:15:04 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Dorian\ntuser.ini
[2010.06.18 23:14:58 | 002,109,098 | -H-- | M] () -- C:\Documents and Settings\Dorian\Local Settings\Application Data\IconCache.db
[2010.06.18 16:04:08 | 036,603,764 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\hjv.ppt
[2010.06.17 20:33:38 | 000,000,601 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\LogMeIn Hamachi.lnk
[2010.06.17 19:50:48 | 000,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Earth.lnk
[2010.06.14 22:11:38 | 000,000,600 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.14 22:07:06 | 000,000,496 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\ERUNT.lnk
[2010.06.13 22:31:04 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.06.13 22:24:58 | 000,000,004 | ---- | M] () -- C:\WINDOWS\System32\drivers\cntnr0.sys
[2010.06.10 22:20:58 | 000,037,888 | ---- | M] () -- C:\Documents and Settings\Dorian\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.05.30 18:14:22 | 000,019,968 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\New Microsoft Word Document (2).doc
[2010.05.25 21:49:26 | 000,000,020 | -H-- | M] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdu.DAT
[2010.05.24 12:00:02 | 000,188,200 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.05.17 18:47:50 | 000,001,633 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010.05.17 11:24:18 | 000,028,594 | ---- | M] () -- C:\Documents and Settings\Dorian\Start Menu.rar
[2010.05.13 09:54:22 | 000,034,816 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\Clubul-Copiilor-bilant-rachete-2008.doc
[2010.05.12 21:49:58 | 002,315,560 | ---- | M] (TeamViewer GmbH) -- C:\Documents and Settings\Dorian\Desktop\TeamViewer.exe
[2010.05.09 22:42:08 | 000,000,027 | ---- | M] () -- C:\WINDOWS\clofghls.dll
[2010.05.07 18:52:44 | 000,000,273 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\doc tati.lnk
[2010.05.05 18:10:26 | 000,000,687 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\TmNationsForever.lnk
[2010.05.04 23:40:22 | 000,000,696 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\Chicken Invaders 2.lnk
[2010.05.04 12:25:56 | 000,000,612 | ---- | M] () -- C:\WINDOWS\eReg.dat
[2010.04.30 16:08:22 | 000,040,448 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\CURRICULUM VITAE Tati.doc
[2010.04.30 14:36:56 | 000,118,784 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\db1.mdb
[2010.04.29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010.04.29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010.04.22 11:24:56 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010.04.10 14:29:24 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.04.10 14:28:58 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.04.10 14:28:58 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.04.10 14:28:54 | 000,000,603 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.04.10 14:27:58 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010.04.10 14:27:18 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010.03.30 22:34:40 | 000,000,151 | ---- | M] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2010.03.27 23:20:58 | 000,000,642 | -H-- | M] () -- C:\Documents and Settings\All Users\Documents\os694301.bin
[2010.03.27 20:05:46 | 000,000,768 | -HS- | M] () -- C:\zll3o04v.sys
[2010.03.25 20:45:48 | 000,019,968 | ---- | M] () -- C:\Documents and Settings\Dorian\My Documents\mel.doc
[2010.03.24 21:41:10 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.03.23 17:07:22 | 000,000,558 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\Garena.lnk
[2010.03.23 17:06:00 | 000,000,908 | ---- | M] () -- C:\Documents and Settings\Dorian\Desktop\Age2.lnk

========== Files Created - No Company Name ==========

[2010.06.19 11:24:15 | 000,019,334 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\thierry-henry_1261502531.jpg
[2010.06.18 16:03:58 | 036,603,764 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\hjv.ppt
[2010.06.17 20:33:37 | 000,000,601 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\LogMeIn Hamachi.lnk
[2010.06.17 19:50:47 | 000,001,819 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Earth.lnk
[2010.06.14 22:11:36 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2010.06.14 22:07:05 | 000,000,496 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\ERUNT.lnk
[2010.06.13 22:30:32 | 000,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx
[2010.06.13 22:24:54 | 000,000,004 | ---- | C] () -- C:\WINDOWS\System32\drivers\cntnr0.sys
[2010.05.30 18:14:14 | 000,019,968 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\New Microsoft Word Document (2).doc
[2010.05.17 11:24:16 | 000,028,594 | ---- | C] () -- C:\Documents and Settings\Dorian\Start Menu.rar
[2010.05.13 09:54:19 | 000,034,816 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\Clubul-Copiilor-bilant-rachete-2008.doc
[2010.05.07 18:52:42 | 000,000,273 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\doc tati.lnk
[2010.05.05 18:10:25 | 000,000,687 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\TmNationsForever.lnk
[2010.05.05 10:52:52 | 000,417,280 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\ChickenInvaders.exe
[2010.05.04 23:40:21 | 000,000,696 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\Chicken Invaders 2.lnk
[2010.05.04 13:15:30 | 002,965,504 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\NFSHP2.exe
[2010.05.04 12:25:55 | 000,000,612 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2010.04.30 15:35:11 | 000,040,448 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\CURRICULUM VITAE Tati.doc
[2010.04.30 14:36:30 | 000,118,784 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\db1.mdb
[2010.04.10 14:27:16 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2010.03.30 22:34:39 | 000,000,151 | ---- | C] () -- C:\WINDOWS\PhotoSnapViewer.INI
[2010.03.27 20:37:31 | 000,000,642 | -H-- | C] () -- C:\Documents and Settings\All Users\Documents\os694301.bin
[2010.03.25 20:32:21 | 000,019,968 | ---- | C] () -- C:\Documents and Settings\Dorian\My Documents\mel.doc
[2010.03.23 17:07:21 | 000,000,558 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\Garena.lnk
[2010.03.23 17:05:59 | 000,000,908 | ---- | C] () -- C:\Documents and Settings\Dorian\Desktop\Age2.lnk
[2010.03.08 11:05:53 | 000,716,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010.03.07 16:57:53 | 000,000,027 | ---- | C] () -- C:\WINDOWS\clofghls.dll
[2010.03.05 21:17:44 | 000,000,052 | ---- | C] () -- C:\WINDOWS\mafosav.INI
[2010.03.05 20:45:15 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2010.02.24 22:32:47 | 000,023,040 | R--- | C] () -- C:\WINDOWS\System32\drivers\GVCplDrv.sys
[2010.02.22 13:07:49 | 000,888,326 | ---- | C] () -- C:\WINDOWS\System32\kernel32new.dll
[2010.02.22 13:07:49 | 000,680,454 | ---- | C] () -- C:\WINDOWS\System32\msvcrtnew.dll
[2010.02.22 13:07:49 | 000,208,899 | ---- | C] () -- C:\WINDOWS\System32\d3d10_1core.dll
[2010.02.22 13:07:49 | 000,188,419 | ---- | C] () -- C:\WINDOWS\System32\d3d10core.dll
[2010.02.22 13:07:49 | 000,171,526 | ---- | C] () -- C:\WINDOWS\System32\dxgi.dll
[2010.02.22 13:07:49 | 000,039,942 | ---- | C] () -- C:\WINDOWS\System32\dwmapi.dll
[2010.02.22 13:07:47 | 001,029,126 | ---- | C] () -- C:\WINDOWS\System32\d3d10.dll
[2010.02.22 13:07:47 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\M2000Twn.dll
[2010.02.21 21:43:57 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010.02.05 11:27:05 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010.02.02 17:04:58 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini
[2010.02.02 17:04:58 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2010.02.02 17:04:58 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini
[2010.02.02 17:04:50 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2010.02.02 17:04:46 | 000,152,064 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010.02.02 17:04:42 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010.02.01 16:56:13 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2010.01.21 18:13:04 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2009.07.29 14:28:46 | 002,854,976 | ---- | C] () -- C:\WINDOWS\System32\btwicons.dll
[2006.06.01 17:22:00 | 001,662,976 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2006.06.01 17:22:00 | 001,466,368 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2006.06.01 17:22:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2006.06.01 17:22:00 | 000,581,632 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2006.06.01 17:22:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2006.06.01 17:22:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2006.06.01 17:22:00 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2005.02.17 12:41:32 | 000,000,603 | ---- | C] () -- C:\WINDOWS\System32\BTNeighborhood.dll.manifest
[2005.02.17 12:41:30 | 000,000,593 | ---- | C] () -- C:\WINDOWS\System32\btcss.dll.manifest
[2004.08.04 07:56:44 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004.08.04 07:56:44 | 000,001,920 | ---- | C] () -- C:\WINDOWS\System32\r48tniuw.dll
[2003.01.07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2001.11.14 13:56:00 | 001,802,240 | ---- | C] () -- C:\WINDOWS\System32\lcppn21.dll

========== LOP Check ==========

[2010.01.21 18:51:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EnterNHelp
[2010.01.21 18:51:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ultima_T15
[2010.01.21 18:52:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nikon
[2010.01.24 10:47:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
[2010.01.24 10:50:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
[2010.02.01 11:16:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\GoldWave
[2010.02.19 12:25:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
[2010.02.28 18:28:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InterAction studios
[2010.03.04 21:33:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\ESET
[2010.03.07 23:22:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Temp
[2010.05.05 18:11:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TmForever
[2010.06.13 22:24:24 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\48c3c97
[2010.06.13 22:24:48 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\MSQLLE
[2010.01.21 18:44:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\BSplayer
[2010.01.21 18:44:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\BSplayer Pro
[2010.01.21 19:01:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\uTorrent
[2010.01.24 10:50:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\PC Suite
[2010.01.24 10:50:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\Nokia
[2010.02.02 22:55:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\Nikon
[2010.02.27 21:25:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\GetRightToGo
[2010.03.04 18:53:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\DNA
[2010.03.04 21:34:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\ESET
[2010.03.08 11:11:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\DAEMON Tools
[2010.05.12 21:50:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Dorian\Application Data\TeamViewer

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.* >
[2004.08.04 05:59:34 | 000,250,032 | RHS- | M] () -- C:\ntldr
[2004.08.04 05:38:34 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2010.01.21 17:43:28 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2010.01.21 17:53:20 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010.01.21 17:53:20 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010.01.21 17:53:20 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010.01.21 17:53:20 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010.03.27 20:05:46 | 000,000,768 | -HS- | M] () -- C:\zll3o04v.sys
[2010.03.05 20:57:18 | 000,000,032 | ---- | M] () -- C:\VIA3149.log
[2010.06.19 09:58:00 | 805,306,368 | -HS- | M] () -- C:\pagefile.sys
[2010.03.05 20:44:02 | 000,000,090 | ---- | M] () -- C:\VIA0571.log
[2010.06.19 09:58:02 | 804,835,328 | -HS- | M] () -- C:\hiberfil.sys

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\System32\config\*.sav >
[2010.01.21 17:34:40 | 000,892,928 | ---- | M] () -- C:\WINDOWS\system32\config\system.sav
[2010.01.21 17:34:40 | 000,659,456 | ---- | M] () -- C:\WINDOWS\system32\config\software.sav
[2010.01.21 17:34:40 | 000,094,208 | ---- | M] () -- C:\WINDOWS\system32\config\default.sav

< %systemroot%\system32\drivers\*.sys /180 >
[2010.04.10 15:07:06 | 000,163,644 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\drivers\secdrv.sys
[2010.03.08 11:05:56 | 000,716,272 | ---- | M] () -- C:\WINDOWS\system32\drivers\sptd.sys
[2010.04.16 12:22:16 | 000,991,264 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btkrnl.sys
[2010.04.16 12:22:16 | 000,045,984 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btwusb.sys
[2010.04.16 12:22:16 | 000,091,176 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btwsecfl.sys
[2010.04.16 12:22:16 | 000,037,160 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btport.sys
[2010.04.16 12:22:16 | 000,156,816 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btwdndis.sys
[2010.04.16 12:22:16 | 000,533,024 | ---- | M] (Broadcom Corporation.) -- C:\WINDOWS\system32\drivers\btaudio.sys
[2010.06.13 22:24:58 | 000,000,004 | ---- | M] () -- C:\WINDOWS\system32\drivers\cntnr0.sys
[2010.04.29 15:39:26 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbam.sys
[2010.04.29 15:39:38 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
< End of report >

Attached Files


Edited by Essexboy, 20 May 2010 - 01:27 PM.

  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP