API tools faq
paste
Guest User

Untitled

a guest
Sep 5th, 2015
137
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 64.69 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 5.9.2015. 18:44:54 - Run 1
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Jasarevic\Downloads
  3. Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.11.9600.17959)
  5. Locale: 0000041a | Country: Hrvatska | Language: HRV | Date Format: d.M.yyyy.
  6.  
  7. 3,47 Gb Total Physical Memory | 1,51 Gb Available Physical Memory | 43,43% Memory free
  8. 6,94 Gb Paging File | 4,54 Gb Available in Paging File | 65,50% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
  12. Drive C: | 390,53 Gb Total Space | 262,20 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
  13. Drive E: | 540,89 Gb Total Space | 530,15 Gb Free Space | 98,01% Space Free | Partition Type: NTFS
  14. Drive F: | 1,62 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
  15.  
  16. Computer Name: JASAREVIC-PC | User Name: Jasarevic | Logged in as Administrator.
  17. Boot Mode: Normal | Scan Mode: Current user | Quick Scan
  18. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
  19.  
  20. [color=#E56717]========== Processes (SafeList) ==========[/color]
  21.  
  22. PRC - [2015.09.05 18:43:51 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Jasarevic\Downloads\OTL.exe
  23. PRC - [2015.08.31 00:20:21 | 000,245,064 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.28.13\GoogleCrashHandler.exe
  24. PRC - [2015.08.28 15:16:46 | 001,696,096 | ---- | M] (BitTorrent Inc.) -- C:\Users\Jasarevic\AppData\Roaming\uTorrent\uTorrent.exe
  25. PRC - [2015.08.28 01:33:23 | 000,377,000 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
  26. PRC - [2015.08.13 17:46:12 | 003,423,944 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_18_0_0_232.exe
  27. PRC - [2015.07.24 20:36:40 | 000,069,448 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome Remote Desktop\45.0.2454.17\remoting_host.exe
  28. PRC - [2015.03.30 10:59:06 | 005,448,464 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe
  29. PRC - [2015.03.30 09:42:52 | 000,023,984 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\ace_engine.exe
  30. PRC - [2015.02.28 04:23:48 | 000,022,824 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe
  31. PRC - [2015.02.24 10:31:54 | 000,845,120 | ---- | M] (Samsung) -- C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
  32. PRC - [2015.02.24 10:31:02 | 000,311,616 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
  33. PRC - [2015.02.03 05:11:35 | 000,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
  34. PRC - [2015.01.28 14:08:58 | 001,349,576 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
  35. PRC - [2015.01.28 14:08:42 | 005,088,456 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
  36. PRC - [2014.12.03 20:07:00 | 000,840,592 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Acrobat 10.0\Acrobat\acrotray.exe
  37. PRC - [2014.12.03 11:06:32 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
  38. PRC - [2014.10.01 18:37:30 | 000,022,824 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\ace_update.exe
  39. PRC - [2014.08.19 01:17:15 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
  40. PRC - [2014.04.18 03:29:40 | 000,491,520 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
  41. PRC - [2014.04.18 03:29:16 | 000,208,896 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
  42. PRC - [2013.09.13 12:24:54 | 000,277,360 | ---- | M] (arvato digital services llc) -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
  43. PRC - [2012.01.18 06:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
  44. PRC - [2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
  45. PRC - [2007.12.20 14:36:50 | 000,135,168 | ---- | M] (Vimicro Corporation) -- C:\Program Files\Vimicro Corporation\VMUVC\VMonitor.exe
  46.  
  47.  
  48. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  49.  
  50. MOD - [2015.08.13 17:46:11 | 017,482,952 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_18_0_0_232.dll
  51. MOD - [2015.05.14 16:40:13 | 000,250,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsForm0b574481#\69e762017ca0da2b45d9ed147e4865e3\WindowsFormsIntegration.ni.dll
  52. MOD - [2015.05.14 16:39:49 | 013,584,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web\efb9d00f347b4692451c4b0c4901874a\System.Web.ni.dll
  53. MOD - [2015.05.13 22:59:43 | 018,753,024 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\dba6e73775e7b823a02925f063bd2983\PresentationFramework.ni.dll
  54. MOD - [2015.05.13 22:59:35 | 011,014,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\f6fee9c78602505e874ec0807e3b1a51\PresentationCore.ni.dll
  55. MOD - [2015.05.13 22:59:33 | 012,897,280 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\a0b4e6b92d9c147d801a6f2e3a15080b\System.Windows.Forms.ni.dll
  56. MOD - [2015.05.13 22:59:31 | 006,982,656 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\c61bafa9d029e3f2bf83bd5af3f1f5ac\System.Core.ni.dll
  57. MOD - [2015.05.13 22:59:30 | 003,904,000 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\efd34838fa44da246b78328f4432eac7\WindowsBase.ni.dll
  58. MOD - [2015.05.13 22:59:28 | 000,967,680 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\908075c4922acdf834c67ac802814c9d\System.Configuration.ni.dll
  59. MOD - [2015.05.13 22:57:55 | 000,218,112 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\194d716f3f4e5e53fc5644a8eec87435\System.ServiceProcess.ni.dll
  60. MOD - [2015.04.16 00:21:55 | 000,797,184 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\228afa6a0391e75c8a30108d259a7bee\System.Runtime.Remoting.ni.dll
  61. MOD - [2015.03.30 09:42:52 | 003,035,648 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\acestreamengine.CoreApp.pyd
  62. MOD - [2015.03.30 09:42:52 | 002,386,432 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\acestreamengine.pywebrtc.pyd
  63. MOD - [2015.03.30 09:42:52 | 002,029,056 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\acestreamengine.live.pyd
  64. MOD - [2015.03.30 09:42:52 | 000,670,720 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\wx._windows_.pyd
  65. MOD - [2015.03.30 09:42:52 | 000,268,800 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\acestreamengine.Core.pyd
  66. MOD - [2015.03.30 09:42:52 | 000,023,984 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\ace_engine.exe
  67. MOD - [2015.02.28 04:23:48 | 000,022,824 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe
  68. MOD - [2015.01.27 21:29:56 | 010,069,504 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\d18e2115a3270f89663fce831547f534\System.ni.dll
  69. MOD - [2015.01.27 21:26:43 | 000,016,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\9e42fe7c83345249b5dde1693d1bf8b5\PresentationFramework-SystemXml.ni.dll
  70. MOD - [2015.01.27 21:25:13 | 000,188,416 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\232495ea0368dada2d208c51f0e5349c\UIAutomationTypes.ni.dll
  71. MOD - [2015.01.27 04:04:10 | 007,793,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\3d6ee4ffbd9a86ac1e7b01800b6fe9c7\System.Xml.ni.dll
  72. MOD - [2015.01.27 04:03:46 | 001,642,496 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\dd2f9ea99ac0f984b9dc430824638c9f\System.Drawing.ni.dll
  73. MOD - [2015.01.27 04:03:31 | 000,458,240 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\5e3e26e6c81809aab854ea76a884fde2\PresentationFramework.Aero.ni.dll
  74. MOD - [2015.01.27 04:03:22 | 001,873,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\1196cc375887ce75f134047505fe19bf\System.Xaml.ni.dll
  75. MOD - [2015.01.27 04:03:01 | 017,207,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\d1265d6159ea876f9d63ea4c1361b587\mscorlib.ni.dll
  76. MOD - [2014.10.01 18:37:30 | 000,022,824 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\ace_update.exe
  77. MOD - [2014.01.23 14:37:18 | 000,036,352 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\_psutil_mswindows.pyd
  78. MOD - [2014.01.23 13:37:18 | 000,036,352 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\_psutil_mswindows.pyd
  79. MOD - [2013.12.21 15:20:42 | 000,040,448 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\bitarray._bitarray.pyd
  80. MOD - [2013.12.21 15:20:32 | 000,053,248 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\_blist.pyd
  81. MOD - [2013.12.21 15:02:24 | 000,061,952 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\miniupnpc.pyd
  82. MOD - [2013.11.27 17:50:12 | 000,018,944 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\acestreamengine.pycompat.pyd
  83. MOD - [2013.01.29 18:20:40 | 000,082,944 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\cpyamf.util.pyd
  84. MOD - [2013.01.29 18:20:40 | 000,066,048 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\cpyamf.amf0.pyd
  85. MOD - [2012.02.07 19:42:10 | 000,266,240 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\win32com.shell.shell.pyd
  86. MOD - [2012.02.07 19:38:58 | 000,358,912 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\pythoncom27.dll
  87. MOD - [2012.02.07 19:37:24 | 000,098,816 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\win32api.pyd
  88. MOD - [2012.02.07 19:35:46 | 000,110,080 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\pywintypes27.dll
  89. MOD - [2012.02.07 18:38:58 | 000,358,912 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\pythoncom27.dll
  90. MOD - [2012.02.07 18:38:58 | 000,358,912 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\pythoncom27.dll
  91. MOD - [2012.02.07 18:37:24 | 000,098,816 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\win32api.pyd
  92. MOD - [2012.02.07 18:37:24 | 000,098,816 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\win32api.pyd
  93. MOD - [2012.02.07 18:36:30 | 000,024,064 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\win32pdh.pyd
  94. MOD - [2012.02.07 18:36:30 | 000,024,064 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\win32pdh.pyd
  95. MOD - [2012.02.07 18:36:08 | 000,111,616 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\win32file.pyd
  96. MOD - [2012.02.07 18:36:08 | 000,111,616 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\win32file.pyd
  97. MOD - [2012.02.07 18:35:46 | 000,110,080 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\pywintypes27.dll
  98. MOD - [2012.02.07 18:35:46 | 000,110,080 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\pywintypes27.dll
  99. MOD - [2011.07.15 21:38:22 | 000,674,816 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\wx._misc_.pyd
  100. MOD - [2011.07.15 21:38:22 | 000,674,816 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\wx._misc_.pyd
  101. MOD - [2011.07.15 21:38:12 | 000,966,144 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\wx._controls_.pyd
  102. MOD - [2011.07.15 21:38:12 | 000,966,144 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\wx._controls_.pyd
  103. MOD - [2011.07.15 21:38:06 | 000,670,720 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\wx._windows_.pyd
  104. MOD - [2011.07.15 21:38:00 | 000,746,496 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\wx._gdi_.pyd
  105. MOD - [2011.07.15 21:38:00 | 000,746,496 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\wx._gdi_.pyd
  106. MOD - [2011.07.15 21:37:48 | 000,981,504 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\wx._core_.pyd
  107. MOD - [2011.07.15 21:37:48 | 000,981,504 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\wx._core_.pyd
  108. MOD - [2011.07.15 21:34:26 | 000,479,744 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\wxmsw28uh_html_vc.dll
  109. MOD - [2011.07.15 21:34:26 | 000,479,744 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\wxmsw28uh_html_vc.dll
  110. MOD - [2011.07.15 21:34:16 | 000,730,112 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\wxmsw28uh_adv_vc.dll
  111. MOD - [2011.07.15 21:34:16 | 000,730,112 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\wxmsw28uh_adv_vc.dll
  112. MOD - [2011.07.15 21:34:10 | 003,165,184 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\wxmsw28uh_core_vc.dll
  113. MOD - [2011.07.15 21:34:10 | 003,165,184 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\wxmsw28uh_core_vc.dll
  114. MOD - [2011.07.15 21:33:40 | 000,122,368 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\wxbase28uh_net_vc.dll
  115. MOD - [2011.07.15 21:33:40 | 000,122,368 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\wxbase28uh_net_vc.dll
  116. MOD - [2011.07.15 21:33:38 | 001,300,992 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\wxbase28uh_vc.dll
  117. MOD - [2011.07.15 21:33:38 | 001,300,992 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\wxbase28uh_vc.dll
  118. MOD - [2011.06.12 15:09:18 | 000,720,896 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\_ssl.pyd
  119. MOD - [2011.06.12 15:09:18 | 000,720,896 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\_ssl.pyd
  120. MOD - [2011.06.12 15:09:18 | 000,720,896 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\_ssl.pyd
  121. MOD - [2011.06.12 15:09:18 | 000,038,400 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\_socket.pyd
  122. MOD - [2011.06.12 15:09:18 | 000,038,400 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\_socket.pyd
  123. MOD - [2011.06.12 15:09:18 | 000,038,400 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\_socket.pyd
  124. MOD - [2011.06.12 15:06:24 | 000,152,576 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\pyexpat.pyd
  125. MOD - [2011.06.12 15:06:24 | 000,152,576 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\pyexpat.pyd
  126. MOD - [2011.06.12 15:06:24 | 000,152,576 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\pyexpat.pyd
  127. MOD - [2011.06.12 15:06:22 | 000,287,232 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\_hashlib.pyd
  128. MOD - [2011.06.12 15:06:22 | 000,287,232 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\_hashlib.pyd
  129. MOD - [2011.06.12 15:06:22 | 000,287,232 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\_hashlib.pyd
  130. MOD - [2011.06.12 15:06:22 | 000,106,496 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\_ctypes.pyd
  131. MOD - [2011.06.12 15:06:22 | 000,106,496 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\_ctypes.pyd
  132. MOD - [2011.06.12 15:06:22 | 000,011,776 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\select.pyd
  133. MOD - [2011.06.12 15:06:22 | 000,011,776 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\select.pyd
  134. MOD - [2011.06.12 15:06:22 | 000,011,776 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\select.pyd
  135. MOD - [2011.06.12 15:06:20 | 000,688,128 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\unicodedata.pyd
  136. MOD - [2011.06.12 15:06:20 | 000,688,128 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\unicodedata.pyd
  137. MOD - [2011.02.13 17:02:12 | 000,031,232 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\Crypto.Cipher.AES.pyd
  138. MOD - [2011.01.19 00:56:22 | 000,334,336 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\M2Crypto.__m2crypto.pyd
  139. MOD - [2011.01.18 23:56:22 | 000,334,336 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\updater\lib\M2Crypto.__m2crypto.pyd
  140. MOD - [2011.01.18 23:56:22 | 000,334,336 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\M2Crypto.__m2crypto.pyd
  141. MOD - [2010.10.11 00:23:52 | 000,723,968 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\lib\apsw.pyd
  142. MOD - [2010.10.11 00:23:52 | 000,723,968 | ---- | M] () -- C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\lib\apsw.pyd
  143.  
  144.  
  145. [color=#E56717]========== Services (SafeList) ==========[/color]
  146.  
  147. SRV - File not found [Auto | Stopped] -- C:\Program Files\Air Globe\updateAirGlobe.exe -- (Update Air Globe)
  148. SRV - [2015.08.28 01:33:23 | 000,149,160 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  149. SRV - [2015.08.13 17:46:12 | 000,269,000 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
  150. SRV - [2015.07.24 20:36:40 | 000,069,448 | ---- | M] (Google Inc.) [Auto | Running] -- C:\Program Files\Google\Chrome Remote Desktop\45.0.2454.17\remoting_host.exe -- (chromoting)
  151. SRV - [2015.07.16 21:39:29 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
  152. SRV - [2015.06.25 20:09:34 | 000,327,296 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
  153. SRV - [2015.05.25 20:01:45 | 000,853,504 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\diagtrack.dll -- (DiagTrack)
  154. SRV - [2015.03.30 10:59:06 | 005,448,464 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\TeamViewer_Service.exe -- (TeamViewer)
  155. SRV - [2015.01.28 14:08:58 | 001,349,576 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
  156. SRV - [2014.12.03 11:06:32 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
  157. SRV - [2014.08.11 15:45:55 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
  158. SRV - [2014.05.21 00:33:00 | 000,278,344 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IntelCpHeciSvc.exe -- (cphs)
  159. SRV - [2014.05.21 00:32:56 | 000,277,320 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Windows\System32\igfxCUIService.exe -- (igfxCUIService1.0.0.0)
  160. SRV - [2014.04.18 03:29:16 | 000,208,896 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
  161. SRV - [2013.09.13 12:24:54 | 000,277,360 | ---- | M] (arvato digital services llc) [Auto | Running] -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
  162. SRV - [2013.05.27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
  163. SRV - [2012.01.18 06:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
  164. SRV - [2010.02.19 14:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
  165. SRV - [2009.07.14 03:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
  166. SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
  167. SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
  168.  
  169.  
  170. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  171.  
  172. DRV - [2015.03.27 01:35:32 | 000,043,144 | ---- | M] (StdLib) [Kernel | System | Running] -- C:\Windows\System32\drivers\{4dcf5f16-e481-4ed1-9973-24b80676c934}Gw.sys -- ({4dcf5f16-e481-4ed1-9973-24b80676c934}Gw)
  173. DRV - [2015.03.26 12:36:48 | 000,043,144 | ---- | M] (StdLib) [Kernel | System | Running] -- C:\Windows\System32\drivers\{95771641-7d7b-46d9-a635-8b6ed19ac290}Gw.sys -- ({95771641-7d7b-46d9-a635-8b6ed19ac290}Gw)
  174. DRV - [2015.01.30 16:13:30 | 000,193,464 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\System32\drivers\eamonm.sys -- (eamonm)
  175. DRV - [2015.01.30 16:13:30 | 000,135,808 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
  176. DRV - [2015.01.30 16:13:30 | 000,123,424 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr)
  177. DRV - [2014.08.12 21:38:39 | 000,243,128 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
  178. DRV - [2014.06.16 08:01:38 | 000,184,192 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
  179. DRV - [2014.06.16 08:01:38 | 000,089,856 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
  180. DRV - [2014.04.18 04:35:20 | 013,515,264 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
  181. DRV - [2014.04.18 03:06:30 | 000,512,000 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
  182. DRV - [2014.02.21 07:56:18 | 000,016,880 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\iusb3hcs.sys -- (iusb3hcs)
  183. DRV - [2014.02.21 07:56:16 | 000,800,240 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iusb3xhc.sys -- (iusb3xhc)
  184. DRV - [2014.02.21 07:56:14 | 000,364,528 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\iusb3hub.sys -- (iusb3hub)
  185. DRV - [2013.12.19 18:44:40 | 000,077,824 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
  186. DRV - [2013.01.11 19:02:34 | 000,056,432 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (MEI)
  187. DRV - [2012.01.18 06:44:52 | 004,332,960 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lvuvc.sys -- (LVUVC)
  188. DRV - [2012.01.18 06:44:28 | 000,312,096 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lvrs.sys -- (LVRS)
  189. DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
  190. DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
  191. DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
  192. DRV - [2010.11.20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
  193. DRV - [2010.11.20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
  194. DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
  195. DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
  196. DRV - [2010.01.12 17:42:54 | 000,252,928 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMUVC.sys -- (VMUVC)
  197. DRV - [2009.07.14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
  198. DRV - [2008.07.01 11:12:32 | 000,398,720 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vvftUVC.sys -- (vvftUVC)
  199. DRV - [2007.04.09 09:50:34 | 000,009,600 | ---- | M] (Waytech Development, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\UsbFltr.sys -- (UsbFltr)
  200.  
  201.  
  202. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  203.  
  204.  
  205. [color=#E56717]========== Internet Explorer ==========[/color]
  206.  
  207. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  208. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  209.  
  210. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
  211. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = hr
  212. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 20 42 6F 67 6B B4 CF 01 [binary data]
  213. IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  214. IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
  215. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  216.  
  217. [color=#E56717]========== FireFox ==========[/color]
  218.  
  219. FF - prefs.js..browser.search.countryCode: "BA"
  220. FF - prefs.js..browser.search.hiddenOneOffs: "Yahoo,Amazon.co.uk,Ask Search,Bing,DuckDuckGo,eBay.co.uk,EUdict Eng->Cro,Twitter,Wikipedija (hr)"
  221. FF - prefs.js..browser.search.isUS: false
  222. FF - prefs.js..browser.search.region: "BA"
  223. FF - prefs.js..browser.search.selectedEngine: ""
  224. FF - prefs.js..browser.search.useDBForOrder: "false"
  225. FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:40.0.3
  226.  
  227.  
  228. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll ()
  229. FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  230. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
  231. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
  232. FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
  233. FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
  234. FF - HKCU\Software\MozillaPlugins\@acestream.net/acestreamplugin,version=3.0.2: C:\Users\Jasarevic\AppData\Roaming\ACEStream\player\npace_plugin.dll (Innovative Digital Technologies)
  235.  
  236. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2014.08.13 16:18:25 | 000,000,000 | ---D | M]
  237. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\web2pdfextension@web2pdf.adobedotcom: C:\Program Files\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2015.01.03 00:18:49 | 000,000,000 | ---D | M]
  238. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components
  239. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
  240. FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
  241. FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components
  242. FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 40.0.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
  243.  
  244. [2014.08.10 09:20:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jasarevic\AppData\Roaming\Mozilla\Extensions
  245. [2015.09.05 18:13:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Jasarevic\AppData\Roaming\Mozilla\Firefox\Profiles\k2krq2tg.default\extensions
  246. [2015.07.28 18:56:06 | 000,963,213 | ---- | M] () (No name found) -- C:\Users\Jasarevic\AppData\Roaming\Mozilla\Firefox\Profiles\k2krq2tg.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
  247. [2015.08.28 01:33:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
  248. [2015.08.28 01:33:23 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  249.  
  250. [color=#E56717]========== Chrome ==========[/color]
  251.  
  252. CHR - Extension: No name found = C:\Users\Jasarevic\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
  253. CHR - Extension: No name found = C:\Users\Jasarevic\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.0_0\
  254. CHR - Extension: No name found = C:\Users\Jasarevic\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
  255. CHR - Extension: No name found = C:\Users\Jasarevic\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
  256. CHR - Extension: No name found = C:\Users\Jasarevic\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\45.0.2454.18_0\
  257. CHR - Extension: No name found = C:\Users\Jasarevic\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbbbhbjeecagnlfgggogfclkdjamoapf\0.0.0.2_0\
  258. CHR - Extension: No name found = C:\Users\Jasarevic\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhnkgpdlogbknkhlgdjlejeljbhflim\1.0.4_0\
  259. CHR - Extension: No name found = C:\Users\Jasarevic\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_0\
  260. CHR - Extension: No name found = C:\Users\Jasarevic\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
  261.  
  262. O1 HOSTS File: ([2013.01.11 23:34:52 | 000,002,198 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
  263. O1 - Hosts: 127.0.0.1 crl.verisign.net CRL.VERISIGN.NET ood.opsource.net
  264. O1 - Hosts: 127.0.0.1 activate.adobe.com
  265. O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
  266. O1 - Hosts: 127.0.0.1 practivate.adobe
  267. O1 - Hosts: 127.0.0.1 practivate.adobe.com
  268. O1 - Hosts: 127.0.0.1 practivate.adobe.newoa
  269. O1 - Hosts: 127.0.0.1 practivate.adobe.ntp
  270. O1 - Hosts: 127.0.0.1 practivate.adobe.ipp
  271. O1 - Hosts: 127.0.0.1 adobeereg.com
  272. O1 - Hosts: 127.0.0.1 activate.wip1.adobe.com
  273. O1 - Hosts: 127.0.0.1 activate.wip2.adobe.com
  274. O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
  275. O1 - Hosts: 127.0.0.1 activate.wip4.adobe.com
  276. O1 - Hosts: 127.0.0.1 www.adobeereg.com
  277. O1 - Hosts: 127.0.0.1 hl2rcv.adobe.com
  278. O1 - Hosts: 127.0.0.1 wip.adobe.com
  279. O1 - Hosts: 127.0.0.1 wip1.aobe.com
  280. O1 - Hosts: 127.0.0.1 wip2.adobe.com
  281. O1 - Hosts: 127.0.0.1 wip3.adobe.com
  282. O1 - Hosts: 127.0.0.1 wip4.adobe.com
  283. O1 - Hosts: 127.0.0.1 www.wip.adobe.com
  284. O1 - Hosts: 127.0.0.1 www.wip1.adobe.com
  285. O1 - Hosts: 127.0.0.1 www.wip2.adobe.com
  286. O1 - Hosts: 127.0.0.1 www.wip3.adobe.com
  287. O1 - Hosts: 127.0.0.1 www.wip4.adobe.com
  288. O1 - Hosts: 18 more lines...
  289. O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
  290. O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
  291. O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
  292. O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
  293. O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
  294. O4 - HKLM..\Run: [] File not found
  295. O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
  296. O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files\Acrobat 10.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
  297. O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
  298. O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found
  299. O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
  300. O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
  301. O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
  302. O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe (Advanced Micro Devices, Inc.)
  303. O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
  304. O4 - HKLM..\Run: [VMonitorVMUVC] C:\Program Files\Vimicro Corporation\VMUVC\VMonitor.exe (Vimicro Corporation)
  305. O4 - HKLM..\Run: [YTDownloader] "C:\Program Files\YTDownloader\YTDownloader.exe" /boot File not found
  306. O4 - HKCU..\Run: [AceStream] C:\Users\Jasarevic\AppData\Roaming\ACEStream\engine\ace_engine.exe ()
  307. O4 - HKCU..\Run: [AceWebException] C:\Users\Jasarevic\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe ()
  308. O4 - HKCU..\Run: [AdobeBridge] File not found
  309. O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
  310. O4 - HKCU..\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup File not found
  311. O4 - HKCU..\Run: [KiesPDLR.exe] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
  312. O4 - HKCU..\Run: [uTorrent] C:\Users\Jasarevic\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
  313. O4 - HKCU..\Run: [YTDownloader] "C:\Program Files\YTDownloader\YTDownloader.exe" /boot File not found
  314. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
  315. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  316. O9 - Extra Button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (PokerStars)
  317. O13 - gopher Prefix: missing
  318. O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
  319. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.222.32.30 195.222.60.40
  320. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{195F5516-70EA-46EF-B77E-07E7F007414D}: DhcpNameServer = 195.222.32.30 195.222.60.40
  321. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  322. O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
  323. O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
  324. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  325. O32 - HKLM CDRom: AutoRun - 1
  326. O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
  327. O34 - HKLM BootExecute: (autocheck autochk *)
  328. O35 - HKLM\..comfile [open] -- "%1" %*
  329. O35 - HKLM\..exefile [open] -- "%1" %*
  330. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  331. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  332. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  333. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  334. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  335.  
  336. CREATERESTOREPOINT
  337. Restore point Set: OTL Restore Point
  338.  
  339. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  340.  
  341. [2015.08.28 01:33:16 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
  342. [2015.08.27 13:04:04 | 000,000,000 | ---D | C] -- C:\Users\Jasarevic\Desktop\ena
  343. [2015.08.21 16:19:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
  344. [2015.08.21 16:14:56 | 000,000,000 | ---D | C] -- C:\Users\Jasarevic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacije sustava Chrome
  345. [2015.08.21 16:14:48 | 000,000,000 | ---D | C] -- C:\Users\Jasarevic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
  346. [2015.08.17 19:44:37 | 000,000,000 | ---D | C] -- C:\Counter-Strike 1.6
  347. [2015.08.14 19:12:16 | 000,000,000 | ---D | C] -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension
  348. [2015.08.14 19:11:04 | 000,000,000 | -H-D | C] -- C:\_acestream_cache_
  349. [2015.08.14 19:11:02 | 000,000,000 | ---D | C] -- C:\Users\Jasarevic\AppData\Roaming\.ACEStream
  350. [2015.08.14 17:13:38 | 000,000,000 | ---D | C] -- C:\Users\Jasarevic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ace Stream Media
  351. [2015.08.14 17:12:56 | 000,000,000 | ---D | C] -- C:\Users\Jasarevic\AppData\Roaming\ACEStream
  352. [2015.03.26 20:38:43 | 001,467,904 | ---- | C] (Sense+) -- C:\Users\Jasarevic\AppData\Roaming\QAFMLWL.exe
  353.  
  354. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  355.  
  356. [2015.09.05 18:46:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  357. [2015.09.05 18:25:00 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1d04227f4334941.job
  358. [2015.09.05 18:20:44 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  359. [2015.09.05 18:20:38 | 000,002,125 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
  360. [2015.09.05 17:47:49 | 000,653,930 | ---- | M] () -- C:\Windows\System32\perfh009.dat
  361. [2015.09.05 17:47:49 | 000,121,802 | ---- | M] () -- C:\Windows\System32\perfc009.dat
  362. [2015.09.05 17:41:59 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1d0900d5d22e65f.job
  363. [2015.09.05 17:41:59 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  364. [2015.09.05 17:41:44 | 003,844,352 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
  365. [2015.09.05 17:41:17 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  366. [2015.09.05 17:41:14 | 000,000,000 | ---- | M] () -- C:\Windows\System32\drivers\lvuvc.hs
  367. [2015.09.05 17:41:11 | 2794,397,696 | -HS- | M] () -- C:\hiberfil.sys
  368. [2015.09.05 02:15:57 | 000,022,096 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  369. [2015.09.05 02:15:57 | 000,022,096 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  370. [2015.09.04 14:58:16 | 000,009,613 | ---- | M] () -- C:\Users\Jasarevic\Desktop\RAKETA.JPG
  371. [2015.09.04 14:14:16 | 000,014,917 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE17.png
  372. [2015.09.04 14:13:57 | 001,108,846 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE17.ai
  373. [2015.09.04 13:00:26 | 000,014,361 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE16.png
  374. [2015.09.04 13:00:06 | 001,107,301 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE16.ai
  375. [2015.09.04 12:32:03 | 000,009,308 | ---- | M] () -- C:\Users\Jasarevic\Desktop\rocket 2.JPG
  376. [2015.09.04 12:31:27 | 000,009,279 | ---- | M] () -- C:\Users\Jasarevic\Desktop\rocket.JPG
  377. [2015.09.04 12:27:18 | 000,014,584 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE15.png
  378. [2015.09.04 12:26:24 | 001,106,946 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE15.ai
  379. [2015.09.03 12:57:57 | 000,014,041 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE14.png
  380. [2015.09.03 12:57:35 | 001,109,982 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE14.ai
  381. [2015.09.03 11:46:50 | 000,013,781 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE13.png
  382. [2015.09.03 11:46:05 | 001,113,795 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE13.ai
  383. [2015.09.03 11:32:03 | 000,013,654 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE10.png
  384. [2015.09.03 11:31:43 | 001,110,722 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE10.ai
  385. [2015.09.02 23:36:28 | 000,014,334 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE11.png
  386. [2015.09.02 23:36:07 | 001,106,325 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE11.ai
  387. [2015.09.02 17:58:10 | 000,012,683 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE9.png
  388. [2015.09.02 17:57:43 | 001,103,229 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE9.ai
  389. [2015.09.02 15:11:32 | 000,017,013 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE8.png
  390. [2015.09.02 15:11:15 | 001,101,197 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE8.ai
  391. [2015.09.02 12:50:54 | 000,018,480 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE7.png
  392. [2015.09.02 12:50:33 | 001,105,806 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE7.ai
  393. [2015.09.02 12:22:15 | 000,015,560 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE6.png
  394. [2015.09.02 12:21:55 | 001,109,180 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE6.ai
  395. [2015.09.02 01:55:31 | 003,018,241 | ---- | M] () -- C:\Users\Jasarevic\Desktop\Amerisave Media3.ai
  396. [2015.09.02 01:55:28 | 001,099,489 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE5.ai
  397. [2015.09.01 23:39:47 | 000,013,828 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE5.png
  398. [2015.09.01 23:25:59 | 000,016,408 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE4.png
  399. [2015.09.01 23:24:42 | 001,099,680 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE4.ai
  400. [2015.09.01 23:02:43 | 000,014,351 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE3.png
  401. [2015.09.01 23:02:10 | 001,097,017 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE3.ai
  402. [2015.09.01 16:45:31 | 000,014,812 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE2.png
  403. [2015.09.01 16:45:05 | 001,098,269 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE2.ai
  404. [2015.09.01 16:41:46 | 000,017,176 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE.png
  405. [2015.09.01 16:41:31 | 001,114,315 | ---- | M] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE.ai
  406. [2015.09.01 00:05:29 | 001,118,770 | ---- | M] () -- C:\Users\Jasarevic\Desktop\obleqt3.ai
  407. [2015.08.31 20:13:48 | 000,018,168 | ---- | M] () -- C:\Users\Jasarevic\Desktop\objeqt12.png
  408. [2015.08.29 21:59:05 | 000,015,257 | ---- | M] () -- C:\Users\Jasarevic\Desktop\obleqt1.png
  409. [2015.08.29 21:58:32 | 001,110,709 | ---- | M] () -- C:\Users\Jasarevic\Desktop\obleqt1.ai
  410. [2015.08.29 18:19:37 | 000,016,275 | ---- | M] () -- C:\Users\Jasarevic\Desktop\obleqt.png
  411. [2015.08.29 18:19:18 | 001,128,502 | ---- | M] () -- C:\Users\Jasarevic\Desktop\obleqt.ai
  412. [2015.08.28 23:31:29 | 003,027,109 | ---- | M] () -- C:\Users\Jasarevic\Desktop\Live The Life You Love 6.ai
  413. [2015.08.28 23:29:55 | 000,019,128 | ---- | M] () -- C:\Users\Jasarevic\Desktop\Amerisave-Media3.png
  414. [2015.08.28 22:02:11 | 000,012,623 | ---- | M] () -- C:\Users\Jasarevic\Desktop\haisenberg.JPG
  415. [2015.08.28 21:40:28 | 000,112,185 | ---- | M] () -- C:\Users\Jasarevic\Desktop\le-grand-heisenberg.jpg
  416. [2015.08.27 17:23:17 | 003,094,096 | ---- | M] () -- C:\Users\Jasarevic\Desktop\Amerisave Media1.ai
  417. [2015.08.27 17:07:09 | 000,026,468 | ---- | M] () -- C:\Users\Jasarevic\Desktop\MAILIWICK.png
  418. [2015.08.20 20:30:51 | 000,016,310 | ---- | M] () -- C:\Users\Jasarevic\Documents\confidence-index2.png
  419. [2015.08.20 17:14:54 | 000,015,657 | ---- | M] () -- C:\Users\Jasarevic\Documents\confidence-index.png
  420. [2015.08.17 19:45:08 | 000,001,556 | ---- | M] () -- C:\Users\Jasarevic\Desktop\Counter-Strike 1.6.lnk
  421. [2015.08.14 23:21:12 | 680,351,855 | ---- | M] () -- C:\Windows\MEMORY.DMP
  422.  
  423. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  424.  
  425. [2015.09.04 14:58:16 | 000,009,613 | ---- | C] () -- C:\Users\Jasarevic\Desktop\RAKETA.JPG
  426. [2015.09.04 14:14:16 | 000,014,917 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE17.png
  427. [2015.09.04 14:13:55 | 001,108,846 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE17.ai
  428. [2015.09.04 13:00:26 | 000,014,361 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE16.png
  429. [2015.09.04 13:00:03 | 001,107,301 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE16.ai
  430. [2015.09.04 12:32:02 | 000,009,308 | ---- | C] () -- C:\Users\Jasarevic\Desktop\rocket 2.JPG
  431. [2015.09.04 12:31:27 | 000,009,279 | ---- | C] () -- C:\Users\Jasarevic\Desktop\rocket.JPG
  432. [2015.09.04 12:27:18 | 000,014,584 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE15.png
  433. [2015.09.03 13:00:12 | 001,106,946 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE15.ai
  434. [2015.09.03 12:57:56 | 000,014,041 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE14.png
  435. [2015.09.03 12:57:33 | 001,109,982 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE14.ai
  436. [2015.09.03 11:46:50 | 000,013,781 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE13.png
  437. [2015.09.03 11:46:03 | 001,113,795 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE13.ai
  438. [2015.09.03 11:32:02 | 000,013,654 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE10.png
  439. [2015.09.02 23:36:28 | 000,014,334 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE11.png
  440. [2015.09.02 23:36:05 | 001,106,325 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE11.ai
  441. [2015.09.02 18:17:07 | 001,110,722 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE10.ai
  442. [2015.09.02 17:58:10 | 000,012,683 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE9.png
  443. [2015.09.02 17:57:40 | 001,103,229 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE9.ai
  444. [2015.09.02 15:11:32 | 000,017,013 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE8.png
  445. [2015.09.02 15:11:13 | 001,101,197 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE8.ai
  446. [2015.09.02 12:50:54 | 000,018,480 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE7.png
  447. [2015.09.02 12:50:31 | 001,105,806 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE7.ai
  448. [2015.09.02 12:22:14 | 000,015,560 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE6.png
  449. [2015.09.02 12:21:52 | 001,109,180 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE6.ai
  450. [2015.09.01 23:39:47 | 000,013,828 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE5.png
  451. [2015.09.01 23:39:14 | 001,099,489 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE5.ai
  452. [2015.09.01 23:25:59 | 000,016,408 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE4.png
  453. [2015.09.01 23:24:40 | 001,099,680 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE4.ai
  454. [2015.09.01 23:02:43 | 000,014,351 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE3.png
  455. [2015.09.01 23:02:07 | 001,097,017 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE3.ai
  456. [2015.09.01 16:45:31 | 000,014,812 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE2.png
  457. [2015.09.01 16:45:03 | 001,098,269 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE2.ai
  458. [2015.09.01 16:41:45 | 000,017,176 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT-IN-STORE.png
  459. [2015.09.01 16:41:28 | 001,114,315 | ---- | C] () -- C:\Users\Jasarevic\Desktop\FLYT IN STORE.ai
  460. [2015.08.31 20:15:25 | 001,118,770 | ---- | C] () -- C:\Users\Jasarevic\Desktop\obleqt3.ai
  461. [2015.08.31 20:13:48 | 000,018,168 | ---- | C] () -- C:\Users\Jasarevic\Desktop\objeqt12.png
  462. [2015.08.29 21:59:04 | 000,015,257 | ---- | C] () -- C:\Users\Jasarevic\Desktop\obleqt1.png
  463. [2015.08.29 21:58:30 | 001,110,709 | ---- | C] () -- C:\Users\Jasarevic\Desktop\obleqt1.ai
  464. [2015.08.29 18:19:37 | 000,016,275 | ---- | C] () -- C:\Users\Jasarevic\Desktop\obleqt.png
  465. [2015.08.29 18:19:16 | 001,128,502 | ---- | C] () -- C:\Users\Jasarevic\Desktop\obleqt.ai
  466. [2015.08.28 23:29:55 | 000,019,128 | ---- | C] () -- C:\Users\Jasarevic\Desktop\Amerisave-Media3.png
  467. [2015.08.28 23:17:35 | 003,018,241 | ---- | C] () -- C:\Users\Jasarevic\Desktop\Amerisave Media3.ai
  468. [2015.08.28 23:08:51 | 003,027,109 | ---- | C] () -- C:\Users\Jasarevic\Desktop\Live The Life You Love 6.ai
  469. [2015.08.28 22:02:10 | 000,012,623 | ---- | C] () -- C:\Users\Jasarevic\Desktop\haisenberg.JPG
  470. [2015.08.28 21:35:53 | 000,112,185 | ---- | C] () -- C:\Users\Jasarevic\Desktop\le-grand-heisenberg.jpg
  471. [2015.08.27 17:23:15 | 003,094,096 | ---- | C] () -- C:\Users\Jasarevic\Desktop\Amerisave Media1.ai
  472. [2015.08.27 17:07:09 | 000,026,468 | ---- | C] () -- C:\Users\Jasarevic\Desktop\MAILIWICK.png
  473. [2015.08.20 20:30:51 | 000,016,310 | ---- | C] () -- C:\Users\Jasarevic\Documents\confidence-index2.png
  474. [2015.08.20 17:14:54 | 000,015,657 | ---- | C] () -- C:\Users\Jasarevic\Documents\confidence-index.png
  475. [2015.08.17 19:45:08 | 000,001,556 | ---- | C] () -- C:\Users\Jasarevic\Desktop\Counter-Strike 1.6.lnk
  476. [2015.03.26 23:15:27 | 000,000,464 | RHS- | C] () -- C:\ProgramData\ntuser.pol
  477. [2015.01.26 18:10:54 | 009,380,360 | ---- | C] () -- C:\Users\Jasarevic\9000.303110.EN.exe
  478. [2015.01.25 18:12:14 | 000,002,086 | ---- | C] () -- C:\Users\Jasarevic\AppData\Roaming\QAFMLWL
  479. [2015.01.25 17:26:19 | 000,000,132 | ---- | C] () -- C:\Users\Jasarevic\AppData\Roaming\Adobe PNG Format CS6 Prefs
  480. [2014.12.05 23:45:30 | 000,000,132 | ---- | C] () -- C:\Users\Jasarevic\AppData\Roaming\Adobe PNG Format CS5 Prefs
  481. [2014.11.29 15:55:20 | 000,018,248 | ---- | C] () -- C:\Windows\System32\roboot.exe
  482. [2014.08.17 20:29:53 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
  483. [2014.08.10 09:57:19 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
  484. [2014.08.10 09:19:56 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
  485. [2014.05.21 00:32:58 | 000,010,752 | ---- | C] ( ) -- C:\Windows\System32\igfxDILib.dll
  486. [2014.05.21 00:32:58 | 000,010,240 | ---- | C] ( ) -- C:\Windows\System32\igfxEMLibv2_0.dll
  487. [2014.05.21 00:32:58 | 000,010,240 | ---- | C] ( ) -- C:\Windows\System32\igfxEMLib.dll
  488. [2014.05.21 00:32:58 | 000,010,240 | ---- | C] ( ) -- C:\Windows\System32\igfxDILibv2_0.dll
  489. [2014.05.21 00:32:58 | 000,005,120 | ---- | C] ( ) -- C:\Windows\System32\igfxLHMLibv2_0.dll
  490. [2014.05.21 00:32:58 | 000,005,120 | ---- | C] ( ) -- C:\Windows\System32\igfxLHMLib.dll
  491. [2014.05.21 00:32:56 | 000,069,632 | ---- | C] ( ) -- C:\Windows\System32\igfxDHLibv2_0.dll
  492. [2014.05.21 00:32:56 | 000,063,488 | ---- | C] () -- C:\Windows\System32\igfxCUIServicePS.dll
  493. [2014.05.21 00:32:56 | 000,057,856 | ---- | C] ( ) -- C:\Windows\System32\igfxDHLib.dll
  494. [2014.05.21 00:32:54 | 000,348,088 | ---- | C] () -- C:\Windows\System32\igdmd32.dll
  495. [2014.05.21 00:32:50 | 000,183,808 | ---- | C] () -- C:\Windows\System32\igdde32.dll
  496. [2014.05.21 00:32:50 | 000,142,848 | ---- | C] () -- C:\Windows\System32\igdail32.dll
  497. [2014.05.21 00:32:46 | 000,094,208 | ---- | C] () -- C:\Windows\System32\IccLibDll.dll
  498. [2014.05.21 00:32:44 | 000,000,895 | ---- | C] () -- C:\Windows\System32\Gfxv2_0.exe.config
  499. [2014.05.21 00:32:44 | 000,000,895 | ---- | C] () -- C:\Windows\System32\DPTopologyAppv2_0.exe.config
  500. [2014.05.21 00:32:44 | 000,000,889 | ---- | C] () -- C:\Windows\System32\Gfxv4_0.exe.config
  501. [2014.05.21 00:32:44 | 000,000,889 | ---- | C] () -- C:\Windows\System32\DPTopologyApp.exe.config
  502. [2014.05.21 00:32:42 | 000,000,895 | ---- | C] () -- C:\Windows\System32\CustomModeAppv2_0.exe.config
  503. [2014.05.21 00:32:42 | 000,000,889 | ---- | C] () -- C:\Windows\System32\CustomModeApp.exe.config
  504. [2014.04.18 04:23:02 | 000,200,704 | ---- | C] () -- C:\Windows\System32\clinfo.exe
  505. [2014.04.18 04:22:56 | 000,995,342 | ---- | C] () -- C:\Windows\System32\amdocl_as32.exe
  506. [2014.04.18 04:22:56 | 000,798,734 | ---- | C] () -- C:\Windows\System32\amdocl_ld32.exe
  507. [2014.04.18 03:14:36 | 000,204,952 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat
  508. [2014.04.18 03:14:36 | 000,157,144 | ---- | C] () -- C:\Windows\System32\ativvsva.dat
  509. [2014.04.17 22:28:30 | 000,038,912 | ---- | C] () -- C:\Windows\System32\kdbsdk32.dll
  510. [2014.04.10 19:58:46 | 000,082,128 | ---- | C] () -- C:\Windows\System32\ativce02.dat
  511. [2014.04.01 00:06:22 | 000,234,804 | ---- | C] () -- C:\Windows\System32\ativvaxy_cik.dat
  512. [2014.04.01 00:04:42 | 000,233,008 | ---- | C] () -- C:\Windows\System32\ativvaxy_cik_nd.dat
  513. [2014.02.06 17:45:58 | 000,134,192 | ---- | C] () -- C:\Windows\System32\ativce03.dat
  514. [2014.01.23 18:31:12 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
  515. [2014.01.23 18:31:08 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
  516. [2014.01.23 18:31:08 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
  517. [2014.01.23 18:31:08 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
  518. [2014.01.23 18:31:08 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
  519. [2014.01.16 19:00:46 | 000,273,712 | ---- | C] () -- C:\Windows\System32\ativvaxy_vi_nd.dat
  520. [2014.01.16 18:59:20 | 000,275,124 | ---- | C] () -- C:\Windows\System32\ativvaxy_vi.dat
  521. [2014.01.16 10:34:52 | 000,723,841 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
  522.  
  523. [color=#E56717]========== ZeroAccess Check ==========[/color]
  524.  
  525. [2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
  526.  
  527. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  528.  
  529. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  530.  
  531. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  532. "" = %SystemRoot%\system32\shell32.dll -- [2015.07.10 19:34:07 | 012,875,776 | ---- | M] (Microsoft Corporation)
  533. "ThreadingModel" = Apartment
  534.  
  535. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  536. "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
  537. "ThreadingModel" = Free
  538.  
  539. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  540. "" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
  541. "ThreadingModel" = Both
  542.  
  543. [color=#E56717]========== LOP Check ==========[/color]
  544.  
  545. [2015.08.14 19:51:27 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\.ACEStream
  546. [2015.08.14 19:12:04 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\ACEStream
  547. [2015.08.14 19:12:16 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\AceWebExtension
  548. [2014.08.12 01:09:38 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\AVG2014
  549. [2015.02.17 23:46:53 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\BSplayer PRO
  550. [2014.08.12 22:42:14 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\DAEMON Tools Lite
  551. [2014.08.11 20:12:58 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\Jumping Bytes
  552. [2014.08.10 09:53:05 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\library_dir
  553. [2014.08.11 20:13:38 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\Mobile Master
  554. [2014.08.12 20:51:06 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\OpenCandy
  555. [2015.02.16 23:11:16 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\Opera Software
  556. [2014.11.10 11:53:33 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\Samsung
  557. [2014.12.08 20:44:22 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
  558. [2014.11.29 15:56:05 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\Systweak
  559. [2014.11.22 20:53:01 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\TeamViewer
  560. [2014.08.12 01:09:11 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\TuneUp Software
  561. [2015.09.05 18:48:21 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\uTorrent
  562. [2014.11.29 15:55:25 | 000,000,000 | ---D | M] -- C:\Users\Jasarevic\AppData\Roaming\WebTest
  563.  
  564. [color=#E56717]========== Purity Check ==========[/color]
  565.  
  566.  
  567.  
  568. [color=#E56717]========== Custom Scans ==========[/color]
  569.  
  570. [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
  571.  
  572. [color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
  573. [2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
  574. [2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
  575. [2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
  576. [2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys
  577.  
  578. [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
  579. [2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
  580. [2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\atapi.sys
  581. [2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
  582. [2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
  583. [2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
  584. [2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_df26d4d57fdef5b0\atapi.sys
  585. [2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_dfc9143c98e9a6c4\atapi.sys
  586.  
  587. [color=#A23BEC]< MD5 for: CNGAUDIT.DLL >[/color]
  588. [2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
  589. [2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
  590.  
  591. [color=#A23BEC]< MD5 for: IASTORV.SYS >[/color]
  592. [2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\drivers\iaStorV.sys
  593. [2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0bcee2057afcc090\iaStorV.sys
  594. [2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys
  595. [2011.03.11 07:43:55 | 000,332,160 | ---- | M] (Intel Corporation) MD5=71F1A494FEDF4B33C02C4A6A28D6D9E9 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_aef580fde910b4b0\iaStorV.sys
  596. [2011.03.11 07:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys
  597. [2009.07.14 03:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
  598. [2010.11.20 14:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys
  599. [2010.11.20 14:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys
  600. [2011.03.11 07:52:21 | 000,332,160 | ---- | M] (Intel Corporation) MD5=B9039A34C2F8769490DCC494E2402445 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_afae2d45020c148b\iaStorV.sys
  601.  
  602. [color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
  603. [2010.11.20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll
  604. [2010.11.20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
  605. [2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll
  606.  
  607. [color=#A23BEC]< MD5 for: NVSTOR.SYS >[/color]
  608. [2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\drivers\nvstor.sys
  609. [2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvstor.sys
  610. [2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys
  611. [2011.03.11 07:44:01 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4520B63899E867F354EE012D34E11536 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvstor.sys
  612. [2011.03.11 07:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys
  613. [2011.03.11 07:52:25 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=8A7583A3B58D3EEB28BB26626526BC91 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvstor.sys
  614. [2010.11.20 14:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys
  615. [2010.11.20 14:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys
  616. [2009.07.14 03:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys
  617.  
  618. [color=#A23BEC]< MD5 for: SCECLI.DLL >[/color]
  619. [2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
  620. [2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
  621. [2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
  622.  
  623. [color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
  624.  
  625. [color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
  626.  
  627. < End of report >
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!