OTL logfile created on: 2011-05-27 20:47:47 - Run 2 OTL by OldTimer - Version 3.2.23.0 Folder = C:\Users\Alano\Desktop Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polen | Language: PLK | Date Format: yyyy-MM-dd 3,12 Gb Total Physical Memory | 1,80 Gb Available Physical Memory | 57,77% Memory free 6,46 Gb Paging File | 5,17 Gb Available in Paging File | 80,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 154,33 Gb Total Space | 49,59 Gb Free Space | 32,13% Space Free | Partition Type: NTFS Drive E: | 97,66 Gb Total Space | 49,58 Gb Free Space | 50,76% Space Free | Partition Type: NTFS Drive F: | 204,00 Gb Total Space | 23,44 Gb Free Space | 11,49% Space Free | Partition Type: NTFS Computer Name: ALANO-PC | User Name: Alano | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-05-27 13:30:52 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Alano\Desktop\OTL.exe PRC - [2011-04-18 17:40:08 | 002,334,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Programme\AVG\AVG10\avgtray.exe PRC - [2011-04-18 17:39:42 | 007,398,752 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Programme\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe PRC - [2011-04-14 18:59:13 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Programme\Mozilla Firefox\firefox.exe PRC - [2011-04-14 05:36:42 | 001,080,672 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Programme\AVG\AVG10\avgnsx.exe PRC - [2011-03-28 03:00:52 | 000,351,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Programme\AVG\AVG10\avgcsrvx.exe PRC - [2011-03-24 08:11:25 | 000,167,936 | ---- | M] (Applian Technologies, Inc.) -- E:\##Programme\FLVSrvc.exe PRC - [2011-03-16 16:05:14 | 000,656,736 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Programme\AVG\AVG10\avgchsvx.exe PRC - [2011-03-09 19:24:44 | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Programme\AVG\AVG10\avgfws.exe PRC - [2011-03-02 02:08:46 | 000,204,800 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\Alano\AppData\Local\Temp\RtkBtMnt.exe PRC - [2011-02-10 07:55:18 | 001,148,256 | ---- | M] () -- C:\Programme\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe PRC - [2011-02-08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Programme\AVG\AVG10\avgwdsvc.exe PRC - [2011-02-08 05:33:20 | 000,658,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Programme\AVG\AVG10\avgrsx.exe PRC - [2011-02-08 05:32:42 | 000,750,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Programme\AVG\AVG10\avgam.exe PRC - [2010-06-28 22:50:36 | 000,075,048 | ---- | M] (cyberlink) -- C:\Programme\Cyberlink\Shared files\brs.exe PRC - [2010-02-26 18:19:54 | 003,623,424 | ---- | M] (Native Instruments GmbH) -- C:\Programme\Common Files\Native Instruments\Hardware\NIHardwareService.exe PRC - [2010-02-03 00:08:56 | 000,087,336 | ---- | M] (CyberLink Corp.) -- C:\Programme\Cyberlink\PowerDVD10\PDVD10Serv.exe PRC - [2009-06-19 22:34:43 | 000,200,704 | ---- | M] () -- C:\Windows\PLFSetI.exe PRC - [2009-04-11 08:28:03 | 001,233,920 | ---- | M] (Microsoft Corporation) -- C:\Programme\Windows Sidebar\sidebar.exe PRC - [2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2009-04-01 21:06:02 | 000,054,528 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Programme\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe PRC - [2009-02-19 05:42:50 | 000,866,824 | ---- | M] (Dritek System Inc.) -- C:\Programme\Launch Manager\LManager.exe PRC - [2009-02-06 12:07:08 | 000,686,624 | ---- | M] (Acer Incorporated) -- C:\Programme\Acer\Acer ePower Management\ePowerTray.exe PRC - [2009-02-06 12:07:06 | 000,653,856 | ---- | M] (Acer Incorporated) -- C:\Programme\Acer\Acer ePower Management\ePowerSvc.exe PRC - [2008-12-18 13:51:34 | 000,075,048 | ---- | M] () -- C:\Programme\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe PRC - [2008-10-27 15:09:16 | 000,199,464 | ---- | M] (EgisTec Inc.) -- C:\Programme\EgisTec Egis Software Update\EgisUpdate.exe PRC - [2008-10-27 12:05:28 | 000,306,736 | ---- | M] (EgisTec Inc.) -- C:\Programme\EgisTec\MyWinLocker 3\x86\MWLService.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-05-27 13:30:52 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Alano\Desktop\OTL.exe MOD - [2010-08-31 17:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2011-05-27 01:23:00 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2011-04-18 17:39:42 | 007,398,752 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent) SRV - [2011-03-18 08:11:02 | 000,947,528 | ---- | M] () [On_Demand | Stopped] -- C:\Programme\AVG\AVG10\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service) SRV - [2011-03-09 19:24:44 | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws) SRV - [2011-03-02 14:37:19 | 000,008,192 | ---- | M] () [Auto | Stopped] -- C:\Windows\System32\srvany.exe -- (KMService) SRV - [2011-02-08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd) SRV - [2010-03-25 11:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service) SRV - [2010-02-26 18:19:54 | 003,623,424 | ---- | M] (Native Instruments GmbH) [Auto | Running] -- C:\Programme\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService) SRV - [2009-04-01 21:06:02 | 000,054,528 | ---- | M] (NewTech Infosystems, Inc.) [Auto | Running] -- C:\Programme\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc) SRV - [2009-02-06 12:07:06 | 000,653,856 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Programme\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc) SRV - [2009-01-16 20:53:30 | 000,410,624 | ---- | M] (Conexant Systems, Inc.) [Auto | Running] -- C:\Windows\System32\XAudio32.dll -- (HsfXAudioService) SRV - [2008-12-18 13:51:34 | 000,075,048 | ---- | M] () [Auto | Running] -- C:\Programme\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe -- (CLHNService) SRV - [2008-10-27 12:05:28 | 000,306,736 | ---- | M] () [Auto | Running] -- C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe -- (MWLService) SRV - [2008-01-21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Programme\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2008-01-21 04:23:24 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm) SRV - [2008-01-21 04:23:24 | 000,167,936 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-04-14 21:28:18 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver) DRV - [2011-04-05 00:59:56 | 000,297,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix) DRV - [2011-03-16 16:03:20 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86) DRV - [2011-03-01 14:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86) DRV - [2011-02-24 20:00:45 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd) DRV - [2011-02-22 08:12:38 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH) DRV - [2011-02-10 07:53:30 | 000,028,624 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim) DRV - [2011-02-10 07:53:28 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter) DRV - [2011-01-07 06:41:46 | 000,248,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86) DRV - [2010-07-15 09:44:20 | 000,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\epmntdrv.sys -- (epmntdrv) DRV - [2010-07-15 09:44:20 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\EuGdiDrv.sys -- (EuGdiDrv) DRV - [2010-07-12 05:34:02 | 000,054,112 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgfwd6x.sys -- (Avgfwfd) DRV - [2010-06-28 22:50:22 | 000,087,536 | ---- | M] (CyberLink Corp.) [2011/04/22 14:39:09] [Kernel | Auto | Running] -- C:\Programme\Cyberlink\PowerDVD10\NavFilter\000.fcl -- ({1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}) DRV - [2010-06-24 13:46:12 | 000,028,256 | ---- | M] (Applian Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\appliand.sys -- (appliandMP) DRV - [2010-06-24 13:46:12 | 000,028,256 | ---- | M] (Applian Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\appliand.sys -- (appliand) DRV - [2010-02-22 17:48:52 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\seehcri.sys -- (seehcri) DRV - [2009-12-19 20:22:01 | 000,104,512 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AnyDVD.sys -- (AnyDVD) DRV - [2009-09-22 03:16:33 | 000,091,264 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\zebrsce.sys -- (zebrsce) DRV - [2009-09-22 02:47:34 | 000,109,568 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\zebrmdmc.sys -- (zebrmdmc) Sony Ericsson mRouter Port (WDM) DRV - [2009-09-22 02:47:34 | 000,109,568 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\zebrmdm.sys -- (zebrmdm) Sony Ericsson Port (WDM) DRV - [2009-09-22 02:47:34 | 000,083,200 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\zebrbus.sys -- (zebrbus) DRV - [2009-09-22 02:47:34 | 000,063,360 | ---- | M] (MCCI) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\zebrceb.sys -- (zebrceb) Sony Ericsson Cable Emulation Bus (WDM) DRV - [2009-09-22 02:47:34 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\zebrmdfl.sys -- (zebrmdfl) DRV - [2009-04-11 06:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb) DRV - [2009-03-19 06:06:28 | 004,386,304 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag) DRV - [2009-02-21 04:10:00 | 000,153,952 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtHDMIV.sys -- (RTHDMIAzAudService) DRV - [2009-01-16 20:53:32 | 000,008,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio32.sys -- (XAudio) DRV - [2008-12-30 00:57:56 | 000,952,832 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr) DRV - [2008-10-09 16:47:12 | 000,059,952 | ---- | M] (Egis Incorporated.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk) DRV - [2008-10-09 16:47:12 | 000,019,504 | ---- | M] (Egis Incorporated.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\mwlPSDFilter.sys -- (mwlPSDFilter) DRV - [2008-10-09 16:47:12 | 000,016,432 | ---- | M] (Egis Incorporated.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\mwlPSDNserv.sys -- (mwlPSDNServ) DRV - [2008-10-03 19:08:52 | 000,183,312 | ---- | M] (Advanced Micro Devices, Inc) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\ahcix86s.sys -- (ahcix86s) DRV - [2008-09-04 06:12:56 | 000,223,232 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\k57nd60x.sys -- (k57nd60x) Broadcom NetLink (TM) DRV - [2008-05-28 17:54:20 | 000,022,072 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbfilter.sys -- (usbfilter) DRV - [2008-04-28 16:26:42 | 000,014,352 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO) DRV - [2008-01-21 04:23:21 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice) DRV - [2007-02-16 02:57:04 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ElbyCDFL.sys -- (ElbyCDFL) DRV - [2005-06-13 10:03:12 | 000,060,768 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\w800bus.sys -- (w800bus) Sony Ericsson W800 driver (WDM) DRV - [2005-05-24 16:01:16 | 000,077,040 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\w800obex.sys -- (w800obex) DRV - [2005-05-24 16:00:56 | 000,079,216 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\w800mgmt.sys -- (w800mgmt) DRV - [2005-05-24 16:00:46 | 000,087,424 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\w800mdm.sys -- (w800mdm) DRV - [2005-05-24 16:00:44 | 000,006,096 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\w800mdfl.sys -- (w800mdfl) DRV - [2005-02-11 11:19:20 | 000,055,216 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\k750bus.sys -- (k750bus) Sony Ericsson 750 driver (WDM) DRV - [2005-02-11 10:24:24 | 000,079,488 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\k750obex.sys -- (k750obex) DRV - [2005-02-11 10:22:48 | 000,081,728 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\k750mgmt.sys -- (k750mgmt) DRV - [2005-02-11 10:21:10 | 000,089,872 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\k750mdm.sys -- (k750mdm) DRV - [2005-02-11 10:21:02 | 000,006,576 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\k750mdfl.sys -- (k750mdfl) DRV - [2000-10-24 01:00:00 | 000,003,608 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\port_nt.sys -- (port_nt) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_5536 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_5536 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_5536 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "google.pl" FF - prefs.js..extensions.enabledItems: tabscope@xuldev.org:1.1.1 FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:4.1.1 FF - prefs.js..extensions.enabledItems: {ada4b710-8346-4b82-8199-5de2b400a6ae}:1.9.9.3.1 FF - prefs.js..extensions.enabledItems: {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}:1.4.1 FF - prefs.js..extensions.enabledItems: {66E978CD-981F-47DF-AC42-E3CF417C1467}:0.4.3 FF - prefs.js..extensions.enabledItems: foxyproxy@eric.h.jung:2.22.5 FF - prefs.js..extensions.enabledItems: avg@igeared:6.103.018.001 FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2 FF - prefs.js..extensions.enabledItems: {1392b8d2-5c05-419f-a8f6-b9f15a596612}:3.3.3.2 FF - prefs.js..extensions.enabledItems: {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:10.0.0.1209 FF - prefs.js..keyword.URL: "chrome://browser-region/locale/region.properties" FF - prefs.js..network.proxy.type: 2 FF - HKLM\software\mozilla\Firefox\Extensions\\avg@igeared: C:\Program Files\AVG\AVG10\Toolbar\Firefox\avg@igeared [2011-05-06 18:50:46 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2011-05-11 12:48:03 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-05-02 21:37:50 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-05-14 11:32:15 | 000,000,000 | ---D | M] [2011-05-27 20:17:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alano\AppData\Roaming\mozilla\Extensions [2011-05-27 20:33:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alano\AppData\Roaming\mozilla\Firefox\Profiles\yuydr7bt.default\extensions [2011-05-26 19:29:34 | 000,000,000 | ---D | M] (Flagfox) -- C:\Users\Alano\AppData\Roaming\mozilla\Firefox\Profiles\yuydr7bt.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} [2011-01-28 16:52:47 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Alano\AppData\Roaming\mozilla\Firefox\Profiles\yuydr7bt.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011-01-26 18:46:56 | 000,000,000 | ---D | M] (New Tab Homepage) -- C:\Users\Alano\AppData\Roaming\mozilla\Firefox\Profiles\yuydr7bt.default\extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467} [2011-03-30 11:04:28 | 000,000,000 | ---D | M] (ReminderFox) -- C:\Users\Alano\AppData\Roaming\mozilla\Firefox\Profiles\yuydr7bt.default\extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae} [2011-05-05 13:11:43 | 000,000,000 | ---D | M] (FoxyProxy Standard) -- C:\Users\Alano\AppData\Roaming\mozilla\Firefox\Profiles\yuydr7bt.default\extensions\foxyproxy@eric.h.jung [2011-03-30 11:04:29 | 000,000,000 | ---D | M] (Tab Scope) -- C:\Users\Alano\AppData\Roaming\mozilla\Firefox\Profiles\yuydr7bt.default\extensions\tabscope@xuldev.org [2011-04-30 16:44:26 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions File not found (No name found) -- [2011-05-11 12:48:03 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG10\FIREFOX4 () (No name found) -- C:\USERS\ALANO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\YUYDR7BT.DEFAULT\EXTENSIONS\{19503E42-CA3C-4C27-B1E2-9CDB2170EE34}.XPI () (No name found) -- C:\USERS\ALANO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\YUYDR7BT.DEFAULT\EXTENSIONS\{DB9127A2-3381-41EC-82B3-1B6ED4C6F29A}.XPI () (No name found) -- C:\USERS\ALANO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\YUYDR7BT.DEFAULT\EXTENSIONS\{EF4E370E-D9F0-4E00-B93E-A4F274CFDD5A}.XPI [2011-04-14 18:59:14 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Programme\Mozilla Firefox\components\browsercomps.dll [2011-03-22 20:38:12 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Programme\Mozilla Firefox\plugins\npwachk.dll [2010-01-01 10:00:00 | 000,002,767 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-01 10:00:00 | 000,001,406 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-01 10:00:00 | 000,000,917 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-01 10:00:00 | 000,000,858 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-01 10:00:00 | 000,001,183 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-01 10:00:00 | 000,001,683 | ---- | M] () -- C:\Programme\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2011-05-27 02:05:19 | 000,000,791 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O1 - Hosts: 127.0.0.1 activate.adobe.com O2 - BHO: (MediaBar) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - File not found O2 - BHO: (GetRight IE Download Helper) - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Programme\GetRight\xx2gr.dll (Headlight Software, Inc.) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Programme\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (YouTube To ALLPlayer) - {61DB16C5-B733-43F4-872E-B20DC9E72740} - C:\Programme\ALLPlayer\YouTubeToALLPlayer.dll (ALLPlayer.org) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Windows Live Anmelde-Hilfsprogramm) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Programme\AVG\AVG10\Toolbar\IEToolbar.dll () O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Programme\Google\GoogleToolbar1.dll (Google Germany GmbH) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Programme\Google\GoogleToolbarNotifier\3.1.415.1646\swg.dll (Google Inc.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O3 - HKLM\..\Toolbar: (MediaBar) - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - File not found O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Programme\Google\GoogleToolbar1.dll (Google Germany GmbH) O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Programme\AVG\AVG10\Toolbar\IEToolbar.dll () O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Programme\Google\GoogleToolbar1.dll (Google Germany GmbH) O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Programme\AVG\AVG10\Toolbar\IEToolbar.dll () O4 - HKLM..\Run: [Acer ePower Management] C:\Programme\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated) O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [AVG_TRAY] C:\Programme\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation) O4 - HKLM..\Run: [BDRegion] C:\Programme\Cyberlink\Shared files\brs.exe (cyberlink) O4 - HKLM..\Run: [EgisTecLiveUpdate] C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe (EgisTec Inc.) O4 - HKLM..\Run: [Freecorder FLV Service] E:\##Programme\FLVSrvc.exe (Applian Technologies, Inc.) O4 - HKLM..\Run: [LManager] C:\Programme\Launch Manager\LManager.exe (Dritek System Inc.) O4 - HKLM..\Run: [PLFSetI] C:\Windows\PLFSetI.exe () O4 - HKLM..\Run: [RemoteControl10] C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O8 - Extra context menu item: Download with GetRight Pro - C:\Programme\GetRight\GRDownload.htm () O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Open with GetRight Pro Browser - C:\Programme\GetRight\GRBrowse.htm () O8 - Extra context menu item: Wyślij &do programu OneNote - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O8 - Extra context menu item: 使用快车3下载 - C:\Users\Alano\AppData\Roaming\FlashGetBHO\GetUrl.htm () O8 - Extra context menu item: 使用快车3下载全部链接 - C:\Users\Alano\AppData\Roaming\FlashGetBHO\GetAllUrl.htm () O9 - Extra Button: In Blog veröffentlichen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : In Windows Live Writer in Blog veröffentliche&n - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Programme\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation) O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O13 - gopher Prefix: missing O15 - HKCU\..Trusted Ranges: GD ([http] in Local intranet) O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23) O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.204.159.1 194.204.152.34 O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Programme\AVG\AVG10\Toolbar\IEToolbar.dll () O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Programme\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Programme\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation) O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Programme\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll (Microsoft Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Programme\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - C:\Programme\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Users\Alano\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O24 - Desktop BackupWallPaper: C:\Users\Alano\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 0 O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{d7657f6c-5600-11e0-9719-001f16a973fc}\Shell - "" = AutoRun O33 - MountPoints2\{d7657f6c-5600-11e0-9719-001f16a973fc}\Shell\AutoRun\command - "" = H:\USBAutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync) - C:\Programme\AVG\AVG10\avgchsvx.exe (AVG Technologies CZ, s.r.o.) O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart) - C:\Programme\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-05-27 14:31:35 | 000,000,000 | ---D | C] -- C:\Users\Alano\AppData\Roaming\Malwarebytes [2011-05-27 14:31:29 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys [2011-05-27 14:31:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2011-05-27 14:31:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2011-05-27 14:31:26 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2011-05-27 14:31:26 | 000,000,000 | ---D | C] -- C:\Programme\Malwarebytes' Anti-Malware [2011-05-27 13:30:48 | 000,580,096 | ---- | C] (OldTimer Tools) -- C:\Users\Alano\Desktop\OTL.exe [2011-05-27 02:19:19 | 000,000,000 | ---D | C] -- C:\Users\Alano\Library [2011-05-27 02:19:19 | 000,000,000 | ---D | C] -- C:\Users\Alano\AppData\Roaming\com.adobe.ExMan [2011-05-27 02:09:10 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet [2011-05-27 01:38:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe [2011-05-27 01:38:36 | 000,000,000 | ---D | C] -- C:\Programme\Adobe Media Player [2011-05-27 01:33:10 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Adobe AIR [2011-05-27 01:23:00 | 000,000,000 | ---D | C] -- C:\Programme\Common Files\Macrovision Shared [2011-05-27 00:20:22 | 000,000,000 | ---D | C] -- C:\Users\Alano\Desktop\Adobe.Photoshop.CS4 [2011-05-25 21:43:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cakewalk [2011-05-25 21:42:59 | 000,000,000 | ---D | C] -- C:\Programme\Cakewalk [2011-05-25 21:42:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Cakewalk [2011-05-24 20:12:50 | 000,000,000 | ---D | C] -- C:\Users\Alano\Desktop\Neuer Ordner [2011-05-23 19:29:37 | 000,000,000 | ---D | C] -- C:\Users\Alano\Desktop\Binka [2011-05-23 17:37:34 | 000,225,280 | ---- | C] (Propellerhead Software AB) -- C:\Windows\System32\rewire.dll [2011-05-23 17:37:33 | 000,000,000 | ---D | C] -- C:\Users\Alano\Documents\Image-Line [2011-05-23 17:37:19 | 001,554,944 | ---- | C] (HMS http://hp.vector.co.jp/authors/VA012897/) -- C:\Windows\System32\vorbis.acm [2011-05-23 17:36:59 | 000,000,000 | ---D | C] -- C:\Users\Alano\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line [2011-05-23 17:36:58 | 000,000,000 | ---D | C] -- C:\Programme\VstPlugins [2011-05-23 17:36:57 | 000,000,000 | ---D | C] -- C:\Programme\Outsim [2011-05-23 17:35:25 | 000,000,000 | ---D | C] -- C:\Programme\Image-Line [2011-05-13 19:53:16 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2011-05-13 19:45:23 | 000,000,000 | ---D | C] -- C:\Users\Alano\Documents\StreamTransport [2011-05-13 19:45:14 | 000,000,000 | ---D | C] -- C:\Users\Alano\AppData\Roaming\vlc [2011-05-13 19:44:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN [2011-05-13 19:43:56 | 000,000,000 | ---D | C] -- C:\Programme\VideoLAN [2011-05-13 19:37:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StreamTransport [2011-05-13 19:37:32 | 003,982,240 | ---- | C] (Adobe Systems, Inc.) -- C:\Windows\System32\Flash10d.ocx [2011-05-13 19:37:32 | 000,000,000 | ---D | C] -- C:\Programme\StreamTransport [2011-05-13 18:38:17 | 000,000,000 | ---D | C] -- C:\Users\Alano\AppData\Local\Jaksta_Pty_Ltd [2011-05-13 18:35:31 | 000,000,000 | ---D | C] -- C:\Users\Alano\AppData\Roaming\Replay Media Catcher 4 [2011-05-13 18:35:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applian Technologies [2011-05-13 18:35:26 | 000,000,000 | ---D | C] -- C:\Programme\Applian Technologies [2011-05-11 12:44:47 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll [2011-05-11 12:44:47 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2011-05-11 12:44:46 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2011-05-11 12:44:46 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll [2011-05-11 12:44:46 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2011-05-11 12:44:46 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe [2011-05-11 12:44:46 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe [2011-05-11 12:44:46 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll [2011-05-11 12:44:44 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2011-05-11 12:44:44 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2011-05-11 12:44:44 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2011-05-11 12:44:43 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat [2011-05-11 12:44:43 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2011-05-11 12:44:43 | 000,353,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2011-05-11 12:44:43 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2011-05-11 12:44:43 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2011-05-11 12:44:43 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2011-05-11 12:44:43 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2011-05-11 12:44:41 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2011-05-11 12:44:41 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll [2011-05-11 12:44:41 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2011-05-11 12:44:40 | 000,580,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2011-05-11 12:44:40 | 000,420,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2011-05-11 12:44:40 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe [2011-05-11 12:44:40 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe [2011-05-11 12:44:39 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2011-05-11 12:44:39 | 001,797,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2011-05-11 12:44:39 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2011-05-11 12:44:39 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll [2011-05-11 12:44:39 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll [2011-05-11 12:44:39 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2011-05-11 12:44:39 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2011-05-11 12:44:39 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll [2011-05-11 12:44:39 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll [2011-05-11 12:44:39 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll [2011-05-11 12:44:38 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll [2011-05-11 12:44:38 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll [2011-05-11 12:44:38 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2011-05-11 12:44:38 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2011-05-02 21:58:19 | 000,000,000 | ---D | C] -- C:\Downloads [2011-05-02 21:58:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GetRight [2011-05-02 21:58:14 | 000,000,000 | ---D | C] -- C:\Programme\GetRight [2011-05-02 21:37:03 | 000,000,000 | ---D | C] -- C:\Users\Alano\AppData\Roaming\BITS [2011-05-02 21:37:02 | 000,000,000 | ---D | C] -- C:\Users\Alano\AppData\Roaming\FlashGet [2011-05-02 21:36:58 | 000,000,000 | ---D | C] -- C:\Users\Alano\AppData\Roaming\FlashGetBHO [2011-05-02 21:36:56 | 000,000,000 | ---D | C] -- C:\Programme\FlashGet Network [2011-05-02 12:53:56 | 000,000,000 | ---D | C] -- C:\Users\Alano\Documents\bios [2010-02-04 00:00:00 | 000,139,264 | ---- | C] ( ) -- C:\Windows\sipr3260.dll [2009-06-20 07:19:41 | 000,049,152 | ---- | C] ( ) -- C:\Windows\Interop.IWshRuntimeLibrary.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-05-27 20:50:53 | 004,718,592 | ---- | M] () -- C:\Users\Alano\ntuser.dat [2011-05-27 20:36:32 | 001,445,310 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2011-05-27 20:36:32 | 000,618,042 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2011-05-27 20:36:32 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011-05-27 20:36:32 | 000,126,022 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2011-05-27 20:36:32 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011-05-27 20:35:00 | 000,001,058 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4271160144-99656237-1795000798-1000UA.job [2011-05-27 20:30:19 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2011-05-27 20:30:18 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2011-05-27 20:30:16 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2011-05-27 20:30:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011-05-27 20:30:05 | 3353,722,880 | -HS- | M] () -- C:\hiberfil.sys [2011-05-27 20:29:03 | 004,048,234 | -H-- | M] () -- C:\Users\Alano\AppData\Local\IconCache.db [2011-05-27 20:29:03 | 000,524,288 | -HS- | M] () -- C:\Users\Alano\ntuser.dat{53c89aab-ede1-11df-9d0a-001f16a973fc}.TMContainer00000000000000000001.regtrans-ms [2011-05-27 20:29:03 | 000,065,536 | -HS- | M] () -- C:\Users\Alano\ntuser.dat{53c89aab-ede1-11df-9d0a-001f16a973fc}.TM.blf [2011-05-27 18:32:44 | 000,000,000 | ---- | M] () -- C:\Users\Alano\Desktop\settings.dat [2011-05-27 18:32:32 | 000,472,064 | ---- | M] ( ) -- C:\Users\Alano\Desktop\RootRepeal.exe [2011-05-27 18:32:05 | 000,464,491 | ---- | M] () -- C:\Users\Alano\Desktop\RootRepeal.zip [2011-05-27 17:42:24 | 000,653,807 | ---- | M] () -- C:\Windows\System32\drivers\AVG\iavifw.avm [2011-05-27 16:17:01 | 000,302,080 | ---- | M] () -- C:\Users\Alano\Desktop\gmer.exe [2011-05-27 16:15:54 | 000,293,775 | ---- | M] () -- C:\Users\Alano\Desktop\gmer.zip [2011-05-27 14:31:29 | 000,000,910 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2011-05-27 13:31:27 | 000,879,092 | ---- | M] () -- C:\Users\Alano\Desktop\SecurityCheck.exe [2011-05-27 13:31:11 | 000,302,080 | ---- | M] () -- C:\Users\Alano\Desktop\kzx6pv4o.exe [2011-05-27 13:30:52 | 000,580,096 | ---- | M] (OldTimer Tools) -- C:\Users\Alano\Desktop\OTL.exe [2011-05-27 12:20:06 | 000,001,690 | ---- | M] () -- C:\Users\Alano\Desktop\jv16 PowerTools 2011.lnk [2011-05-27 12:02:28 | 116,227,377 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm [2011-05-27 11:56:33 | 002,314,896 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2011-05-27 02:09:12 | 000,105,576 | ---- | M] () -- C:\Users\Alano\AppData\Local\GDIPFONTCACHEV1.DAT [2011-05-25 11:35:00 | 000,001,006 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4271160144-99656237-1795000798-1000Core.job [2011-05-25 00:55:27 | 000,001,618 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk [2011-05-24 01:53:36 | 000,185,856 | ---- | M] () -- C:\Users\Alano\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-05-23 17:37:33 | 000,000,936 | ---- | M] () -- C:\Users\Alano\Desktop\FL Studio 9.lnk [2011-05-23 13:53:29 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2011-05-13 19:44:19 | 000,000,863 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk [2011-05-13 19:37:33 | 000,000,826 | ---- | M] () -- C:\Users\Public\Desktop\ StreamTransport.lnk [2011-05-13 18:35:28 | 000,001,956 | ---- | M] () -- C:\Users\Public\Desktop\Replay Media Catcher 4.lnk [2011-05-11 12:48:03 | 000,000,864 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2011.lnk [2011-05-11 12:45:00 | 000,008,798 | ---- | M] () -- C:\Windows\System32\icrav03.rat [2011-05-11 12:45:00 | 000,001,988 | ---- | M] () -- C:\Windows\System32\ticrf.rat [2011-05-11 12:44:47 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll [2011-05-11 12:44:47 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2011-05-11 12:44:46 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2011-05-11 12:44:46 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll [2011-05-11 12:44:46 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2011-05-11 12:44:46 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe [2011-05-11 12:44:46 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe [2011-05-11 12:44:46 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll [2011-05-11 12:44:44 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2011-05-11 12:44:44 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2011-05-11 12:44:44 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2011-05-11 12:44:43 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat [2011-05-11 12:44:43 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2011-05-11 12:44:43 | 000,353,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2011-05-11 12:44:43 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2011-05-11 12:44:43 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2011-05-11 12:44:43 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2011-05-11 12:44:43 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf [2011-05-11 12:44:43 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2011-05-11 12:44:41 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2011-05-11 12:44:41 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll [2011-05-11 12:44:41 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2011-05-11 12:44:40 | 000,580,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2011-05-11 12:44:40 | 000,420,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll [2011-05-11 12:44:40 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe [2011-05-11 12:44:40 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe [2011-05-11 12:44:39 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2011-05-11 12:44:39 | 001,797,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2011-05-11 12:44:39 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2011-05-11 12:44:39 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll [2011-05-11 12:44:39 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll [2011-05-11 12:44:39 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2011-05-11 12:44:39 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2011-05-11 12:44:39 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll [2011-05-11 12:44:39 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll [2011-05-11 12:44:39 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll [2011-05-11 12:44:38 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll [2011-05-11 12:44:38 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll [2011-05-11 12:44:38 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2011-05-11 12:44:38 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2011-05-05 16:44:51 | 000,000,011 | R--- | M] () -- C:\Windows\amunres.lsl [2011-05-05 13:38:57 | 000,002,432 | ---- | M] () -- C:\Users\Alano\AppData\Local\Temprt5064.html [2011-05-02 22:04:49 | 000,000,826 | ---- | M] () -- C:\Users\Alano\Desktop\GetRight.lnk [2011-05-02 21:37:56 | 000,000,025 | ---- | M] () -- C:\Windows\libem.INI [2011-05-01 09:47:54 | 832,556,256 | ---- | M] () -- C:\Users\Alano\Desktop\IMAGE.img [2011-05-01 09:47:54 | 033,981,888 | ---- | M] () -- C:\Users\Alano\Desktop\IMAGE.sub [2011-05-01 09:47:50 | 000,005,995 | ---- | M] () -- C:\Users\Alano\Desktop\IMAGE.ccd [2011-04-30 16:44:29 | 000,000,850 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-05-27 18:32:44 | 000,000,000 | ---- | C] () -- C:\Users\Alano\Desktop\settings.dat [2011-05-27 18:32:04 | 000,464,491 | ---- | C] () -- C:\Users\Alano\Desktop\RootRepeal.zip [2011-05-27 16:23:09 | 3353,722,880 | -HS- | C] () -- C:\hiberfil.sys [2011-05-27 16:15:52 | 000,293,775 | ---- | C] () -- C:\Users\Alano\Desktop\gmer.zip [2011-05-27 14:31:29 | 000,000,910 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk [2011-05-27 13:31:24 | 000,879,092 | ---- | C] () -- C:\Users\Alano\Desktop\SecurityCheck.exe [2011-05-27 13:31:08 | 000,302,080 | ---- | C] () -- C:\Users\Alano\Desktop\kzx6pv4o.exe [2011-05-27 01:42:46 | 000,001,006 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS4.lnk [2011-05-27 01:41:12 | 000,000,968 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS4.lnk [2011-05-27 01:40:03 | 000,001,297 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Drive CS4.lnk [2011-05-27 01:36:06 | 000,001,061 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS4.lnk [2011-05-27 01:26:53 | 000,001,152 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS4.lnk [2011-05-27 01:25:34 | 000,001,272 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS4.lnk [2011-05-25 00:55:27 | 000,001,630 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk [2011-05-25 00:55:26 | 000,001,618 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk [2011-05-23 17:37:33 | 000,000,936 | ---- | C] () -- C:\Users\Alano\Desktop\FL Studio 9.lnk [2011-05-13 19:44:19 | 000,000,863 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk [2011-05-13 19:37:33 | 000,000,826 | ---- | C] () -- C:\Users\Public\Desktop\ StreamTransport.lnk [2011-05-13 18:35:28 | 000,001,956 | ---- | C] () -- C:\Users\Public\Desktop\Replay Media Catcher 4.lnk [2011-05-11 12:44:43 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf [2011-05-05 16:44:51 | 000,000,011 | R--- | C] () -- C:\Windows\amunres.lsl [2011-05-05 13:37:40 | 000,002,432 | ---- | C] () -- C:\Users\Alano\AppData\Local\Temprt5064.html [2011-05-04 13:54:12 | 000,302,080 | ---- | C] () -- C:\Users\Alano\Desktop\gmer.exe [2011-05-02 22:04:49 | 000,000,826 | ---- | C] () -- C:\Users\Alano\Desktop\GetRight.lnk [2011-05-02 21:37:56 | 000,000,025 | ---- | C] () -- C:\Windows\libem.INI [2011-05-01 09:43:13 | 832,556,256 | ---- | C] () -- C:\Users\Alano\Desktop\IMAGE.img [2011-05-01 09:43:13 | 033,981,888 | ---- | C] () -- C:\Users\Alano\Desktop\IMAGE.sub [2011-05-01 09:43:07 | 000,005,995 | ---- | C] () -- C:\Users\Alano\Desktop\IMAGE.ccd [2011-04-30 16:44:29 | 000,000,862 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2011-04-20 11:37:06 | 000,000,544 | ---- | C] () -- C:\Users\Alano\AppData\Roaming\AutoGK.ini [2011-04-19 01:32:33 | 000,000,332 | ---- | C] () -- C:\Windows\dvdtoaviconverter.ini [2011-04-19 01:30:34 | 000,000,001 | ---- | C] () -- C:\Windows\System32\SysDVDtoavi.dat [2011-03-31 23:05:10 | 008,676,883 | ---- | C] () -- C:\Windows\System32\NCMedia2.dll [2011-03-21 16:11:15 | 000,003,608 | ---- | C] () -- C:\Windows\System32\drivers\port_nt.sys [2011-03-15 22:51:34 | 000,002,432 | ---- | C] () -- C:\Users\Alano\AppData\Local\TempSc1480.html [2011-03-03 10:51:20 | 000,000,022 | -HS- | C] () -- C:\Users\Alano\AppData\Roaming\Sys2662.Config.Repository.bin [2011-03-03 10:34:08 | 000,000,020 | -HS- | C] () -- C:\Users\Alano\AppData\Roaming\System7777DataCollection [2011-03-03 10:34:08 | 000,000,020 | -HS- | C] () -- C:\Windows\Sys6547SettingsDB.sys [2011-02-24 22:52:36 | 000,178,110 | ---- | C] () -- C:\Windows\hpoins30.dat [2011-02-24 22:34:48 | 000,158,267 | ---- | C] () -- C:\Windows\hpoins30.dat.temp [2011-02-24 21:52:43 | 000,000,547 | ---- | C] () -- C:\Windows\hpomdl30.dat.temp [2011-02-24 21:50:03 | 000,524,288 | -HS- | C] () -- C:\ProgramData\ntuser.dat{b70ddc1e-4048-11e0-a78f-001f16a973fc}.TMContainer00000000000000000002.regtrans-ms [2011-02-24 21:50:03 | 000,524,288 | -HS- | C] () -- C:\ProgramData\ntuser.dat{b70ddc1e-4048-11e0-a78f-001f16a973fc}.TMContainer00000000000000000001.regtrans-ms [2011-02-24 21:50:03 | 000,262,144 | ---- | C] () -- C:\ProgramData\ntuser.dat [2011-02-24 21:50:03 | 000,065,536 | -HS- | C] () -- C:\ProgramData\ntuser.dat{b70ddc1e-4048-11e0-a78f-001f16a973fc}.TM.blf [2011-02-24 20:00:45 | 000,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys [2011-02-22 15:42:44 | 000,819,200 | ---- | C] () -- C:\Windows\System32\xvidcore.dll [2011-02-22 15:42:44 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll [2011-02-22 15:37:57 | 000,080,896 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll [2011-02-18 14:58:28 | 000,008,192 | ---- | C] () -- C:\Windows\System32\srvany.exe [2010-11-12 14:26:13 | 002,217,088 | ---- | C] () -- C:\Windows\System32\BootMan.exe [2010-11-12 14:26:13 | 000,086,408 | ---- | C] () -- C:\Windows\System32\setupempdrv03.exe [2010-11-12 14:26:13 | 000,014,848 | ---- | C] () -- C:\Windows\System32\EuEpmGdi.dll [2010-11-12 14:26:13 | 000,014,216 | ---- | C] () -- C:\Windows\System32\epmntdrv.sys [2010-11-12 14:26:13 | 000,008,456 | ---- | C] () -- C:\Windows\System32\EuGdiDrv.sys [2010-09-29 20:23:54 | 000,000,680 | ---- | C] () -- C:\Users\Alano\AppData\Local\d3d9caps.dat [2010-09-11 14:48:38 | 000,258,048 | ---- | C] () -- C:\Windows\System32\libFLAC.dll [2010-02-11 22:23:38 | 000,000,043 | -HS- | C] () -- C:\ProgramData\.zreglib [2010-02-01 18:38:34 | 026,748,950 | ---- | C] () -- C:\Windows\System32\D3Studio [nfoto.com.pl]_nfotokreator_uninstaller.exe [2009-12-07 17:52:42 | 000,078,210 | ---- | C] () -- C:\Windows\hpqins05.dat [2009-10-16 14:58:59 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini [2009-09-24 21:23:19 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2009-09-24 21:23:19 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin [2009-09-24 21:22:23 | 000,368,640 | ---- | C] () -- C:\Windows\System32\msjetoledb40.dll [2009-07-31 18:43:28 | 000,185,856 | ---- | C] () -- C:\Users\Alano\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-07-31 17:36:29 | 000,554,496 | ---- | C] () -- C:\Windows\System32\dvmsg.dll [2009-07-29 00:04:02 | 004,048,234 | -H-- | C] () -- C:\Users\Alano\AppData\Local\IconCache.db [2009-07-28 20:28:30 | 000,105,576 | ---- | C] () -- C:\Users\Alano\AppData\Local\GDIPFONTCACHEV1.DAT [2009-06-20 07:15:23 | 000,181,944 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat [2009-06-20 07:15:23 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll [2009-06-20 07:15:23 | 000,081,920 | ---- | C] () -- C:\Windows\System32\ATIODE.exe [2009-06-20 07:15:23 | 000,045,056 | ---- | C] () -- C:\Windows\System32\ATIODCLI.exe [2009-06-20 07:15:23 | 000,000,529 | ---- | C] () -- C:\Windows\System32\ATIODCLI.exe.manifest [2009-06-20 07:15:23 | 000,000,527 | ---- | C] () -- C:\Windows\System32\ATIODE.exe.manifest [2009-06-20 07:15:23 | 000,000,481 | ---- | C] () -- C:\Windows\System32\atipblag.dat [2009-06-19 22:58:03 | 000,000,033 | ---- | C] () -- C:\Windows\LaunApp.ini [2009-06-19 22:35:01 | 000,200,704 | ---- | C] () -- C:\Windows\PLFSetI.exe [2009-06-19 22:35:01 | 000,000,074 | ---- | C] () -- C:\Windows\PidList.ini [2009-06-19 22:35:00 | 000,106,496 | ---- | C] () -- C:\Windows\FixUVC.exe [2009-06-19 22:33:04 | 000,090,772 | ---- | C] () -- C:\Windows\System32\drivers\RtConvEQ.DAT [2009-06-19 22:33:04 | 000,000,536 | ---- | C] () -- C:\Windows\System32\drivers\RtHdatEx.dat [2009-06-19 22:33:04 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX2.dat [2009-06-19 22:33:04 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX1.dat [2009-06-19 22:33:04 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat [2009-06-19 22:33:04 | 000,000,008 | ---- | C] () -- C:\Windows\System32\drivers\rtkhdaud.dat [2009-06-19 22:25:45 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2009-03-12 07:45:11 | 000,618,042 | ---- | C] () -- C:\Windows\System32\perfh007.dat [2009-03-12 07:45:11 | 000,290,748 | ---- | C] () -- C:\Windows\System32\perfi007.dat [2009-03-12 07:45:11 | 000,126,022 | ---- | C] () -- C:\Windows\System32\perfc007.dat [2009-03-12 07:45:11 | 000,036,916 | ---- | C] () -- C:\Windows\System32\perfd007.dat [2009-03-11 23:12:11 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin [2009-02-21 02:26:15 | 000,872,448 | ---- | C] () -- C:\Windows\iconv.dll [2009-02-21 02:26:15 | 000,743,424 | ---- | C] () -- C:\Windows\libxml2.dll [2009-02-21 02:26:14 | 000,000,060 | ---- | C] () -- C:\Windows\Prelaunch.ini [2009-02-21 02:26:14 | 000,000,028 | ---- | C] () -- C:\Windows\WisLangCode.ini [2008-10-22 05:29:06 | 000,173,550 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat [2008-07-07 15:56:28 | 000,065,536 | ---- | C] () -- C:\Windows\System32\xinput9_1_0.dll [2008-07-07 15:56:28 | 000,065,536 | ---- | C] () -- C:\Windows\System32\xinput1_3.dll [2008-07-07 15:56:28 | 000,065,536 | ---- | C] () -- C:\Windows\System32\xinput1_2.dll [2008-07-07 15:56:28 | 000,065,536 | ---- | C] () -- C:\Windows\System32\xinput1_1.dll [2008-06-18 08:22:38 | 000,000,844 | ---- | C] () -- C:\Windows\hpomdl30.dat [2008-01-21 04:24:38 | 000,060,124 | ---- | C] () -- C:\Windows\System32\tcpmon.ini [2006-11-02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2006-11-02 14:47:37 | 002,314,896 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2006-11-02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006-11-02 12:33:01 | 001,445,310 | ---- | C] () -- C:\Windows\System32\PerfStringBackup.INI [2006-11-02 12:33:01 | 000,595,996 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2006-11-02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2006-11-02 12:33:01 | 000,104,070 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2006-11-02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2006-11-02 12:24:31 | 000,001,405 | ---- | C] () -- C:\Windows\msdfmap.ini [2006-11-02 12:23:31 | 000,000,254 | ---- | C] () -- C:\Windows\win.ini [2006-11-02 12:23:31 | 000,000,219 | ---- | C] () -- C:\Windows\system.ini [2006-11-02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2006-11-02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2006-11-02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2006-11-02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006-11-02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2006-11-02 09:10:37 | 000,053,536 | ---- | C] () -- C:\Windows\System32\dosx.exe [2006-11-02 09:10:02 | 000,000,718 | ---- | C] () -- C:\Windows\System32\mscdexnt.exe [2006-11-02 09:10:00 | 000,002,842 | ---- | C] () -- C:\Windows\System32\redir.exe [2006-11-02 09:09:59 | 000,069,886 | ---- | C] () -- C:\Windows\System32\edit.com [2006-11-02 09:09:59 | 000,019,694 | ---- | C] () -- C:\Windows\System32\GRAPHICS.COM [2006-11-02 09:09:59 | 000,000,882 | ---- | C] () -- C:\Windows\System32\share.exe [2006-11-02 09:09:59 | 000,000,882 | ---- | C] () -- C:\Windows\System32\fastopen.exe [2006-11-02 09:09:57 | 000,014,710 | ---- | C] () -- C:\Windows\System32\KB16.COM [2006-11-02 09:09:56 | 000,007,052 | ---- | C] () -- C:\Windows\System32\nlsfunc.exe [2006-11-02 09:09:55 | 000,039,274 | ---- | C] () -- C:\Windows\System32\mem.exe [2006-11-02 09:09:55 | 000,001,131 | ---- | C] () -- C:\Windows\System32\LOADFIX.COM [2006-11-02 09:09:53 | 000,011,753 | ---- | C] () -- C:\Windows\System32\setver.exe [2006-11-02 09:09:52 | 000,020,634 | ---- | C] () -- C:\Windows\System32\debug.exe [2006-11-02 09:09:51 | 000,008,424 | ---- | C] () -- C:\Windows\System32\exe2bin.exe [2006-11-02 09:09:50 | 000,012,642 | ---- | C] () -- C:\Windows\System32\edlin.exe [2006-11-02 09:09:49 | 000,050,648 | ---- | C] () -- C:\Windows\System32\COMMAND.COM [2006-11-02 09:09:49 | 000,012,498 | ---- | C] () -- C:\Windows\System32\append.exe [2006-11-02 09:09:45 | 000,027,097 | ---- | C] () -- C:\Windows\System32\country.sys [2006-11-02 09:09:44 | 000,042,809 | ---- | C] () -- C:\Windows\System32\KEY01.SYS [2006-11-02 09:09:44 | 000,042,537 | ---- | C] () -- C:\Windows\System32\KEYBOARD.SYS [2006-11-02 09:09:42 | 000,009,029 | ---- | C] () -- C:\Windows\System32\ANSI.SYS [2006-11-02 09:09:41 | 000,004,768 | ---- | C] () -- C:\Windows\System32\HIMEM.SYS [2006-11-02 09:09:40 | 000,029,274 | ---- | C] () -- C:\Windows\System32\NTDOS412.SYS [2006-11-02 09:09:38 | 000,029,370 | ---- | C] () -- C:\Windows\System32\NTDOS411.SYS [2006-11-02 09:09:35 | 000,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS404.SYS [2006-11-02 09:09:31 | 000,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS804.SYS [2006-11-02 09:09:29 | 000,027,866 | ---- | C] () -- C:\Windows\System32\NTDOS.SYS [2006-11-02 09:09:26 | 000,035,536 | ---- | C] () -- C:\Windows\System32\NTIO412.SYS [2006-11-02 09:09:24 | 000,035,776 | ---- | C] () -- C:\Windows\System32\NTIO411.SYS [2006-11-02 09:09:23 | 000,034,672 | ---- | C] () -- C:\Windows\System32\NTIO404.SYS [2006-11-02 09:09:22 | 000,034,672 | ---- | C] () -- C:\Windows\System32\NTIO804.SYS [2006-11-02 09:09:20 | 000,033,952 | ---- | C] () -- C:\Windows\System32\NTIO.SYS [2006-11-02 08:25:08 | 000,013,312 | ---- | C] () -- C:\Windows\System32\win87em.dll [2002-10-16 00:54:04 | 000,153,088 | ---- | C] () -- C:\Windows\System32\unrar.dll [2002-09-18 00:45:00 | 000,119,808 | ---- | C] () -- C:\Windows\lsb_un20.exe [2002-05-13 11:16:19 | 000,356,352 | ---- | C] () -- C:\Windows\System32\xvid.dll [color=#E56717]========== LOP Check ==========[/color] [2009-03-12 00:29:48 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\Acer GameZone Console [2010-06-09 23:12:23 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\AdvancedTiffEditor [2011-03-02 07:32:23 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\AVG [2010-10-12 00:22:00 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\AVG10 [2011-05-02 21:42:04 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\BITS [2011-05-27 02:19:19 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\com.adobe.ExMan [2011-04-19 01:37:27 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\Digiarty [2011-01-31 01:14:44 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\FDRLab [2011-05-02 21:37:02 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\FlashGet [2011-05-02 21:36:59 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\FlashGetBHO [2010-01-26 01:19:18 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\FreeFLVConverter [2009-07-29 16:38:03 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\Gadu-Gadu [2010-05-04 20:58:32 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\Gadu-Gadu 10 [2011-04-19 01:47:52 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\GetRightToGo [2010-12-23 21:12:34 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\gtk-2.0 [2010-10-22 21:51:53 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\IconTweaker [2010-09-30 20:41:29 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\Need for Speed World [2009-07-29 00:03:55 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\Nowe Gadu-Gadu [2009-07-29 19:53:48 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\Opera [2011-01-28 14:48:45 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\PhotoScape [2011-02-14 22:50:25 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\Pioneer [2011-04-22 13:29:05 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\PowerCinema [2011-05-13 18:38:20 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\Replay Media Catcher 4 [2010-02-11 22:10:48 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\SlySoft [2009-07-31 18:45:58 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\SoftDMA [2009-09-22 02:30:38 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\Teleca [2011-03-28 14:11:19 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\uTorrent [2011-02-22 13:25:57 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\VistaCodecs [2009-08-15 01:29:29 | 000,000,000 | ---D | M] -- C:\Users\Alano\AppData\Roaming\Vodafone [2011-05-27 20:29:10 | 000,032,606 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 124 bytes -> C:\ProgramData\TEMP:0B4227B4 < End of report >