API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 9th, 2015
32
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 52.07 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 9.10.2015. 12:00:38 - Run 2
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Radic\Desktop
  3. Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.11.9600.18015)
  5. Locale: 0000041a | Country: Hrvatska | Language: HRV | Date Format: d.M.yyyy.
  6.  
  7. 2,00 Gb Total Physical Memory | 0,57 Gb Available Physical Memory | 28,45% Memory free
  8. 4,00 Gb Paging File | 1,69 Gb Available in Paging File | 42,15% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
  12. Drive C: | 148,95 Gb Total Space | 58,26 Gb Free Space | 39,12% Space Free | Partition Type: NTFS
  13. Drive D: | 4,03 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
  14. Drive E: | 1,67 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
  15.  
  16. Computer Name: RADIC-PC | User Name: Radic | Logged in as Administrator.
  17. Boot Mode: Normal | Scan Mode: Current user | Quick Scan
  18. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
  19.  
  20. [color=#E56717]========== Processes (SafeList) ==========[/color]
  21.  
  22. PRC - [2015.10.09 11:22:37 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Radic\Desktop\OTL.exe
  23. PRC - [2015.10.09 01:02:16 | 002,900,560 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\Steam.exe
  24. PRC - [2015.10.09 01:02:16 | 001,833,040 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\bin\steamwebhelper.exe
  25. PRC - [2015.10.09 01:02:16 | 000,838,224 | ---- | M] (Valve Corporation) -- C:\Program Files\Common Files\Steam\SteamService.exe
  26. PRC - [2015.10.05 10:16:41 | 003,177,360 | ---- | M] () -- C:\Program Files\AVG Web TuneUp\vprot.exe
  27. PRC - [2015.10.05 10:16:41 | 001,875,856 | ---- | M] (AVG Secure Search) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\ToolbarUpdater.exe
  28. PRC - [2015.10.05 10:16:41 | 001,402,768 | ---- | M] (AVG Secure Search) -- C:\Program Files\AVG Web TuneUp\avgcefrend.exe
  29. PRC - [2015.10.05 10:16:41 | 001,205,136 | ---- | M] () -- C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
  30. PRC - [2015.10.05 10:16:41 | 000,168,336 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\loggingserver.exe
  31. PRC - [2015.09.30 19:46:27 | 000,445,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\GWX\GWX.exe
  32. PRC - [2015.09.21 03:37:08 | 000,396,944 | ---- | M] (tsvr.com) -- C:\Users\Radic\AppData\Roaming\TSv\TSvr.exe
  33. PRC - [2015.09.14 05:03:41 | 000,722,400 | ---- | M] (Taiwan Shui Mu Chih Ching Technology Limited) -- C:\Program Files\Picexa\picexasvc.exe
  34. PRC - [2015.08.24 16:33:22 | 003,637,160 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2015\avgidsagent.exe
  35. PRC - [2015.08.24 16:17:52 | 000,990,120 | ---- | M] (AVG Technologies CZ, s.r.o.) -- c:\Program Files\AVG\AVG2015\avgrsx.exe
  36. PRC - [2015.08.24 16:16:36 | 003,775,912 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2015\avgui.exe
  37. PRC - [2015.08.24 16:16:28 | 000,827,816 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2015\avgcsrvx.exe
  38. PRC - [2015.08.24 16:13:12 | 001,275,304 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2015\avgnsx.exe
  39. PRC - [2015.08.24 16:07:54 | 000,747,944 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2015\avgemcx.exe
  40. PRC - [2015.08.24 16:05:14 | 000,335,656 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2015\avgwdsvc.exe
  41. PRC - [2015.08.06 09:11:34 | 000,379,392 | ---- | M] () -- C:\Program Files\Controller\cohc.exe
  42. PRC - [2015.07.25 10:46:43 | 000,813,896 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
  43. PRC - [2015.07.07 20:12:28 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
  44. PRC - [2015.06.29 10:24:00 | 002,344,760 | ---- | M] (AVG Technologies) -- C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
  45. PRC - [2015.06.29 10:23:58 | 002,446,648 | ---- | M] (AVG Technologies) -- C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
  46. PRC - [2015.06.18 14:55:10 | 001,034,584 | ---- | M] (Disc Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
  47. PRC - [2015.06.01 13:12:22 | 005,495,056 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe
  48. PRC - [2015.05.09 05:12:59 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
  49. PRC - [2015.04.15 22:20:12 | 000,477,184 | ---- | M] (Skillbrains) -- C:\Program Files\Skillbrains\lightshot\5.2.1.1\Lightshot.exe
  50. PRC - [2015.03.25 11:07:39 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
  51. PRC - [2015.03.23 14:49:27 | 000,453,632 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
  52. PRC - [2015.03.23 14:49:27 | 000,217,088 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
  53. PRC - [2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
  54. PRC - [2008.01.22 11:13:32 | 001,201,448 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
  55. PRC - [2008.01.22 11:13:20 | 000,152,872 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
  56.  
  57.  
  58. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  59.  
  60. MOD - [2015.10.09 01:02:20 | 002,422,864 | ---- | M] () -- C:\Program Files\Steam\video.dll
  61. MOD - [2015.10.09 01:02:16 | 000,704,592 | ---- | M] () -- C:\Program Files\Steam\bin\chromehtml.dll
  62. MOD - [2015.10.09 00:20:18 | 045,010,208 | ---- | M] () -- C:\Program Files\Steam\bin\libcef.dll
  63. MOD - [2015.10.05 18:18:14 | 000,778,752 | ---- | M] () -- C:\Program Files\Steam\SDL2.dll
  64. MOD - [2015.10.05 10:16:42 | 040,638,864 | ---- | M] () -- C:\Program Files\AVG Web TuneUp\libcef.dll
  65. MOD - [2015.10.05 10:16:42 | 000,528,272 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\log4cplusU.dll
  66. MOD - [2015.10.05 10:16:41 | 003,177,360 | ---- | M] () -- C:\Program Files\AVG Web TuneUp\vprot.exe
  67. MOD - [2015.09.24 02:33:18 | 002,549,248 | ---- | M] () -- C:\Program Files\Steam\libavcodec-56.dll
  68. MOD - [2015.09.24 02:33:18 | 000,491,008 | ---- | M] () -- C:\Program Files\Steam\libavformat-56.dll
  69. MOD - [2015.09.24 02:33:18 | 000,485,888 | ---- | M] () -- C:\Program Files\Steam\libswscale-3.dll
  70. MOD - [2015.09.24 02:33:18 | 000,442,880 | ---- | M] () -- C:\Program Files\Steam\libavutil-54.dll
  71. MOD - [2015.09.24 02:33:18 | 000,332,800 | ---- | M] () -- C:\Program Files\Steam\libavresample-2.dll
  72. MOD - [2015.09.14 22:20:08 | 000,193,536 | ---- | M] () -- C:\Program Files\Steam\bin\openvr_api.dll
  73. MOD - [2015.07.25 10:46:43 | 016,308,040 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\44.0.2403.125\PepperFlash\pepflashplayer.dll
  74. MOD - [2015.07.25 10:46:41 | 001,405,768 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\44.0.2403.125\libglesv2.dll
  75. MOD - [2015.07.25 10:46:40 | 000,081,224 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\44.0.2403.125\libegl.dll
  76. MOD - [2015.07.03 18:12:46 | 004,962,816 | ---- | M] () -- C:\Program Files\Steam\v8.dll
  77. MOD - [2015.07.03 18:12:28 | 001,556,992 | ---- | M] () -- C:\Program Files\Steam\icui18n.dll
  78. MOD - [2015.07.03 18:12:28 | 001,187,840 | ---- | M] () -- C:\Program Files\Steam\icuuc.dll
  79. MOD - [2015.06.29 10:24:28 | 000,735,032 | ---- | M] () -- C:\Program Files\AVG\AVG PC TuneUp\tulngx.dll
  80.  
  81.  
  82. [color=#E56717]========== Services (SafeList) ==========[/color]
  83.  
  84. SRV - File not found [Auto | Stopped] -- C:\Program Files\7D513640-1441013617-11DC-9997-001E8C8D7D12\hnsjEA7E.tmp -- (totyseku)
  85. SRV - File not found [Auto | Stopped] -- C:\Program Files\7D513640-1441013617-11DC-9997-001E8C8D7D12\jnszD1DE.tmp -- (jimocoso)
  86. SRV - File not found [Auto | Stopped] -- C:\Program Files\7D513640-1441013617-11DC-9997-001E8C8D7D12\knsuB479.tmpfs -- (hutyseqy)
  87. SRV - [2015.10.09 01:02:16 | 000,838,224 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
  88. SRV - [2015.10.05 10:16:41 | 001,875,856 | ---- | M] (AVG Secure Search) [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\ToolbarUpdater.exe -- (vToolbarUpdater40.1.8)
  89. SRV - [2015.10.05 10:16:41 | 001,205,136 | ---- | M] () [Auto | Running] -- C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe -- (WtuSystemSupport)
  90. SRV - [2015.09.21 03:37:08 | 000,396,944 | ---- | M] (tsvr.com) [Auto | Running] -- C:\Users\Radic\AppData\Roaming\TSv\TSvr.exe -- (IhPul)
  91. SRV - [2015.09.14 05:03:41 | 000,722,400 | ---- | M] (Taiwan Shui Mu Chih Ching Technology Limited) [Auto | Running] -- C:\Program Files\Picexa\picexasvc.exe -- (PicexaService)
  92. SRV - [2015.08.26 14:46:31 | 000,149,160 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  93. SRV - [2015.08.24 16:33:22 | 003,637,160 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2015\avgidsagent.exe -- (AVGIDSAgent)
  94. SRV - [2015.08.24 16:14:08 | 001,560,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files\AVG\AVG2015\avgfws.exe -- (avgfws)
  95. SRV - [2015.08.24 16:05:14 | 000,335,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2015\avgwdsvc.exe -- (avgwd)
  96. SRV - [2015.08.15 07:29:42 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
  97. SRV - [2015.08.06 09:11:34 | 000,379,392 | ---- | M] () [Auto | Running] -- C:\Program Files\Controller\cohc.exe -- (cohci1394)
  98. SRV - [2015.07.22 19:53:34 | 000,937,984 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\diagtrack.dll -- (DiagTrack)
  99. SRV - [2015.07.09 13:14:04 | 000,327,296 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
  100. SRV - [2015.07.07 20:12:28 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
  101. SRV - [2015.06.29 10:23:58 | 002,446,648 | ---- | M] (AVG Technologies) [Auto | Running] -- C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)
  102. SRV - [2015.06.29 10:23:54 | 000,036,664 | ---- | M] (AVG Technologies) [Auto | Running] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp)
  103. SRV - [2015.06.18 14:55:10 | 001,034,584 | ---- | M] (Disc Soft Ltd) [On_Demand | Running] -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe -- (Disc Soft Lite Bus Service)
  104. SRV - [2015.06.06 13:43:14 | 000,268,464 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
  105. SRV - [2015.06.01 13:12:22 | 005,495,056 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\TeamViewer_Service.exe -- (TeamViewer)
  106. SRV - [2015.03.23 14:49:27 | 000,217,088 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
  107. SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
  108. SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
  109.  
  110.  
  111. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  112.  
  113. DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
  114. DRV - [2015.10.02 11:45:51 | 000,025,016 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dtlitescsibus.sys -- (dtlitescsibus)
  115. DRV - [2015.08.19 11:52:38 | 000,250,800 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
  116. DRV - [2015.08.19 11:52:38 | 000,222,640 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgidshx.sys -- (AVGIDSHX)
  117. DRV - [2015.08.04 11:33:00 | 000,230,832 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
  118. DRV - [2015.08.04 11:32:46 | 000,189,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
  119. DRV - [2015.07.23 16:44:26 | 000,031,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
  120. DRV - [2015.06.25 12:31:48 | 000,030,632 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
  121. DRV - [2015.06.16 15:54:52 | 000,207,328 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
  122. DRV - [2015.06.11 19:15:04 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
  123. DRV - [2015.06.06 13:42:43 | 000,013,216 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
  124. DRV - [2015.05.07 13:52:08 | 000,290,272 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avglogx.sys -- (Avglogx)
  125. DRV - [2015.03.23 14:52:25 | 000,296,936 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmf6232.sys -- (NVNET)
  126. DRV - [2015.03.23 14:50:23 | 000,514,616 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CHDMI32.sys -- (CnxtHdmiAudService)
  127. DRV - [2015.03.23 14:49:27 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
  128. DRV - [2015.03.23 14:49:27 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
  129. DRV - [2015.03.23 14:49:27 | 000,290,304 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
  130. DRV - [2015.03.23 14:38:52 | 000,023,840 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\System32\drivers\HWiNFO32.SYS -- (HWiNFO32)
  131. DRV - [2015.03.20 12:18:22 | 000,035,808 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
  132. DRV - [2015.03.11 12:13:46 | 000,132,576 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgdiskx.sys -- (Avgdiskx)
  133. DRV - [2010.11.20 23:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
  134. DRV - [2010.11.20 23:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
  135. DRV - [2010.11.20 23:29:03 | 000,112,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbhub.sys -- (tsusbhub)
  136. DRV - [2010.11.20 23:29:03 | 000,077,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)
  137. DRV - [2010.11.20 23:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
  138. DRV - [2010.11.20 23:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
  139. DRV - [2010.11.20 23:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
  140. DRV - [2010.11.20 23:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
  141. DRV - [2010.11.20 23:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
  142. DRV - [2010.11.20 23:29:03 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt)
  143. DRV - [2010.11.20 23:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
  144. DRV - [2010.11.20 23:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
  145. DRV - [2009.07.14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
  146. DRV - [2009.07.14 00:13:47 | 000,266,752 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTBS23.SYS -- (SrvHsfPCI)
  147. DRV - [2009.07.14 00:02:52 | 000,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
  148.  
  149.  
  150. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  151.  
  152.  
  153. [color=#E56717]========== Internet Explorer ==========[/color]
  154.  
  155. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?type=hp&ts=1442818032&z=6e7fa0bfb567c5f06b22b9fg6zcz7odb5gdb7eac1w&from=ient07021&uid=395049983_397234_B028DB1D
  156. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.istartsurf.com/web/?type=ds&ts=1433863459&z=9902b595bdf035501d6ada8gdz9cfcab6q3c2zeqbc&from=obw&uid=395049983_397234_B028DB1D&q={searchTerms}
  157. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.istartsurf.com/web/?type=ds&ts=1433863459&z=9902b595bdf035501d6ada8gdz9cfcab6q3c2zeqbc&from=obw&uid=395049983_397234_B028DB1D&q={searchTerms}
  158. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?type=hp&ts=1442818032&z=6e7fa0bfb567c5f06b22b9fg6zcz7odb5gdb7eac1w&from=ient07021&uid=395049983_397234_B028DB1D
  159. IE - HKLM\..\SearchScopes,DefaultScope = {ielnksrch}
  160. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  161. IE - HKLM\..\SearchScopes\ielnksrch: "URL" = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzJ8o5OiANju_2kH6OztxZII4TJ_HyAJslv34Sehy-Tr-BxSOScYcplGgFBPfhLAXJNv6FSgAqflaDfILK0mipatlnrEQ_GpdJl_P_l7StYA8EVHEWUBwTiA_u3VGX90TySzA7srj3ZlvwXIOE4tRaToxLsNU&q={searchTerms}
  162.  
  163. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?type=hp&ts=1442818032&z=6e7fa0bfb567c5f06b22b9fg6zcz7odb5gdb7eac1w&from=ient07021&uid=395049983_397234_B028DB1D
  164. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?type=ds&ts=1442818032&z=6e7fa0bfb567c5f06b22b9fg6zcz7odb5gdb7eac1w&from=ient07021&uid=395049983_397234_B028DB1D&q={searchTerms}
  165. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
  166. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/web/?type=ds&ts=1442818032&z=6e7fa0bfb567c5f06b22b9fg6zcz7odb5gdb7eac1w&from=ient07021&uid=395049983_397234_B028DB1D&q={searchTerms}
  167. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?type=hp&ts=1442818032&z=6e7fa0bfb567c5f06b22b9fg6zcz7odb5gdb7eac1w&from=ient07021&uid=395049983_397234_B028DB1D
  168. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
  169. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = hr
  170. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = C0 BF 02 AD 61 65 D0 01 [binary data]
  171. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
  172. IE - HKCU\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
  173. IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
  174. IE - HKCU\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://search.delta-homes.com/web/?type=ds&ts=1442818032&z=6e7fa0bfb567c5f06b22b9fg6zcz7odb5gdb7eac1w&from=ient07021&uid=395049983_397234_B028DB1D&q={searchTerms}
  175. IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://mysearch.avg.com/search?cid={C654C06F-7975-4289-B452-F648C6C23921}&mid=53d85f00c76a47cda914d157ca6994e1-5c0d8c0fa3fbfc8b89bd31af070a23831a4701e0&lang=sr&ds=AVG&coid=avgtbavg&cmpid=0915tb&pr=fr&d=2015-03-23 13:50:51&v=4.1.6.294&pid=wtu&sg=&sap=dsp&q={searchTerms}
  176. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  177.  
  178.  
  179. [color=#E56717]========== FireFox ==========[/color]
  180.  
  181. FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\40.1.8\\npsitesafety.dll File not found
  182. FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
  183. FF - HKLM\Software\MozillaPlugins\@iqiyi.com/npWebPlayer: C:\IQIYI Video\LStyle\npWebPlayer.dll File not found
  184. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.60.2: C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
  185. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2: C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll (Oracle Corporation)
  186. FF - HKLM\Software\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10: C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll File not found
  187. FF - HKLM\Software\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4: C:\Program Files\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll File not found
  188. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll (Google Inc.)
  189. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll (Google Inc.)
  190. FF - HKLM\Software\MozillaPlugins\@verimatrix.com/ViewRightWeb: C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll ()
  191. FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.0: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
  192. FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
  193. FF - HKCU\Software\MozillaPlugins\@iqiyi.com/npWebPlayer: C:\IQIYI Video\LStyle\npWebPlayer.dll File not found
  194. FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Radic\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
  195. FF - HKCU\Software\MozillaPlugins\@verimatrix.com/ViewRightWeb: C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll ()
  196.  
  197. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components
  198. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
  199.  
  200. [2015.09.01 04:51:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
  201. [2015.09.01 04:51:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  202.  
  203. [color=#E56717]========== Chrome ==========[/color]
  204.  
  205. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
  206. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
  207. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\
  208. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
  209. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn\4.1.4.948_0\
  210. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
  211. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcgnigmofekcllgbiejhmigggmgehkip\1.1.1_0\
  212. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
  213. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\iongpbleobggjpbababalgpaabhhggaf\132\
  214. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.5_0\
  215. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.1.0_0\
  216. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\oapigpcefgclegodepglkbhimbpakdpf\208\
  217. CHR - Extension: No name found = C:\Users\Radic\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
  218.  
  219. O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
  220. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll (Oracle Corporation)
  221. O2 - BHO: (AVG Web TuneUp) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Web TuneUp\4.1.8.599\AVG Web TuneUp.dll (AVG)
  222. O2 - BHO: (PriceFountain) - {b608cc98-54de-4775-96c9-097de398500c} - C:\Users\Radic\AppData\Local\PriceFountain\PriceFountainIE.dll ()
  223. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll (Oracle Corporation)
  224. O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
  225. O3 - HKLM\..\Toolbar: (Ask Toolbar) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
  226. O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
  227. O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2015\avgui.exe (AVG Technologies CZ, s.r.o.)
  228. O4 - HKLM..\Run: [Lightshot] C:\Program Files\Skillbrains\lightshot\Lightshot.exe ()
  229. O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
  230. O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Web TuneUp\vprot.exe ()
  231. O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
  232. O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
  233. O4 - HKCU..\Run: [DAEMON Tools Lite Automount] C:\Program Files\DAEMON Tools Lite\DTAgent.exe (Disc Soft Ltd)
  234. O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\steam.exe (Valve Corporation)
  235. O4 - HKCU..\Run: [Super Optimizer] C:\Program Files\Super Optimizer\SupOptLauncher.exe File not found
  236. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
  237. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  238. O13 - gopher Prefix: missing
  239. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 77.77.192.10 77.78.192.10
  240. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{94E0B8F3-6CFB-4943-99A3-47937FF5D6EF}: DhcpNameServer = 77.77.192.10 77.78.192.10
  241. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{94E0B8F3-6CFB-4943-99A3-47937FF5D6EF}: NameServer = 199.203.131.145,82.163.143.167
  242. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  243. O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
  244. O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
  245. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  246. O32 - HKLM CDRom: AutoRun - 1
  247. O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
  248. O32 - AutoRun File - [2007.06.21 21:07:56 | 000,000,144 | R--- | M] () - E:\autorun.inf -- [ UDF ]
  249. O33 - MountPoints2\{c3385cc7-68dd-11e5-acdb-001e8c8d7d12}\Shell - "" = AutoRun
  250. O33 - MountPoints2\{c3385cc7-68dd-11e5-acdb-001e8c8d7d12}\Shell\AutoRun\command - "" = E:\Setup.exe -- [2007.06.21 21:05:53 | 000,300,036 | R--- | M] ()
  251. O33 - MountPoints2\{c3385cc7-68dd-11e5-acdb-001e8c8d7d12}\Shell\setup\command - "" = E:\Setup.exe -- [2007.06.21 21:05:53 | 000,300,036 | R--- | M] ()
  252. O33 - MountPoints2\{c3385d22-68dd-11e5-acdb-001e8c8d7d12}\Shell - "" = AutoRun
  253. O33 - MountPoints2\{c3385d22-68dd-11e5-acdb-001e8c8d7d12}\Shell\AutoRun\command - "" = G:\Setup.exe autorun
  254. O33 - MountPoints2\{c3385d22-68dd-11e5-acdb-001e8c8d7d12}\Shell\setup\command - "" = G:\Setup.exe autorun
  255. O33 - MountPoints2\E\Shell - "" = AutoRun
  256. O33 - MountPoints2\E\Shell\AutoRun\command - "" = E:\Autorun.exe
  257. O34 - HKLM BootExecute: (autocheck autochk *)
  258. O35 - HKLM\..comfile [open] -- "%1" %*
  259. O35 - HKLM\..exefile [open] -- "%1" %*
  260. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  261. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  262. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  263. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  264. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  265.  
  266. NetSvcs: FastUserSwitchingCompatibility - File not found
  267. NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
  268. NetSvcs: Nla - File not found
  269. NetSvcs: Ntmssvc - File not found
  270. NetSvcs: NWCWorkstation - File not found
  271. NetSvcs: Nwsapagent - File not found
  272. NetSvcs: SRService - File not found
  273. NetSvcs: UxTuneUp - C:\Windows\System32\uxtuneup.dll (AVG Technologies)
  274. NetSvcs: WmdmPmSp - File not found
  275. NetSvcs: LogonHours - File not found
  276. NetSvcs: PCAudit - File not found
  277. NetSvcs: helpsvc - File not found
  278. NetSvcs: uploadmgr - File not found
  279.  
  280. Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
  281. Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
  282. Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
  283. Drivers32: vidc.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
  284. Drivers32: vidc.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
  285. Drivers32: VIDC.VP80 - C:\Windows\System32\vp8vfw.dll (Optima SC Inc.)
  286.  
  287. CREATERESTOREPOINT
  288. Restore point Set: OTL Restore Point
  289.  
  290. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  291.  
  292. [2015.10.09 11:22:30 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Radic\Desktop\OTL.exe
  293. [2015.10.08 20:49:32 | 000,000,000 | ---D | C] -- C:\Users\Radic\AppData\Local\Microsoft Games
  294. [2015.10.04 11:42:49 | 000,000,000 | ---D | C] -- C:\Users\Radic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\rFactor
  295. [2015.10.04 11:38:21 | 000,000,000 | ---D | C] -- C:\Program Files\rFactor
  296. [2015.10.03 22:34:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\rFactor
  297. [2015.10.02 11:49:35 | 000,000,000 | ---D | C] -- C:\Users\Radic\AppData\Local\Disc_Soft_Ltd
  298. [2015.10.02 11:47:41 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Daemon Tools Images
  299. [2015.10.02 11:45:16 | 000,000,000 | ---D | C] -- C:\Program Files\Disc Soft
  300. [2015.10.02 11:44:45 | 000,025,016 | ---- | C] (Disc Soft Ltd) -- C:\Windows\System32\drivers\dtlitescsibus.sys
  301. [2015.10.02 11:44:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
  302. [2015.10.02 11:44:41 | 000,000,000 | ---D | C] -- C:\Users\Radic\AppData\Roaming\DAEMON Tools Lite
  303. [2015.10.02 11:44:37 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
  304. [2015.10.02 11:44:14 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
  305. [2015.10.01 17:50:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
  306. [2015.10.01 17:50:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
  307. [2015.09.25 16:07:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
  308. [2015.09.25 15:59:10 | 000,000,000 | ---D | C] -- C:\Program Files\EA GAMES
  309. [2015.09.25 15:59:09 | 000,445,504 | ---- | C] (On2.com) -- C:\Windows\System32\vp6vfw.dll
  310. [2015.09.22 18:51:50 | 000,000,000 | ---D | C] -- C:\Users\Radic\AppData\Roaming\2K Sports
  311. [2015.09.22 17:05:37 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx
  312. [2015.09.22 13:34:08 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
  313. [2015.09.21 15:06:43 | 000,000,000 | ---D | C] -- C:\Users\Radic\AppData\Roaming\eCyber
  314. [2015.09.21 08:47:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picexa
  315. [2015.09.21 08:47:43 | 000,000,000 | ---D | C] -- C:\Users\Radic\AppData\Roaming\Picexa Viewer
  316. [2015.09.21 08:47:43 | 000,000,000 | ---D | C] -- C:\Program Files\Picexa
  317. [2015.09.21 08:47:22 | 000,000,000 | ---D | C] -- C:\Users\Radic\AppData\Roaming\TSv
  318. [2015.09.18 17:50:58 | 000,000,000 | ---D | C] -- C:\Users\Radic\AppData\Roaming\Wargaming.net
  319. [2015.09.17 19:51:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
  320. [2015.09.17 19:51:14 | 000,000,000 | ---D | C] -- C:\Games
  321. [2015.09.14 15:29:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
  322. [2015.09.14 15:29:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
  323. [2015.09.14 15:28:45 | 000,000,000 | ---D | C] -- C:\Program Files\Java
  324. [2015.09.14 15:21:28 | 000,000,000 | ---D | C] -- C:\Users\Radic\AppData\Roaming\Sun
  325. [2015.09.14 15:21:24 | 000,000,000 | ---D | C] -- C:\Users\Radic\.oracle_jre_usage
  326. [2015.09.13 20:52:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
  327. [2015.09.13 12:36:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Riot Games
  328. [2015.09.13 12:33:44 | 000,000,000 | ---D | C] -- C:\Riot Games
  329. [2015.09.13 12:29:15 | 000,000,000 | ---D | C] -- C:\Users\Radic\AppData\Roaming\Riot Games
  330. [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
  331. [1 C:\Users\Radic\AppData\Local\*.tmp files -> C:\Users\Radic\AppData\Local\*.tmp -> ]
  332.  
  333. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  334.  
  335. [2015.10.09 11:59:00 | 000,000,292 | ---- | M] () -- C:\Windows\tasks\Price Fountain.job
  336. [2015.10.09 11:52:03 | 000,001,016 | ---- | M] () -- C:\Windows\tasks\gvtvyLRCgJQ1Wy32H2wlAF.job
  337. [2015.10.09 11:24:36 | 000,034,992 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  338. [2015.10.09 11:24:36 | 000,034,992 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  339. [2015.10.09 11:22:37 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Radic\Desktop\OTL.exe
  340. [2015.10.09 11:08:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  341. [2015.10.09 11:08:56 | 1610,063,872 | -HS- | M] () -- C:\hiberfil.sys
  342. [2015.10.08 15:07:32 | 000,588,461 | ---- | M] () -- C:\Users\Radic\Desktop\Screenshot_3.png
  343. [2015.10.08 14:55:48 | 000,121,244 | ---- | M] () -- C:\Users\Radic\Desktop\11147201_1042986682399093_7275093837299808355_n.jpg
  344. [2015.10.08 13:59:57 | 000,406,790 | ---- | M] () -- C:\Users\Radic\Desktop\12132591_1508723239445104_5326879439194329537_o.jpg
  345. [2015.10.08 13:54:41 | 000,391,657 | ---- | M] () -- C:\Users\Radic\Desktop\Screenshot_2.png
  346. [2015.10.08 13:00:01 | 000,561,364 | ---- | M] () -- C:\Users\Radic\Desktop\Screenshot_1.png
  347. [2015.10.04 11:43:26 | 000,001,815 | ---- | M] () -- C:\Users\Radic\Desktop\rFactor.lnk
  348. [2015.10.02 11:45:51 | 000,025,016 | ---- | M] (Disc Soft Ltd) -- C:\Windows\System32\drivers\dtlitescsibus.sys
  349. [2015.09.17 19:51:19 | 000,000,769 | ---- | M] () -- C:\Users\Public\Desktop\World of Tanks.lnk
  350. [2015.09.17 10:28:10 | 000,000,947 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2015.lnk
  351. [2015.09.14 15:02:40 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\update-S-1-5-21-3685867657-1970516374-4102963706-1000.job
  352. [2015.09.13 20:52:19 | 000,000,412 | ---- | M] () -- C:\Users\Radic\AppData\Local\UserProducts.xml
  353. [2015.09.10 07:22:50 | 000,803,620 | ---- | M] () -- C:\Windows\System32\perfh009.dat
  354. [2015.09.10 07:22:50 | 000,261,178 | ---- | M] () -- C:\Windows\System32\perfc009.dat
  355. [2015.09.10 07:16:21 | 000,440,656 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
  356. [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
  357. [1 C:\Users\Radic\AppData\Local\*.tmp files -> C:\Users\Radic\AppData\Local\*.tmp -> ]
  358.  
  359. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  360.  
  361. [2015.10.08 15:07:32 | 000,588,461 | ---- | C] () -- C:\Users\Radic\Desktop\Screenshot_3.png
  362. [2015.10.08 14:55:48 | 000,121,244 | ---- | C] () -- C:\Users\Radic\Desktop\11147201_1042986682399093_7275093837299808355_n.jpg
  363. [2015.10.08 13:59:56 | 000,406,790 | ---- | C] () -- C:\Users\Radic\Desktop\12132591_1508723239445104_5326879439194329537_o.jpg
  364. [2015.10.08 13:54:41 | 000,391,657 | ---- | C] () -- C:\Users\Radic\Desktop\Screenshot_2.png
  365. [2015.10.08 13:00:00 | 000,561,364 | ---- | C] () -- C:\Users\Radic\Desktop\Screenshot_1.png
  366. [2015.10.04 11:43:26 | 000,001,815 | ---- | C] () -- C:\Users\Radic\Desktop\rFactor.lnk
  367. [2015.09.17 19:51:19 | 000,000,769 | ---- | C] () -- C:\Users\Public\Desktop\World of Tanks.lnk
  368. [2015.08.31 12:30:36 | 000,000,120 | ---- | C] () -- C:\Windows\Reimage.ini
  369. [2015.08.31 11:45:19 | 000,000,102 | ---- | C] () -- C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
  370. [2015.08.31 11:42:31 | 000,000,187 | ---- | C] () -- C:\Users\Radic\AppData\Local\Transfase.exe.config
  371. [2015.08.31 11:35:47 | 000,000,187 | ---- | C] () -- C:\Users\Radic\AppData\Local\Techitrax.exe.config
  372. [2015.07.01 12:46:38 | 000,440,656 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
  373. [2015.06.06 13:42:43 | 000,013,216 | ---- | C] () -- C:\Windows\System32\drivers\ASACPI.sys
  374. [2015.06.06 13:40:30 | 002,048,372 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
  375. [2015.05.27 15:58:15 | 000,004,999 | ---- | C] () -- C:\ProgramData\auqrgqib.ttw
  376. [2015.05.27 15:47:22 | 000,000,412 | ---- | C] () -- C:\Users\Radic\AppData\Local\UserProducts.xml
  377. [2015.05.27 14:54:36 | 718,262,466 | ---- | C] () -- C:\Program Files\ aw.rar
  378. [2015.05.13 22:26:01 | 000,000,024 | ---- | C] () -- C:\Users\Radic\AppData\Roaming\appdataFr25.bin
  379. [2015.05.10 09:44:29 | 000,000,020 | ---- | C] () -- C:\Users\Radic\AppData\Roaming\appdataFr3.bin
  380. [2015.05.02 15:37:10 | 001,193,659 | ---- | C] () -- C:\Windows\unins000.exe
  381. [2015.05.02 15:37:09 | 000,007,349 | ---- | C] () -- C:\Windows\unins000.dat
  382. [2015.04.19 14:20:16 | 000,005,872 | ---- | C] () -- C:\Users\Radic\AppData\Roaming\gvtvyLRCgJQ1Wy32H2wlAF
  383. [2015.03.24 18:47:20 | 000,018,200 | ---- | C] () -- C:\Windows\System32\roboot.exe
  384. [2015.03.23 14:52:52 | 000,010,084 | ---- | C] () -- C:\Windows\System32\drivers\nvphy.bin
  385. [2015.03.23 14:49:27 | 000,618,823 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
  386. [2015.03.23 14:49:27 | 000,204,952 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat
  387. [2015.03.23 14:49:27 | 000,157,144 | ---- | C] () -- C:\Windows\System32\ativvsva.dat
  388. [2015.03.23 14:49:27 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat
  389. [2015.03.23 14:49:10 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
  390. [2015.03.23 14:48:12 | 005,804,772 | ---- | C] () -- C:\Windows\System32\drivers\rtvienna.dat
  391. [2015.03.23 14:48:04 | 000,188,696 | ---- | C] () -- C:\Windows\System32\AcpiServiceVnA.dll
  392. [2015.03.23 14:48:04 | 000,087,864 | ---- | C] () -- C:\Windows\System32\audioLibVc.dll
  393. [2015.03.23 13:52:12 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
  394. [2015.03.09 23:30:14 | 000,005,487 | ---- | C] () -- C:\Users\Radic\AppData\Roaming\BYAIAMUF
  395. [2014.04.19 02:06:51 | 000,000,731 | ---- | C] () -- C:\Windows\System32\RTSLCS.dll
  396.  
  397. [color=#E56717]========== ZeroAccess Check ==========[/color]
  398.  
  399. [2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
  400.  
  401. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  402.  
  403. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  404.  
  405. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  406. "" = %SystemRoot%\system32\shell32.dll -- [2015.07.10 19:34:07 | 012,875,776 | ---- | M] (Microsoft Corporation)
  407. "ThreadingModel" = Apartment
  408.  
  409. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  410. "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
  411. "ThreadingModel" = Free
  412.  
  413. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  414. "" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
  415. "ThreadingModel" = Both
  416.  
  417. [color=#E56717]========== LOP Check ==========[/color]
  418.  
  419. [2015.09.03 03:10:50 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\.balkan-rp
  420. [2015.06.30 22:41:21 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\.minecraft
  421. [2015.09.22 18:51:50 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\2K Sports
  422. [2015.08.31 12:59:44 | 000,000,000 | -HSD | M] -- C:\Users\Radic\AppData\Roaming\AnyProtectEx
  423. [2015.08.31 12:10:48 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\ASP
  424. [2015.03.23 15:04:43 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\AVG
  425. [2015.07.10 19:10:00 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\AVG2015
  426. [2015.10.07 22:12:39 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\BitTorrent
  427. [2015.10.02 11:49:49 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\DAEMON Tools Lite
  428. [2015.09.21 15:06:43 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\eCyber
  429. [2015.08.28 17:08:38 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\IObit
  430. [2015.09.01 04:50:05 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\IQIYI Video
  431. [2015.03.30 17:09:55 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\java
  432. [2015.06.09 17:25:00 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\MiniGet
  433. [2015.08.31 18:59:32 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\mystartsearch
  434. [2015.03.23 14:08:45 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\OpenCandy
  435. [2015.06.07 15:11:54 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\Opera Software
  436. [2015.09.28 14:38:23 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\Picexa Viewer
  437. [2015.09.07 13:57:28 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\ppslog
  438. [2015.09.01 04:50:08 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\PriceFountain
  439. [2015.09.13 12:34:27 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\Riot Games
  440. [2015.08.21 13:30:33 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\Super Optimizer
  441. [2015.08.31 12:22:44 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\systweak
  442. [2015.06.19 15:59:06 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\TeamViewer
  443. [2015.09.21 08:47:22 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\TSv
  444. [2015.03.23 14:31:44 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\TuneUp Software
  445. [2015.09.02 12:57:13 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\Verimatrix
  446. [2015.09.18 17:50:58 | 000,000,000 | ---D | M] -- C:\Users\Radic\AppData\Roaming\Wargaming.net
  447.  
  448. [color=#E56717]========== Purity Check ==========[/color]
  449.  
  450.  
  451.  
  452. [color=#E56717]========== Custom Scans ==========[/color]
  453.  
  454. [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
  455. [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
  456. [2009.06.10 23:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
  457. [2015.10.09 11:08:56 | 1610,063,872 | -HS- | M] () -- C:\hiberfil.sys
  458. [2015.10.09 11:08:56 | 2146,754,560 | -HS- | M] () -- C:\pagefile.sys
  459. [2015.08.31 11:42:56 | 000,000,217 | ---- | M] () -- C:\task.vbs
  460. [2015.04.28 23:15:55 | 000,003,966 | ---- | M] () -- C:\{b6a94784-0ffb-4121-88c6-435139067ee2}.xpi
  461.  
  462. [color=#A23BEC]< %systemroot%\Fonts\*.com >[/color]
  463. [2009.07.14 06:52:25 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
  464. [2009.07.14 06:52:25 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
  465. [2009.07.14 06:52:25 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
  466. [2009.07.14 06:52:25 | 000,043,318 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont
  467.  
  468. [color=#A23BEC]< %systemroot%\Fonts\*.dll >[/color]
  469.  
  470. [color=#A23BEC]< %systemroot%\Fonts\*.ini >[/color]
  471. [2009.06.10 23:31:19 | 000,000,065 | ---- | M] () -- C:\Windows\Fonts\desktop.ini
  472.  
  473. [color=#A23BEC]< %systemroot%\Fonts\*.ini2 >[/color]
  474.  
  475. [color=#A23BEC]< %systemroot%\Fonts\*.exe >[/color]
  476.  
  477. [color=#A23BEC]< %systemroot%\system32\spool\prtprocs\w32x86\*.* >[/color]
  478. [2015.08.05 19:40:50 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\spool\prtprocs\w32x86\jnwppr.dll
  479. [2006.10.26 20:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\spool\prtprocs\w32x86\msonpppr.dll
  480. [2010.11.20 23:29:21 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\spool\prtprocs\w32x86\winprint.dll
  481.  
  482. [color=#A23BEC]< %systemroot%\REPAIR\*.bak1 >[/color]
  483.  
  484. [color=#A23BEC]< %systemroot%\REPAIR\*.ini >[/color]
  485.  
  486. [color=#A23BEC]< %systemroot%\system32\*.jpg >[/color]
  487.  
  488. [color=#A23BEC]< %systemroot%\*.jpg >[/color]
  489.  
  490. [color=#A23BEC]< %systemroot%\*.png >[/color]
  491.  
  492. [color=#A23BEC]< %systemroot%\*.scr >[/color]
  493.  
  494. [color=#A23BEC]< %systemroot%\*._sy >[/color]
  495.  
  496. [color=#A23BEC]< %APPDATA%\Adobe\Update\*.* >[/color]
  497.  
  498. [color=#A23BEC]< %ALLUSERSPROFILE%\Favorites\*.* >[/color]
  499.  
  500. [color=#A23BEC]< %APPDATA%\Microsoft\*.* >[/color]
  501.  
  502. [color=#A23BEC]< %PROGRAMFILES%\*.* >[/color]
  503. [2015.05.27 15:02:01 | 718,262,466 | ---- | M] () -- C:\Program Files\ aw.rar
  504. [2009.07.14 06:41:57 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini
  505.  
  506. [color=#A23BEC]< %APPDATA%\Update\*.* >[/color]
  507.  
  508. [color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
  509.  
  510. [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
  511.  
  512. [color=#A23BEC]< %PROGRAMFILES%\bak. /s >[/color]
  513.  
  514. [color=#A23BEC]< %systemroot%\system32\bak. /s >[/color]
  515.  
  516. [color=#A23BEC]< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >[/color]
  517.  
  518. [color=#A23BEC]< %systemroot%\system32\config\systemprofile\*.dat /x >[/color]
  519.  
  520. [color=#A23BEC]< %systemroot%\*.config >[/color]
  521.  
  522. [color=#A23BEC]< %systemroot%\system32\*.db >[/color]
  523.  
  524. [color=#A23BEC]< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >[/color]
  525. [2015.03.23 14:05:34 | 000,000,221 | -HS- | M] () -- C:\Users\Radic\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini
  526.  
  527. [color=#A23BEC]< %USERPROFILE%\Desktop\*.exe >[/color]
  528. [2015.08.27 15:07:18 | 000,488,448 | ---- | M] () -- C:\Users\Radic\Desktop\Balkan Extreme Launcher.exe
  529. [2015.10.09 11:22:37 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Radic\Desktop\OTL.exe
  530. [2015.02.13 02:11:56 | 000,412,672 | ---- | M] () -- C:\Users\Radic\Desktop\samp.exe
  531. [2015.10.02 17:46:19 | 016,322,560 | R--- | M] (Maxis, a division of Electronic Arts Inc.) -- C:\Users\Radic\Desktop\Sims2EP4.exe
  532.  
  533. [color=#A23BEC]< %PROGRAMFILES%\Common Files\*.* >[/color]
  534.  
  535. [color=#A23BEC]< %systemroot%\*.src >[/color]
  536.  
  537. [color=#A23BEC]< %systemroot%\install\*.* >[/color]
  538.  
  539. [color=#A23BEC]< %systemroot%\system32\DLL\*.* >[/color]
  540.  
  541. [color=#A23BEC]< %systemroot%\system32\HelpFiles\*.* >[/color]
  542.  
  543. [color=#A23BEC]< %systemroot%\system32\rundll\*.* >[/color]
  544.  
  545. [color=#A23BEC]< %systemroot%\winn32\*.* >[/color]
  546.  
  547. [color=#A23BEC]< %systemroot%\Java\*.* >[/color]
  548.  
  549. [color=#A23BEC]< %systemroot%\system32\test\*.* >[/color]
  550.  
  551. [color=#A23BEC]< %systemroot%\system32\Rundll32\*.* >[/color]
  552.  
  553. [color=#A23BEC]< %systemroot%\AppPatch\Custom\*.* >[/color]
  554.  
  555. [color=#A23BEC]< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >[/color]
  556.  
  557. [color=#A23BEC]< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >[/color]
  558.  
  559. [color=#A23BEC]< %PROGRAMFILES%\Internet Explorer\*.tmp >[/color]
  560.  
  561. [color=#A23BEC]< %PROGRAMFILES%\Internet Explorer\*.dat >[/color]
  562.  
  563. [color=#A23BEC]< %USERPROFILE%\My Documents\*.exe >[/color]
  564.  
  565. [color=#A23BEC]< %USERPROFILE%\*.exe >[/color]
  566.  
  567. [color=#A23BEC]< %systemroot%\ADDINS\*.* >[/color]
  568. [2009.06.10 23:20:04 | 000,000,802 | ---- | M] () -- C:\Windows\ADDINS\FXSEXT.ecf
  569.  
  570. [color=#A23BEC]< %systemroot%\assembly\*.bak2 >[/color]
  571.  
  572. [color=#A23BEC]< %systemroot%\Config\*.* >[/color]
  573.  
  574. [color=#A23BEC]< %systemroot%\REPAIR\*.bak2 >[/color]
  575.  
  576. [color=#A23BEC]< %systemroot%\SECURITY\Database\*.sdb /x >[/color]
  577. [2015.06.06 13:42:10 | 000,008,192 | ---- | M] () -- C:\Windows\SECURITY\Database\edb.chk
  578. [2015.06.06 13:42:10 | 001,048,576 | ---- | M] () -- C:\Windows\SECURITY\Database\edb.log
  579. [2015.03.23 14:49:06 | 001,048,576 | ---- | M] () -- C:\Windows\SECURITY\Database\edbres00001.jrs
  580. [2015.03.23 14:49:06 | 001,048,576 | ---- | M] () -- C:\Windows\SECURITY\Database\edbres00002.jrs
  581. [2015.06.06 13:42:10 | 001,056,768 | ---- | M] () -- C:\Windows\SECURITY\Database\tmp.edb
  582.  
  583. [color=#A23BEC]< %systemroot%\SYSTEM\*.bak2 >[/color]
  584.  
  585. [color=#A23BEC]< %systemroot%\Web\*.bak2 >[/color]
  586.  
  587. [color=#A23BEC]< %systemroot%\Driver Cache\*.* >[/color]
  588.  
  589. [color=#A23BEC]< %PROGRAMFILES%\Mozilla Firefox\0*.exe >[/color]
  590.  
  591. [color=#A23BEC]< %ProgramFiles%\Microsoft Common\*.* >[/color]
  592.  
  593. [color=#A23BEC]< %ProgramFiles%\TinyProxy. >[/color]
  594.  
  595. [color=#A23BEC]< %USERPROFILE%\Favorites\*.url /x >[/color]
  596. [2015.08.29 13:22:00 | 000,000,402 | -HS- | M] () -- C:\Users\Radic\Favorites\desktop.ini
  597.  
  598. [color=#A23BEC]< %systemroot%\System32\Wbem\*.exe >[/color]
  599. [2009.07.14 03:14:24 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\mofcomp.exe
  600. [2009.07.14 03:14:35 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\scrcons.exe
  601. [2009.07.14 03:14:43 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\unsecapp.exe
  602. [2009.07.14 03:14:44 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\wbemtest.exe
  603. [2009.07.14 03:14:45 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\WinMgmt.exe
  604. [2009.07.14 03:14:46 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\WMIADAP.exe
  605. [2009.07.14 03:14:46 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\WmiApSrv.exe
  606. [2009.07.14 03:14:46 | 000,395,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\WMIC.exe
  607. [2010.11.20 23:29:20 | 000,257,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\WmiPrvSE.exe
  608.  
  609. [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color]
  610.  
  611. [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color]
  612. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2015-10-08 21:57:36
  613.  
  614. [color=#E56717]========== Files - Unicode (All) ==========[/color]
  615. [2015.08.31 11:37:42 | 000,000,000 | ---D | M](C:\Users\Radic\AppData\Local\Temp?) -- C:\Users\Radic\AppData\Local\Temp尰
  616. [2015.08.31 11:37:42 | 000,000,000 | ---D | M](C:\Users\Radic\AppData\Local\Temp?) -- C:\Users\Radic\AppData\Local\Temp尰
  617. (C:\Users\Radic\AppData\Local\Temp?) -- C:\Users\Radic\AppData\Local\Temp尰
  618.  
  619. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!