API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 28th, 2015
176
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 56.73 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 28.8.2015. 22:12:44 - Run 1
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Goran\Downloads
  3. Professional (Version = 6.2.9200) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.11.9600.17937)
  5. Locale: 0000041a | Country: Hrvatska | Language: HRV | Date Format: d.M.yyyy.
  6.  
  7. 3,24 Gb Total Physical Memory | 1,79 Gb Available Physical Memory | 55,29% Memory free
  8. 6,49 Gb Paging File | 4,32 Gb Available in Paging File | 66,58% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
  12. Drive C: | 465,42 Gb Total Space | 368,62 Gb Free Space | 79,20% Space Free | Partition Type: NTFS
  13.  
  14. Computer Name: HP_PAVILION | User Name: Goran | Logged in as Administrator.
  15. Boot Mode: Normal | Scan Mode: Current user | Quick Scan
  16. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
  17.  
  18. [color=#E56717]========== Processes (SafeList) ==========[/color]
  19.  
  20. PRC - [2015.08.28 22:09:26 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Goran\Downloads\OTL.exe
  21. PRC - [2015.08.28 20:21:01 | 001,375,456 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\3\Plugin.exe
  22. PRC - [2015.08.28 20:21:01 | 000,760,032 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\12\Plugin.exe
  23. PRC - [2015.08.28 20:20:45 | 001,880,288 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\2\Plugin.exe
  24. PRC - [2015.08.28 20:20:44 | 001,368,800 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\5\Plugin.exe
  25. PRC - [2015.08.28 20:20:44 | 001,050,336 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\7\Plugin.exe
  26. PRC - [2015.08.28 20:20:42 | 001,368,288 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\8\Plugin.exe
  27. PRC - [2015.08.28 20:20:41 | 001,189,088 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\6\Plugin.exe
  28. PRC - [2015.08.28 20:20:39 | 001,075,424 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\10\Plugin.exe
  29. PRC - [2015.08.28 20:20:35 | 000,707,808 | ---- | M] () -- C:\Program Files\Common Files\fccb0821-00ee-466c-acb5-2a5cec258511\updater.exe
  30. PRC - [2015.08.28 20:19:23 | 001,201,376 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugincontainer.exe
  31. PRC - [2015.08.20 12:23:33 | 007,136,640 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
  32. PRC - [2015.08.20 12:23:26 | 000,771,968 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
  33. PRC - [2015.08.18 07:23:54 | 000,813,896 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
  34. PRC - [2015.07.30 19:54:31 | 002,909,472 | ---- | M] (IObit) -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
  35. PRC - [2015.07.07 11:45:10 | 000,326,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpCmdRun.exe
  36. PRC - [2015.07.03 16:37:51 | 000,438,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\GWX\GWX.exe
  37. PRC - [2015.05.21 07:48:58 | 001,026,288 | ---- | M] (Disc Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
  38. PRC - [2015.02.13 22:23:22 | 000,187,168 | ---- | M] (IObit) -- C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
  39. PRC - [2015.01.28 01:41:17 | 002,207,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
  40. PRC - [2015.01.27 15:24:16 | 000,344,864 | ---- | M] (IObit) -- C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
  41. PRC - [2015.01.17 22:08:37 | 000,626,688 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
  42. PRC - [2015.01.17 22:08:37 | 000,212,992 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
  43. PRC - [2014.11.04 14:19:48 | 000,815,392 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
  44. PRC - [2014.10.29 05:18:49 | 000,067,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostex.exe
  45. PRC - [2014.10.29 02:59:34 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dasHost.exe
  46. PRC - [2014.07.04 22:33:06 | 000,276,992 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
  47. PRC - [2014.03.18 11:45:15 | 000,350,776 | ---- | M] () -- C:\Program Files\Vip mobilni internet\Vipmobilniinternet_Service.exe
  48. PRC - [2014.03.18 11:45:11 | 000,936,504 | ---- | M] () -- C:\Program Files\Vip mobilni internet\Vipmobilniinternet_Launcher.exe
  49.  
  50.  
  51. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  52.  
  53. MOD - [2015.08.28 20:21:01 | 001,375,456 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\3\Plugin.exe
  54. MOD - [2015.08.28 20:21:01 | 000,760,032 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\12\Plugin.exe
  55. MOD - [2015.08.28 20:21:01 | 000,544,992 | ---- | M] () -- C:\Users\Goran\AppData\Local\Temp\{2C15D3DA-4B9F-4F61-9A17-991FB9AB76C9}.dll
  56. MOD - [2015.08.28 20:20:44 | 001,050,336 | ---- | M] () -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugins\7\Plugin.exe
  57. MOD - [2015.08.18 07:23:51 | 001,405,768 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\44.0.2403.157\libglesv2.dll
  58. MOD - [2015.08.18 07:23:50 | 000,081,224 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\44.0.2403.157\libegl.dll
  59. MOD - [2014.07.04 22:33:10 | 000,095,744 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
  60. MOD - [2014.03.18 11:45:11 | 000,936,504 | ---- | M] () -- C:\Program Files\Vip mobilni internet\Vipmobilniinternet_Launcher.exe
  61. MOD - [2014.03.18 11:44:07 | 000,258,560 | ---- | M] () -- C:\Program Files\Vip mobilni internet\WtgMobileBroadband7.dll
  62. MOD - [2013.09.05 01:14:10 | 004,300,456 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
  63. MOD - [2013.01.15 19:48:26 | 000,348,992 | ---- | M] () -- C:\Program Files\IObit\IObit Uninstaller\madexcept_.bpl
  64. MOD - [2013.01.15 19:48:26 | 000,051,008 | ---- | M] () -- C:\Program Files\IObit\IObit Uninstaller\maddisAsm_.bpl
  65. MOD - [2013.01.15 19:48:24 | 000,183,616 | ---- | M] () -- C:\Program Files\IObit\IObit Uninstaller\madbasic_.bpl
  66. MOD - [2010.10.20 16:45:26 | 008,801,120 | ---- | M] () -- C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
  67.  
  68.  
  69. [color=#E56717]========== Services (SafeList) ==========[/color]
  70.  
  71. SRV - [2015.08.28 20:20:35 | 000,707,808 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\fccb0821-00ee-466c-acb5-2a5cec258511\updater.exe -- (Update Mgr WanderBurst)
  72. SRV - [2015.08.28 20:19:23 | 001,201,376 | ---- | M] () [Auto | Running] -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511\plugincontainer.exe -- (Service Mgr WanderBurst)
  73. SRV - [2015.08.20 12:23:26 | 000,771,968 | ---- | M] (Enigma Software Group USA, LLC.) [Auto | Running] -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe -- (SpyHunter 4 Service)
  74. SRV - [2015.07.30 19:54:31 | 002,909,472 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc)
  75. SRV - [2015.07.07 11:45:10 | 000,284,520 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
  76. SRV - [2015.07.07 11:45:10 | 000,022,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
  77. SRV - [2015.05.30 21:24:56 | 000,193,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
  78. SRV - [2015.05.25 15:07:17 | 000,977,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\diagtrack.dll -- (DiagTrack)
  79. SRV - [2015.05.21 07:48:58 | 001,026,288 | ---- | M] (Disc Soft Ltd) [On_Demand | Running] -- C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe -- (Disc Soft Lite Bus Service)
  80. SRV - [2015.05.12 15:18:50 | 000,207,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
  81. SRV - [2015.05.07 17:05:40 | 000,367,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\GeofenceMonitorService.dll -- (lfsvc)
  82. SRV - [2015.02.21 01:24:23 | 000,667,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsm.dll -- (LSM)
  83. SRV - [2015.01.27 15:24:16 | 000,344,864 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe -- (IMFservice)
  84. SRV - [2015.01.17 22:08:37 | 000,212,992 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
  85. SRV - [2014.11.04 14:19:48 | 000,815,392 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe -- (AdvancedSystemCareService8)
  86. SRV - [2014.10.31 05:12:14 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
  87. SRV - [2014.10.29 05:18:09 | 000,076,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\KeyboardFilterSvc.dll -- (MsKeyboardFilter)
  88. SRV - [2014.10.29 05:13:19 | 002,948,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WSService.dll -- (WSService)
  89. SRV - [2014.10.29 03:57:59 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wephostsvc.dll -- (WEPHOSTSVC)
  90. SRV - [2014.10.29 03:57:46 | 000,028,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\efssvc.dll -- (EFS)
  91. SRV - [2014.10.29 03:52:18 | 000,052,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiarpc.dll -- (WiaRpc)
  92. SRV - [2014.10.29 03:51:55 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
  93. SRV - [2014.10.29 03:51:28 | 000,010,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svsvc.dll -- (svsvc)
  94. SRV - [2014.10.29 03:47:57 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\fhsvc.dll -- (fhsvc)
  95. SRV - [2014.10.29 03:33:49 | 000,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
  96. SRV - [2014.10.29 03:23:51 | 000,250,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\BthHFSrv.dll -- (BthHFSrv)
  97. SRV - [2014.10.29 03:17:53 | 000,142,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcaSvc.dll -- (NcaSvc)
  98. SRV - [2014.10.29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicvss)
  99. SRV - [2014.10.29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmictimesync)
  100. SRV - [2014.10.29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicshutdown)
  101. SRV - [2014.10.29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicrdv)
  102. SRV - [2014.10.29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmickvpexchange)
  103. SRV - [2014.10.29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicheartbeat)
  104. SRV - [2014.10.29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicguestinterface)
  105. SRV - [2014.10.29 03:04:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\smphost.dll -- (smphost)
  106. SRV - [2014.10.29 03:02:21 | 000,103,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ScDeviceEnum.dll -- (ScDeviceEnum)
  107. SRV - [2014.10.29 03:01:27 | 000,046,592 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\keyiso.dll -- (KeyIso)
  108. SRV - [2014.10.29 02:59:46 | 000,177,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\TimeBrokerServer.dll -- (TimeBroker)
  109. SRV - [2014.10.29 02:59:06 | 000,436,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofmsvc.dll -- (netprofm)
  110. SRV - [2014.10.29 02:57:20 | 000,126,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ncbservice.dll -- (NcbService)
  111. SRV - [2014.10.29 02:55:58 | 000,305,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wcmsvc.dll -- (Wcmsvc)
  112. SRV - [2014.10.29 02:55:34 | 000,209,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\vaultsvc.dll -- (VaultSvc)
  113. SRV - [2014.10.29 02:55:15 | 000,312,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\das.dll -- (DeviceAssociationService)
  114. SRV - [2014.10.29 02:54:57 | 000,206,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\bisrv.dll -- (BrokerInfrastructure)
  115. SRV - [2014.10.29 02:54:38 | 001,245,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wlidsvc.dll -- (wlidsvc)
  116. SRV - [2014.10.29 02:50:55 | 000,167,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc)
  117. SRV - [2014.10.29 02:47:09 | 001,845,248 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
  118. SRV - [2014.10.29 02:45:46 | 000,064,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup)
  119. SRV - [2014.10.29 02:40:35 | 000,425,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AppReadiness.dll -- (AppReadiness)
  120. SRV - [2014.10.29 02:38:57 | 001,175,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\AppXDeploymentServer.dll -- (AppXSvc)
  121. SRV - [2014.10.29 02:30:24 | 001,269,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\workfolderssvc.dll -- (workfolderssvc)
  122. SRV - [2014.08.16 04:55:34 | 002,407,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll -- (PrintNotify)
  123. SRV - [2014.07.04 22:33:06 | 000,276,992 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
  124. SRV - [2014.03.18 11:45:15 | 000,350,776 | ---- | M] () [Auto | Running] -- C:\Program Files\Vip mobilni internet\Vipmobilniinternet_Service.exe -- (TAG_Service)
  125. SRV - [2013.12.19 01:41:02 | 030,814,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
  126.  
  127.  
  128. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  129.  
  130. DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D08DD852-A963-4C8E-BCAF-8A1ADF2BB106}\MpKsl68e4cfd7.sys -- (MpKsl68e4cfd7)
  131. DRV - [2015.08.20 12:23:36 | 000,016,432 | ---- | M] (Enigma Software Group USA, LLC.) [Kernel | On_Demand | Running] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
  132. DRV - [2015.08.20 12:23:34 | 000,019,984 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\Windows\System32\Drivers\EsgScanner.sys -- (EsgScanner)
  133. DRV - [2015.08.01 14:31:28 | 000,329,384 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
  134. DRV - [2015.08.01 14:31:28 | 000,025,016 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\dtlitescsibus.sys -- (dtlitescsibus)
  135. DRV - [2015.07.07 11:45:06 | 000,233,304 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\Drivers\WdFilter.sys -- (WdFilter)
  136. DRV - [2015.07.07 11:45:06 | 000,084,824 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\WdNisDrv.sys -- (WdNisDrv)
  137. DRV - [2015.07.07 11:45:05 | 000,038,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\WdBoot.sys -- (WdBoot)
  138. DRV - [2015.06.18 02:30:24 | 000,027,824 | ---- | M] (HP Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\WirelessButtonDriver86.sys -- (WirelessButtonDriver)
  139. DRV - [2015.04.19 19:21:03 | 000,200,704 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\AtihdWB3.sys -- (AtiHDAudioService)
  140. DRV - [2015.04.19 19:19:18 | 000,741,080 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\Rt630x86.sys -- (RTL8168)
  141. DRV - [2015.04.16 08:22:42 | 000,259,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBXHCI.SYS -- (USBXHCI)
  142. DRV - [2015.03.20 03:47:40 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\ahcache.sys -- (ahcache)
  143. DRV - [2015.03.17 19:15:09 | 000,376,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBHUB3.SYS -- (USBHUB3)
  144. DRV - [2015.03.09 03:18:05 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bthhfenum.sys -- (BthHFEnum)
  145. DRV - [2015.03.04 12:05:35 | 000,279,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\clfs.sys -- (CLFS)
  146. DRV - [2015.01.24 09:15:17 | 000,270,552 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\RtsPStor.sys -- (RSPCIESTOR)
  147. DRV - [2015.01.17 22:08:38 | 016,955,392 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\atikmdag.sys -- (amdkmdag)
  148. DRV - [2015.01.17 22:08:38 | 000,472,576 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\atikmpag.sys -- (amdkmdap)
  149. DRV - [2015.01.17 22:08:23 | 000,070,856 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\amd_sata.sys -- (amd_sata)
  150. DRV - [2015.01.17 22:08:23 | 000,020,680 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\amd_xata.sys -- (amd_xata)
  151. DRV - [2015.01.17 22:05:41 | 002,928,128 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\athwb.sys -- (athr)
  152. DRV - [2015.01.17 21:59:57 | 000,023,840 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\System32\Drivers\HWiNFO32.SYS -- (HWiNFO32)
  153. DRV - [2014.11.10 19:48:38 | 000,032,288 | ---- | M] (IObit.com) [Kernel | On_Demand | Stopped] -- C:\Program Files\IObit\IObit Malware Fighter\Drivers\win7_x86\RegFilter.sys -- (RegFilter)
  154. DRV - [2014.11.10 19:48:38 | 000,021,480 | ---- | M] (IObit) [File_System | Disabled | Stopped] -- C:\Program Files\IObit\IObit Malware Fighter\Drivers\win7_x86\FileMonitor.sys -- (FileMonitor)
  155. DRV - [2014.11.10 19:48:38 | 000,020,944 | ---- | M] (IObit.com) [Kernel | On_Demand | Stopped] -- C:\Program Files\IObit\IObit Malware Fighter\Drivers\win7_x86\UrlFilter.sys -- (UrlFilter)
  156. DRV - [2014.11.10 19:47:26 | 000,069,440 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\wfplwfs.sys -- (WFPLWFS)
  157. DRV - [2014.11.04 21:28:52 | 000,051,520 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\Drivers\dam.sys -- (dam)
  158. DRV - [2014.10.29 05:12:15 | 000,362,304 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\spaceport.sys -- (spaceport)
  159. DRV - [2014.10.29 05:10:54 | 000,045,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wpcfltr.sys -- (wpcfltr)
  160. DRV - [2014.10.29 05:10:13 | 000,022,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
  161. DRV - [2014.10.29 05:10:05 | 000,091,792 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmbus.sys -- (vmbus)
  162. DRV - [2014.10.29 05:10:05 | 000,044,688 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmstorfl.sys -- (storflt)
  163. DRV - [2014.10.29 04:01:33 | 000,026,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbGD.sys -- (TsUsbGD)
  164. DRV - [2014.10.29 04:01:08 | 000,071,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\netvsc63.sys -- (netvsc)
  165. DRV - [2014.10.29 04:00:54 | 000,109,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
  166. DRV - [2014.10.29 04:00:52 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mslldp.sys -- (MsLldp)
  167. DRV - [2014.10.29 04:00:32 | 000,090,112 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\Ndu.sys -- (Ndu)
  168. DRV - [2014.10.17 05:15:58 | 000,036,160 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\intelpep.sys -- (intelpep)
  169. DRV - [2014.10.17 05:01:38 | 000,076,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\pdc.sys -- (pdc)
  170. DRV - [2014.10.07 06:13:01 | 000,163,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\UCX01000.SYS -- (UCX01000)
  171. DRV - [2014.08.15 01:35:51 | 000,122,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpioclx.sys -- (GPIOClx0101)
  172. DRV - [2014.04.30 07:29:58 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\vwifimp.sys -- (vwifimp)
  173. DRV - [2014.03.18 10:03:31 | 000,120,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx2.sys -- (SerCx2)
  174. DRV - [2014.03.18 10:03:19 | 000,224,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wmbclass.sys -- (wmbclass)
  175. DRV - [2014.03.18 10:03:19 | 000,142,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VerifierExt.sys -- (VerifierExt)
  176. DRV - [2014.03.18 10:03:19 | 000,064,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\sdstor.sys -- (sdstor)
  177. DRV - [2014.03.18 10:03:18 | 000,047,960 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\stornvme.sys -- (stornvme)
  178. DRV - [2014.03.18 10:03:18 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicRender.sys -- (BasicRender)
  179. DRV - [2014.03.18 09:39:02 | 000,019,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\kbldfltr.sys -- (kbldfltr)
  180. DRV - [2014.03.18 09:38:45 | 000,030,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\terminpt.sys -- (terminpt)
  181. DRV - [2014.03.13 12:12:46 | 000,138,584 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\wof.sys -- (Wof)
  182. DRV - [2013.09.20 01:05:04 | 000,050,432 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\aoddriver2.sys -- (AODDriver4.2.0)
  183. DRV - [2013.08.22 08:13:53 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\condrv.sys -- (condrv)
  184. DRV - [2013.08.22 07:35:20 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\acpiex.sys -- (acpiex)
  185. DRV - [2013.08.22 07:34:52 | 000,133,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\tpm.sys -- (TPM)
  186. DRV - [2013.08.22 07:33:32 | 000,058,208 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\mvumis.sys -- (mvumis)
  187. DRV - [2013.08.22 07:33:31 | 000,033,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpiowin32.sys -- (msgpiowin32)
  188. DRV - [2013.08.22 07:33:30 | 000,068,960 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sas3.sys -- (LSI_SAS3)
  189. DRV - [2013.08.22 07:33:29 | 000,069,472 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sss.sys -- (LSI_SSS)
  190. DRV - [2013.08.22 07:33:26 | 000,086,368 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\3ware.sys -- (3ware)
  191. DRV - [2013.08.22 07:33:25 | 000,773,472 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\adp80xx.sys -- (ADP80XX)
  192. DRV - [2013.08.22 07:33:25 | 000,100,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
  193. DRV - [2013.08.22 07:33:24 | 000,073,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\EhStorClass.sys -- (EhStorClass)
  194. DRV - [2013.08.22 07:33:01 | 000,276,832 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\VSTXRAID.SYS -- (VSTXRAID)
  195. DRV - [2013.08.22 07:32:57 | 000,090,976 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storahci.sys -- (storahci)
  196. DRV - [2013.08.22 07:32:57 | 000,059,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SpbCx.sys -- (SpbCx)
  197. DRV - [2013.08.22 07:32:57 | 000,058,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx.sys -- (SerCx)
  198. DRV - [2013.08.22 07:32:57 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uaspstor.sys -- (UASPStor)
  199. DRV - [2013.08.22 07:32:38 | 000,031,584 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\Drivers\cnghwassist.sys -- (cnghwassist)
  200. DRV - [2013.08.22 07:24:56 | 000,023,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uefi.sys -- (UEFI)
  201. DRV - [2013.08.22 07:24:36 | 000,023,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
  202. DRV - [2013.08.22 07:20:22 | 000,042,304 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storvsc.sys -- (storvsc)
  203. DRV - [2013.08.22 06:11:04 | 000,043,520 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicDisplay.sys -- (BasicDisplay)
  204. DRV - [2013.08.22 06:10:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\HyperVideo.sys -- (HyperVideo)
  205. DRV - [2013.08.22 06:10:37 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mshidumdf.sys -- (mshidumdf)
  206. DRV - [2013.08.22 06:10:28 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpitime.sys -- (acpitime)
  207. DRV - [2013.08.22 06:10:21 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpipagr.sys -- (acpipagr)
  208. DRV - [2013.08.22 06:10:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\npsvctrig.sys -- (npsvctrig)
  209. DRV - [2013.08.22 06:10:01 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
  210. DRV - [2013.08.22 06:09:59 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\kdnic.sys -- (kdnic)
  211. DRV - [2013.08.22 06:09:57 | 000,006,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vms3cap.sys -- (s3cap)
  212. DRV - [2013.08.22 06:09:50 | 000,011,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vmgencounter.sys -- (gencounter)
  213. DRV - [2013.08.22 06:09:37 | 000,023,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthhfHid.sys -- (bthhfhid)
  214. DRV - [2013.08.22 06:09:23 | 000,064,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\winusb.sys -- (WinUsb)
  215. DRV - [2013.08.22 06:09:09 | 000,012,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hyperkbd.sys -- (hyperkbd)
  216. DRV - [2013.08.22 06:09:03 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
  217. DRV - [2013.08.22 06:09:01 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hidi2c.sys -- (hidi2c)
  218. DRV - [2013.08.22 06:09:01 | 000,018,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VMBusHID.sys -- (VMBusHID)
  219. DRV - [2013.08.22 06:08:37 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\dmvsc.sys -- (dmvsc)
  220. DRV - [2013.08.22 06:08:06 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
  221. DRV - [2013.08.22 03:58:35 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\fxppm.sys -- (FxPPM)
  222. DRV - [2013.08.13 01:25:32 | 000,016,088 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bcmfn2.sys -- (bcmfn2)
  223. DRV - [2013.08.10 02:39:44 | 000,524,784 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\iaStorAV.sys -- (iaStorAV)
  224. DRV - [2013.07.23 23:18:30 | 000,061,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\iaioi2c.sys -- (iaioi2c)
  225. DRV - [2013.07.23 23:18:30 | 000,022,016 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\iaiogpio.sys -- (GPIO)
  226. DRV - [2008.07.07 09:40:49 | 000,056,108 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
  227.  
  228.  
  229. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  230.  
  231.  
  232. [color=#E56717]========== Internet Explorer ==========[/color]
  233.  
  234. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  235. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  236.  
  237. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
  238. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?ocid=iehp
  239. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
  240. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = hr-HR
  241. IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  242. IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
  243. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  244.  
  245.  
  246. [color=#E56717]========== FireFox ==========[/color]
  247.  
  248. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll ( Microsoft Corporation)
  249. FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
  250. FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
  251. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
  252. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
  253. FF - HKLM\Software\MozillaPlugins\@verimatrix.com/ViewRightWeb: C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll ()
  254. FF - HKCU\Software\MozillaPlugins\@verimatrix.com/ViewRightWeb: C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll ()
  255.  
  256.  
  257.  
  258. [color=#E56717]========== Chrome ==========[/color]
  259.  
  260. CHR - Extension: No name found = C:\Users\Goran\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_0\
  261. CHR - Extension: No name found = C:\Users\Goran\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
  262. CHR - Extension: No name found = C:\Users\Goran\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.0_0\
  263. CHR - Extension: No name found = C:\Users\Goran\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
  264. CHR - Extension: No name found = C:\Users\Goran\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
  265. CHR - Extension: No name found = C:\Users\Goran\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_0\
  266. CHR - Extension: No name found = C:\Users\Goran\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
  267. CHR - Extension: No name found = C:\Users\Goran\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
  268.  
  269. O1 HOSTS File: ([2013.08.22 08:13:55 | 000,000,824 | ---- | M]) - C:\Windows\System32\Drivers\etc\hosts
  270. O2 - BHO: (Wander Burst) - {0f4e02f8-f10e-493d-a1a7-3aed7ba7b110} - C:\Program Files\Wander Burst\Extensions\0f4e02f8-f10e-493d-a1a7-3aed7ba7b110.dll ()
  271. O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
  272. O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
  273. O2 - BHO: (Adblock Plus for IE Browser Helper Object) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Eyeo GmbH)
  274. O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe (Advanced Micro Devices, Inc.)
  275. O4 - HKLM..\Run: [TAG_Vipmobilniinternet_Launcher.exe] C:\Program Files\Vip mobilni internet\Vipmobilniinternet_Launcher.exe ()
  276. O4 - HKCU..\Run: [DAEMON Tools Lite Automount] C:\Program Files\DAEMON Tools Lite\DTAgent.exe (Disc Soft Ltd)
  277. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
  278. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
  279. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
  280. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  281. O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
  282. O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
  283. O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
  284. O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
  285. O13 - gopher Prefix: missing
  286. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
  287. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2B4B8654-F003-430F-80DC-10AFBACB3821}: DhcpNameServer = 192.168.1.1
  288. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  289. O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
  290. O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
  291. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  292. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
  293. O32 - HKLM CDRom: AutoRun - 1
  294. O32 - AutoRun File - [2013.08.22 10:16:34 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
  295. O33 - MountPoints2\{06e3576a-1c37-11e5-9730-74de2bbe2063}\Shell - "" = AutoRun
  296. O33 - MountPoints2\{06e3576a-1c37-11e5-9730-74de2bbe2063}\Shell\AutoRun\command - "" = "G:\.\Autorun.exe" AUTORUN=1
  297. O33 - MountPoints2\D\Shell - "" = AutoRun
  298. O33 - MountPoints2\D\Shell\AutoRun\command - "" = "D:\Setup.exe"
  299. O33 - MountPoints2\F\Shell - "" = AutoRun
  300. O33 - MountPoints2\F\Shell\AutoRun\command - "" = "F:\setup.exe"
  301. O34 - HKLM BootExecute: (autocheck autochk *)
  302. O35 - HKLM\..comfile [open] -- "%1" %*
  303. O35 - HKLM\..exefile [open] -- "%1" %*
  304. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  305. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  306. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  307. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  308.  
  309. NetSvcs: wlidsvc - C:\Windows\System32\wlidsvc.dll (Microsoft Corporation)
  310. NetSvcs: lfsvc - C:\Windows\System32\GeofenceMonitorService.dll (Microsoft Corporation)
  311. NetSvcs: DsmSvc - C:\Windows\System32\DeviceSetupManager.dll (Microsoft Corporation)
  312. NetSvcs: NcaSvc - C:\Windows\System32\NcaSvc.dll (Microsoft Corporation)
  313. NetSvcs: FastUserSwitchingCompatibility - File not found
  314. NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
  315. NetSvcs: Nla - File not found
  316. NetSvcs: Ntmssvc - File not found
  317. NetSvcs: NWCWorkstation - File not found
  318. NetSvcs: Nwsapagent - File not found
  319. NetSvcs: SRService - File not found
  320. NetSvcs: WmdmPmSp - File not found
  321. NetSvcs: LogonHours - File not found
  322. NetSvcs: PCAudit - File not found
  323. NetSvcs: helpsvc - File not found
  324. NetSvcs: uploadmgr - File not found
  325. NetSvcs: MsKeyboardFilter - C:\Windows\System32\KeyboardFilterSvc.dll (Microsoft Corporation)
  326.  
  327. CREATERESTOREPOINT
  328. Restore point Set: OTL Restore Point
  329.  
  330. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  331.  
  332. [2015.08.28 22:02:44 | 000,000,000 | ---D | C] -- C:\Users\Goran\AppData\Local\Apps
  333. [2015.08.20 12:25:16 | 000,000,000 | ---D | C] -- C:\Users\Goran\AppData\Roaming\Enigma Software Group
  334. [2015.08.20 12:25:14 | 000,000,000 | ---D | C] -- C:\Users\Goran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
  335. [2015.08.20 12:24:57 | 000,000,000 | ---D | C] -- C:\sh4ldr
  336. [2015.08.20 12:23:13 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
  337. [2015.08.11 23:35:32 | 000,000,000 | ---D | C] -- C:\AdwCleaner
  338. [2015.08.02 12:47:18 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
  339. [2015.08.02 12:35:45 | 000,000,000 | ---D | C] -- C:\Users\Goran\AppData\Roaming\2K Sports
  340. [2015.08.02 11:16:23 | 000,000,000 | ---D | C] -- C:\Program Files\NBA 2K14
  341. [2015.08.02 10:49:51 | 000,000,000 | ---D | C] -- C:\Users\Goran\AppData\Local\Opera Software
  342. [2015.08.02 10:49:50 | 000,000,000 | ---D | C] -- C:\Users\Goran\AppData\Roaming\Opera Software
  343. [2015.08.02 10:48:42 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
  344. [2015.08.01 15:03:36 | 000,000,000 | ---D | C] -- C:\Users\Goran\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
  345. [2015.08.01 15:03:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
  346. [2015.08.01 14:43:09 | 000,000,000 | ---D | C] -- C:\Users\Goran\AppData\Local\Disc_Soft_Ltd
  347. [2015.08.01 14:42:24 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Daemon Tools Images
  348. [2015.08.01 14:31:28 | 000,025,016 | ---- | C] (Disc Soft Ltd) -- C:\Windows\System32\drivers\dtlitescsibus.sys
  349. [2015.08.01 14:31:24 | 000,000,000 | ---D | C] -- C:\Users\Goran\AppData\Roaming\DAEMON Tools Lite
  350. [2015.08.01 14:31:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\fccb0821-00ee-466c-acb5-2a5cec258511
  351. [2015.08.01 14:31:07 | 000,000,000 | ---D | C] -- C:\ProgramData\fccb0821-00ee-466c-acb5-2a5cec258511
  352. [2015.08.01 14:31:06 | 000,000,000 | ---D | C] -- C:\Program Files\Wander Burst
  353. [2015.08.01 14:30:48 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
  354. [2015.08.01 14:29:43 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
  355. [2015.08.01 14:10:29 | 000,329,384 | ---- | C] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
  356.  
  357. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  358.  
  359. [2015.08.28 22:01:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  360. [2015.08.28 21:38:09 | 000,000,964 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  361. [2015.08.28 21:38:05 | 000,000,968 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  362. [2015.08.27 21:25:22 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
  363. [2015.08.27 21:25:17 | 2786,193,408 | -HS- | M] () -- C:\hiberfil.sys
  364. [2015.08.23 21:35:06 | 000,002,153 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
  365. [2015.08.22 15:03:20 | 000,000,254 | ---- | M] () -- C:\Windows\tasks\ASC8_SkipUac_Goran.job
  366. [2015.08.22 14:39:41 | 000,722,476 | ---- | M] () -- C:\Windows\System32\perfh009.dat
  367. [2015.08.22 14:39:41 | 000,135,592 | ---- | M] () -- C:\Windows\System32\perfc009.dat
  368. [2015.08.22 13:35:25 | 000,002,091 | ---- | M] () -- C:\Users\Public\Desktop\Advanced SystemCare 8.lnk
  369. [2015.08.20 12:25:14 | 000,001,278 | ---- | M] () -- C:\Users\Goran\Desktop\SpyHunter.lnk
  370. [2015.08.20 12:23:34 | 000,019,984 | ---- | M] () -- C:\Windows\System32\drivers\EsgScanner.sys
  371. [2015.08.11 23:28:41 | 000,000,464 | RHS- | M] () -- C:\ProgramData\ntuser.pol
  372. [2015.08.11 23:27:30 | 000,473,008 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
  373. [2015.08.02 12:25:41 | 000,001,101 | ---- | M] () -- C:\Users\Goran\Desktop\NBA 2K14.lnk
  374. [2015.08.02 10:49:40 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
  375. [2015.08.02 10:48:51 | 000,001,203 | ---- | M] () -- C:\Users\Goran\Application Data\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk
  376. [2015.08.02 10:48:51 | 000,001,179 | ---- | M] () -- C:\Users\Public\Desktop\GOM Player.lnk
  377. [2015.08.01 14:31:28 | 000,025,016 | ---- | M] (Disc Soft Ltd) -- C:\Windows\System32\drivers\dtlitescsibus.sys
  378. [2015.08.01 14:31:28 | 000,001,956 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
  379. [2015.08.01 14:19:09 | 000,411,133 | ---- | M] () -- C:\Windows\System32\ApnDatabase.xml
  380. [2015.08.01 12:20:39 | 000,000,063 | ---- | M] () -- C:\Windows\System\SYSRegC.dll
  381.  
  382. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  383.  
  384. [2015.08.27 21:33:39 | 000,000,968 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  385. [2015.08.27 21:33:34 | 000,000,964 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  386. [2015.08.20 12:25:14 | 000,001,278 | ---- | C] () -- C:\Users\Goran\Desktop\SpyHunter.lnk
  387. [2015.08.20 12:23:34 | 000,019,984 | ---- | C] () -- C:\Windows\System32\drivers\EsgScanner.sys
  388. [2015.08.20 07:56:56 | 000,001,029 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
  389. [2015.08.11 23:28:41 | 000,000,464 | RHS- | C] () -- C:\ProgramData\ntuser.pol
  390. [2015.08.02 12:25:41 | 000,001,101 | ---- | C] () -- C:\Users\Goran\Desktop\NBA 2K14.lnk
  391. [2015.08.02 10:49:41 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
  392. [2015.08.02 10:48:51 | 000,001,179 | ---- | C] () -- C:\Users\Public\Desktop\GOM Player.lnk
  393. [2015.08.01 14:31:28 | 000,001,956 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
  394. [2015.08.01 14:19:09 | 000,411,133 | ---- | C] () -- C:\Windows\System32\ApnDatabase.xml
  395. [2015.04.19 19:50:40 | 000,107,008 | ---- | C] () -- C:\Windows\System32\OEMLicense.dll
  396. [2015.04.19 19:50:06 | 000,075,264 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
  397. [2015.04.19 19:49:36 | 000,046,080 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
  398. [2015.01.18 11:49:09 | 000,216,064 | ---- | C] ( ) -- C:\Windows\System32\lagarith.dll
  399. [2015.01.18 11:49:08 | 000,650,752 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
  400. [2015.01.18 11:49:08 | 000,243,200 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
  401. [2015.01.18 11:49:05 | 000,178,688 | ---- | C] () -- C:\Windows\System32\unrar.dll
  402. [2015.01.18 11:48:54 | 000,112,640 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
  403. [2015.01.18 11:44:14 | 000,034,308 | ---- | C] () -- C:\Windows\System32\BASSMOD.dll
  404. [2015.01.17 22:08:40 | 000,323,252 | ---- | C] () -- C:\Windows\System32\ativvaxy_vi.dat
  405. [2015.01.17 22:08:40 | 000,321,712 | ---- | C] () -- C:\Windows\System32\ativvaxy_vi_nd.dat
  406. [2015.01.17 22:08:40 | 000,238,144 | ---- | C] () -- C:\Windows\System32\ativvaxy_cz_nd.dat
  407. [2015.01.17 22:08:40 | 000,232,624 | ---- | C] () -- C:\Windows\System32\ativvaxy_cik_nd.dat
  408. [2015.01.17 22:08:40 | 000,203,776 | ---- | C] () -- C:\Windows\System32\clinfo.exe
  409. [2015.01.17 22:08:39 | 000,234,292 | ---- | C] () -- C:\Windows\System32\ativvaxy_cik.dat
  410. [2015.01.17 22:08:39 | 000,158,944 | ---- | C] () -- C:\Windows\System32\ativce03.dat
  411. [2015.01.17 22:08:39 | 000,083,312 | ---- | C] () -- C:\Windows\System32\ativce02.dat
  412. [2015.01.17 22:08:37 | 000,734,861 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
  413. [2015.01.17 22:08:35 | 000,386,560 | ---- | C] () -- C:\Windows\System32\amdmiracast.dll
  414. [2015.01.17 22:08:34 | 000,765,851 | ---- | C] () -- C:\Windows\System32\amdicdxx.dat
  415. [2015.01.17 22:08:34 | 000,157,248 | ---- | C] () -- C:\Windows\System32\amde31a.dat
  416. [2015.01.17 22:08:34 | 000,123,392 | ---- | C] () -- C:\Windows\System32\amdhdl32.dll
  417. [2015.01.03 13:55:38 | 000,001,261 | ---- | C] () -- C:\Users\Goran\FILMOVI - download - Shortcut.lnk
  418. [2014.12.29 21:24:12 | 000,050,745 | ---- | C] () -- C:\Windows\System32\srms.dat
  419. [2014.12.29 21:03:58 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
  420. [2014.07.21 23:06:02 | 000,204,952 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat
  421. [2014.07.21 23:06:02 | 000,157,144 | ---- | C] () -- C:\Windows\System32\ativvsva.dat
  422. [2014.07.21 23:05:54 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat
  423. [2014.07.21 23:05:32 | 000,798,734 | ---- | C] () -- C:\Windows\System32\amdocl_ld32.exe
  424. [2014.07.21 23:05:30 | 000,995,342 | ---- | C] () -- C:\Windows\System32\amdocl_as32.exe
  425. [2014.03.18 10:04:05 | 000,262,335 | ---- | C] () -- C:\Windows\System32\dfpinc.dat
  426. [2014.03.18 10:03:30 | 000,002,255 | ---- | C] () -- C:\Windows\System32\WimBootCompress.ini
  427.  
  428. [color=#E56717]========== ZeroAccess Check ==========[/color]
  429.  
  430.  
  431. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  432.  
  433. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  434.  
  435. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  436. "" = %SystemRoot%\system32\shell32.dll -- [2015.05.07 18:53:12 | 019,734,960 | ---- | M] (Microsoft Corporation)
  437. "ThreadingModel" = Apartment
  438.  
  439. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  440. "" = %systemroot%\system32\wbem\fastprox.dll -- [2014.10.29 02:59:23 | 000,786,944 | ---- | M] (Microsoft Corporation)
  441. "ThreadingModel" = Free
  442.  
  443. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  444. "" = %systemroot%\system32\wbem\wbemess.dll -- [2014.10.29 02:57:29 | 000,407,552 | ---- | M] (Microsoft Corporation)
  445. "ThreadingModel" = Both
  446.  
  447. [color=#E56717]========== LOP Check ==========[/color]
  448.  
  449. [2015.08.02 12:35:45 | 000,000,000 | ---D | M] -- C:\Users\Goran\AppData\Roaming\2K Sports
  450. [2015.08.01 14:42:11 | 000,000,000 | ---D | M] -- C:\Users\Goran\AppData\Roaming\DAEMON Tools Lite
  451. [2015.08.20 12:25:16 | 000,000,000 | ---D | M] -- C:\Users\Goran\AppData\Roaming\Enigma Software Group
  452. [2015.02.13 22:24:44 | 000,000,000 | ---D | M] -- C:\Users\Goran\AppData\Roaming\IObit
  453. [2015.08.02 10:49:50 | 000,000,000 | ---D | M] -- C:\Users\Goran\AppData\Roaming\Opera Software
  454. [2015.01.18 11:30:19 | 000,000,000 | ---D | M] -- C:\Users\Goran\AppData\Roaming\ProductData
  455. [2015.07.11 14:48:13 | 000,000,000 | ---D | M] -- C:\Users\Goran\AppData\Roaming\Sierra Wireless
  456. [2014.12.30 08:12:09 | 000,000,000 | ---D | M] -- C:\Users\Goran\AppData\Roaming\Synaptics
  457. [2015.07.11 15:03:20 | 000,000,000 | ---D | M] -- C:\Users\Goran\AppData\Roaming\TAG
  458. [2015.08.02 11:04:56 | 000,000,000 | ---D | M] -- C:\Users\Goran\AppData\Roaming\uTorrent
  459.  
  460. [color=#E56717]========== Purity Check ==========[/color]
  461.  
  462.  
  463.  
  464. [color=#E56717]========== Custom Scans ==========[/color]
  465.  
  466. [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
  467.  
  468. [color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
  469. [2013.08.22 07:33:26 | 000,056,160 | ---- | M] (Microsoft Corporation) MD5=7A706DCF874214097A30694D3B686866 -- C:\Windows\System32\Drivers\AGP440.sys
  470. [2013.08.22 07:33:26 | 000,056,160 | ---- | M] (Microsoft Corporation) MD5=7A706DCF874214097A30694D3B686866 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_01c2385c3a22f281\AGP440.sys
  471. [2013.08.22 07:33:26 | 000,056,160 | ---- | M] (Microsoft Corporation) MD5=7A706DCF874214097A30694D3B686866 -- C:\Windows\WinSxS\x86_machine.inf_31bf3856ad364e35_6.3.9600.17238_none_4eeca9d8da1e64d9\AGP440.sys
  472. [2015.01.17 14:44:25 | 000,000,012 | ---- | M] () MD5=AC26F500DB64617F336315BB5A0FDBE1 -- C:\Windows\WinSxS\x86_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_4ee5a406da24b92a\AGP440.sys
  473. [2015.07.10 10:15:32 | 000,055,648 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\drivers\AGP440.sys
  474. [2015.07.10 10:15:32 | 000,055,648 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\DriverStore\FileRepository\machine.inf_x86_f96402f129ee892a\AGP440.sys
  475. [2015.07.10 10:15:32 | 000,055,648 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\WinSxS\x86_machine.inf_31bf3856ad364e35_10.0.10240.16384_none_65f4c366a100b2e8\AGP440.sys
  476.  
  477. [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
  478. [2013.08.22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\System32\Drivers\atapi.sys
  479. [2013.08.22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_74136ef4a48e4644\atapi.sys
  480. [2013.08.22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_71d7eca13d2363da\atapi.sys
  481. [2015.07.10 10:15:33 | 000,023,392 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\drivers\atapi.sys
  482. [2015.07.10 10:15:33 | 000,023,392 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_fa3a1dedc863ca97\atapi.sys
  483. [2015.07.10 10:15:33 | 000,023,392 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_10.0.10240.16384_none_8919fe4503d9a80a\atapi.sys
  484.  
  485. [color=#A23BEC]< MD5 for: IASTORV.SYS >[/color]
  486. [2013.08.22 07:33:29 | 000,333,664 | ---- | M] (Intel Corporation) MD5=D2E7F3611BB8F1C2661B8F7858D33A35 -- C:\Windows\System32\Drivers\iaStorV.sys
  487. [2013.08.22 07:33:29 | 000,333,664 | ---- | M] (Intel Corporation) MD5=D2E7F3611BB8F1C2661B8F7858D33A35 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_5069105fb236ae4b\iaStorV.sys
  488. [2013.08.22 07:33:29 | 000,333,664 | ---- | M] (Intel Corporation) MD5=D2E7F3611BB8F1C2661B8F7858D33A35 -- C:\Windows\WinSxS\x86_iastorv.inf_31bf3856ad364e35_6.3.9600.16384_none_43b116ffa3618fcd\iaStorV.sys
  489. [2015.07.10 10:15:32 | 000,333,664 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\drivers\iaStorV.sys
  490. [2015.07.10 10:15:32 | 000,333,664 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_5069105fb236ae4b\iaStorV.sys
  491. [2015.07.10 10:15:32 | 000,333,664 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\WinSxS\x86_iastorv.inf_31bf3856ad364e35_10.0.10240.16384_none_5af328a36a17d3fd\iaStorV.sys
  492.  
  493. [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
  494. [2015.01.17 15:36:56 | 000,058,552 | ---- | M] () MD5=35048C9600694C3BF01D644D1AAE62BE -- C:\Windows\WinSxS\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_92577bca53937d95\netlogon.dll
  495. [2015.08.01 19:38:59 | 000,105,907 | ---- | M] () MD5=B25E2DE4078511EB1747FA0BDB6E4FC5 -- C:\Windows\WinSxS\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_927f9e225375e3f8\netlogon.dll
  496. [2014.10.29 03:02:34 | 000,695,296 | ---- | M] (Microsoft Corporation) MD5=CCEC6CB98A00ECE7F5AFB9C0FC9427B3 -- C:\Windows\System32\netlogon.dll
  497. [2014.10.29 03:02:34 | 000,695,296 | ---- | M] (Microsoft Corporation) MD5=CCEC6CB98A00ECE7F5AFB9C0FC9427B3 -- C:\Windows\WinSxS\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17415_none_92a416a65359ea1d\netlogon.dll
  498. [2015.07.10 10:15:38 | 000,708,608 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\netlogon.dll
  499. [2015.07.10 10:15:38 | 000,708,608 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\WinSxS\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_10.0.10240.16384_none_a9998d6e1a49c1c5\netlogon.dll
  500.  
  501. [color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color]
  502. [2013.08.22 07:33:33 | 000,141,664 | ---- | M] (NVIDIA Corporation) MD5=8BC42FC48C9DB301025D7A5C6B20ECD9 -- C:\Windows\System32\Drivers\nvstor.sys
  503. [2013.08.22 07:33:33 | 000,141,664 | ---- | M] (NVIDIA Corporation) MD5=8BC42FC48C9DB301025D7A5C6B20ECD9 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_7ba65ba4b222e751\nvstor.sys
  504. [2013.08.22 07:33:33 | 000,141,664 | ---- | M] (NVIDIA Corporation) MD5=8BC42FC48C9DB301025D7A5C6B20ECD9 -- C:\Windows\WinSxS\x86_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_ce7a87aeda9839a5\nvstor.sys
  505. [2015.07.10 10:15:33 | 000,142,176 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\drivers\nvstor.sys
  506. [2015.07.10 10:15:33 | 000,142,176 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_3ee6d81b22b3ea66\nvstor.sys
  507. [2015.07.10 10:15:33 | 000,142,176 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\WinSxS\x86_nvraid.inf_31bf3856ad364e35_10.0.10240.16384_none_e5bc9952a14e7dd5\nvstor.sys
  508.  
  509. [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
  510. [2015.08.01 19:29:33 | 000,042,572 | ---- | M] () MD5=22CDB04B964A8D34C42BB7ED150784F8 -- C:\Windows\WinSxS\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_ccada6e2f4b50450\scecli.dll
  511. [2014.10.29 03:01:41 | 000,214,016 | ---- | M] (Microsoft Corporation) MD5=FB740FE549197E7B08021EF30327921D -- C:\Windows\System32\scecli.dll
  512. [2014.10.29 03:01:41 | 000,214,016 | ---- | M] (Microsoft Corporation) MD5=FB740FE549197E7B08021EF30327921D -- C:\Windows\WinSxS\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.17415_none_ccfa41bef47b70d8\scecli.dll
  513. [2015.07.10 10:15:38 | 000,227,840 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\System32\scecli.dll
  514. [2015.07.10 10:15:38 | 000,227,840 | ---- | M] ()[b] Unable to obtain MD5[/b] -- C:\$Windows.~BT\Sources\SafeOS\SafeOS.Mount\Windows\WinSxS\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_10.0.10240.16384_none_e3efb886bb6b4880\scecli.dll
  515.  
  516. [color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
  517.  
  518. [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
  519.  
  520. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!