Solved Google redirection virus

[aznavatar]

OTL log part 2

//////////////////////
OTL log part 2
//////////////////////


< %SYSTEMDRIVE%\*.* >
[2009/11/15 05:41:24 | 001,163,264 | ---- | M] (XUSE) -- C:\aseliacs.exe
[2010/01/24 16:57:46 | 000,000,982 | ---- | M] () -- C:\BnetLog.txt
[2009/07/13 21:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr
[2010/02/02 21:35:40 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2011/06/25 00:50:34 | 000,120,124 | ---- | M] () -- C:\ComboFix.txt
[2011/01/20 23:00:20 | 000,000,248 | ---- | M] () -- C:\dlcc.log
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1028.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1031.txt
[2007/11/07 08:00:40 | 000,010,134 | ---- | M] () -- C:\eula.1033.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1036.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1040.txt
[2007/11/07 08:00:40 | 000,000,118 | ---- | M] () -- C:\eula.1041.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1042.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.2052.txt
[2007/11/07 08:00:40 | 000,017,734 | ---- | M] () -- C:\eula.3082.txt
[2009/11/15 05:41:24 | 000,002,779 | ---- | M] () -- C:\fix1_2.txt
[2007/11/07 08:00:40 | 000,001,110 | ---- | M] () -- C:\globdata.ini
[2011/06/25 11:53:12 | 3220,525,056 | -HS- | M] () -- C:\hiberfil.sys
[2007/11/07 08:00:40 | 000,000,843 | ---- | M] () -- C:\install.ini
[2007/11/07 08:03:18 | 000,076,304 | ---- | M] (Microsoft Corporation) -- C:\install.res.1028.dll
[2007/11/07 08:03:18 | 000,096,272 | ---- | M] (Microsoft Corporation) -- C:\install.res.1031.dll
[2007/11/07 08:03:18 | 000,091,152 | ---- | M] (Microsoft Corporation) -- C:\install.res.1033.dll
[2007/11/07 08:03:18 | 000,097,296 | ---- | M] (Microsoft Corporation) -- C:\install.res.1036.dll
[2007/11/07 08:03:18 | 000,095,248 | ---- | M] (Microsoft Corporation) -- C:\install.res.1040.dll
[2007/11/07 08:03:18 | 000,081,424 | ---- | M] (Microsoft Corporation) -- C:\install.res.1041.dll
[2007/11/07 08:03:18 | 000,079,888 | ---- | M] (Microsoft Corporation) -- C:\install.res.1042.dll
[2007/11/07 08:03:18 | 000,075,792 | ---- | M] (Microsoft Corporation) -- C:\install.res.2052.dll
[2007/11/07 08:03:18 | 000,096,272 | ---- | M] (Microsoft Corporation) -- C:\install.res.3082.dll
[2011/06/23 15:29:11 | 000,000,719 | -H-- | M] () -- C:\IPH.PH
[2011/06/25 11:53:13 | 4294,037,504 | -HS- | M] () -- C:\pagefile.sys
[2011/06/23 21:37:14 | 000,127,464 | ---- | M] () -- C:\TDSSKiller.2.5.5.0_23.06.2011_21.36.19_log.txt
[2011/06/23 21:44:27 | 000,191,046 | ---- | M] () -- C:\TDSSKiller.2.5.5.0_23.06.2011_21.39.24_log.txt
[2011/06/23 23:25:52 | 000,064,860 | ---- | M] () -- C:\TDSSKiller.2.5.5.0_23.06.2011_23.25.26_log.txt
[2011/06/23 23:27:04 | 000,127,476 | ---- | M] () -- C:\TDSSKiller.2.5.5.0_23.06.2011_23.26.02_log.txt
[2011/06/25 01:07:47 | 000,064,360 | ---- | M] () -- C:\TDSSKiller.2.5.5.0_25.06.2011_01.05.44_log.txt
[2011/06/25 10:15:54 | 000,064,360 | ---- | M] () -- C:\TDSSKiller.2.5.5.0_25.06.2011_10.15.13_log.txt
[2011/06/24 21:06:52 | 004,770,816 | ---- | M] (Geza Kovacs) -- C:\unetbtin.exe
[2007/11/07 08:00:40 | 000,005,686 | ---- | M] () -- C:\vcredist.bmp
[2007/11/07 08:09:22 | 001,442,522 | ---- | M] () -- C:\VC_RED.cab
[2007/11/07 08:12:28 | 000,232,960 | ---- | M] () -- C:\VC_RED.MSI

< %systemroot%\Fonts\*.com >
[2009/07/14 01:32:31 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2009/07/14 01:32:31 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2009/07/14 01:32:31 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2009/07/14 01:32:31 | 000,043,318 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont

< %systemroot%\Fonts\*.dll >

< %systemroot%\Fonts\*.ini >
[2009/06/10 16:49:50 | 000,000,065 | ---- | M] () -- C:\Windows\Fonts\desktop.ini

< %systemroot%\Fonts\*.ini2 >

< %systemroot%\Fonts\*.exe >

< %systemroot%\system32\spool\prtprocs\w32x86\*.* >

< %systemroot%\REPAIR\*.bak1 >

< %systemroot%\REPAIR\*.ini >

< %systemroot%\system32\*.jpg >

< %systemroot%\*.jpg >

< %systemroot%\*.png >

< %systemroot%\*.scr >

< %systemroot%\*._sy >

< %APPDATA%\Adobe\Update\*.* >

< %ALLUSERSPROFILE%\Favorites\*.* >

< %APPDATA%\Microsoft\*.* >

< %PROGRAMFILES%\*.* >
[2009/07/14 00:54:24 | 000,000,174 | -HS- | M] () -- C:\Program Files (x86)\desktop.ini

< %APPDATA%\Update\*.* >

< %systemroot%\*. /mp /s >

< %systemroot%\System32\config\*.sav >

< %PROGRAMFILES%\bak. /s >

< %systemroot%\system32\bak. /s >

< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %systemroot%\*.config >

< %systemroot%\system32\*.db >

< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >
[2009/10/10 13:34:51 | 000,000,221 | -HS- | M] () -- C:\Users\Administrator\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop (1).ini
[2010/02/02 19:15:30 | 000,000,221 | -HS- | M] () -- C:\Users\AznAvatar\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini

< %USERPROFILE%\Desktop\*.exe >
[2010/04/15 10:28:30 | 000,434,176 | ---- | M] () -- C:\Users\Administrator\Desktop\ChaosOne.exe
[2008/10/11 15:03:00 | 000,024,576 | ---- | M] () -- C:\Users\Administrator\Desktop\memtest.exe

< %PROGRAMFILES%\Common Files\*.* >

< %systemroot%\*.src >

< %systemroot%\install\*.* >

< %systemroot%\system32\DLL\*.* >

< %systemroot%\system32\HelpFiles\*.* >

< %systemroot%\system32\rundll\*.* >

< %systemroot%\winn32\*.* >

< %systemroot%\Java\*.* >

< %systemroot%\system32\test\*.* >

< %systemroot%\system32\Rundll32\*.* >

< %systemroot%\AppPatch\Custom\*.* >

< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >

< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >

< %PROGRAMFILES%\Internet Explorer\*.tmp >

< %PROGRAMFILES%\Internet Explorer\*.dat >

< %USERPROFILE%\My Documents\*.exe >

< %USERPROFILE%\*.exe >

< %systemroot%\ADDINS\*.* >
[2009/06/10 17:20:04 | 000,000,802 | ---- | M] () -- C:\Windows\addins\FXSEXT.ecf

< %systemroot%\assembly\*.bak2 >

< %systemroot%\Config\*.* >

< %systemroot%\REPAIR\*.bak2 >

< %systemroot%\SECURITY\Database\*.sdb /x >

< %systemroot%\SYSTEM\*.bak2 >

< %systemroot%\Web\*.bak2 >

< %systemroot%\Driver Cache\*.* >

< %PROGRAMFILES%\Mozilla Firefox\0*.exe >

< %ProgramFiles%\Microsoft Common\*.* >

< %ProgramFiles%\TinyProxy. >

< %USERPROFILE%\Favorites\*.url /x >
[2010/08/04 03:18:13 | 000,000,402 | -HS- | M] () -- C:\Users\AznAvatar\Favorites\desktop.ini

< %systemroot%\system32\*.bk >

< %systemroot%\*.te >

< %systemroot%\system32\system32\*.* >

< %ALLUSERSPROFILE%\*.dat /x >

< %systemroot%\system32\drivers\*.rmv >

< dir /b "%systemroot%\system32\*.exe" | find /i " " /c >

< dir /b "%systemroot%\*.exe" | find /i " " /c >

< %PROGRAMFILES%\Microsoft\*.* >

< %systemroot%\System32\Wbem\proquota.exe >

< %PROGRAMFILES%\Mozilla Firefox\*.dat >

< %USERPROFILE%\Cookies\*.txt /x >

< %SystemRoot%\system32\fonts\*.* >

< %systemroot%\system32\winlog\*.* >

< %systemroot%\system32\Language\*.* >

< %systemroot%\system32\Settings\*.* >

< %systemroot%\system32\*.quo >

< %SYSTEMROOT%\AppPatch\*.exe >

< %SYSTEMROOT%\inf\*.exe >

< %SYSTEMROOT%\Installer\*.exe >

< %systemroot%\system32\config\*.bak2 >

< %systemroot%\system32\Computers\*.* >

< %SystemRoot%\system32\Sound\*.* >

< %SystemRoot%\system32\SpecialImg\*.* >

< %SystemRoot%\system32\code\*.* >

< %SystemRoot%\system32\draft\*.* >

< %SystemRoot%\system32\MSSSys\*.* >

< %ProgramFiles%\Javascript\*.* >

< %systemroot%\pchealth\helpctr\System\*.exe /s >

< %systemroot%\Web\*.exe >

< %systemroot%\system32\msn\*.* >

< %systemroot%\system32\*.tro >

< %AppData%\Microsoft\Installer\msupdates\*.* >

< %ProgramFiles%\Messenger\*.* >

< %systemroot%\system32\systhem32\*.* >

< %systemroot%\system\*.exe >

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\ Auto Update\Results\Install|LastSuccessTime /rs >


========== Files - Unicode (All) ==========
[2011/05/29 00:21:05 | 246,127,754 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) OVA??????????!? ????????????? (DVD 704x396).mp4) -- C:\Users\Administrator\Documents\(18禁アニメ) ＯＶＡ『俺は彼女を信じてる！』　上巻「セカンドヴァージン」 (DVD 704x396).mp4
[2011/05/28 23:38:42 | 246,127,754 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) OVA??????????!? ????????????? (DVD 704x396).mp4) -- C:\Users\Administrator\Documents\(18禁アニメ) ＯＶＡ『俺は彼女を信じてる！』　上巻「セカンドヴァージン」 (DVD 704x396).mp4
[2011/04/28 16:56:34 | 000,000,000 | ---D | M](C:\Users\Administrator\Documents\(18????) ??(??) ~?????????~ ?? ????????) -- C:\Users\Administrator\Documents\(18禁アニメ) 輪罠（わな） ～白濁まみれの放課後～ 下巻 「狂宴の果てに」
[2011/04/28 16:16:42 | 000,000,000 | ---D | M](C:\Users\Administrator\Documents\(18????) ??????? ?? ?????? Vol.2 ??????? (DVD 704x396 WMV9)) -- C:\Users\Administrator\Documents\(18禁アニメ) ファイティング オブ エクスタシー Vol.2 「女忍者無惨」 (DVD 704x396 WMV9)
[2011/04/28 15:54:37 | 000,000,000 | ---D | C](C:\Users\Administrator\Documents\(18????) ??(??) ~?????????~ ?? ????????) -- C:\Users\Administrator\Documents\(18禁アニメ) 輪罠（わな） ～白濁まみれの放課後～ 下巻 「狂宴の果てに」
[2011/04/28 15:54:18 | 000,000,000 | ---D | C](C:\Users\Administrator\Documents\(18????) ??????? ?? ?????? Vol.2 ??????? (DVD 704x396 WMV9)) -- C:\Users\Administrator\Documents\(18禁アニメ) ファイティング オブ エクスタシー Vol.2 「女忍者無惨」 (DVD 704x396 WMV9)
[2011/02/27 14:17:02 | 417,282,179 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ??(??)~?????????~ ?? ???? (DVD 704x396 WMV9).wmv) -- C:\Users\Administrator\Documents\(18禁アニメ) 輪罠（わな）～白濁まみれの放課後～ 上巻 処女喪失 (DVD 704x396 WMV9).wmv
[2011/02/27 14:05:10 | 370,559,009 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ????·?? ??? ???????? (DVD 704x396 WMV9).wmv) -- C:\Users\Administrator\Documents\(18禁アニメ) くのいち・咲夜 第一巻 「くのいち捕縛」 (DVD 704x396 WMV9).wmv
[2011/02/27 13:54:39 | 373,838,656 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ??2 THE ANIMATION ~?????????~ Liquid.2 ????????????????? (DVD 704x396 WMV9).wmv) -- C:\Users\Administrator\Documents\(18禁アニメ) 姉汁2 THE ANIMATION ～白川姉妹におまかせ～ Liquid.2 「エッチなこと何でもしてあげる♪」 (DVD 704x396 WMV9).wmv
[2011/02/27 13:30:43 | 221,305,315 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ??????? ?? ?????? Vol.1???????? (DVD 704x396 WMV9).wmv) -- C:\Users\Administrator\Documents\(18禁アニメ) ファイティング オブ エクスタシー Vol.1「女格闘家散華」 (DVD 704x396 WMV9).wmv
[2011/02/27 13:21:01 | 176,532,807 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ????? ??? ?? ?????????? (DVD 704x396 WMV9).wmv) -- C:\Users\Administrator\Documents\(18禁アニメ) 秘湯めぐり 隠れ湯 下巻 「若女将は堕とし頃」 (DVD 704x396 WMV9).wmv
[2011/02/27 12:15:35 | 221,305,315 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ??????? ?? ?????? Vol.1???????? (DVD 704x396 WMV9).wmv) -- C:\Users\Administrator\Documents\(18禁アニメ) ファイティング オブ エクスタシー Vol.1「女格闘家散華」 (DVD 704x396 WMV9).wmv
[2011/02/27 12:15:19 | 417,282,179 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ??(??)~?????????~ ?? ???? (DVD 704x396 WMV9).wmv) -- C:\Users\Administrator\Documents\(18禁アニメ) 輪罠（わな）～白濁まみれの放課後～ 上巻 処女喪失 (DVD 704x396 WMV9).wmv
[2011/02/27 12:14:44 | 176,532,807 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ????? ??? ?? ?????????? (DVD 704x396 WMV9).wmv) -- C:\Users\Administrator\Documents\(18禁アニメ) 秘湯めぐり 隠れ湯 下巻 「若女将は堕とし頃」 (DVD 704x396 WMV9).wmv
[2011/02/27 12:14:30 | 373,838,656 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ??2 THE ANIMATION ~?????????~ Liquid.2 ????????????????? (DVD 704x396 WMV9).wmv) -- C:\Users\Administrator\Documents\(18禁アニメ) 姉汁2 THE ANIMATION ～白川姉妹におまかせ～ Liquid.2 「エッチなこと何でもしてあげる♪」 (DVD 704x396 WMV9).wmv
[2011/02/27 12:13:30 | 370,559,009 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ????·?? ??? ???????? (DVD 704x396 WMV9).wmv) -- C:\Users\Administrator\Documents\(18禁アニメ) くのいち・咲夜 第一巻 「くのいち捕縛」 (DVD 704x396 WMV9).wmv
[2011/01/29 23:07:26 | 349,429,046 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ?? ~????????~ ?? (DVD 704x396 h264).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 虜姫 ～白濁まみれの令嬢～ 上巻 (DVD 704x396 h264).avi
[2011/01/29 22:33:50 | 349,429,046 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ?? ~????????~ ?? (DVD 704x396 h264).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 虜姫 ～白濁まみれの令嬢～ 上巻 (DVD 704x396 h264).avi
[2010/12/25 14:55:35 | 436,211,788 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ??3 ???? ~??????·B·???~ (DVD 704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 姦染3 首都崩壊 ～マルガリータ・B・穂村編～ (DVD 704x396 DivX6.92).avi
[2010/12/25 14:33:13 | 373,671,548 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ????????????? ?? ??·??? (DVD 704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 凌辱ファミレス調教メニュー 下巻 「妹・萌美」 (DVD 704x396 DivX6.92).avi
[2010/12/25 13:32:09 | 436,211,788 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ??3 ???? ~??????·B·???~ (DVD 704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 姦染3 首都崩壊 ～マルガリータ・B・穂村編～ (DVD 704x396 DivX6.92).avi
[2010/12/25 13:31:30 | 373,671,548 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ????????????? ?? ??·??? (DVD 704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 凌辱ファミレス調教メニュー 下巻 「妹・萌美」 (DVD 704x396 DivX6.92).avi
[2010/11/26 15:20:32 | 422,847,938 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ??????~Maiden Infringement Play~ ?? (DVD 704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 乙女蹂躙遊戯～Maiden Infringement Play～ 下巻 (DVD 704x396 DivX6.92).avi
[2010/11/26 14:12:23 | 422,847,938 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ??????~Maiden Infringement Play~ ?? (DVD 704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 乙女蹂躙遊戯～Maiden Infringement Play～ 下巻 (DVD 704x396 DivX6.92).avi
[2010/11/20 23:02:18 | 371,738,718 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ???? The Animation (704x396 DivX)$.avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 教育指導 The Animation (704x396 DivX)$.avi
[2010/11/20 22:38:17 | 371,738,718 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ???? The Animation (704x396 DivX)$.avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 教育指導 The Animation (704x396 DivX)$.avi
[2010/10/30 18:22:19 | 381,346,900 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) Last Waltz~?????????~ ?? (DVD 704x396 DivX).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) Last Waltz～白濁まみれの夏合宿～ 下巻 (DVD 704x396 DivX).avi
[2010/10/30 17:51:28 | 381,346,900 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) Last Waltz~?????????~ ?? (DVD 704x396 DivX).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) Last Waltz～白濁まみれの夏合宿～ 下巻 (DVD 704x396 DivX).avi
[2010/08/28 01:55:41 | 584,917,805 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) i can_2 [???????????IP???] (DVD 704x396 WMV9).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) i can_2 [久しぶりに繋げたら韓国IPだらけ] (DVD 704x396 WMV9).avi
[2010/08/28 00:51:48 | 326,994,250 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ????????~??????????????????~MY BLOW JOBER ACT.6 (DivX6.50 704x396).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) ストリンジェンド～エンジェルたちのプライベートレッスン～MY BLOW JOBER ACT.6 (DivX6.50 704x396).avi
[2010/08/27 23:30:51 | 326,994,250 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ????????~??????????????????~MY BLOW JOBER ACT.6 (DivX6.50 704x396).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) ストリンジェンド～エンジェルたちのプライベートレッスン～MY BLOW JOBER ACT.6 (DivX6.50 704x396).avi
[2010/08/27 23:29:53 | 584,917,805 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) i can_2 [???????????IP???] (DVD 704x396 WMV9).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) i can_2 [久しぶりに繋げたら韓国IPだらけ] (DVD 704x396 WMV9).avi
[2010/08/27 16:27:55 | 360,347,376 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ??????~Maiden Infringement Play~ ?? (704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 乙女蹂躙遊戯～Maiden Infringement Play～ 上巻 (704x396 DivX6.92).avi
[2010/08/27 15:46:44 | 360,347,376 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ??????~Maiden Infringement Play~ ?? (704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 乙女蹂躙遊戯～Maiden Infringement Play～ 上巻 (704x396 DivX6.92).avi
[2010/07/31 12:46:06 | 518,055,334 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) RIN×SEN~??????????~ ?? (704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) RIN×SEN～白濁女教師と野郎ども～ 下巻 (704x396 DivX6.92).avi
[2010/07/31 12:14:02 | 518,055,334 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) RIN×SEN~??????????~ ?? (704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) RIN×SEN～白濁女教師と野郎ども～ 下巻 (704x396 DivX6.92).avi
[2010/06/29 04:24:20 | 265,062,840 | ---- | M] ()(C:\Users\Administrator\Documents\[K1]?????? (I Can) Ep 1[DVDRIP][864x480][x264_ac3][AFCB3777].mkv) -- C:\Users\Administrator\Documents\[K1]あい☆きゃん (I Can) Ep 1[DVDRIP][864x480][x264_ac3][AFCB3777].mkv
[2010/06/29 04:13:10 | 265,062,840 | ---- | C] ()(C:\Users\Administrator\Documents\[K1]?????? (I Can) Ep 1[DVDRIP][864x480][x264_ac3][AFCB3777].mkv) -- C:\Users\Administrator\Documents\[K1]あい☆きゃん (I Can) Ep 1[DVDRIP][864x480][x264_ac3][AFCB3777].mkv
[2010/06/25 23:05:05 | 293,575,662 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ??2 ???? ~?????~ (704x396 DivX6.50).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 姦染2 淫罪都市 ～長崎千尋編～ (704x396 DivX6.50).avi
[2010/06/25 22:50:04 | 293,575,662 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ??2 ???? ~?????~ (704x396 DivX6.50).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 姦染2 淫罪都市 ～長崎千尋編～ (704x396 DivX6.50).avi
[2010/06/21 04:39:40 | 271,467,002 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ????R ?? (704x396 DivX6.50).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 透明人間R 前編 (704x396 DivX6.50).avi
[2010/06/21 04:24:13 | 271,467,002 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ????R ?? (704x396 DivX6.50).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 透明人間R 前編 (704x396 DivX6.50).avi
[2010/06/20 01:15:50 | 281,525,038 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ????R ?? (DVD 704x396 DivX6.50 120fps 192kbps).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 透明人間R 後編 (DVD 704x396 DivX6.50 120fps 192kbps).avi
[2010/06/20 01:09:49 | 000,000,000 | ---D | M](C:\Users\Administrator\Desktop\[Cyclone] 667 (Mahou Shoujo Lyrical Nanoha StrikerS)(COMIC1?3)) -- C:\Users\Administrator\Desktop\[Cyclone] 667 (Mahou Shoujo Lyrical Nanoha StrikerS)(COMIC1☆3)
[2010/06/20 01:09:49 | 000,000,000 | ---D | C](C:\Users\Administrator\Desktop\[Cyclone] 667 (Mahou Shoujo Lyrical Nanoha StrikerS)(COMIC1?3)) -- C:\Users\Administrator\Desktop\[Cyclone] 667 (Mahou Shoujo Lyrical Nanoha StrikerS)(COMIC1☆3)
[2010/06/20 01:00:26 | 281,525,038 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ????R ?? (DVD 704x396 DivX6.50 120fps 192kbps).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) 透明人間R 後編 (DVD 704x396 DivX6.50 120fps 192kbps).avi
[2010/05/30 04:37:29 | 271,404,406 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) RIN×SEN~??????????~?? (DVD 704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) RIN×SEN～白濁女教師と野郎ども～上巻 (DVD 704x396 DivX6.92).avi
[2010/05/30 04:23:17 | 271,404,406 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) RIN×SEN~??????????~?? (DVD 704x396 DivX6.92).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) RIN×SEN～白濁女教師と野郎ども～上巻 (DVD 704x396 DivX6.92).avi
[2010/05/29 21:13:43 | 282,356,486 | ---- | M] ()(C:\Users\Administrator\Documents\(18????) ???????? ~??????????????????~ MY BLOW JOBER ACT.5 (DVD 704x396 26m46s DivX6.50 120fps 192kbps).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) ストリンジェンド ～エンジェルたちのプライベートレッスン～ MY BLOW JOBER ACT.5 (DVD 704x396 26m46s DivX6.50 120fps 192kbps).avi
[2010/05/29 20:58:28 | 282,356,486 | ---- | C] ()(C:\Users\Administrator\Documents\(18????) ???????? ~??????????????????~ MY BLOW JOBER ACT.5 (DVD 704x396 26m46s DivX6.50 120fps 192kbps).avi) -- C:\Users\Administrator\Documents\(18禁アニメ) ストリンジェンド ～エンジェルたちのプライベートレッスン～ MY BLOW JOBER ACT.5 (DVD 704x396 26m46s DivX6.50 120fps 192kbps).avi
[2010/05/17 01:19:49 | 286,347,352 | ---- | M] ()(C:\Users\Administrator\Documents\(05???)(18????) ???? ?? (704x396 DivX6.92)[DVD-Rip].avi) -- C:\Users\Administrator\Documents\(05月新作)(18禁アニメ) 義母散華 後編 (704x396 DivX6.92)[DVD-Rip].avi
[2010/05/17 01:08:33 | 286,347,352 | ---- | C] ()(C:\Users\Administrator\Documents\(05???)(18????) ???? ?? (704x396 DivX6.92)[DVD-Rip].avi) -- C:\Users\Administrator\Documents\(05月新作)(18禁アニメ) 義母散華 後編 (704x396 DivX6.92)[DVD-Rip].avi
[2009/10/22 15:09:16 | 007,681,284 | ---- | M] ()(C:\Users\Administrator\Documents\trust you??????.mp3) -- C:\Users\Administrator\Documents\trust you【伊藤由奈】.mp3
[2009/10/22 15:08:45 | 007,681,284 | ---- | C] ()(C:\Users\Administrator\Documents\trust you??????.mp3) -- C:\Users\Administrator\Documents\trust you【伊藤由奈】.mp3
(C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\?????????) -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ヘルタースケルター

========== Alternate Data Streams ==========

@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMPFC5A2B2

< End of report >

 

[aznavatar]

Extras LOG

//////////////////////////
Extras Log
//////////////////////////



OTL Extras logfile created on: 6/25/2011 12:08:18 PM - Run 1
OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\Administrator\Downloads
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

4.00 Gb Total Physical Memory | 2.67 Gb Available Physical Memory | 66.67% Memory free
8.00 Gb Paging File | 6.53 Gb Available in Paging File | 81.70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465.76 Gb Total Space | 300.64 Gb Free Space | 64.55% Space Free | Partition Type: NTFS

Computer Name: NEL | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.hlp [@ = hlpfile] -- %SystemRoot%\SysWow64\winhlp32.exe %1
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
.txt[@ = txtfile] -- C:\Windows\NOTEPAD.EXE (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- %SystemRoot%\SysWow64\winhlp32.exe %1
.txt [@ = txtfile] -- C:\Windows\NOTEPAD.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\SysWow64\winhlp32.exe %1 File not found
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\system32\rundll32.exe" "C:\Windows\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\NOTEPAD.EXE %1 (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\SysWow64\winhlp32.exe %1
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\NOTEPAD.EXE %1 (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files (x86)\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files (x86)\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files (x86)\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{73BA9A8F-6B40-BF79-541E-464156FBA764}" = ccc-utility64
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{B361F88B-D513-9D45-E7F2-871B61C46D32}" = WMV9/VC-1 Video Playback
"{C2E0D3FE-12C4-BF5B-FC4E-052CB8833424}" = AMD Fuel
"{C5970161-E13E-6661-BBDA-A08268313C83}" = ATI Catalyst Install Manager
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{EE269999-1AB7-7B39-7944-513CF3426CB8}" = AMD Drag and Drop Transcoding
"{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}" = Ventrilo Client for Windows x64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{FF9F3663-0357-4132-AD8C-2BC1397D88AF}" = Symantec Endpoint Protection
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"NVIDIA Drivers" = NVIDIA Drivers
"WinRAR archiver" = WinRAR archiver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5335DADB-34BA-4AE8-A519-648D78498846}" = Skype™ 5.3
"{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}" = NCsoft Launcher
"{5FD89EA1-99C2-40EE-BBF5-20F8991ED756}" = Catalyst Control Center - Branding
"{6331C6C0-3754-E910-7113-5013355C8E47}" = CCC Help English
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169 8168 8101E 8102E Ethernet Driver
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002A-0409-1000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0116-0409-1000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{95C3927C-C899-C5D8-0EA7-67895FC979B2}" = ccc-core-static
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{AC76BA86-7AD7-5760-0000-900000000003}" = Japanese Fonts Support For Adobe Reader 9
"{B77EF229-644C-4272-B1A4-98FF0D54E70B}" = Aion
"{C4124E95-5061-4776-8D5D-E3D931C778E1}" = Microsoft VC9 runtime libraries
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{ED4B50B7-C06B-57FE-7985-AA83DDBEEEF5}" = Catalyst Control Center Graphics Previews Common
"{F01A9563-2A27-6ABC-2E04-03B7873DF7E0}" = Catalyst Control Center InstallProxy
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AIM_7" = AIM 7
"BattlePing" = BattlePing
"BitComet" = BitComet 1.27
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2009-09-09
"Dell Photo AIO Printer 924" = Dell Photo AIO Printer 924
"ENTERPRISE" = Microsoft Office Enterprise 2007
"Fate-stay night English" = Fate/stay night English v3.2
"hon" = Heroes of Newerth
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
"LiveUpdate" = LiveUpdate 3.3 (Symantec Corporation)
"Media Player Classic" = Media Player Classic
"Notepad++" = Notepad++
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OpenAL" = OpenAL
"pcsx2-r3878" = PCSX2 - Playstation 2 Emulator
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"StarCraft II" = StarCraft II
"Steam App 42710" = Call of Duty: Black Ops - Multiplayer
"Warcraft III" = Warcraft III
"Winamp" = Winamp
"Xuse 聖なるかな" = Xuse 聖なるかな (Remove Only)
"ヘルタースケルター" = ヘルタースケルター　～白濁の村～

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"f031ef6ac137efc5" = Dell Driver Download Manager
"Google Chrome" = Google Chrome
"Winamp Detect" = Winamp Detector Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 6/25/2011 10:13:49 AM | Computer Name = Nel | Source = WinMgmt | ID = 10
Description =

Error - 6/25/2011 10:14:52 AM | Computer Name = Nel | Source = Application Error | ID = 1000
Description = Faulting application name: chrome.exe, version: 0.0.0.0, time stamp:
0x4df67dcc Faulting module name: ntdll.dll, version: 6.1.7600.16695, time stamp:
0x4cc7ab86 Exception code: 0xc0000005 Fault offset: 0x0003bc72 Faulting process id:
0x990 Faulting application start time: 0x01cc33423e8a585f Faulting application path:
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe Faulting
module path: C:\Windows\SysWOW64\ntdll.dll Report Id: 7d9bf1ad-9f35-11e0-9cfb-00248cd2fe81

Error - 6/25/2011 10:15:02 AM | Computer Name = Nel | Source = Application Error | ID = 1000
Description = Faulting application name: chrome.exe, version: 0.0.0.0, time stamp:
0x4df67dcc Faulting module name: ntdll.dll, version: 6.1.7600.16695, time stamp:
0x4cc7ab86 Exception code: 0xc0000005 Fault offset: 0x0003bc72 Faulting process id:
0xdcc Faulting application start time: 0x01cc334245d48f4f Faulting application path:
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe Faulting
module path: C:\Windows\SysWOW64\ntdll.dll Report Id: 83bc9c97-9f35-11e0-9cfb-00248cd2fe81

Error - 6/25/2011 11:25:11 AM | Computer Name = Nel | Source = WinMgmt | ID = 10
Description =

Error - 6/25/2011 11:41:55 AM | Computer Name = Nel | Source = WinMgmt | ID = 10
Description =

Error - 6/25/2011 11:51:49 AM | Computer Name = Nel | Source = WinMgmt | ID = 10
Description =

Error - 6/25/2011 11:55:00 AM | Computer Name = Nel | Source = WinMgmt | ID = 10
Description =

Error - 6/25/2011 12:07:27 PM | Computer Name = Nel | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Users\Administrator\Downloads\esetsmartinstaller_enu.exe".Error
in manifest or policy file "" on line . A component version required by the application
conflicts with another component version already active. Conflicting components
are:. Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component
2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error - 6/25/2011 12:07:27 PM | Computer Name = Nel | Source = SideBySide | ID = 16842832
Description = Activation context generation failed for "C:\Users\Administrator\Downloads\SoftonicDownloader_for_memtest86.exe".Error
in manifest or policy file "" on line . A component version required by the application
conflicts with another component version already active. Conflicting components
are:. Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.
Component
2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.

Error - 6/25/2011 12:08:59 PM | Computer Name = Nel | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Cryptographic Services failed while processing the OnIdentity() call
in the System Writer Object. Details: AddLegacyDriverFiles: Unable to back up image
of binary SCDEmu. System Error: The system cannot find the file specified. .

[ System Events ]
Error - 6/25/2011 11:24:06 AM | Computer Name = Nel | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
sptd

Error - 6/25/2011 11:26:33 AM | Computer Name = Nel | Source = DCOM | ID = 10010
Description =

Error - 6/25/2011 11:26:37 AM | Computer Name = Nel | Source = Service Control Manager | ID = 7016
Description = The NVIDIA Display Driver Service service has reported an invalid
current state 32.

Error - 6/25/2011 11:40:40 AM | Computer Name = Nel | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
sptd

Error - 6/25/2011 11:49:17 AM | Computer Name = Nel | Source = DCOM | ID = 10010
Description =

Error - 6/25/2011 11:49:21 AM | Computer Name = Nel | Source = Service Control Manager | ID = 7016
Description = The NVIDIA Display Driver Service service has reported an invalid
current state 32.

Error - 6/25/2011 11:50:39 AM | Computer Name = Nel | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
sptd

Error - 6/25/2011 11:52:29 AM | Computer Name = Nel | Source = DCOM | ID = 10010
Description =

Error - 6/25/2011 11:52:31 AM | Computer Name = Nel | Source = Service Control Manager | ID = 7016
Description = The NVIDIA Display Driver Service service has reported an invalid
current state 32.

Error - 6/25/2011 11:53:42 AM | Computer Name = Nel | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
sptd


< End of report >

 

[Broni]

Run OTL

• Under the Custom Scans/Fixes box at the bottom, paste in the following
  
  

  :OTL
  IE - HKCU\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - Reg Error: Key error. File not found
  O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - File not found
  O3:64bit: - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - File not found
  O3:64bit: - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - File not found
  [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
  @Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:DFC5A2B2
  
  
  :Services
  
  :Reg
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
  "DisableMonitoring" =-
  
  :Files
  
  :Commands
  [purity]
  [emptytemp]
  [emptyflash]
  [Reboot]

• Then click the Run Fix button at the top
• Let the program run unhindered, reboot the PC when it is done
• You will get a log that shows the results of the fix. Please post it.

=================================================================

Last scans...

1. Download Security Check from HERE, and save it to your Desktop.

• Double-click SecurityCheck.exe
• Follow the onscreen instructions inside of the black box.
• A Notepad document should open automatically called checkup.txt; please post the contents of that document.
  
  NOTE SecurityCheck may produce some false warning(s), so leave the results reading to me.

2. Download Temp File Cleaner (TFC)

• Double click on TFC.exe to run the program.
• Click on Start button to begin cleaning process.
• TFC will close all running programs, and it may ask you to restart computer.

3. Please run a free online scan with the ESET Online Scanner

• Disable your antivirus program
• Tick the box next to YES, I accept the Terms of Use
• Click Start
• IMPORTANT! UN-check Remove found threats
• Accept any security warnings from your browser.
• Check Scan archives
• Click Start
• ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
• When the scan completes, push List of found threats
• Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
• NOTE. If Eset won't find any threats, it won't produce any log.

 

[aznavatar]

Otl log 2

//////////////////
OTL LOG 2
//////////////////




All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{472734EA-242A-422b-ADF8-83D1E48CC825} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472734EA-242A-422b-ADF8-83D1E48CC825}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ deleted successfully.
64bit-Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
C:\Windows\msdownld.tmp folder deleted successfully.
ADS C:\ProgramData\TEMPFC5A2B2 deleted successfully.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus\\DisableMonitoring deleted successfully.
========== FILES ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 23704538 bytes
->Temporary Internet Files folder emptied: 8172561 bytes
->Java cache emptied: 3133266 bytes
->Google Chrome cache emptied: 12974607 bytes
->Flash cache emptied: 657 bytes

User: All Users

User: AznAvatar
->Temp folder emptied: 0 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Nel
->Temp folder emptied: 0 bytes
->Java cache emptied: 12118713 bytes
->Flash cache emptied: 592 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1216 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 70822 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 57.00 mb


[EMPTYFLASH]

User: Administrator
->Flash cache emptied: 0 bytes

User: All Users

User: AznAvatar

User: Default

User: Default User

User: Nel
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.24.1 log created on 06252011_123824

Files\Folders moved on Reboot...
C:\Users\Administrator\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...

 

[aznavatar]

Checkup Log

/////////////////////
Checkup Log
/////////////////////




Results of screen317's Security Check version 0.99.7
Windows 7 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:
Windows Security Center service is not running! This report may not be accurate!
Windows Firewall Enabled!
[size=1]WMI entry may not exist for antivirus; attempting automatic update.[/size]
```````````````````````````````
Anti-malware/Other Utilities Check:
Adobe Flash Player 10.3.181.26
Japanese Fonts Support For Adobe Reader 9
Out of date Adobe Reader installed!
````````````````````````````````
Process Check:
objlist.exe by Laurent
Norton ccSvcHst.exe
``````````End of Log````````````

 

[Broni]

Update Adobe Reader

You can download it from https://www.techspot.com/downloads/2083-adobe-reader-dc.html
After installing the latest Adobe Reader, uninstall all previous versions.
Note. If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

Alternatively, you can uninstall Adobe Reader (33.5 MB), download and install Foxit PDF Reader(3.5MB) from HERE.
It's a much smaller file to download and uses a lot less resources than Adobe Reader.
Note: When installing FoxitReader, make sure to UN-check any pre-checked toolbar, or any other garbage.

...and Eset....

 

[aznavatar]

Eset

ESET scan is still currently running, I will edit this post with the results.


EDIT: Added ESETScan Log

///////////////////////
EsetScan Log
///////////////////////


C:\Qoobox\Quarantine\C\Windows\Fbotaa.exe.vir Win32/TrojanDownloader.FakeAlert.BGV trojan
C:\Qoobox\Quarantine\C\Windows\SysWOW64\onexuit.dll.vir Win32/Adware.Virtumonde.NHD application

 

[aznavatar]

Should I Close ESET?

Should I close ESET scan or should I leave it open after it finished?

 

[Broni]

You can close it.
Both finding were already quarantined by Combofix.

==========================================================

Your computer is clean

1. We need to reset system restore to prevent your computer from being accidentally reinfected by using some old restore point(s). We'll create fresh, clean restore point, using following OTL script:

Run OTL

• Under the Custom Scans/Fixes box at the bottom, paste in the following:

:OTL
:Commands
[purity]
[emptytemp]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[Reboot]

• Then click the Run Fix button at the top
• Let the program run unhindered, reboot the PC when it is done
• Post resulting log.

2. Now, we'll remove all tools, we used during our cleaning process

Clean up with OTL:

• Double-click OTL.exe to start the program.
• Close all other programs apart from OTL as this step will require a reboot
• On the OTL main screen, press the CLEANUP button
• Say Yes to the prompt and then allow the program to reboot your computer.

If you still have any tools or logs leftover on your computer you can go ahead and delete those off of your computer now.

3. Make sure, Windows Updates are current.

4. If any Trojan was listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

5. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.

6. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

7. Run Temporary File Cleaner (TFC) weekly.

8. Download and install Secunia Personal Software Inspector (PSI): https://www.techspot.com/downloads/4898-secunia-personal-software-inspector-psi.html. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.

9. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

10. Run defrag at your convenience.

11. Read How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html

12. Please, let me know, how your computer is doing.

 

[aznavatar]

Otl log 3

//////////////////////////////
OTL LOG 3
//////////////////////////////




All processes killed
========== OTL ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 1481727 bytes
->Temporary Internet Files folder emptied: 254351 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 60118118 bytes
->Flash cache emptied: 343 bytes

User: All Users

User: AznAvatar
->Temp folder emptied: 0 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Nel
->Temp folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 844 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 59.00 mb


[EMPTYFLASH]

User: Administrator
->Flash cache emptied: 0 bytes

User: All Users

User: AznAvatar

User: Default

User: Default User

User: Nel
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.24.1 log created on 06252011_155220

Files\Folders moved on Reboot...
File\Folder C:\Users\Administrator\AppData\Local\Temp\etilqs_McVMPflg3LL4f0vY5zhW not found!
C:\Users\Administrator\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...

 

[aznavatar]

Thank You

Thank you for all the time and hard work you spent helping me. I sincerely appreciate the help you have given me. Take care and be safe.

 

[Broni]

You're very welcome