OTL

OTL logfile created on: 5/31/2011 5:40:31 PM - Run 1
OTL by OldTimer - Version 3.2.23.0 Folder = C:\Users\Admin\Desktop

64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorks
tation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: Österreich | Language: DEA | Date Format: dd.MM.yyyy
3.93 Gb Total Physical Memory | 1.67 Gb Available Physical Memory | 42.55% Memor
y free
7.87 Gb Paging File | 5.44 Gb Available in Paging File | 69.15% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Fil
es (x86)
Drive C: | 231.00 Gb Total Space | 170.53 Gb Free Space | 73.82% Space Free | Pa
rtition Type: NTFS
Drive D: | 345.51 Gb Total Space | 345.41 Gb Free Space | 99.97% Space Free | Pa
rtition Type: NTFS
Computer Name: SERJO722-PC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelis
t: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2011/05/31 17:39:36 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\User
s\Admin\Desktop\OTL.exe
PRC - [2011/05/17 15:16:02 | 002,238,096 | ---- | M] (Giraffic) -- C:\Program Fi
les (x86)\Giraffic\GirafficWatchdog.exe
PRC - [2011/05/17 15:15:46 | 003,605,632 | ---- | M] (Giraffic) -- C:\Program Fi
les (x86)\Giraffic\Giraffic.exe
PRC - [2011/05/10 17:49:05 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:
\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2011/04/27 11:46:13 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program
Files (x86)\Avira\AntiVir Desktop\sched.exe
PRC - [2011/03/25 03:13:06 | 000,271,408 | ---- | M] () -- C:\Program Files (x86
)\Hotspot Shield\bin\openvpnas.exe
Files (x86)\Avira\AntiVir Desktop\avguard.exe
Files (x86)\Avira\AntiVir Desktop\avgnt.exe
PRC - [2011/01/05 20:30:36 | 000,352,304 | ---- | M] (AnchorFree Inc.) -- C:\Pro
gram Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe
PRC - [2010/10/15 20:42:14 | 000,326,704 | ---- | M] () -- C:\Program Files (x86
)\Hotspot Shield\bin\hsswd.exe
PRC - [2010/07/22 18:07:05 | 000,814,344 | ---- | M] (ABBYY) -- C:\Program Files
(x86)\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe
PRC - [2010/02/04 00:19:52 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\P
rogram Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2010/02/04 00:19:48 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\P
rogram Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2009/09/02 00:54:54 | 007,758,840 | ---- | M] (http://cryptload.info) --
C:\Users\Admin\Desktop\Cryptload\CryptLoad.exe
PRC - [2009/07/31 16:00:38 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) --
C:\Users\Admin\Desktop\JDownloader Nr2\CommonFiles\Java\bin\javaw.exe
[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2011/05/31 17:39:36 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\User
s\Admin\Desktop\OTL.exe
MOD - [2010/11/20 13:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) --
C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.760
1.17514_none_41e6975e2bd6f2b2\comctl32.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2011/01/26 13:38:11 | 000,350,720 | ---- | M] (Microsoft Co
rporation) [Auto | Running] -- C:\Windows\SysNative\inetsrv\ftpsvc.dll -- (ftpsv
c)
rporation) [Auto | Running] -- C:\Windows\SysNative\snmp.exe -- (SNMP)
rporation) [Auto | Running] -- C:\Windows\SysNative\mqtgsvc.exe -- (MSMQTriggers
)
rporation) [Auto | Running] -- C:\Windows\SysNative\inetsrv\inetinfo.exe -- (IIS
ADMIN)
SRV:[b]64bit:[/b] - [2010/08/09 21:04:12 | 000,166,704 | ---- | M] (Samsung Elec
tronics CO., LTD.) [On_Demand | Stopped] -- C:\Windows\SysNative\SUPDSvc.exe --
(Samsung UPD Service)
SRV:[b]64bit:[/b] - [2010/07/21 14:46:28 | 000,951,584 | ---- | M] (Broadcom Cor
poration.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdi
ns.exe -- (btwdins)
SRV:[b]64bit:[/b] - [2010/04/16 17:07:42 | 000,134,928 | ---- | M] (Intel(R) Cor
poration) [Auto | Running] -- C:\Program Files\Intel\TurboBoost\TurboBoost.exe -
- (TurboBoost)
rporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (W
inDefend)
rporation) [Auto | Running] -- C:\Windows\SysNative\lpdsvc.dll -- (LPDSVC)
rporation) [Auto | Running] -- C:\Windows\SysNative\iprip.dll -- (iprip)
rporation) [On_Demand | Stopped] -- C:\Windows\SysNative\inetsrv\WMSvc.exe -- (W
MSVC)
rporation) [Disabled | Stopped] -- C:\Windows\SysNative\tlntsvr.exe -- (TlntSvr)
rporation) [Auto | Running] -- C:\Windows\SysNative\TCPSVCS.EXE -- (simptcp)
rporation) [Auto | Running] -- C:\Windows\SysNative\mqsvc.exe -- (MSMQ)
rporation) [Auto | Running] -- C:\Windows\SysNative\CISVC.EXE -- (CISVC)
SRV - [2011/05/18 13:41:24 | 003,275,864 | ---- | M] () [Auto | Running] -- c:\P
rogram Files (x86)\Common Files\Akamai\netsession_win_8832f4b.dll -- (Akamai)
SRV - [2011/05/17 15:16:02 | 002,238,096 | ---- | M] (Giraffic) [Auto | Running]
-- C:\Program Files (x86)\Giraffic\GirafficWatchdog.exe -- (Giraffic)
SRV - [2011/04/27 11:46:13 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Runnin
g] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedule
rService)
SRV - [2011/03/25 03:14:52 | 000,057,640 | ---- | M] () [On_Demand | Stopped] --
C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.exe -- (HssTrayService
)
SRV - [2011/03/25 03:13:06 | 000,271,408 | ---- | M] () [Auto | Running] -- C:\P
rogram Files (x86)\Hotspot Shield\bin\openvpnas.exe -- (hshld)
SRV - [2011/03/18 01:21:33 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Runnin
g] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirServic
e)
SRV - [2011/01/05 20:30:36 | 000,352,304 | ---- | M] (AnchorFree Inc.) [Auto | R
unning] -- C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe -- (HssSrv)
SRV - [2010/11/20 14:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [On
_Demand | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010/11/20 14:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [Au
to | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (W3SVC)
to | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
to | Running] -- C:\Windows\SysWOW64\snmp.exe -- (SNMP)
SRV - [2010/10/15 20:42:14 | 000,326,704 | ---- | M] () [Auto | Running] -- C:\P
rogram Files (x86)\Hotspot Shield\bin\hsswd.exe -- (HssWd)
SRV - [2010/07/22 18:07:05 | 000,814,344 | ---- | M] (ABBYY) [Auto | Running] --
C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\PE\Network
LicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.10.0)
to | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (
clr_optimization_v4.0.30319_32)
SRV - [2010/02/04 00:19:52 | 002,320,920 | ---- | M] (Intel Corporation) [Auto |
Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\
UNS\UNS.exe -- (UNS) Intel(R)
SRV - [2010/02/04 00:19:48 | 000,268,824 | ---- | M] (Intel Corporation) [Auto |
Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\
LMS\LMS.exe -- (LMS) Intel(R)
to | Running] -- C:\Windows\SysWOW64\TCPSVCS.EXE -- (simptcp)
SRV - [2009/06/10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Di
sabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
-- (clr_optimization_v2.0.50727_32)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2011/03/11 08:41:12 | 000,107,904 | ---- | M] (Advanced Mic
ro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsa
ta.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011/03/11 08:41:12 | 000,027,008 | ---- | M] (Advanced Mic
ro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sy
s -- (amdxata)
DRV:[b]64bit:[/b] - [2011/03/07 01:40:06 | 000,254,528 | ---- | M] (DT Soft Ltd)
[Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys --
(dtsoftbus01)
DRV:[b]64bit:[/b] - [2011/01/10 15:23:15 | 000,116,568 | ---- | M] (Avira GmbH)
[Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipb
b)
DRV:[b]64bit:[/b] - [2011/01/10 15:23:15 | 000,083,120 | ---- | M] (Avira GmbH)
[File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (
avgntflt)
DRV:[b]64bit:[/b] - [2011/01/07 17:02:28 | 000,045,408 | ---- | M] (Microsoft Co
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\point6
4.sys -- (Point64)
DRV:[b]64bit:[/b] - [2010/11/20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Pack
ard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSA
MD.sys -- (HpSAMD)
rporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbF
lt.sys -- (TsUsbFlt)
rporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rmcast.sys
-- (RMCAST)
DRV:[b]64bit:[/b] - [2010/09/22 21:19:02 | 000,056,832 | ---- | M] (AnchorFree I
nc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HssDrv.sys -
- (HssDrv)
DRV:[b]64bit:[/b] - [2010/09/22 21:19:02 | 000,037,888 | ---- | M] (AnchorFree I
nc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\taphss.sys --
(taphss)
DRV:[b]64bit:[/b] - [2010/08/10 04:01:56 | 000,111,616 | ---- | M] (ELAN Microel
ectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\
ETD.sys -- (ETD)
DRV:[b]64bit:[/b] - [2010/07/29 02:23:08 | 003,065,408 | ---- | M] (Broadcom Cor
poration) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL66
4.SYS -- (BCM43XX)
poration.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaud
io.sys -- (btwaudio)
poration.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavd
t.sys -- (btwavdt)
poration.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrch
id.sys -- (btwrchid)
poration.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwamp
fl.sys -- (btwampfl)
DRV:[b]64bit:[/b] - [2010/07/08 10:28:46 | 000,401,696 | ---- | M] (Marvell) [Ke
rnel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yuko
nw7)
DRV:[b]64bit:[/b] - [2010/04/27 19:30:52 | 000,184,968 | ---- | M] (Renesas Elec
tronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\driv
ers\nusb3xhc.sys -- (nusb3xhc)
DRV:[b]64bit:[/b] - [2010/04/27 19:29:54 | 000,083,080 | ---- | M] (Renesas Elec
tronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\driv
ers\nusb3hub.sys -- (nusb3hub)
DRV:[b]64bit:[/b] - [2010/04/27 09:57:04 | 000,540,696 | ---- | M] (Intel Corpor
ation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (
iaStor)
DRV:[b]64bit:[/b] - [2010/04/16 17:07:28 | 000,013,832 | ---- | M] () [Kernel |
Auto | Running] -- C:\Windows\SysNative\drivers\TurboB.sys -- (TurboB)
DRV:[b]64bit:[/b] - [2010/03/10 04:48:30 | 000,086,120 | ---- | M] (NVIDIA Corpo
ration) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.
sys -- (NVHDA)
poration.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwl2c
ap.sys -- (btwl2cap)
ation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Impcd.sys
-- (Impcd)
ation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sy
s -- (HECIx64) Intel(R)
DRV:[b]64bit:[/b] - [2009/07/14 03:52:20 | 000,194,128 | ---- | M] (AMD Technolo
gies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs
.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009/07/14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporat
ion) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys
-- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009/07/14 03:45:55 | 000,024,656 | ---- | M] (Promise Tech
nology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.
sys -- (stexstor)
rporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sersca
n.sys -- (StillCam)
rporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mqac.s
ys -- (MQAC)
DRV:[b]64bit:[/b] - [2009/06/10 22:38:56 | 000,000,308 | ---- | M] () [File_Syst
em | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
ation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.s
ys -- (igfx)
DRV:[b]64bit:[/b] - [2009/06/10 22:35:42 | 000,187,392 | ---- | M] (Realtek Corp
oration ) [Kernel | On_Demand | Stopp
ed] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
poration) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.s
ys -- (ebdrv)
poration) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.
sys -- (b06bdrv)
poration) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60
a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009/06/10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Co
mputer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drive
rs\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009/05/28 08:38:04 | 000,013,824 | ---- | M] (SAMSUNG ELEC
TRONICS) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\SABI.sys --
(SABI)
DRV - [2010/11/17 02:15:50 | 000,015,144 | ---- | M] (Windows (R) 2003 DDK 3790
provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\rtport.s
ys -- (rtport)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysW
OW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://samsung.
msn.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://s
tart.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://sa
msung.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.goog
le.de/
IE - HKCU\..\URLSearchHook: {cd90bf73-20f6-44ef-993d-bb920303bd2e} - Reg Error:
Key error. File not found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEna
ble" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultenginename: "Facemoods Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Veoh Web Player Customize
d Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.
aspx?ctid=CT2653012&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "www.google.com"
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2
.1.1.94
FF - prefs.js..extensions.enabledItems: {6904342A-8307-11DF-A508-4AE2DFD72085}:2
.1.1.94
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6
.0.24
FF - prefs.js..extensions.enabledItems: urllister@binnyva.com:1.3
FF - prefs.js..extensions.enabledItems: anttoolbar@ant.com:2.3.0
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..extensions.enabledItems: {888d99e7-e8b5-46a3-851e-1ec45da1e644}:4
.0.3
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5
.3.0.7280
FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717
ed8b}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\html5video [2011
/03/07 01:39:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD7
2085}: C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\wpa [2011/03/07
01:39:01 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Prog
ram Files (x86)\Mozilla Firefox\components [2011/05/25 02:14:47 | 000,000,000 |
---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program
Files (x86)\Mozilla Firefox\plugins [2011/05/25 02:14:47 | 000,000,000 | ---D |
M]
FF - HKLM\software\mozilla\Netscape Navigator 9.0.0.6\extensions\\Components: C:
\Program Files (x86)\Netscape\Navigator 9\components [2011/05/25 02:14:47 | 000,
000,000 | ---D | M]
FF - HKLM\software\mozilla\Netscape Navigator 9.0.0.6\extensions\\Plugins: C:\Pr
ogram Files (x86)\Netscape\Navigator 9\plugins [2011/05/25 02:14:47 | 000,000,00
0 | ---D | M]
[2011/03/07 01:43:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Admin
\AppData\Roaming\mozilla\Extensions
[2011/05/25 02:13:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Admin
\AppData\Roaming\mozilla\Firefox\Profiles\6z3mirq4.default\extensions
[2011/04/27 06:30:25 | 000,000,000 | ---D | M] (ReloadEvery) -- C:\Users\Admin\A
ppData\Roaming\mozilla\Firefox\Profiles\6z3mirq4.default\extensions\{888d99e7-e8
b5-46a3-851e-1ec45da1e644}
[2011/04/21 14:01:49 | 000,000,000 | ---D | M] (Veoh Web Player Community Toolba
r) -- C:\Users\Admin\AppData\Roaming\mozilla\Firefox\Profiles\6z3mirq4.default\e
xtensions\{cd90bf73-20f6-44ef-993d-bb920303bd2e}
[2011/04/22 02:42:59 | 000,000,000 | ---D | M] (Ant Video Downloader) -- C:\User
s\Admin\AppData\Roaming\mozilla\Firefox\Profiles\6z3mirq4.default\extensions\ant
toolbar@ant.com
[2011/04/22 07:08:49 | 000,000,000 | ---D | M] (Autofill Forms) -- C:\Users\Admi
n\AppData\Roaming\mozilla\Firefox\Profiles\6z3mirq4.default\extensions\autofillF
orms@blueimp.net
[2011/04/21 14:01:48 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\Admi
n\AppData\Roaming\mozilla\Firefox\Profiles\6z3mirq4.default\extensions\engine@co
nduit.com
[2011/03/07 01:51:27 | 000,000,000 | ---D | M] (URL Lister) -- C:\Users\Admin\Ap
pData\Roaming\mozilla\Firefox\Profiles\6z3mirq4.default\extensions\urllister@bin
nyva.com
[2011/03/21 14:46:56 | 000,000,933 | ---- | M] () -- C:\Users\Admin\AppData\Roam
ing\Mozilla\Firefox\Profiles\6z3mirq4.default\searchplugins\conduit.xml
[2011/05/29 23:51:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Fil
es (x86)\Mozilla Firefox\extensions
[2011/03/07 01:45:03 | 000,000,000 | ---D | M] (Java Console) -- C:\Program File
s (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/05/29 23:51:00 | 000,000,000 | ---D | M] (Java Console) -- C:\Program File
s (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
[2011/04/22 14:54:42 | 000,000,000 | ---D | M] (afurladvisor) -- C:\Program File
s (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com
File not found (No name found) --
[2011/05/10 17:49:05 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Progra
m Files (x86)\Mozilla Firefox\components\browsercomps.dll
[2011/04/14 05:08:00 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Pr
ogram Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2011/05/10 17:49:06 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\Mozi
lla Firefox\searchplugins\amazondotcom-de.xml
lla Firefox\searchplugins\bing.xml
lla Firefox\searchplugins\eBay-de.xml
lla Firefox\searchplugins\fcmdSrch.xml
lla Firefox\searchplugins\leo_ende_de.xml
lla Firefox\searchplugins\wikipedia-de.xml
lla Firefox\searchplugins\yahoo-de.xml
O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\Sys
Native\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0
BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation
)
O2:[b]64bit:[/b] - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA
22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corpora
tion)
O2:[b]64bit:[/b] - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE
736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll (AnchorFree I
nc.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A4
9795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, L
LC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files
(x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (W2PBrowser Class) - {AA609D72-8482-4076-8991-8CDAE5B93BCB} - C:\Progr
am Files\Samsung AnyWeb Print\W2PBrowser.dll ()
O2 - BHO: (Bing Bar BHO) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program F
iles (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation)
O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\P
rogram Files (x86)\Hotspot Shield\HssIE\HssIE.dll (AnchorFree Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (@C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\n
pwinext.dll,-100) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x
86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Avira GmbH)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveD
esktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveD
esktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentProm
ptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentProm
ptBehaviorUser = 3
O8:[b]64bit:[/b] - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C
:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:[b]64bit:[/b] - Extra context menu item: Seite an &Bluetooth-Gerät senden... -
C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Program File
s\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Program Fil
es\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\bt
rez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOM
M\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth
Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program
Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Samsung AnyWeb Print - {328ECD19-C167-40eb-A0C7-16FE7634105E}
- C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll ()
O9 - Extra Button: Senden an Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F}
- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Senden an &Bluetooth-Gerät... - {CCA281CA-C863-46ef-
9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
()
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6
.0/jinstall-1_6_0_25-windows-i586.cab (Java Plug-in 1.6.0_25)
O16 - DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} http://java.sun.com/update/1.6
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138 10.
0.0.138
O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec2
94} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324}
- Reg Error: Key error. File not found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.
exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe)
- C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (
Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C
LSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File n
ot found.
O28:[b]64bit:[/b] - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6C
D} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/col
or]
[2011/05/31 17:39:28 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Users\Admi
n\Desktop\OTL.exe
[2011/05/31 17:08:32 | 000,209,736 | ---- | C] (Comfort Software Group) -- C:\Us
ers\Admin\Desktop\FreeVK.exe
[2011/05/29 23:51:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common
Files\Java
[2011/05/29 23:33:41 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\Cryptlo
ad
[2011/05/29 21:11:12 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader
[2011/05/29 20:56:33 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\E
raser 6
[2011/05/29 20:53:55 | 000,000,000 | ---D | C] -- C:\Program Files\Eraser
[2011/05/29 16:10:17 | 000,000,000 | ---D | C] -- C:\Users\Admin\Documents\Usene
t.nl
[2011/05/28 18:38:04 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\Russian
Märchen1
[2011/05/28 18:29:27 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\JDownlo
ader Nr2
[2011/05/28 04:32:21 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/05/28 02:45:32 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming
\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011/05/28 02:45:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\WinRAR
[2011/05/28 02:45:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
\Sun
[2011/05/27 16:41:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Securit
yXploded
[2011/05/27 15:07:29 | 000,000,000 | -HSD | C] -- C:\Users\Admin\Desktop\url
\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2011/05/26 17:58:30 | 000,000,000 | ---D | C] -- C:\Downloads
\gtk-2.0
[2011/05/26 16:54:55 | 000,000,000 | ---D | C] -- C:\Users\Admin\.tucan
\Mipony
ws\Start Menu\Programs\MiPony
[2011/05/24 14:52:27 | 000,000,000 | ---D | C] -- C:\Users\Admin\FrostWire
\FrostWire
[2011/05/23 20:31:19 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\P
MB Files
[2011/05/23 20:31:18 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2011/05/23 20:30:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando N
etworks
[2011/05/23 14:50:17 | 000,000,000 | ---D | C] -- C:\Users\Admin\Documents\Outlo
ok Files
ws\Start Menu\Programs\WinMX
[2011/05/23 12:01:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinMX
Files\Apple
[2011/05/19 23:00:09 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\A
pple
[2011/05/19 23:00:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple S
oftware Update
[2011/05/19 23:00:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011/05/18 19:09:37 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\{
FD0BD3AA-E95F-40D8-A519-43549711154E}
954FD6C3-E728-4A62-B792-DD90696745B9}
ws\Start Menu\Programs\ABBYY FineReader 10
Files\ABBYY
[2011/05/17 17:45:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ABBYY F
ineReader 10
[2011/05/17 16:47:45 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\S
amsung
\ABBYY
[2011/05/17 16:45:31 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\A
BBYY
[2011/05/17 16:45:31 | 000,000,000 | ---D | C] -- C:\ProgramData\ABBYY
[2011/05/14 10:21:00 | 000,719,872 | ---- | C] (Abysmal Software) -- C:\Windows\
SysWow64\devil.dll
[2011/05/14 10:21:00 | 000,369,152 | ---- | C] (The Public) -- C:\Windows\SysWow
64\avisynth.dll
[2011/05/14 10:20:59 | 000,070,656 | ---- | C] (www.helixcommunity.org) -- C:\Wi
ndows\SysWow64\i420vfw.dll
[2011/05/14 10:20:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AviSynt
h 2.5
[2011/05/14 10:19:28 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Window
s\SysWow64\pncrt.dll
\Real
[2011/05/14 10:18:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\eRightS
oft
[2011/05/14 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HyCam2
[2011/05/12 21:33:00 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\D
DMSettings
\Netscape
[2011/05/10 17:57:28 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Local\N
etscape
ws\Start Menu\Programs\Netscape Navigator
[2011/05/10 17:57:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Netscap
e
[2011/05/10 13:16:25 | 000,000,000 | ---D | C] -- C:\ProgramData\eMule
\Microsoft\Windows\Start Menu\Programs\Games
[2011/05/03 19:29:13 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\All
\AVS4YOU
Files\AVSMedia
[2011/05/03 19:07:33 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU
[2011/05/03 19:07:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVS4YOU
[2011/05/02 23:14:37 | 000,000,000 | -H-D | C] -- C:\Users\Admin\Documents\Downl
oads
\GetRightToGo
[2011/05/02 23:12:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Digital
Audio Converter
\NVIDIA
\MOVAVI
A0EA7B26-BD11-4595-ACF9-8DD30B05C017}
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/05/31 17:39:36 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Admi
n\Desktop\OTL.exe
[2011/05/31 17:35:01 | 000,001,118 | ---- | M] () -- C:\Windows\tasks\GoogleUpda
teTaskUserS-1-5-21-2487761073-2110919495-774019913-1000UA.job
[2011/05/31 17:29:02 | 129,205,921 | ---- | M] () -- C:\Users\Admin\Desktop\KAV1
1en.rar
[2011/05/31 17:18:26 | 000,000,153 | ---- | M] () -- C:\Users\Admin\Desktop\Free
VK.ini
[2011/05/31 17:08:36 | 000,209,736 | ---- | M] (Comfort Software Group) -- C:\Us
ers\Admin\Desktop\FreeVK.exe
[2011/05/31 17:02:13 | 000,775,908 | ---- | M] () -- C:\Windows\SysNative\perfh0
07.dat
[2011/05/31 17:02:13 | 000,715,746 | ---- | M] () -- C:\Windows\SysNative\perfh0
09.dat
[2011/05/31 17:02:13 | 000,175,312 | ---- | M] () -- C:\Windows\SysNative\perfc0
07.dat
[2011/05/31 17:02:13 | 000,142,740 | ---- | M] () -- C:\Windows\SysNative\perfc0
09.dat
[2011/05/31 17:02:12 | 001,808,826 | ---- | M] () -- C:\Windows\SysNative\PerfSt
ringBackup.INI
[2011/05/31 16:23:15 | 098,191,557 | ---- | M] () -- C:\Users\Admin\Desktop\kavm
ac8.0.5.812mlg_en_ru_de_fr_es_esMX_it_pt_ptBR_pl.dmg
[2011/05/30 21:35:00 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpda
teTaskUserS-1-5-21-2487761073-2110919495-774019913-1000Core.job
[2011/05/29 23:54:33 | 000,018,464 | -H-- | M] () -- C:\Windows\SysNative\7B296F
B0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/05/29 23:54:33 | 000,018,464 | -H-- | M] () -- C:\Windows\SysNative\7B296F
B0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/05/29 23:47:21 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/05/29 23:47:16 | 4224,094,208 | -HS- | M] () -- C:\hiberfil.sys
[2011/05/27 05:15:21 | 000,000,157 | ---- | M] () -- C:\Users\Admin\AppData\Loca
l\svc2dll.dat
[2011/05/26 16:58:20 | 000,000,218 | ---- | M] () -- C:\Users\Admin\.recently-us
ed.xbel
[2011/05/22 21:10:27 | 000,003,584 | ---- | M] () -- C:\Users\Admin\AppData\Loca
l\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/18 15:57:22 | 000,046,742 | ---- | M] () -- C:\Users\Admin\AppData\Roam
ing\room.dat
[2011/05/15 22:33:09 | 000,000,006 | ---- | M] () -- C:\Windows\s16upd_id
[2011/05/13 17:09:34 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit
.inf
[2011/05/13 17:09:34 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuini
t.inf
[2011/05/02 23:08:54 | 000,005,082 | ---- | M] () -- C:\ProgramData\ojobkspa.ako
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/05/31 17:12:04 | 129,205,921 | ---- | C] () -- C:\Users\Admin\Desktop\KAV1
1en.rar
[2011/05/31 17:08:43 | 000,000,153 | ---- | C] () -- C:\Users\Admin\Desktop\Free
VK.ini
[2011/05/31 16:16:50 | 098,191,557 | ---- | C] () -- C:\Users\Admin\Desktop\kavm
ac8.0.5.812mlg_en_ru_de_fr_es_esMX_it_pt_ptBR_pl.dmg
[2011/05/29 20:53:56 | 000,001,759 | ---- | C] () -- C:\ProgramData\Microsoft\Wi
ndows\Start Menu\Programs\Eraser.lnk
[2011/05/27 05:13:07 | 000,000,157 | ---- | C] () -- C:\Users\Admin\AppData\Loca
l\svc2dll.dat
[2011/05/26 21:30:55 | 000,001,118 | ---- | C] () -- C:\Windows\tasks\GoogleUpda
teTaskUserS-1-5-21-2487761073-2110919495-774019913-1000UA.job
[2011/05/26 21:30:53 | 000,001,066 | ---- | C] () -- C:\Windows\tasks\GoogleUpda
teTaskUserS-1-5-21-2487761073-2110919495-774019913-1000Core.job
[2011/05/26 16:58:20 | 000,000,218 | ---- | C] () -- C:\Users\Admin\.recently-us
ed.xbel
[2011/05/22 21:10:27 | 000,003,584 | ---- | C] () -- C:\Users\Admin\AppData\Loca
l\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ndows\Start Menu\Programs\Apple Software Update.lnk
[2011/05/15 22:33:09 | 000,000,006 | ---- | C] () -- C:\Windows\s16upd_id
[2011/05/14 10:20:59 | 000,027,648 | ---- | C] () -- C:\Windows\SysWow64\AVSredi
rect.dll
[2011/05/13 17:15:14 | 000,001,405 | ---- | C] () -- C:\Users\Admin\AppData\Roam
ing\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
ing\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2011/05/13 17:09:34 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit
.inf
[2011/05/13 17:09:34 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuini
t.inf
ndows\Start Menu\Programs\Mozilla Firefox.lnk
[2011/05/02 23:08:54 | 000,005,082 | ---- | C] () -- C:\ProgramData\ojobkspa.ako
[2011/04/26 00:27:35 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
ing\room.dat
[2011/03/07 02:59:22 | 003,765,052 | ---- | C] () -- C:\Windows\SysWow64\PerfStr
ingBackup.INI
[2011/03/07 02:03:32 | 000,446,258 | ---- | C] () -- C:\Windows\AutoKMS.exe
[2011/03/07 01:47:37 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.d
ll
[2011/03/07 01:47:37 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011/03/07 01:47:35 | 000,810,496 | ---- | C] () -- C:\Windows\SysWow64\xvidcor
e.dll
[2011/03/07 01:47:35 | 000,183,808 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw
.dll
[2011/03/07 01:47:35 | 000,080,896 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.
dll
[2011/03/07 01:43:26 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2011/03/07 00:46:44 | 000,142,704 | ---- | C] () -- C:\Windows\wiainst64.exe
[2011/03/07 00:45:48 | 000,484,656 | ---- | C] () -- C:\Windows\ssndii.exe
[2011/03/07 00:45:31 | 000,258,864 | ---- | C] () -- C:\Windows\SUPDRun.exe
[2010/08/26 13:58:38 | 000,307,200 | ---- | C] () -- C:\Windows\SetDisplayResolu
tion.exe
[2010/08/26 13:26:17 | 000,001,064 | ---- | C] () -- C:\Windows\HotFixList.ini
[2009/07/14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.D
AT
[2009/07/14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.d
at
[2009/07/14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWConte
xtHandler.dll
[2009/07/13 23:59:36 | 000,982,196 | ---- | C] () -- C:\Windows\SysWow64\igkrng5
00.bin
[2009/07/13 23:59:36 | 000,139,824 | ---- | C] () -- C:\Windows\SysWow64\igfcg50
0.bin
[2009/07/13 23:59:36 | 000,097,448 | ---- | C] () -- C:\Windows\SysWow64\igfcg50
0m.bin
[2009/07/13 23:59:35 | 000,417,344 | ---- | C] () -- C:\Windows\SysWow64\igcompk
rng500.bin
[2009/07/13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetol
edb40.dll
[2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.d
at
[color=#E56717]========== LOP Check ==========[/color]
[2011/03/07 01:49:22 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming

\DAEMON Tools Lite
\FrostWire
\GetRightToGo
\gtk-2.0
\IrfanView
\Mipony
\MOVAVI
\Netscape
\Samsung
\uTorrent
[2009/07/14 07:08:49 | 000,013,954 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.T
XT
[color=#E56717]========== Purity Check ==========[/color]
< End of report >

OTL

Caricato da

Informazioni sul documento

Copyright

Formati disponibili

Condividi questo documento

Condividi o incorpora il documento

Opzioni di condivisione

Hai trovato utile questo documento?

Questo contenuto è inappropriato?

Copyright:

Formati disponibili

OTL

Caricato da

Copyright:

Formati disponibili

OTL logfile created on: 5/31/2011 5:40:31 PM - Run 1

OTL by OldTimer - Version 3.2.23.0 Folder = C:\Users\Admin\Desktop

[color=#E56717]========== Modules (SafeList) ==========[/color]

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]

[color=#E56717]========== Internet Explorer ==========[/color]

[2011/03/07 01:49:22 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming

[color=#E56717]========== Purity Check ==========[/color]

< End of report >

Potrebbero piacerti anche