API tools faq
paste
View difference between Paste ID: 0GRpmyAU and bNJEBAVr
SHOW: | | - or go back to the newest paste.
1
OTL logfile created on: 9.11.2015. 19:53:03 - Run 1
2
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Anamarija\Desktop
3
64bit- An unknown product  (Version = 6.2.9200) - Type = NTWorkstation
4
Internet Explorer (Version = 9.11.9600.18053)
5
Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy.
6
7
3,20 Gb Total Physical Memory | 1,41 Gb Available Physical Memory | 44,09% Memory free
8
5,29 Gb Paging File | 2,40 Gb Available in Paging File | 45,44% Paging File free
9
Paging file location(s): ?:\pagefile.sys [binary data]
10
11
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
12
Drive C: | 890,54 Gb Total Space | 540,53 Gb Free Space | 60,70% Space Free | Partition Type: NTFS
13
Drive D: | 25,00 Gb Total Space | 22,82 Gb Free Space | 91,30% Space Free | Partition Type: NTFS
14
Drive H: | 7,32 Gb Total Space | 3,01 Gb Free Space | 41,16% Space Free | Partition Type: FAT32
15
16
Computer Name: STUIE | User Name: Anamarija | Logged in as Administrator.
17
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
18
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
19
20
[color=#E56717]========== Processes (SafeList) ==========[/color]
21
22
PRC - [2015.11.09 19:50:02 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Anamarija\Desktop\OTL.exe
23
PRC - [2015.10.20 15:08:28 | 000,811,848 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
24
PRC - [2015.10.07 18:50:26 | 004,746,696 | ---- | M] (Mega Limited) -- C:\Users\Anamarija\AppData\Local\MEGAsync\MEGAsync.exe
25
PRC - [2015.05.29 11:22:13 | 000,191,696 | ---- | M] () -- C:\Program Files (x86)\Rise Gaming Store\rise_gaming_store_helper_service.exe
26
PRC - [2015.04.02 23:22:26 | 001,417,216 | ---- | M] (FileProperties_CompanyName) -- C:\Program Files (x86)\disco games\disco_games_notification_service.exe
27
PRC - [2015.03.09 08:45:04 | 001,360,336 | ---- | M] (Lenovo) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
28
PRC - [2015.02.25 12:17:49 | 001,396,176 | ---- | M] (Marketi) -- C:\Program Files (x86)\enterprise 1.1\bc6dd7d0-c8b1-4760-97eb-8e9632e4a29d-10.exe
29
PRC - [2015.02.20 13:54:01 | 001,413,072 | ---- | M] (Marketi) -- C:\Program Files (x86)\enterprise 1.1\da72acf8-c3e2-4119-9c36-55c6e64d2775-1-6.exe
30
PRC - [2015.02.20 13:53:36 | 001,417,680 | ---- | M] (Marketi) -- C:\Program Files (x86)\enterprise 1.1\da72acf8-c3e2-4119-9c36-55c6e64d2775-6.exe
31
PRC - [2015.02.09 22:18:58 | 001,413,080 | ---- | M] (Marketi) -- C:\Program Files (x86)\enterprise 1.1\4fa2116b-e112-49ed-9d9c-a5989d8ac246-1-6.exe
32
PRC - [2013.01.25 08:18:32 | 000,323,584 | R--- | M] (Atheros) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
33
PRC - [2012.03.29 03:34:30 | 000,091,432 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
34
35
36
[color=#E56717]========== Modules (No Company Name) ==========[/color]
37
38
MOD - [2015.10.20 15:08:27 | 016,493,384 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\PepperFlash\pepflashplayer.dll
39
MOD - [2015.10.20 15:08:24 | 001,532,744 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\libglesv2.dll
40
MOD - [2015.10.20 15:08:22 | 000,081,224 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\libegl.dll
41
MOD - [2015.05.29 11:22:13 | 000,191,696 | ---- | M] () -- C:\Program Files (x86)\Rise Gaming Store\rise_gaming_store_helper_service.exe
42
MOD - [2015.02.20 13:53:36 | 000,154,064 | ---- | M] () -- C:\Program Files (x86)\enterprise 1.1\6c60aee3-7e52-40a2-83a0-8280553922ef.dll
43
44
45
[color=#E56717]========== Services (SafeList) ==========[/color]
46
47
SRV:[b]64bit:[/b] - [2015.08.19 09:57:32 | 007,743,472 | ---- | M] (Reimage®) [Auto | Running] -- C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe -- (ReimageRealTimeProtector)
48
SRV:[b]64bit:[/b] - [2015.08.02 11:53:52 | 000,379,904 | ---- | M] () [Auto | Running] -- C:\Program Files\Controller\cohc.exe -- (cohci1394)
49
SRV:[b]64bit:[/b] - [2015.07.22 14:52:08 | 001,633,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
50
SRV:[b]64bit:[/b] - [2015.07.16 19:58:34 | 000,074,752 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
51
SRV:[b]64bit:[/b] - [2015.07.07 10:39:32 | 000,366,552 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
52
SRV:[b]64bit:[/b] - [2015.07.07 10:39:32 | 000,023,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
53
SRV:[b]64bit:[/b] - [2015.05.30 20:36:24 | 000,230,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
54
SRV:[b]64bit:[/b] - [2015.05.12 14:19:37 | 000,294,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
55
SRV:[b]64bit:[/b] - [2015.05.07 16:21:51 | 000,522,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
56
SRV:[b]64bit:[/b] - [2015.03.09 08:45:52 | 000,272,440 | ---- | M] (Lenovo) [On_Demand | Stopped] -- C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe -- (LSCWinService)
57
SRV:[b]64bit:[/b] - [2015.02.21 00:49:18 | 000,780,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
58
SRV:[b]64bit:[/b] - [2014.10.31 05:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
59
SRV:[b]64bit:[/b] - [2014.10.29 04:59:51 | 003,460,472 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\WSService.dll -- (WSService)
60
SRV:[b]64bit:[/b] - [2014.10.29 04:50:11 | 002,987,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
61
SRV:[b]64bit:[/b] - [2014.10.29 03:42:19 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
62
SRV:[b]64bit:[/b] - [2014.10.29 03:42:03 | 000,041,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
63
SRV:[b]64bit:[/b] - [2014.10.29 03:34:51 | 000,067,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
64
SRV:[b]64bit:[/b] - [2014.10.29 03:33:55 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
65
SRV:[b]64bit:[/b] - [2014.10.29 03:29:22 | 000,121,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
66
SRV:[b]64bit:[/b] - [2014.10.29 02:57:05 | 000,324,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
67
SRV:[b]64bit:[/b] - [2014.10.29 02:48:20 | 000,166,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
68
SRV:[b]64bit:[/b] - [2014.10.29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
69
SRV:[b]64bit:[/b] - [2014.10.29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
70
SRV:[b]64bit:[/b] - [2014.10.29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
71
SRV:[b]64bit:[/b] - [2014.10.29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
72
SRV:[b]64bit:[/b] - [2014.10.29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
73
SRV:[b]64bit:[/b] - [2014.10.29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
74
SRV:[b]64bit:[/b] - [2014.10.29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
75
SRV:[b]64bit:[/b] - [2014.10.29 02:27:21 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
76
SRV:[b]64bit:[/b] - [2014.10.29 02:26:21 | 000,838,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
77
SRV:[b]64bit:[/b] - [2014.10.29 02:24:37 | 000,131,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
78
SRV:[b]64bit:[/b] - [2014.10.29 02:22:40 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
79
SRV:[b]64bit:[/b] - [2014.10.29 02:20:03 | 000,262,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
80
SRV:[b]64bit:[/b] - [2014.10.29 02:19:20 | 000,550,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
81
SRV:[b]64bit:[/b] - [2014.10.29 02:16:17 | 000,154,112 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
82
SRV:[b]64bit:[/b] - [2014.10.29 02:13:24 | 000,374,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
83
SRV:[b]64bit:[/b] - [2014.10.29 02:13:02 | 000,260,608 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
84
SRV:[b]64bit:[/b] - [2014.10.29 02:12:36 | 000,407,040 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
85
SRV:[b]64bit:[/b] - [2014.10.29 02:12:22 | 000,270,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
86
SRV:[b]64bit:[/b] - [2014.10.29 02:11:10 | 001,639,424 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
87
SRV:[b]64bit:[/b] - [2014.10.29 02:05:09 | 000,206,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
88
SRV:[b]64bit:[/b] - [2014.10.29 01:48:52 | 000,562,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
89
SRV:[b]64bit:[/b] - [2014.10.29 01:46:48 | 001,348,096 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
90
SRV:[b]64bit:[/b] - [2014.10.29 01:35:51 | 001,668,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
91
SRV:[b]64bit:[/b] - [2014.07.21 21:04:24 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
92
SRV:[b]64bit:[/b] - [2014.07.04 20:33:34 | 000,344,064 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
93
SRV:[b]64bit:[/b] - [2012.12.03 18:27:56 | 000,202,400 | ---- | M] (Conexant Systems Inc.) [Auto | Running] -- C:\Windows\SysNative\CxAudMsg64.exe -- (CxAudMsg)
94
SRV - [2015.09.28 19:25:16 | 000,148,080 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
95
SRV - [2015.08.03 20:43:53 | 000,068,608 | ---- | M] (globalUpdate) [On_Demand | Stopped] -- C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe -- (globalUpdatem)
96
SRV - [2015.08.03 20:43:53 | 000,068,608 | ---- | M] (globalUpdate) [Auto | Stopped] -- C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe -- (globalUpdate)
97
SRV - [2015.05.07 16:05:40 | 000,367,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
98
SRV - [2014.10.29 04:50:11 | 002,987,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
99
SRV - [2014.10.29 02:51:55 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
100
SRV - [2014.10.29 02:04:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
101
SRV - [2013.11.08 12:58:22 | 000,068,368 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe -- (VeriFaceSrv)
102
SRV - [2013.01.25 09:12:12 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe -- (AtherosSvc)
103
SRV - [2013.01.25 08:18:32 | 000,323,584 | R--- | M] (Atheros) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe -- (ZAtheros Bt and Wlan Coex Agent)
104
105
106
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
107
108
DRV:[b]64bit:[/b] - [2015.08.02 08:54:40 | 000,048,784 | ---- | M] (StdLib) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\{5663c04f-f294-4115-9114-b62be60538cb}Gw64.sys -- ({5663c04f-f294-4115-9114-b62be60538cb}Gw64)
109
DRV:[b]64bit:[/b] - [2015.07.07 10:40:12 | 000,044,560 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
110
DRV:[b]64bit:[/b] - [2015.07.07 10:40:05 | 000,270,168 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
111
DRV:[b]64bit:[/b] - [2015.07.07 10:40:05 | 000,114,520 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
112
DRV:[b]64bit:[/b] - [2015.04.16 07:17:07 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
113
DRV:[b]64bit:[/b] - [2015.03.20 02:56:10 | 000,080,384 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
114
DRV:[b]64bit:[/b] - [2015.03.17 18:26:06 | 000,467,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
115
DRV:[b]64bit:[/b] - [2015.03.13 05:03:31 | 000,239,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
116
DRV:[b]64bit:[/b] - [2015.03.09 03:02:51 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
117
DRV:[b]64bit:[/b] - [2015.03.04 11:25:11 | 000,377,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
118
DRV:[b]64bit:[/b] - [2014.12.09 16:47:50 | 000,009,216 | ---- | M] (SMART Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SMARTVHidMiniVistaAmd64.sys -- (SMARTVHidMiniVistaAmd64)
119
DRV:[b]64bit:[/b] - [2014.12.09 16:47:36 | 000,010,240 | ---- | M] (SMART Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SMARTMouseFilterx64.sys -- (SMARTMouseFilterx64)
120
DRV:[b]64bit:[/b] - [2014.12.09 16:47:32 | 000,070,656 | ---- | M] (SMART Technologies ULC) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SMARTVTabletPCx64.sys -- (SMARTVTabletPCx64)
121
DRV:[b]64bit:[/b] - [2014.10.29 04:59:47 | 000,415,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
122
DRV:[b]64bit:[/b] - [2014.10.29 04:59:12 | 000,136,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
123
DRV:[b]64bit:[/b] - [2014.10.29 04:57:42 | 000,054,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
124
DRV:[b]64bit:[/b] - [2014.10.29 04:56:04 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
125
DRV:[b]64bit:[/b] - [2014.10.29 03:46:43 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
126
DRV:[b]64bit:[/b] - [2014.10.29 03:46:09 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
127
DRV:[b]64bit:[/b] - [2014.10.29 03:45:54 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
128
DRV:[b]64bit:[/b] - [2014.10.29 03:45:39 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
129
DRV:[b]64bit:[/b] - [2014.10.29 03:45:16 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
130
DRV:[b]64bit:[/b] - [2014.10.15 09:32:36 | 000,921,920 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
131
DRV:[b]64bit:[/b] - [2014.10.13 03:43:17 | 000,086,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
132
DRV:[b]64bit:[/b] - [2014.10.13 03:43:17 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
133
DRV:[b]64bit:[/b] - [2014.10.07 07:54:45 | 000,189,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
134
DRV:[b]64bit:[/b] - [2014.10.07 07:44:39 | 000,069,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
135
DRV:[b]64bit:[/b] - [2014.10.05 23:39:57 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
136
DRV:[b]64bit:[/b] - [2014.08.15 01:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
137
DRV:[b]64bit:[/b] - [2014.07.21 21:04:28 | 013,209,088 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
138
DRV:[b]64bit:[/b] - [2014.07.21 21:04:28 | 000,626,688 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
139
DRV:[b]64bit:[/b] - [2014.04.28 05:33:30 | 000,599,240 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
140
DRV:[b]64bit:[/b] - [2014.03.18 11:13:15 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
141
DRV:[b]64bit:[/b] - [2014.03.18 11:13:02 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
142
DRV:[b]64bit:[/b] - [2014.03.18 11:13:01 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
143
DRV:[b]64bit:[/b] - [2014.03.18 11:13:01 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
144
DRV:[b]64bit:[/b] - [2014.03.18 11:13:01 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
145
DRV:[b]64bit:[/b] - [2014.03.18 11:13:00 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
146
DRV:[b]64bit:[/b] - [2014.03.18 10:45:41 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
147
DRV:[b]64bit:[/b] - [2014.01.22 07:52:12 | 000,206,080 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudobex.sys -- (ssudobex)
148
DRV:[b]64bit:[/b] - [2014.01.22 07:52:10 | 000,206,080 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm)
149
DRV:[b]64bit:[/b] - [2014.01.22 07:52:10 | 000,108,800 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus)
150
DRV:[b]64bit:[/b] - [2013.11.08 12:58:51 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
151
DRV:[b]64bit:[/b] - [2013.11.08 12:58:51 | 000,033,560 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
152
DRV:[b]64bit:[/b] - [2013.09.19 23:05:02 | 000,059,648 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Stopped] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.2.0)
153
DRV:[b]64bit:[/b] - [2013.09.19 23:05:02 | 000,059,648 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.2)
154
DRV:[b]64bit:[/b] - [2013.08.22 14:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
155
DRV:[b]64bit:[/b] - [2013.08.22 14:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
156
DRV:[b]64bit:[/b] - [2013.08.22 13:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
157
DRV:[b]64bit:[/b] - [2013.08.22 13:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
158
DRV:[b]64bit:[/b] - [2013.08.22 13:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
159
DRV:[b]64bit:[/b] - [2013.08.22 13:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
160
DRV:[b]64bit:[/b] - [2013.08.22 13:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
161
DRV:[b]64bit:[/b] - [2013.08.22 13:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
162
DRV:[b]64bit:[/b] - [2013.08.22 13:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
163
DRV:[b]64bit:[/b] - [2013.08.22 13:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
164
DRV:[b]64bit:[/b] - [2013.08.22 13:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
165
DRV:[b]64bit:[/b] - [2013.08.22 13:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
166
DRV:[b]64bit:[/b] - [2013.08.22 13:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
167
DRV:[b]64bit:[/b] - [2013.08.22 13:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
168
DRV:[b]64bit:[/b] - [2013.08.22 13:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
169
DRV:[b]64bit:[/b] - [2013.08.22 13:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
170
DRV:[b]64bit:[/b] - [2013.08.22 13:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
171
DRV:[b]64bit:[/b] - [2013.08.22 13:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
172
DRV:[b]64bit:[/b] - [2013.08.22 13:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
173
DRV:[b]64bit:[/b] - [2013.08.22 13:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
174
DRV:[b]64bit:[/b] - [2013.08.22 13:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
175
DRV:[b]64bit:[/b] - [2013.08.22 13:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
176
DRV:[b]64bit:[/b] - [2013.08.22 13:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
177
DRV:[b]64bit:[/b] - [2013.08.22 13:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
178
DRV:[b]64bit:[/b] - [2013.08.22 13:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
179
DRV:[b]64bit:[/b] - [2013.08.22 13:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
180
DRV:[b]64bit:[/b] - [2013.08.22 13:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
181
DRV:[b]64bit:[/b] - [2013.08.22 13:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
182
DRV:[b]64bit:[/b] - [2013.08.22 12:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
183
DRV:[b]64bit:[/b] - [2013.08.22 12:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
184
DRV:[b]64bit:[/b] - [2013.08.22 12:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
185
DRV:[b]64bit:[/b] - [2013.08.22 12:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
186
DRV:[b]64bit:[/b] - [2013.08.22 12:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
187
DRV:[b]64bit:[/b] - [2013.08.22 12:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
188
DRV:[b]64bit:[/b] - [2013.08.22 12:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
189
DRV:[b]64bit:[/b] - [2013.08.22 12:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
190
DRV:[b]64bit:[/b] - [2013.08.22 12:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
191
DRV:[b]64bit:[/b] - [2013.08.22 12:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
192
DRV:[b]64bit:[/b] - [2013.08.22 12:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
193
DRV:[b]64bit:[/b] - [2013.08.22 12:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
194
DRV:[b]64bit:[/b] - [2013.08.22 12:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
195
DRV:[b]64bit:[/b] - [2013.08.22 12:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
196
DRV:[b]64bit:[/b] - [2013.08.22 12:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
197
DRV:[b]64bit:[/b] - [2013.08.22 09:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
198
DRV:[b]64bit:[/b] - [2013.08.13 00:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
199
DRV:[b]64bit:[/b] - [2013.08.10 01:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
200
DRV:[b]64bit:[/b] - [2013.07.30 19:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
201
DRV:[b]64bit:[/b] - [2013.07.25 20:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
202
DRV:[b]64bit:[/b] - [2013.06.18 15:44:59 | 000,129,224 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C63x64.sys -- (L1C)
203
DRV:[b]64bit:[/b] - [2013.04.23 12:38:22 | 000,098,744 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW86.sys -- (AtiHDAudioService)
204
DRV:[b]64bit:[/b] - [2013.04.18 16:04:28 | 000,219,360 | ---- | M] (AppEx Networks Corporation) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\appexDrv.sys -- (APXACC)
205
DRV:[b]64bit:[/b] - [2013.04.10 14:52:22 | 008,243,272 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtsuvc.sys -- (rtsuvc)
206
DRV:[b]64bit:[/b] - [2013.03.25 07:24:22 | 003,776,000 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athw8x.sys -- (athr)
207
DRV:[b]64bit:[/b] - [2013.03.18 08:21:52 | 000,327,752 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUVStor.sys -- (RSUSBVSTOR)
208
DRV:[b]64bit:[/b] - [2013.02.27 07:44:24 | 000,355,664 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
209
DRV:[b]64bit:[/b] - [2013.02.26 06:08:24 | 001,680,992 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
210
DRV:[b]64bit:[/b] - [2013.02.14 01:33:06 | 000,037,472 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdkmpfd.sys -- (amdkmpfd)
211
DRV:[b]64bit:[/b] - [2013.01.25 08:46:24 | 000,136,424 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
212
DRV:[b]64bit:[/b] - [2013.01.25 08:46:22 | 000,077,464 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_lwflt.sys -- (BTATH_LWFLT)
213
DRV:[b]64bit:[/b] - [2013.01.25 08:46:20 | 000,346,192 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
214
DRV:[b]64bit:[/b] - [2013.01.25 08:46:20 | 000,179,432 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
215
DRV:[b]64bit:[/b] - [2013.01.25 08:46:20 | 000,115,280 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_avdt.sys -- (btath_avdt)
216
DRV:[b]64bit:[/b] - [2013.01.25 08:46:20 | 000,089,168 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
217
DRV:[b]64bit:[/b] - [2013.01.25 08:46:20 | 000,034,384 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
218
DRV:[b]64bit:[/b] - [2012.11.30 07:31:02 | 000,026,280 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
219
DRV:[b]64bit:[/b] - [2012.11.30 07:31:00 | 000,080,552 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
220
DRV:[b]64bit:[/b] - [2012.08.28 13:27:24 | 000,058,536 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
221
DRV:[b]64bit:[/b] - [2012.06.14 02:10:32 | 000,102,376 | ---- | M] ("CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
222
DRV:[b]64bit:[/b] - [2011.05.13 02:21:04 | 000,177,640 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
223
DRV:[b]64bit:[/b] - [2011.05.13 02:21:04 | 000,146,920 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd)
224
DRV:[b]64bit:[/b] - [2011.05.13 02:21:02 | 000,157,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus)
225
DRV:[b]64bit:[/b] - [2011.05.13 02:21:02 | 000,016,872 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl)
226
227
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
228
229
230
[color=#E56717]========== Internet Explorer ==========[/color]
231
232
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/?type=hp&ts=1438632314&z=bf1bb436d36fe8bd5d635b6gaz6c0baqdc7o0cag0z&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593
233
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/web/?type=ds&ts=1438632314&z=bf1bb436d36fe8bd5d635b6gaz6c0baqdc7o0cag0z&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593&q={searchTerms}
234
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/web/?type=ds&ts=1438632314&z=bf1bb436d36fe8bd5d635b6gaz6c0baqdc7o0cag0z&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593&q={searchTerms}
235
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
236
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
237
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
238
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{84665D9F-5DE7-497D-9BDF-01C059FD5500}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
239
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/?type=hp&ts=1438632314&z=bf1bb436d36fe8bd5d635b6gaz6c0baqdc7o0cag0z&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593
240
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.oursurfing.com/web/?type=ds&ts=1438632314&z=bf1bb436d36fe8bd5d635b6gaz6c0baqdc7o0cag0z&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593&q={searchTerms}
241
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
242
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.oursurfing.com/web/?type=ds&ts=1438632314&z=bf1bb436d36fe8bd5d635b6gaz6c0baqdc7o0cag0z&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593&q={searchTerms}
243
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
244
IE - HKLM\..\SearchScopes,DefaultScope = {ielnksrch}
245
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
246
IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
247
IE - HKLM\..\SearchScopes\{84665D9F-5DE7-497D-9BDF-01C059FD5500}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS
248
IE - HKLM\..\SearchScopes\ielnksrch: "URL" = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNYu5g_bxd0cE_7DUNpztuexyR_Tr0q3oCxX_tK9vIkrzec1RacdjNx7xBLnCF34HIcEXpibPL9Y5No63LDwFmfH5gX4pQyI5d3EKn6kUgY4On9ISEuO2tuVSg00xfLHZcoAolXxkcEoeTceZKxZju72OBnPbA&q={searchTerms}
249
250
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.oursurfing.com/?type=hp&ts=1438632314&z=bf1bb436d36fe8bd5d635b6gaz6c0baqdc7o0cag0z&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593
251
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com [binary data]
252
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNYu5g_bxd0cE_7DUNpztuexyR_Tr0q3oCxX_tK9vIkrzec1RacdjNx7xBLnCF34HIcEXpibPL9Y5No63LDwFmfH5gX4pQyI5d3EKn6kUgY4On9ISEuO2tuVSg00xfLHZcoAolXxkcEoeTceZKxZju72OBnPbA&q={searchTerms}
253
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNYu5g_bxd0cE_7DUNpztuexyR_Tr0q3oCxX_tK9vIkrzec1RacdjNx7xBLnCF34HIcEXpibPL9Y5No63LDwFmfH5gX4pQyI5d3EKn6kUgY4On9ISEuO2tuVSg00xfLHZcoAolXxkcEoeTceZKxZju72OBnPbA&q={searchTerms}
254
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.com/
255
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNYu5g_bxd0cE_7DUNpztuexyR_Tr0q3oCxX_tK9vIkrzec1RacdjNx7xBLnCF34HIcEXpibPL9Y5No63LDwFmfH5gX4pQyI5d3EKn6kUgY4On9ISEuO2tuVSg00xfLHZcoAolXxkcEoeTceZKxZju72OBnPbA&q={searchTerms}
256
IE - HKCU\..\SearchScopes,DefaultScope = {84665D9F-5DE7-497D-9BDF-01C059FD5500}
257
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.oursurfing.com/web/?utm_source=b&utm_medium=amt&utm_campaign=install_ie&utm_content=ds&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593&ts=1438632403&type=default&q={searchTerms}
258
IE - HKCU\..\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}: "URL" = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
259
IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.oursurfing.com/web/?utm_source=b&utm_medium=amt&utm_campaign=install_ie&utm_content=ds&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593&ts=1438632403&type=default&q={searchTerms}
260
IE - HKCU\..\SearchScopes\{84665D9F-5DE7-497D-9BDF-01C059FD5500}: "URL" = http://www.oursurfing.com/web/?utm_source=b&utm_medium=amt&utm_campaign=install_ie&utm_content=ds&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593&ts=1438632403&type=default&q={searchTerms}
261
IE - HKCU\..\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}: "URL" = http://www.oursurfing.com/web/?utm_source=b&utm_medium=amt&utm_campaign=install_ie&utm_content=ds&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593&ts=1438632403&type=default&q={searchTerms}
262
IE - HKCU\..\SearchScopes\{ielnksrch}: "URL" = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNYu5g_bxd0cE_7DUNpztuexyR_Tr0q3oCxX_tK9vIkrzec1RacdjNx7xBLnCF34HIcEXpibPL9Y5No63LDwFmfH5gX4pQyI5d3EKn6kUgY4On9ISEuO2tuVSg00xfLHZcoAolXxkcEoeTceZKxZju72OBnPbA&q={searchTerms}
263
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
264
265
[color=#E56717]========== FireFox ==========[/color]
266
267
FF - prefs.js..browser.search.countryCode: "HR"
268
FF - prefs.js..browser.search.defaultenginename: "oursurfing"
269
FF - prefs.js..browser.search.isUS: false
270
FF - prefs.js..browser.search.region: "HR"
271
FF - prefs.js..browser.search.searchengine.alias: "oursurfing"
272
FF - prefs.js..browser.search.searchengine.desc: "this is my first firefox searchEngine"
273
FF - prefs.js..browser.search.searchengine.iconURL: "http://www.oursurfing.com/favicon.ico"
274
FF - prefs.js..browser.search.searchengine.name: "oursurfing"
275
FF - prefs.js..browser.search.searchengine.ptid: "amt"
276
FF - prefs.js..browser.search.searchengine.uid: "ST1000LM024XHN-M101MBB_S2SMJ9ADA26593"
277
FF - prefs.js..browser.search.searchengine.url: "http://www.oursurfing.com/web/?type=ds&ts=1438632314&z=bf1bb436d36fe8bd5d635b6gaz6c0baqdc7o0cag0z&from=amt&uid=ST1000LM024XHN-M101MBB_S2SMJ9ADA26593&q={searchTerms}"
278
FF - prefs.js..browser.search.selectedEngine: "oursurfing"
279
FF - prefs.js..browser.search.useDBForOrder: true
280
FF - prefs.js..browser.startup.homepage: "C:\\ProgramData\\caMyciloPs\\ff.HP"
281
FF - prefs.js..extensions.enabledAddons: jtB6uE%40gmail.com:1003.67.985.0
282
FF - prefs.js..extensions.enabledAddons: kodak-companion%40mozilla.com:1005.4.42
283
FF - prefs.js..extensions.enabledAddons: jid1-YA4JOaQVLNA1KQ%40jetpack:1006.5.56
284
FF - prefs.js..extensions.enabledAddons: uJDkHD5%40gmail.com:1007.48.260.0
285
FF - prefs.js..extensions.enabledAddons: %7B0B6B0D55-DFAC-4006-AEE6-25667F55A2A8%7D:1001.0.0
286
FF - prefs.js..extensions.enabledAddons: defsearchp%40gmail.com:1.0.0.1039
287
FF - prefs.js..extensions.enabledAddons: deskCutv2%40gmail.com:0.0.10
288
FF - prefs.js..extensions.enabledAddons: %7B11b496ea-481a-11dc-8314-0800200c9a66%7D:1005.0.50
289
FF - prefs.js..extensions.enabledAddons: e38c01fb-ffb2-4c7e-b4c7-1f47c844d855%40gmail.com:0.95.116
290
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:38.0.5
291
292
293
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_15_0_0_144.dll File not found
294
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_144.dll ()
295
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
296
FF - HKLM\Software\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10: C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll (globalUpdate)
297
FF - HKLM\Software\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4: C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll (globalUpdate)
298
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll (Google Inc.)
299
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll (Google Inc.)
300
301
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\defsearchp@gmail.com: C:\Users\Anamarija\AppData\Roaming\Mozilla\Firefox\Profiles\jv018xbw.default\extensions\defsearchp@gmail.com [2015.08.03 21:05:17 | 000,000,000 | ---D | M]
302
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\deskCutv2@gmail.com: C:\Users\Anamarija\AppData\Roaming\Mozilla\Firefox\Profiles\jv018xbw.default\extensions\deskCutv2@gmail.com [2015.08.03 21:05:39 | 000,000,000 | ---D | M]
303
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 38.0.5\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
304
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 38.0.5\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
305
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 38.0.5\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
306
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 38.0.5\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
307
308
[2014.09.30 15:49:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Anamarija\AppData\Roaming\mozilla\Extensions
309
[2015.10.05 15:53:56 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions
310
[2015.05.29 11:22:30 | 000,000,000 | ---D | M] (0B6B0D55DFAC4006AEE625667F55A2A8) -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\{0B6B0D55-DFAC-4006-AEE6-25667F55A2A8}
311
[2015.08.09 11:02:04 | 000,000,000 | ---D | M] (11b496ea481a11dc83140800200c9a66) -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\{11b496ea-481a-11dc-8314-0800200c9a66}
312
[2015.08.03 21:05:17 | 000,000,000 | ---D | M] (Default SearchProtected) -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\defsearchp@gmail.com
313
[2015.08.03 21:05:39 | 000,000,000 | ---D | M] ("deskCut") -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\deskCutv2@gmail.com
314
[2015.10.05 15:53:56 | 000,000,000 | ---D | M] ("Enterprise 1.1") -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\e38c01fb-ffb2-4c7e-b4c7-1f47c844d855@gmail.com
315
[2015.04.20 13:25:25 | 000,000,000 | ---D | M] (jid1YA4JOaQVLNA1KQjetpack) -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\jid1-YA4JOaQVLNA1KQ@jetpack
316
[2015.04.02 23:22:24 | 000,000,000 | ---D | M] ("disco games") -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\jtB6uE@gmail.com
317
[2015.04.02 23:22:38 | 000,000,000 | ---D | M] (kodakcompanionmozillacom) -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\kodak-companion@mozilla.com
318
[2015.05.29 11:22:10 | 000,000,000 | ---D | M] ("Rise Gaming Store") -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\uJDkHD5@gmail.com
319
[2015.10.05 15:55:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\e38c01fb-ffb2-4c7e-b4c7-1f47c844d855@gmail.com\extensionData
320
[2015.10.05 15:55:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\e38c01fb-ffb2-4c7e-b4c7-1f47c844d855@gmail.com\extensionData\plugins
321
[2015.10.05 15:55:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Anamarija\AppData\Roaming\mozilla\Firefox\Profiles\jv018xbw.default\extensions\e38c01fb-ffb2-4c7e-b4c7-1f47c844d855@gmail.com\extensionData\userCode
322
[2015.05.29 13:54:19 | 000,151,374 | ---- | M] () (No name found) -- C:\Users\Anamarija\AppData\Roaming\mozilla\firefox\profiles\jv018xbw.default\extensions\adblockpopups@jessehakanen.net.xpi
323
[2014.12.01 22:16:31 | 000,051,082 | ---- | M] () (No name found) -- C:\Users\Anamarija\AppData\Roaming\mozilla\firefox\profiles\jv018xbw.default\extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi
324
[2015.09.28 18:38:31 | 000,962,762 | ---- | M] () (No name found) -- C:\Users\Anamarija\AppData\Roaming\mozilla\firefox\profiles\jv018xbw.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
325
[2015.08.17 09:21:16 | 000,002,381 | ---- | M] () -- C:\Users\Anamarija\AppData\Roaming\mozilla\firefox\profiles\jv018xbw.default\searchplugins\findit.xml
326
[2014.11.30 16:47:55 | 000,002,084 | ---- | M] () -- C:\Users\Anamarija\AppData\Roaming\mozilla\firefox\profiles\jv018xbw.default\searchplugins\findwide.xml
327
[2015.10.05 15:55:01 | 000,002,172 | ---- | M] () -- C:\Users\Anamarija\AppData\Roaming\mozilla\firefox\profiles\jv018xbw.default\searchplugins\oursurfing.xml
328
[2014.11.30 16:47:55 | 000,007,748 | ---- | M] () -- C:\Users\Anamarija\AppData\Roaming\mozilla\firefox\profiles\jv018xbw.default\searchplugins\yahoo.xml
329
[2015.09.28 19:24:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
330
[2015.09.28 19:25:22 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
331
332
[color=#E56717]========== Chrome  ==========[/color]
333
334
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_1\
335
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_1\
336
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
337
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
338
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.9.3_0\
339
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_0\
340
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\dddhimdjjdodeiffkkcmopjocdlmlilk\1.3_0\
341
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_1\
342
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\0.5_0\
343
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.42.1_0\
344
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic\1.39.1_0\
345
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_1\
346
CHR - Extension: No name found = C:\Users\Anamarija\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_1\
347
348
O1 HOSTS File: ([2013.08.22 14:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
349
O4:[b]64bit:[/b] - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Conexant Systems, Inc.)
350
O4:[b]64bit:[/b] - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
351
O4:[b]64bit:[/b] - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe (Lenovo(beijing) Limited)
352
O4:[b]64bit:[/b] - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
353
O4:[b]64bit:[/b] - HKLM..\Run: [RtsFT] C:\WINDOWS\RTFTrack.exe (Realtek semiconductor)
354
O4:[b]64bit:[/b] - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SACpl.exe (Conexant Systems, Inc.)
355
O4 - HKLM..\Run: [Intel AppUp(SM) center] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
356
O4 - HKLM..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey File not found
357
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
358
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
359
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
360
O4 - HKCU..\Run: [GoogleChromeAutoLaunch_DAC8C8FF0AEC07E79577254EDF7A93DE] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
361
O4 - Startup: C:\Users\Anamarija\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk = C:\Users\Anamarija\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
362
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
363
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
364
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
365
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: BtvStack = "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" (Qualcomm Atheros Commnucations)
366
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
367
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
368
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
369
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
370
O8:[b]64bit:[/b] - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
371
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
372
O9 - Extra Button: Research - ##TOOLBAR_DISABLED_##{92780b25-18cc-41c8-b9be-3c9c571a8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
373
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
374
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
375
O13[b]64bit:[/b] - gopher Prefix: missing
376
O13 - gopher Prefix: missing
377
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 83.139.104.2 83.139.105.2
378
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{81785354-0A0E-46E4-9868-6E97DDCBB100}: DhcpNameServer = 127.0.0.1
379
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{882BB05C-78CE-4074-8656-B63DBBF6B00C}: DhcpNameServer = 83.139.104.2 83.139.105.2
380
O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found
381
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
382
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
383
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
384
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
385
O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found
386
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
387
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
388
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
389
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
390
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
391
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
392
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
393
O30 - LSA: Security Packages - (livessp) -  File not found
394
O32 - HKLM CDRom: AutoRun - 1
395
O34 - HKLM BootExecute: (autocheck autochk *)
396
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
397
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
398
O35 - HKLM\..comfile [open] -- "%1" %*
399
O35 - HKLM\..exefile [open] -- "%1" %*
400
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
401
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
402
O37 - HKLM\...com [@ = comfile] -- "%1" %*
403
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
404
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
405
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
406
407
NetSvcs:[b]64bit:[/b] lfsvc - C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
408
NetSvcs:[b]64bit:[/b] wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
409
NetSvcs:[b]64bit:[/b] DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
410
NetSvcs:[b]64bit:[/b] NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
411
412
Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
413
Drivers32: msacm.clmp3enc - C:\PROGRA~2\Lenovo\Power2Go\CLMP3Enc.ACM (CyberLink Corp.)
414
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
415
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)
416
417
CREATERESTOREPOINT
418
Restore point Set: OTL Restore Point
419
420
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
421
422
[2015.11.09 19:49:58 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Anamarija\Desktop\OTL.exe
423
[2015.10.14 19:06:26 | 000,000,000 | -HSD | C] -- C:\Config.Msi
424
425
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
426
427
[2015.11.09 20:01:59 | 014,568,213 | ---- | M] () -- C:\Users\Anamarija\Documents\penny-ur-a-course-in-language-teaching-practice-of-theory-cambridge-teacher-training-and-development-1996.pdf
428
[2015.11.09 19:54:06 | 000,002,452 | ---- | M] () -- C:\WINDOWS\tasks\da72acf8-c3e2-4119-9c36-55c6e64d2775-5_user.job
429
[2015.11.09 19:54:06 | 000,002,452 | ---- | M] () -- C:\WINDOWS\tasks\da72acf8-c3e2-4119-9c36-55c6e64d2775-5.job
430
[2015.11.09 19:53:13 | 000,003,144 | ---- | M] () -- C:\WINDOWS\tasks\da72acf8-c3e2-4119-9c36-55c6e64d2775-1-6.job
431
[2015.11.09 19:53:04 | 000,004,164 | ---- | M] () -- C:\WINDOWS\tasks\da72acf8-c3e2-4119-9c36-55c6e64d2775-4.job
432
[2015.11.09 19:53:01 | 000,005,524 | ---- | M] () -- C:\WINDOWS\tasks\da72acf8-c3e2-4119-9c36-55c6e64d2775-7.job
433
[2015.11.09 19:53:01 | 000,003,144 | ---- | M] () -- C:\WINDOWS\tasks\da72acf8-c3e2-4119-9c36-55c6e64d2775-1-7.job
434
[2015.11.09 19:53:00 | 000,005,868 | ---- | M] () -- C:\WINDOWS\tasks\da72acf8-c3e2-4119-9c36-55c6e64d2775-6.job
435
[2015.11.09 19:53:00 | 000,002,118 | ---- | M] () -- C:\WINDOWS\tasks\da72acf8-c3e2-4119-9c36-55c6e64d2775-10_user.job
436
[2015.11.09 19:50:02 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Anamarija\Desktop\OTL.exe
437
[2015.11.09 19:46:23 | 000,863,592 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
438
[2015.11.09 19:46:23 | 000,731,650 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
439
[2015.11.09 19:46:23 | 000,135,726 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
440
[2015.11.09 19:45:42 | 000,000,918 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
441
[2015.11.09 19:22:00 | 000,001,340 | ---- | M] () -- C:\WINDOWS\tasks\disco_games_notification_service.job
442
[2015.11.09 19:18:15 | 000,005,524 | ---- | M] () -- C:\WINDOWS\tasks\c230916c-1c6b-44ed-a17f-d616bd02fa5b-6.job
443
[2015.11.09 19:18:12 | 000,003,144 | ---- | M] () -- C:\WINDOWS\tasks\c230916c-1c6b-44ed-a17f-d616bd02fa5b-1-6.job
444
[2015.11.09 19:18:12 | 000,003,144 | ---- | M] () -- C:\WINDOWS\tasks\bc6dd7d0-c8b1-4760-97eb-8e9632e4a29d-1-6.job
445
[2015.11.09 19:18:12 | 000,002,800 | ---- | M] () -- C:\WINDOWS\tasks\f6e0bc37-ba43-4e42-8c62-c094fe81254f-1-6.job
446
[2015.11.09 19:18:11 | 000,005,524 | ---- | M] () -- C:\WINDOWS\tasks\4fa2116b-e112-49ed-9d9c-a5989d8ac246-6.job
447
[2015.11.09 19:18:00 | 000,003,144 | ---- | M] () -- C:\WINDOWS\tasks\4fa2116b-e112-49ed-9d9c-a5989d8ac246-1-6.job
448
[2015.11.09 19:18:00 | 000,002,118 | ---- | M] () -- C:\WINDOWS\tasks\4fa2116b-e112-49ed-9d9c-a5989d8ac246-10_user.job
449
[2015.11.09 19:17:15 | 000,005,868 | ---- | M] () -- C:\WINDOWS\tasks\bc6dd7d0-c8b1-4760-97eb-8e9632e4a29d-6.job
450
[2015.11.09 19:17:14 | 000,005,524 | ---- | M] () -- C:\WINDOWS\tasks\f6e0bc37-ba43-4e42-8c62-c094fe81254f-6.job
451
[2015.11.09 19:17:00 | 000,002,118 | ---- | M] () -- C:\WINDOWS\tasks\f6e0bc37-ba43-4e42-8c62-c094fe81254f-10_user.job
452
[2015.11.09 19:17:00 | 000,002,118 | ---- | M] () -- C:\WINDOWS\tasks\c230916c-1c6b-44ed-a17f-d616bd02fa5b-10_user.job
453
[2015.11.09 19:17:00 | 000,002,118 | ---- | M] () -- C:\WINDOWS\tasks\bc6dd7d0-c8b1-4760-97eb-8e9632e4a29d-10_user.job
454
[2015.11.09 18:22:00 | 000,000,564 | ---- | M] () -- C:\WINDOWS\tasks\rise_gaming_store_helper_service.job
455
[2015.11.09 18:18:05 | 000,002,452 | ---- | M] () -- C:\WINDOWS\tasks\bc6dd7d0-c8b1-4760-97eb-8e9632e4a29d-5_user.job
456
[2015.11.09 18:18:05 | 000,002,452 | ---- | M] () -- C:\WINDOWS\tasks\bc6dd7d0-c8b1-4760-97eb-8e9632e4a29d-5.job
457
[2015.11.09 18:18:03 | 000,004,164 | ---- | M] () -- C:\WINDOWS\tasks\bc6dd7d0-c8b1-4760-97eb-8e9632e4a29d-4.job
458
[2015.11.09 18:18:01 | 000,003,480 | ---- | M] () -- C:\WINDOWS\tasks\bc6dd7d0-c8b1-4760-97eb-8e9632e4a29d-1-7.job
459
[2015.11.09 18:17:02 | 000,005,524 | ---- | M] () -- C:\WINDOWS\tasks\bc6dd7d0-c8b1-4760-97eb-8e9632e4a29d-7.job
460
[2015.11.09 17:18:09 | 000,002,452 | ---- | M] () -- C:\WINDOWS\tasks\c230916c-1c6b-44ed-a17f-d616bd02fa5b-5_user.job
461
[2015.11.09 17:18:09 | 000,002,452 | ---- | M] () -- C:\WINDOWS\tasks\c230916c-1c6b-44ed-a17f-d616bd02fa5b-5.job
462
[2015.11.09 17:18:03 | 000,004,164 | ---- | M] () -- C:\WINDOWS\tasks\c230916c-1c6b-44ed-a17f-d616bd02fa5b-4.job
463
[2015.11.09 17:18:01 | 000,005,524 | ---- | M] () -- C:\WINDOWS\tasks\c230916c-1c6b-44ed-a17f-d616bd02fa5b-7.job
464
[2015.11.09 17:18:01 | 000,003,144 | ---- | M] () -- C:\WINDOWS\tasks\c230916c-1c6b-44ed-a17f-d616bd02fa5b-1-7.job
465
[2015.11.09 16:19:04 | 000,002,452 | ---- | M] () -- C:\WINDOWS\tasks\4fa2116b-e112-49ed-9d9c-a5989d8ac246-5_user.job
466
[2015.11.09 16:19:03 | 000,002,452 | ---- | M] () -- C:\WINDOWS\tasks\4fa2116b-e112-49ed-9d9c-a5989d8ac246-5.job
467
[2015.11.09 16:18:11 | 000,002,452 | ---- | M] () -- C:\WINDOWS\tasks\f6e0bc37-ba43-4e42-8c62-c094fe81254f-5_user.job
468
[2015.11.09 16:18:11 | 000,002,452 | ---- | M] () -- C:\WINDOWS\tasks\f6e0bc37-ba43-4e42-8c62-c094fe81254f-5.job
469
[2015.11.09 16:18:09 | 000,004,164 | ---- | M] () -- C:\WINDOWS\tasks\4fa2116b-e112-49ed-9d9c-a5989d8ac246-4.job
470
[2015.11.09 16:18:05 | 000,004,164 | ---- | M] () -- C:\WINDOWS\tasks\f6e0bc37-ba43-4e42-8c62-c094fe81254f-4.job
471
[2015.11.09 16:18:03 | 000,003,144 | ---- | M] () -- C:\WINDOWS\tasks\f6e0bc37-ba43-4e42-8c62-c094fe81254f-1-7.job
472
[2015.11.09 16:18:02 | 000,005,188 | ---- | M] () -- C:\WINDOWS\tasks\4fa2116b-e112-49ed-9d9c-a5989d8ac246-7.job
473
[2015.11.09 16:18:02 | 000,003,144 | ---- | M] () -- C:\WINDOWS\tasks\4fa2116b-e112-49ed-9d9c-a5989d8ac246-1-7.job
474
[2015.11.09 16:17:01 | 000,005,188 | ---- | M] () -- C:\WINDOWS\tasks\f6e0bc37-ba43-4e42-8c62-c094fe81254f-7.job
475
[2015.11.09 15:49:10 | 000,000,994 | ---- | M] () -- C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineUA.job
476
[2015.11.09 15:22:00 | 000,000,702 | ---- | M] () -- C:\WINDOWS\tasks\disco_games_updating_service.job
477
[2015.11.09 12:54:51 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
478
[2015.11.09 12:54:19 | 000,000,990 | ---- | M] () -- C:\WINDOWS\tasks\globalUpdateUpdateTaskMachineCore.job
479
[2015.11.09 12:54:18 | 000,000,004 | ---- | M] () -- C:\WINDOWS\SysWow64\029B560A371F4E00AB32838EBC01B9E7
480
[2015.11.09 12:52:31 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
481
[2015.11.07 11:24:19 | 000,065,189 | ---- | M] () -- C:\Users\Anamarija\Documents\present_simple_-_present_continuous_ludo_game.pdf
482
[2015.10.27 23:25:38 | 000,047,802 | ---- | M] () -- C:\Users\Anamarija\Documents\past_simple_or_past_continuous_2.pdf
483
[2015.10.27 22:50:18 | 000,047,728 | ---- | M] () -- C:\Users\Anamarija\Documents\Present simple exercise - text.png
484
[2015.10.25 22:34:50 | 000,016,078 | ---- | M] () -- C:\WINDOWS\SysNative\ScanResults.xml
485
[2015.10.25 22:30:24 | 000,000,464 | ---- | M] () -- C:\WINDOWS\SysNative\ScannerSettings
486
[2015.10.25 10:47:04 | 000,002,222 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
487
[2015.10.21 08:42:17 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
488
[2015.10.21 08:42:02 | 2750,840,832 | -HS- | M] () -- C:\hiberfil.sys
489
[2015.10.20 23:24:47 | 000,012,800 | ---- | M] () -- C:\WINDOWS\SysNative\VfService.trf
490
[2015.10.19 10:40:14 | 000,529,328 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
491
[2015.10.14 15:45:51 | 000,333,715 | ---- | M] () -- C:\Users\Anamarija\Documents\elt-resourceful-gratitude.pdf
492
493
[color=#E56717]========== Files Created - No Company Name ==========[/color]
494
495
[2015.11.09 20:01:57 | 014,568,213 | ---- | C] () -- C:\Users\Anamarija\Documents\penny-ur-a-course-in-language-teaching-practice-of-theory-cambridge-teacher-training-and-development-1996.pdf
496
[2015.11.07 11:24:18 | 000,065,189 | ---- | C] () -- C:\Users\Anamarija\Documents\present_simple_-_present_continuous_ludo_game.pdf
497
[2015.10.27 23:25:37 | 000,047,802 | ---- | C] () -- C:\Users\Anamarija\Documents\past_simple_or_past_continuous_2.pdf
498
[2015.10.27 22:50:18 | 000,047,728 | ---- | C] () -- C:\Users\Anamarija\Documents\Present simple exercise - text.png
499
[2015.10.14 15:45:46 | 000,333,715 | ---- | C] () -- C:\Users\Anamarija\Documents\elt-resourceful-gratitude.pdf
500
[2015.08.03 21:06:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\prleth.sys
501
[2015.08.03 21:06:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\hgfs.sys
502
[2015.03.12 10:13:24 | 000,107,008 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
503
[2015.03.12 10:10:49 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
504
[2015.02.09 21:23:37 | 000,000,568 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
505
[2015.02.09 21:23:10 | 000,001,534 | ---- | C] () -- C:\ProgramData\ss.ini
506
[2014.11.22 11:14:42 | 000,000,165 | ---- | C] () -- C:\WINDOWS\Reimage.ini
507
[2014.10.05 13:55:54 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
508
[2014.07.21 21:04:58 | 000,204,952 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsvl.dat
509
[2014.07.21 21:04:58 | 000,157,144 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsva.dat
510
[2014.07.21 21:04:46 | 000,003,917 | ---- | C] () -- C:\WINDOWS\SysWow64\atipblag.dat
511
[2014.07.21 21:04:04 | 000,995,342 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_as32.exe
512
[2014.07.21 21:04:04 | 000,798,734 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_ld32.exe
513
[2014.07.21 21:03:42 | 000,123,392 | ---- | C] () -- C:\WINDOWS\SysWow64\amdhdl32.dll
514
[2014.03.18 11:13:28 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
515
[2013.11.08 12:32:03 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
516
517
[color=#E56717]========== ZeroAccess Check ==========[/color]
518
519
[2014.10.05 17:58:02 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
520
521
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
522
523
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
524
525
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
526
527
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
528
529
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
530
"" = C:\Windows\SysNative\shell32.dll -- [2015.08.27 03:43:09 | 022,372,152 | ---- | M] (Microsoft Corporation)
531
"ThreadingModel" = Apartment
532
533
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
534
"" = %SystemRoot%\system32\shell32.dll -- [2015.08.27 03:42:51 | 019,795,904 | ---- | M] (Microsoft Corporation)
535
"ThreadingModel" = Apartment
536
537
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
538
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2014.10.29 02:19:43 | 001,013,760 | ---- | M] (Microsoft Corporation)
539
"ThreadingModel" = Free
540
541
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
542
"" = %systemroot%\system32\wbem\fastprox.dll -- [2014.10.29 01:59:23 | 000,786,944 | ---- | M] (Microsoft Corporation)
543
"ThreadingModel" = Free
544
545
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
546
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2014.10.29 02:16:01 | 000,512,512 | ---- | M] (Microsoft Corporation)
547
"ThreadingModel" = Both
548
549
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
550
551
[color=#E56717]========== LOP Check ==========[/color]
552
553
[2015.05.05 08:56:40 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\.xmp
554
[2014.09.30 17:30:46 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\337Games
555
[2015.11.09 19:43:43 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\BitTorrent
556
[2015.01.01 23:38:52 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\BSplayer
557
[2014.10.22 11:32:54 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\BSplayer Pro
558
[2015.05.01 10:01:15 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\Canneverbe Limited
559
[2014.12.19 15:30:51 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\Lenovo
560
[2015.05.11 13:25:28 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\LSC
561
[2014.09.30 20:18:15 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\Opera Software
562
[2015.09.08 15:37:59 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\Oxford University Press
563
[2015.02.16 16:59:40 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\ProjectFourthEditionTestBuilder2
564
[2015.03.03 12:14:59 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\ProjectFourthEditionTestBuilder3
565
[2015.03.03 12:44:03 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\ProjectFourthEditionTestBuilder4Croatia
566
[2015.09.23 20:32:58 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\ProjectFourthEditionTestBuilder5Croatia
567
[2014.09.30 20:12:58 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\RHEng
568
[2014.09.30 20:12:55 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\rmi
569
[2015.02.11 16:19:19 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\SMART Technologies
570
[2015.02.11 16:04:16 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\SMART Technologies Inc
571
[2014.09.30 20:16:17 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\TuneUp Software
572
[2014.12.19 15:32:53 | 000,000,000 | ---D | M] -- C:\Users\Anamarija\AppData\Roaming\WebApp
573
574
[color=#E56717]========== Purity Check ==========[/color]
575
576
577
578
[color=#E56717]========== Custom Scans ==========[/color]
579
580
[color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
581
[2012.07.26 04:44:30 | 000,398,156 | RHS- | M] () -- C:\bootmgr
582
[2013.06.18 13:18:29 | 000,000,001 | -HS- | M] () -- C:\BOOTNXT
583
[2013.03.25 23:01:42 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
584
[2015.10.21 08:42:02 | 2750,840,832 | -HS- | M] () -- C:\hiberfil.sys
585
[2015.10.28 21:39:42 | 2241,236,992 | -HS- | M] () -- C:\pagefile.sys
586
[2015.10.21 08:42:17 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
587
588
[color=#A23BEC]< %systemroot%\Fonts\*.com >[/color]
589
[2014.10.05 23:18:50 | 000,026,040 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont
590
[2014.10.05 23:18:50 | 000,026,489 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont
591
[2014.10.05 23:18:50 | 000,029,779 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalSerif.CompositeFont
592
[2014.10.05 23:18:50 | 000,043,318 | ---- | M] () -- C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont
593
594
[color=#A23BEC]< %systemroot%\Fonts\*.dll >[/color]
595
596
[color=#A23BEC]< %systemroot%\Fonts\*.ini >[/color]
597
[2013.08.22 16:35:03 | 000,000,065 | ---- | M] () -- C:\WINDOWS\Fonts\desktop.ini
598
599
[color=#A23BEC]< %systemroot%\Fonts\*.ini2 >[/color]
600
601
[color=#A23BEC]< %systemroot%\Fonts\*.exe >[/color]
602
603
[color=#A23BEC]< %systemroot%\system32\spool\prtprocs\w32x86\*.* >[/color]
604
605
[color=#A23BEC]< %systemroot%\REPAIR\*.bak1 >[/color]
606
607
[color=#A23BEC]< %systemroot%\REPAIR\*.ini >[/color]
608
609
[color=#A23BEC]< %systemroot%\system32\*.jpg  >[/color]
610
611
[color=#A23BEC]< %systemroot%\*.jpg  >[/color]
612
613
[color=#A23BEC]< %systemroot%\*.png  >[/color]
614
615
[color=#A23BEC]< %systemroot%\*.scr >[/color]
616
[2014.03.31 21:34:22 | 000,322,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WLXPGSS.SCR
617
618
[color=#A23BEC]< %systemroot%\*._sy >[/color]
619
620
[color=#A23BEC]< %APPDATA%\Adobe\Update\*.* >[/color]
621
622
[color=#A23BEC]< %ALLUSERSPROFILE%\Favorites\*.* >[/color]
623
624
[color=#A23BEC]< %APPDATA%\Microsoft\*.*  >[/color]
625
626
[color=#A23BEC]< %PROGRAMFILES%\*.* >[/color]
627
[2013.08.22 16:34:52 | 000,000,174 | -HS- | M] () -- C:\Program Files (x86)\desktop.ini
628
629
[color=#A23BEC]< %APPDATA%\Update\*.* >[/color]
630
631
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
632
633
[color=#A23BEC]< %systemroot%\System32\config\*.sav  >[/color]
634
635
[color=#A23BEC]< %PROGRAMFILES%\bak. /s >[/color]
636
637
[color=#A23BEC]< %systemroot%\system32\bak. /s >[/color]
638
639
[color=#A23BEC]< %ALLUSERSPROFILE%\Start Menu\*.lnk /x  >[/color]
640
641
[color=#A23BEC]< %systemroot%\system32\config\systemprofile\*.dat /x >[/color]
642
643
[color=#A23BEC]< %systemroot%\*.config >[/color]
644
645
[color=#A23BEC]< %systemroot%\system32\*.db >[/color]
646
647
[color=#A23BEC]< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >[/color]
648
[2014.09.30 12:57:08 | 000,000,223 | -HS- | M] () -- C:\Users\Anamarija\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop (1).ini
649
[2014.03.18 11:15:41 | 000,000,148 | -HS- | M] () -- C:\Users\Anamarija\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini
650
651
[color=#A23BEC]< %USERPROFILE%\Desktop\*.exe >[/color]
652
[2015.11.09 19:50:02 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Anamarija\Desktop\OTL.exe
653
654
[color=#A23BEC]< %PROGRAMFILES%\Common Files\*.* >[/color]
655
656
[color=#A23BEC]< %systemroot%\*.src >[/color]
657
658
[color=#A23BEC]< %systemroot%\install\*.* >[/color]
659
660
[color=#A23BEC]< %systemroot%\system32\DLL\*.* >[/color]
661
662
[color=#A23BEC]< %systemroot%\system32\HelpFiles\*.* >[/color]
663
664
[color=#A23BEC]< %systemroot%\system32\rundll\*.* >[/color]
665
666
[color=#A23BEC]< %systemroot%\winn32\*.* >[/color]
667
668
[color=#A23BEC]< %systemroot%\Java\*.* >[/color]
669
670
[color=#A23BEC]< %systemroot%\system32\test\*.* >[/color]
671
672
[color=#A23BEC]< %systemroot%\system32\Rundll32\*.* >[/color]
673
674
[color=#A23BEC]< %systemroot%\AppPatch\Custom\*.* >[/color]
675
676
[color=#A23BEC]< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >[/color]
677
678
[color=#A23BEC]< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >[/color]
679
680
[color=#A23BEC]< %PROGRAMFILES%\Internet Explorer\*.tmp >[/color]
681
682
[color=#A23BEC]< %PROGRAMFILES%\Internet Explorer\*.dat >[/color]
683
684
[color=#A23BEC]< %USERPROFILE%\My Documents\*.exe >[/color]
685
686
[color=#A23BEC]< %USERPROFILE%\*.exe >[/color]
687
688
[color=#A23BEC]< %systemroot%\ADDINS\*.* >[/color]
689
[2013.06.18 13:21:58 | 000,000,802 | ---- | M] () -- C:\WINDOWS\ADDINS\FXSEXT.ecf
690
691
[color=#A23BEC]< %systemroot%\assembly\*.bak2 >[/color]
692
693
[color=#A23BEC]< %systemroot%\Config\*.* >[/color]
694
695
[color=#A23BEC]< %systemroot%\REPAIR\*.bak2 >[/color]
696
697
[color=#A23BEC]< %systemroot%\SECURITY\Database\*.sdb /x >[/color]
698
[2014.10.05 17:54:09 | 000,008,192 | ---- | M] () -- C:\WINDOWS\SECURITY\Database\edb.chk
699
[2014.10.05 17:54:09 | 001,048,576 | ---- | M] () -- C:\WINDOWS\SECURITY\Database\edb.log
700
[2014.10.05 17:54:09 | 001,048,576 | ---- | M] () -- C:\WINDOWS\SECURITY\Database\edbres00001.jrs
701
[2014.10.05 17:54:09 | 001,048,576 | ---- | M] () -- C:\WINDOWS\SECURITY\Database\edbres00002.jrs
702
[2014.10.05 17:54:09 | 001,048,576 | ---- | M] () -- C:\WINDOWS\SECURITY\Database\edbtmp.log
703
704
[color=#A23BEC]< %systemroot%\SYSTEM\*.bak2 >[/color]
705
706
[color=#A23BEC]< %systemroot%\Web\*.bak2 >[/color]
707
708
[color=#A23BEC]< %systemroot%\Driver Cache\*.* >[/color]
709
710
[color=#A23BEC]< %PROGRAMFILES%\Mozilla Firefox\0*.exe >[/color]
711
712
[color=#A23BEC]< %ProgramFiles%\Microsoft Common\*.* >[/color]
713
714
[color=#A23BEC]< %ProgramFiles%\TinyProxy. >[/color]
715
716
[color=#A23BEC]< %USERPROFILE%\Favorites\*.url /x >[/color]
717
[2015.10.15 13:32:29 | 000,000,402 | -HS- | M] () -- C:\Users\Anamarija\Favorites\desktop.ini
718
719
[color=#A23BEC]< %systemroot%\System32\Wbem\*.exe >[/color]
720
[2014.10.29 02:00:08 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\mofcomp.exe
721
[2014.10.29 01:46:08 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\WinMgmt.exe
722
[2014.10.29 03:05:38 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\WMIADAP.exe
723
[2014.10.29 02:00:27 | 000,404,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\WMIC.exe
724
[2014.10.29 03:05:57 | 000,418,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\Wbem\WmiPrvSE.exe
725
726
[color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color]
727
728
[color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\ >[/color]
729
730
[color=#E56717]========== Alternate Data Streams ==========[/color]
731
732
@Alternate Data Stream - 220 bytes -> C:\Users\Anamarija\OneDrive:ms-properties
733
734
< End of report >
        

    


            


                                


        

            



                
    

        Public Pastes
    

    
            

    

                    

        

    





    


    
    
    
    
    
    
    
    




    


    



                

            We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.             OK, I Understand
        

    
                

            

                
                    
                
            

            

                Not a member of Pastebin yet?

                Sign Up, it unlocks many cool features!