Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Problem with Bloodhound.W32.EP!

Started by WalkerJonas , Jun 18 2011 02:36 AM

  • Please log in to reply

#1
WalkerJonas
Posted 18 June 2011 - 02:36 AM

WalkerJonas

    New Member

  • Member
  • Pip
  • 1 posts
Alright, first post after going to some related posts about bloodhound issues.

Here's the problem.
Since a month ago i have been getting this warning from my Symantec Endpoint :
(Not the actual warning, it's dormant for now so it's a clip from quarantine)

Posted Image

My version of endpoint:

Posted Image

The Bloodhound it self was easily found and traced back to some files in my TEMP folder and deleted the first time went into SAFE MODE and everything.
But it has returned and seemingly brought this along:

Posted Image
Posted Image

Now it does not affect my computer at all, doesn't slow it down, just doesn't do anything besides getting caught by symantec not getting registered by "Microsoft Security Essentials" and filling up my temp folder with crap that then gets caught by symantec and just fils up its quarantine.

What i don't get is where the [bleep] it's coming from their isn't a program installed on my PC that i don't know off, no bizarre file names show in processes no new program files no appdata hidden things, just a randomly filling up temp folder.

And for the record Hijack this was more useful.
Thanks in advance.

-------------------------------------------------------------OTL-----------------------------------------------

OTL logfile created on: 6/17/2011 10:01:17 PM - Run 1
OTL by OldTimer - Version 3.2.24.1 Folder = D:\Chrome Downloads
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000409 | Country: Belgium | Language: NLB | Date Format: d/MM/yyyy

3.25 Gb Total Physical Memory | 1.64 Gb Available Physical Memory | 50.40% Memory free
6.50 Gb Paging File | 4.79 Gb Available in Paging File | 73.76% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 97.66 Gb Total Space | 26.30 Gb Free Space | 26.93% Space Free | Partition Type: NTFS
Drive D: | 135.23 Gb Total Space | 32.80 Gb Free Space | 24.26% Space Free | Partition Type: NTFS
Drive E: | 502.71 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive F: | 4.38 Gb Total Space | 4.37 Gb Free Space | 99.88% Space Free | Partition Type: UDF
Drive K: | 284.14 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive M: | 465.76 Gb Total Space | 50.45 Gb Free Space | 10.83% Space Free | Partition Type: NTFS

Computer Name: JONASWUESTENBER | User Name: USER NAME | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/06/17 21:52:39 | 000,579,072 | ---- | M] (OldTimer Tools) -- D:\Chrome Downloads\OTL.exe
PRC - [2011/05/29 09:11:28 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/05/25 09:25:02 | 000,839,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2011/05/25 09:24:56 | 000,373,864 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2011/05/25 09:24:45 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011/05/06 18:15:20 | 000,532,320 | ---- | M] (Spigot, Inc.) -- C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe
PRC - [2011/05/06 17:33:00 | 000,393,112 | ---- | M] (Spigot, Inc.) -- C:\Program Files\Application Updater\ApplicationUpdater.exe
PRC - [2011/03/24 13:24:36 | 000,409,320 | ---- | M] (SANDBOXIE L.T.D) -- C:\Program Files\Sandboxie\SbieCtrl.exe
PRC - [2011/03/24 13:24:34 | 000,072,936 | ---- | M] (SANDBOXIE L.T.D) -- C:\Program Files\Sandboxie\SbieSvc.exe
PRC - [2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011/01/20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2010/11/30 13:20:36 | 000,997,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2010/11/20 14:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/11/11 12:26:42 | 000,206,360 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
PRC - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010/08/05 19:11:44 | 001,885,488 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
PRC - [2010/08/05 19:05:52 | 001,459,568 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
PRC - [2010/07/01 17:17:24 | 001,832,072 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
PRC - [2010/05/06 17:21:54 | 000,115,560 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2010/05/06 17:21:14 | 000,108,392 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2010/03/29 20:26:00 | 000,227,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE


========== Modules (SafeList) ==========

MOD - [2011/06/17 21:52:39 | 000,579,072 | ---- | M] (OldTimer Tools) -- D:\Chrome Downloads\OTL.exe
MOD - [2010/11/20 13:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (Ast Service)
SRV - [2011/05/29 09:45:21 | 000,008,192 | ---- | M] () [Auto | Stopped] -- C:\Windows\System32\srvany.exe -- (KMService)
SRV - [2011/05/29 09:11:28 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/05/25 09:24:45 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/05/20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2011/05/06 17:33:00 | 000,393,112 | ---- | M] (Spigot, Inc.) [Auto | Running] -- C:\Program Files\Application Updater\ApplicationUpdater.exe -- (Application Updater)
SRV - [2011/04/24 18:58:43 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011/03/24 13:24:34 | 000,072,936 | ---- | M] (SANDBOXIE L.T.D) [Auto | Running] -- C:\Program Files\Sandboxie\SbieSvc.exe -- (SbieSvc)
SRV - [2010/11/11 12:26:42 | 000,206,360 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV - [2010/11/11 12:26:40 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010/08/05 19:11:44 | 001,885,488 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe -- (SmcService)
SRV - [2010/07/01 17:17:24 | 001,832,072 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2010/07/01 16:24:02 | 000,357,704 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE -- (SNAC)
SRV - [2010/05/06 17:21:14 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2010/05/06 17:21:14 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2010/03/25 10:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2010/02/17 10:53:18 | 003,093,880 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE -- (LiveUpdate)
SRV - [2009/07/14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - [2011/06/17 15:40:31 | 000,028,752 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BE2BF244-AB65-4AAF-8F0D-D5CF1DE267D8}\MpKslbab96c09.sys -- (MpKslbab96c09)
DRV - [2011/05/29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2011/05/29 09:11:20 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/05/25 09:24:42 | 010,589,800 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2011/05/18 17:47:04 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011/05/18 10:00:00 | 001,542,392 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20110617.003\NAVEX15.SYS -- (NAVEX15)
DRV - [2011/05/18 10:00:00 | 000,086,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20110617.003\NAVENG.SYS -- (NAVENG)
DRV - [2011/05/13 10:00:00 | 000,105,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011/05/10 11:41:28 | 000,139,368 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2011/05/10 10:00:00 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2011/04/25 10:56:54 | 000,125,488 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2011/03/24 13:24:30 | 000,126,696 | ---- | M] (SANDBOXIE L.T.D) [Kernel | On_Demand | Running] -- C:\Program Files\Sandboxie\SbieDrv.sys -- (SbieDrv)
DRV - [2010/11/20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 12:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010/11/20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/10/24 21:25:38 | 000,054,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2010/10/24 21:25:38 | 000,043,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2010/09/10 22:32:20 | 000,167,936 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wpshelper.sys -- (WpsHelper)
DRV - [2010/08/05 19:11:48 | 000,099,696 | ---- | M] (Symantec Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SYSTEM32\Drivers\SysPlant.sys -- (SysPlant)
DRV - [2010/08/05 19:08:14 | 000,043,376 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\WPSDRVnt.sys -- (WPS)
DRV - [2010/03/08 12:59:14 | 000,320,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2010/03/08 12:59:14 | 000,283,184 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2010/03/08 12:59:14 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2009/12/28 12:42:26 | 000,067,472 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Teefer2.sys -- (Teefer2)
DRV - [2009/12/18 15:42:12 | 000,421,424 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2009/09/03 16:03:48 | 000,188,080 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2009/09/03 16:03:48 | 000,026,416 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2007/04/09 09:50:34 | 000,009,600 | ---- | M] (Waytech Development, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\UsbFltr.sys -- (UsbFltr)
DRV - [2004/02/04 10:27:56 | 000,049,536 | ---- | M] (Texas Instruments Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tiehdusb.sys -- (TIEHDUSB)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.flashget.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://be.msn.com/de....aspx?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = nl-be
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 3A 59 DF C3 71 02 CC 01 [binary data]
IE - HKCU\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=;ftp=;https=;



O1 HOSTS File: ([2011/04/24 20:53:03 | 000,001,164 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhos
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O2 - BHO: (CescrtHlpr Object) - {2EECD738-5844-4a99-B4B6-146BF802613B} - File not found
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - File not found
O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - File not found
O3 - HKLM\..\Toolbar: (pdfforge Toolbar) - {B922D405-6D13-4A2B-AE89-08A030DA4402} - File not found
O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [BabylonToolbar] File not found
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [Chew7Hale] C:\Windows\System32\hale.exe ()
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [SearchSettings] C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe (Spigot, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [AdobeBridge] File not found
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [ISUSPM] File not found
O4 - HKCU..\Run: [SandboxieControl] C:\Program Files\Sandboxie\SbieCtrl.exe (SANDBOXIE L.T.D)
O4 - Startup: C:\Users\USER NAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 95
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowLegacyWebView = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: AllowUnhashedWebView = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se&nd to OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_25)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.130.131.131 195.130.130.3
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2005/01/17 18:45:46 | 000,000,053 | R--- | M] () - E:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2010/05/26 07:52:55 | 000,000,082 | R--- | M] () - K:\autorun.inf -- [ CDFS ]
O32 - AutoRun File - [2004/01/01 01:28:22 | 000,000,033 | -HS- | M] () - M:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{1c1da0f1-8164-11e0-8019-001d9284c09d}\Shell - "" = AutoRun
O33 - MountPoints2\{1c1da0f1-8164-11e0-8019-001d9284c09d}\Shell\AutoRun\command - "" = K:\Setup.exe -- [2010/05/26 07:39:43 | 000,385,360 | R--- | M] (Microsoft Corporation)
O33 - MountPoints2\{de5144d9-6ea9-11e0-9951-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{de5144d9-6ea9-11e0-9951-806e6f6e6963}\Shell\AutoRun\command - "" = E:\Setup.exe -- [2005/01/17 18:45:46 | 000,049,152 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/06/17 21:44:01 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2011/06/17 21:43:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
[2011/06/17 21:43:32 | 000,000,000 | ---D | C] -- C:\Program Files\SpywareBlaster
[2011/06/17 15:02:59 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Nieuwe map (3)
[2011/06/17 13:54:33 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee
[2011/06/17 13:50:30 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2011/06/16 21:39:46 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\AppData\Roaming\Malwarebytes
[2011/06/16 21:39:38 | 000,039,984 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/06/16 21:39:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/06/16 21:39:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/06/16 21:39:33 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/06/16 21:39:33 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/06/16 21:39:05 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Malwarebytes' Anti-Malware 1.51.0.1200 Final
[2011/06/15 22:15:17 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011/06/15 19:44:27 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2011/06/15 19:44:27 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011/06/15 19:44:26 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011/06/15 19:44:25 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/06/15 13:37:23 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\AppData\Roaming\Mp3tag
[2011/06/15 13:37:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
[2011/06/15 13:36:59 | 000,000,000 | ---D | C] -- C:\Program Files\Mp3tag
[2011/06/15 12:01:49 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Noteflio Files
[2011/06/15 07:26:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpellEx
[2011/06/15 07:21:32 | 000,049,536 | ---- | C] (Texas Instruments Incorporated) -- C:\Windows\System32\drivers\tiehdusb.sys
[2011/06/15 07:21:32 | 000,021,456 | ---- | C] (Texas Instruments Incorporated) -- C:\Windows\System32\drivers\SilvrLnk.sys
[2011/06/15 07:20:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TI Tools
[2011/06/15 07:20:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\TI Shared
[2011/06/15 07:20:23 | 000,000,000 | ---D | C] -- C:\Program Files\TI Education
[2011/06/15 07:16:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2011/06/15 06:23:44 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Documents\MyTIData
[2011/06/13 14:02:55 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Iconen
[2011/06/13 12:49:42 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\.thumbnails
[2011/06/13 12:44:38 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\.gimp-2.6
[2011/06/13 12:44:34 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Documents\gegl-0.0
[2011/06/13 12:43:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP
[2011/06/13 12:43:00 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP-2.0
[2011/06/13 12:39:54 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP 2
[2011/06/12 16:21:55 | 000,000,000 | ---D | C] -- C:\Program Files\Veoh Networks
[2011/06/10 17:06:03 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Documents\Expression
[2011/06/10 17:05:13 | 000,000,000 | --SD | C] -- C:\Users\USER NAME\Documents\My Web Sites
[2011/06/10 17:00:17 | 000,000,000 | ---D | C] -- C:\Program Files\WPF Toolkit
[2011/06/10 16:59:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 3 SDK
[2011/06/10 16:59:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 4 SDK
[2011/06/10 16:58:06 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SDKs
[2011/06/10 16:57:39 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll
[2011/06/10 16:56:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
[2011/06/10 16:55:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Expression
[2011/06/09 21:26:54 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2011/06/07 20:58:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/06/07 20:58:13 | 000,107,368 | ---- | C] (GEAR Software Inc.) -- C:\Windows\System32\GEARAspi.dll
[2011/06/07 20:57:35 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2011/06/07 18:33:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP
[2011/06/07 18:33:41 | 000,000,000 | ---D | C] -- C:\Program Files\WinSCP
[2011/06/06 17:02:06 | 000,000,000 | ---D | C] -- C:\Program Files\UltraVNC
[2011/06/05 12:13:57 | 000,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\Windows\iun6002.exe
[2011/06/04 16:30:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fx Icon 32
[2011/06/04 16:30:06 | 000,368,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbar332.dll
[2011/06/04 16:30:05 | 000,326,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\temp.005
[2011/06/04 16:30:04 | 001,388,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\temp.004
[2011/06/04 16:30:04 | 000,147,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\temp.002
[2011/06/04 16:30:04 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\temp.003
[2011/06/04 16:30:03 | 000,598,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\temp.000
[2011/06/04 16:30:03 | 000,164,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\temp.001
[2011/06/03 17:43:29 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\AppData\Roaming\Rovio
[2011/06/03 17:40:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rovio
[2011/06/03 17:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\Rovio
[2011/06/02 18:53:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011/06/02 18:50:44 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011/06/02 18:50:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011/06/02 18:50:44 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011/06/02 18:50:14 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011/06/02 17:18:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011/06/02 17:18:05 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011/06/01 19:58:35 | 002,560,616 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll
[2011/06/01 19:55:33 | 016,456,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2011/06/01 19:55:33 | 013,011,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2011/06/01 19:55:33 | 010,589,800 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2011/06/01 19:55:33 | 005,301,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2011/06/01 19:55:33 | 002,804,328 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2011/06/01 19:55:33 | 002,082,408 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2011/06/01 19:55:33 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2011/06/01 19:55:33 | 000,012,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2011/06/01 14:39:44 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Pitbull - Give Me Everthing Tonight
[2011/05/31 06:48:13 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011/05/30 21:54:55 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Queen - 2011 - Greatest Hits (2011 Remaster) -- @320 ramifede
[2011/05/30 21:31:43 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Nero-Guilt_EP-(MTA006)-WEB-2011
[2011/05/29 09:30:58 | 000,000,000 | --SD | C] -- C:\Users\USER NAME\Documents\My Shapes
[2011/05/29 09:20:10 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\The Witcher 2 ADD-Ons
[2011/05/25 13:06:54 | 000,027,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2011/05/24 20:04:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2011/05/24 19:44:27 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2011/05/24 19:44:14 | 002,557,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2011/05/24 19:44:14 | 000,066,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
[2011/05/24 19:44:13 | 003,693,672 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2011/05/24 19:44:13 | 000,111,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2011/05/24 19:44:08 | 000,543,336 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\easyupdatusapiu.dll
[2011/05/24 19:41:39 | 000,139,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvhda32v.sys
[2011/05/24 19:41:39 | 000,026,216 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdap32.dll
[2011/05/24 19:41:38 | 000,865,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdagenco322040.dll
[2011/05/24 19:41:34 | 006,555,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2011/05/24 19:41:33 | 011,992,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2011/05/24 19:41:33 | 002,335,848 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2011/05/24 19:41:33 | 000,899,688 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco3220150.dll
[2011/05/24 19:41:33 | 000,865,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco322090.dll
[2011/05/24 19:38:02 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2011/05/24 07:27:02 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\AppData\Local\Unity
[2011/05/22 15:07:06 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Nieuwe map (2)
[2011/05/22 13:37:51 | 000,000,000 | R--D | C] -- C:\Users\USER NAME\Desktop\E-books Map
[2011/05/22 13:29:03 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Documents\OneNote-notitieblokken
[2011/05/22 13:28:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
[2011/05/22 13:28:29 | 000,137,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMAPI32.OCX
[2011/05/22 13:28:27 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPIDE.DLL
[2011/05/22 13:28:27 | 000,000,000 | ---D | C] -- C:\Program Files\PDFCreator
[2011/05/22 13:22:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Spigot
[2011/05/22 13:22:32 | 000,000,000 | ---D | C] -- C:\Program Files\Application Updater
[2011/05/22 13:18:48 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Nieuwe map
[2011/05/22 11:13:58 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Cracks
[2011/05/21 10:30:53 | 000,000,000 | R--D | C] -- C:\Users\USER NAME\Desktop\Pamphlet
[2011/05/21 10:30:53 | 000,000,000 | R--D | C] -- C:\Users\USER NAME\Desktop\Manual
[2011/05/21 10:30:53 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Avatars
[2011/05/21 10:30:52 | 000,000,000 | R--D | C] -- C:\Users\USER NAME\Desktop\World Maps
[2011/05/21 10:30:49 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\Desktop\Wallpapers
[2011/05/21 10:30:48 | 000,000,000 | R--D | C] -- C:\Users\USER NAME\Desktop\Walkthrough
[2011/05/21 10:27:56 | 000,000,000 | ---D | C] -- C:\Users\USER NAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo
[2011/05/21 10:27:56 | 000,000,000 | ---D | C] -- C:\Program Files\MediaInfo
[2011/05/19 18:38:47 | 000,000,000 | ---D | C] -- C:\Windows\AutoKMS
[2011/05/19 18:21:47 | 000,000,000 | -H-D | C] -- C:\KMSEMUTEMP
[2011/02/07 08:43:54 | 001,386,496 | ---- | C] (Microsoft Corporation) -- C:\Program Files\msvbvm60.dll
[2011/02/07 08:43:54 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Program Files\oleaut32.dll
[2011/02/07 08:43:54 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Program Files\olepro32.dll
[2011/02/07 08:43:54 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Program Files\asycfilt.dll
[2011/02/07 08:43:54 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Program Files\stdole2.tlb
[2011/02/07 08:43:54 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Program Files\comcat.dll
[2 C:\Users\USER NAME\Desktop\*.tmp files -> C:\Users\USER NAME\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/06/17 21:54:47 | 000,023,088 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/06/17 21:54:47 | 000,023,088 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/06/17 21:48:00 | 000,001,118 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1191558823-1114790642-3723388434-1001UA.job
[2011/06/17 21:47:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/06/17 21:27:53 | 000,000,036 | ---- | M] () -- C:\Users\USER NAME\AppData\Local\housecall.guid.cache
[2011/06/17 19:29:54 | 000,195,300 | -H-- | M] () -- C:\Windows\System32\mlfcache.dat
[2011/06/17 15:29:07 | 2616,696,832 | -HS- | M] () -- C:\hiberfil.sys
[2011/06/16 21:40:25 | 000,807,792 | ---- | M] () -- C:\Windows\System32\perfh013.dat
[2011/06/16 21:40:25 | 000,725,636 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/06/16 21:40:25 | 000,439,758 | ---- | M] () -- C:\Windows\System32\prfh0404.dat
[2011/06/16 21:40:25 | 000,422,884 | ---- | M] () -- C:\Windows\System32\prfh0804.dat
[2011/06/16 21:40:25 | 000,194,008 | ---- | M] () -- C:\Windows\System32\perfc013.dat
[2011/06/16 21:40:25 | 000,162,392 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/06/16 21:40:25 | 000,160,252 | ---- | M] () -- C:\Windows\System32\prfc0804.dat
[2011/06/16 21:40:25 | 000,155,338 | ---- | M] () -- C:\Windows\System32\prfc0404.dat
[2011/06/16 21:39:39 | 000,001,095 | ---- | M] () -- C:\Users\USER NAME\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2011/06/15 11:34:05 | 003,772,280 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/06/15 06:48:00 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1191558823-1114790642-3723388434-1001Core.job
[2011/06/14 12:54:39 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011/06/13 21:19:21 | 012,431,437 | ---- | M] () -- C:\Users\USER NAME\Desktop\Evangelion.mp3
[2011/06/13 12:34:39 | 000,000,132 | ---- | M] () -- C:\Users\USER NAME\AppData\Roaming\Adobe BMP Format CS5 Prefs
[2011/06/12 11:57:48 | 000,419,973 | RHS- | M] () -- C:\AIVTS
[2011/06/12 11:54:44 | 000,345,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppcommdlg.dll
[2011/06/12 11:54:43 | 000,410,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll
[2011/06/12 11:54:41 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppwmi.dll
[2011/06/12 11:54:40 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll
[2011/06/12 11:54:26 | 000,107,946 | ---- | M] () -- C:\Windows\System32\slmgr.vbs
[2011/06/12 11:54:25 | 000,325,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slui.exe
[2011/06/12 11:54:25 | 000,001,536 | ---- | M] () -- C:\Windows\System32\winver.exe
[2011/06/12 10:18:06 | 000,508,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2011/06/12 10:18:06 | 000,442,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2011/06/11 12:52:17 | 000,000,000 | ---- | M] () -- C:\t1g0.2
[2011/06/09 21:39:00 | 297,947,136 | ---- | M] () -- C:\Users\USER NAME\Desktop\MICROSOFT EXPRESSION STUDIO 4 ULTIMATE (activated) [thethingy].iso
[2011/06/07 18:34:24 | 000,000,600 | ---- | M] () -- C:\Users\USER NAME\AppData\Roaming\winscp.rnd
[2011/06/07 18:33:46 | 000,001,799 | ---- | M] () -- C:\Users\USER NAME\Desktop\WinSCP.lnk
[2011/06/05 12:13:33 | 000,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\Windows\iun6002.exe
[2011/06/04 16:56:49 | 000,000,132 | ---- | M] () -- C:\Users\USER NAME\AppData\Roaming\Adobe GIF Format CS5 Prefs
[2011/06/02 19:36:54 | 235,678,189 | ---- | M] () -- C:\Users\USER NAME\Desktop\iPod1,1_3.1.3_7E18_Restore.ipsw
[2011/06/02 18:50:25 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011/06/02 18:50:25 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011/06/02 18:50:24 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011/06/02 18:50:23 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011/06/01 21:01:39 | 000,000,292 | ---- | M] () -- C:\Windows\System32\secustat.dat
[2011/06/01 21:00:17 | 000,000,598 | ---- | M] () -- C:\Windows\System32\secushr.dat
[2011/06/01 20:55:48 | 000,000,025 | ---- | M] () -- C:\Windows\libem.INI
[2011/06/01 20:07:45 | 000,001,814 | ---- | M] () -- C:\Windows\Sandboxie.ini
[2011/05/29 09:45:21 | 000,008,192 | ---- | M] () -- C:\Windows\System32\srvany.exe
[2011/05/29 09:35:38 | 001,069,056 | ---- | M] () -- C:\Users\USER NAME\Desktop\mini-KMS_Activator_v1.053.exe
[2011/05/29 09:17:45 | 373,622,784 | ---- | M] () -- C:\Users\USER NAME\Desktop\Microsoft Office 2010 Visio Premium 32bit.ISO
[2011/05/29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/05/29 09:11:20 | 000,022,712 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/05/28 04:53:58 | 001,638,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011/05/25 09:24:56 | 002,560,616 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll
[2011/05/25 09:24:56 | 002,557,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2011/05/25 09:24:54 | 000,066,664 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
[2011/05/25 09:24:53 | 000,111,208 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2011/05/25 09:24:47 | 003,693,672 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2011/05/25 09:24:45 | 000,543,336 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\easyupdatusapiu.dll
[2011/05/25 09:24:44 | 016,456,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2011/05/25 09:24:44 | 006,555,240 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2011/05/25 09:24:44 | 000,057,960 | ---- | M] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2011/05/25 09:24:42 | 011,992,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2011/05/25 09:24:42 | 010,589,800 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2011/05/25 09:24:42 | 000,899,688 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco3220150.dll
[2011/05/25 09:24:42 | 000,865,896 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco322090.dll
[2011/05/25 09:24:42 | 000,004,364 | ---- | M] () -- C:\Windows\System32\nvinfo.pb
[2011/05/25 09:24:41 | 002,804,328 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2011/05/25 09:24:40 | 013,011,560 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2011/05/25 09:24:40 | 005,301,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2011/05/25 09:24:40 | 002,335,848 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2011/05/25 09:24:40 | 002,082,408 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2011/05/25 09:24:40 | 000,012,392 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2011/05/23 20:49:12 | 015,774,340 | ---- | M] () -- C:\Users\USER NAME\Desktop\Dark X-Men #1.pdf
[2011/05/23 09:27:07 | 084,648,363 | ---- | M] () -- C:\Users\USER NAME\Desktop\PC Plus - July 2011.pdf
[2011/05/22 19:39:43 | 025,802,622 | ---- | M] () -- C:\Users\USER NAME\Desktop\Astonishing X-Men #38.pdf
[2011/05/22 13:32:47 | 000,001,270 | ---- | M] () -- C:\Users\USER NAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk
[2011/05/22 10:19:38 | 012,962,715 | ---- | M] () -- C:\Users\USER NAME\Desktop\Avengers-Academy-014--2011---noads---Oroboros-CPS-.rar
[2011/05/22 09:52:57 | 028,034,572 | ---- | M] () -- C:\Users\USER NAME\Desktop\Astonishing_X-Men_038_(2011)_(c2c)_(DangerAngel-CPS).RAR
[2011/05/20 22:35:28 | 000,304,744 | ---- | M] () -- C:\Windows\System32\nvStreaming.exe
[2011/05/20 22:00:37 | 001,391,104 | ---- | M] () -- C:\apploc.msi
[2011/05/19 18:44:00 | 000,151,552 | ---- | M] () -- C:\Windows\KMSEmulator.exe
[2011/05/19 17:56:16 | 000,000,017 | ---- | M] () -- C:\Users\USER NAME\AppData\Local\resmon.resmoncfg
[2 C:\Users\USER NAME\Desktop\*.tmp files -> C:\Users\USER NAME\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/06/17 21:27:53 | 000,000,036 | ---- | C] () -- C:\Users\USER NAME\AppData\Local\housecall.guid.cache
[2011/06/16 21:39:39 | 000,001,095 | ---- | C] () -- C:\Users\USER NAME\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2011/06/13 21:19:26 | 012,431,437 | ---- | C] () -- C:\Users\USER NAME\Desktop\Evangelion.mp3
[2011/06/12 11:57:48 | 000,419,973 | RHS- | C] () -- C:\AIVTS
[2011/06/11 12:52:17 | 000,000,000 | ---- | C] () -- C:\t1g0.2
[2011/06/10 16:41:47 | 297,947,136 | ---- | C] () -- C:\Users\USER NAME\Desktop\MICROSOFT EXPRESSION STUDIO 4 ULTIMATE (activated) [thethingy].iso
[2011/06/09 21:26:58 | 000,002,059 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Web Platform Installer.lnk
[2011/06/07 18:33:47 | 000,000,600 | ---- | C] () -- C:\Users\USER NAME\AppData\Roaming\winscp.rnd
[2011/06/07 18:33:46 | 000,001,799 | ---- | C] () -- C:\Users\USER NAME\Desktop\WinSCP.lnk
[2011/06/06 16:54:58 | 000,195,300 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2011/06/06 16:35:33 | 249,780,497 | ---- | C] () -- C:\Users\USER NAME\Desktop\iPod1,1_3.1.2_7D11_Restore.ipsw
[2011/06/06 16:07:56 | 235,678,189 | ---- | C] () -- C:\Users\USER NAME\Desktop\iPod1,1_3.1.3_7E18_Restore.ipsw
[2011/06/04 16:56:49 | 000,000,132 | ---- | C] () -- C:\Users\USER NAME\AppData\Roaming\Adobe GIF Format CS5 Prefs
[2011/06/04 16:44:33 | 000,000,132 | ---- | C] () -- C:\Users\USER NAME\AppData\Roaming\Adobe BMP Format CS5 Prefs
[2011/06/01 21:01:40 | 000,000,292 | ---- | C] () -- C:\Windows\System32\secustat.dat
[2011/06/01 21:00:17 | 000,000,598 | ---- | C] () -- C:\Windows\System32\secushr.dat
[2011/06/01 20:55:48 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI
[2011/05/29 09:37:16 | 001,069,056 | ---- | C] () -- C:\Users\USER NAME\Desktop\mini-KMS_Activator_v1.053.exe
[2011/05/29 09:18:51 | 373,622,784 | ---- | C] () -- C:\Users\USER NAME\Desktop\Microsoft Office 2010 Visio Premium 32bit.ISO
[2011/05/25 16:19:01 | 084,648,363 | ---- | C] () -- C:\Users\USER NAME\Desktop\PC Plus - July 2011.pdf
[2011/05/24 19:41:34 | 000,004,364 | ---- | C] () -- C:\Windows\System32\nvinfo.pb
[2011/05/23 20:48:58 | 015,774,340 | ---- | C] () -- C:\Users\USER NAME\Desktop\Dark X-Men #1.pdf
[2011/05/22 19:39:32 | 025,802,622 | ---- | C] () -- C:\Users\USER NAME\Desktop\Astonishing X-Men #38.pdf
[2011/05/22 13:29:20 | 000,001,270 | ---- | C] () -- C:\Users\USER NAME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Schermopname en Snel starten.lnk
[2011/05/22 13:28:29 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll
[2011/05/22 10:21:29 | 012,962,715 | ---- | C] () -- C:\Users\USER NAME\Desktop\Avengers-Academy-014--2011---noads---Oroboros-CPS-.rar
[2011/05/22 09:53:17 | 028,034,572 | ---- | C] () -- C:\Users\USER NAME\Desktop\Astonishing_X-Men_038_(2011)_(c2c)_(DangerAngel-CPS).RAR
[2011/05/21 11:12:29 | 001,391,104 | ---- | C] () -- C:\apploc.msi
[2011/05/20 22:35:28 | 000,304,744 | ---- | C] () -- C:\Windows\System32\nvStreaming.exe
[2011/05/19 20:07:48 | 000,008,192 | ---- | C] () -- C:\Windows\System32\srvany.exe
[2011/05/19 18:29:51 | 000,151,552 | ---- | C] () -- C:\Windows\KMSEmulator.exe
[2011/05/19 17:56:16 | 000,000,017 | ---- | C] () -- C:\Users\USER NAME\AppData\Local\resmon.resmoncfg
[2011/05/18 14:37:18 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011/05/18 14:37:10 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011/05/06 21:43:50 | 000,002,383 | ---- | C] () -- C:\Windows\WinRos.ini
[2011/05/06 20:52:33 | 000,000,000 | ---- | C] () -- C:\Windows\regset.INI
[2011/05/02 07:32:55 | 002,169,856 | -HS- | C] () -- C:\Windows\System32\hale.exe
[2011/04/25 11:33:34 | 000,001,814 | ---- | C] () -- C:\Windows\Sandboxie.ini
[2011/04/24 18:40:20 | 000,341,322 | ---- | C] () -- C:\Windows\System32\perfi013.dat
[2011/04/24 18:40:20 | 000,043,068 | ---- | C] () -- C:\Windows\System32\perfd013.dat
[2011/04/24 18:40:19 | 000,807,792 | ---- | C] () -- C:\Windows\System32\perfh013.dat
[2011/04/24 18:40:19 | 000,194,008 | ---- | C] () -- C:\Windows\System32\perfc013.dat
[2011/04/24 18:40:19 | 000,111,310 | ---- | C] () -- C:\Windows\System32\prfi0804.dat
[2011/04/24 18:40:18 | 000,422,884 | ---- | C] () -- C:\Windows\System32\prfh0804.dat
[2011/04/24 18:40:18 | 000,160,252 | ---- | C] () -- C:\Windows\System32\prfc0804.dat
[2011/04/24 18:40:18 | 000,031,548 | ---- | C] () -- C:\Windows\System32\prfd0804.dat
[2011/04/24 18:40:17 | 000,117,840 | ---- | C] () -- C:\Windows\System32\prfi0404.dat
[2011/04/24 18:40:16 | 000,439,758 | ---- | C] () -- C:\Windows\System32\prfh0404.dat
[2011/04/24 18:40:16 | 000,155,338 | ---- | C] () -- C:\Windows\System32\prfc0404.dat
[2011/04/24 18:40:16 | 000,031,548 | ---- | C] () -- C:\Windows\System32\prfd0404.dat
[2011/04/24 15:22:04 | 000,000,106 | ---- | C] () -- C:\Users\USER NAME\AppData\Local\fusioncache.dat
[2011/04/24 13:48:42 | 000,878,080 | ---- | C] () -- C:\Windows\System32\iconv.dll
[2011/04/24 13:48:42 | 000,721,920 | ---- | C] () -- C:\Windows\System32\libxml2.dll
[2011/04/24 13:48:42 | 000,150,016 | ---- | C] () -- C:\Windows\System32\libxslt.dll
[2011/04/24 13:48:42 | 000,051,200 | ---- | C] () -- C:\Windows\System32\libexslt.dll
[2011/04/09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2009/07/29 10:35:54 | 002,378,752 | ---- | C] () -- C:\Windows\System32\x264vfw.dll
[2009/07/14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 06:33:53 | 003,772,280 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 04:05:48 | 000,725,636 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 04:05:48 | 000,162,392 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/07/14 01:41:47 | 000,001,536 | ---- | C] () -- C:\Windows\System32\winver.exe
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/07/18 16:51:16 | 005,304,320 | ---- | C] () -- C:\Windows\System32\digiSealApi.dll

< End of report >

Attached Files

  • Attached File  OTL.Txt   103.62KB   99 downloads

Edited by WalkerJonas, 18 June 2011 - 11:37 AM.

  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP