|
-
April 30th, 2013, 09:17 PM
#15
========== Files - Modified Within 30 Days ==========
[2013/04/30 19:55:18 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/04/30 19:44:52 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jim Salvo\Desktop\OTL.exe
[2013/04/30 19:34:46 | 000,545,926 | ---- | M] (Oleg N. Scherbakov) -- C:\Documents and Settings\Jim Salvo\Desktop\JRT.exe
[2013/04/30 19:29:13 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\WPA.DBL
[2013/04/30 19:28:43 | 000,000,286 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-2325322264-3557780802-3272613735-1006.job
[2013/04/30 19:28:26 | 000,000,286 | ---- | M] () -- C:\WINDOWS\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2325322264-3557780802-3272613735-1006.job
[2013/04/30 19:28:21 | 000,000,294 | ---- | M] () -- C:\WINDOWS\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2325322264-3557780802-3272613735-1006.job
[2013/04/30 19:28:09 | 000,068,287 | ---- | M] () -- C:\WINDOWS\System32\nvModes.001
[2013/04/30 19:26:46 | 000,017,112 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2013/04/30 19:26:43 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/04/30 19:26:41 | 000,000,620 | ---- | M] () -- C:\WINDOWS\tasks\Check for updates (Spybot - Search & Destroy).job
[2013/04/30 19:26:25 | 000,002,048 | --S- | M] () -- C:\WINDOWS\BOOTSTAT.DAT
[2013/04/30 19:03:27 | 000,628,743 | ---- | M] () -- C:\Documents and Settings\Jim Salvo\Desktop\adwcleaner.exe
[2013/04/30 12:12:01 | 000,000,820 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2013/04/30 09:38:51 | 000,000,430 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{B45D121E-91AE-4EF7-8FE9-57B91409F47D}.job
[2013/04/30 08:14:01 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\ETC\hosts
[2013/04/30 07:41:50 | 000,000,327 | RHS- | M] () -- C:\BOOT.INI
[2013/04/30 07:22:32 | 005,061,928 | R--- | M] (Swearware) -- C:\Documents and Settings\Jim Salvo\Desktop\ComboFix.exe
[2013/04/29 21:13:27 | 000,816,128 | ---- | M] () -- C:\Documents and Settings\Jim Salvo\Desktop\RogueKiller.exe
[2013/04/29 16:07:03 | 000,688,992 | R--- | M] (Swearware) -- C:\Documents and Settings\Jim Salvo\Desktop\dds.com
[2013/04/29 15:54:11 | 000,002,455 | ---- | M] () -- C:\Documents and Settings\Jim Salvo\Desktop\HiJackThis.lnk
[2013/04/29 11:03:06 | 000,000,616 | ---- | M] () -- C:\WINDOWS\tasks\Refresh immunization (Spybot - Search & Destroy).job
[2013/04/29 11:03:06 | 000,000,446 | ---- | M] () -- C:\WINDOWS\tasks\Scan the system (Spybot - Search & Destroy).job
[2013/04/29 11:02:26 | 000,001,836 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Spybot-S&D Start Center.lnk
[2013/04/29 10:38:25 | 000,068,287 | ---- | M] () -- C:\WINDOWS\System32\nvModes.dat
[2013/04/27 22:57:15 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Jim Salvo\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2013/04/27 22:57:15 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2013/04/18 13:20:30 | 000,096,168 | ---- | M] () -- C:\Documents and Settings\Jim Salvo\My Documents\pay check 04 -19 - 2013 pdf.pdf
[2013/04/13 21:14:20 | 000,021,258 | ---- | M] () -- C:\Documents and Settings\Jim Salvo\My Documents\mid States Bank April personal 2013.pdf
[2013/04/13 09:15:06 | 000,225,616 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013/04/11 20:49:01 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2013/04/10 10:26:05 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2013/04/04 19:20:22 | 000,096,647 | ---- | M] () -- C:\Documents and Settings\Jim Salvo\My Documents\pay check 04 -05 - 2013 pdf.pdf
[2013/04/04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
========== Files Created - No Company Name ==========
[2013/04/30 19:01:44 | 000,628,743 | ---- | C] () -- C:\Documents and Settings\Jim Salvo\Desktop\adwcleaner.exe
[2013/04/30 07:41:50 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2013/04/30 07:41:44 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2013/04/30 07:39:05 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2013/04/30 07:39:05 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2013/04/30 07:39:05 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2013/04/30 07:39:05 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2013/04/30 07:39:05 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2013/04/29 21:12:34 | 000,816,128 | ---- | C] () -- C:\Documents and Settings\Jim Salvo\Desktop\RogueKiller.exe
[2013/04/29 15:41:27 | 000,002,455 | ---- | C] () -- C:\Documents and Settings\Jim Salvo\Desktop\HiJackThis.lnk
[2013/04/29 11:03:05 | 000,000,446 | ---- | C] () -- C:\WINDOWS\tasks\Scan the system (Spybot - Search & Destroy).job
[2013/04/29 11:03:04 | 000,000,616 | ---- | C] () -- C:\WINDOWS\tasks\Refresh immunization (Spybot - Search & Destroy).job
[2013/04/29 11:03:03 | 000,000,620 | ---- | C] () -- C:\WINDOWS\tasks\Check for updates (Spybot - Search & Destroy).job
[2013/04/29 11:02:26 | 000,001,842 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Spybot-S&D Start Center.lnk
[2013/04/29 11:02:26 | 000,001,836 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Spybot-S&D Start Center.lnk
[2013/04/18 13:20:30 | 000,096,168 | ---- | C] () -- C:\Documents and Settings\Jim Salvo\My Documents\pay check 04 -19 - 2013 pdf.pdf
[2013/04/13 21:14:20 | 000,021,258 | ---- | C] () -- C:\Documents and Settings\Jim Salvo\My Documents\mid States Bank April personal 2013.pdf
[2013/04/04 19:20:22 | 000,096,647 | ---- | C] () -- C:\Documents and Settings\Jim Salvo\My Documents\pay check 04 -05 - 2013 pdf.pdf
[2012/09/28 11:51:46 | 000,166,758 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-2325322264-3557780802-3272613735-1006-0.dat
[2012/09/11 07:34:39 | 000,166,758 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2012/02/16 10:58:58 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011/07/13 16:49:26 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2007/01/28 23:07:58 | 000,061,678 | ---- | C] () -- C:\Documents and Settings\Jim Salvo\Application Data\PFP120JPR.{PB
[2007/01/28 23:07:58 | 000,012,358 | ---- | C] () -- C:\Documents and Settings\Jim Salvo\Application Data\PFP120JCM.{PB
[2006/02/20 17:47:26 | 000,001,751 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2005/02/06 11:53:30 | 000,022,528 | ---- | C] () -- C:\Documents and Settings\Jim Salvo\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/01/22 17:12:11 | 000,000,132 | ---- | C] () -- C:\Documents and Settings\Jim Salvo\Local Settings\Application Data\fusioncache.dat
[2005/01/16 15:10:42 | 000,000,207 | ---- | C] () -- C:\Program Files\Shortcut (3) to CD Drive.lnk
[2005/01/16 15:09:32 | 000,000,207 | ---- | C] () -- C:\Program Files\Shortcut (2) to CD Drive.lnk
[2005/01/16 15:09:18 | 000,000,207 | ---- | C] () -- C:\Program Files\Shortcut to CD Drive.lnk
[2005/01/13 15:49:42 | 000,000,004 | ---- | C] () -- C:\Documents and Settings\Jim Salvo\Application Data\QSPMShare
========== ZeroAccess Check ==========
[2004/08/10 14:09:48 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/13 19:12:05 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/02/09 07:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2008/04/13 19:12:08 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2012/10/29 13:25:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Application Data\Temp
[2013/02/27 15:13:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
[2010/04/16 15:19:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Applications
[2012/08/12 12:05:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\COMMON FILES
[2009/05/01 11:45:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Eastman Kodak Company
[2012/08/12 12:09:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
[2010/01/08 16:29:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\kds_kodak
[2011/04/19 19:41:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Nuance
[2012/10/29 13:41:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PrintProjects
[2011/04/19 20:09:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SQL Anywhere 11
[2012/10/29 13:41:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Visan
[2012/09/10 21:56:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Western Digital
[2012/10/29 13:25:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Application Data\Temp
[2006/10/23 21:37:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Salvo\Application Data\acccore
[2005/02/06 19:58:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Salvo\Application Data\DIMAGE
[2008/12/19 12:26:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Salvo\Application Data\EPSON
[2013/01/09 09:20:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Salvo\Application Data\GARMIN
[2012/08/12 12:09:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Salvo\Application Data\IObit
[2005/01/22 16:29:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Salvo\Application Data\Leadertech
[2006/10/23 21:25:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Salvo\Application Data\MSNInstaller
[2011/04/19 20:59:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Salvo\Application Data\ntr
[2010/09/10 16:58:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Salvo\Application Data\PandoraRecovery
[2012/09/26 14:50:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jim Salvo\Application Data\Temp
[2012/09/28 08:27:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Application Data\Temp
========== Purity Check ==========
< End of report >
This thing has more bugs than a big city flop house.
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote
