API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 29th, 2012
163
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 33.27 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 29.8.2012 23:20:33 - Run 1
  2. OTL by OldTimer - Version 3.2.59.1 Folder = C:\Documents and Settings\SEMPRON 3000\Desktop
  3. Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
  4. Internet Explorer (Version = 8.0.6001.18702)
  5. Locale: 00000C1A | Country: Serbia and Montenegro | Language: SRB | Date Format: d.M.yyyy
  6.  
  7. 511,48 Mb Total Physical Memory | 112,72 Mb Available Physical Memory | 22,04% Memory free
  8. 2,91 Gb Paging File | 2,05 Gb Available in Paging File | 70,24% Paging File free
  9. Paging file location(s): C:\pagefile.sys 2500 2500 [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
  12. Drive C: | 39,06 Gb Total Space | 26,72 Gb Free Space | 68,40% Space Free | Partition Type: NTFS
  13. Drive D: | 35,46 Gb Total Space | 35,05 Gb Free Space | 98,84% Space Free | Partition Type: NTFS
  14. Drive E: | 19,53 Gb Total Space | 19,44 Gb Free Space | 99,53% Space Free | Partition Type: NTFS
  15. Drive F: | 54,99 Gb Total Space | 36,98 Gb Free Space | 67,25% Space Free | Partition Type: NTFS
  16. Drive G: | 140,91 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
  17.  
  18. Computer Name: SEMPRON-04B60B7 | User Name: SEMPRON 3000 | Logged in as Administrator.
  19. Boot Mode: Normal | Scan Mode: Current user
  20. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  21.  
  22. [color=#E56717]========== Processes (SafeList) ==========[/color]
  23.  
  24. PRC - [2012.08.29 22:48:37 | 000,598,528 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SEMPRON 3000\Desktop\OTL.exe
  25. PRC - [2012.07.14 02:17:11 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
  26. PRC - [2012.07.10 01:38:53 | 004,777,856 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
  27. PRC - [2012.07.03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
  28. PRC - [2012.07.03 13:46:44 | 000,462,920 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
  29. PRC - [2011.08.12 01:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
  30. PRC - [2010.11.04 17:15:50 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
  31. PRC - [2010.09.10 10:01:38 | 000,143,360 | ---- | M] (Vimicro Corporation) -- C:\Program Files\Vimicro Corporation\VMUVC\VMonitor.exe
  32. PRC - [2008.04.24 10:14:34 | 001,339,392 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\RALINK\Common\RaUI.exe
  33. PRC - [2008.04.14 10:00:00 | 001,423,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
  34. PRC - [2002.10.30 15:10:34 | 000,028,672 | ---- | M] () -- C:\WINDOWS\htpatch.exe
  35.  
  36.  
  37. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  38.  
  39. MOD - [2012.08.29 13:54:06 | 000,065,024 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll
  40. MOD - [2012.08.29 13:54:06 | 000,052,736 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll
  41. MOD - [2012.08.29 01:18:40 | 000,117,760 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
  42. MOD - [2012.08.29 01:18:35 | 000,052,224 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
  43. MOD - [2012.07.14 02:17:14 | 002,003,424 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
  44. MOD - [2012.06.07 01:54:06 | 006,277,280 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
  45. MOD - [2008.04.14 10:00:00 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
  46. MOD - [2008.04.14 10:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
  47. MOD - [2006.07.12 14:36:36 | 001,167,360 | ---- | M] () -- C:\Program Files\RALINK\Common\acAuth.dll
  48. MOD - [2002.10.30 15:10:34 | 000,028,672 | ---- | M] () -- C:\WINDOWS\htpatch.exe
  49.  
  50.  
  51. [color=#E56717]========== Services (SafeList) ==========[/color]
  52.  
  53. SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
  54. SRV - [2012.07.14 02:17:12 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  55. SRV - [2012.07.03 13:46:44 | 000,655,944 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
  56. SRV - [2011.08.12 01:38:07 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
  57. SRV - [2010.11.04 17:18:10 | 000,033,584 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
  58. SRV - [2010.11.04 17:15:50 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
  59.  
  60.  
  61. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  62.  
  63. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
  64. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
  65. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
  66. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
  67. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
  68. DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
  69. DRV - File not found [Kernel | On_Demand | Unknown] -- C:\DOCUME~1\SEMPRO~1\LOCALS~1\Temp\mbr.sys -- (mbr)
  70. DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
  71. DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
  72. DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
  73. DRV - [2012.07.03 13:46:44 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
  74. DRV - [2012.04.15 23:32:14 | 001,068,216 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\wcmvcam.sys -- (WCMVCAM)
  75. DRV - [2011.07.22 18:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
  76. DRV - [2011.07.12 23:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
  77. DRV - [2011.05.27 09:55:26 | 000,399,360 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vvftUVC.sys -- (vvftUVC)
  78. DRV - [2011.05.13 03:21:06 | 000,136,808 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdm.sys -- (ssadmdm)
  79. DRV - [2011.05.13 03:21:06 | 000,121,064 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadbus.sys -- (ssadbus)
  80. DRV - [2011.05.13 03:21:06 | 000,114,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadserd.sys -- (ssadserd)
  81. DRV - [2011.05.13 03:21:06 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ssadmdfl.sys -- (ssadmdfl)
  82. DRV - [2011.03.16 14:44:14 | 000,252,928 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VMUVC.sys -- (VMUVC)
  83. DRV - [2010.09.27 23:10:55 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
  84. DRV - [2010.08.04 10:50:36 | 000,140,752 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
  85. DRV - [2010.08.03 12:28:36 | 000,095,896 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
  86. DRV - [2010.07.29 12:31:26 | 000,115,008 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
  87. DRV - [2008.04.14 06:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
  88. DRV - [2008.01.14 12:06:32 | 000,021,632 | ---- | M] (ManyCam LLC.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ManyCam.sys -- (ManyCam)
  89. DRV - [2007.07.28 16:10:18 | 000,483,968 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt61.sys -- (RT61)
  90. DRV - [2004.12.16 16:32:54 | 000,013,304 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BTNetFilter.sys -- (BTNetFilter)
  91. DRV - [2004.12.01 17:55:32 | 000,022,488 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btcusb.sys -- (Btcsrusb)
  92. DRV - [2004.11.05 11:39:08 | 000,082,148 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VcommMgr.sys -- (VcommMgr)
  93. DRV - [2004.10.19 13:40:56 | 000,028,207 | ---- | M] (IVT Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\BTHidMgr.sys -- (BTHidMgr)
  94. DRV - [2004.10.19 13:37:38 | 000,061,312 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\VComm.sys -- (VComm)
  95. DRV - [2004.10.19 11:39:26 | 000,020,096 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\blueletaudio.sys -- (BlueletAudio)
  96. DRV - [2004.09.21 18:18:02 | 000,011,604 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vbtenum.sys -- (BTHidEnum)
  97. DRV - [2004.09.21 18:15:34 | 000,010,804 | ---- | M] (IVT Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BtNetDrv.sys -- (BT)
  98. DRV - [2002.10.31 09:28:42 | 000,030,848 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\SISAGPX.SYS -- (SISAGP)
  99. DRV - [2002.07.10 21:09:34 | 000,032,256 | ---- | M] (SiS Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sisnic.sys -- (SISNIC)
  100.  
  101.  
  102. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  103.  
  104.  
  105. [color=#E56717]========== Internet Explorer ==========[/color]
  106.  
  107. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  108. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
  109.  
  110. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.windowsxlive.net
  111. IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found
  112. IE - HKCU\..\SearchScopes,DefaultScope = {44FD5119-E0FD-441F-A7F2-1026729A36CB}
  113. IE - HKCU\..\SearchScopes\{08A60978-73E6-4A29-B958-51C0C27A783F}: "URL" = http://photobucket.com/images/{searchTerms}
  114. IE - HKCU\..\SearchScopes\{44FD5119-E0FD-441F-A7F2-1026729A36CB}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
  115. IE - HKCU\..\SearchScopes\{8DCFCBD8-8010-4274-90C1-FCA36EB44D5B}: "URL" = http://search.yahoo.com/search?p={searchTerms}&b={startPage?}&fr=ie8
  116. IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2830765
  117. IE - HKCU\..\SearchScopes\{FE249F36-EF1E-408D-9A6F-94FC871EFE01}: "URL" = http://www.youtube.com/results?search_query={searchTerms}
  118. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  119.  
  120. [color=#E56717]========== FireFox ==========[/color]
  121.  
  122. FF - prefs.js..browser.startup.homepage: "www.google.rs"
  123. FF - user.js - File not found
  124.  
  125. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
  126. FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
  127. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
  128. FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  129. FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll File not found
  130. FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\SEMPRON 3000\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
  131. FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  132.  
  133. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.08.21 17:56:58 | 000,000,000 | ---D | M]
  134. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.08.18 18:07:41 | 000,000,000 | ---D | M]
  135. FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011.04.12 23:10:57 | 000,000,000 | ---D | M]
  136.  
  137. [2012.08.21 17:57:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\SEMPRON 3000\Application Data\Mozilla\Extensions
  138. [2012.08.24 20:38:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\SEMPRON 3000\Application Data\Mozilla\Firefox\Profiles\8oyt4nrc.default\extensions
  139. [2012.08.21 17:56:58 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
  140. [2012.08.21 18:01:17 | 000,060,249 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\SEMPRON 3000\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\8OYT4NRC.DEFAULT\EXTENSIONS\{FBF6D7FB-F305-4445-BB3D-FEF66579A033}.XPI
  141. [2012.07.14 02:17:47 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
  142. [2012.04.05 22:38:36 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
  143. [2012.07.14 02:16:36 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
  144. [2012.07.14 02:16:36 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml
  145.  
  146. O1 HOSTS File: ([2011.03.13 14:21:37 | 000,430,966 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
  147. O1 - Hosts: 127.0.0.1 localhost
  148. O1 - Hosts: 127.0.0.1 www.007guard.com
  149. O1 - Hosts: 127.0.0.1 007guard.com
  150. O1 - Hosts: 127.0.0.1 008i.com
  151. O1 - Hosts: 127.0.0.1 www.008k.com
  152. O1 - Hosts: 127.0.0.1 008k.com
  153. O1 - Hosts: 127.0.0.1 www.00hq.com
  154. O1 - Hosts: 127.0.0.1 00hq.com
  155. O1 - Hosts: 127.0.0.1 010402.com
  156. O1 - Hosts: 127.0.0.1 www.032439.com
  157. O1 - Hosts: 127.0.0.1 032439.com
  158. O1 - Hosts: 127.0.0.1 www.0scan.com
  159. O1 - Hosts: 127.0.0.1 0scan.com
  160. O1 - Hosts: 127.0.0.1 1000gratisproben.com
  161. O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
  162. O1 - Hosts: 127.0.0.1 1001namen.com
  163. O1 - Hosts: 127.0.0.1 www.1001namen.com
  164. O1 - Hosts: 127.0.0.1 100888290cs.com
  165. O1 - Hosts: 127.0.0.1 www.100888290cs.com
  166. O1 - Hosts: 127.0.0.1 www.100sexlinks.com
  167. O1 - Hosts: 127.0.0.1 100sexlinks.com
  168. O1 - Hosts: 127.0.0.1 10sek.com
  169. O1 - Hosts: 127.0.0.1 www.10sek.com
  170. O1 - Hosts: 127.0.0.1 www.1-2005-search.com
  171. O1 - Hosts: 127.0.0.1 1-2005-search.com
  172. O1 - Hosts: 14835 more lines...
  173. O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
  174. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
  175. O3 - HKLM\..\Toolbar: (@msdxmLC.dll,-1@1033,&Radio) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\MSDXM.OCX (Microsoft Corporation)
  176. O3 - HKLM\..\Toolbar: (StylerToolBar) - {D2F8F919-690B-4EA2-9FA7-A203D1E04F75} - C:\Program Files\Styler\TB\StylerTB.dll (StyleFantasist)
  177. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
  178. O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" File not found
  179. O4 - HKLM..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd File not found
  180. O4 - HKLM..\Run: [HTpatch] C:\WINDOWS\htpatch.exe ()
  181. O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
  182. O4 - HKLM..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe (Silicon Integrated Systems Corp.)
  183. O4 - HKLM..\Run: [VMonitorVMUVC] C:\Program Files\Vimicro Corporation\VMUVC\VMonitor.exe (Vimicro Corporation)
  184. O4 - HKCU..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe ()
  185. O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
  186. O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe (Ralink Technology, Corp.)
  187. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
  188. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
  189. O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
  190. O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1340705300968 (WUWebControl Class)
  191. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
  192. O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
  193. O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
  194. O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
  195. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EEA9D5F0-DC04-4CAF-BB0C-7EDC61861DBA}: NameServer = 10.5.0.100
  196. O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
  197. O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINDOWS\MSDXM.OCX (Microsoft Corporation)
  198. O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
  199. O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
  200. O20 - HKLM Winlogon: UIHost - (vistaui.exe) - C:\WINDOWS\System32\vistaui.exe (Microsoft Corporation)
  201. O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
  202. O24 - Desktop WallPaper: C:\Documents and Settings\SEMPRON 3000\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
  203. O24 - Desktop BackupWallPaper: C:\Documents and Settings\SEMPRON 3000\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
  204. O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
  205. O32 - HKLM CDRom: AutoRun - 1
  206. O32 - AutoRun File - [2010.09.27 22:46:21 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
  207. O32 - AutoRun File - [2011.11.03 09:25:48 | 000,131,021 | R--- | M] () - G:\AUTO RUN.jpg -- [ CDFS ]
  208. O32 - AutoRun File - [2011.11.03 09:25:52 | 000,000,047 | R--- | M] () - G:\AUTORUN.INF -- [ CDFS ]
  209. O32 - AutoRun File - [2011.11.03 09:25:52 | 000,000,144 | R--- | M] () - G:\AUTORUN.PRO -- [ CDFS ]
  210. O32 - AutoRun File - [2011.11.03 09:25:50 | 000,001,648 | R--- | M] () - G:\AutoRun.ard -- [ CDFS ]
  211. O32 - AutoRun File - [2011.11.03 09:25:50 | 001,333,760 | R--- | M] (Longtion) - G:\AutoRun.exe -- [ CDFS ]
  212. O32 - AutoRun File - [2011.11.03 09:25:50 | 000,000,872 | R--- | M] () - G:\AutoRun.ext -- [ CDFS ]
  213. O32 - AutoRun File - [2011.11.03 09:25:50 | 000,004,150 | R--- | M] () - G:\AutoRun.ico -- [ CDFS ]
  214. O32 - AutoRun File - [2011.11.03 09:25:52 | 000,001,649 | R--- | M] () - G:\AutoRun.rdt -- [ CDFS ]
  215. O32 - AutoRun File - [2011.11.03 09:25:52 | 000,736,394 | R--- | M] () - G:\AutoRun.zip -- [ CDFS ]
  216. O33 - MountPoints2\{09afadd8-cada-11df-aa76-806d6172696f}\Shell - "" = AutoRun
  217. O33 - MountPoints2\{09afadd8-cada-11df-aa76-806d6172696f}\Shell\AutoRun - "" = Auto&Play
  218. O33 - MountPoints2\{09afadd8-cada-11df-aa76-806d6172696f}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2011.11.03 09:25:50 | 001,333,760 | R--- | M] (Longtion)
  219. O34 - HKLM BootExecute: (autocheck autochk *)
  220. O35 - HKLM\..comfile [open] -- "%1" %*
  221. O35 - HKLM\..exefile [open] -- "%1" %*
  222. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  223. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  224. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  225. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  226.  
  227. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  228.  
  229. [2012.08.29 22:48:12 | 000,598,528 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\SEMPRON 3000\Desktop\OTL.exe
  230. [2012.08.29 21:57:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\SEMPRON 3000\My Documents\My Videos
  231. [2012.08.29 21:56:47 | 000,607,260 | R--- | C] (Swearware) -- C:\Documents and Settings\SEMPRON 3000\Desktop\dds.scr
  232. [2012.08.29 01:07:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SEMPRON 3000\Application Data\SUPERAntiSpyware.com
  233. [2012.08.29 01:07:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SUPERAntiSpyware
  234. [2012.08.29 01:06:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
  235. [2012.08.29 01:06:42 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
  236. [2012.08.28 21:15:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\SEMPRON 3000\Application Data\Malwarebytes
  237. [2012.08.28 21:15:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
  238. [2012.08.28 21:15:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
  239. [2012.08.28 21:15:35 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
  240. [2012.08.28 21:15:34 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
  241. [2012.08.28 20:50:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner
  242. [2012.08.28 20:50:19 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
  243. [2012.08.21 17:56:59 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
  244. [2012.08.18 18:06:37 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
  245. [2012.08.08 23:20:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Vimicro USB2.0 UVC PC Camera
  246. [2012.08.08 23:19:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\VMUVC
  247. [2012.08.08 23:19:43 | 000,516,096 | ---- | C] (vimicro) -- C:\WINDOWS\System32\VMUVC.ax
  248. [2012.08.08 23:19:43 | 000,252,928 | ---- | C] (Vimicro Corporation) -- C:\WINDOWS\System32\drivers\VMUVC.sys
  249. [2012.08.08 23:19:43 | 000,188,416 | ---- | C] (Vimicro Corporation) -- C:\WINDOWS\System32\vvftUVC.ax
  250. [2012.08.08 23:19:43 | 000,094,208 | ---- | C] (Vimicro Cooperation) -- C:\WINDOWS\System32\VvFtCtrl.dll
  251. [2012.08.08 23:19:43 | 000,073,728 | ---- | C] (Vimicro Corporation) -- C:\WINDOWS\System32\exvmuvc.ax
  252. [2012.08.08 23:19:42 | 000,399,360 | ---- | C] (Vimicro Corporation) -- C:\WINDOWS\System32\drivers\vvftUVC.sys
  253. [2012.08.08 23:19:42 | 000,098,304 | ---- | C] (Vimicro Corporation) -- C:\WINDOWS\System32\VMCtrl.ax
  254. [2012.08.08 23:19:42 | 000,011,776 | ---- | C] (Vimicro Corporation) -- C:\WINDOWS\System32\VMUVC.dll
  255. [2012.08.08 23:19:39 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\DIFxAPI.dll
  256. [2012.08.08 23:19:25 | 000,000,000 | ---D | C] -- C:\Program Files\Vimicro Corporation
  257. [2012.08.08 15:37:04 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
  258. [2012.08.08 15:26:48 | 000,121,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbvideo.sys
  259. [2012.08.08 15:26:48 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dshowext.ax
  260. [2012.08.08 15:26:48 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dshowext.ax
  261. [2012.08.08 15:26:31 | 000,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
  262. [2012.06.26 13:02:39 | 003,796,065 | ---- | C] (Safer Networking Ltd. ) -- C:\Documents and Settings\All Users\Application Data\sbsdwin95req.exe
  263. [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
  264. [10 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
  265.  
  266. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  267.  
  268. [2012.08.29 22:48:37 | 000,598,528 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\SEMPRON 3000\Desktop\OTL.exe
  269. [2012.08.29 21:57:24 | 000,607,260 | R--- | M] (Swearware) -- C:\Documents and Settings\SEMPRON 3000\Desktop\dds.scr
  270. [2012.08.29 13:51:46 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
  271. [2012.08.29 13:51:44 | 536,399,872 | -HS- | M] () -- C:\hiberfil.sys
  272. [2012.08.29 01:07:06 | 000,001,697 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
  273. [2012.08.28 21:15:40 | 000,000,803 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
  274. [2012.08.28 20:50:21 | 000,000,701 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
  275. [2012.08.28 00:54:05 | 000,033,265 | ---- | M] () -- C:\Documents and Settings\SEMPRON 3000\Desktop\Russian_Royal_Family_1911_7.jpg
  276. [2012.08.28 00:52:49 | 000,087,314 | ---- | M] () -- C:\Documents and Settings\SEMPRON 3000\Desktop\ecf80ceb9cf83cf84cf81-acf83cf89cf84-ceb9cf83cf84.jpg
  277. [2012.08.28 00:50:30 | 000,102,439 | ---- | M] () -- C:\Documents and Settings\SEMPRON 3000\Desktop\168_sv_trojica_v.jpg
  278. [2012.08.28 00:48:31 | 000,050,300 | ---- | M] () -- C:\Documents and Settings\SEMPRON 3000\Desktop\Jovan krostanski.jpg
  279. [2012.08.21 17:57:00 | 000,000,761 | ---- | M] () -- C:\Documents and Settings\SEMPRON 3000\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
  280. [2012.08.21 17:57:00 | 000,000,743 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
  281. [2012.08.18 12:27:38 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
  282. [2012.08.16 15:23:01 | 000,196,160 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
  283. [2012.08.16 14:03:20 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
  284. [2012.08.08 21:26:12 | 000,000,552 | ---- | M] () -- C:\Documents and Settings\SEMPRON 3000\Desktop\gromnet.lnk
  285. [2012.08.08 21:24:14 | 000,186,097 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
  286. [2012.08.08 21:22:52 | 000,000,211 | -HS- | M] () -- C:\boot.ini
  287. [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
  288. [10 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
  289.  
  290. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  291.  
  292. [2012.08.29 01:07:06 | 000,001,697 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk
  293. [2012.08.28 21:15:40 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
  294. [2012.08.28 20:50:21 | 000,000,701 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
  295. [2012.08.28 00:54:05 | 000,033,265 | ---- | C] () -- C:\Documents and Settings\SEMPRON 3000\Desktop\Russian_Royal_Family_1911_7.jpg
  296. [2012.08.28 00:52:40 | 000,087,314 | ---- | C] () -- C:\Documents and Settings\SEMPRON 3000\Desktop\ecf80ceb9cf83cf84cf81-acf83cf89cf84-ceb9cf83cf84.jpg
  297. [2012.08.28 00:50:29 | 000,102,439 | ---- | C] () -- C:\Documents and Settings\SEMPRON 3000\Desktop\168_sv_trojica_v.jpg
  298. [2012.08.28 00:48:27 | 000,050,300 | ---- | C] () -- C:\Documents and Settings\SEMPRON 3000\Desktop\Jovan krostanski.jpg
  299. [2012.08.21 17:57:00 | 000,000,761 | ---- | C] () -- C:\Documents and Settings\SEMPRON 3000\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
  300. [2012.08.21 17:57:00 | 000,000,749 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
  301. [2012.08.21 17:57:00 | 000,000,743 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
  302. [2012.08.08 21:26:12 | 000,000,552 | ---- | C] () -- C:\Documents and Settings\SEMPRON 3000\Desktop\gromnet.lnk
  303. [2012.08.08 21:22:50 | 000,001,640 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk
  304. [2012.07.03 14:30:40 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\rt2661.bin
  305. [2012.07.03 14:30:40 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\rt2561s.bin
  306. [2012.07.03 14:30:40 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\rt2561.bin
  307. [2012.06.13 23:59:39 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
  308. [2012.04.24 02:41:46 | 000,002,560 | ---- | C] () -- C:\WINDOWS\_MSRSTRT.EXE
  309. [2012.02.15 17:18:37 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
  310. [2011.09.02 18:27:17 | 000,040,960 | ---- | C] () -- C:\WINDOWS\p3xunist.exe
  311. [2011.09.02 18:27:16 | 000,003,099 | ---- | C] () -- C:\WINDOWS\TVP3XDrv.ini
  312. [2011.01.03 20:25:28 | 000,000,067 | ---- | C] () -- C:\WINDOWS\AoADVDRipper.INI
  313. [2011.01.03 20:25:22 | 000,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
  314. [2011.01.03 20:25:22 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
  315. [2010.11.13 03:15:17 | 000,000,135 | ---- | C] () -- C:\Documents and Settings\SEMPRON 3000\Local Settings\Application Data\fusioncache.dat
  316. [2010.10.08 23:31:19 | 000,000,023 | ---- | C] () -- C:\WINDOWS\BlendSettings.ini
  317. [2010.09.30 14:27:08 | 000,000,049 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
  318. [2010.09.28 16:49:50 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
  319. [2010.09.28 13:24:11 | 000,013,304 | ---- | C] () -- C:\WINDOWS\System32\drivers\BTNetFilter.sys
  320. [2010.09.28 13:24:11 | 000,011,604 | ---- | C] () -- C:\WINDOWS\System32\drivers\vbtenum.sys
  321. [2010.09.28 12:51:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
  322. [2010.09.28 12:45:28 | 000,000,024 | ---- | C] () -- C:\WINDOWS\ChessGen.ini
  323. [2010.09.28 00:36:52 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
  324. [2010.09.28 00:35:45 | 000,196,160 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
  325. [2010.09.27 23:28:45 | 000,028,672 | ---- | C] () -- C:\Documents and Settings\SEMPRON 3000\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  326. [2010.09.27 23:26:07 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
  327. [2010.09.27 23:17:19 | 000,111,104 | ---- | C] () -- C:\WINDOWS\System32\Uharc.exe
  328. [2010.09.27 23:17:19 | 000,069,632 | ---- | C] () -- C:\WINDOWS\System32\moveex.exe
  329. [2010.09.27 23:17:19 | 000,008,636 | ---- | C] () -- C:\WINDOWS\System32\modifype.exe
  330. [2010.09.27 23:06:29 | 000,000,092 | ---- | C] () -- C:\WINDOWS\CMISETUP.INI
  331. [2010.09.27 23:06:28 | 000,000,026 | ---- | C] () -- C:\WINDOWS\CMCDPLAY.INI
  332. [2010.09.27 23:06:27 | 000,000,723 | ---- | C] () -- C:\WINDOWS\Wininit.ini
  333. [2010.09.27 23:06:26 | 000,233,472 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.exe
  334. [2010.09.27 23:06:26 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\cmirmdrv.dll
  335. [2010.09.27 23:06:25 | 000,266,240 | ---- | C] () -- C:\WINDOWS\CMIUninstall.exe
  336. [2010.09.27 23:06:25 | 000,225,280 | ---- | C] () -- C:\WINDOWS\CmiRmRedundDir.exe
  337. [2010.09.27 23:06:25 | 000,028,672 | ---- | C] () -- C:\WINDOWS\CMIRmDriver.dll
  338. [2010.09.27 23:05:13 | 000,032,768 | ---- | C] () -- C:\WINDOWS\SIS_LIB.DLL
  339. [2010.09.27 23:05:13 | 000,028,672 | ---- | C] () -- C:\WINDOWS\htpatch.exe
  340. [2010.09.27 23:05:13 | 000,003,072 | ---- | C] () -- C:\WINDOWS\winio.sys
  341. [2010.09.27 23:04:15 | 000,000,747 | ---- | C] () -- C:\WINDOWS\wincmd.ini
  342. [2010.09.27 22:49:45 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
  343. [2010.09.27 22:43:18 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
  344.  
  345. [color=#E56717]========== Files - Unicode (All) ==========[/color]
  346. [2012.08.13 23:40:00 | 000,000,000 | ---D | M](C:\Documents and Settings\SEMPRON 3000\My Documents\??????????) -- C:\Documents and Settings\SEMPRON 3000\My Documents\Преузимања
  347. [2012.07.15 15:19:10 | 000,000,000 | ---D | C](C:\Documents and Settings\SEMPRON 3000\My Documents\??????????) -- C:\Documents and Settings\SEMPRON 3000\My Documents\Преузимања
  348. [2012.07.08 15:33:09 | 000,000,000 | ---D | M](C:\Documents and Settings\SEMPRON 3000\My Documents\???????) -- C:\Documents and Settings\SEMPRON 3000\My Documents\Пријеми
  349. [2010.09.28 12:51:29 | 000,000,000 | ---D | C](C:\Documents and Settings\SEMPRON 3000\My Documents\???????) -- C:\Documents and Settings\SEMPRON 3000\My Documents\Пријеми
  350.  
  351. [color=#E56717]========== Alternate Data Streams ==========[/color]
  352.  
  353. @Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:30FD0CBD
  354.  
  355. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!