API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Feb 13th, 2011
110
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 24.57 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 13.2.2011 15:56:24 - Run 1
  2. OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\Cvetko\Desktop
  3. Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
  4. Internet Explorer (Version = 8.0.6001.18702)
  5. Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy
  6.  
  7. 1.023,00 Mb Total Physical Memory | 431,00 Mb Available Physical Memory | 42,00% Memory free
  8. 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 77,00% Paging File free
  9. Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
  12. Drive C: | 39,11 Gb Total Space | 23,74 Gb Free Space | 60,71% Space Free | Partition Type: NTFS
  13. Drive D: | 109,93 Gb Total Space | 75,44 Gb Free Space | 68,62% Space Free | Partition Type: NTFS
  14.  
  15. Computer Name: CVETKO-800198C8 | User Name: Cvetko | Logged in as Administrator.
  16. Boot Mode: Normal | Scan Mode: Current user | Quick Scan
  17. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
  18.  
  19. [color=#E56717]========== Processes (SafeList) ==========[/color]
  20.  
  21. PRC - [2011.02.13 15:54:41 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cvetko\Desktop\OTL.exe
  22. PRC - [2011.01.13 09:47:34 | 003,396,624 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
  23. PRC - [2011.01.13 09:47:33 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
  24. PRC - [2010.06.28 06:43:42 | 000,190,024 | ---- | M] (Patchou) -- C:\Program Files\MessengerPlus! 3\MsgPlus.exe
  25. PRC - [2010.04.25 11:48:00 | 000,345,376 | ---- | M] () -- C:\Program Files\SiteAdvisor\6261\SAService.exe
  26. PRC - [2009.01.26 15:31:16 | 002,144,088 | RHS- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
  27. PRC - [2008.05.16 17:50:36 | 000,036,640 | ---- | M] () -- C:\Program Files\SiteAdvisor\6261\SiteAdv.exe
  28. PRC - [2008.04.14 13:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
  29. PRC - [2007.05.04 09:39:28 | 000,910,896 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
  30. PRC - [2007.05.04 09:39:12 | 000,149,040 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
  31. PRC - [2006.03.30 08:15:44 | 000,096,341 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe
  32.  
  33.  
  34. [color=#E56717]========== Modules (SafeList) ==========[/color]
  35.  
  36. MOD - [2011.02.13 15:54:41 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cvetko\Desktop\OTL.exe
  37. MOD - [2011.01.13 09:47:35 | 000,189,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
  38. MOD - [2010.08.23 17:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
  39. MOD - [2010.06.28 06:43:42 | 000,058,952 | ---- | M] (Patchou) -- C:\Program Files\MessengerPlus! 3\MsgPlusLoader.dll
  40. MOD - [2010.04.25 11:48:00 | 000,011,552 | ---- | M] () -- C:\Program Files\SiteAdvisor\6261\saHook.dll
  41.  
  42.  
  43. [color=#E56717]========== Win32 Services (SafeList) ==========[/color]
  44.  
  45. SRV - File not found [Disabled | Stopped] -- -- (HidServ)
  46. SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
  47. SRV - [2011.01.13 09:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
  48. SRV - [2010.04.25 11:48:00 | 000,345,376 | ---- | M] () [Auto | Running] -- C:\Program Files\SiteAdvisor\6261\SAService.exe -- (SiteAdvisor Service)
  49. SRV - [2006.03.30 08:15:44 | 000,096,341 | ---- | M] (Canon Inc.) [Auto | Running] -- C:\Program Files\Canon\CAL\CALMAIN.exe -- (CCALib8)
  50.  
  51.  
  52. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  53.  
  54. DRV - [2011.01.13 09:41:16 | 000,294,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
  55. DRV - [2011.01.13 09:40:16 | 000,047,440 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
  56. DRV - [2011.01.13 09:40:04 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
  57. DRV - [2011.01.13 09:37:30 | 000,023,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
  58. DRV - [2011.01.13 09:37:11 | 000,029,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
  59. DRV - [2011.01.13 09:37:09 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
  60. DRV - [2010.12.16 20:52:25 | 000,097,792 | ---- | M] (Protect Software GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ACEDRV05.sys -- (ACEDRV05)
  61. DRV - [2008.04.14 13:00:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
  62. DRV - [2007.06.13 20:24:12 | 002,155,520 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
  63. DRV - [2006.11.08 08:55:10 | 000,986,624 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSX_DPV.sys -- (HSF_DPV)
  64. DRV - [2006.11.08 08:54:02 | 000,258,048 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
  65. DRV - [2006.11.08 08:53:48 | 000,659,968 | R--- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSX_CNXT.sys -- (winachsf)
  66. DRV - [2006.09.12 18:27:00 | 004,381,184 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
  67. DRV - [2006.08.14 20:09:48 | 000,083,200 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
  68. DRV - [2006.08.04 10:39:10 | 000,008,192 | R--- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\XAudio.sys -- (XAudio)
  69. DRV - [2001.08.17 14:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)
  70.  
  71.  
  72. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  73.  
  74.  
  75. [color=#E56717]========== Internet Explorer ==========[/color]
  76.  
  77.  
  78. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
  79. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
  80. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
  81. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
  82. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
  83. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  84.  
  85. [color=#E56717]========== FireFox ==========[/color]
  86.  
  87. FF - prefs.js..extensions.enabledItems: {1650a312-02bc-40ee-977e-83f158701739}:26.6
  88.  
  89.  
  90. [2010.04.25 10:16:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Cvetko\Application Data\Mozilla\Firefox\extensions
  91. [2010.04.25 10:16:13 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Cvetko\Application Data\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
  92. [2010.05.09 08:18:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
  93. [2010.04.01 18:13:50 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
  94. [2010.04.01 18:13:50 | 000,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
  95. [2010.04.01 18:13:50 | 000,000,786 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eudict.xml
  96. [2010.04.01 18:13:50 | 000,001,193 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-hr.xml
  97.  
  98. O1 HOSTS File: ([2008.04.14 13:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
  99. O1 - Hosts: 127.0.0.1 localhost
  100. O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6261\SiteAdv.dll ()
  101. O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
  102. O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
  103. O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6261\SiteAdv.dll ()
  104. O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
  105. O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
  106. O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
  107. O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
  108. O4 - HKLM..\Run: [KernelFaultCheck] File not found
  109. O4 - HKLM..\Run: [MessengerPlus3] C:\Program Files\MessengerPlus! 3\MsgPlus.exe (Patchou)
  110. O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
  111. O4 - HKLM..\Run: [SiteAdvisor] C:\Program Files\SiteAdvisor\6261\SiteAdv.exe ()
  112. O4 - HKLM..\Run: [SkyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.)
  113. O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe ()
  114. O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
  115. O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
  116. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
  117. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
  118. O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
  119. O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
  120. O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1272033633531 (WUWebControl Class)
  121. O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} https://asp.photoprintit.de/microsite/14321/defaults/activex/ips/IPSUploader4.cab (IPSUploader4 Control)
  122. O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
  123. O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
  124. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 178.17.127.130
  125. O18 - Protocol\Handler\siteadvisor {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6261\SiteAdv.dll ()
  126. O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
  127. O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
  128. O24 - Desktop WallPaper: C:\Documents and Settings\Cvetko\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
  129. O24 - Desktop BackupWallPaper: C:\Documents and Settings\Cvetko\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
  130. O32 - HKLM CDRom: AutoRun - 1
  131. O32 - AutoRun File - [2010.04.23 15:06:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
  132. O34 - HKLM BootExecute: (autocheck autochk *) - File not found
  133. O35 - HKLM\..comfile [open] -- "%1" %*
  134. O35 - HKLM\..exefile [open] -- "%1" %*
  135. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  136. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  137.  
  138. NetSvcs: 6to4 - File not found
  139. NetSvcs: AppMgmt - File not found
  140. NetSvcs: HidServ - File not found
  141. NetSvcs: Ias - File not found
  142. NetSvcs: Iprip - File not found
  143. NetSvcs: NWCWorkstation - File not found
  144. NetSvcs: Nwsapagent - File not found
  145. NetSvcs: WmdmPmSp - File not found
  146.  
  147. CREATERESTOREPOINT
  148. Restore point Set: OTL Restore Point (56590081070202880)
  149.  
  150. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  151.  
  152. [2011.02.13 15:54:39 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Cvetko\Desktop\OTL.exe
  153. [2011.02.13 15:02:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Spybot - Search & Destroy
  154. [2011.02.13 15:02:18 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
  155. [2011.02.13 15:02:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
  156. [2011.02.13 12:31:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Catalyst Control Center
  157. [2011.02.13 12:29:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
  158. [2011.02.13 12:28:09 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
  159. [2011.02.13 11:44:12 | 000,000,000 | ---D | C] -- C:\AMD
  160. [2011.02.08 18:54:10 | 001,474,048 | ---- | C] (Irfan Skiljan) -- C:\Documents and Settings\Cvetko\Desktop\iview428_setup.exe
  161. [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
  162. [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
  163.  
  164. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  165.  
  166. [2011.02.13 15:54:41 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cvetko\Desktop\OTL.exe
  167. [2011.02.13 15:39:42 | 000,137,671 | ---- | M] () -- C:\WINDOWS\HPHins15.dat
  168. [2011.02.13 15:38:24 | 000,000,314 | ---- | M] () -- C:\WINDOWS\tasks\GlaryInitialize.job
  169. [2011.02.13 15:38:23 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
  170. [2011.02.13 15:38:09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
  171. [2011.02.13 15:02:23 | 000,000,951 | ---- | M] () -- C:\Documents and Settings\Cvetko\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
  172. [2011.02.13 15:02:23 | 000,000,933 | ---- | M] () -- C:\Documents and Settings\Cvetko\Desktop\Spybot - Search & Destroy.lnk
  173. [2011.02.13 14:36:00 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
  174. [2011.02.13 12:47:17 | 000,004,096 | ---- | M] () -- C:\WINDOWS\System32\crash
  175. [2011.02.13 12:35:18 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
  176. [2011.02.13 12:08:06 | 000,000,010 | ---- | M] () -- C:\WINDOWS\WININIT.INI
  177. [2011.02.13 10:34:03 | 000,000,068 | ---- | M] () -- C:\Documents and Settings\Cvetko\default.pls
  178. [2011.02.13 10:33:57 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
  179. [2011.02.12 17:12:09 | 000,002,555 | ---- | M] () -- C:\Documents and Settings\Cvetko\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk
  180. [2011.02.11 11:28:03 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
  181. [2011.02.10 16:45:07 | 000,047,206 | ---- | M] () -- C:\Documents and Settings\Cvetko\Desktop\IMG_2596-vi.jpg
  182. [2011.02.10 07:21:07 | 000,148,400 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
  183. [2011.02.09 23:18:21 | 000,001,355 | ---- | M] () -- C:\WINDOWS\imsins.BAK
  184. [2011.02.09 10:25:26 | 000,220,645 | ---- | M] () -- C:\Documents and Settings\Cvetko\Desktop\slika1.jpg
  185. [2011.02.09 10:23:16 | 000,005,251 | ---- | M] () -- C:\Documents and Settings\Cvetko\Desktop\mica.jpg
  186. [2011.02.09 10:19:01 | 000,054,681 | ---- | M] () -- C:\Documents and Settings\Cvetko\Desktop\slika2.jpg
  187. [2011.02.09 10:08:54 | 000,081,525 | ---- | M] () -- C:\Documents and Settings\Cvetko\Desktop\03EC8B63-A984-3C91-4B4D-1F29D90C6C20wallpaper.jpg
  188. [2011.02.08 22:33:04 | 000,277,033 | ---- | M] () -- C:\Documents and Settings\Cvetko\My Documents\HM roba.docx
  189. [2011.02.08 18:54:13 | 001,474,048 | ---- | M] (Irfan Skiljan) -- C:\Documents and Settings\Cvetko\Desktop\iview428_setup.exe
  190. [2011.02.06 17:41:09 | 000,058,409 | ---- | M] () -- C:\Documents and Settings\Cvetko\Desktop\minnie majce.jpg
  191. [2011.02.01 07:34:53 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Cvetko\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
  192. [2011.01.31 21:10:21 | 000,014,848 | ---- | M] () -- C:\Documents and Settings\Cvetko\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  193. [2011.01.24 11:10:18 | 000,016,864 | ---- | M] () -- C:\Documents and Settings\Cvetko\My Documents\Gordan životopis.docx
  194. [2011.01.23 22:16:26 | 000,047,908 | ---- | M] () -- C:\Documents and Settings\Cvetko\Desktop\IMG_2361-vi.jpg
  195. [2011.01.21 21:22:56 | 000,001,486 | ---- | M] () -- C:\Documents and Settings\Cvetko\Application Data\Microsoft\Internet Explorer\Quick Launch\Calculator.lnk
  196. [2011.01.20 16:07:30 | 000,015,171 | ---- | M] () -- C:\Documents and Settings\Cvetko\Desktop\Iz života sv.docx
  197. [2011.01.19 08:55:35 | 000,022,981 | ---- | M] () -- C:\Documents and Settings\Cvetko\My Documents\ugg roza_resize.jpg
  198. [2011.01.18 14:38:01 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
  199. [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
  200. [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
  201.  
  202. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  203.  
  204. [2011.02.13 15:02:23 | 000,000,951 | ---- | C] () -- C:\Documents and Settings\Cvetko\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
  205. [2011.02.13 15:02:23 | 000,000,933 | ---- | C] () -- C:\Documents and Settings\Cvetko\Desktop\Spybot - Search & Destroy.lnk
  206. [2011.02.13 12:28:26 | 000,520,192 | ---- | C] () -- C:\WINDOWS\System32\ati2sgag.exe
  207. [2011.02.13 12:08:05 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI
  208. [2011.02.10 16:45:15 | 000,047,206 | ---- | C] () -- C:\Documents and Settings\Cvetko\Desktop\IMG_2596-vi.jpg
  209. [2011.02.09 10:27:07 | 000,220,645 | ---- | C] () -- C:\Documents and Settings\Cvetko\Desktop\slika1.jpg
  210. [2011.02.09 10:23:26 | 000,005,251 | ---- | C] () -- C:\Documents and Settings\Cvetko\Desktop\mica.jpg
  211. [2011.02.09 10:18:17 | 000,054,681 | ---- | C] () -- C:\Documents and Settings\Cvetko\Desktop\slika2.jpg
  212. [2011.02.09 10:08:10 | 000,081,525 | ---- | C] () -- C:\Documents and Settings\Cvetko\Desktop\03EC8B63-A984-3C91-4B4D-1F29D90C6C20wallpaper.jpg
  213. [2011.02.08 20:01:37 | 000,277,033 | ---- | C] () -- C:\Documents and Settings\Cvetko\My Documents\HM roba.docx
  214. [2011.02.06 17:45:23 | 000,058,409 | ---- | C] () -- C:\Documents and Settings\Cvetko\Desktop\minnie majce.jpg
  215. [2011.02.01 07:34:53 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Cvetko\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
  216. [2011.01.31 09:54:34 | 732,973,056 | ---- | C] () -- C:\Documents and Settings\Cvetko\My Documents\JM_30DAY_SHRED.avi
  217. [2011.01.24 11:37:32 | 000,047,908 | ---- | C] () -- C:\Documents and Settings\Cvetko\Desktop\IMG_2361-vi.jpg
  218. [2011.01.21 21:22:56 | 000,001,486 | ---- | C] () -- C:\Documents and Settings\Cvetko\Application Data\Microsoft\Internet Explorer\Quick Launch\Calculator.lnk
  219. [2011.01.20 16:07:29 | 000,015,171 | ---- | C] () -- C:\Documents and Settings\Cvetko\Desktop\Iz života sv.docx
  220. [2011.01.19 08:55:47 | 000,022,981 | ---- | C] () -- C:\Documents and Settings\Cvetko\My Documents\ugg roza_resize.jpg
  221. [2010.06.19 10:58:54 | 000,000,756 | ---- | C] () -- C:\WINDOWS\compedia.ini
  222. [2010.05.09 17:25:56 | 000,000,092 | ---- | C] () -- C:\WINDOWS\ka.ini
  223. [2010.05.02 15:25:12 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll
  224. [2010.05.02 15:23:54 | 000,001,107 | ---- | C] () -- C:\WINDOWS\disney.ini
  225. [2010.04.26 18:50:41 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
  226. [2010.04.25 11:50:47 | 000,004,364 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
  227. [2010.04.25 11:50:44 | 000,010,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
  228. [2010.04.24 12:56:30 | 000,014,836 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
  229. [2010.04.23 18:28:23 | 000,014,848 | ---- | C] () -- C:\Documents and Settings\Cvetko\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  230. [2010.04.23 16:57:32 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
  231. [2010.04.23 15:15:06 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
  232.  
  233. [color=#E56717]========== LOP Check ==========[/color]
  234.  
  235. [2010.04.27 16:02:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
  236. [2010.10.17 07:17:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Cateia Games
  237. [2010.04.25 13:28:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\LightScribe
  238. [2010.05.03 19:59:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
  239. [2010.05.02 18:54:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
  240. [2010.05.02 16:26:30 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
  241. [2011.01.31 19:38:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cvetko\Application Data\BitTorrent
  242. [2010.05.03 06:51:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cvetko\Application Data\GlarySoft
  243. [2010.05.09 08:15:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cvetko\Application Data\MSNInstaller
  244. [2010.05.02 16:27:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cvetko\Application Data\TuneUp Software
  245. [2011.02.13 15:38:24 | 000,000,314 | ---- | M] () -- C:\WINDOWS\Tasks\GlaryInitialize.job
  246.  
  247. [color=#E56717]========== Purity Check ==========[/color]
  248.  
  249.  
  250.  
  251. [color=#E56717]========== Custom Scans ==========[/color]
  252.  
  253.  
  254. [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
  255.  
  256.  
  257. [color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
  258. [2008.04.14 13:00:00 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
  259.  
  260. [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
  261. [2008.04.14 13:00:00 | 020,056,462 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
  262. [2008.04.14 13:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
  263.  
  264. [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
  265. [2008.04.14 13:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\dllcache\eventlog.dll
  266. [2008.04.14 13:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll
  267.  
  268. [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
  269. [2008.04.14 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\dllcache\netlogon.dll
  270. [2008.04.14 13:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\netlogon.dll
  271.  
  272. [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
  273. [2008.04.14 13:00:00 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\dllcache\scecli.dll
  274. [2008.04.14 13:00:00 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\scecli.dll
  275.  
  276. [color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
  277.  
  278. [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
  279. [2007.06.13 20:25:36 | 000,339,968 | ---- | M] (Advanced Micro Devices, Inc.)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\ATIDEMGX.dll
  280. [2009.03.08 03:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtmsft.dll
  281. [2009.03.08 03:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtrans.dll
  282. [1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
  283.  
  284. [color=#E56717]========== Alternate Data Streams ==========[/color]
  285.  
  286. @Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
  287. @Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A8ADE5D8
  288.  
  289. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!