ned_nedel4ev
Потребител
-
Регистрация
-
Последно онлайн
Всичко публикувано от ned_nedel4ev
-
Сканирах със доктор уеб не ми показа заразени фаилове ,но после сканирах със аваст фрии и ми изкара бая дълъг списък с заразени фаилове преместих ги под карантина и сега пс-то хвърчи и би трябвало да е чисто ,не ми остава друго освен да ви Благодаря за помоща на теб и на тоя екип да ви пожелая да сте живи и здрави и да ви кажа че към вас се пресъедини един нов лоялен фен на www.kaldata.com
-
Results of screen317's Security Check version 0.99.5 Windows XP Service Pack 3 (UAC is disabled!) Internet Explorer 6 Out of date! `````````````````````````````` Antivirus/Firewall Check: Windows Firewall Enabled! WMI entry may not exist for antivirus; attempting automatic update. ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware Adobe Flash Player 10.1.82.76 Mozilla Firefox (3.0.) Firefox Out of Date! ```````````````````````````````` Process Check: objlist.exe by Laurent ```````````````````````````````` DNS Vulnerability Check: GREAT! (Not vulnerable to DNS cache poisoning) ``````````End of Log```````````` Reg export of SafeBoot key after repair: ======================== Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot] "AlternateShell"="cmd.exe" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\AppMgmt] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\Base] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\Boot Bus Extender] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\Boot file system] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\CryptSvc] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\DcomLaunch] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\dmadmin] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\dmboot.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\dmio.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\dmload.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\dmserver] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\EventLog] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\File system] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\Filter] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\HelpSvc] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\Netlogon] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\PCI Configuration] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\PlugPlay] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\PNP Filter] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\Primary disk] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\RpcSs] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\SCSI Class] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\sermouse.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\sr.sys] @="FSFilter System Recovery" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\SRService] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\System Bus Extender] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\vga.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\vgasave.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\WinMgmt] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}] @="Universal Serial Bus controllers" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}] @="CD-ROM Drive" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}] @="DiskDrive" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}] @="Standard floppy disk controller" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}] @="Hdc" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}] @="Keyboard" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}] @="Mouse" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}] @="PCMCIA Adapters" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}] @="SCSIAdapter" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}] @="System" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}] @="Floppy disk drive" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] @="Volume" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] @="Human Interface Devices" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\AFD] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\AppMgmt] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Base] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Boot Bus Extender] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Boot file system] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Browser] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\CryptSvc] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\DcomLaunch] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Dhcp] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\dmadmin] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\dmboot.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\dmio.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\dmload.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\dmserver] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\DnsCache] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\EventLog] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\File system] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Filter] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\HelpSvc] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\ip6fw.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\ipnat.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\LanmanServer] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\LanmanWorkstation] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\LmHosts] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Messenger] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\NDIS] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\NDIS Wrapper] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Ndisuio] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\NetBIOS] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\NetBIOSGroup] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\NetBT] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\NetDDEGroup] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Netlogon] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\NetMan] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Network] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\NetworkProvider] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\NtLmSsp] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\PCI Configuration] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\PlugPlay] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\PNP Filter] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\PNP_TDI] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Primary disk] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\rdpcdd.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\rdpdd.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\rdpwd.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\rdsessmgr] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\RpcSs] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\SCSI Class] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\sermouse.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\SharedAccess] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\sr.sys] @="FSFilter System Recovery" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\SRService] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Streams Drivers] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\System Bus Extender] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\Tcpip] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\TDI] @="Driver Group" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\tdpipe.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\tdtcp.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\termservice] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\vga.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\vgasave.sys] @="Driver" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\WinMgmt] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\WZCSVC] @="Service" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{36FC9E60-C465-11CF-8056-444553540000}] @="Universal Serial Bus controllers" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E965-E325-11CE-BFC1-08002BE10318}] @="CD-ROM Drive" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E967-E325-11CE-BFC1-08002BE10318}] @="DiskDrive" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E969-E325-11CE-BFC1-08002BE10318}] @="Standard floppy disk controller" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E96A-E325-11CE-BFC1-08002BE10318}] @="Hdc" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E96B-E325-11CE-BFC1-08002BE10318}] @="Keyboard" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E96F-E325-11CE-BFC1-08002BE10318}] @="Mouse" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}] @="Net" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E973-E325-11CE-BFC1-08002BE10318}] @="NetClient" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E974-E325-11CE-BFC1-08002BE10318}] @="NetService" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E975-E325-11CE-BFC1-08002BE10318}] @="NetTrans" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E977-E325-11CE-BFC1-08002BE10318}] @="PCMCIA Adapters" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E97B-E325-11CE-BFC1-08002BE10318}] @="SCSIAdapter" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E97D-E325-11CE-BFC1-08002BE10318}] @="System" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{4D36E980-E325-11CE-BFC1-08002BE10318}] @="Floppy disk drive" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] @="Volume" [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\Network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] @="Human Interface Devices" ========================
-
намерих го Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 4573 Windows 5.1.2600 Service Pack 3 Internet Explorer 6.0.2900.5512 08.9.2010 г. 23:48:30 mbam-log-2010-09-08 (23-48-30).txt Scan type: Quick scan Objects scanned: 123474 Time elapsed: 2 minute(s), 59 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 2 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools (Hijack.Regedit) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools (Hijack.Regedit) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)
-
Извиняваи обаче след рестартирането незнам ж коя директория са запаметени резултатите, да сканирам ли наново
-
Да мога да влизам
-
Готово маи OTL logfile created on: 08.9.2010 г. 23:24:05 - Run 5 OTL by OldTimer - Version 3.2.11.0 Folder = C:\Documents and Settings\levski\Desktop Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000402 | Country: Bulgaria | Language: BGR | Date Format: dd.M.yyyy 'г.' 1 023,00 Mb Total Physical Memory | 546,00 Mb Available Physical Memory | 53,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 84,00% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 48,83 Gb Total Space | 43,67 Gb Free Space | 89,42% Space Free | Partition Type: NTFS Drive D: | 100,21 Gb Total Space | 99,74 Gb Free Space | 99,53% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: LEVSKI-FA165284 Current User Name: levski Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: On Skip Microsoft Files: On File Age = 90 Days Output = Minimal Quick Scan ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\levski\Desktop\OTL.scr (OldTimer Tools) PRC - C:\programi i igri\uTorrent.exe (BitTorrent, Inc.) PRC - C:\programi i igri\Advanced SystemCare 3\AWC.exe (IObit) PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\WINDOWS\ATKKBService.exe (ASUSTeK COMPUTER INC.) PRC - C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe (ATI Technologies Inc.) PRC - C:\Program Files\Datecs\FlexType 2K\FType2K.exe () ========== Modules (SafeList) ========== MOD - C:\Documents and Settings\levski\Desktop\OTL.scr (OldTimer Tools) MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation) MOD - C:\WINDOWS\system32\newdll.dll () ========== Win32 Services (SafeList) ========== SRV - (HidServ) -- C:\WINDOWS\System32\hidserv.dll File not found SRV - (ATKKeyboardService) -- C:\WINDOWS\ATKKBService.exe (ASUSTeK COMPUTER INC.) ========== Driver Services (SafeList) ========== DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows ® Server 2003 DDK provider) DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.) DRV - (asuskbnt) -- C:\WINDOWS\system32\drivers\atkkbnt.sys (ASUSTeK COMPUTER INC.) DRV - (EIO) -- C:\WINDOWS\system32\drivers\EIO.sys (ASUSTeK Computer Inc.) DRV - (Video3D) -- C:\WINDOWS\system32\drivers\Video3D32.sys (ASUSTeK COMPUTER INC.) DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys (Realtek Semiconductor Corp.) DRV - (RTL8023xp) -- C:\WINDOWS\system32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation ) DRV - (xfilt) -- C:\WINDOWS\system32\DRIVERS\xfilt.sys (VIA Technologies,Inc) DRV - (videX32) -- C:\WINDOWS\system32\DRIVERS\videX32.sys (VIA Technologies, Inc.) DRV - (MTsensor) -- C:\WINDOWS\system32\drivers\ASACPI.sys () DRV - (AmdK8) -- C:\WINDOWS\system32\drivers\AmdK8.sys (Advanced Micro Devices) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.startup.homepage: "google.bg" FF - HKLM\software\mozilla\Mozilla Firefox 3.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.09.08 17:16:53 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.09.08 17:16:50 | 000,000,000 | ---D | M] [2010.09.08 17:16:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\levski\Application Data\Mozilla\Extensions [2010.09.08 17:16:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\levski\Application Data\Mozilla\Firefox\Profiles\55bzdxr5.default\extensions [2010.09.08 17:16:50 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2008.01.04 18:36:50 | 000,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml [2008.01.04 18:36:50 | 000,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml [2008.01.04 18:36:50 | 000,001,077 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml [2008.01.04 18:36:50 | 000,000,831 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml O1 HOSTS File: ([2010.09.08 23:07:40 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe () O4 - HKLM..\Run: [skyTel] C:\WINDOWS\SkyTel.exe (Realtek Semiconductor Corp.) O4 - HKCU..\Run: [Advanced SystemCare 3] C:\programi i igri\Advanced SystemCare 3\AWC.exe (IObit) O4 - HKCU..\Run: [uTorrent] C:\programi i igri\uTorrent.exe (BitTorrent, Inc.) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\FlexType 2K.lnk = C:\Program Files\Datecs\FlexType 2K\FType2K.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1 O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 90 Days ========== [2010.09.08 23:07:41 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010.09.08 22:33:12 | 000,574,976 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\levski\Desktop\OTL.scr [2010.09.08 21:53:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Application Data\WinRAR [2010.09.08 19:19:42 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010.09.08 19:19:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010.09.08 19:19:38 | 000,000,000 | R--D | C] -- C:\Program Files [2010.09.08 19:19:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010.09.08 19:19:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010.09.08 19:19:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010.09.08 19:19:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu [2010.09.08 19:19:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents [2010.09.08 19:19:10 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates [2010.09.08 19:19:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites [2010.09.08 19:19:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop [2010.09.08 19:18:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010.09.08 19:18:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010.09.08 19:18:53 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft [2010.09.08 19:18:53 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data [2010.09.08 19:18:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010.09.08 19:14:35 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010.09.08 19:14:31 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010.09.08 19:14:31 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010.09.08 19:14:31 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010.09.08 19:14:31 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010.09.08 19:14:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010.09.08 18:14:52 | 000,000,000 | ---D | C] -- C:\_OTL [2010.09.08 17:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Application Data\Macromedia [2010.09.08 17:28:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Application Data\Adobe [2010.09.08 17:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010.09.08 17:16:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Local Settings\Application Data\Mozilla [2010.09.08 17:16:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Application Data\Mozilla [2010.09.08 17:16:49 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010.09.08 17:15:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Application Data\IObit [2010.09.08 17:11:27 | 000,000,000 | ---D | C] -- C:\Program Files\Datecs [2010.09.08 17:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Application Data\uTorrent [2010.09.08 17:05:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\My Documents\The KMPlayer [2010.09.08 17:04:29 | 000,000,000 | ---D | C] -- C:\programi i igri [2010.09.08 17:03:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Application Data\skypePM [2010.09.08 17:03:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Application Data\Skype [2010.09.08 17:02:56 | 000,000,000 | ---D | C] -- C:\Program Files\Skype [2010.09.08 17:02:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2010.09.08 17:02:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype [2010.09.08 17:00:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2010.09.08 17:00:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Local Settings\Application Data\ATI [2010.09.08 17:00:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Application Data\ATI [2010.09.08 16:55:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2010.09.08 16:55:30 | 000,081,408 | R--- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\Rtnicxp.sys [2010.09.08 16:53:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2010.09.08 16:53:32 | 002,808,832 | R--- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe [2010.09.08 16:53:31 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2010.09.08 16:53:26 | 000,011,264 | R--- | C] (VIA Technologies,Inc) -- C:\WINDOWS\System32\drivers\xfilt.sys [2010.09.08 16:52:32 | 000,000,000 | ---D | C] -- C:\Program Files\VIA [2010.09.08 16:52:18 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX [2010.09.08 16:52:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010.09.08 16:52:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2010.09.08 16:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\directx [2010.09.08 16:50:31 | 000,000,000 | ---D | C] -- C:\Program Files\VGA USB Camera [2010.09.08 16:50:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Options [2010.09.08 16:50:00 | 000,000,000 | ---D | C] -- C:\Program Files\VID_0E8F&PID_0003 [2010.09.08 16:49:21 | 000,000,000 | ---D | C] -- C:\Program Files\My Company Name [2010.09.08 16:49:15 | 000,258,560 | ---- | C] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\ATKKBService.exe [2010.09.08 16:49:15 | 000,188,416 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\atipdlxx.dll [2010.09.08 16:49:15 | 000,114,688 | ---- | C] (ASUSTek) -- C:\WINDOWS\OneTouchVga.dll [2010.09.08 16:49:15 | 000,090,112 | ---- | C] (ASUSTek Computer Inc.,) -- C:\WINDOWS\EIO.dll [2010.09.08 16:49:15 | 000,073,728 | ---- | C] (ASUS) -- C:\WINDOWS\ASUSRC.dll [2010.09.08 16:49:15 | 000,015,872 | ---- | C] (Overclocking Tool) -- C:\WINDOWS\atikia64.sys [2010.09.08 16:49:15 | 000,015,360 | ---- | C] (ASUSTeK Computer Inc.) -- C:\WINDOWS\EIO64.sys [2010.09.08 16:49:15 | 000,012,288 | ---- | C] (ASUSTeK Computer Inc.) -- C:\WINDOWS\EIO.sys [2010.09.08 16:49:15 | 000,011,008 | ---- | C] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\System32\drivers\atkkbnt.sys [2010.09.08 16:49:15 | 000,010,752 | ---- | C] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\System32\drivers\Video3D32.sys [2010.09.08 16:49:15 | 000,008,704 | ---- | C] (ASMT) -- C:\WINDOWS\System32\drivers\Bravo.sys [2010.09.08 16:49:15 | 000,007,680 | ---- | C] (Overclocking Tool) -- C:\WINDOWS\atillk64.sys [2010.09.08 16:49:15 | 000,005,376 | ---- | C] (Overclocking Tool) -- C:\WINDOWS\atidgllk.sys [2010.09.08 16:49:14 | 001,695,744 | ---- | C] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\System32\ATKDispCPL.dll [2010.09.08 16:49:14 | 000,944,128 | ---- | C] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\System32\ATKOSDX32.dll [2010.09.08 16:49:14 | 000,249,216 | ---- | C] (ASUSTeK Computer Inc.) -- C:\WINDOWS\System32\ATKDISP.dll [2010.09.08 16:49:14 | 000,039,424 | ---- | C] (ASUSTeK COMPUTER INC.) -- C:\WINDOWS\System32\ATKOGL32.dll [2010.09.08 16:47:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies [2010.09.08 16:45:35 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2010.09.08 16:45:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2010.09.08 16:44:07 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies [2010.09.08 16:44:04 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010.09.08 16:43:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010.09.08 16:43:22 | 000,012,288 | R--- | C] (ASUSTeK Computer Inc.) -- C:\WINDOWS\System32\drivers\EIO.sys [2010.09.08 16:34:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Application Data\Identities [2010.09.08 16:34:12 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010.09.08 16:34:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\levski\My Documents\My Pictures [2010.09.08 16:34:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\levski\My Documents\My Music [2010.09.08 16:34:05 | 000,000,000 | --SD | C] -- C:\Documents and Settings\levski\Application Data\Microsoft [2010.09.08 16:34:05 | 000,000,000 | --SD | C] -- C:\Documents and Settings\levski\Cookies [2010.09.08 16:34:05 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\levski\SendTo [2010.09.08 16:34:05 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\levski\Recent [2010.09.08 16:34:05 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\levski\Application Data [2010.09.08 16:34:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\levski\Start Menu [2010.09.08 16:34:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\levski\My Documents [2010.09.08 16:34:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\levski\Favorites [2010.09.08 16:34:05 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\levski\Templates [2010.09.08 16:34:05 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\levski\PrintHood [2010.09.08 16:34:05 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\levski\NetHood [2010.09.08 16:34:05 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\levski\Local Settings [2010.09.08 16:34:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Local Settings\Application Data\Microsoft [2010.09.08 16:34:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\levski\Desktop [2010.09.08 16:33:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010.09.08 16:33:19 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010.09.08 16:33:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010.09.08 16:33:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft [2010.09.08 16:33:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft [2010.09.08 16:32:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft [2010.09.08 16:32:30 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft [2010.09.08 16:30:56 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010.09.08 16:30:56 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010.09.08 16:30:56 | 000,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010.09.08 16:29:56 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010.09.08 16:29:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010.09.08 16:29:31 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010.09.08 16:29:31 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010.09.08 16:28:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2010.09.08 16:28:50 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010.09.08 16:27:51 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010.09.08 16:27:44 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010.09.08 16:27:44 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2010.09.08 16:27:36 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010.09.08 16:27:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010.09.08 16:27:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010.09.08 16:27:02 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010.09.08 16:27:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010.09.08 16:26:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010.09.08 16:26:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010.09.08 16:26:50 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010.09.08 16:26:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010.09.08 16:26:26 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010.09.08 16:26:24 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010.09.08 16:26:18 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010.09.08 16:26:17 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010.09.08 16:26:16 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures [2010.09.08 16:25:49 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010.09.08 16:25:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010.09.08 16:25:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music [2010.09.08 16:25:38 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010.09.08 16:25:38 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services [2010.09.08 16:25:31 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010.09.08 16:25:27 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010.09.08 16:24:55 | 000,000,000 | ---D | C] -- C:\Program Files\MSN [2010.09.08 16:24:54 | 000,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010.09.08 16:24:53 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010.09.08 16:24:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2010.09.08 16:24:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010.09.08 16:24:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010.09.08 16:24:33 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos ========== Files - Modified Within 90 Days ========== [2010.09.08 23:21:10 | 313,581,501 | ---- | M] () -- C:\Documents and Settings\levski\Desktop\Counter Strike 1.6+ bots+pach.rar [2010.09.08 23:18:27 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk [2010.09.08 23:10:04 | 001,048,576 | -H-- | M] () -- C:\Documents and Settings\levski\NTUSER.DAT [2010.09.08 23:08:21 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010.09.08 23:08:19 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010.09.08 23:07:40 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts [2010.09.08 23:01:51 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\levski\ntuser.ini [2010.09.08 22:33:18 | 000,574,976 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\levski\Desktop\OTL.scr [2010.09.08 19:23:04 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [2010.09.08 19:19:37 | 000,000,231 | ---- | M] () -- C:\WINDOWS\system.ini [2010.09.08 17:37:15 | 003,752,892 | -H-- | M] () -- C:\Documents and Settings\levski\Local Settings\Application Data\IconCache.db [2010.09.08 17:24:06 | 000,013,432 | ---- | M] () -- C:\Documents and Settings\levski\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [2010.09.08 17:23:45 | 000,096,664 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010.09.08 17:16:55 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010.09.08 17:16:51 | 000,001,620 | ---- | M] () -- C:\Documents and Settings\levski\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2010.09.08 17:11:43 | 000,000,729 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\FlexType 2K.lnk [2010.09.08 17:04:30 | 000,458,340 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010.09.08 17:04:30 | 000,392,626 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010.09.08 17:04:30 | 000,058,800 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010.09.08 17:03:51 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat [2010.09.08 17:00:38 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010.09.08 17:00:38 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010.09.08 16:52:07 | 000,000,223 | RHS- | M] () -- C:\boot.ini [2010.09.08 16:51:28 | 000,009,592 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini [2010.09.08 16:48:40 | 000,001,875 | ---- | M] () -- C:\Documents and Settings\levski\My Documents\Catalyst Control Center.lnk [2010.09.08 16:34:20 | 000,000,779 | ---- | M] () -- C:\Documents and Settings\levski\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2010.09.08 16:34:19 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\levski\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf [2010.09.08 16:34:04 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010.09.08 16:32:33 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010.09.08 16:31:30 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010.09.08 16:28:37 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010.09.08 16:28:37 | 000,000,477 | ---- | M] () -- C:\WINDOWS\win.ini [2010.09.08 16:28:37 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010.09.08 16:28:37 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010.09.08 16:28:37 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010.09.08 16:28:37 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010.09.08 16:28:34 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010.09.08 16:28:34 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010.09.08 16:28:33 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010.09.08 16:28:26 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010.09.08 16:27:44 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010.09.08 16:27:44 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010.09.08 16:25:57 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010.09.08 16:25:47 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010.09.08 16:25:47 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini ========== Files Created - No Company Name ========== [2010.09.08 23:19:03 | 313,581,501 | ---- | C] () -- C:\Documents and Settings\levski\Desktop\Counter Strike 1.6+ bots+pach.rar [2010.09.08 19:23:04 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010.09.08 19:19:39 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010.09.08 19:19:39 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010.09.08 19:19:39 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010.09.08 19:19:38 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010.09.08 19:19:33 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010.09.08 19:19:33 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010.09.08 19:19:31 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010.09.08 19:19:31 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010.09.08 19:19:31 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010.09.08 19:19:31 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010.09.08 19:19:31 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010.09.08 19:19:31 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010.09.08 19:19:29 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010.09.08 19:19:29 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010.09.08 19:19:29 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010.09.08 19:19:29 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010.09.08 19:19:29 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010.09.08 19:19:29 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010.09.08 19:19:28 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010.09.08 19:19:28 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010.09.08 19:19:28 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010.09.08 19:19:28 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010.09.08 19:19:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010.09.08 19:19:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010.09.08 19:19:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010.09.08 19:19:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010.09.08 19:19:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010.09.08 19:19:28 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010.09.08 19:19:26 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010.09.08 19:19:26 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010.09.08 19:19:26 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010.09.08 19:19:26 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010.09.08 19:19:26 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010.09.08 19:19:26 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010.09.08 19:19:25 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls [2010.09.08 19:19:25 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls [2010.09.08 19:19:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010.09.08 19:19:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010.09.08 19:19:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010.09.08 19:19:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010.09.08 19:19:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010.09.08 19:19:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010.09.08 19:19:22 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010.09.08 19:19:22 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010.09.08 19:19:18 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010.09.08 19:19:08 | 001,296,669 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010.09.08 19:19:08 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010.09.08 19:19:08 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010.09.08 19:19:08 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010.09.08 19:19:08 | 000,112,918 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010.09.08 19:19:08 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010.09.08 19:19:08 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010.09.08 19:19:08 | 000,034,063 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010.09.08 19:19:08 | 000,026,991 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat [2010.09.08 19:19:08 | 000,016,535 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010.09.08 19:19:08 | 000,014,433 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat [2010.09.08 19:19:08 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010.09.08 19:19:08 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010.09.08 19:19:08 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010.09.08 19:19:08 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010.09.08 19:19:08 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010.09.08 19:19:08 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010.09.08 19:19:07 | 002,144,487 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010.09.08 19:19:07 | 000,522,220 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010.09.08 19:18:34 | 000,096,664 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010.09.08 19:17:29 | 000,000,223 | RHS- | C] () -- C:\boot.ini [2010.09.08 19:17:25 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010.09.08 17:16:55 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010.09.08 17:16:51 | 000,001,620 | ---- | C] () -- C:\Documents and Settings\levski\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2010.09.08 17:11:43 | 000,000,729 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\FlexType 2K.lnk [2010.09.08 17:11:39 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\C_856.nls [2010.09.08 17:11:39 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\newdll.dll [2010.09.08 17:03:51 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat [2010.09.08 17:02:57 | 000,002,257 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk [2010.09.08 17:00:38 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2010.09.08 17:00:37 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2010.09.08 16:54:19 | 000,143,360 | R--- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2010.09.08 16:54:19 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2010.09.08 16:51:28 | 000,009,592 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini [2010.09.08 16:51:25 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys [2010.09.08 16:51:22 | 000,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS [2010.09.08 16:49:15 | 000,639,046 | ---- | C] () -- C:\WINDOWS\aticlocklib.dll [2010.09.08 16:49:15 | 000,196,662 | ---- | C] () -- C:\WINDOWS\System32\ATKF16.rc0 [2010.09.08 16:49:15 | 000,196,662 | ---- | C] () -- C:\WINDOWS\System32\ATKF12.rc0 [2010.09.08 16:49:15 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nVivid.bin [2010.09.08 16:49:15 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nStandard.bin [2010.09.08 16:49:15 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nAsmedia.bin [2010.09.08 16:49:15 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\nAdvanced.bin [2010.09.08 16:49:15 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\aVivid.bin [2010.09.08 16:49:15 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\aStandard.bin [2010.09.08 16:49:15 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\aAsmedia.bin [2010.09.08 16:49:15 | 000,196,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\aAdvanced.bin [2010.09.08 16:49:15 | 000,110,592 | ---- | C] () -- C:\WINDOWS\R5ClkLib.dll [2010.09.08 16:49:15 | 000,020,480 | ---- | C] () -- C:\WINDOWS\HyperDrive.exe [2010.09.08 16:49:15 | 000,011,136 | ---- | C] () -- C:\WINDOWS\System32\ATKOSDMini.DLL [2010.09.08 16:49:15 | 000,001,540 | ---- | C] () -- C:\WINDOWS\System32\ATKF16.rc1 [2010.09.08 16:49:15 | 000,001,540 | ---- | C] () -- C:\WINDOWS\System32\ATKF12.rc1 [2010.09.08 16:49:15 | 000,000,018 | ---- | C] () -- C:\WINDOWS\System32\atkid.ini [2010.09.08 16:49:14 | 000,245,816 | ---- | C] () -- C:\WINDOWS\System32\overtrial.rc0 [2010.09.08 16:49:14 | 000,245,816 | ---- | C] () -- C:\WINDOWS\System32\atkosd.rc0 [2010.09.08 16:49:14 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\aseng.dll [2010.09.08 16:49:14 | 000,033,102 | ---- | C] () -- C:\WINDOWS\System32\trialatkgeneral.rc0 [2010.09.08 16:49:14 | 000,024,632 | ---- | C] () -- C:\WINDOWS\System32\atkrec.rc0 [2010.09.08 16:49:14 | 000,018,846 | ---- | C] () -- C:\WINDOWS\System32\trialatkgft.rc0 [2010.09.08 16:49:14 | 000,016,062 | ---- | C] () -- C:\WINDOWS\System32\atksht.rc0 [2010.09.08 16:49:14 | 000,016,062 | ---- | C] () -- C:\WINDOWS\System32\atkgtvt.rc0 [2010.09.08 16:49:14 | 000,016,062 | ---- | C] () -- C:\WINDOWS\System32\atkgft.rc0 [2010.09.08 16:49:14 | 000,016,062 | ---- | C] () -- C:\WINDOWS\System32\atkdst.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\trialatkshon.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\trialatkshoff.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\trialatkgtvon.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\trialatkgtvoff.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\trialatkgfon.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\trialatkgfoff.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\trialatkdson.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\trialatkdsoff.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\atkshon.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\atkshoff.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\atkgtvon.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\atkgtvoff.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\atkgfon.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\atkgfoff.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\atkdson.rc0 [2010.09.08 16:49:14 | 000,007,806 | ---- | C] () -- C:\WINDOWS\System32\atkdsoff.rc0 [2010.09.08 16:48:40 | 000,001,875 | ---- | C] () -- C:\Documents and Settings\levski\My Documents\Catalyst Control Center.lnk [2010.09.08 16:44:22 | 000,006,973 | R--- | C] () -- C:\WINDOWS\System32\atifglpf.xml [2010.09.08 16:44:20 | 003,107,788 | R--- | C] () -- C:\WINDOWS\System32\ativvaxx.dat [2010.09.08 16:44:20 | 000,142,347 | R--- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2010.09.08 16:44:18 | 000,655,842 | R--- | C] () -- C:\WINDOWS\System32\drivers\ativcaxx.cpa [2010.09.08 16:44:18 | 000,038,944 | R--- | C] () -- C:\WINDOWS\System32\drivers\ativvpxx.vp [2010.09.08 16:44:18 | 000,002,096 | R--- | C] () -- C:\WINDOWS\System32\drivers\ativdkxx.vp [2010.09.08 16:44:18 | 000,002,096 | R--- | C] () -- C:\WINDOWS\System32\drivers\ativckxx.vp [2010.09.08 16:44:18 | 000,000,929 | R--- | C] () -- C:\WINDOWS\System32\drivers\ativcaxx.vp [2010.09.08 16:34:19 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\levski\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf [2010.09.08 16:34:11 | 000,000,779 | ---- | C] () -- C:\Documents and Settings\levski\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2010.09.08 16:34:06 | 000,001,024 | -H-- | C] () -- C:\Documents and Settings\levski\ntuser.dat.LOG [2010.09.08 16:34:06 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\levski\ntuser.ini [2010.09.08 16:34:05 | 001,048,576 | -H-- | C] () -- C:\Documents and Settings\levski\NTUSER.DAT [2010.09.08 16:32:33 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010.09.08 16:31:30 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010.09.08 16:31:19 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010.09.08 16:30:52 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010.09.08 16:30:52 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010.09.08 16:30:50 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010.09.08 16:30:36 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010.09.08 16:30:35 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010.09.08 16:30:29 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010.09.08 16:30:28 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010.09.08 16:30:26 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010.09.08 16:30:17 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010.09.08 16:30:12 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010.09.08 16:30:08 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010.09.08 16:29:59 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010.09.08 16:29:56 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010.09.08 16:29:56 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010.09.08 16:29:56 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010.09.08 16:29:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010.09.08 16:29:55 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010.09.08 16:29:55 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010.09.08 16:29:55 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010.09.08 16:29:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010.09.08 16:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010.09.08 16:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010.09.08 16:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010.09.08 16:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010.09.08 16:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010.09.08 16:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010.09.08 16:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010.09.08 16:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010.09.08 16:29:53 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010.09.08 16:29:53 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010.09.08 16:29:53 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010.09.08 16:29:53 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010.09.08 16:29:53 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010.09.08 16:29:53 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010.09.08 16:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010.09.08 16:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010.09.08 16:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010.09.08 16:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010.09.08 16:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010.09.08 16:29:52 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010.09.08 16:29:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010.09.08 16:29:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010.09.08 16:29:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010.09.08 16:29:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010.09.08 16:29:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010.09.08 16:29:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010.09.08 16:29:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010.09.08 16:29:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010.09.08 16:29:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010.09.08 16:29:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010.09.08 16:29:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010.09.08 16:29:51 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010.09.08 16:29:51 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010.09.08 16:29:51 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010.09.08 16:29:51 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010.09.08 16:29:51 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010.09.08 16:29:51 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010.09.08 16:29:51 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010.09.08 16:29:50 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010.09.08 16:29:50 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010.09.08 16:28:37 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010.09.08 16:28:37 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010.09.08 16:28:37 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010.09.08 16:28:37 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010.09.08 16:28:34 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010.09.08 16:28:34 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010.09.08 16:28:33 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010.09.08 16:27:44 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010.09.08 16:27:44 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010.09.08 16:27:39 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010.09.08 16:27:26 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010.09.08 16:27:12 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010.09.08 16:27:12 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010.09.08 16:27:06 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010.09.08 16:26:32 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010.09.08 16:25:57 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010.09.08 16:25:15 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp [2010.09.08 16:25:15 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp [2010.09.08 16:25:15 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp [2010.09.08 16:25:14 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010.09.08 16:25:14 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp [2010.09.08 16:25:14 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp [2010.09.08 16:25:14 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp [2010.09.08 16:25:14 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp [2010.09.08 16:25:14 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp [2010.09.08 16:25:14 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp [2010.09.08 16:25:14 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp [2010.09.08 16:25:14 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp [2010.09.08 16:25:13 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010.09.08 16:25:13 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010.09.08 16:25:13 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010.09.08 16:25:13 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010.09.08 16:25:13 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010.09.08 16:25:13 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010.09.08 16:25:13 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010.09.08 16:25:11 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010.09.08 16:25:11 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010.09.08 16:25:10 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010.09.08 16:25:05 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc ========== LOP Check ========== [2010.09.08 17:15:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\levski\Application Data\IObit [2010.09.08 23:19:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\levski\Application Data\uTorrent ========== Purity Check ========== < End of report >
-
Извинявай обаче освен това незнам кое друго може да е лог файла.Следвам изструкциите но ако трябва ще се мъча наново. All processes killed ========== OTL ========== No active process named zclvbko.exe was found! No active process named ykcvkcpcwhauexoz.exe was found! Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\oscnuejo not found. File C:\WINDOWS\System32\ocwricrgcpkgsngtby.exe not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\qaqhukvgyhyqyp not found. File C:\Documents and Settings\levski\Local Settings\Temp\ykcvkcpcwhauexoz.exe not found. Registry value HKEY_USERS\S-1-5-21-1606980848-789336058-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run\\oscnuejo not found. File C:\Documents and Settings\levski\Local Settings\Temp\fslfvocqlxrmxrjvc.exe not found. Registry value HKEY_USERS\S-1-5-21-1606980848-789336058-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run\\tanblygodjx not found. File C:\WINDOWS\System32\ykcvkcpcwhauexoz.exe not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\fkvhpagmz not found. File C:\WINDOWS\System32\fslfvocqlxrmxrjvc.exe not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\pyndpeoypxnel not found. File C:\Documents and Settings\levski\Local Settings\Temp\zojfxsiyvjfcplftcau.exe not found. Registry value HKEY_USERS\S-1-5-21-1606980848-789336058-682003330-1003\Software\Microsoft\Windows\CurrentVersion\RunOnce\\fkvhpagmz not found. File C:\Documents and Settings\levski\Local Settings\Temp\zojfxsiyvjfcplftcau.exe not found. Registry value HKEY_USERS\S-1-5-21-1606980848-789336058-682003330-1003\Software\Microsoft\Windows\CurrentVersion\RunOnce\\qymbmajsipeu not found. File C:\WINDOWS\System32\ykcvkcpcwhauexoz.exe not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\yeqdmyfmaf not found. File mcyvokbsqfcaolgvfezv.exe not found. Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\zclvbko not found. File C:\DOCUME~1\levski\LOCALS~1\Temp\fslfvocqlxrmxrjvc.exe not found. File C:\autorun.inf not found. File D:\autorun.inf not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d4c517b5-bb61-11df-abea-806d6172696f}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d4c517b5-bb61-11df-abea-806d6172696f}\ not found. File C:\tanblygodjx.bat not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d4c517b5-bb61-11df-abea-806d6172696f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d4c517b5-bb61-11df-abea-806d6172696f}\ not found. File C:\tevnbseqjtlenfv.bat not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d4c517b5-bb61-11df-abea-806d6172696f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d4c517b5-bb61-11df-abea-806d6172696f}\ not found. File C:\pyndpeoypxnel.bat not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d4c517b6-bb61-11df-abea-806d6172696f}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d4c517b6-bb61-11df-abea-806d6172696f}\ not found. File D:\tanblygodjx.bat not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d4c517b6-bb61-11df-abea-806d6172696f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d4c517b6-bb61-11df-abea-806d6172696f}\ not found. File D:\tevnbseqjtlenfv.bat not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d4c517b6-bb61-11df-abea-806d6172696f}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d4c517b6-bb61-11df-abea-806d6172696f}\ not found. File D:\pyndpeoypxnel.bat not found. ========== FILES ========== File\Folder C:\WINDOWS\System32\fkvhpagmzdpcfrbfescnypbtjwbmygr.dqu not found. File\Folder C:\WINDOWS\fkvhpagmzdpcfrbfescnypbtjwbmygr.dqu not found. File\Folder C:\Program Files\fkvhpagmzdpcfrbfescnypbtjwbmygr.dqu not found. File\Folder C:\Documents and Settings\levski\Local Settings\Application Data\fkvhpagmzdpcfrbfescnypbtjwbmygr.dqu not found. File\Folder C:\WINDOWS\System32\dyzbzawsvprunppjyccde.nvb not found. File\Folder C:\WINDOWS\dyzbzawsvprunppjyccde.nvb not found. File\Folder C:\Program Files\dyzbzawsvprunppjyccde.nvb not found. File\Folder C:\Documents and Settings\levski\Local Settings\Application Data\dyzbzawsvprunppjyccde.nvb not found. File\Folder C:\WINDOWS\skihcatmmdccsrofrspnlp.exe not found. File\Folder C:\WINDOWS\zojfxsiyvjfcplftcau.exe not found. File\Folder C:\WINDOWS\ykcvkcpcwhauexoz.exe not found. File\Folder C:\WINDOWS\ocwricrgcpkgsngtby.exe not found. File\Folder C:\WINDOWS\mcyvokbsqfcaolgvfezv.exe not found. File\Folder C:\WINDOWS\fslfvocqlxrmxrjvc.exe not found. File\Folder C:\WINDOWS\bspnhewondbapnjzkkgda.exe not found. File\Folder C:\WINDOWS\System32\qymbmajsipeuapcjlcpdrlavoemapaoxgw.sio not found. File\Folder C:\WINDOWS\qymbmajsipeuapcjlcpdrlavoemapaoxgw.sio not found. File\Folder C:\Program Files\qymbmajsipeuapcjlcpdrlavoemapaoxgw.sio not found. File\Folder C:\Documents and Settings\levski\Local Settings\Application Data\qymbmajsipeuapcjlcpdrlavoemapaoxgw.sio not found. File\Folder C:\WINDOWS\System32\zojfxsiyvjfcplftcau.exe not found. File\Folder C:\WINDOWS\System32\skihcatmmdccsrofrspnlp.exe not found. File\Folder C:\WINDOWS\System32\ocwricrgcpkgsngtby.exe not found. File\Folder C:\WINDOWS\System32\mcyvokbsqfcaolgvfezv.exe not found. File\Folder C:\WINDOWS\System32\fslfvocqlxrmxrjvc.exe not found. File\Folder C:\WINDOWS\System32\bspnhewondbapnjzkkgda.exe not found. File\Folder C:\WINDOWS\System32\ykcvkcpcwhauexoz.exe not found. File\Folder C:\WINDOWS\System32\pyndpeoypxnelbpxasgvkfvrlclaqcrblck.ryo not found. File\Folder C:\WINDOWS\pyndpeoypxnelbpxasgvkfvrlclaqcrblck.ryo not found. File\Folder C:\Program Files\pyndpeoypxnelbpxasgvkfvrlclaqcrblck.ryo not found. File\Folder C:\Documents and Settings\levski\Local Settings\Application Data\pyndpeoypxnelbpxasgvkfvrlclaqcrblck.ryo not found. File\Folder C:\WINDOWS\yeqdmyfmafsgkxinncnzldqjaougtcov.qvi not found. File\Folder C:\WINDOWS\System32\yeqdmyfmafsgkxinncnzldqjaougtcov.qvi not found. File\Folder C:\Program Files\yeqdmyfmafsgkxinncnzldqjaougtcov.qvi not found. File\Folder C:\Documents and Settings\levski\Local Settings\Application Data\yeqdmyfmafsgkxinncnzldqjaougtcov.qvi not found. File\Folder C:\WINDOWS\System32\qymbmajsipeuapcjlcpdrlavoemapaoxgw.sio not found. File\Folder C:\WINDOWS\qymbmajsipeuapcjlcpdrlavoemapaoxgw.sio not found. File\Folder C:\Program Files\qymbmajsipeuapcjlcpdrlavoemapaoxgw.sio not found. File\Folder C:\Documents and Settings\levski\Local Settings\Application Data\qymbmajsipeuapcjlcpdrlavoemapaoxgw.sio not found. File\Folder C:\WINDOWS\System32\pyndpeoypxnelbpxasgvkfvrlclaqcrblck.ryo not found. File\Folder C:\WINDOWS\pyndpeoypxnelbpxasgvkfvrlclaqcrblck.ryo not found. File\Folder C:\Program Files\pyndpeoypxnelbpxasgvkfvrlclaqcrblck.ryo not found. File\Folder C:\Documents and Settings\levski\Local Settings\Application Data\pyndpeoypxnelbpxasgvkfvrlclaqcrblck.ryo not found. File\Folder C:\WINDOWS\System32\fkvhpagmzdpcfrbfescnypbtjwbmygr.dqu not found. File\Folder C:\WINDOWS\fkvhpagmzdpcfrbfescnypbtjwbmygr.dqu not found. File\Folder C:\Program Files\fkvhpagmzdpcfrbfescnypbtjwbmygr.dqu not found. File\Folder C:\Documents and Settings\levski\Local Settings\Application Data\fkvhpagmzdpcfrbfescnypbtjwbmygr.dqu not found. File\Folder C:\WINDOWS\yeqdmyfmafsgkxinncnzldqjaougtcov.qvi not found. File\Folder C:\WINDOWS\System32\yeqdmyfmafsgkxinncnzldqjaougtcov.qvi not found. File\Folder C:\Program Files\yeqdmyfmafsgkxinncnzldqjaougtcov.qvi not found. File\Folder C:\Documents and Settings\levski\Local Settings\Application Data\yeqdmyfmafsgkxinncnzldqjaougtcov.qvi not found. File\Folder C:\WINDOWS\System32\dyzbzawsvprunppjyccde.nvb not found. File\Folder C:\WINDOWS\dyzbzawsvprunppjyccde.nvb not found. File\Folder C:\Program Files\dyzbzawsvprunppjyccde.nvb not found. File\Folder C:\Documents and Settings\levski\Local Settings\Application Data\dyzbzawsvprunppjyccde.nvb not found. File\Folder C:\WINDOWS\zojfxsiyvjfcplftcau.exe not found. File\Folder C:\WINDOWS\System32\zojfxsiyvjfcplftcau.exe not found. File\Folder C:\WINDOWS\ykcvkcpcwhauexoz.exe not found. File\Folder C:\WINDOWS\System32\ykcvkcpcwhauexoz.exe not found. File\Folder C:\WINDOWS\System32\skihcatmmdccsrofrspnlp.exe not found. File\Folder C:\WINDOWS\skihcatmmdccsrofrspnlp.exe not found. File\Folder C:\WINDOWS\System32\ocwricrgcpkgsngtby.exe not found. File\Folder C:\WINDOWS\ocwricrgcpkgsngtby.exe not found. File\Folder C:\WINDOWS\System32\mcyvokbsqfcaolgvfezv.exe not found. File\Folder C:\WINDOWS\mcyvokbsqfcaolgvfezv.exe not found. File\Folder C:\WINDOWS\System32\fslfvocqlxrmxrjvc.exe not found. File\Folder C:\WINDOWS\fslfvocqlxrmxrjvc.exe not found. File\Folder C:\WINDOWS\System32\bspnhewondbapnjzkkgda.exe not found. File\Folder C:\WINDOWS\bspnhewondbapnjzkkgda.exe not found. File\Folder C:\Program Files\dyzbzawsvprunppjyccde.nvb not found. File\Folder C:\Program Files\fkvhpagmzdpcfrbfescnypbtjwbmygr.dqu not found. File\Folder C:\Program Files\pyndpeoypxnelbpxasgvkfvrlclaqcrblck.ryo not found. File\Folder C:\Program Files\qymbmajsipeuapcjlcpdrlavoemapaoxgw.sio not found. File\Folder C:\Program Files\yeqdmyfmafsgkxinncnzldqjaougtcov.qvi not found. C:\RECYCLER\S-1-5-21-1606980848-789336058-682003330-1003 folder moved successfully. C:\RECYCLER folder moved successfully. D:\RECYCLER\S-1-5-21-1606980848-789336058-682003330-1003 folder moved successfully. D:\RECYCLER folder moved successfully. autorun.inf not found in C:\ autorun.inf not found in D:\ < ipconfig /flushdns /c > Windows IP Configuration Successfully flushed the DNS Resolver Cache. C:\Documents and Settings\levski\Desktop\cmd.bat deleted successfully. C:\Documents and Settings\levski\Desktop\cmd.txt deleted successfully. ========== COMMANDS ========== Restore points cleared and new OTL Restore Point set! C:\WINDOWS\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully [EMPTYTEMP] User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: levski ->Temp folder emptied: 587134 bytes ->Temporary Internet Files folder emptied: 33282 bytes ->FireFox cache emptied: 4163382 bytes ->Flash cache emptied: 0 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 0 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 5,00 mb [EMPTYFLASH] User: All Users User: Default User User: levski ->Flash cache emptied: 0 bytes User: LocalService User: NetworkService Total Flash Files Cleaned = 0,00 mb OTL by OldTimer - Version 3.2.11.0 log created on 09082010_230724 Files\Folders moved on Reboot... Registry entries deleted on Reboot...
-
Ето това трябва да са двата фаила Extras.TxtOTL.Txt
-
здравей имам малък проблем тези правила теми и раздели които ми посочвате по горе в темата немога да вляза във тях защото веднага ме изхвърля,но имам достъп до "Премахване на зловреден софтуер - HiJackThis логове"?
-
Здравейте, проблемът ми е следният,немога да изтегля антивирусна програма.Днес си преинсталирах компа. Към момента не мога да изтегля никаква антивирусна, освен това като напиша името на която или каквото и да е било свързано със антивирусни програми съм изхвърлена незабавно от нета.пробвах всичко но никакъв ефект ,видях една тема почти със същия проблем пробвах със някаква програмка ОТЛ, но немога да завърша всички стъпки без малко помощ и незнам какво да правя сега. Ще съм много благодарен ако някой поне ми разясни какви мерки да взема.Благодаря предварително
Разглеждащи това в момента 0
- Няма регистрирани потребители разглеждащи тази страница.