Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

cannot change system clock cannot boot in safe mode

Started by ttecht , Sep 12 2011 04:08 PM

  • Please log in to reply

#1
ttecht
Posted 12 September 2011 - 04:08 PM

ttecht

    New Member

  • Member
  • Pip
  • 4 posts
before formatting , my computer was slow.after a while cpu usage was getting to %100.i couldnt open antivirus websites and microsoft website.i formatted c and after that scanned with avg norton kaspersky and malwarebytes antimalware.some viruses founded and cleared.now my cpu usage is normal but still i cannot change my system clock and when booted in safe mode a blue screen flashes and immediately pc restarts.

OTL logfile created on: 13.09.2011 00:53:16 - Run 1
OTL by OldTimer - Version 3.2.28.0 Folder = C:\Documents and Settings\fklrszd\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041F | Country: Türkiye | Language: TRK | Date Format: dd.MM.yyyy

383,36 Mb Total Physical Memory | 48,67 Mb Available Physical Memory | 12,70% Memory free
921,27 Mb Paging File | 341,02 Mb Available in Paging File | 37,02% Paging File free
Paging file location(s): C:\pagefile.sys 576 1152 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 36,26 Gb Total Space | 32,10 Gb Free Space | 88,54% Space Free | Partition Type: NTFS
Drive D: | 38,26 Gb Total Space | 15,35 Gb Free Space | 40,13% Space Free | Partition Type: NTFS

Computer Name: FKLRSZD-B6E6648 | User Name: fklrszd | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.09.13 00:51:37 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\fklrszd\Desktop\OTL.exe
PRC - [2011.09.13 00:20:06 | 001,819,482 | ---- | M] (Faronics Corporation) -- C:\Program Files\Faronics\Deep Freeze\Install C-0\_$Df\FrzState2k.exe
PRC - [2011.09.06 23:45:30 | 003,722,416 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2011.09.06 23:45:28 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011.08.12 02:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
PRC - [2011.07.06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011.02.25 17:27:28 | 001,075,200 | ---- | M] (Faronics Corporation) -- C:\Program Files\Faronics\Deep Freeze\Install C-0\DFServ.exe
PRC - [2008.04.15 15:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2011.09.12 23:18:18 | 001,561,088 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11091201\algo.dll
MOD - [2011.09.12 21:16:30 | 000,208,544 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\11091201\aswRep.dll
MOD - [2011.02.25 17:33:16 | 000,065,536 | ---- | M] () -- C:\WINDOWS\system32\LogonDll.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- -- (HidServ)
SRV - [2011.09.06 23:45:28 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011.08.12 02:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE -- (!SASCORE)
SRV - [2011.07.06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011.02.25 17:27:28 | 001,075,200 | ---- | M] (Faronics Corporation) [Auto | Running] -- C:\Program Files\Faronics\Deep Freeze\Install C-0\DFServ.exe -- (DFServ)


========== Driver Services (SafeList) ==========

DRV - [2011.09.06 23:38:05 | 000,442,200 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011.09.06 23:37:53 | 000,320,856 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011.09.06 23:36:38 | 000,034,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011.09.06 23:36:36 | 000,052,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011.09.06 23:36:23 | 000,110,552 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011.09.06 23:36:12 | 000,020,568 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.09.06 23:33:11 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011.07.22 19:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011.07.13 00:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2011.07.06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011.02.25 17:36:18 | 000,160,792 | ---- | M] (Faronics Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\DeepFrz.sys -- (DeepFrz)
DRV - [2009.09.30 03:32:16 | 000,102,400 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\nvgts.sys -- (nvgts)
DRV - [2009.09.30 03:32:04 | 000,105,472 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvata.sys -- (nvata)
DRV - [2007.01.23 01:26:30 | 000,017,264 | ---- | M] (FSPro Labs) [Kernel | Boot | Running] -- C:\WINDOWS\SYSTEM32\DRIVERS\HFXP2.SYS -- (HFXP2)
DRV - [2006.08.01 19:23:10 | 000,391,737 | R--- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\usbVM305.sys -- (ZSMC0305)
DRV - [2006.07.24 11:15:04 | 004,353,024 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2006.03.08 12:28:00 | 000,255,232 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73)
DRV - [2006.03.07 00:49:36 | 000,011,136 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2006.03.04 01:31:04 | 000,013,056 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2006.03.04 01:31:02 | 000,034,176 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005.09.26 07:21:24 | 001,145,728 | R--- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2004.09.29 23:36:29 | 000,015,360 | RH-- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NetMotCM.sys -- (ndiscm)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.tr/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = tr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D2 57 4D C0 15 62 CC 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)



O1 HOSTS File: ([2011.09.12 23:01:58 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [Desktop Lock] C:\Program Files\Desktop Lock\TLDL.EXE (TopLang Software)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_27)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.248.80.162 62.248.80.161
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{19783D77-7045-44FA-A140-5E6448EC3662}: DhcpNameServer = 62.248.80.162 62.248.80.161
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{86E6D937-0E27-43B6-8B64-0C039D690523}: DhcpNameServer = 62.248.80.162 62.248.80.161
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\DfLogon: DllName - (LogonDll.dll) - C:\WINDOWS\System32\LogonDll.dll ()
O24 - Desktop Components:0 (Geçerli Giriş Sayfam) - About:Home
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.08.24 06:44:13 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010.07.19 20:56:13 | 000,000,000 | ---D | M] - D:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk /k:C /k:D *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011.09.13 00:51:26 | 000,581,632 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\fklrszd\Desktop\OTL.exe
[2011.09.13 00:14:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Desktop\Yeni Klasör
[2011.09.13 00:14:10 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011.09.12 23:29:16 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2011.09.12 23:29:15 | 000,000,000 | ---D | C] -- C:\Program Files\outlook express
[2011.09.12 23:29:15 | 000,000,000 | ---D | C] -- C:\Program Files\movie maker
[2011.09.12 23:29:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2011.09.12 23:29:13 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2011.09.12 22:54:55 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011.09.12 22:52:46 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011.09.12 22:52:46 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011.09.12 22:52:46 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011.09.12 22:52:46 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011.09.12 22:52:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011.09.12 22:52:28 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011.09.12 21:56:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Application Data\SUPERAntiSpyware.com
[2011.09.12 21:54:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2011.09.12 21:54:34 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2011.09.12 21:43:51 | 012,514,568 | ---- | C] (SUPERAntiSpyware.com) -- C:\Documents and Settings\fklrszd\Desktop\SUPERAntiSpyware.exe
[2011.09.12 21:43:00 | 004,203,777 | R--- | C] (Swearware) -- C:\Documents and Settings\fklrszd\Desktop\ComboFix.exe
[2011.09.12 21:36:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2011.09.12 21:28:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2011.09.12 21:28:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011.09.12 21:28:03 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011.09.12 21:27:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Application Data\Sun
[2011.09.11 23:10:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Application Data\TopLang
[2011.09.11 23:10:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Belgeler\TopLang
[2011.09.11 23:10:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TopLang
[2011.09.11 23:10:26 | 000,000,000 | ---D | C] -- C:\Program Files\Desktop Lock
[2011.09.11 23:10:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programlar\Desktop Lock
[2011.09.11 22:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Montpellier-Informatique
[2011.09.11 22:16:26 | 002,875,780 | ---- | C] (Chris P.C. srl ) -- C:\Documents and Settings\fklrszd\Desktop\setup_chris_pclock_3_00.exe
[2011.09.11 22:06:24 | 000,755,937 | ---- | C] (TopLang Software) -- C:\Documents and Settings\fklrszd\Desktop\dlsetup.exe
[2011.09.11 20:27:46 | 000,320,856 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011.09.11 20:27:46 | 000,020,568 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011.09.11 20:27:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programlar\avast! Free Antivirus
[2011.09.11 20:27:43 | 000,052,568 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011.09.11 20:27:43 | 000,034,392 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011.09.11 20:27:42 | 000,442,200 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011.09.11 20:27:41 | 000,110,552 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011.09.11 20:27:41 | 000,104,536 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011.09.11 20:27:41 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011.09.11 20:27:06 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011.09.11 20:27:06 | 000,041,184 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011.09.11 20:26:55 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2011.09.11 20:26:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2011.09.11 20:05:12 | 000,000,000 | R--D | C] -- C:\Documents and Settings\fklrszd\Start Menu\Programlar\Yönetimsel Araçlar
[2011.09.11 20:02:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Application Data\Malwarebytes
[2011.09.11 20:02:28 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011.09.11 20:02:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programlar\Malwarebytes' Anti-Malware
[2011.09.11 20:02:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011.09.11 20:02:24 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011.09.11 20:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011.09.11 20:00:21 | 000,607,260 | R--- | C] (Swearware) -- C:\Documents and Settings\fklrszd\Desktop\dds.scr
[2011.09.11 20:00:12 | 009,466,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\fklrszd\Desktop\mbam-setup-1.51.1.1800.exe
[2011.09.01 02:16:16 | 000,017,264 | ---- | C] (FSPro Labs) -- C:\WINDOWS\System32\drivers\hfxp2.sys
[2011.09.01 02:16:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Start Menu\Programlar\Hide Folders XP 2
[2011.09.01 02:16:15 | 000,000,000 | ---D | C] -- C:\Program Files\Hide Folders XP 2
[2011.08.26 15:02:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Local Settings\Application Data\NPE
[2011.08.26 15:02:16 | 002,562,040 | ---- | C] (Symantec Corporation) -- C:\Documents and Settings\fklrszd\Desktop\NPE.exe
[2011.08.26 14:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Application Data\Symantec
[2011.08.26 14:07:36 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2011.08.26 14:07:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Norton
[2011.08.26 12:44:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Application Data\Adobe
[2011.08.25 20:31:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NortonInstaller
[2011.08.25 20:30:45 | 103,752,112 | ---- | C] (Symantec Corporation) -- C:\Documents and Settings\fklrszd\Desktop\NAV_18.1.0.37_MS_LOEM_MRF1325A_5452.exe
[2011.08.25 03:02:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Desktop\Master Voyager v2.81
[2011.08.25 02:38:03 | 000,000,000 | ---D | C] -- C:\Program Files\Faronics
[2011.08.25 02:34:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Desktop\Faronics_DFS
[2011.08.25 02:34:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Application Data\WinRAR
[2011.08.25 02:34:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programlar\WinRAR
[2011.08.25 02:34:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Start Menu\Programlar\WinRAR
[2011.08.25 02:34:00 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2011.08.25 02:31:45 | 000,454,120 | ---- | C] (CBS Interactive) -- C:\Documents and Settings\fklrszd\Desktop\cnet_wrar401_exe.exe
[2011.08.24 21:12:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Start Menu\Programlar\webcamXP
[2011.08.24 21:12:30 | 000,000,000 | ---D | C] -- C:\Program Files\webcamXP
[2011.08.24 20:26:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\fklrszd\Belgelerim\Videolarım
[2011.08.24 20:16:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Local Settings\Application Data\webcamXP 5
[2011.08.24 20:15:53 | 008,812,787 | ---- | C] (darkwet network / moonware studios) -- C:\Documents and Settings\fklrszd\Desktop\wxp_4beta.exe
[2011.08.24 20:11:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2011.08.24 20:09:20 | 006,684,584 | ---- | C] (Moonware Studios) -- C:\Documents and Settings\fklrszd\Desktop\wlite550.exe
[2011.08.24 19:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\webcamXP 5
[2011.08.24 19:49:20 | 000,391,737 | R--- | C] (Vimicro Corporation) -- C:\WINDOWS\System32\drivers\usbVM305.sys
[2011.08.24 19:49:20 | 000,208,982 | R--- | C] (Vimicro) -- C:\WINDOWS\System32\VM305Prp.Ax
[2011.08.24 19:49:20 | 000,081,920 | R--- | C] (VM) -- C:\WINDOWS\System32\VM305STI.dll
[2011.08.24 17:21:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Application Data\AVG10
[2011.08.24 17:17:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2011.08.24 17:17:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2011.08.24 17:17:22 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2011.08.24 16:54:23 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011.08.24 16:54:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011.08.24 16:30:07 | 161,350,808 | ---- | C] (Kaspersky Lab) -- C:\Documents and Settings\fklrszd\Desktop\kav2012_12.0.0.374-2441en_us.exe
[2011.08.24 16:18:39 | 005,570,000 | ---- | C] (AVG Technologies) -- C:\Documents and Settings\fklrszd\Desktop\avg_free_stb_all_2011_1390_cnet.exe
[2011.08.24 15:48:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Application Data\Macromedia
[2011.08.24 15:33:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011.08.24 09:36:09 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programlar\Donatılar
[2011.08.24 09:34:56 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Belgeler\Müziğim
[2011.08.24 09:34:42 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2011.08.24 09:34:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2011.08.24 09:34:38 | 000,000,000 | R--D | C] -- C:\Program Files
[2011.08.24 09:34:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2011.08.24 09:34:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2011.08.24 09:34:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2011.08.24 09:34:21 | 000,085,020 | ---- | C] (Uluslararası) -- C:\WINDOWS\System32\dgsetup.dll
[2011.08.24 09:34:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2011.08.24 09:34:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Belgeler
[2011.08.24 09:34:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programlar\Başlangıç
[2011.08.24 09:34:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2011.08.24 09:34:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Sık Kullanılanlar
[2011.08.24 09:34:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2011.08.24 09:34:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2011.08.24 09:34:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2011.08.24 09:33:54 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2011.08.24 09:33:54 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2011.08.24 09:33:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2011.08.24 09:33:35 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2011.08.24 09:27:42 | 000,000,000 | --SD | C] -- C:\WINDOWS\Offline Web Pages
[2011.08.24 09:27:42 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2011.08.24 09:27:42 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2011.08.24 09:27:42 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2011.08.24 09:27:42 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\tr-tr
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\tr
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\NLDRV
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\HFSLIP
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1055
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2011.08.24 09:27:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2011.08.24 07:40:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programlar\Driver Genius Professional Edition
[2011.08.24 07:40:40 | 000,000,000 | ---D | C] -- C:\Program Files\Driver-Soft
[2011.08.24 07:38:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2011.08.24 07:36:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\KB905474
[2011.08.24 07:34:31 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\fklrszd\IECompatCache
[2011.08.24 07:27:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\nview
[2011.08.24 07:26:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2011.08.24 07:26:30 | 002,808,832 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2011.08.24 07:25:48 | 001,145,728 | R--- | C] (Agere Systems) -- C:\WINDOWS\System32\drivers\AGRSM.sys
[2011.08.24 07:25:48 | 000,068,096 | R--- | C] (Agere Systems) -- C:\WINDOWS\agrsmdel.exe
[2011.08.24 07:24:45 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\fklrszd\PrivacIE
[2011.08.24 07:21:15 | 000,255,232 | ---- | C] (Ralink Technology, Corp.) -- C:\WINDOWS\System32\drivers\rt73.sys
[2011.08.24 07:10:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2011.08.24 07:10:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2011.08.24 07:06:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Belgelerim\My Drivers
[2011.08.24 07:06:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Local Settings\Application Data\Innovative Solutions
[2011.08.24 07:06:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Innovative Solutions
[2011.08.24 07:05:45 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2011.08.24 07:05:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programlar\DriverMax
[2011.08.24 07:05:32 | 000,000,000 | ---D | C] -- C:\Program Files\Innovative Solutions
[2011.08.24 07:03:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2011.08.24 07:02:39 | 000,015,360 | RH-- | C] (Motorola Inc.) -- C:\WINDOWS\System32\drivers\NetMotCM.sys
[2011.08.24 07:01:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011.08.24 06:54:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Application Data\Identities
[2011.08.24 06:54:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\fklrszd\Belgelerim\Resimlerim
[2011.08.24 06:54:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\fklrszd\Belgelerim\Müziğim
[2011.08.24 06:54:52 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2011.08.24 06:54:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\fklrszd\Local Settings\Application Data\Microsoft
[2011.08.24 06:54:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\fklrszd\Application Data\Microsoft
[2011.08.24 06:54:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\fklrszd\SendTo
[2011.08.24 06:54:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\fklrszd\Recent
[2011.08.24 06:54:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\fklrszd\Application Data
[2011.08.24 06:54:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\fklrszd\Start Menu
[2011.08.24 06:54:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\fklrszd\Sık Kullanılanlar
[2011.08.24 06:54:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\fklrszd\Start Menu\Programlar\Donatılar
[2011.08.24 06:54:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\fklrszd\Belgelerim
[2011.08.24 06:54:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\fklrszd\Start Menu\Programlar\Başlangıç
[2011.08.24 06:54:47 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\fklrszd\IETldCache
[2011.08.24 06:54:47 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\fklrszd\Cookies
[2011.08.24 06:54:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\fklrszd\Templates
[2011.08.24 06:54:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\fklrszd\PrintHood
[2011.08.24 06:54:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\fklrszd\NetHood
[2011.08.24 06:54:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\fklrszd\Local Settings
[2011.08.24 06:54:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\fklrszd\Desktop
[2011.08.24 06:51:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2011.08.24 06:51:55 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2011.08.24 06:51:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011.08.24 06:51:23 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2011.08.24 06:51:23 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2011.08.24 06:48:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP
[2011.08.24 06:47:59 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2011.08.24 06:47:59 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2011.08.24 06:47:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2011.08.24 06:47:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2011.08.24 06:47:41 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2011.08.24 06:47:35 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2011.08.24 06:45:52 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2011.08.24 06:45:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2011.08.24 06:43:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache
[2011.08.24 06:43:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2011.08.24 06:42:58 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2011.08.24 06:42:56 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2011.08.24 06:42:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2011.08.24 06:42:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2011.08.24 06:42:22 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2011.08.24 06:42:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2011.08.24 06:42:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2011.08.24 06:42:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2011.08.24 06:41:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2011.08.24 06:41:46 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2011.08.24 06:41:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2011.08.24 06:41:31 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2011.08.24 06:41:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Belgeler\Resimlerim
[2011.08.24 06:41:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programlar\Oyunlar
[2011.08.24 06:41:08 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2011.08.24 06:41:06 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programlar\Yönetimsel Araçlar
[2011.08.24 06:41:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2011.08.24 06:40:58 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2011.08.24 06:40:57 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2011.08.24 06:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2011.08.24 06:40:31 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2011.08.24 06:40:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2011.08.24 06:40:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2011.08.24 06:40:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Belgeler\Videolarım
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011.09.13 00:51:37 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\fklrszd\Desktop\OTL.exe
[2011.09.13 00:20:35 | 000,000,260 | ---- | M] () -- C:\WINDOWS\tasks\WGASetup.job
[2011.09.12 23:11:03 | 000,000,015 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\settings.dat
[2011.09.12 23:01:58 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011.09.12 22:54:58 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2011.09.12 22:33:21 | 000,000,456 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{88456747-37B8-4CD3-8DC8-CCC2802DEB07}.job
[2011.09.12 21:54:37 | 000,001,678 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011.09.12 21:53:41 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\4.bmp
[2011.09.12 21:53:19 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\3.bmp
[2011.09.12 21:43:51 | 012,514,568 | ---- | M] (SUPERAntiSpyware.com) -- C:\Documents and Settings\fklrszd\Desktop\SUPERAntiSpyware.exe
[2011.09.12 21:43:00 | 004,203,777 | R--- | M] (Swearware) -- C:\Documents and Settings\fklrszd\Desktop\ComboFix.exe
[2011.09.11 23:41:57 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\2.bmp
[2011.09.11 23:41:42 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\1.bmp
[2011.09.11 23:10:26 | 000,000,686 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Virtual Screen.lnk
[2011.09.11 22:34:00 | 001,274,211 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\InstallPredator.zip
[2011.09.11 22:16:26 | 002,875,780 | ---- | M] (Chris P.C. srl ) -- C:\Documents and Settings\fklrszd\Desktop\setup_chris_pclock_3_00.exe
[2011.09.11 22:06:36 | 000,755,937 | ---- | M] (TopLang Software) -- C:\Documents and Settings\fklrszd\Desktop\dlsetup.exe
[2011.09.11 20:27:47 | 000,001,689 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011.09.11 20:27:41 | 000,002,625 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011.09.11 20:25:30 | 058,948,168 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\setup_av_free.exe
[2011.09.11 20:02:28 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.09.11 20:00:27 | 000,607,260 | R--- | M] (Swearware) -- C:\Documents and Settings\fklrszd\Desktop\dds.scr
[2011.09.11 20:00:12 | 009,466,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\fklrszd\Desktop\mbam-setup-1.51.1.1800.exe
[2011.09.11 19:59:27 | 000,302,592 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\bsp2qwgn.exe
[2011.09.11 15:41:33 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011.09.06 23:45:29 | 000,199,304 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011.09.06 23:45:29 | 000,041,184 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011.09.06 23:38:05 | 000,442,200 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011.09.06 23:37:53 | 000,320,856 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011.09.06 23:36:38 | 000,034,392 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011.09.06 23:36:36 | 000,052,568 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011.09.06 23:36:23 | 000,110,552 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011.09.06 23:36:20 | 000,104,536 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011.09.06 23:36:12 | 000,020,568 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011.09.06 23:33:11 | 000,030,808 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011.09.01 01:48:31 | 000,836,519 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\hidefolder_xp.exe
[2011.08.26 22:15:51 | 005,151,560 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\rmslt.exe
[2011.08.26 20:10:17 | 000,000,340 | ---- | M] () -- C:\Documents and Settings\fklrszd\Application Data\SMRResults210.dat
[2011.08.26 15:02:21 | 002,562,040 | ---- | M] (Symantec Corporation) -- C:\Documents and Settings\fklrszd\Desktop\NPE.exe
[2011.08.25 21:41:20 | 000,017,408 | ---- | M] () -- C:\Documents and Settings\fklrszd\Local Settings\Application Data\WebpageIcons.db
[2011.08.25 20:31:00 | 103,752,112 | ---- | M] (Symantec Corporation) -- C:\Documents and Settings\fklrszd\Desktop\NAV_18.1.0.37_MS_LOEM_MRF1325A_5452.exe
[2011.08.25 03:46:13 | 016,336,548 | ---- | M] () -- C:\Persi0.sys
[2011.08.25 03:30:50 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstet.dat
[2011.08.25 03:01:32 | 009,068,615 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\Master_Voyager_v2.81.mayonez.net.rar
[2011.08.25 02:33:47 | 001,448,993 | ---- | M] () -- C:\Documents and Settings\fklrszd\Belgelerim\wrar401.exe
[2011.08.25 02:32:37 | 000,454,120 | ---- | M] (CBS Interactive) -- C:\Documents and Settings\fklrszd\Desktop\cnet_wrar401_exe.exe
[2011.08.25 02:27:53 | 036,940,464 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\Faronics_DFS.zip
[2011.08.25 00:29:47 | 000,009,216 | ---- | M] () -- C:\Documents and Settings\fklrszd\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.08.24 20:15:54 | 008,812,787 | ---- | M] (darkwet network / moonware studios) -- C:\Documents and Settings\fklrszd\Desktop\wxp_4beta.exe
[2011.08.24 20:09:26 | 006,684,584 | ---- | M] (Moonware Studios) -- C:\Documents and Settings\fklrszd\Desktop\wlite550.exe
[2011.08.24 19:13:59 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\adsız3.bmp
[2011.08.24 19:13:20 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\adsız2.bmp
[2011.08.24 19:12:54 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\adsız.bmp
[2011.08.24 17:44:29 | 002,808,832 | ---- | M] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE
[2011.08.24 16:30:33 | 161,350,808 | ---- | M] (Kaspersky Lab) -- C:\Documents and Settings\fklrszd\Desktop\kav2012_12.0.0.374-2441en_us.exe
[2011.08.24 16:18:39 | 005,570,000 | ---- | M] (AVG Technologies) -- C:\Documents and Settings\fklrszd\Desktop\avg_free_stb_all_2011_1390_cnet.exe
[2011.08.24 15:42:37 | 000,440,882 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011.08.24 15:42:37 | 000,427,890 | ---- | M] () -- C:\WINDOWS\System32\perfh01F.dat
[2011.08.24 15:42:37 | 000,081,348 | ---- | M] () -- C:\WINDOWS\System32\perfc01F.dat
[2011.08.24 15:42:37 | 000,071,200 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011.08.24 15:41:54 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\Internet.lnk
[2011.08.24 15:39:31 | 000,094,272 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.08.24 15:38:11 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011.08.24 09:38:28 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2011.08.24 07:40:44 | 000,000,776 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\Driver Genius Professional Edition.lnk
[2011.08.24 07:38:12 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2011.08.24 07:38:12 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2011.08.24 07:05:34 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\fklrszd\Desktop\DriverMax.lnk
[2011.08.24 06:55:12 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\fklrszd\Application Data\Microsoft\Internet Explorer\Quick Launch\Masaüstünü Göster.scf
[2011.08.24 06:55:07 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\fklrszd\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer Tarayıcısı'nı Başlat.lnk
[2011.08.24 06:51:28 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2011.08.24 06:50:18 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2011.08.24 06:44:13 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2011.08.24 06:44:13 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011.08.24 06:44:13 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2011.08.24 06:44:13 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011.08.24 06:44:06 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011.08.24 06:44:06 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011.08.24 06:44:05 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011.08.24 06:43:53 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2011.08.24 06:41:09 | 000,021,736 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011.08.24 06:40:03 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.09.12 23:10:30 | 000,000,015 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\settings.dat
[2011.09.12 22:54:58 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2011.09.12 22:54:57 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2011.09.12 22:52:46 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011.09.12 22:52:46 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011.09.12 22:52:46 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011.09.12 22:52:46 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011.09.12 22:52:46 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011.09.12 21:54:37 | 000,001,678 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
[2011.09.12 21:53:41 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\4.bmp
[2011.09.12 21:53:19 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\3.bmp
[2011.09.11 23:41:57 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\2.bmp
[2011.09.11 23:41:41 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\1.bmp
[2011.09.11 23:10:26 | 000,000,686 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Virtual Screen.lnk
[2011.09.11 22:48:43 | 001,465,344 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\PredatorPackage.msi
[2011.09.11 22:48:43 | 000,494,592 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\InstallPredator.exe
[2011.09.11 22:33:44 | 001,274,211 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\InstallPredator.zip
[2011.09.11 20:27:47 | 000,001,689 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011.09.11 20:22:54 | 058,948,168 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\setup_av_free.exe
[2011.09.11 20:02:28 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.09.11 19:59:23 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\bsp2qwgn.exe
[2011.09.01 01:48:23 | 000,836,519 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\hidefolder_xp.exe
[2011.08.26 22:15:50 | 005,151,560 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\rmslt.exe
[2011.08.26 20:10:17 | 000,000,340 | ---- | C] () -- C:\Documents and Settings\fklrszd\Application Data\SMRResults210.dat
[2011.08.25 21:41:18 | 000,017,408 | ---- | C] () -- C:\Documents and Settings\fklrszd\Local Settings\Application Data\WebpageIcons.db
[2011.08.25 03:46:08 | 016,336,548 | ---- | C] () -- C:\Persi0.sys
[2011.08.25 03:46:04 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\LogonDll.dll
[2011.08.25 03:01:31 | 009,068,615 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\Master_Voyager_v2.81.mayonez.net.rar
[2011.08.25 02:33:50 | 001,448,993 | ---- | C] () -- C:\Documents and Settings\fklrszd\Belgelerim\wrar401.exe
[2011.08.25 02:27:44 | 036,940,464 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\Faronics_DFS.zip
[2011.08.24 20:24:23 | 000,009,216 | ---- | C] () -- C:\Documents and Settings\fklrszd\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011.08.24 19:13:59 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\adsız3.bmp
[2011.08.24 19:13:19 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\adsız2.bmp
[2011.08.24 19:12:54 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\adsız.bmp
[2011.08.24 15:41:54 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\Internet.lnk
[2011.08.24 09:38:28 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2011.08.24 09:35:33 | 000,001,570 | ---- | C] () -- C:\WINDOWS\System32\nvide.nvu
[2011.08.24 09:34:44 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2011.08.24 09:34:41 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011.08.24 09:34:19 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2011.08.24 09:33:35 | 000,094,272 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011.08.24 09:32:38 | 000,000,327 | RHS- | C] () -- C:\boot.ini
[2011.08.24 09:32:38 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2011.08.24 07:40:44 | 000,000,776 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\Driver Genius Professional Edition.lnk
[2011.08.24 07:38:12 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2011.08.24 07:38:12 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2011.08.24 07:36:54 | 000,000,260 | ---- | C] () -- C:\WINDOWS\tasks\WGASetup.job
[2011.08.24 07:34:30 | 000,000,456 | -H-- | C] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{88456747-37B8-4CD3-8DC8-CCC2802DEB07}.job
[2011.08.24 07:27:24 | 000,098,304 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll
[2011.08.24 07:05:34 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\fklrszd\Desktop\DriverMax.lnk
[2011.08.24 06:55:12 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\fklrszd\Application Data\Microsoft\Internet Explorer\Quick Launch\Masaüstünü Göster.scf
[2011.08.24 06:55:07 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\fklrszd\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet Explorer Tarayıcısı'nı Başlat.lnk
[2011.08.24 06:55:07 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\fklrszd\Start Menu\Programlar\Internet Explorer.lnk
[2011.08.24 06:54:47 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\fklrszd\Start Menu\Programlar\Uzaktan Yardım.lnk
[2011.08.24 06:51:28 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2011.08.24 06:50:18 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstet.dat
[2011.08.24 06:48:02 | 000,064,200 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2011.08.24 06:44:13 | 000,002,625 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2011.08.24 06:44:13 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2011.08.24 06:44:13 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2011.08.24 06:44:13 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2011.08.24 06:44:13 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2011.08.24 06:44:06 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2011.08.24 06:44:06 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2011.08.24 06:44:05 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2011.08.24 06:42:32 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2011.08.24 06:42:32 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2011.08.24 06:41:09 | 000,021,736 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2011.08.24 06:40:41 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2011.08.24 06:40:41 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2011.08.24 06:40:41 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2011.08.24 06:40:41 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2011.08.24 06:40:41 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2011.08.24 06:40:41 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2011.08.24 06:40:41 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kahve Çekirdeği.bmp
[2011.08.24 06:40:41 | 000,016,730 | ---- | C] () -- C:\WINDOWS\TüylüYüzey.bmp
[2011.08.24 06:40:41 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2011.08.24 06:40:40 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Sabun Köpükleri.bmp
[2011.08.24 06:40:40 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Mavi Oya İşi 16.bmp
[2011.08.24 06:40:38 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2011.08.24 06:40:38 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2011.08.24 06:40:37 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2011.08.24 06:40:33 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2009.09.30 03:17:40 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\tzchange.dll
[2008.04.15 15:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008.04.15 15:00:00 | 000,755,200 | ---- | C] () -- C:\WINDOWS\System32\ir50_32.dll
[2008.04.15 15:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008.04.15 15:00:00 | 000,440,882 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008.04.15 15:00:00 | 000,427,890 | ---- | C] () -- C:\WINDOWS\System32\perfh01F.dat
[2008.04.15 15:00:00 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\ir41_qcx.dll
[2008.04.15 15:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008.04.15 15:00:00 | 000,261,146 | ---- | C] () -- C:\WINDOWS\System32\perfi01F.dat
[2008.04.15 15:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008.04.15 15:00:00 | 000,200,192 | ---- | C] () -- C:\WINDOWS\System32\ir50_qc.dll
[2008.04.15 15:00:00 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\ir50_qcx.dll
[2008.04.15 15:00:00 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\ir41_qc.dll
[2008.04.15 15:00:00 | 000,081,348 | ---- | C] () -- C:\WINDOWS\System32\perfc01F.dat
[2008.04.15 15:00:00 | 000,071,200 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008.04.15 15:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008.04.15 15:00:00 | 000,032,156 | ---- | C] () -- C:\WINDOWS\System32\perfd01F.dat
[2008.04.15 15:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008.04.15 15:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008.04.15 15:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008.04.15 15:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008.04.15 15:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2011.09.11 20:26:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2011.08.25 21:34:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2011.08.24 16:54:23 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011.08.24 07:06:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Innovative Solutions
[2011.08.24 17:21:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011.09.11 22:50:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Montpellier-Informatique
[2011.09.11 23:10:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TopLang
[2011.08.24 21:11:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\webcamXP 5
[2011.08.24 17:21:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\fklrszd\Application Data\AVG10
[2011.09.11 23:10:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\fklrszd\Application Data\TopLang
[2011.09.12 22:33:21 | 000,000,456 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{88456747-37B8-4CD3-8DC8-CCC2802DEB07}.job
[2011.09.13 00:20:35 | 000,000,260 | ---- | M] () -- C:\WINDOWS\Tasks\WGASetup.job

========== Purity Check ==========



< End of report >




OTL Extras logfile created on: 13.09.2011 00:53:16 - Run 1
OTL by OldTimer - Version 3.2.28.0 Folder = C:\Documents and Settings\fklrszd\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 0000041F | Country: Türkiye | Language: TRK | Date Format: dd.MM.yyyy

383,36 Mb Total Physical Memory | 48,67 Mb Available Physical Memory | 12,70% Memory free
921,27 Mb Paging File | 341,02 Mb Available in Paging File | 37,02% Paging File free
Paging file location(s): C:\pagefile.sys 576 1152 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 36,26 Gb Total Space | 32,10 Gb Free Space | 88,54% Space Free | Partition Type: NTFS
Drive D: | 38,26 Gb Total Space | 15,35 Gb Free Space | 40,13% Space Free | Partition Type: NTFS

Computer Name: FKLRSZD-B6E6648 | User Name: fklrszd | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hta [@ = htafile] -- Reg Error: Value error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htafile [open] -- Reg Error: Value error.
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\webcamXP\webcamXP.exe" = C:\Program Files\webcamXP\webcamXP.exe:*:Enabled:webcamXP 2008 -- (moonware studios / darkwet network)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216027FF}" = Java™ 6 Update 27
"{2B7BC7C5-CE5F-373A-A1E7-37A5B909D933}" = Microsoft .NET Framework 2.0 SP2 Türkçe Dil Paketi
"{350C941f-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{695B13B2-7919-4EC5-8601-092F0D2DE069}" = AVG 2011
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 SP2
"{ACFD4C9A-931B-3CAB-9F72-78FDE810F394}" = Microsoft .NET Framework 3.5 SP1 Türkçe Dil Paketi
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 SP2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 SP1
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D428D88A-3128-42F2-BC0D-B028A5A43C6F}" = Microsoft .NET Framework 1.1 SP1 Türkçe Dil Paketi
"{E1674673-0F0D-3D81-B2A0-9842A986C1D6}" = Microsoft .NET Framework 3.0 SP2 Türkçe Dil Paketi
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Agere Systems Soft Modem" = Agere Systems HDA Modem v6081
"avast" = avast! Free Antivirus
"Desktop Lock" = Desktop Lock 7.3
"DMX5_is1" = DriverMax 5
"Driver Genius Professional Edition_is1" = Driver Genius Professional Edition
"HFSLIPTotalSlipstream" = HFSLIP Total Slipstream (v1.7.9_beta_d, build 81223)
"Hide Folders XP 2_is1" = Hide Folders XP 2.9.8 for Windows XP/Vista
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.1.1800
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 3.5 SP1 Türkçe Dil Paketi" = Microsoft .NET Framework 3.5 SP1 Türkçe Dil Paketi
"NVIDIA Drivers" = NVIDIA Drivers
"webcamXP" = webcamXP 2008
"WinRAR archiver" = WinRAR 4.01 (32-bit)
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP