SystemLook 30.07.11 by jpshortstuff Log created at 20:16 on 23/05/2013 by Bartek Administrator - Elevation successful ========== dir ========== C:\$Recycle.Bin - Parameters: "/s" ---Files--- None found. C:\$Recycle.Bin\S-1-5-21-368490323-1643295968-3035913019-1004 d--hs-- [14:38 23/05/2013] $I3I831Y.Txt --a---- 544 bytes [14:41 23/05/2013] [14:41 23/05/2013] $I6HL8XX.txt --a---- 544 bytes [14:41 23/05/2013] [14:41 23/05/2013] $ICNHO86.txt --a---- 544 bytes [14:41 23/05/2013] [14:41 23/05/2013] $IGFAZYP.txt --a---- 544 bytes [14:41 23/05/2013] [14:41 23/05/2013] $IGTPPXR.Txt --a---- 544 bytes [14:41 23/05/2013] [14:41 23/05/2013] $IMS4QCT.txt --a---- 544 bytes [14:41 23/05/2013] [14:41 23/05/2013] $ISOSASF.txt --a---- 544 bytes [14:41 23/05/2013] [14:41 23/05/2013] $IWEAKMN.txt --a---- 544 bytes [14:41 23/05/2013] [14:41 23/05/2013] $IX9XKQV.txt --a---- 544 bytes [14:41 23/05/2013] [14:41 23/05/2013] $R3I831Y.Txt --a---- 106722 bytes [12:44 23/05/2013] [12:44 23/05/2013] $R6HL8XX.txt --a---- 10556 bytes [12:46 23/05/2013] [12:46 23/05/2013] $RCNHO86.txt --a---- 5862 bytes [12:10 23/05/2013] [12:10 23/05/2013] $RGFAZYP.txt --a---- 7135 bytes [13:15 23/05/2013] [13:15 23/05/2013] $RGTPPXR.Txt --a---- 38342 bytes [12:45 23/05/2013] [12:45 23/05/2013] $RMS4QCT.txt --a---- 5018 bytes [12:17 23/05/2013] [12:17 23/05/2013] $RSOSASF.txt --a---- 14289 bytes [12:12 23/05/2013] [20:48 22/05/2013] $RWEAKMN.txt --a---- 242016 bytes [12:12 23/05/2013] [14:54 21/05/2013] $RX9XKQV.txt --a---- 268707 bytes [12:12 23/05/2013] [21:52 22/05/2013] desktop.ini --ahs-- 129 bytes [14:38 23/05/2013] [14:38 23/05/2013] ========== reg ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects] (No values found) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{3BF043EF-A974-49B3-8322-B853CF1E5EC5}] "AutoStart"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{68ddbb56-9d1d-4fd9-89c5-c0da2a625392}] "AutoStart"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{7007ACCF-3202-11D1-AAD2-00805FC1270E}] "AutoStart"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{7849596a-48ea-486e-8937-a2a3009f31a9}] "AutoStart"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{A1607060-5D4C-467a-B711-2B59A6F25957}] "AutoStart"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{AAA288BA-9A4C-45B0-95D7-94D524869DB5}] "AutoStart"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{DA67B8AD-E81B-4c70-9B91-B417B5E33527}] "AutoStart"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}] "AutoStart"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{EF4D1E1A-1C87-4AA8-8934-E68E4367468D}] "AutoStart"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{F20487CC-FC04-4B1E-863F-D9801796130B}] "AutoStart"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{fbeb8a05-beee-4442-804e-409d6c4515e9}] "AutoStart"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellServiceObjects\{FD6905CE-952F-41F1-9A6F-135D9C6622CC}] "AutoStart"="" -= EOF =-