API tools faq
paste
Guest User

Untitled

a guest
Jun 24th, 2013
301
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 53.54 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 24.6.2013 22:15:56 - Run 2
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Sekic\My Documents\Preuzimanja
  3. Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
  4. Internet Explorer (Version = 6.0.2900.5512)
  5. Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy
  6.  
  7. 1023,04 Mb Total Physical Memory | 442,90 Mb Available Physical Memory | 43,29% Memory free
  8. 2,41 Gb Paging File | 1,62 Gb Available in Paging File | 67,26% Paging File free
  9. Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
  12. Drive C: | 78,13 Gb Total Space | 4,57 Gb Free Space | 5,86% Space Free | Partition Type: NTFS
  13. Drive D: | 70,92 Gb Total Space | 15,36 Gb Free Space | 21,66% Space Free | Partition Type: NTFS
  14. Drive G: | 1,90 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
  15. Drive I: | 5,78 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
  16. Drive K: | 5,91 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
  17.  
  18. Computer Name: CHANGEME1 | User Name: Sekic | Logged in as Administrator.
  19. Boot Mode: Normal | Scan Mode: Current user | Quick Scan
  20. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
  21.  
  22. [color=#E56717]========== Processes (SafeList) ==========[/color]
  23.  
  24. PRC - [2013.06.24 22:15:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sekic\My Documents\Preuzimanja\OTL(2).exe
  25. PRC - [2013.05.23 15:24:08 | 000,920,472 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
  26. PRC - [2013.05.09 23:10:54 | 000,216,968 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe
  27. PRC - [2013.04.30 15:26:37 | 000,181,664 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
  28. PRC - [2013.03.12 07:32:58 | 000,506,744 | ---- | M] (Oracle Corporation) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
  29. PRC - [2013.02.27 16:13:05 | 000,125,952 | ---- | M] (Yuna Software) -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
  30. PRC - [2012.03.07 01:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
  31. PRC - [2012.03.07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  32. PRC - [2011.01.28 07:15:33 | 000,066,048 | ---- | M] (PostgreSQL Global Development Group) -- c:\postgreSQL\bin\pg_ctl.exe
  33. PRC - [2011.01.28 07:13:43 | 004,538,368 | ---- | M] (PostgreSQL Global Development Group) -- c:\postgreSQL\bin\postgres.exe
  34. PRC - [2011.01.07 15:54:08 | 000,247,760 | ---- | M] (Threat Expert Ltd.) -- C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe
  35. PRC - [2008.04.14 14:00:00 | 000,975,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
  36. PRC - [2007.03.19 00:05:02 | 000,630,784 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
  37. PRC - [2006.03.03 22:03:10 | 000,069,632 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
  38.  
  39.  
  40. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  41.  
  42. MOD - [2013.06.24 10:01:00 | 002,089,984 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\defs\13062401\algo.dll
  43. MOD - [2013.06.12 16:54:44 | 016,033,160 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll
  44. MOD - [2013.05.23 15:24:06 | 003,128,728 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
  45. MOD - [2011.01.07 15:54:04 | 000,767,952 | ---- | M] () -- C:\WINDOWS\BDTSupport.dll
  46. MOD - [2009.12.12 16:12:03 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
  47. MOD - [2008.04.14 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
  48. MOD - [2007.03.19 00:05:02 | 000,630,784 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
  49. MOD - [2007.03.19 00:04:22 | 000,069,632 | ---- | M] () -- C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.dll
  50.  
  51.  
  52. [color=#E56717]========== Services (SafeList) ==========[/color]
  53.  
  54. SRV - [2013.06.12 16:54:47 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
  55. SRV - [2013.05.23 15:24:07 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  56. SRV - [2013.04.30 15:26:37 | 000,181,664 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
  57. SRV - [2013.02.28 19:25:34 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
  58. SRV - [2013.02.27 16:13:05 | 000,125,952 | ---- | M] (Yuna Software) [Auto | Running] -- C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe -- (MsgPlusService)
  59. SRV - [2012.03.07 01:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
  60. SRV - [2012.01.18 15:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe -- (Sony PC Companion)
  61. SRV - [2011.06.08 14:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
  62. SRV - [2011.01.28 07:15:33 | 000,066,048 | ---- | M] (PostgreSQL Global Development Group) [Auto | Running] -- c:\postgreSQL\bin\pg_ctl.exe -- (postgresql-8.4)
  63. SRV - [2011.01.07 15:54:08 | 000,247,760 | ---- | M] (Threat Expert Ltd.) [Auto | Running] -- C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe -- (Browser Defender Update Service)
  64. SRV - [2010.07.29 15:23:58 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
  65. SRV - [2010.01.08 18:24:52 | 000,355,584 | ---- | M] (TuneUp Software GmbH) [On_Demand | Stopped] -- C:\WINDOWS\system32\TuneUpDefragService.exe -- (TuneUp.Defrag)
  66. SRV - [2008.05.29 10:28:54 | 000,028,416 | ---- | M] (TuneUp Software GmbH) [Auto | Running] -- C:\WINDOWS\system32\uxtuneup.dll -- (UxTuneUp)
  67. SRV - [2006.03.03 22:03:10 | 000,069,632 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
  68.  
  69.  
  70. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  71.  
  72. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
  73. DRV - File not found [Kernel | Boot | Stopped] -- system32\drivers\TfSysMon.sys -- (TFSysMon)
  74. DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TfNetMon.sys -- (TfNetMon)
  75. DRV - File not found [Kernel | Boot | Stopped] -- system32\drivers\TfFsMon.sys -- (TfFsMon)
  76. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
  77. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
  78. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
  79. DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
  80. DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
  81. DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nlndis.sys -- (NLNdisPT)
  82. DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nlndis.sys -- (NLNdisMP)
  83. DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
  84. DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
  85. DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Garena Plus\Room\safedrv.sys -- (GGSAFERDriver)
  86. DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
  87. DRV - File not found [Kernel | Auto | Stopped] -- -- (adfs)
  88. DRV - [2012.07.31 17:00:08 | 000,223,128 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\dtscsi.sys -- (dtscsi)
  89. DRV - [2012.07.31 16:57:07 | 000,643,072 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
  90. DRV - [2012.03.07 01:03:51 | 000,612,184 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
  91. DRV - [2012.03.07 01:03:38 | 000,337,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
  92. DRV - [2012.03.07 01:02:00 | 000,035,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
  93. DRV - [2012.03.07 01:01:53 | 000,053,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
  94. DRV - [2012.03.07 01:01:39 | 000,095,704 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
  95. DRV - [2012.03.07 01:01:30 | 000,020,696 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
  96. DRV - [2012.03.07 00:58:29 | 000,024,920 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
  97. DRV - [2012.01.07 22:25:54 | 000,025,512 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggsemc.sys -- (ggsemc)
  98. DRV - [2012.01.07 22:25:54 | 000,013,224 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ggflt.sys -- (ggflt)
  99. DRV - [2011.05.18 11:12:38 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
  100. DRV - [2011.05.18 11:12:36 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbser_lowerflt.sys -- (upperdev)
  101. DRV - [2011.05.18 11:12:32 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmbo.sys -- (nmwcdc)
  102. DRV - [2011.05.18 11:12:28 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ccdcmb.sys -- (nmwcd)
  103. DRV - [2010.04.28 07:44:02 | 000,054,760 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys -- (fssfltr)
  104. DRV - [2010.04.22 14:48:41 | 000,281,760 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
  105. DRV - [2010.04.22 14:48:40 | 000,025,888 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
  106. DRV - [2009.02.24 19:42:14 | 000,116,736 | ---- | M] (MagicISO, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mcdbus.sys -- (mcdbus)
  107. DRV - [2008.08.26 11:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pccsmcfd.sys -- (pccsmcfd)
  108. DRV - [2008.04.13 23:15:30 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
  109. DRV - [2007.04.26 11:33:52 | 001,482,048 | R--- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cmuda3.sys -- (cmuda3)
  110. DRV - [2007.03.16 11:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\TBPanel.sys -- (TBPanel)
  111. DRV - [2007.03.16 11:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TBPanel.sys -- (Cardex)
  112. DRV - [2007.01.23 15:45:00 | 000,034,576 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
  113. DRV - [2007.01.23 15:45:00 | 000,033,296 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
  114. DRV - [2007.01.23 15:44:00 | 000,020,496 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\L8042Kbd.sys -- (L8042Kbd)
  115. DRV - [2006.10.29 19:16:10 | 000,243,712 | R--- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
  116. DRV - [2006.10.29 19:15:22 | 004,249,088 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
  117. DRV - [2006.10.29 19:10:46 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
  118. DRV - [2004.06.17 04:05:46 | 000,136,832 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pfc027.sys -- (SoC PC-Camera Service)
  119. DRV - [2002.11.18 09:51:40 | 000,377,358 | R--- | M] (C-Media Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\cmaudio.sys -- (cmpci)
  120.  
  121.  
  122. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  123.  
  124.  
  125. [color=#E56717]========== Internet Explorer ==========[/color]
  126.  
  127. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
  128. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
  129. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
  130. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  131.  
  132. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
  133. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
  134. IE - HKCU\..\URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
  135. IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  136. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  137.  
  138. [color=#E56717]========== FireFox ==========[/color]
  139.  
  140. FF - prefs.js..browser.search.useDBForOrder: true
  141. FF - prefs.js..browser.startup.homepage: "http://www.net.hr/"
  142. FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
  143. FF - prefs.js..extensions.enabledItems: {cb84136f-9c44-433a-9048-c5cd9df1dc16}:3.0.0.300
  144. FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1
  145. FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
  146. FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
  147. FF - prefs.js..extensions.enabledItems: traycho@gmail.com:2.3
  148. FF - prefs.js..keyword.URL: "http://www.google.com/search?btnI=I%27m+Feeling+Lucky&ie=UTF-8&oe=UTF-8&q="
  149. FF - user.js - File not found
  150.  
  151. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
  152. FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
  153. FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll File not found
  154. FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
  155. FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
  156. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
  157. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  158. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
  159. FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
  160. FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
  161. FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.)
  162. FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: C:\Program Files\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
  163. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
  164. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
  165. FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\Sekic\Local Settings\Application Data\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
  166. FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\Sekic\Local Settings\Application Data\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
  167. FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Documents and Settings\Sekic\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
  168.  
  169. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012.04.10 18:12:13 | 000,000,000 | ---D | M]
  170. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{cb84136f-9c44-433a-9048-c5cd9df1dc16}: C:\Program Files\PC Tools Security\BDT\Firefox\ [2011.03.09 18:05:13 | 000,000,000 | ---D | M]
  171. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013.05.23 15:24:09 | 000,000,000 | ---D | M]
  172. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.05.23 15:23:53 | 000,000,000 | ---D | M]
  173.  
  174. [2010.01.08 17:58:48 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sekic\Application Data\Mozilla\Extensions
  175. [2013.04.12 17:28:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sekic\Application Data\Mozilla\Firefox\Profiles\le4ma9l8.default\extensions
  176. [2012.12.11 23:36:32 | 000,000,000 | ---D | M] ("GreenWebPlayer") -- C:\Documents and Settings\Sekic\Application Data\Mozilla\Firefox\Profiles\le4ma9l8.default\extensions\greenwebplayer@greentube.com
  177. [2010.11.29 15:26:30 | 000,000,000 | ---D | M] (World Sms) -- C:\Documents and Settings\Sekic\Application Data\Mozilla\Firefox\Profiles\le4ma9l8.default\extensions\traycho@gmail.com
  178. [2012.04.09 12:28:30 | 000,042,336 | ---- | M] () (No name found) -- C:\Documents and Settings\Sekic\Application Data\Mozilla\Firefox\Profiles\le4ma9l8.default\extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1}.xpi
  179. [2013.03.25 18:11:45 | 000,001,384 | ---- | M] () -- C:\Documents and Settings\Sekic\Application Data\Mozilla\Firefox\Profiles\le4ma9l8.default\searchplugins\nethr.xml
  180. [2013.05.23 15:24:10 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
  181. [2013.05.23 15:23:50 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
  182. [2013.05.23 15:23:50 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
  183. [2013.05.23 15:24:09 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
  184. [2013.05.23 15:24:09 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  185. [2012.08.12 18:25:47 | 000,002,134 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\search.xml
  186.  
  187. [color=#E56717]========== Chrome ==========[/color]
  188.  
  189. CHR - default_search_provider: Google (Enabled)
  190. CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
  191. CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
  192. CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.116\PepperFlash\pepflashplayer.dll
  193. CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
  194. CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll
  195. CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.116\pdf.dll
  196. CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
  197. CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
  198. CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
  199. CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
  200. CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
  201. CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
  202. CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
  203. CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
  204. CHR - plugin: QuickTime Plug-in 7.7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
  205. CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
  206. CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
  207. CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
  208. CHR - plugin: Unity Player (Enabled) = C:\Documents and Settings\Sekic\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll
  209. CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
  210. CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
  211. CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll
  212. CHR - plugin: Java(TM) Platform SE 7 U21 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
  213. CHR - plugin: Media Go Detector (Enabled) = C:\Program Files\Sony\Media Go\npmediago.dll
  214. CHR - plugin: PlayStation(R)Network Downloader Check Plug-in (Enabled) = C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll
  215. CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
  216. CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
  217. CHR - plugin: Shockwave for Director (Enabled) = C:\WINDOWS\system32\Adobe\Director\np32dsw_1168638.dll
  218. CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
  219. CHR - plugin: Java Deployment Toolkit 7.0.210.11 (Enabled) = C:\WINDOWS\system32\npDeployJava1.dll
  220. CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
  221. CHR - Extension: Google Docs = C:\Documents and Settings\Sekic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
  222. CHR - Extension: Google disk = C:\Documents and Settings\Sekic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
  223. CHR - Extension: YouTube = C:\Documents and Settings\Sekic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
  224. CHR - Extension: avast! WebRep = C:\Documents and Settings\Sekic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\
  225. CHR - Extension: Skype Click to Call = C:\Documents and Settings\Sekic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.6.0.11664_0\
  226. CHR - Extension: Gmail = C:\Documents and Settings\Sekic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
  227.  
  228. O1 HOSTS File: ([2012.07.04 15:49:24 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
  229. O1 - Hosts: 127.0.0.1 localhost
  230. O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
  231. O2 - BHO: (PC Tools Browser Guard BHO) - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
  232. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
  233. O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  234. O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
  235. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  236. O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
  237. O3 - HKLM\..\Toolbar: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
  238. O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  239. O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
  240. O3 - HKCU\..\Toolbar\WebBrowser: (PC Tools Browser Guard) - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll (Threat Expert Ltd.)
  241. O3 - HKCU\..\Toolbar\WebBrowser: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
  242. O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
  243. O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
  244. O4 - Startup: C:\Documents and Settings\Sekic\Start Menu\Programs\Startup\RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe ()
  245. O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
  246. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
  247. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
  248. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
  249. O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
  250. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
  251. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
  252. O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
  253. O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html File not found
  254. O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars)
  255. O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
  256. O9 - Extra Button: @shdoclc.dll,-866 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm File not found
  257. O9 - Extra 'Tools' menuitem : @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm File not found
  258. O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
  259. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Reg Error: Value error.)
  260. O16 - DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
  261. O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 10.21.2)
  262. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EB308879-E46F-4F48-887D-B18F1DA455FE}: DhcpNameServer = 192.168.1.1
  263. O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
  264. O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
  265. O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
  266. O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
  267. O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
  268. O24 - Desktop WallPaper: C:\Documents and Settings\Sekic\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
  269. O24 - Desktop BackupWallPaper: C:\Documents and Settings\Sekic\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
  270. O32 - HKLM CDRom: AutoRun - 1
  271. O32 - AutoRun File - [2009.12.16 13:13:03 | 000,000,000 | ---D | M] - D:\autorun.inf -- [ NTFS ]
  272. O32 - AutoRun File - [2011.10.31 16:16:33 | 000,000,069 | R--- | M] () - G:\autorun.inf -- [ CDFS ]
  273. O32 - AutoRun File - [2012.08.13 19:56:20 | 000,000,047 | R--- | M] () - I:\Autorun.inf -- [ CDFS ]
  274. O32 - AutoRun File - [2012.08.13 19:56:20 | 000,348,080 | R--- | M] (Konami Digital Entertainment Co., Ltd.) - I:\autorun.exe -- [ CDFS ]
  275. O32 - AutoRun File - [2013.05.03 20:18:22 | 000,000,140 | R--- | M] () - K:\autorun.inf -- [ CDFS ]
  276. O34 - HKLM BootExecute: (autocheck autochk *)
  277. O35 - HKLM\..comfile [open] -- "%1" %*
  278. O35 - HKLM\..exefile [open] -- "%1" %*
  279. O37 - HKLM\...com [@ = ComFile] -- "%1" %*
  280. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  281. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  282. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  283.  
  284. NetSvcs: 6to4 - File not found
  285. NetSvcs: Ias - File not found
  286. NetSvcs: Iprip - File not found
  287. NetSvcs: Irmon - File not found
  288. NetSvcs: NWCWorkstation - File not found
  289. NetSvcs: Nwsapagent - File not found
  290. NetSvcs: UxTuneUp - C:\WINDOWS\system32\uxtuneup.dll (TuneUp Software GmbH)
  291. NetSvcs: WmdmPmSp - File not found
  292.  
  293. Drivers32: msacm.ac3filter - C:\WINDOWS\System32\ac3filter.acm ()
  294. Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
  295. Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
  296. Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
  297. Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
  298. Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
  299. Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
  300. Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
  301. Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
  302. Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
  303. Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
  304.  
  305. CREATERESTOREPOINT
  306. Restore point Set: OTL Restore Point
  307.  
  308. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  309.  
  310. [2013.06.09 11:31:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cheat Engine 6.2
  311. [2013.06.09 11:31:33 | 000,000,000 | ---D | C] -- C:\Program Files\Cheat Engine 6.2
  312.  
  313. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  314.  
  315. [2013.06.24 22:16:03 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
  316. [2013.06.24 22:00:01 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\1-Click Maintenance.job
  317. [2013.06.24 21:54:01 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
  318. [2013.06.24 21:42:03 | 000,001,028 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-2000478354-1417001333-1003UA.job
  319. [2013.06.24 18:42:45 | 000,000,932 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
  320. [2013.06.24 18:42:41 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
  321. [2013.06.24 18:32:16 | 000,002,265 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Skype.lnk
  322. [2013.06.24 15:42:00 | 000,000,976 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1078081533-2000478354-1417001333-1003Core.job
  323. [2013.06.22 21:35:18 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
  324. [2013.06.20 15:46:35 | 000,002,302 | ---- | M] () -- C:\Documents and Settings\Sekic\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
  325. [2013.06.17 14:18:51 | 000,023,040 | ---- | M] () -- C:\Documents and Settings\Sekic\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  326. [2013.06.17 12:17:57 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
  327.  
  328. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  329.  
  330. [2013.05.02 00:15:19 | 000,005,100 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\flwjycbm.bab
  331. [2012.08.30 11:12:15 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.400.32.bc
  332. [2012.08.08 17:00:37 | 000,045,194 | ---- | C] () -- C:\Documents and Settings\Sekic\Application Data\room_v3.dat
  333. [2012.07.31 17:00:07 | 000,223,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\dtscsi.sys
  334. [2012.07.31 16:57:07 | 000,096,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd8413.sys
  335. [2012.07.31 00:00:00 | 000,000,130 | -H-- | C] () -- C:\Documents and Settings\Sekic\Local Settings\Application Data\spbconfigvlaspbvla4.cfg
  336. [2012.07.16 22:43:16 | 000,000,032 | R--- | C] () -- C:\Documents and Settings\All Users\hash.dat
  337. [2012.05.18 14:48:55 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
  338. [2012.05.18 14:48:55 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Sekic\Application Data\PnkBstrK.sys
  339. [2012.05.18 14:48:39 | 000,189,248 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
  340. [2012.05.18 14:48:35 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
  341. [2012.05.18 14:48:33 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
  342. [2012.04.20 16:48:44 | 000,001,057 | ---- | C] () -- C:\Documents and Settings\Sekic\Application Data\vso_ts_preview.xml
  343. [2012.01.05 02:31:02 | 002,421,766 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1078081533-2000478354-1417001333-1003-0.dat
  344. [2012.01.05 02:31:00 | 000,383,550 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
  345. [2011.10.19 12:38:56 | 000,000,042 | ---- | C] () -- C:\Documents and Settings\Sekic\default.pls
  346. [2011.02.10 21:12:18 | 000,000,009 | -HS- | C] () -- C:\Documents and Settings\Sekic\Application Data\date
  347. [2011.02.10 21:12:16 | 000,000,002 | -HS- | C] () -- C:\Documents and Settings\Sekic\Application Data\evf6
  348. [2010.08.20 22:48:51 | 000,190,608 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
  349. [2010.01.28 20:19:24 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Sekic\Local Settings\Application Data\fusioncache.dat
  350. [2010.01.15 17:55:31 | 000,023,040 | ---- | C] () -- C:\Documents and Settings\Sekic\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  351.  
  352. [color=#E56717]========== ZeroAccess Check ==========[/color]
  353.  
  354. [2010.01.08 18:10:07 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
  355.  
  356. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  357.  
  358. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  359.  
  360. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  361. "" = %SystemRoot%\system32\shdocvw.dll -- [2009.08.12 19:24:02 | 001,789,440 | ---- | M] (Microsoft Corporation)
  362. "ThreadingModel" = Apartment
  363.  
  364. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  365. "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.08.12 19:23:34 | 000,473,600 | ---- | M] (Microsoft Corporation)
  366. "ThreadingModel" = Free
  367.  
  368. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  369. "" = %systemroot%\system32\wbem\wbemess.dll -- [2008.04.14 14:00:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
  370. "ThreadingModel" = Both
  371.  
  372. [color=#E56717]========== LOP Check ==========[/color]
  373.  
  374. [2012.01.07 22:09:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Avanquest
  375. [2011.03.08 22:01:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
  376. [2013.04.02 20:52:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\boost_interprocess
  377. [2012.01.07 22:07:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
  378. [2012.05.26 13:48:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DAEMON Tools Lite
  379. [2012.08.12 18:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DFX
  380. [2011.01.03 00:19:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EA Core
  381. [2011.03.22 18:51:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Easy Driver Pro
  382. [2012.08.03 22:38:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Electronic Arts
  383. [2010.12.11 17:25:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eSellerate
  384. [2011.12.19 23:25:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Installations
  385. [2013.01.04 21:33:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\KONAMI
  386. [2012.09.08 12:42:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Licenses
  387. [2013.03.31 13:13:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
  388. [2013.03.31 13:14:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Messenger Plus! for Skype
  389. [2012.01.02 17:09:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MGS
  390. [2011.03.22 18:36:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
  391. [2010.08.29 14:06:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC Suite
  392. [2012.08.15 23:11:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
  393. [2012.12.02 17:46:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sony
  394. [2010.01.08 18:41:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Sports Interactive
  395. [2010.10.15 20:17:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Systweak
  396. [2013.06.24 18:43:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
  397. [2010.01.08 18:24:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software
  398. [2012.08.03 22:43:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ubisoft
  399. [2010.01.15 20:55:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UDL
  400. [2012.01.04 20:48:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\XHEO INC
  401. [2012.08.29 16:44:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\.expertlotto
  402. [2010.11.12 15:23:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Auslogics
  403. [2012.08.13 15:24:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\blekkotb_019
  404. [2012.12.24 20:27:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\BSplayer
  405. [2010.02.03 16:08:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\BSplayer Pro
  406. [2011.03.09 21:22:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\CheckPoint
  407. [2011.04.09 21:45:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\ChessBase
  408. [2011.08.07 23:10:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\com.adobe.downloadassistant.AdobeDownloadAssistant
  409. [2013.04.27 11:06:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\DAEMON Tools Lite
  410. [2012.09.08 12:40:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Data Solutions
  411. [2012.09.05 13:39:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\dclogs
  412. [2012.09.24 19:37:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\DVDVideoSoft
  413. [2012.09.24 19:38:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Flock
  414. [2010.01.11 19:41:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\FreeAudioPack
  415. [2011.08.07 23:03:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\GetRightToGo
  416. [2012.01.04 20:50:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\HEM Data
  417. [2013.05.01 14:09:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\HoldemManager
  418. [2010.01.22 22:42:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Leadertech
  419. [2012.01.02 17:19:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Microgaming
  420. [2010.07.06 20:57:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Need for Speed World
  421. [2010.08.29 14:06:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Nokia
  422. [2012.02.28 20:23:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\ObviousIdea
  423. [2010.01.09 20:37:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Opera
  424. [2010.08.29 14:07:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\PC Suite
  425. [2011.03.09 18:08:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\PCToolsFirewallPlus
  426. [2012.05.30 16:03:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\PunkBuster
  427. [2012.06.21 17:02:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\SendSpace
  428. [2010.11.12 15:08:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Software Informer
  429. [2012.12.03 23:59:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Sony
  430. [2011.03.09 18:08:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Spam Monitor
  431. [2012.07.20 09:35:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\spiral
  432. [2013.05.14 17:06:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Sports Interactive
  433. [2012.05.19 21:48:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\SystemRequirementsLab
  434. [2013.04.13 09:00:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Systweak
  435. [2012.08.09 23:56:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\TS3Client
  436. [2010.01.08 18:24:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\TuneUp Software
  437. [2010.11.18 15:27:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Ubisoft
  438. [2012.02.28 16:18:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\UDC Profiles
  439. [2011.05.02 14:10:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Unity
  440. [2013.06.23 19:54:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\uTorrent
  441. [2013.04.27 11:06:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sekic\Application Data\Vso
  442.  
  443. [color=#E56717]========== Purity Check ==========[/color]
  444.  
  445.  
  446.  
  447. [color=#E56717]========== Custom Scans ==========[/color]
  448.  
  449. [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
  450. [2012.09.24 16:59:11 | 000,007,882 | ---- | M] () -- C:\AdwCleaner[S1].txt
  451. [2010.01.21 16:04:17 | 000,000,281 | ---- | M] () -- C:\Boot.bak
  452. [2011.03.07 21:31:24 | 000,000,327 | RHS- | M] () -- C:\boot.ini
  453. [2004.08.04 00:00:00 | 000,260,272 | RHS- | M] () -- C:\cmldr
  454. [2012.09.24 19:37:22 | 000,042,032 | ---- | M] () -- C:\Documents
  455. [2005.08.27 14:29:30 | 000,000,856 | ---- | M] () -- C:\flashplayer.xpt
  456. [2010.01.08 17:31:42 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
  457. [2010.05.06 20:49:06 | 000,000,113 | ---- | M] () -- C:\mbam-error.txt
  458. [2010.01.08 17:31:42 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
  459. [2008.04.14 14:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
  460. [2008.04.14 14:00:00 | 000,250,048 | RHS- | M] () -- C:\ntldr
  461. [2013.04.12 14:00:25 | 000,262,144 | ---- | M] () -- C:\NTUser.dat
  462. [2013.04.12 14:00:25 | 000,001,024 | -H-- | M] () -- C:\NTUser.dat.LOG
  463. [2013.06.24 18:42:35 | 1610,612,736 | -HS- | M] () -- C:\pagefile.sys
  464. [2010.05.26 22:21:03 | 000,230,454 | ---- | M] () -- C:\StiImg.dat
  465.  
  466. [color=#A23BEC]< %systemroot%\Fonts\*.com >[/color]
  467.  
  468. [color=#A23BEC]< %systemroot%\Fonts\*.dll >[/color]
  469. [2006.02.19 04:28:56 | 000,012,288 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\WINDOWS\Fonts\RandFont.dll
  470.  
  471. [color=#A23BEC]< %systemroot%\Fonts\*.ini >[/color]
  472. [2010.01.08 17:31:18 | 000,000,067 | -HS- | M] () -- C:\WINDOWS\Fonts\desktop.ini
  473.  
  474. [color=#A23BEC]< %systemroot%\Fonts\*.ini2 >[/color]
  475.  
  476. [color=#A23BEC]< %systemroot%\Fonts\*.exe >[/color]
  477.  
  478. [color=#A23BEC]< %systemroot%\system32\spool\prtprocs\w32x86\*.* >[/color]
  479. [2008.07.06 14:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
  480. [2006.04.10 15:02:32 | 000,074,240 | ---- | M] (Hewlett-Packard Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp054.dll
  481. [2006.10.26 20:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll
  482. [2008.07.06 12:50:03 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
  483.  
  484. [color=#A23BEC]< %systemroot%\REPAIR\*.bak1 >[/color]
  485.  
  486. [color=#A23BEC]< %systemroot%\REPAIR\*.ini >[/color]
  487.  
  488. [color=#A23BEC]< %systemroot%\system32\*.jpg >[/color]
  489.  
  490. [color=#A23BEC]< %systemroot%\*.jpg >[/color]
  491.  
  492. [color=#A23BEC]< %systemroot%\*.png >[/color]
  493.  
  494. [color=#A23BEC]< %systemroot%\*.scr >[/color]
  495. [2012.03.07 01:15:19 | 000,041,184 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
  496. [2010.04.17 00:04:40 | 000,306,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WLXPGSS.SCR
  497.  
  498. [color=#A23BEC]< %systemroot%\*._sy >[/color]
  499.  
  500. [color=#A23BEC]< %APPDATA%\Adobe\Update\*.* >[/color]
  501.  
  502. [color=#A23BEC]< %ALLUSERSPROFILE%\Favorites\*.* >[/color]
  503.  
  504. [color=#A23BEC]< %APPDATA%\Microsoft\*.* >[/color]
  505. [2012.01.09 00:48:41 | 000,001,746 | -H-- | M] () -- C:\Documents and Settings\Sekic\Application Data\Microsoft\LastFlashConfig.WFC
  506.  
  507. [color=#A23BEC]< %PROGRAMFILES%\*.* >[/color]
  508.  
  509. [color=#A23BEC]< %APPDATA%\Update\*.* >[/color]
  510.  
  511. [color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
  512.  
  513. [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
  514. [2010.01.08 18:20:39 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav
  515. [2010.01.08 18:20:39 | 001,089,536 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav
  516. [2010.01.08 18:20:39 | 000,921,600 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav
  517.  
  518. [color=#A23BEC]< %PROGRAMFILES%\bak. /s >[/color]
  519.  
  520. [color=#A23BEC]< %systemroot%\system32\bak. /s >[/color]
  521.  
  522. [color=#A23BEC]< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >[/color]
  523. [2010.01.08 17:31:48 | 000,000,294 | -HS- | M] () -- C:\Documents and Settings\All Users\Start Menu\desktop.ini
  524.  
  525. [color=#A23BEC]< %systemroot%\system32\config\systemprofile\*.dat /x >[/color]
  526.  
  527. [color=#A23BEC]< %systemroot%\*.config >[/color]
  528.  
  529. [color=#A23BEC]< %systemroot%\system32\*.db >[/color]
  530.  
  531. [color=#A23BEC]< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >[/color]
  532. [2010.05.17 21:11:12 | 000,000,177 | -HS- | M] () -- C:\Documents and Settings\Sekic\Application Data\Microsoft\Internet Explorer\Quick Launch\desktop.ini
  533. [2010.01.08 17:36:09 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Sekic\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
  534.  
  535. [color=#A23BEC]< %USERPROFILE%\Desktop\*.exe >[/color]
  536.  
  537. [color=#A23BEC]< %PROGRAMFILES%\Common Files\*.* >[/color]
  538.  
  539. [color=#A23BEC]< %systemroot%\*.src >[/color]
  540.  
  541. [color=#A23BEC]< %systemroot%\install\*.* >[/color]
  542.  
  543. [color=#A23BEC]< %systemroot%\system32\DLL\*.* >[/color]
  544.  
  545. [color=#A23BEC]< %systemroot%\system32\HelpFiles\*.* >[/color]
  546.  
  547. [color=#A23BEC]< %systemroot%\system32\rundll\*.* >[/color]
  548.  
  549. [color=#A23BEC]< %systemroot%\winn32\*.* >[/color]
  550.  
  551. [color=#A23BEC]< %systemroot%\Java\*.* >[/color]
  552.  
  553. [color=#A23BEC]< %systemroot%\system32\test\*.* >[/color]
  554.  
  555. [color=#A23BEC]< %systemroot%\system32\Rundll32\*.* >[/color]
  556.  
  557. [color=#A23BEC]< %systemroot%\AppPatch\Custom\*.* >[/color]
  558.  
  559. [color=#A23BEC]< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >[/color]
  560.  
  561. [color=#A23BEC]< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >[/color]
  562.  
  563. [color=#A23BEC]< %PROGRAMFILES%\Internet Explorer\*.tmp >[/color]
  564.  
  565. [color=#A23BEC]< %PROGRAMFILES%\Internet Explorer\*.dat >[/color]
  566.  
  567. [color=#A23BEC]< %USERPROFILE%\My Documents\*.exe >[/color]
  568. [2010.12.05 22:37:26 | 001,286,504 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\Sekic\My Documents\wlsetup-web.exe
  569.  
  570. [color=#A23BEC]< %USERPROFILE%\*.exe >[/color]
  571.  
  572. [color=#A23BEC]< %systemroot%\ADDINS\*.* >[/color]
  573.  
  574. [color=#A23BEC]< %systemroot%\assembly\*.bak2 >[/color]
  575.  
  576. [color=#A23BEC]< %systemroot%\Config\*.* >[/color]
  577.  
  578. [color=#A23BEC]< %systemroot%\REPAIR\*.bak2 >[/color]
  579.  
  580. [color=#A23BEC]< %systemroot%\SECURITY\Database\*.sdb /x >[/color]
  581.  
  582. [color=#A23BEC]< %systemroot%\SYSTEM\*.bak2 >[/color]
  583.  
  584. [color=#A23BEC]< %systemroot%\Web\*.bak2 >[/color]
  585.  
  586. [color=#A23BEC]< %systemroot%\Driver Cache\*.* >[/color]
  587.  
  588. [color=#A23BEC]< %PROGRAMFILES%\Mozilla Firefox\0*.exe >[/color]
  589.  
  590. [color=#A23BEC]< %ProgramFiles%\Microsoft Common\*.* >[/color]
  591.  
  592. [color=#A23BEC]< %ProgramFiles%\TinyProxy. >[/color]
  593.  
  594. [color=#A23BEC]< %USERPROFILE%\Favorites\*.url /x >[/color]
  595. [2010.01.08 17:36:09 | 000,000,122 | -HS- | M] () -- C:\Documents and Settings\Sekic\Favorites\Desktop.ini
  596. [2010.01.19 21:14:26 | 000,001,517 | ---- | M] () -- C:\Documents and Settings\Sekic\Favorites\Free Games Download!.lnk
  597. [2010.01.19 21:14:26 | 000,001,511 | ---- | M] () -- C:\Documents and Settings\Sekic\Favorites\Play Games Online!.lnk
  598.  
  599. [color=#A23BEC]< %systemroot%\System32\Wbem\*.exe >[/color]
  600. [2008.04.14 14:00:00 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\mofcomp.exe
  601. [2008.04.14 14:00:00 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\scrcons.exe
  602. [2008.04.14 14:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\unsecapp.exe
  603. [2008.04.14 14:00:00 | 000,116,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\wbemtest.exe
  604. [2008.04.14 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\winmgmt.exe
  605. [2008.04.14 14:00:00 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\wmiadap.exe
  606. [2008.04.14 14:00:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\wmiapsrv.exe
  607. [2008.04.14 14:00:00 | 000,358,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\wmic.exe
  608. [2009.08.12 19:24:18 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\wmiprvse.exe
  609.  
  610. [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color]
  611.  
  612. [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color]
  613.  
  614. [color=#E56717]========== Alternate Data Streams ==========[/color]
  615.  
  616. @Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:430C6D84
  617. @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
  618. @Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1B5B4F1
  619.  
  620. < End of report >
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!