Your SlideShare is downloading. ×
Frst
Frst
Frst
Frst
Frst
Frst
Frst
Frst
Frst
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

Frst

114

Published on

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
114
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
1
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 21-01-2013 02(ATTENTION: FRST version is 7 days old)Ran by SYSTEM at 28-01-2013 00:38:59Running from G:Windows 7 Ultimate (X86) OS Language: English(US)The current controlset is ControlSet001==================== Registry (Whitelisted) ===================HKLM...Run: [RtHDVCpl] C:Program FilesRealtekAudioHDARtHDVCpl.exe -s[10029672 2011-03-28] (Realtek Semiconductor)HKLM...Run: [RtHDVBg] C:Program FilesRealtekAudioHDARtHDVBg.exe /FORPCEE4[1534568 2011-03-20] (Realtek Semiconductor)HKLM...Run: [Dolby Advanced Audio v2] "C:Dolby PCEE4pcee4.exe" -autostart[506712 2011-02-03] (Dolby Laboratories Inc.)HKLM...Run: [IntelPAN] "C:Program FilesCommonFilesIntelWirelessCommoniFrmewrk.exe" /tf Intel PAN Tray [1210640 2011-05-02](Intel(R) Corporation)HKLM...Run: [Adobe Reader Speed Launcher] "C:Program FilesAdobeReader10.0ReaderReader_sl.exe" [35736 2010-11-15] (Adobe Systems Incorporated)HKLM...Run: [Adobe ARM] "C:Program FilesCommonFilesAdobeARM1.0AdobeARM.exe" [932288 2010-11-15] (Adobe SystemsIncorporated)HKLM...Run: [IntelWirelessWiMAX] "C:ProgramFilesIntelWiMAXBinWiMAXCU.exe" /tasktray /nosplash [1617920 2011-02-27](Intel® Corporation)HKLM...Run: [LogMeIn Hamachi Ui] "C:Program FilesLogMeIn Hamachihamachi-2-ui.exe" --auto-start [2254768 2012-12-10] (LogMeIn Inc.)HKLM...Run: [PrivitizeVPN] C:Program FilesPrivitizeVPNPrivitizeVPN.exe/autorun [196784 2012-09-10] (OOO Industry)HKLM...Run: [APSDaemon] "C:Program FilesCommon FilesAppleApple ApplicationSupportAPSDaemon.exe" [59280 2012-11-28] (Apple Inc.)HKLM...Run: [iTunesHelper] "C:Program FilesiTunesiTunesHelper.exe" [1525442012-12-12] (Apple Inc.)HKU5454...Run: [DAEMON Tools Lite] "C:Program FilesDAEMON ToolsLiteDTLite.exe" -autorun [3671904 2012-08-28] (DT Soft Ltd)HKU5454...Run: [1] C:Users5454AppDataLocalTempUltimate PasswordHacker2012 (1).exe [257536 2012-12-12] (NPwTuu)HKU5454...Run: [SUS Start] C:ProgramDataSUSSUS.exe [2189824 2013-01-03] ()HKLM...RunOnce: [*Restore] C:Windowssystem32rstrui.exe /RUNONCE [2626562010-11-20] (Microsoft Corporation)TcpipParameters: [DhcpNameServer] 192.168.1.1AppInit_DLLs: c:progra~1zoomexsprote~1.dll==================== Services (Whitelisted) ===================3 BITCOMET_HELPER_SERVICE; C:Program FilesBitComettoolsBitCometService.exe-service [1296728 2010-12-28] (www.BitComet.com)4 Browser Manager; C:ProgramDataBrowser Manager2.5.911.18{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}mngr.exe [2402840 2012-11-12] ()3 c2wts; C:Program FilesWindows Identity Foundationv3.5c2wtshost.exe [130802009-12-26] (Microsoft Corporation)2 DMAgent; "C:Program FilesIntelWiMAXBinDMAgent.exe" [450560 2011-02-27](Red Bend Ltd.)2 Hamachi2Svc; "C:Program FilesLogMeIn Hamachihamachi-2.exe" -s [14355682012-12-10] (LogMeIn Inc.)2 HssSrv; C:Program FilesHotspot ShieldHssWPRhsssrv.exe [443760 2012-11-16](AnchorFree Inc.)3 HssTrayService; C:Program FilesHotspot ShieldbinHssTrayService.EXE [780722012-11-14] ()3 MyWiFiDHCPDNS; C:Program FilesIntelWiFibinPanDhcpDns.exe [227600 2011-05-02] ()2 Skype C2C Service; "C:ProgramDataSkypeToolbarsSkype C2CServicec2c_service.exe" [3290896 2012-12-13] (Skype Technologies S.A.)
  • 2. 4 vToolbarUpdater13.2.0; C:Program FilesCommon FilesAVG SecureSearchvToolbarUpdater13.2.0ToolbarUpdater.exe [711112 2012-11-08] ()2 WiMAXAppSrv; "C:Program FilesIntelWiMAXBinAppSrv.exe" [1462272 2011-02-27] (Intel(R) Corporation)==================== Drivers (Whitelisted) ====================1 avgtp; ??C:Windowssystem32driversavgtpx86.sys [26984 2012-11-08] (AVGTechnologies)3 bpenum; C:WindowsSystem32DRIVERSbpenum.sys [60416 2011-02-17] (IntelCorporation)1 dtsoftbus01; C:WindowsSystem32DRIVERSdtsoftbus01.sys [242240 2012-10-06](DT Soft Ltd)3 hamachi; C:WindowsSystem32DRIVERShamachi.sys [26176 2009-03-18] (LogMeIn,Inc.)1 HssDRV6; C:WindowsSystem32DRIVERShssdrv6.sys [35592 2012-11-14](AnchorFree Inc.)3 taphss; C:WindowsSystem32DRIVERStaphss.sys [33512 2012-08-01] (AnchorFreeInc)3 taphss6; C:WindowsSystem32DRIVERStaphss6.sys [35592 2012-11-14](Anchorfree Inc.)3 vpcbus; C:WindowsSystem32DRIVERSvpchbus.sys [165376 2009-11-22] (MicrosoftCorporation)1 vpcnfltr; C:WindowsSystem32DRIVERSvpcnfltr.sys [55040 2009-11-22](Microsoft Corporation)3 vpcusb; C:WindowsSystem32DRIVERSvpcusb.sys [78336 2009-11-22] (MicrosoftCorporation)1 vpcvmm; C:WindowsSystem32driversvpcvmm.sys [293904 2009-11-22] (MicrosoftCorporation)3 Synth3dVsc; C:WindowsSystem32driverssynth3dvsc.sys [x]3 tsusbhub; C:WindowsSystem32driverstsusbhub.sys [x]3 VGPU; C:WindowsSystem32driversrdvgkmd.sys [x]==================== NetSvcs (Whitelisted) ======================================= One Month Created Files and Folders ========2013-01-26 17:58 - 2013-01-27 17:32 - 00000000 ___RD C:Users5454Podcasts2013-01-26 17:55 - 2013-01-27 17:32 - 00000000 ____D C:Program FilesZune2013-01-25 21:34 - 2013-01-25 21:34 - 00000000 ____DC:Users5454AppDataLocalChromium2013-01-25 07:28 - 2013-01-25 07:28 - 00000000 ____DC:UsersPublicDocumentsSports Interactive2013-01-25 07:28 - 2013-01-25 07:28 - 00000000 ____DC:Users5454DocumentsSports Interactive2013-01-25 07:28 - 2013-01-25 07:28 - 00000000 ____DC:Users5454AppDataRoamingSports Interactive2013-01-25 07:28 - 2013-01-25 07:28 - 00000000 ____DC:Users5454AppDataLocalSports Interactive2013-01-25 07:28 - 2013-01-25 07:28 - 00000000 ____DC:Users5454AppDataLocalSKIDROW2013-01-25 07:24 - 2013-01-25 07:26 - 00000000 ____D C:WindowsSystem32directx2013-01-25 07:08 - 2013-01-25 07:08 - 00000000 ____D C:Program FilesAGB-GT2013-01-23 09:47 - 2013-01-23 09:47 - 00937182 ____AC:Users5454Downloads???????????? 80107.crdownload2013-01-23 09:47 - 2013-01-23 09:47 - 00937182 ____AC:Users5454Downloads???????????? 753439.crdownload2013-01-23 09:47 - 2013-01-23 09:47 - 00937182 ____AC:Users5454Downloads???????????? 567821.crdownload2013-01-23 09:47 - 2013-01-23 09:47 - 00937182 ____AC:Users5454Downloads???????????? 532495.crdownload2013-01-18 09:18 - 2012-10-16 13:43 - 00000137 ____AC:Users5454DesktopProcheti!!.txt
  • 3. 2013-01-16 06:53 - 2013-01-16 06:53 - 01702774 ____AC:Users5454DownloadsCira_-_Fenomenalno_Clip2Mp3.org (1).mp3.crdownload2013-01-13 10:29 - 2013-01-13 11:10 - 00700416 ____AC:Users5454Documentsmitko_3.mdb2013-01-13 04:15 - 2013-01-13 04:15 - 00000000 ____D C:users?2013-01-13 03:59 - 2013-01-27 21:33 - 00000000 ____DC:Users5454DocumentsFIFA 112013-01-10 01:11 - 2013-01-10 01:38 - 00131072 ____AC:Users5454Documentsdb1.mdb2013-01-09 14:36 - 2013-01-09 14:37 - 01156435 ____A (Conduit)C:Users5454Downloadsbs_Microsoft_office_2003.exe2013-01-07 08:35 - 2013-01-07 08:37 - 00000000 ____DC:Users5454AppDataRoamingApple Computer2013-01-07 08:35 - 2013-01-07 08:35 - 00001753 ____AC:UsersPublicDesktopiTunes.lnk2013-01-07 08:35 - 2013-01-07 08:35 - 00000000 ____DC:Users5454AppDataLocalApple Computer2013-01-07 08:35 - 2012-08-21 03:01 - 00026840 ____A (GEAR Software Inc.)C:WindowsSystem32DriversGEARAspiWDM.sys2013-01-07 08:34 - 2013-01-07 08:35 - 00000000 ____D C:UsersAllUsers188F1432-103A-4ffb-80F1-36B633C5C9E12013-01-07 08:34 - 2013-01-07 08:35 - 00000000 ____D C:Program FilesiTunes2013-01-07 08:34 - 2013-01-07 08:34 - 00000000 ____D C:UsersAll UsersAppleComputer2013-01-07 08:34 - 2013-01-07 08:34 - 00000000 ____D C:Program FilesiPod2013-01-07 08:33 - 2013-01-07 08:33 - 00000000 ____D C:Program FilesAppleSoftware Update2013-01-07 08:32 - 2013-01-07 08:34 - 00000000 ____D C:Program FilesCommonFilesApple2013-01-07 08:32 - 2013-01-07 08:33 - 00000000 ____D C:UsersAll UsersApple2013-01-07 08:32 - 2013-01-07 08:32 - 00000000 ____D C:Program FilesBonjour2013-01-07 08:28 - 2013-01-07 08:30 - 87143400 ____A (Apple Inc.)C:Users5454DownloadsiTunesSetup.exe2013-01-05 18:14 - 2010-08-17 22:50 - 00002366 ____AC:Users5454Desktopsubsunacs.net_56509.txt2013-01-05 18:14 - 2010-01-22 10:11 - 00067616 ____AC:Users5454DesktopYoung.People.Fucking.2007.BRRip.XviD.AC3-CRiMES.srt2013-01-03 19:29 - 2013-01-04 18:33 - 00000000 ____D C:UsersAll UsersSUS2013-01-03 19:28 - 2013-01-03 19:28 - 00003726 ____AC:Users5454DownloadsArdamax Keylogger 4.0.torrent2013-01-03 19:25 - 2013-01-03 19:26 - 04572248 ____A (Support.com) C:Users5454DownloadsARO2012_bt.exe2013-01-03 19:25 - 2013-01-03 19:25 - 00632952 ____AC:Users5454Downloadscbsidlm-tr1_9-Spyrix_Free_Keylogger-ORG-75708733.exe2013-01-03 19:21 - 2013-01-03 19:21 - 00243273 ____AC:Users5454Downloadsi_bpk2003.exe2013-01-03 19:19 - 2013-01-03 19:19 - 00243273 ____AC:Users5454Downloadsi_bpk2007.exe2013-01-02 17:15 - 2013-01-02 17:15 - 00122976 ____AC:Users5454Downloadscheat_engine(3).exe2013-01-02 17:15 - 2013-01-02 17:15 - 00122976 ____AC:Users5454Downloadscheat_engine(2).exe2013-01-02 17:00 - 2013-01-02 17:21 - 00000000 ____D C:Program FilesProtectedSearch2013-01-02 17:00 - 2013-01-02 17:21 - 00000000 ____D C:Program FilesPC SpeedMaximizer2013-01-02 17:00 - 2013-01-02 17:00 - 00000000 ____D C:ProgramFilesProtectedToolbar2013-01-02 17:00 - 2012-12-02 16:54 - 00011264 ____A C:WindowsLauncher.exe2013-01-02 16:57 - 2013-01-09 17:20 - 00000000 ____D C:Program FilesDealPly2013-01-02 16:57 - 2013-01-02 16:57 - 00000000 ____D C:Program FilesCheatEngine 6.12013-01-02 16:55 - 2013-01-02 16:55 - 00122976 ____AC:Users5454Downloadscheat_engine.exe
  • 4. 2013-01-01 16:31 - 2012-12-12 08:50 - 00056296 ____AC:Users5454Desktoplooper.2012.720p.bluray.x264-sparks.srt2013-01-01 16:31 - 2012-09-29 07:15 - 00001031 ____A C:Users5454Desktop-README - subs.sab.bz - Brought to you by xen.headoff.com -.txt2013-01-01 16:24 - 2012-12-30 08:44 - 00099302 ____NC:Users5454DesktopKilling Them Softly 2012 R3 XviD AC3 - RESiSTANCE.srt2012-12-31 15:49 - 2012-08-30 23:10 - 00001808 ____AC:Users5454Desktopsubsunacs.net_85405.txt2012-12-31 15:49 - 2012-08-30 16:06 - 00029514 ____AC:Users5454DesktopSnow.White.and.the.Huntsman.2012.EXTENDED.BDRip.XviD-AMIABLE.CD1.srt2012-12-31 15:49 - 2012-08-30 15:41 - 00015401 ____AC:Users5454DesktopSnow.White.and.the.Huntsman.2012.EXTENDED.BDRip.XviD-AMIABLE.CD2.srt2012-12-31 15:49 - 2012-01-12 15:37 - 00001356 ____A C:Users5454DesktopREADME 2012.txt2012-12-31 08:17 - 2012-12-31 08:17 - 00022183 ____AC:Users5454Downloadsswath_2012(subsunacs.net).rar2012-12-31 08:16 - 2012-12-31 08:16 - 00057807 ____AC:Users5454DownloadsSnow.White.and.the.Huntsman.2012.EXTENDED.BDRip.XviD-AMIABLE.torrent2012-12-30 03:15 - 2012-12-30 03:15 - 00056409 ____AC:Users5454DownloadsDespicable.Me.DVDRip.BG.Audio.XviD-iMBT.torrent2012-12-29 03:46 - 2012-12-29 03:46 - 00140968 ____A ()C:Users5454Downloadsetypesetup.exe2012-12-29 00:41 - 2012-12-29 00:41 - 00001951 ____AC:Users5454DesktopCounter-Strike.lnk==================== One Month Modified Files and Folders ========2013-01-27 23:59 - 2013-01-27 23:59 - 00000000 ____D C:FRST2013-01-27 21:33 - 2013-01-13 03:59 - 00000000 ____DC:Users5454DocumentsFIFA 112013-01-27 21:33 - 2012-12-07 08:21 - 00000000 ____DC:Users5454DocumentsEuro Truck Simulator2013-01-27 21:33 - 2012-11-28 14:01 - 00000000 ____DC:Users5454AppDataRoamingSkype2013-01-27 21:33 - 2012-10-28 00:26 - 00000000 ____DC:Users5454AppDataRoamingPhotoScape2013-01-27 21:33 - 2012-10-18 12:19 - 00000000 ____DC:Users5454AppDataRoamingBitTorrent2013-01-27 21:33 - 2012-10-14 13:45 - 00000000 ____DC:Users5454AppDataRoamingGRETECH2013-01-27 21:33 - 2012-10-14 09:56 - 00000000 ____DC:Users5454DocumentsFIFA 132013-01-27 21:33 - 2012-10-14 09:55 - 00000000 ____DC:Users5454AppDataLocalVirtualStore2013-01-27 21:33 - 2012-10-14 09:55 - 00000000 ____DC:Users5454AppDataLocalLogMeIn Hamachi2013-01-27 21:33 - 2012-10-14 09:55 - 00000000 ____D C:users54542013-01-27 21:33 - 2012-10-07 12:14 - 00000000 ____D C:Program FilesHotspotShield2013-01-27 21:33 - 2012-10-06 13:33 - 00000000 ____D C:UsersAll UsersDAEMONTools Lite2013-01-27 21:33 - 2012-10-06 10:29 - 00000000 ____D C:Dolby PCEE42013-01-27 21:33 - 2012-10-06 09:50 - 00000000 ____D C:users?2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ___RD C:usersPublic2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ____D C:WindowsSystem32wfp2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ____D C:WindowsSystem32pt-PT2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ____D C:WindowsSystem32pt-BR2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ____D C:WindowsSystem32nl-NL2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ____D C:WindowsSystem32it-IT2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ____D C:WindowsSystem32fr-FR
  • 5. 2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ____DC:WindowsSystem32DriverStore2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ____D C:WindowsSystem32de-DE2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ____D C:Windowsregistration2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ____D C:WindowsMicrosoft.NET2013-01-27 21:33 - 2009-07-13 18:37 - 00000000 ____D C:WindowsAppCompat2013-01-27 21:32 - 2012-10-22 11:58 - 00000000 ____DC:Users5454AppDataLocalGoogle2013-01-27 21:32 - 2012-10-07 12:14 - 00000000 ____D C:UsersAll UsersHotspotShield2013-01-27 17:32 - 2013-01-26 17:58 - 00000000 ___RD C:Users5454Podcasts2013-01-27 17:32 - 2013-01-26 17:55 - 00000000 ____D C:Program FilesZune2013-01-27 17:30 - 2009-07-13 18:37 - 00000000 ____DC:WindowsSystem32LogFiles2013-01-25 21:34 - 2013-01-25 21:34 - 00000000 ____DC:Users5454AppDataLocalChromium2013-01-25 07:28 - 2013-01-25 07:28 - 00000000 ____DC:UsersPublicDocumentsSports Interactive2013-01-25 07:28 - 2013-01-25 07:28 - 00000000 ____DC:Users5454DocumentsSports Interactive2013-01-25 07:28 - 2013-01-25 07:28 - 00000000 ____DC:Users5454AppDataRoamingSports Interactive2013-01-25 07:28 - 2013-01-25 07:28 - 00000000 ____DC:Users5454AppDataLocalSports Interactive2013-01-25 07:28 - 2013-01-25 07:28 - 00000000 ____DC:Users5454AppDataLocalSKIDROW2013-01-25 07:26 - 2013-01-25 07:24 - 00000000 ____D C:WindowsSystem32directx2013-01-25 07:08 - 2013-01-25 07:08 - 00000000 ____D C:Program FilesAGB-GT2013-01-23 09:47 - 2013-01-23 09:47 - 00937182 ____AC:Users5454Downloads???????????? 80107.crdownload2013-01-23 09:47 - 2013-01-23 09:47 - 00937182 ____AC:Users5454Downloads???????????? 753439.crdownload2013-01-23 09:47 - 2013-01-23 09:47 - 00937182 ____AC:Users5454Downloads???????????? 567821.crdownload2013-01-23 09:47 - 2013-01-23 09:47 - 00937182 ____AC:Users5454Downloads???????????? 532495.crdownload2013-01-17 11:09 - 2012-12-18 02:33 - 00166912 ___AHC:Users5454Desktopphotothumb.db2013-01-16 06:53 - 2013-01-16 06:53 - 01702774 ____AC:Users5454DownloadsCira_-_Fenomenalno_Clip2Mp3.org (1).mp3.crdownload2013-01-13 11:10 - 2013-01-13 10:29 - 00700416 ____AC:Users5454Documentsmitko_3.mdb2013-01-13 04:15 - 2013-01-13 04:15 - 00000000 ____D C:users?2013-01-10 08:30 - 2012-10-07 03:54 - 00000830 ____A C:WindowsTasksAdobeFlash Player Updater.job2013-01-10 07:41 - 2012-10-06 09:42 - 01249839 ____AC:WindowsWindowsUpdate.log2013-01-10 07:41 - 2009-07-13 20:34 - 00010128 ___AHC:WindowsSystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A02013-01-10 07:41 - 2009-07-13 20:34 - 00010128 ___AHC:WindowsSystem327B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A02013-01-10 05:51 - 2012-10-06 09:54 - 00726316 ____AC:WindowsSystem32PerfStringBackup.INI2013-01-10 05:44 - 2012-12-23 03:36 - 00000354 ___AHC:WindowsTasksZoomExUpdaterTask{6E627095-C8CB-47AA-A35B-C0B5C675CB0A}.job2013-01-10 05:44 - 2009-07-13 20:53 - 00000006 ___AH C:WindowsTasksSA.DAT2013-01-10 05:44 - 2009-07-13 20:39 - 00034349 ____A C:Windowssetupact.log2013-01-10 01:38 - 2013-01-10 01:11 - 00131072 ____AC:Users5454Documentsdb1.mdb2013-01-09 17:20 - 2013-01-02 16:57 - 00000000 ____D C:Program FilesDealPly2013-01-09 17:00 - 2012-10-25 10:22 - 65273848 ____A (Microsoft Corporation)C:WindowsSystem32MRT.exe
  • 6. 2013-01-09 14:37 - 2013-01-09 14:36 - 01156435 ____A (Conduit)C:Users5454Downloadsbs_Microsoft_office_2003.exe2013-01-09 10:31 - 2012-10-07 03:54 - 00697864 ____A (Adobe SystemsIncorporated) C:WindowsSystem32FlashPlayerApp.exe2013-01-09 10:31 - 2012-10-06 11:12 - 00074248 ____A (Adobe SystemsIncorporated) C:WindowsSystem32FlashPlayerCPLApp.cpl2013-01-07 11:38 - 2012-10-07 00:02 - 00006310 ____A C:WindowsPFRO.log2013-01-07 08:37 - 2013-01-07 08:35 - 00000000 ____DC:Users5454AppDataRoamingApple Computer2013-01-07 08:35 - 2013-01-07 08:35 - 00001753 ____AC:UsersPublicDesktopiTunes.lnk2013-01-07 08:35 - 2013-01-07 08:35 - 00000000 ____DC:Users5454AppDataLocalApple Computer2013-01-07 08:35 - 2013-01-07 08:34 - 00000000 ____D C:UsersAllUsers188F1432-103A-4ffb-80F1-36B633C5C9E12013-01-07 08:35 - 2013-01-07 08:34 - 00000000 ____D C:Program FilesiTunes2013-01-07 08:34 - 2013-01-07 08:34 - 00000000 ____D C:UsersAll UsersAppleComputer2013-01-07 08:34 - 2013-01-07 08:34 - 00000000 ____D C:Program FilesiPod2013-01-07 08:34 - 2013-01-07 08:32 - 00000000 ____D C:Program FilesCommonFilesApple2013-01-07 08:33 - 2013-01-07 08:33 - 00000000 ____D C:Program FilesAppleSoftware Update2013-01-07 08:33 - 2013-01-07 08:32 - 00000000 ____D C:UsersAll UsersApple2013-01-07 08:32 - 2013-01-07 08:32 - 00000000 ____D C:Program FilesBonjour2013-01-07 08:30 - 2013-01-07 08:28 - 87143400 ____A (Apple Inc.)C:Users5454DownloadsiTunesSetup.exe2013-01-04 18:33 - 2013-01-03 19:29 - 00000000 ____D C:UsersAll UsersSUS2013-01-03 19:28 - 2013-01-03 19:28 - 00003726 ____AC:Users5454DownloadsArdamax Keylogger 4.0.torrent2013-01-03 19:26 - 2013-01-03 19:25 - 04572248 ____A (Support.com) C:Users5454DownloadsARO2012_bt.exe2013-01-03 19:25 - 2013-01-03 19:25 - 00632952 ____AC:Users5454Downloadscbsidlm-tr1_9-Spyrix_Free_Keylogger-ORG-75708733.exe2013-01-03 19:21 - 2013-01-03 19:21 - 00243273 ____AC:Users5454Downloadsi_bpk2003.exe2013-01-03 19:19 - 2013-01-03 19:19 - 00243273 ____AC:Users5454Downloadsi_bpk2007.exe2013-01-02 17:21 - 2013-01-02 17:00 - 00000000 ____D C:Program FilesProtectedSearch2013-01-02 17:21 - 2013-01-02 17:00 - 00000000 ____D C:Program FilesPC SpeedMaximizer2013-01-02 17:15 - 2013-01-02 17:15 - 00122976 ____AC:Users5454Downloadscheat_engine(3).exe2013-01-02 17:15 - 2013-01-02 17:15 - 00122976 ____AC:Users5454Downloadscheat_engine(2).exe2013-01-02 17:00 - 2013-01-02 17:00 - 00000000 ____D C:ProgramFilesProtectedToolbar2013-01-02 16:57 - 2013-01-02 16:57 - 00000000 ____D C:Program FilesCheatEngine 6.12013-01-02 16:55 - 2013-01-02 16:55 - 00122976 ____AC:Users5454Downloadscheat_engine.exe2012-12-31 08:17 - 2012-12-31 08:17 - 00022183 ____AC:Users5454Downloadsswath_2012(subsunacs.net).rar2012-12-31 08:16 - 2012-12-31 08:16 - 00057807 ____AC:Users5454DownloadsSnow.White.and.the.Huntsman.2012.EXTENDED.BDRip.XviD-AMIABLE.torrent2012-12-30 08:44 - 2013-01-01 16:24 - 00099302 ____NC:Users5454DesktopKilling Them Softly 2012 R3 XviD AC3 - RESiSTANCE.srt2012-12-30 03:15 - 2012-12-30 03:15 - 00056409 ____AC:Users5454DownloadsDespicable.Me.DVDRip.BG.Audio.XviD-iMBT.torrent2012-12-29 03:46 - 2012-12-29 03:46 - 00140968 ____A ()C:Users5454Downloadsetypesetup.exe2012-12-29 00:42 - 2012-12-24 00:04 - 00000000 ____D C:Users5454Desktopmoqta
  • 7. hubava papka2012-12-29 00:41 - 2012-12-29 00:41 - 00001951 ____AC:Users5454DesktopCounter-Strike.lnk==================== Known DLLs (Whitelisted) ===================================== Bamital & volsnap Check =================C:Windowsexplorer.exe => MD5 is legitC:WindowsSystem32winlogon.exe => MD5 is legitC:WindowsSystem32wininit.exe => MD5 is legitC:WindowsSystem32svchost.exe => MD5 is legitC:WindowsSystem32services.exe => MD5 is legitC:WindowsSystem32User32.dll => MD5 is legitC:WindowsSystem32userinit.exe => MD5 is legitC:WindowsSystem32Driversvolsnap.sys[2009-11-22 12:02] - [2009-11-22 12:02] - 0245336 ____A (Microsoft Corporation)70F41D1EBDD9EE6ED2FD0FC05AA1FC13==================== EXE ASSOCIATION =====================HKLM....exe: exefile => OKHKLM...exefileDefaultIcon: %1 => OKHKLM...exefileopencommand: "%1" %* => OK==================== Restore Points =========================Restore point made on: 2013-01-21 17:01:20Restore point made on: 2013-01-26 17:53:38==================== Memory info ===========================Percentage of memory in use: 11%Total physical RAM: 3947.86 MBAvailable physical RAM: 3490.94 MBTotal Pagefile: 3946.14 MBAvailable Pagefile: 3493.82 MBTotal Virtual: 2047.88 MBAvailable Virtual: 1954.3 MB==================== Partitions =============================1 Drive c: () (Fixed) (Total:117.24 GB) (Free:43.21 GB) NTFS ==>[Drive with bootcomponents (obtained from BCD)]2 Drive d: () (Fixed) (Total:581.2 GB) (Free:331.27 GB) NTFS4 Drive f: (PUBLIC) (Removable) (Total:3.82 GB) (Free:3.82 GB) FAT326 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS Disk ### Status Size Free Dyn Gpt -------- ------------- ------- ------- --- --- Disk 0 Online 698 GB 200 MB Disk 1 Online 3920 MB 0 B Disk 2 Online 2048 KB 0 BPartitions of Disk 0:===============Disk ID: 6AF04688 Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 117 GB 101 MB
  • 8. Partition 2 Primary 581 GB 117 GB=========================================================Disk: 0Partition 1Type : 07Hidden: NoActive: Yes Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- --------* Volume 1 C NTFS Partition 117 GB Healthy=========================================================Disk: 0Partition 2Type : 07Hidden: NoActive: No Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- --------* Volume 2 D NTFS Partition 581 GB Healthy=========================================================Partitions of Disk 1:===============Disk ID: 74DECBDE Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 3916 MB 4032 KB=========================================================Disk: 1Partition 1Type : 0BHidden: NoActive: No Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- --------* Volume 3 F PUBLIC FAT32 Removable 3916 MB Healthy=========================================================Partitions of Disk 2:===============Disk ID: 1C6DA899 Partition ### Type Size Offset ------------- ---------------- ------- ------- Partition 1 Primary 2032 KB 16 KB=========================================================Disk: 2Partition 1
  • 9. Type : 0EHidden: NoActive: No Volume ### Ltr Label Fs Type Size Status Info ---------- --- ----------- ----- ---------- ------- --------- --------* Volume 4 G FAT Removable 2032 KB Healthy=========================================================Last Boot: 2013-01-26 21:54==================== End Of Log ============================

×