Hello essexboy I am having the same problem as LoupGarou!
I'm going to post exactly what I received from OTS using those settings that you described:
The thing is the attachment only allows up to 200kb this one is 232kb so I uploaded to sendspace.com
http://www.sendspace.com/file/c646j5Download OTS to your Desktop and double-click on it to run it
* Make sure you close all other programs and don't use the PC while the scan runs.
* Select All Users
* Under additional scans select the following
Reg - Disabled MS Config Items
Reg - Drivers32
Reg - NetSvcs
Reg - SafeBoot Minimal
Reg - Shell Spawning
Evnt - EventViewer Logs (Last 10 Errors)
File - Lop Check
* Under the Custom Scan box paste this in
netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
%systemroot%\*. /mp /s
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
CREATERESTOREPOINT
* Now click the Run Scan button on the toolbar. Make sure not to use the PC while the program is running or it will freeze.
* When the scan is complete Notepad will open with the report file loaded in it.
* Please attach the log in your next post.
-----------------------------
This was all done only after running TFC rebooting I also had made a boot time scan to see if there were more things to add to the chest. this is what was found:
null0.6609709583341652.exe Win32:Delf-OXZ [Trj]
owcnxmsare.tmp Win32:Downloader-HBF [Trj]
xwcsenoarm.tmp Win32:Hiloti-AY [Trj]
Do you think that with these ones my passwords of my emails in which I logged in can be compromised, someone can obtain the data?
Thank you