Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

My PC is disturbing by an system process "Image Name: System",


  • Please log in to reply

#1
Vatjarr

Vatjarr

    New Member

  • Member
  • Pip
  • 1 posts
My PC's:
Windows XP SP2
Inter® Pentium® 4 Family CPU 2.20GHz 2,20GHz
0,98 of RAM

Please help me to solve...
:)


This is the result scanned by OTL:

OTL logfile created on: 14/07/2011 19:27:53 - Run 1
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\My Documents\Downloads\Programs
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000421 | Country: Indonesia | Language: IND | Date Format: dd/MM/yyyy

1007,48 Mb Total Physical Memory | 343,85 Mb Available Physical Memory | 34,13% Memory free
2,38 Gb Paging File | 1,74 Gb Available in Paging File | 73,08% Paging File free
Paging file location(s): C:\pagefile.sys 1520 1991 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 19,53 Gb Total Space | 2,57 Gb Free Space | 13,16% Space Free | Partition Type: NTFS
Drive D: | 17,73 Gb Total Space | 0,15 Gb Free Space | 0,82% Space Free | Partition Type: NTFS
Drive F: | 9,78 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: DISTEMO-E2DAE28 | User Name: Vatjarr | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/07/14 19:27:24 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\My Documents\Downloads\Programs\OTL.exe
PRC - [2011/06/29 09:07:10 | 003,241,312 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe
PRC - [2011/06/14 06:52:23 | 001,011,768 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
PRC - [2011/04/18 17:40:08 | 002,334,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011/04/18 17:39:42 | 007,398,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2011/04/14 05:36:42 | 001,080,672 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/03/28 03:00:52 | 000,351,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2011/03/16 16:05:14 | 000,656,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2011/03/09 19:24:44 | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgfws.exe
PRC - [2011/02/10 07:55:18 | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2011/02/08 05:33:20 | 000,658,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2011/02/08 05:32:42 | 000,750,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe
PRC - [2010/05/25 21:28:58 | 000,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
PRC - [2008/05/21 12:48:56 | 000,114,688 | ---- | M] () -- C:\Program Files\Mobile Partner\Mobile Partner.exe
PRC - [2007/10/03 15:57:12 | 000,262,144 | ---- | M] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\system32\sistray.exe
PRC - [2007/07/24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2007/04/16 15:28:22 | 000,577,536 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\soundman.exe
PRC - [2004/08/04 00:56:50 | 001,539,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2011/07/14 19:27:24 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\My Documents\Downloads\Programs\OTL.exe
MOD - [2009/03/26 21:35:40 | 000,034,224 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\idmmkb.dll
MOD - [2004/08/04 00:57:02 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- -- (Adobe LM Service)
SRV - [2011/05/30 11:33:54 | 001,025,352 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011/04/18 17:39:42 | 007,398,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/03/09 19:24:44 | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws)
SRV - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2007/07/24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)


========== Driver Services (SafeList) ==========

DRV - [2011/04/14 21:28:42 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/04/05 00:59:56 | 000,297,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/03/16 16:03:20 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/03/01 14:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/02/22 08:13:02 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2011/02/10 07:53:54 | 000,027,216 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/02/10 07:53:52 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011/01/07 06:41:46 | 000,248,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010/09/02 20:22:18 | 000,076,896 | ---- | M] (Tonec Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\idmtdi.sys -- (IDMTDI)
DRV - [2010/07/12 04:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwfd)
DRV - [2010/07/12 04:33:54 | 000,030,432 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgfwdx.sys -- (Avgfwdx)
DRV - [2010/01/29 11:40:04 | 000,082,320 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive)
DRV - [2008/09/24 10:40:22 | 004,122,368 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\alcxwdm.sys -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2008/03/17 11:03:46 | 000,101,376 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2007/10/03 16:22:10 | 000,018,944 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\srvkp.sys -- (SiSkp)
DRV - [2007/10/03 16:00:38 | 000,322,560 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sisgrp.sys -- (SiS315)
DRV - [2004/08/04 05:31:36 | 000,032,768 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sisnic.sys -- (SISNIC)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com/?...o=102876&gct=hp
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.ask.com/?...=102876&gct=hp"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {f69e22c7-bc50-414a-9269-0f5c344cd94c}:1.5
FF - prefs.js..extensions.enabledItems: tabscope@xuldev.org:1.1.2
FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.2
FF - prefs.js..extensions.enabledItems: support@platinumhideip.com:1.0
FF - prefs.js..extensions.enabledItems: {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:10.0.0.1387
FF - prefs.js..extensions.enabledItems: mozilla_cc@internetdownloadmanager.com:7.1.3
FF - prefs.js..extensions.enabledItems: nasanightlaunch@example.com:0.6.20110630
FF - prefs.js..keyword.URL: "http://websearch.ask...=YYYYYYYYID&q="
FF - prefs.js..network.proxy.share_proxy_settings: true
FF - prefs.js..network.proxy.type: 0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.450: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@eximion.com/KalydoPlayer3.10.04: C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Kalydo\KalydoPlayer\npkalydo.dll (Eximion B.V.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2011/07/14 17:30:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared [2011/06/27 14:56:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/07/11 15:57:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/07/11 15:57:40 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\IDM\idmmzcc3 [2011/06/29 09:06:54 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\IDM\idmmzcc3 [2011/06/29 09:06:54 | 000,000,000 | ---D | M]

[2011/05/17 22:02:05 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Mozilla\Extensions
[2011/07/07 20:44:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Mozilla\Firefox\Profiles\driwnu3u.default\extensions
[2011/06/25 19:33:28 | 000,000,000 | ---D | M] (Stylish) -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Mozilla\Firefox\Profiles\driwnu3u.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}
[2011/07/07 20:44:14 | 000,000,000 | ---D | M] (Theme Font & Size Changer) -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Mozilla\Firefox\Profiles\driwnu3u.default\extensions\{f69e22c7-bc50-414a-9269-0f5c344cd94c}
[2011/07/07 20:44:11 | 000,000,000 | ---D | M] (NASA Night Launch) -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Mozilla\Firefox\Profiles\driwnu3u.default\extensions\nasanightlaunch@example.com
[2011/06/26 08:36:31 | 000,000,000 | ---D | M] (Platinum Hide IP) -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Mozilla\Firefox\Profiles\driwnu3u.default\extensions\support@platinumhideip.com
[2011/06/25 00:14:23 | 000,000,000 | ---D | M] (Tab Scope) -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Mozilla\Firefox\Profiles\driwnu3u.default\extensions\tabscope@xuldev.org
[2011/06/26 09:26:18 | 000,000,000 | ---D | M] ("Ask Toolbar") -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Mozilla\Firefox\Profiles\driwnu3u.default\extensions\toolbar@ask.com
[2011/06/26 09:25:57 | 000,002,569 | ---- | M] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Mozilla\Firefox\Profiles\driwnu3u.default\searchplugins\askcom.xml
[2011/07/10 00:35:13 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/10/02 16:04:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2011/02/15 02:10:38 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2010/10/03 04:46:48 | 000,000,000 | ---D | M] (NASA Night Launch) -- C:\Program Files\Mozilla Firefox\extensions\nasanightlaunch@example.com
[2011/06/29 09:06:54 | 000,000,000 | ---D | M] (IDM CC) -- C:\DOCUMENTS AND SETTINGS\VATJARR.DISTEMO-E2DAE28\APPLICATION DATA\IDM\IDMMZCC3
[2011/07/14 17:30:12 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG10\FIREFOX4
[2011/05/20 11:24:16 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/04/14 23:52:05 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2008/02/04 18:49:18 | 000,663,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npOGAPlugin.dll

Hosts file not found
O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Tonec Inc.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [HKLM] File not found
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [SiSPower] C:\WINDOWS\System32\SiSPower.dll (Silicon Integrated Systems Corporation)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\soundman.exe (Realtek Semiconductor Corp.)
O4 - HKCU..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)
O4 - Startup: C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup\Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe (Silicon Integrated Systems Corporation)
O4 - Startup: C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Start Menu\Programs\Startup\IMVU.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: Policies = C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\system\win32.exe
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: Policies = C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\system\win32.exe
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O9 - Extra Button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - File not found
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_21)
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/07/27 21:23:45 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2008/04/24 04:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) - F:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2007/11/06 22:41:52 | 000,000,047 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{0e44cfd2-aa06-11e0-a0d7-00016ca7469e}\Shell - "" = AutoRun
O33 - MountPoints2\{0e44cfd2-aa06-11e0-a0d7-00016ca7469e}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{0e44cfd2-aa06-11e0-a0d7-00016ca7469e}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{627a205c-ace0-11e0-a0f3-00016ca7469e}\Shell - "" = AutoRun
O33 - MountPoints2\{627a205c-ace0-11e0-a0f3-00016ca7469e}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{627a205c-ace0-11e0-a0f3-00016ca7469e}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2008/04/24 04:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{67a9449c-508b-11e0-8bbc-c65f953571a1}\Shell - "" = AutoRun
O33 - MountPoints2\{67a9449c-508b-11e0-8bbc-c65f953571a1}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{67a9449c-508b-11e0-8bbc-c65f953571a1}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{80dee9fc-9da3-11e0-a097-00016ca7469e}\Shell - "" = AutoRun
O33 - MountPoints2\{80dee9fc-9da3-11e0-a097-00016ca7469e}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{80dee9fc-9da3-11e0-a097-00016ca7469e}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2008/04/24 04:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{ee072786-acdc-11e0-a0f2-00016ca7469e}\Shell - "" = AutoRun
O33 - MountPoints2\{ee072786-acdc-11e0-a0f2-00016ca7469e}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{ee072786-acdc-11e0-a0f2-00016ca7469e}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{ee072789-acdc-11e0-a0f2-00016ca7469e}\Shell - "" = AutoRun
O33 - MountPoints2\{ee072789-acdc-11e0-a0f2-00016ca7469e}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{ee072789-acdc-11e0-a0f2-00016ca7469e}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- [2008/04/24 04:44:40 | 000,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\{f2b4c249-8094-11e0-9fb1-00016ca7469e}\Shell - "" = AutoRun
O33 - MountPoints2\{f2b4c249-8094-11e0-9fb1-00016ca7469e}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{f2b4c249-8094-11e0-9fb1-00016ca7469e}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Program Files\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Program Files\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/07/13 06:17:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Mobile Partner
[2011/07/13 06:17:22 | 000,872,192 | ---- | C] (DiBcom SA) -- C:\WINDOWS\System32\drivers\mod7700.sys
[2011/07/13 06:17:22 | 000,103,168 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbfake.sys
[2011/07/13 06:17:22 | 000,101,376 | R--- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys
[2011/07/13 06:17:22 | 000,100,992 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys
[2011/07/13 06:17:22 | 000,024,448 | R--- | C] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys
[2011/07/12 09:45:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Pcsx2
[2011/07/12 09:45:00 | 000,000,000 | ---D | C] -- C:\Program Files\Pcsx2
[2011/07/12 08:45:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Kalydo
[2011/07/11 15:58:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Real
[2011/07/11 15:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Real Alternative
[2011/07/11 15:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2011/07/09 18:38:43 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Recent
[2011/07/09 18:26:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Start Menu\Programs\DiskMax
[2011/07/09 18:26:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\KoshyJohn.com
[2011/07/09 15:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\SiS VGA Utilities
[2011/07/09 15:54:36 | 000,000,000 | ---D | C] -- C:\Program Files\SiS VGA Utilities V3.83
[2011/07/09 14:57:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\fltk.org
[2011/07/09 14:55:17 | 000,000,000 | ---D | C] -- C:\Program Files\psx emulation cheater
[2011/07/09 14:55:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Start Menu\Programs\psx emulation cheater
[2011/07/06 19:50:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\GetRightToGo
[2011/07/05 08:51:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\My Documents\4Videosoft Studio
[2011/06/29 22:40:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\My Documents\Recorded Tv
[2011/06/29 22:40:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Local Settings\Application Data\DeskShare Data
[2011/06/29 22:40:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\My Documents\Converted
[2011/06/29 22:40:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Deskshare
[2011/06/29 22:39:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Local Settings\Application Data\Spoon
[2011/06/29 09:06:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\IDM
[2011/06/29 09:06:32 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Download Manager
[2011/06/27 16:13:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Local Settings\Application Data\AVG Security Toolbar
[2011/06/27 12:33:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVG Security Toolbar
[2011/06/27 12:33:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\AVG 2011
[2011/06/27 12:28:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2011/06/27 11:35:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\McAfee
[2011/06/26 09:08:41 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2011/06/26 08:39:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\SpeedBit
[2011/06/26 08:39:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP
[2011/06/26 08:39:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\SpeedBit
[2011/06/26 08:38:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Start Menu\Programs\SpeedOptimizer
[2011/06/26 08:38:38 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedOptimizer
[2011/06/26 08:34:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\PlatinumHideIP
[2011/06/26 08:34:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PlatinumHideIP
[2011/06/26 08:34:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Platinum Hide IP
[2011/06/26 08:34:28 | 000,000,000 | ---D | C] -- C:\Program Files\PlatinumHideIP
[2011/06/26 08:32:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Start Menu\Programs\Google Chrome
[2011/06/25 00:45:02 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Installer Clean Up
[2011/06/25 00:44:39 | 000,000,000 | ---D | C] -- C:\Program Files\MSECACHE
[2011/06/25 00:30:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Start Menu\Programs\CCleaner
[2011/06/25 00:30:49 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/06/24 18:08:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\UserData
[2011/06/24 13:55:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Windows Genuine Advantage
[2011/06/23 21:12:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2011/06/23 21:06:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Apple Computer
[2011/06/23 21:01:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Start Menu\Programs\WinRAR
[2011/06/23 21:01:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\WinRAR
[2011/06/23 20:52:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Mozilla Firefox
[2011/06/23 17:34:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\AVG10
[2011/06/23 17:28:45 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Common Files
[2011/06/23 17:21:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVG10
[2011/06/23 13:12:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\MFAData
[2011/06/23 06:29:48 | 000,000,000 | RHSD | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\system
[2011/06/22 23:36:59 | 000,000,000 | RHSD | C] -- C:\Program Files\system
[2011/06/19 05:50:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Smadav 2011 Rev. 8.5
[2011/06/17 21:23:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\My Documents\Corel User Files
[2011/06/17 18:14:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Corel
[2011/06/17 18:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Protexis
[2011/06/17 18:08:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Corel
[2011/06/17 17:56:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Corel
[2004/11/25 02:25:52 | 000,335,872 | ---- | C] ( ) -- C:\WINDOWS\System32\drvc.dll
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/07/14 19:24:01 | 000,001,002 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/07/14 19:01:21 | 000,000,238 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2011/07/14 18:13:59 | 000,000,998 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/07/14 18:13:45 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/07/14 18:13:44 | 1056,493,568 | -HS- | M] () -- C:\hiberfil.sys
[2011/07/14 18:12:09 | 000,395,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/07/14 18:12:09 | 000,059,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/07/14 17:25:49 | 122,320,709 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011/07/14 17:25:49 | 000,656,796 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm
[2011/07/14 08:03:09 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2011/07/13 06:44:39 | 000,091,648 | ---- | M] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/07/12 09:47:25 | 000,000,175 | ---- | M] () -- C:\WINDOWS\GSdx9 sse2.INI
[2011/07/09 15:55:05 | 000,238,319 | ---- | M] () -- C:\WINDOWS\System32\VGAunistlog.ini
[2011/07/09 15:55:00 | 000,001,555 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup\Utility Tray.lnk
[2011/07/05 11:10:28 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/06/28 00:06:47 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Microsoft\Internet Explorer\Quick Launch\PhotoScape.lnk
[2011/06/26 08:33:15 | 000,002,396 | ---- | M] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/06/24 19:39:20 | 000,002,516 | -HS- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\KGyGaAvL.sys
[2011/06/23 21:05:06 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk
[2011/06/23 20:55:40 | 000,000,610 | ---- | M] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2011/06/23 20:52:02 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/06/23 13:51:17 | 000,004,919 | -H-- | M] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\logs.dat
[2011/06/21 14:31:09 | 000,006,144 | -H-- | M] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Desktop\photothumb.db
[2011/06/19 18:04:42 | 000,050,443 | ---- | M] () -- C:\WINDOWS\FontData.fdb
[2011/06/17 19:41:29 | 000,323,520 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/06/17 18:14:57 | 000,000,008 | RHS- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\57D0F1D4A3.sys
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/07/14 17:25:49 | 122,320,709 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011/07/14 17:25:49 | 000,656,796 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\iavifw.avm
[2011/07/12 09:47:25 | 000,000,175 | ---- | C] () -- C:\WINDOWS\GSdx9 sse2.INI
[2011/06/26 09:08:58 | 000,000,238 | ---- | C] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2011/06/26 08:33:15 | 000,002,396 | ---- | C] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2011/06/25 00:45:02 | 000,002,363 | ---- | C] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Start Menu\Programs\Windows Install Clean Up.lnk
[2011/06/24 19:37:34 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Adobe Reader 9.lnk
[2011/06/23 21:11:44 | 000,001,362 | ---- | C] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Start Menu\Programs\50 FREE MP3s +1 Free Audiobook!.lnk
[2011/06/23 20:52:02 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/06/19 18:04:40 | 000,050,443 | ---- | C] () -- C:\WINDOWS\FontData.fdb
[2011/06/17 18:14:57 | 000,002,516 | -HS- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\KGyGaAvL.sys
[2011/06/17 18:14:57 | 000,000,008 | RHS- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Application Data\57D0F1D4A3.sys
[2011/05/24 09:56:22 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2011/05/24 09:56:21 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2011/05/24 09:56:19 | 000,790,528 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011/05/24 09:56:19 | 000,134,144 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011/05/18 14:48:43 | 000,091,648 | ---- | C] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/18 04:18:33 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011/05/18 04:14:06 | 000,323,520 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/05/17 22:15:59 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2011/05/17 22:14:57 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2011/05/17 22:08:44 | 000,093,048 | ---- | C] () -- C:\WINDOWS\VGAsetup.ini
[2011/05/17 22:08:13 | 000,208,896 | ---- | C] () -- C:\WINDOWS\Progress.exe
[2011/05/17 22:08:13 | 000,049,152 | ---- | C] () -- C:\WINDOWS\InstFunc.exe
[2011/05/17 22:07:34 | 000,238,319 | ---- | C] () -- C:\WINDOWS\System32\VGAunistlog.ini
[2011/05/17 22:00:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2011/05/17 21:45:49 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2011/05/17 21:34:52 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011/04/08 00:12:50 | 000,000,281 | ---- | C] () -- C:\Program Files\setup.ini
[2011/03/31 02:03:25 | 000,006,878 | ---- | C] () -- C:\Program Files\Tales of The Abyss.Theme
[2010/09/05 00:52:32 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\sis760.bin
[2010/09/05 00:52:32 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\sis741.bin
[2010/09/05 00:52:32 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\sis660.bin
[2010/01/11 14:24:40 | 000,001,683 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2009/07/30 14:00:47 | 000,031,744 | ---- | C] () -- C:\Program Files\Common Files\alq.exe
[2008/12/19 22:15:58 | 004,338,246 | ---- | C] () -- C:\WINDOWS\System32\libavcodec.dll
[2008/12/18 00:41:18 | 000,884,237 | ---- | C] () -- C:\WINDOWS\System32\ff_x264.dll
[2008/12/18 00:22:58 | 000,093,184 | ---- | C] () -- C:\WINDOWS\System32\ff_wmv9.dll
[2008/12/18 00:22:48 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008/12/18 00:17:34 | 000,239,247 | ---- | C] () -- C:\WINDOWS\System32\ff_theora.dll
[2008/12/17 23:59:54 | 000,560,802 | ---- | C] () -- C:\WINDOWS\System32\libmplayer.dll
[2006/11/02 23:10:16 | 000,080,912 | ---- | C] () -- C:\WINDOWS\System32\sherlock2.exe
[2005/04/08 09:16:43 | 000,004,919 | -H-- | C] () -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\logs.dat
[2005/01/18 13:34:36 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\akrip32.dll
[2004/11/09 11:08:20 | 000,864,256 | ---- | C] () -- C:\WINDOWS\System32\FreeImage.dll
[2004/10/04 00:50:54 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\ff_mpeg2enc.dll
[2004/08/04 01:07:22 | 000,001,788 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2004/08/04 00:56:44 | 000,164,583 | RHS- | C] () -- C:\WINDOWS\System32\mejmf.dll
[2004/08/04 00:56:44 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004/08/02 14:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/07/17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2003/11/18 01:29:04 | 000,055,808 | ---- | C] () -- C:\WINDOWS\System32\zlib1.dll
[2002/12/03 21:47:16 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2001/08/23 19:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2001/08/23 19:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2001/08/23 19:00:00 | 000,395,200 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2001/08/23 19:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2001/08/23 19:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2001/08/23 19:00:00 | 000,059,440 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2001/08/23 19:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2001/08/23 19:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2001/08/23 19:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2001/08/23 19:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2011/06/27 12:34:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVG Security Toolbar
[2011/06/27 12:36:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\AVG10
[2011/06/23 17:28:45 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Common Files
[2011/06/29 22:40:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\Deskshare
[2011/05/17 22:32:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\HideIPEasy
[2011/06/27 13:16:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\MFAData
[2011/06/26 08:34:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\PlatinumHideIP
[2011/06/26 08:39:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\SpeedBit
[2011/06/26 17:17:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP
[2011/05/20 10:58:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Apowersoft
[2011/06/23 17:34:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\AVG10
[2011/06/29 09:07:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\DMCache
[2011/07/09 14:57:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\fltk.org
[2011/05/17 22:32:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\FMZilla
[2011/07/06 19:50:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\GetRightToGo
[2011/05/17 22:32:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\HideIPEasy
[2011/07/13 23:35:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\IDM
[2011/07/12 08:45:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Kalydo
[2011/07/09 18:26:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\KoshyJohn.com
[2011/05/25 16:59:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\OpenOffice.org
[2011/05/17 23:05:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Opera
[2011/05/29 09:42:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\PhotoScape
[2011/06/26 08:34:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\PlatinumHideIP
[2011/06/26 08:39:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\SpeedBit
[2011/06/23 20:24:21 | 000,000,000 | RHSD | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\system
[2011/05/17 22:42:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Vatjarr.DISTEMO-E2DAE28\Application Data\Thinstall
[2011/07/14 19:01:21 | 000,000,238 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 670460 bytes -> C:\WINDOWS\Temp:temp
@Alternate Data Stream - 150 bytes -> C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP:CD060F93

< End of report >
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP