Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

not sure about cracks i use after format[Closed]

Started by loumos123 , Nov 11 2013 06:12 PM

  • This topic is locked This topic is locked

#1
loumos123
Posted 11 November 2013 - 06:12 PM

loumos123

    New Member

  • Member
  • Pip
  • 1 posts
hello guys im new to the forum and really proud of being part of it.
now i think i dont have problems with my pc but after my format when installing programs i use a lot of cracks,
and maybe my antivirus is making false positives,im not sure that after format my pc is clean or i make it worse.
so you can take a look at my attachments.
thanks anyway.

OTL logfile created on: 12/11/2013 1:53:28 πμ - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\paulos\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000408 | Country: Ελλάδα | Language: ELL | Date Format: d/M/yyyy

2,93 Gb Total Physical Memory | 2,02 Gb Available Physical Memory | 68,86% Memory free
5,86 Gb Paging File | 4,89 Gb Available in Paging File | 83,45% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 111,57 Gb Total Space | 37,42 Gb Free Space | 33,54% Space Free | Partition Type: NTFS
Drive D: | 111,55 Gb Total Space | 2,99 Gb Free Space | 2,68% Space Free | Partition Type: NTFS

Computer Name: PAULOS-PC | User Name: paulos | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/11/12 01:35:15 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\paulos\Desktop\OTL.exe
PRC - [2013/10/20 02:23:22 | 004,832,192 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
PRC - [2013/10/20 02:22:56 | 007,025,880 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\cis.exe
PRC - [2013/10/20 02:22:56 | 001,576,152 | ---- | M] (COMODO) -- C:\Program Files\Comodo\COMODO Internet Security\CisTray.exe
PRC - [2013/10/15 02:53:23 | 000,237,960 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.21.165\GoogleCrashHandler.exe
PRC - [2013/10/08 13:46:16 | 000,262,288 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton AntiVirus\Engine\21.1.0.18\NAV.exe
PRC - [2013/09/24 11:53:26 | 001,857,752 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
PRC - [2013/07/05 14:47:34 | 003,587,664 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exe
PRC - [2013/04/02 19:32:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2013/04/02 19:10:46 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012/12/12 15:44:48 | 000,268,248 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exe
PRC - [2010/11/20 23:29:07 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
PRC - [2010/07/12 18:33:54 | 001,592,672 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winamp.exe


========== Modules (No Company Name) ==========

MOD - [2013/09/25 18:33:21 | 000,623,104 | ---- | M] () -- C:\Program Files\Winamp\System\jnetlib.w5s
MOD - [2013/09/25 18:33:21 | 000,237,056 | ---- | M] () -- C:\Program Files\Winamp\System\aacPlusDecoder.w5s
MOD - [2013/09/25 18:33:21 | 000,174,080 | ---- | M] () -- C:\Program Files\Winamp\System\auth.w5s
MOD - [2013/09/25 18:33:21 | 000,154,624 | ---- | M] () -- C:\Program Files\Winamp\System\jpeg.w5s
MOD - [2013/09/25 18:33:21 | 000,090,112 | ---- | M] () -- C:\Program Files\Winamp\System\xml.w5s
MOD - [2013/09/25 18:33:21 | 000,086,528 | ---- | M] () -- C:\Program Files\Winamp\System\png.w5s
MOD - [2013/09/25 18:33:21 | 000,084,992 | ---- | M] () -- C:\Program Files\Winamp\System\playlist.w5s
MOD - [2013/09/25 18:33:21 | 000,083,968 | ---- | M] () -- C:\Program Files\Winamp\tataki.dll
MOD - [2013/09/25 18:33:21 | 000,047,616 | ---- | M] () -- C:\Program Files\Winamp\zlib.dll
MOD - [2013/09/25 18:33:21 | 000,035,840 | ---- | M] () -- C:\Program Files\Winamp\System\timer.w5s
MOD - [2013/09/25 18:33:21 | 000,021,504 | ---- | M] () -- C:\Program Files\Winamp\System\tagz.w5s
MOD - [2013/09/25 18:33:21 | 000,019,456 | ---- | M] () -- C:\Program Files\Winamp\System\gif.w5s
MOD - [2013/09/25 18:33:21 | 000,019,456 | ---- | M] () -- C:\Program Files\Winamp\System\bmp.w5s
MOD - [2013/09/25 18:33:21 | 000,016,896 | ---- | M] () -- C:\Program Files\Winamp\System\dlmgr.w5s
MOD - [2013/09/25 18:33:21 | 000,016,384 | ---- | M] () -- C:\Program Files\Winamp\System\gracenote.w5s
MOD - [2013/09/25 18:33:21 | 000,014,336 | ---- | M] () -- C:\Program Files\Winamp\System\filereader.w5s
MOD - [2013/09/25 18:33:21 | 000,013,824 | ---- | M] () -- C:\Program Files\Winamp\System\primo.w5s
MOD - [2013/09/25 18:33:19 | 000,135,680 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_ipod.dll
MOD - [2013/09/25 18:33:19 | 000,115,200 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_p4s.dll
MOD - [2013/09/25 18:33:19 | 000,051,200 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_android.dll
MOD - [2013/09/25 18:33:19 | 000,047,104 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_usb.dll
MOD - [2013/09/25 18:33:19 | 000,020,992 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_njb.dll
MOD - [2013/09/25 18:33:18 | 000,291,328 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_local.dll
MOD - [2013/09/25 18:33:18 | 000,214,528 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_pmp.dll
MOD - [2013/09/25 18:33:18 | 000,125,952 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_online.dll
MOD - [2013/09/25 18:33:18 | 000,082,944 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_playlists.dll
MOD - [2013/09/25 18:33:18 | 000,061,952 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_plg.dll
MOD - [2013/09/25 18:33:18 | 000,056,320 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_impex.dll
MOD - [2013/09/25 18:33:18 | 000,052,224 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_history.dll
MOD - [2013/09/25 18:33:18 | 000,051,200 | ---- | M] () -- C:\Program Files\Winamp\Plugins\out_ds.dll
MOD - [2013/09/25 18:33:18 | 000,033,792 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_rg.dll
MOD - [2013/09/25 18:33:18 | 000,031,232 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_transcode.dll
MOD - [2013/09/25 18:33:18 | 000,022,528 | ---- | M] () -- C:\Program Files\Winamp\Plugins\out_disk.dll
MOD - [2013/09/25 18:33:18 | 000,018,432 | ---- | M] () -- C:\Program Files\Winamp\Plugins\out_wave.dll
MOD - [2013/09/25 18:33:17 | 000,312,320 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_wm.dll
MOD - [2013/09/25 18:33:17 | 000,285,184 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mp3.dll
MOD - [2013/09/25 18:33:17 | 000,216,576 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_vorbis.dll
MOD - [2013/09/25 18:33:17 | 000,199,680 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_disc.dll
MOD - [2013/09/25 18:33:17 | 000,164,352 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mod.dll
MOD - [2013/09/25 18:33:17 | 000,074,752 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_nsv.dll
MOD - [2013/09/25 18:33:17 | 000,050,176 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mp4.dll
MOD - [2013/09/25 18:33:17 | 000,049,152 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mkv.dll
MOD - [2013/09/25 18:33:17 | 000,028,672 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_autotag.dll
MOD - [2013/09/25 18:33:17 | 000,027,648 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_bookmarks.dll
MOD - [2013/09/25 18:33:17 | 000,023,552 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_swf.dll
MOD - [2013/09/25 18:33:17 | 000,016,896 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_wave.dll
MOD - [2013/09/25 18:33:16 | 001,735,680 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_ff.dll
MOD - [2013/09/25 18:33:16 | 000,306,176 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_ml.dll
MOD - [2013/09/25 18:33:16 | 000,183,808 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_jumpex.dll
MOD - [2013/09/25 18:33:16 | 000,109,568 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_midi.dll
MOD - [2013/09/25 18:33:16 | 000,102,400 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_cdda.dll
MOD - [2013/09/25 18:33:16 | 000,072,192 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_dshow.dll
MOD - [2013/09/25 18:33:16 | 000,068,096 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_avi.dll
MOD - [2013/09/25 18:33:16 | 000,059,904 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_flac.dll
MOD - [2013/09/25 18:33:16 | 000,057,344 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_orgler.dll
MOD - [2013/09/25 18:33:16 | 000,043,008 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_flv.dll
MOD - [2013/09/25 18:33:16 | 000,027,648 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_hotkeys.dll
MOD - [2013/09/25 18:33:16 | 000,025,600 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_tray.dll
MOD - [2013/09/25 18:33:16 | 000,007,168 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_linein.dll
MOD - [2013/09/25 18:33:15 | 000,075,776 | ---- | M] () -- C:\Program Files\Winamp\nde.dll
MOD - [2013/09/25 18:33:15 | 000,053,248 | ---- | M] () -- C:\Program Files\Winamp\nsutil.dll
MOD - [2013/09/25 18:33:14 | 000,252,928 | ---- | M] () -- C:\Program Files\Winamp\libsndfile.dll
MOD - [2011/02/23 02:01:26 | 000,140,288 | ---- | M] () -- C:\Program Files\WinRAR\rarext.dll
MOD - [2010/06/05 03:30:50 | 001,013,152 | ---- | M] () -- C:\Program Files\Winamp\Plugins\dsp_dfx.dll
MOD - [2010/03/25 06:17:36 | 008,794,464 | ---- | M] () -- C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
MOD - [2010/01/30 11:41:12 | 004,254,560 | ---- | M] () -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf
MOD - [2009/06/22 08:26:00 | 000,305,664 | ---- | M] () -- C:\Program Files\TeraCopy\TeraCopyExt.dll


========== Services (SafeList) ==========

SRV - [2013/10/20 02:23:22 | 004,832,192 | ---- | M] (COMODO) [On_Demand | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2013/10/11 12:23:04 | 000,070,352 | ---- | M] (Comodo Security Solutions, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\COMODO\launcher_service.exe -- (CLPSLauncher)
SRV - [2013/10/11 10:35:22 | 002,327,248 | ---- | M] (Comodo Security Solutions, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe -- (GeekBuddyRSP)
SRV - [2013/10/09 19:33:16 | 002,104,968 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Comodo\Dragon\dragon_updater.exe -- (DragonUpdater)
SRV - [2013/10/08 13:46:16 | 000,262,288 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton AntiVirus\Engine\21.1.0.18\NAV.exe -- (NAV)
SRV - [2013/09/24 11:53:28 | 000,131,288 | ---- | M] (COMODO) [On_Demand | Stopped] -- C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe -- (cmdvirth)
SRV - [2013/09/16 21:29:40 | 003,273,088 | ---- | M] (Skype Technologies S.A.) [Disabled | Stopped] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2013/09/03 15:53:50 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/07/25 18:40:44 | 000,162,672 | ---- | M] (Skype Technologies) [Disabled | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2013/04/03 11:19:08 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2013/02/04 17:43:22 | 000,155,824 | ---- | M] (Avanquest Software) [Disabled | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2010/10/01 21:27:22 | 000,632,792 | ---- | M] (PC Tools) [Disabled | Stopped] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2010/03/25 19:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2009/12/03 15:28:08 | 000,026,112 | ---- | M] (LSI Corporation) [Disabled | Stopped] -- C:\Program Files\LSI SoftModem\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2009/07/14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - [2013/11/10 22:54:46 | 000,142,936 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2013/11/09 18:45:22 | 001,612,376 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Norton AntiVirus\NortonData\21.1.0.18\Definitions\VirusDefs\20131111.002\NAVEX15.SYS -- (NAVEX15)
DRV - [2013/11/09 18:45:22 | 000,376,920 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2013/11/09 18:45:22 | 000,108,120 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2013/11/09 18:45:22 | 000,093,272 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Norton AntiVirus\NortonData\21.1.0.18\Definitions\VirusDefs\20131111.002\NAVENG.SYS -- (NAVENG)
DRV - [2013/11/08 17:15:44 | 000,393,816 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Norton AntiVirus\NortonData\21.1.0.18\Definitions\IPSDefs\20131110.003\IDSvix86.sys -- (IDSVix86)
DRV - [2013/11/02 01:38:10 | 001,096,280 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Norton AntiVirus\NortonData\21.1.0.18\Definitions\BASHDefs\20131101.003\BHDrvx86.sys -- (BHDrvx86)
DRV - [2013/10/09 19:36:49 | 000,595,552 | ---- | M] (Kaspersky Lab ZAO) [File_System | System | Running] -- C:\Windows\System32\drivers\klif.sys -- (KLIF)
DRV - [2013/10/09 19:36:49 | 000,135,776 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\kl1.sys -- (kl1)
DRV - [2013/10/09 19:36:49 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2013/10/09 19:36:49 | 000,025,696 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klkbdflt.sys -- (klkbdflt)
DRV - [2013/10/07 07:17:38 | 000,015,400 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\hmd.sys -- (HMD)
DRV - [2013/09/27 05:18:30 | 000,935,512 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\NAV\1501000.012\SymEFA.sys -- (SymEFA)
DRV - [2013/09/27 04:45:56 | 000,206,936 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NAV\1501000.012\Ironx86.sys -- (SymIRON)
DRV - [2013/09/27 04:26:03 | 000,651,352 | R--- | M] (Symantec Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\NAV\1501000.012\srtsp.sys -- (SRTSP)
DRV - [2013/09/26 05:28:00 | 000,446,552 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NAV\1501000.012\symnets.sys -- (SymNetS)
DRV - [2013/09/26 04:50:25 | 000,127,064 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NAV\1501000.012\ccSetx86.sys -- (ccSet_NAV)
DRV - [2013/09/25 19:52:54 | 000,145,040 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kneps.sys -- (kneps)
DRV - [2013/09/25 19:52:53 | 000,044,000 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kltdi.sys -- (kltdi)
DRV - [2013/09/24 11:54:10 | 000,582,936 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\System32\drivers\cmdguard.sys -- (cmdGuard)
DRV - [2013/09/24 11:54:10 | 000,085,464 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\Windows\System32\drivers\inspect.sys -- (inspect)
DRV - [2013/09/24 11:54:10 | 000,044,752 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\Windows\System32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2013/09/24 11:54:08 | 000,020,072 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\System32\drivers\cmderd.sys -- (cmderd)
DRV - [2013/09/10 04:47:26 | 000,367,704 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\NAV\1501000.012\SymDS.sys -- (SymDS)
DRV - [2013/09/10 03:49:48 | 000,032,344 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NAV\1501000.012\srtspx.sys -- (SRTSPX)
DRV - [2013/05/25 17:00:14 | 000,102,344 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\idmwfp.sys -- (IDMWFP)
DRV - [2013/05/07 09:00:16 | 000,035,064 | ---- | M] (Windows ® Win 7 DDK provider) [File_System | System | Running] -- C:\Windows\System32\drivers\CFRMD.sys -- (CFRMD)
DRV - [2012/12/21 04:20:16 | 003,086,336 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2012/11/19 12:10:30 | 000,526,392 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\iaStorA.sys -- (iaStorA)
DRV - [2012/11/19 12:10:28 | 000,025,656 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\iaStorF.sys -- (iaStorF)
DRV - [2012/08/29 17:47:56 | 000,190,976 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2012/08/03 00:09:30 | 000,024,408 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6)
DRV - [2012/01/25 12:23:10 | 000,319,264 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2011/09/02 08:31:28 | 000,039,192 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2011/09/02 08:31:20 | 000,041,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2010/11/20 23:29:34 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010/11/20 23:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 23:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 23:29:03 | 000,112,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - [2010/11/20 23:29:03 | 000,077,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV - [2010/11/20 23:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010/11/20 23:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 23:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 23:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 23:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010/11/20 23:29:03 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt)
DRV - [2010/11/20 23:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 23:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/04/12 10:44:34 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2009/12/03 15:59:24 | 001,175,456 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://gr.msn.com/?r...GR&dcc=GR&opt=0
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 4F E0 55 CE 09 BA CE 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Bitdefender\Bitdefender\ffpwdman\
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_21.1.0.18\IPSFF [2013/11/10 22:55:32 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\[email protected]: C:\Users\paulos\AppData\Roaming\IDM\idmmzcc5 [2013/09/25 19:00:12 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.101\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - Extension: \u0388\u03B3\u03B3\u03C1\u03B1\u03C6\u03B1 Google = C:\Users\paulos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\paulos\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\paulos\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: \u0391\u03BD\u03B1\u03B6\u03AE\u03C4\u03B7\u03C3\u03B7 Google = C:\Users\paulos\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: AdBlock = C:\Users\paulos\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.14_0\
CHR - Extension: IDM Integration = C:\Users\paulos\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.15.14_0\
CHR - Extension: Skype Click to Call = C:\Users\paulos\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.12.0.13601_0\
CHR - Extension: \u03A0\u03BF\u03C1\u03C4\u03BF\u03C6\u03CC\u03BB\u03B9 Google = C:\Users\paulos\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\
CHR - Extension: Gmail = C:\Users\paulos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/11/08 01:42:59 | 000,001,554 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\21.1.0.18\IPS\IPSBHO.DLL (Symantec Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe (COMODO)
O4 - HKLM..\Run: [Driver Genius] File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 153.19.1.254 153.19.250.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1C9DCDA7-B12C-4EE6-9ED0-95BF856EE314}: DhcpNameServer = 153.19.1.254 153.19.250.100
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/11/12 01:35:14 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\paulos\Desktop\OTL.exe
[2013/11/11 22:40:23 | 000,000,000 | ---D | C] -- C:\Users\paulos\Desktop\bleepingcomp
[2013/11/11 21:22:10 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Local\Adobe
[2013/11/11 04:53:13 | 000,000,000 | -H-D | C] -- C:\VTRoot
[2013/11/11 04:53:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2013/11/11 04:52:07 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2013/11/11 04:48:52 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Roaming\Comodo
[2013/11/11 04:14:17 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Roaming\Malwarebytes
[2013/11/11 04:14:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/11/10 22:55:12 | 000,000,000 | ---D | C] -- C:\ProgramData\NCOTEMP
[2013/11/10 22:54:46 | 000,142,936 | ---- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2013/11/10 22:54:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2013/11/10 22:54:20 | 000,935,512 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\NAV\1501000.012\SymEFA.sys
[2013/11/10 22:54:20 | 000,651,352 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\NAV\1501000.012\srtsp.sys
[2013/11/10 22:54:20 | 000,446,552 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\NAV\1501000.012\symnets.sys
[2013/11/10 22:54:20 | 000,367,704 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\NAV\1501000.012\SymDS.sys
[2013/11/10 22:54:20 | 000,206,936 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\NAV\1501000.012\Ironx86.sys
[2013/11/10 22:54:20 | 000,032,344 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\NAV\1501000.012\srtspx.sys
[2013/11/10 22:54:20 | 000,021,520 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\NAV\1501000.012\SymELAM.sys
[2013/11/10 22:54:19 | 000,127,064 | R--- | C] (Symantec Corporation) -- C:\Windows\System32\drivers\NAV\1501000.012\ccSetx86.sys
[2013/11/10 22:53:46 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NAV
[2013/11/10 22:53:46 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NAV\1501000.012
[2013/11/10 22:53:43 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton AntiVirus
[2013/11/10 22:53:43 | 000,000,000 | ---D | C] -- C:\Program Files\Norton AntiVirus
[2013/11/10 22:53:34 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2013/11/10 16:14:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
[2013/11/10 16:09:51 | 000,000,000 | ---D | C] -- C:\Users\paulos\Desktop\protection news
[2013/11/10 03:11:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
[2013/11/10 03:06:05 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Roaming\DVDVideoSoft
[2013/11/10 03:06:05 | 000,000,000 | ---D | C] -- C:\Program Files\DVDVideoSoft
[2013/11/10 03:06:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DVDVideoSoft
[2013/11/10 03:05:42 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Local\Programs
[2013/11/10 00:55:10 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Local\ESET
[2013/11/09 04:09:01 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013/11/09 04:09:00 | 002,876,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013/11/09 04:08:59 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013/11/09 04:08:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013/11/09 04:08:59 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013/11/09 04:08:58 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013/11/09 04:08:58 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013/11/09 04:08:58 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013/11/09 04:08:58 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013/11/09 03:38:18 | 003,973,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013/11/09 03:38:18 | 003,918,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013/11/09 03:38:17 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2013/11/09 03:38:17 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidpolicyconverter.exe
[2013/11/09 03:38:17 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidapi.dll
[2013/11/09 03:38:17 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2013/11/09 03:38:17 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidcertstorecheck.exe
[2013/11/09 03:38:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apisetschema.dll
[2013/11/09 03:38:16 | 002,357,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013/11/09 03:38:04 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2013/11/09 03:38:04 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2013/11/09 03:38:01 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2013/11/09 03:37:52 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2013/11/09 03:37:48 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2013/11/09 03:37:48 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2013/11/09 03:36:18 | 000,240,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2013/11/09 03:36:18 | 000,187,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2013/11/09 03:36:05 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013/11/09 03:36:05 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2013/11/09 03:36:04 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2013/11/09 03:36:04 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013/11/09 03:26:32 | 000,000,000 | ---D | C] -- C:\c701d5fa02ac000839ba7ae087aab73c
[2013/11/09 03:21:51 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2013/11/08 02:17:07 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Roaming\liQeNSoft
[2013/11/08 02:17:07 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Local\liQeNSoft
[2013/11/08 02:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\COMODO
[2013/11/08 01:47:56 | 000,000,000 | --SD | C] -- C:\ProgramData\Shared Space
[2013/11/08 01:47:27 | 001,700,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gdiplus.dll
[2013/11/08 01:47:27 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc71.dll
[2013/11/08 01:46:38 | 000,000,000 | ---D | C] -- C:\ProgramData\COMODO
[2013/11/08 01:45:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
[2013/11/08 01:45:58 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Local\Comodo
[2013/11/08 01:45:34 | 000,048,392 | ---- | C] (COMODO CA Limited) -- C:\Windows\System32\certsentry.dll
[2013/11/08 01:45:20 | 000,000,000 | ---D | C] -- C:\Program Files\Comodo
[2013/11/08 01:44:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader
[2013/11/08 01:38:47 | 000,000,000 | ---D | C] -- C:\ProgramData\BDLogging
[2013/11/08 01:38:43 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\capicom.dll
[2013/11/08 01:34:27 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Roaming\QuickScan
[2013/11/08 00:03:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock
[2013/11/08 00:03:02 | 000,000,000 | ---D | C] -- C:\Program Files\PeerBlock
[2013/11/04 00:51:47 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Local\CrashDumps
[2013/11/04 00:49:48 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Local\iLivid
[2013/11/03 23:10:39 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NIS\1501000.012
[2013/11/03 22:59:28 | 000,000,000 | ---D | C] -- C:\Windows\System32\drivers\NIS
[2013/11/03 22:59:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton
[2013/11/03 22:56:24 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller
[2013/11/03 22:27:21 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Local\Avg2013
[2013/10/25 17:44:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2013/10/25 17:42:59 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/10/25 17:32:51 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Roaming\AVG2014
[2013/10/25 17:32:16 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Roaming\TuneUp Software
[2013/10/25 17:30:35 | 000,000,000 | -H-D | C] -- C:\$AVG
[2013/10/25 17:30:35 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2014
[2013/10/25 17:27:34 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2013/10/25 17:27:33 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Local\MFAData
[2013/10/25 17:27:33 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2013/10/25 17:27:33 | 000,000,000 | ---D | C] -- C:\Users\paulos\AppData\Local\Avg2014
[2013/10/23 19:42:48 | 000,000,000 | ---D | C] -- C:\Users\paulos\Desktop\erasmus
[2013/10/23 19:29:30 | 000,000,000 | ---D | C] -- C:\Users\paulos\Desktop\Νέος φάκελος (2)
[2013/09/25 18:22:25 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\paulos\AppData\Roaming\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2013/11/12 01:58:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/12 01:52:45 | 000,038,045 | ---- | M] () -- C:\Users\paulos\Desktop\bookmarks_12_11_13.html
[2013/11/12 01:44:49 | 000,320,024 | ---- | M] () -- C:\Users\paulos\Desktop\More Security Is Not Always Better.pdf
[2013/11/12 01:35:40 | 000,228,270 | ---- | M] () -- C:\Users\paulos\Desktop\Malware and Spyware Cleaning Guide - Geeks to Go Forums.pdf
[2013/11/12 01:35:15 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\paulos\Desktop\OTL.exe
[2013/11/11 23:22:35 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/11 23:22:23 | 000,000,218 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job
[2013/11/11 23:22:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/11/11 23:21:55 | 2359,971,840 | -HS- | M] () -- C:\hiberfil.sys
[2013/11/11 23:20:54 | 000,021,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/11/11 23:20:54 | 000,021,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/11/11 16:32:56 | 000,037,958 | ---- | M] () -- C:\Windows\System32\drivers\fvstore.dat
[2013/11/11 11:37:00 | 000,000,218 | ---- | M] () -- C:\Windows\tasks\AutoKMSDaily.job
[2013/11/10 22:56:16 | 001,688,728 | ---- | M] () -- C:\Windows\System32\drivers\NAV\1501000.012\Cat.DB
[2013/11/10 22:54:46 | 000,142,936 | ---- | M] (Symantec Corporation) -- C:\Windows\System32\drivers\SYMEVENT.SYS
[2013/11/10 22:54:46 | 000,008,194 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2013/11/10 22:54:46 | 000,000,805 | ---- | M] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2013/11/10 16:14:55 | 000,001,077 | ---- | M] () -- C:\Users\paulos\Application Data\Microsoft\Internet Explorer\Quick Launch\Emsisoft Anti-Malware.lnk
[2013/11/09 16:20:39 | 000,624,966 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/11/09 16:20:39 | 000,578,242 | ---- | M] () -- C:\Windows\System32\perfh008.dat
[2013/11/09 16:20:39 | 000,111,354 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/11/09 16:20:39 | 000,095,026 | ---- | M] () -- C:\Windows\System32\perfc008.dat
[2013/11/09 14:41:04 | 000,407,872 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/11/09 03:14:29 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll
[2013/11/09 03:14:29 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll
[2013/11/08 01:47:42 | 000,048,392 | ---- | M] (COMODO CA Limited) -- C:\Windows\System32\certsentry.dll
[2013/11/08 01:47:27 | 001,700,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdiplus.dll
[2013/11/08 01:47:27 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc71.dll
[2013/11/08 01:42:59 | 000,001,554 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2013/11/08 01:40:49 | 000,528,627 | ---- | M] () -- C:\ProgramData\1383867267.bdinstall.bin
[2013/11/08 01:39:16 | 000,009,216 | -H-- | M] () -- C:\bdr-ld01.mbr
[2013/11/08 01:38:59 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_avchv_01009.Wdf
[2013/11/03 23:14:52 | 001,654,316 | ---- | M] () -- C:\Windows\System32\drivers\NIS\1501000.012\Cat.DB
[2013/11/03 22:53:44 | 000,061,411 | ---- | M] () -- C:\Users\paulos\Documents\ticket and photo.rar
[2013/10/31 21:21:50 | 000,017,830 | ---- | M] () -- C:\Windows\System32\drivers\NIS\1501000.012\VT20131031.017
[2013/10/31 21:21:50 | 000,017,830 | ---- | M] () -- C:\Windows\System32\drivers\NAV\1501000.012\VT20131031.017
[2013/10/27 17:24:10 | 000,000,003 | RHS- | M] () -- C:\win7ldr
[2013/10/27 17:24:10 | 000,000,003 | ---- | M] () -- C:\Windows\7Loader.TAG
[2013/10/27 17:23:32 | 000,203,316 | RHS- | M] () -- C:\grldr
[2013/10/27 17:12:17 | 000,381,334 | RHS- | M] () -- C:\BJETR
[2013/10/27 17:12:17 | 000,000,000 | RHS- | M] () -- C:\gnwq.ld

========== Files Created - No Company Name ==========

[2013/11/12 01:52:45 | 000,038,045 | ---- | C] () -- C:\Users\paulos\Desktop\bookmarks_12_11_13.html
[2013/11/12 01:44:49 | 000,320,024 | ---- | C] () -- C:\Users\paulos\Desktop\More Security Is Not Always Better.pdf
[2013/11/12 01:35:40 | 000,228,270 | ---- | C] () -- C:\Users\paulos\Desktop\Malware and Spyware Cleaning Guide - Geeks to Go Forums.pdf
[2013/11/11 04:53:10 | 000,037,958 | ---- | C] () -- C:\Windows\System32\drivers\fvstore.dat
[2013/11/10 22:58:52 | 000,017,830 | ---- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\VT20131031.017
[2013/11/10 22:55:21 | 001,688,728 | ---- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\Cat.DB
[2013/11/10 22:54:46 | 000,008,194 | ---- | C] () -- C:\Windows\System32\drivers\SYMEVENT.CAT
[2013/11/10 22:54:46 | 000,000,805 | ---- | C] () -- C:\Windows\System32\drivers\SYMEVENT.INF
[2013/11/10 22:54:04 | 000,003,433 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\SymEFA.inf
[2013/11/10 22:54:04 | 000,002,852 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\SymDS.inf
[2013/11/10 22:54:04 | 000,001,440 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\SymNet.inf
[2013/11/10 22:54:04 | 000,001,389 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\srtspx.inf
[2013/11/10 22:54:04 | 000,001,388 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\srtsp.inf
[2013/11/10 22:54:04 | 000,001,098 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\symELAM.inf
[2013/11/10 22:54:04 | 000,000,829 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\ccSetx86.inf
[2013/11/10 22:54:04 | 000,000,737 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\Iron.inf
[2013/11/10 22:53:46 | 000,014,818 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\SymVTcer.dat
[2013/11/10 22:53:46 | 000,009,931 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\SymELAM.cat
[2013/11/10 22:53:46 | 000,008,194 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\ccSetx86.cat
[2013/11/10 22:53:46 | 000,008,184 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\SymNet.cat
[2013/11/10 22:53:46 | 000,008,182 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\SymEFA.cat
[2013/11/10 22:53:46 | 000,008,180 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\srtspx.cat
[2013/11/10 22:53:46 | 000,008,176 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\SymDS.cat
[2013/11/10 22:53:46 | 000,008,176 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\srtsp.cat
[2013/11/10 22:53:46 | 000,008,176 | R--- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\iron.cat
[2013/11/10 22:53:46 | 000,000,172 | ---- | C] () -- C:\Windows\System32\drivers\NAV\1501000.012\isolate.ini
[2013/11/10 16:14:55 | 000,001,077 | ---- | C] () -- C:\Users\paulos\Application Data\Microsoft\Internet Explorer\Quick Launch\Emsisoft Anti-Malware.lnk
[2013/11/08 01:40:49 | 000,528,627 | ---- | C] () -- C:\ProgramData\1383867267.bdinstall.bin
[2013/11/08 01:38:59 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_avchv_01009.Wdf
[2013/11/08 01:36:40 | 000,009,216 | -H-- | C] () -- C:\bdr-ld01.mbr
[2013/11/03 23:13:55 | 001,654,316 | ---- | C] () -- C:\Windows\System32\drivers\NIS\1501000.012\Cat.DB
[2013/11/03 23:13:01 | 000,017,830 | ---- | C] () -- C:\Windows\System32\drivers\NIS\1501000.012\VT20131031.017
[2013/11/03 22:53:44 | 000,061,411 | ---- | C] () -- C:\Users\paulos\Documents\ticket and photo.rar
[2013/10/27 17:24:11 | 000,203,316 | RHS- | C] () -- C:\grldr
[2013/10/27 17:24:10 | 000,000,003 | RHS- | C] () -- C:\win7ldr
[2013/10/27 17:24:10 | 000,000,003 | ---- | C] () -- C:\Windows\7Loader.TAG
[2013/10/27 17:12:17 | 000,381,334 | RHS- | C] () -- C:\BJETR
[2013/10/27 17:12:17 | 000,000,000 | RHS- | C] () -- C:\gnwq.ld
[2013/10/07 07:17:38 | 000,015,400 | ---- | C] () -- C:\Windows\System32\drivers\hmd.sys
[2013/09/25 19:18:08 | 001,048,576 | ---- | C] () -- C:\Windows\System32\syndata.bin
[2013/09/25 19:18:02 | 000,396,597 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2013/09/25 19:17:56 | 000,982,240 | ---- | C] () -- C:\Windows\System32\igkrng500.bin
[2013/09/25 19:17:55 | 000,092,356 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin
[2013/09/25 19:17:55 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
[2013/09/25 19:17:54 | 000,439,308 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin
[2013/09/25 19:17:54 | 000,000,259 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config
[2013/09/25 19:17:16 | 000,578,242 | ---- | C] () -- C:\Windows\System32\perfh008.dat
[2013/09/25 19:17:16 | 000,369,984 | ---- | C] () -- C:\Windows\System32\perfi008.dat
[2013/09/25 19:17:16 | 000,095,026 | ---- | C] () -- C:\Windows\System32\perfc008.dat
[2013/09/25 19:17:16 | 000,045,182 | ---- | C] () -- C:\Windows\System32\perfd008.dat
[2013/09/25 18:30:10 | 000,037,336 | ---- | C] () -- C:\Windows\System32\CleanMFT32.exe
[2013/09/25 18:22:25 | 000,087,608 | ---- | C] () -- C:\Users\paulos\AppData\Roaming\inst.exe
[2013/09/25 18:22:25 | 000,007,887 | ---- | C] () -- C:\Users\paulos\AppData\Roaming\pcouffin.cat
[2013/09/25 18:22:25 | 000,001,144 | ---- | C] () -- C:\Users\paulos\AppData\Roaming\pcouffin.inf
[2013/04/03 19:07:18 | 000,000,731 | ---- | C] () -- C:\Windows\System32\RTSLCS.dll
[2013/04/02 21:28:31 | 000,000,338 | ---- | C] () -- C:\Windows\System32\WinToolkitRunOnce.exe.config
[2013/04/02 21:14:51 | 000,082,944 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2013/04/02 21:14:51 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe

========== ZeroAccess Check ==========

[2009/07/14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 03:56:00 | 012,874,752 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== Alternate Data Streams ==========

@Alternate Data Stream - 164 bytes -> C:\ProgramData\TEMP:D1B5B4F1
@Alternate Data Stream - 153 bytes -> C:\ProgramData\TEMP:0CE7F3C9

< End of report >



OTL Extras logfile created on: 12/11/2013 1:53:28 πμ - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\paulos\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000408 | Country: Ελλάδα | Language: ELL | Date Format: d/M/yyyy

2,93 Gb Total Physical Memory | 2,02 Gb Available Physical Memory | 68,86% Memory free
5,86 Gb Paging File | 4,89 Gb Available in Paging File | 83,45% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 111,57 Gb Total Space | 37,42 Gb Free Space | 33,54% Space Free | Partition Type: NTFS
Drive D: | 111,55 Gb Total Space | 2,99 Gb Free Space | 2,68% Space Free | Partition Type: NTFS

Computer Name: PAULOS-PC | User Name: paulos | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- Reg Error: Key error. File not found

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- Reg Error: Key error.
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- Reg Error: Key error.
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"AntiVirusOverride" = 0
"FirewallOverride" = 0
"UpdatesDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{015C5B35-B678-451C-9AEE-821E8D69621C}_is1" = PeerBlock 1.1 (r518)
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{40F962CF-3C1E-44EB-A319-5590BEEB90CF}" = COMODO Firewall
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.7
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{741FC38C-2797-4AC1-AD63-4B65F9CA8B20}" = GeekBuddy
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{98EFD8F0-08DE-48DB-B922-A2EBAB711033}" = Nero 7 Ultra Edition
"{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables
"{A2264E8F-1649-11E3-8BED-B8AC6F98CCE3}" = Google Earth
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.8)
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.174
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FD9C31B6-F572-414D-81E3-89368C97A125}_is1" = CamStudio OSS Desktop Recorder
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"BSPlayerp" = BS.Player PRO
"CCleaner" = CCleaner
"Comodo Dragon" = Comodo Dragon
"Defraggler" = Defraggler
"DFX for Winamp" = DFX for Winamp
"Driver Genius Professional Edition_is1" = Driver Genius Professional Edition
"DVDFab 8_is1" = DVDFab 8.0.0.5 (25/08/2010)
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30
"FLV to AVI MPEG WMV 3GP MP4 iPod Converter" = FLV to AVI MPEG WMV 3GP MP4 iPod Converter
"Free Studio_is1" = Free Studio version 2013
"Google Chrome" = Google Chrome
"Hard Disk Sentinel_is1" = Hard Disk Sentinel PRO
"Internet Download Manager" = Internet Download Manager
"iolo Memory Mechanic_is1" = iolo Memory Mechanic
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"MPE" = MyPhoneExplorer
"NAV" = Norton AntiVirus
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"PowerISO" = PowerISO
"Recover My Files_is1" = Recover My Files
"Registry Mechanic_is1" = Registry Mechanic 10.0
"Switch" = Switch Sound File Converter
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeraCopy_is1" = TeraCopy 2.12
"VLC media player" = VLC media player 2.0.8
"WavePad" = WavePad Sound Editor
"Winamp" = Winamp
"WinRAR archiver" = WinRAR 4.00 beta 7 (32-bit)
"YU2010_is1" = Your Uninstaller! 2010

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 10/11/2013 10:40:59 μμ | Computer Name = paulos-PC | Source = WinMgmt | ID = 10
Description =

Error - 11/11/2013 5:34:00 πμ | Computer Name = paulos-PC | Source = WinMgmt | ID = 10
Description =

Error - 11/11/2013 5:46:47 πμ | Computer Name = paulos-PC | Source = Windows Search Service | ID = 1019
Description =

Error - 11/11/2013 9:40:09 πμ | Computer Name = paulos-PC | Source = SideBySide | ID = 16842785
Description = Η δημιουργία περιβάλλοντος ενεργοποίησης για το "C:\Users\paulos\Downloads\Hitman
Pro 3.7.6 Build 201 Final Retail - SceneDL (PimpRG)\64 bit\HitmanPro_x64.exe" απέτυχε.
Δεν
ήταν δυνατή η εύρεση της εξαρτημένης συγκρότησης Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0".
Για
την αναλυτική διάγνωση χρησιμοποιήστε το sxstrace.exe.

Error - 11/11/2013 10:00:18 πμ | Computer Name = paulos-PC | Source = VSS | ID = 8194
Description =

Error - 11/11/2013 10:29:40 πμ | Computer Name = paulos-PC | Source = Windows Search Service | ID = 1019
Description =

Error - 11/11/2013 10:30:12 πμ | Computer Name = paulos-PC | Source = Windows Search Service | ID = 1019
Description =

Error - 11/11/2013 2:39:16 μμ | Computer Name = paulos-PC | Source = WinMgmt | ID = 10
Description =

Error - 11/11/2013 3:06:31 μμ | Computer Name = paulos-PC | Source = Windows Search Service | ID = 1019
Description =

Error - 11/11/2013 5:23:35 μμ | Computer Name = paulos-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 10/11/2013 10:43:36 πμ | Computer Name = paulos-PC | Source = Service Control Manager | ID = 7001
Description = Η υπηρεσία Network List Service εξαρτάται από την υπηρεσία Network
Location Awareness της οποίας η εκκίνηση απέτυχε εξαιτίας του ακόλουθου σφάλματος:
%%1068

Error - 10/11/2013 10:43:36 πμ | Computer Name = paulos-PC | Source = Service Control Manager | ID = 7001
Description = Η υπηρεσία Network List Service εξαρτάται από την υπηρεσία Network
Location Awareness της οποίας η εκκίνηση απέτυχε εξαιτίας του ακόλουθου σφάλματος:
%%1068

Error - 10/11/2013 10:44:02 πμ | Computer Name = paulos-PC | Source = Service Control Manager | ID = 7030
Description = Η υπηρεσία ESET Uninstaller Service έχει σημανθεί ως υπηρεσία αλληλεπίδρασης.
Όμως οι ρυθμίσεις του συστήματος δεν επιτρέπουν τις αλληλεπιδραστικές υπηρεσίες.
Αυτή η υπηρεσία ίσως να μην λειτουργεί σωστά.

Error - 10/11/2013 10:44:39 πμ | Computer Name = paulos-PC | Source = Service Control Manager | ID = 7030
Description = Η υπηρεσία ESET Uninstaller Service έχει σημανθεί ως υπηρεσία αλληλεπίδρασης.
Όμως οι ρυθμίσεις του συστήματος δεν επιτρέπουν τις αλληλεπιδραστικές υπηρεσίες.
Αυτή η υπηρεσία ίσως να μην λειτουργεί σωστά.

Error - 10/11/2013 4:46:26 μμ | Computer Name = paulos-PC | Source = DCOM | ID = 10010
Description =

Error - 10/11/2013 5:03:34 μμ | Computer Name = paulos-PC | Source = Service Control Manager | ID = 7026
Description = Απέτυχε η φόρτωση των ακόλουθων προγραμμάτων οδήγησης της εκκίνησης
του υπολογιστή ή της εκκίνησης του συστήματος: BHDrvx86 ccSet_NAV ccSet_NST CFRMD cmdGuard
discache
HMD
IDSVix86
KLIF
kneps
SCDEmu
spldr
SRTSPX
SymIRON
SymNetS
Wanarpv6

Error - 10/11/2013 5:03:38 μμ | Computer Name = paulos-PC | Source = DCOM | ID = 10005
Description =

Error - 10/11/2013 5:03:45 μμ | Computer Name = paulos-PC | Source = DCOM | ID = 10005
Description =

Error - 10/11/2013 5:03:47 μμ | Computer Name = paulos-PC | Source = DCOM | ID = 10005
Description =

Error - 10/11/2013 5:03:47 μμ | Computer Name = paulos-PC | Source = DCOM | ID = 10005
Description =


< End of report >

Edited by loumos123, 11 November 2013 - 06:22 PM.

  • 0

Advertisements

#2
godawgs
Posted 12 November 2013 - 01:04 AM

godawgs

    Teacher

  • Retired Staff
  • 8,228 posts
Hello loumos123,

I'm sorry but we won't be able to assist you. You have stated that you use a lot of program cracks and we will not help anyone with illegal or pirated software.
Please read the site's Termsof Use statement.
Pay particular attention to section 3. Geeks to Go Support Forum Rules, Policies and Disclaimers p. which states:
The posting of links or references to warez or any other type of illegal software is strictly forbidden. By doing so you risk having your user account terminated without warning. We will NOT help anyone we suspect of having obtained their software or services illegally.

And section 4. Topics, Posts, and other Content f. which states:
Invasive of privacy, Infringing of intellectual property rights (such as copyright and trademark rights)

This topic will be closed. If you have any issues with this policy, please PM a member of the Admin team or another Moderator.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP