API tools faq
paste
Advertisement
Guest User

OTL

a guest
Jun 18th, 2011
86
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 44.92 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 2011-06-18 10:36:39 - Run 1
  2. OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\Artur\Downloads
  3. Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
  4. Internet Explorer (Version = 7.0.6001.18000)
  5. Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd
  6.  
  7. 2,87 Gb Total Physical Memory | 1,57 Gb Available Physical Memory | 54,66% Memory free
  8. 5,95 Gb Paging File | 4,53 Gb Available in Paging File | 76,20% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
  12. Drive C: | 39,48 Gb Total Space | 11,68 Gb Free Space | 29,60% Space Free | Partition Type: NTFS
  13. Drive D: | 620,40 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
  14. Drive E: | 106,68 Gb Total Space | 65,00 Gb Free Space | 60,93% Space Free | Partition Type: NTFS
  15. Drive F: | 85,26 Gb Total Space | 62,44 Gb Free Space | 73,24% Space Free | Partition Type: NTFS
  16. Drive K: | 3,25 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
  17.  
  18. Computer Name: ARTUR-PC | User Name: Artur | Logged in as Administrator.
  19. Boot Mode: Normal | Scan Mode: All users
  20. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  21.  
  22. [color=#E56717]========== Processes (SafeList) ==========[/color]
  23.  
  24. PRC - [2011-06-18 10:34:03 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\Artur\Downloads\OTL.exe
  25. PRC - [2011-06-14 13:22:52 | 009,030,656 | ---- | M] (Creative Team S.A.) -- C:\Program Files\WapSter\WapSter AQQ\AQQ.exe
  26. PRC - [2011-05-14 13:50:12 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
  27. PRC - [2011-05-14 13:50:12 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
  28. PRC - [2011-04-14 18:59:13 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
  29. PRC - [2011-03-22 08:36:20 | 002,421,384 | ---- | M] (mobile concepts GmbH) -- C:\Program Files\S.A.D\CyberGhost VPN\CGVPNCliService.exe
  30. PRC - [2011-02-23 21:53:38 | 002,003,968 | ---- | M] () -- C:\Program Files\foobar2000\foobar2000.exe
  31. PRC - [2011-02-18 14:06:41 | 000,421,032 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
  32. PRC - [2011-02-14 10:39:07 | 000,539,304 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe
  33. PRC - [2011-02-14 10:39:07 | 000,339,624 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
  34. PRC - [2011-02-14 10:39:07 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
  35. PRC - [2011-01-13 12:28:44 | 000,377,152 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
  36. PRC - [2010-01-14 21:09:40 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
  37. PRC - [2009-01-26 16:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
  38. PRC - [2008-08-04 23:46:22 | 000,046,392 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\TOSHIBA Service Station\TMachInfo.exe
  39. PRC - [2008-07-18 21:39:30 | 000,083,312 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
  40. PRC - [2008-07-11 03:35:30 | 000,188,416 | ---- | M] (CyberLink) -- C:\Program Files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe
  41. PRC - [2008-07-11 02:58:40 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe
  42. PRC - [2008-05-01 05:41:12 | 000,815,104 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
  43. PRC - [2008-05-01 05:10:10 | 000,466,944 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
  44. PRC - [2008-04-24 22:03:12 | 000,430,080 | ---- | M] (TOSHIBA) -- C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
  45. PRC - [2008-04-11 20:57:14 | 000,124,264 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
  46. PRC - [2008-03-19 23:35:44 | 000,716,800 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
  47. PRC - [2008-02-06 23:52:52 | 000,431,456 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
  48. PRC - [2008-02-06 23:52:40 | 000,431,456 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
  49. PRC - [2008-01-21 04:24:24 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
  50. PRC - [2008-01-21 04:24:13 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
  51. PRC - [2007-12-14 04:52:00 | 000,143,360 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe
  52. PRC - [2007-12-04 03:03:52 | 000,126,976 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\SMARTLogService\TosIPCSrv.exe
  53. PRC - [2007-11-21 18:23:32 | 000,129,632 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\System32\TODDSrv.exe
  54. PRC - [2007-06-16 07:01:58 | 000,448,080 | ---- | M] (TOSHIBA Corporation) -- C:\Program Files\Toshiba\SmoothView\SmoothView.exe
  55. PRC - [2006-08-24 01:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
  56.  
  57.  
  58. [color=#E56717]========== Modules (SafeList) ==========[/color]
  59.  
  60. MOD - [2011-06-18 10:34:03 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\Artur\Downloads\OTL.exe
  61. MOD - [2008-01-21 04:23:44 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll
  62.  
  63.  
  64. [color=#E56717]========== Win32 Services (SafeList) ==========[/color]
  65.  
  66. SRV - File not found [Disabled | Stopped] -- -- (Desura Install Service)
  67. SRV - [2011-05-28 13:54:40 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
  68. SRV - [2011-05-14 13:50:12 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
  69. SRV - [2011-05-14 13:50:12 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
  70. SRV - [2011-03-22 08:36:20 | 002,421,384 | ---- | M] (mobile concepts GmbH) [On_Demand | Running] -- C:\Program Files\S.A.D\CyberGhost VPN\CGVPNCliService.exe -- (CGVPNCliSrvc)
  71. SRV - [2011-02-25 16:04:56 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
  72. SRV - [2011-02-18 14:06:41 | 000,421,032 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE -- (AntiVirWebService)
  73. SRV - [2011-02-14 10:39:07 | 000,539,304 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avfwsvc.exe -- (AntiVirFirewallService)
  74. SRV - [2011-02-14 10:39:07 | 000,339,624 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avmailc.exe -- (AntiVirMailService)
  75. SRV - [2009-01-26 16:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Running] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
  76. SRV - [2008-08-04 23:46:22 | 000,046,392 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\Toshiba\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
  77. SRV - [2008-07-18 21:39:30 | 000,083,312 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe -- (TNaviSrv)
  78. SRV - [2008-07-11 02:58:40 | 000,040,960 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)
  79. SRV - [2008-05-01 05:41:12 | 000,815,104 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
  80. SRV - [2008-05-01 05:10:10 | 000,466,944 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
  81. SRV - [2008-04-11 20:57:14 | 000,124,264 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
  82. SRV - [2008-02-06 23:52:40 | 000,431,456 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe -- (TosCoSrv)
  83. SRV - [2008-01-21 04:24:45 | 000,376,832 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- winhttp.dll -- (WinHttpAutoProxySvc)
  84. SRV - [2008-01-21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
  85. SRV - [2007-12-04 03:03:52 | 000,126,976 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe -- (TOSHIBA SMART Log Service)
  86. SRV - [2007-11-21 18:23:32 | 000,129,632 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\System32\TODDSrv.exe -- (TODDSrv)
  87. SRV - [2006-08-24 01:39:48 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
  88.  
  89.  
  90. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  91.  
  92. DRV - File not found [Kernel | On_Demand | Running] -- -- (GGSAFERDriver)
  93. DRV - [2011-05-14 13:50:12 | 000,137,656 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
  94. DRV - [2011-03-26 10:59:53 | 000,234,016 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
  95. DRV - [2011-03-26 10:59:10 | 006,628,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Intel(R)
  96. DRV - [2011-03-26 10:52:17 | 000,068,608 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
  97. DRV - [2011-03-25 07:34:10 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
  98. DRV - [2011-02-14 10:39:34 | 000,102,856 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avfwot.sys -- (avfwot)
  99. DRV - [2011-02-14 10:39:34 | 000,061,960 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
  100. DRV - [2010-07-15 09:44:20 | 000,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\epmntdrv.sys -- (epmntdrv)
  101. DRV - [2010-07-15 09:44:20 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\EuGdiDrv.sys -- (EuGdiDrv)
  102. DRV - [2010-06-17 14:23:06 | 000,079,432 | ---- | M] (Avira GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\avfwim.sys -- (avfwim)
  103. DRV - [2010-06-17 14:23:04 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
  104. DRV - [2010-02-25 16:51:02 | 000,025,216 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tap0901.sys -- (tap0901)
  105. DRV - [2008-07-18 19:52:16 | 000,279,376 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\tos_sps32.sys -- (tos_sps32)
  106. DRV - [2008-02-16 03:01:18 | 000,046,592 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
  107. DRV - [2007-12-14 12:53:24 | 000,024,200 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tdcmdpst.sys -- (tdcmdpst)
  108. DRV - [2007-11-10 00:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\TVALZ_O.SYS -- (TVALZ)
  109. DRV - [2007-07-30 20:54:02 | 000,038,400 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
  110. DRV - [2006-11-29 01:11:00 | 001,161,888 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
  111. DRV - [2006-11-20 23:11:14 | 000,007,168 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\FwLnk.sys -- (FwLnk)
  112. DRV - [2006-11-09 08:32:00 | 000,219,264 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\kr10i.sys -- (KR10I)
  113. DRV - [2006-11-09 08:31:00 | 000,211,072 | ---- | M] (TOSHIBA CORPORATION) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\kr10n.sys -- (KR10N)
  114. DRV - [2006-10-24 01:32:20 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tosrfec.sys -- (tosrfec)
  115. DRV - [2006-07-24 17:05:00 | 000,005,632 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\StarOpen.sys -- (StarOpen)
  116.  
  117.  
  118. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  119.  
  120.  
  121. [color=#E56717]========== Internet Explorer ==========[/color]
  122.  
  123. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
  124. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
  125.  
  126.  
  127. IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  128.  
  129. IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  130.  
  131.  
  132.  
  133. IE - HKU\S-1-5-21-1878759303-2680575527-101672516-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
  134. IE - HKU\S-1-5-21-1878759303-2680575527-101672516-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.toshibadirect.com/dpdstart
  135. IE - HKU\S-1-5-21-1878759303-2680575527-101672516-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  136.  
  137. [color=#E56717]========== FireFox ==========[/color]
  138.  
  139. FF - prefs.js..browser.startup.homepage: "pajacyk.pl/zlicz.php"
  140. FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
  141. FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
  142. FF - prefs.js..extensions.enabledItems: cacaoweb@cacaoweb.org:1.0.12
  143.  
  144. FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-05-05 14:49:10 | 000,000,000 | ---D | M]
  145. FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-06-16 21:22:26 | 000,000,000 | ---D | M]
  146. FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.10\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2011-05-17 17:05:27 | 000,000,000 | ---D | M]
  147. FF - HKLM\software\mozilla\Mozilla Thunderbird 3.1.10\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
  148.  
  149. [2011-03-03 19:35:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Artur\AppData\Roaming\mozilla\Extensions
  150. [2011-03-03 19:35:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Artur\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
  151. [2011-05-06 15:06:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Artur\AppData\Roaming\mozilla\Firefox\Profiles\ik1ukhp6.default\extensions
  152. [2011-04-16 14:58:12 | 000,000,000 | ---D | M] (cacaoweb) -- C:\Users\Artur\AppData\Roaming\mozilla\Firefox\Profiles\ik1ukhp6.default\extensions\cacaoweb@cacaoweb.org
  153. [2011-05-05 19:01:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
  154. [2011-05-05 19:01:04 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
  155. [2011-02-26 20:33:41 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
  156. [2011-03-12 12:49:58 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
  157. File not found (No name found) --
  158. [2011-04-14 18:59:14 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
  159. [2010-08-24 11:31:30 | 000,773,120 | ---- | M] (BitComet) -- C:\Program Files\Mozilla Firefox\plugins\npBitCometAgent.dll
  160. [2011-02-02 22:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
  161. [2010-01-01 10:00:00 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
  162. [2010-01-01 10:00:00 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
  163. [2010-01-01 10:00:00 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
  164. [2010-01-01 10:00:00 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
  165. [2010-01-01 10:00:00 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
  166. [2010-01-01 10:00:00 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
  167.  
  168. O1 HOSTS File: ([2011-05-10 18:18:04 | 000,430,119 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
  169. O1 - Hosts: 127.0.0.1 localhost
  170. O1 - Hosts: ::1 localhost
  171. O1 - Hosts: 127.0.0.1 www.007guard.com
  172. O1 - Hosts: 127.0.0.1 007guard.com
  173. O1 - Hosts: 127.0.0.1 008i.com
  174. O1 - Hosts: 127.0.0.1 www.008k.com
  175. O1 - Hosts: 127.0.0.1 008k.com
  176. O1 - Hosts: 127.0.0.1 www.00hq.com
  177. O1 - Hosts: 127.0.0.1 00hq.com
  178. O1 - Hosts: 127.0.0.1 010402.com
  179. O1 - Hosts: 127.0.0.1 www.032439.com
  180. O1 - Hosts: 127.0.0.1 032439.com
  181. O1 - Hosts: 127.0.0.1 www.0scan.com
  182. O1 - Hosts: 127.0.0.1 0scan.com
  183. O1 - Hosts: 127.0.0.1 1000gratisproben.com
  184. O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
  185. O1 - Hosts: 127.0.0.1 1001namen.com
  186. O1 - Hosts: 127.0.0.1 www.1001namen.com
  187. O1 - Hosts: 127.0.0.1 100888290cs.com
  188. O1 - Hosts: 127.0.0.1 www.100888290cs.com
  189. O1 - Hosts: 127.0.0.1 www.100sexlinks.com
  190. O1 - Hosts: 127.0.0.1 100sexlinks.com
  191. O1 - Hosts: 127.0.0.1 10sek.com
  192. O1 - Hosts: 127.0.0.1 www.10sek.com
  193. O1 - Hosts: 127.0.0.1 www.1-2005-search.com
  194. O1 - Hosts: 14808 more lines...
  195. O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
  196. O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
  197. O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - No CLSID value found.
  198. O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
  199. O4 - HKLM..\Run: [00TCrdMain] C:\Program Files\Toshiba\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
  200. O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
  201. O4 - HKLM..\Run: [cfFncEnabler.exe] File not found
  202. O4 - HKLM..\Run: [CLMLServer] C:\Program Files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe (CyberLink)
  203. O4 - HKLM..\Run: [HSON] C:\Program Files\Toshiba\TBS\HSON.exe (TOSHIBA Corporation)
  204. O4 - HKLM..\Run: [JOM Start] C:\Program Files\JOM\JOM.exe ()
  205. O4 - HKLM..\Run: [NDSTray.exe] File not found
  206. O4 - HKLM..\Run: [PCMAgent] C:\Program Files\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe (CyberLink Corp.)
  207. O4 - HKLM..\Run: [SmoothView] C:\Program Files\Toshiba\SmoothView\SmoothView.exe (TOSHIBA Corporation)
  208. O4 - HKLM..\Run: [ToshibaServiceStation] C:\Program Files\TOSHIBA\TOSHIBA Service Station\TSS.exe (TOSHIBA Corporation)
  209. O4 - HKLM..\Run: [TPwrMain] C:\Program Files\Toshiba\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
  210. O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
  211. O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
  212. O4 - HKU\S-1-5-21-1878759303-2680575527-101672516-1000..\Run: [AQQ] C:\Program Files\WapSter\WapSter AQQ\AQQ.exe (Creative Team S.A.)
  213. O4 - HKU\S-1-5-21-1878759303-2680575527-101672516-1000..\Run: [DAEMON Tools Pro Agent] C:\Program Files\DAEMON Tools Pro\DTAgent.exe (DT Soft Ltd)
  214. O4 - HKU\S-1-5-21-1878759303-2680575527-101672516-1000..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
  215. O4 - HKU\S-1-5-21-1878759303-2680575527-101672516-1000..\Run: [TOSCDSPD] File not found
  216. O4 - HKU\S-1-5-21-1878759303-2680575527-101672516-1000..\Run: [uTorrent] E:\Program Files\Torrent\uTorrent.exe (BitTorrent, Inc.)
  217. O4 - HKU\S-1-5-21-1878759303-2680575527-101672516-1000..\RunOnce: [FlashPlayerUpdate] C:\Windows\System32\Macromed\Flash\FlashUtil10s_Plugin.exe (Adobe Systems, Inc.)
  218. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
  219. O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
  220. O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
  221. O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
  222. O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH)
  223. O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH)
  224. O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Program Files\Avira\AntiVir Desktop\avsda.dll (Avira GmbH)
  225. O13 - gopher Prefix: missing
  226. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
  227. O16 - DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab (Java Plug-in 1.6.0_06)
  228. O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_22)
  229. O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
  230. O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
  231. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
  232. O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
  233. O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
  234. O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
  235. O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
  236. O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
  237. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  238. O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - igfxdev.dll (Intel Corporation)
  239. O24 - Desktop WallPaper: C:\Users\Artur\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
  240. O24 - Desktop BackupWallPaper: C:\Users\Artur\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
  241. O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
  242. O32 - HKLM CDRom: AutoRun - 1
  243. O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
  244. O32 - AutoRun File - [1998-12-13 09:43:32 | 000,000,040 | R--- | M] () - D:\AUTORUN.INF -- [ CDFS ]
  245. O32 - AutoRun File - [2008-10-15 17:30:14 | 000,000,041 | R--- | M] () - K:\Autorun.inf -- [ CDFS ]
  246. O33 - MountPoints2\{1ad93dae-408a-11e0-81eb-806e6f6e6963}\Shell - "" = AutoRun
  247. O33 - MountPoints2\{1ad93dae-408a-11e0-81eb-806e6f6e6963}\Shell\AutoRun\command - "" = D:\SETUP.EXE -- [1998-12-01 07:04:40 | 000,025,600 | R--- | M] ()
  248. O33 - MountPoints2\{57d2a3eb-57da-11e0-b6f6-001e3363fc0c}\Shell - "" = AutoRun
  249. O33 - MountPoints2\{57d2a3eb-57da-11e0-b6f6-001e3363fc0c}\Shell\AutoRun\command - "" = K:\Setup.exe -- [2008-10-15 17:28:32 | 001,564,672 | R--- | M] (Blizzard Entertainment )
  250. O34 - HKLM BootExecute: (autocheck autochk *) - File not found
  251. O35 - HKLM\..comfile [open] -- "%1" %*
  252. O35 - HKLM\..exefile [open] -- "%1" %*
  253. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  254. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  255.  
  256. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  257.  
  258. [2011-06-17 10:02:21 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BSQL Hacker
  259. [2011-06-17 10:02:21 | 000,000,000 | ---D | C] -- C:\Program Files\BSQL Hacker
  260. [2011-06-17 09:49:29 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Local\HackerzHub_&_Hac.kers.ME
  261. [2011-06-17 08:02:30 | 000,000,000 | ---D | C] -- C:\Users\Artur\l
  262. [2011-06-17 08:00:09 | 000,000,000 | ---D | C] -- C:\Users\Artur\Documents\Gygan Downloads
  263. [2011-06-17 07:59:52 | 000,000,000 | ---D | C] -- C:\Program Files\Gygan BETA
  264. [2011-06-16 21:21:58 | 000,000,000 | -HSD | C] -- C:\Config.Msi
  265. [2011-06-16 21:21:58 | 000,000,000 | -HSD | C] -- \Config.Msi
  266. [2011-06-16 19:54:05 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Garena
  267. [2011-06-16 19:54:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garena
  268. [2011-06-16 19:53:58 | 000,000,000 | ---D | C] -- C:\Program Files\Garena
  269. [2011-06-15 14:05:12 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Irssi Console IRC Client
  270. [2011-06-15 14:05:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Irssi Console IRC Client
  271. [2011-06-15 14:05:12 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Roaming\Irssi
  272. [2011-06-15 14:05:12 | 000,000,000 | ---D | C] -- C:\Program Files\Irssi
  273. [2011-06-14 18:09:53 | 000,094,208 | ---- | C] (Blizzard Entertainment) -- C:\Windows\ScUnin.exe
  274. [2011-06-14 18:09:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Starcraft
  275. [2011-06-14 17:36:25 | 000,000,000 | ---D | C] -- C:\Windows\System32\JIIVVP
  276. [2011-06-14 16:21:41 | 000,000,000 | ---D | C] -- C:\Users\Artur\Desktop\wrzucac na pendrive
  277. [2011-06-14 15:21:40 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Roaming\EurekaLog
  278. [2011-06-14 07:40:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ardamax Keylogger 3.8
  279. [2011-06-13 21:39:14 | 000,000,000 | -HSD | C] -- C:\Windows\System32\VMADPD
  280. [2011-06-13 17:49:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\IAYRVF
  281. [2011-06-13 17:33:40 | 000,000,000 | ---D | C] -- C:\Program Files\JOM
  282. [2011-06-11 10:04:18 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Roaming\TickTack
  283. [2011-06-10 20:13:04 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
  284. [2011-06-10 20:13:04 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
  285. [2011-06-10 20:13:04 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
  286. [2011-06-10 20:12:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\S.A.D
  287. [2011-06-10 20:12:08 | 000,025,216 | ---- | C] (The OpenVPN Project) -- C:\Windows\System32\drivers\tap0901.sys
  288. [2011-06-10 20:12:05 | 000,000,000 | ---D | C] -- C:\Program Files\S.A.D
  289. [2011-06-09 18:28:01 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Roaming\FileZilla
  290. [2011-06-09 18:27:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
  291. [2011-06-09 18:27:56 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client
  292. [2011-06-06 21:26:02 | 000,000,000 | ---D | C] -- C:\Users\Artur\Desktop\Tools
  293. [2011-06-05 21:14:38 | 024,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imageres.dll
  294. [2011-06-05 21:05:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Stardock
  295. [2011-06-05 21:05:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
  296. [2011-06-05 21:05:50 | 000,000,000 | ---D | C] -- C:\Program Files\Stardock
  297. [2011-05-29 22:21:25 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Roaming\OpenOffice.org
  298. [2011-05-29 22:20:36 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.3
  299. [2011-05-29 22:19:36 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3
  300. [2011-05-28 14:14:04 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
  301. [2011-05-28 13:59:11 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe Media Player
  302. [2011-05-28 13:59:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
  303. [2011-05-28 13:54:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
  304. [2011-05-27 21:48:12 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Roaming\.minecraft
  305. [2011-05-23 17:09:59 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Roaming\TS3Client
  306. [2011-05-23 17:09:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
  307. [2011-05-23 17:09:03 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client
  308. [2011-05-20 18:17:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Havij 1.14 Pro
  309. [2011-05-20 18:17:50 | 000,000,000 | ---D | C] -- C:\Program Files\Havij 1.14 Pro
  310. [2011-05-20 15:15:57 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
  311. [2011-05-19 14:37:04 | 000,000,000 | ---D | C] -- C:\Windows\XSxS
  312. [2011-05-19 14:37:04 | 000,000,000 | ---D | C] -- C:\Users\Artur\AppData\Local\Xenocode
  313. [2011-05-19 14:37:04 | 000,000,000 | ---D | C] -- C:\Program Files\Xenocode
  314. [2011-02-11 12:40:40 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
  315. [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
  316.  
  317. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  318.  
  319. [2011-06-18 10:11:40 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
  320. [2011-06-18 10:11:39 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  321. [2011-06-18 10:11:39 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
  322. [2011-06-17 13:18:53 | 000,045,202 | ---- | M] () -- C:\Users\Artur\AppData\Roaming\room_v3.dat
  323. [2011-06-17 09:56:44 | 000,010,240 | ---- | M] () -- C:\Users\Artur\Documents\Defacement-Index.html
  324. [2011-06-16 21:22:26 | 000,001,858 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 8.lnk
  325. [2011-06-16 21:19:03 | 000,631,636 | ---- | M] () -- C:\Windows\System32\perfh009.dat
  326. [2011-06-16 21:19:03 | 000,118,262 | ---- | M] () -- C:\Windows\System32\perfc009.dat
  327. [2011-06-16 21:12:35 | 3082,813,440 | -HS- | M] () -- C:\hiberfil.sys
  328. [2011-06-16 19:54:05 | 000,000,747 | ---- | M] () -- C:\Users\Artur\Desktop\Garena.lnk
  329. [2011-06-14 18:18:28 | 000,094,208 | ---- | M] (Blizzard Entertainment) -- C:\Windows\ScUnin.exe
  330. [2011-06-14 18:18:28 | 000,041,527 | ---- | M] () -- C:\Windows\scunin.dat
  331. [2011-06-14 18:18:28 | 000,000,967 | ---- | M] () -- C:\Windows\ScUnin.pif
  332. [2011-06-14 18:18:28 | 000,000,859 | ---- | M] () -- C:\Users\Artur\Desktop\Starcraft - Brood War.lnk
  333. [2011-06-14 18:05:45 | 000,000,987 | ---- | M] () -- C:\Users\Artur\Desktop\GameRanger.lnk
  334. [2011-06-14 18:05:45 | 000,000,967 | ---- | M] () -- C:\Users\Artur\Application Data\Microsoft\Internet Explorer\Quick Launch\GameRanger.lnk
  335. [2011-06-14 16:52:27 | 000,000,626 | ---- | M] () -- C:\Users\Artur\Desktop\HackTheGame - Shortcut.lnk
  336. [2011-06-14 16:06:33 | 000,000,062 | RH-- | M] () -- C:\Users\Artur\Desktop\autorun.ini
  337. [2011-06-10 20:12:10 | 000,000,935 | ---- | M] () -- C:\Users\Public\Desktop\CyberGhost VPN.lnk
  338. [2011-06-10 19:52:59 | 000,000,104 | ---- | M] () -- C:\Users\Artur\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet - Shortcut.lnk
  339. [2011-06-10 19:24:50 | 000,000,811 | ---- | M] () -- C:\Windows\WVS_InstDBLogFile.csv
  340. [2011-06-10 19:23:56 | 000,000,016 | ---- | M] () -- C:\Windows\System32\ptlx55.dat.{5728B11F-B697-47AA-9C1B-8ECB545B5193}
  341. [2011-06-09 15:10:41 | 000,005,632 | ---- | M] () -- C:\Users\Artur\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  342. [2011-06-08 20:48:53 | 000,666,495 | ---- | M] () -- C:\Users\Artur\Desktop\quadra.jpg
  343. [2011-06-06 16:39:42 | 000,002,565 | ---- | M] () -- C:\Users\Artur\Desktop\HiJackThis.lnk
  344. [2011-06-06 14:33:42 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
  345. [2011-06-05 21:14:38 | 024,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imageres.dll
  346. [2011-05-30 18:18:23 | 002,322,560 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
  347. [2011-05-29 22:20:36 | 000,001,023 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.3.lnk
  348. [2011-05-28 14:13:52 | 000,000,803 | ---- | M] () -- C:\Users\Artur\Desktop\Photoshop - Shortcut.lnk
  349. [2011-05-27 21:48:08 | 000,270,142 | ---- | M] () -- C:\Users\Artur\Desktop\Minecraft.exe
  350. [2011-05-23 17:09:08 | 000,000,930 | ---- | M] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
  351. [2011-05-21 10:21:51 | 278,133,955 | ---- | M] () -- C:\Windows\MEMORY.DMP
  352. [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
  353.  
  354. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  355.  
  356. [2011-06-17 09:50:00 | 000,010,240 | ---- | C] () -- C:\Users\Artur\Documents\Defacement-Index.html
  357. [2011-06-16 21:22:26 | 000,001,858 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 8.lnk
  358. [2011-06-16 21:22:26 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 8.lnk
  359. [2011-06-16 21:10:23 | 000,045,202 | ---- | C] () -- C:\Users\Artur\AppData\Roaming\room_v3.dat
  360. [2011-06-16 19:54:05 | 000,000,747 | ---- | C] () -- C:\Users\Artur\Desktop\Garena.lnk
  361. [2011-06-14 18:18:28 | 000,000,859 | ---- | C] () -- C:\Users\Artur\Desktop\Starcraft - Brood War.lnk
  362. [2011-06-14 18:09:53 | 000,041,527 | ---- | C] () -- C:\Windows\scunin.dat
  363. [2011-06-14 18:09:53 | 000,000,967 | ---- | C] () -- C:\Windows\ScUnin.pif
  364. [2011-06-14 18:05:45 | 000,000,987 | ---- | C] () -- C:\Users\Artur\Desktop\GameRanger.lnk
  365. [2011-06-14 18:05:45 | 000,000,973 | ---- | C] () -- C:\Users\Artur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameRanger.lnk
  366. [2011-06-14 18:05:45 | 000,000,967 | ---- | C] () -- C:\Users\Artur\Application Data\Microsoft\Internet Explorer\Quick Launch\GameRanger.lnk
  367. [2011-06-14 16:52:27 | 000,000,626 | ---- | C] () -- C:\Users\Artur\Desktop\HackTheGame - Shortcut.lnk
  368. [2011-06-14 16:06:33 | 000,000,062 | RH-- | C] () -- C:\Users\Artur\Desktop\autorun.ini
  369. [2011-06-10 20:12:10 | 000,000,935 | ---- | C] () -- C:\Users\Public\Desktop\CyberGhost VPN.lnk
  370. [2011-06-10 19:52:59 | 000,000,104 | ---- | C] () -- C:\Users\Artur\Application Data\Microsoft\Internet Explorer\Quick Launch\Internet - Shortcut.lnk
  371. [2011-06-10 19:23:56 | 000,000,811 | ---- | C] () -- C:\Windows\WVS_InstDBLogFile.csv
  372. [2011-06-10 19:23:56 | 000,000,016 | ---- | C] () -- C:\Windows\System32\ptlx55.dat.{5728B11F-B697-47AA-9C1B-8ECB545B5193}
  373. [2011-06-08 20:48:53 | 000,666,495 | ---- | C] () -- C:\Users\Artur\Desktop\quadra.jpg
  374. [2011-05-29 22:20:36 | 000,001,023 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.3.lnk
  375. [2011-05-28 14:13:54 | 000,000,803 | ---- | C] () -- C:\Users\Artur\Desktop\Photoshop - Shortcut.lnk
  376. [2011-05-28 14:01:26 | 000,000,773 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS4.lnk
  377. [2011-05-28 14:00:41 | 000,000,747 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS4.lnk
  378. [2011-05-28 14:00:07 | 000,001,264 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Drive CS4.lnk
  379. [2011-05-28 13:58:21 | 000,000,810 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS4.lnk
  380. [2011-05-28 13:55:24 | 000,000,867 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS4.lnk
  381. [2011-05-28 13:55:08 | 000,001,239 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS4.lnk
  382. [2011-05-23 17:09:08 | 000,000,930 | ---- | C] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
  383. [2011-05-23 16:45:16 | 000,270,142 | ---- | C] () -- C:\Users\Artur\Desktop\Minecraft.exe
  384. [2011-05-21 10:21:15 | 278,133,955 | ---- | C] () -- C:\Windows\MEMORY.DMP
  385. [2011-05-18 15:20:29 | 000,000,000 | ---- | C] () -- \ŰileZill§ť±eÁentÁe± e±ÁÁxml
  386. [2011-05-18 15:20:29 | 000,000,000 | ---- | C] () -- \FiąeZillaŃsi‡emanage˙.xml
  387. [2011-05-13 20:28:45 | 000,150,480 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
  388. [2011-05-07 08:20:45 | 000,038,332 | ---- | C] () -- C:\Windows\DIIUnin.dat
  389. [2011-05-05 14:48:35 | 000,000,064 | ---- | C] () -- \pwsafe.key
  390. [2011-04-12 13:21:50 | 000,000,552 | ---- | C] () -- C:\Users\Artur\AppData\Local\d3d8caps.dat
  391. [2011-04-01 20:28:48 | 000,005,632 | ---- | C] () -- C:\Users\Artur\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  392. [2011-03-26 11:24:57 | 000,140,288 | ---- | C] () -- C:\Windows\System32\igfxtvcx.dll
  393. [2011-03-26 11:24:32 | 3082,813,440 | -HS- | C] () --
  394. [2011-03-26 11:18:11 | 000,006,756 | ---- | C] () -- C:\Users\Artur\AppData\Local\d3d9caps.dat
  395. [2011-03-26 11:14:14 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
  396. [2011-03-26 11:11:41 | 000,000,151 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config
  397. [2011-03-25 07:17:50 | 000,000,000 | ---- | C] () -- C:\Windows\ToDisc.INI
  398. [2011-03-03 19:35:04 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
  399. [2011-02-26 21:37:13 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
  400. [2011-02-25 15:20:50 | 000,014,848 | ---- | C] () -- C:\Windows\System32\EuEpmGdi.dll
  401. [2011-02-25 15:20:49 | 002,336,384 | ---- | C] () -- C:\Windows\System32\BootMan.exe
  402. [2011-02-25 15:20:49 | 000,086,408 | ---- | C] () -- C:\Windows\System32\setupempdrv03.exe
  403. [2011-02-25 15:20:49 | 000,014,216 | ---- | C] () -- C:\Windows\System32\epmntdrv.sys
  404. [2011-02-25 15:20:49 | 000,008,456 | ---- | C] () -- C:\Windows\System32\EuGdiDrv.sys
  405. [2011-02-25 05:15:10 | 000,000,006 | RHS- | C] () -- C:\Windows\System32\drivers\taishop.sys
  406. [2011-02-25 04:56:40 | 000,128,113 | ---- | C] () -- C:\Windows\System32\csellang.ini
  407. [2011-02-25 04:56:40 | 000,045,056 | ---- | C] () -- C:\Windows\System32\csellang.dll
  408. [2011-02-25 04:56:40 | 000,010,150 | ---- | C] () -- C:\Windows\System32\tosmreg.ini
  409. [2011-02-25 04:56:40 | 000,007,671 | ---- | C] () -- C:\Windows\System32\cseltbl.ini
  410. [2011-02-25 04:38:33 | 000,000,852 | ---- | C] () -- C:\Windows\System32\drivers\RTKHDRC1.dat
  411. [2011-02-25 04:38:33 | 000,000,852 | ---- | C] () -- C:\Windows\System32\drivers\RTKHDRC0.dat
  412. [2011-02-25 04:38:33 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX1.dat
  413. [2011-02-25 04:38:33 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat
  414. [2011-02-25 04:38:33 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ1.dat
  415. [2011-02-25 04:38:33 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ0.dat
  416. [2011-02-25 04:15:47 | 3396,612,096 | -HS- | C] () --
  417. [2011-02-24 05:15:11 | 000,000,016 | RHS- | C] () -- C:\Windows\System32\drivers\fbd.sys
  418. [2011-02-11 13:10:52 | 000,439,308 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin
  419. [2011-02-11 13:10:50 | 000,982,240 | ---- | C] () -- C:\Windows\System32\igkrng500.bin
  420. [2011-02-11 13:10:50 | 000,092,356 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin
  421. [2008-08-14 21:48:20 | 000,000,000 | ---- | C] () -- C:\Windows\NDSTray.INI
  422. [2008-08-14 21:28:30 | 000,204,800 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll
  423. [2008-08-14 21:28:30 | 000,200,704 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll
  424. [2008-08-14 21:28:30 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll
  425. [2008-08-14 21:28:30 | 000,192,512 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll
  426. [2008-08-14 21:28:30 | 000,188,416 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll
  427. [2008-08-14 21:28:30 | 000,020,480 | ---- | C] () -- C:\Windows\System32\IVIresize.dll
  428. [2008-08-14 21:02:18 | 000,257,053 | ---- | C] () -- C:\Windows\WOLSET.exe
  429. [2008-08-14 21:02:02 | 000,008,192 | R-S- | C] () -- \BOOTSECT.BAK
  430. [2008-08-14 21:02:00 | 000,333,203 | RHS- | C] () -- \bootmgr
  431. [2008-06-13 04:59:22 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1502.dll
  432. [2008-01-21 04:24:14 | 000,100,043 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
  433. [2007-12-22 01:46:32 | 000,118,784 | ---- | C] () -- C:\Windows\System32\TosBtAcc.dll
  434. [2006-11-02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
  435. [2006-11-02 14:47:37 | 002,322,560 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
  436. [2006-11-02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
  437. [2006-11-02 12:33:01 | 000,631,636 | ---- | C] () -- C:\Windows\System32\perfh009.dat
  438. [2006-11-02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
  439. [2006-11-02 12:33:01 | 000,118,262 | ---- | C] () -- C:\Windows\System32\perfc009.dat
  440. [2006-11-02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
  441. [2006-11-02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
  442. [2006-11-02 12:23:09 | 000,000,024 | ---- | C] () -- \autoexec.bat
  443. [2006-11-02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
  444. [2006-11-02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
  445. [2006-11-02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
  446. [2006-11-02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
  447. [2006-11-02 09:22:43 | 000,018,271 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
  448. [2006-11-02 08:25:08 | 000,000,010 | ---- | C] () -- \config.sys
  449. [2006-03-09 18:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
  450. [2005-07-23 06:30:18 | 000,065,536 | ---- | C] () -- C:\Windows\System32\TosCommAPI.dll
  451.  
  452. [color=#E56717]========== LOP Check ==========[/color]
  453.  
  454. [2011-06-17 16:58:49 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\.minecraft
  455. [2011-05-06 19:29:42 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\AutoPowerOn
  456. [2011-05-06 15:10:10 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\BitComet
  457. [2011-06-06 15:26:29 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\cacaoweb
  458. [2011-03-25 07:35:17 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\DAEMON Tools Pro
  459. [2011-06-14 15:21:42 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\EurekaLog
  460. [2011-06-16 21:23:53 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\FileZilla
  461. [2011-06-18 10:28:58 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\foobar2000
  462. [2011-06-14 18:05:45 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\GameRanger
  463. [2011-03-30 19:37:13 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\ImgBurn
  464. [2011-02-26 10:53:28 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\IrfanView
  465. [2011-06-15 14:05:12 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\Irssi
  466. [2011-05-05 14:48:48 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\KeePass
  467. [2011-02-25 18:59:12 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\LolClient
  468. [2011-04-28 18:56:42 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\Moje pliki Bitwy o Śródziemie™ II
  469. [2011-05-29 22:21:25 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\OpenOffice.org
  470. [2011-02-24 22:09:50 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\Qrix
  471. [2011-04-28 15:05:59 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\Samsung
  472. [2011-03-03 19:35:04 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\Thunderbird
  473. [2011-06-11 10:04:19 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\TickTack
  474. [2011-06-09 15:03:34 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\Toshiba
  475. [2011-05-23 17:18:34 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\TS3Client
  476. [2011-06-16 21:15:21 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\uTorrent
  477. [2011-02-25 15:08:53 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\WinBatch
  478. [2011-04-12 11:04:53 | 000,000,000 | ---D | M] -- C:\Users\Artur\AppData\Roaming\WinMount
  479. [2011-06-16 21:11:32 | 000,019,926 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
  480.  
  481. [color=#E56717]========== Purity Check ==========[/color]
  482.  
  483.  
  484.  
  485. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!