API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jan 8th, 2016
28
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 39.42 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 8.1.2016. 13:30:31 - Run 2
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Feliks\Desktop
  3. Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.0.8112.16421)
  5. Locale: 0000041a | Country: Hrvatska | Language: HRV | Date Format: d.M.yyyy.
  6.  
  7. 1,97 Gb Total Physical Memory | 0,62 Gb Available Physical Memory | 31,28% Memory free
  8. 3,93 Gb Paging File | 1,84 Gb Available in Paging File | 46,86% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
  12. Drive C: | 97,56 Gb Total Space | 15,36 Gb Free Space | 15,74% Space Free | Partition Type: NTFS
  13. Drive D: | 200,43 Gb Total Space | 25,61 Gb Free Space | 12,78% Space Free | Partition Type: NTFS
  14. Drive Z: | 100,00 Mb Total Space | 61,66 Mb Free Space | 61,66% Space Free | Partition Type: NTFS
  15.  
  16. Computer Name: FELIKS-PC | User Name: Feliks | Logged in as Administrator.
  17. Boot Mode: Normal | Scan Mode: Current user | Quick Scan
  18. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
  19.  
  20. [color=#E56717]========== Processes (SafeList) ==========[/color]
  21.  
  22. PRC - [2016.01.08 13:27:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Feliks\Desktop\OTL.exe
  23. PRC - [2016.01.07 11:34:26 | 000,392,136 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
  24. PRC - [2015.12.11 11:51:56 | 001,164,688 | ---- | M] () -- C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
  25. PRC - [2015.12.05 08:05:59 | 000,245,576 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.29.1\GoogleCrashHandler.exe
  26. PRC - [2015.12.04 11:08:49 | 000,336,896 | ---- | M] (BitTorrent Inc.) -- C:\Users\Feliks\AppData\Roaming\BitTorrent\updates\7.9.5_41373\utorrentie.exe
  27. PRC - [2015.12.04 10:23:53 | 001,873,952 | ---- | M] (BitTorrent Inc.) -- C:\Users\Feliks\AppData\Roaming\BitTorrent\BitTorrent.exe
  28. PRC - [2015.11.20 08:19:56 | 003,857,272 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\Av\avgidsagent.exe
  29. PRC - [2015.11.20 08:15:18 | 003,855,272 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\Av\avgui.exe
  30. PRC - [2015.11.20 08:14:54 | 000,579,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\Av\avgwdsvcx.exe
  31. PRC - [2015.11.20 08:14:40 | 000,992,168 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\Av\avgrsx.exe
  32. PRC - [2015.11.20 08:12:46 | 001,385,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\Av\avgnsx.exe
  33. PRC - [2015.11.20 08:12:32 | 000,825,256 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\Av\avgcsrvx.exe
  34. PRC - [2015.11.12 16:57:42 | 001,136,552 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\Framework\Common\avguix.exe
  35. PRC - [2015.11.12 16:57:42 | 000,862,632 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\Framework\Common\avgsvcx.exe
  36. PRC - [2015.10.28 18:49:06 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
  37. PRC - [2014.04.25 17:56:38 | 005,625,624 | ---- | M] (SUPERAntiSpyware) -- C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
  38. PRC - [2014.02.08 07:46:08 | 003,973,472 | ---- | M] (Free Time) -- C:\Users\Feliks\Desktop\FormatFactory\FormatFactory.exe
  39. PRC - [2013.04.11 12:14:54 | 000,295,512 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\real\realplayer\Update\realsched.exe
  40. PRC - [2013.03.06 01:21:50 | 000,039,056 | ---- | M] () -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
  41. PRC - [2012.07.26 13:39:28 | 000,184,848 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
  42. PRC - [2012.07.11 19:54:49 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe
  43. PRC - [2012.03.19 12:38:47 | 002,666,880 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
  44. PRC - [2011.07.19 05:53:40 | 008,240,142 | ---- | M] () -- C:\Users\Feliks\Desktop\FormatFactory\FFModules\Encoder\mencoder.exe
  45. PRC - [2011.05.03 10:18:01 | 000,487,424 | ---- | M] (Gadwin Systems, Inc) -- C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe
  46. PRC - [2010.01.29 22:20:26 | 000,112,208 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
  47. PRC - [2010.01.27 12:30:16 | 001,312,848 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
  48. PRC - [2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
  49. PRC - [2009.07.14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
  50. PRC - [2009.07.14 02:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
  51.  
  52.  
  53. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  54.  
  55. MOD - [2015.10.26 08:37:03 | 040,500,224 | ---- | M] () -- C:\Program Files\AVG\UiDll\2171\libcef.dll
  56. MOD - [2014.01.27 17:45:24 | 001,427,968 | ---- | M] () -- C:\Users\Feliks\Desktop\FormatFactory\PicConvert.dll
  57. MOD - [2011.07.19 05:53:40 | 008,240,142 | ---- | M] () -- C:\Users\Feliks\Desktop\FormatFactory\FFModules\Encoder\mencoder.exe
  58. MOD - [2011.07.19 05:33:30 | 000,240,142 | ---- | M] () -- C:\Users\Feliks\Desktop\FormatFactory\FFModules\Encoder\swscale-2.dll
  59. MOD - [2011.07.19 05:33:30 | 000,167,950 | ---- | M] () -- C:\Users\Feliks\Desktop\FormatFactory\FFModules\Encoder\postproc-51.dll
  60. MOD - [2011.07.19 05:33:30 | 000,145,422 | ---- | M] () -- C:\Users\Feliks\Desktop\FormatFactory\FFModules\Encoder\avutil-51.dll
  61. MOD - [2011.07.19 05:33:28 | 009,253,902 | ---- | M] () -- C:\Users\Feliks\Desktop\FormatFactory\FFModules\Encoder\avcodec-53.dll
  62. MOD - [2011.07.19 05:33:28 | 001,040,910 | ---- | M] () -- C:\Users\Feliks\Desktop\FormatFactory\FFModules\Encoder\avformat-53.dll
  63. MOD - [2010.03.15 10:28:22 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
  64. MOD - [2010.03.15 04:31:48 | 000,165,376 | ---- | M] () -- C:\Users\Feliks\Desktop\FormatFactory\FFModules\Encoder\mplayer\unrar.dll
  65.  
  66.  
  67. [color=#E56717]========== Services (SafeList) ==========[/color]
  68.  
  69. SRV - File not found [Disabled | Stopped] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
  70. SRV - [2016.01.07 11:34:25 | 000,146,888 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  71. SRV - [2016.01.02 13:17:15 | 000,269,504 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
  72. SRV - [2015.12.11 11:51:56 | 001,164,688 | ---- | M] () [Auto | Running] -- C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe -- (WtuSystemSupport)
  73. SRV - [2015.11.20 08:19:56 | 003,857,272 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\Av\avgidsagent.exe -- (AVGIDSAgent)
  74. SRV - [2015.11.20 08:14:54 | 000,579,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\Av\avgwdsvcx.exe -- (avgwd)
  75. SRV - [2015.11.20 08:13:38 | 000,615,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [On_Demand | Stopped] -- C:\Program Files\AVG\Av\avgamps.exe -- (AvgAMPS)
  76. SRV - [2015.11.12 16:57:42 | 000,862,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\Framework\Common\avgsvcx.exe -- (avgsvc)
  77. SRV - [2015.10.28 18:49:06 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
  78. SRV - [2013.03.06 01:21:50 | 000,039,056 | ---- | M] () [Auto | Running] -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
  79. SRV - [2012.07.26 13:39:28 | 000,184,848 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe -- (NitroReaderDriverReadSpool2)
  80. SRV - [2012.07.11 19:54:49 | 000,116,608 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore.exe -- (!SASCORE)
  81. SRV - [2012.03.19 12:38:47 | 002,666,880 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7)
  82. SRV - [2010.05.30 00:54:59 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
  83. SRV - [2010.01.29 22:17:14 | 000,292,944 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
  84. SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
  85. SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
  86. SRV - [2009.07.14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
  87.  
  88.  
  89. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  90.  
  91. DRV - [2015.11.20 08:05:14 | 000,031,664 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
  92. DRV - [2015.11.06 15:48:44 | 000,255,920 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
  93. DRV - [2015.11.06 15:48:44 | 000,193,968 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
  94. DRV - [2015.11.06 15:48:42 | 000,149,936 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgdiskx.sys -- (Avgdiskx)
  95. DRV - [2015.10.21 16:24:24 | 000,229,296 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
  96. DRV - [2015.10.08 07:48:58 | 000,231,856 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
  97. DRV - [2015.08.20 14:05:48 | 000,231,344 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgidshx.sys -- (AVGIDSHX)
  98. DRV - [2015.08.14 14:23:32 | 000,308,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avglogx.sys -- (Avglogx)
  99. DRV - [2015.08.10 15:25:40 | 000,036,784 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
  100. DRV - [2013.08.05 15:24:38 | 000,037,664 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtpx86.sys -- (avgtp)
  101. DRV - [2011.07.22 17:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
  102. DRV - [2011.07.12 22:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
  103. DRV - [2011.06.02 06:47:22 | 000,136,808 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm)
  104. DRV - [2011.06.02 06:47:22 | 000,121,064 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus)
  105. DRV - [2011.06.02 06:47:22 | 000,114,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadserd.sys -- (ssadserd)
  106. DRV - [2011.06.02 06:47:22 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl)
  107. DRV - [2010.12.21 06:55:02 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadadb.sys -- (androidusb)
  108. DRV - [2009.11.10 12:55:08 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
  109. DRV - [2009.11.10 12:54:52 | 000,035,984 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
  110. DRV - [2009.10.26 14:54:24 | 000,025,088 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ANDROIDUSB.sys -- (HTCAND32)
  111. DRV - [2009.07.14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
  112. DRV - [2009.07.14 02:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
  113. DRV - [2009.07.14 02:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
  114. DRV - [2009.07.14 00:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
  115. DRV - [2009.07.14 00:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
  116. DRV - [2009.07.14 00:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
  117. DRV - [2008.12.26 11:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vcsvad.sys -- (VCSVADHWSer)
  118. DRV - [2008.01.19 04:49:30 | 000,030,208 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\irstusb.sys -- (STIrUsb)
  119.  
  120.  
  121. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  122.  
  123.  
  124. [color=#E56717]========== Internet Explorer ==========[/color]
  125.  
  126. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  127. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  128. IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  129.  
  130. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.hr/
  131. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
  132. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = hr-HR
  133. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 1C 00 69 78 25 E6 D0 01 [binary data]
  134. IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  135. IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
  136. IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
  137. IE - HKCU\..\SearchScopes\{C0C3A6C6-03BC-4195-8FCB-AEA091301353}: "URL" = https://search.yahoo.com/search?fr=vmn&type=vmn__webcompa__1_0__ya__ch_WCYID10099_swoc_campaign_150606__yaie&p={searchTerms}
  138. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  139.  
  140. [color=#E56717]========== FireFox ==========[/color]
  141.  
  142. FF - user.js - File not found
  143.  
  144. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_267.dll ()
  145. FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
  146. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
  147. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  148. FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  149. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
  150. FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3508.0205: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
  151. FF - HKLM\Software\MozillaPlugins\@nitropdf.com/NitroPDF: C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll ( )
  152. FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.1.18: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
  153. FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
  154. FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
  155. FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
  156. FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.1.18: c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
  157. FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
  158. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)
  159. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)
  160. FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
  161. FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
  162. FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Feliks\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
  163. FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Feliks\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
  164. FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Feliks\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)
  165. FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Feliks\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll (Google Inc.)
  166.  
  167. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010.05.27 09:52:33 | 000,000,000 | ---D | M]
  168. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
  169. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{DAC3F861-B30D-40dd-9166-F4E75327FAC7}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.04.11 12:15:26 | 000,000,000 | ---D | M]
  170. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 43.0.4\extensions\\Components: C:\Program Files\Mozilla Firefox\components
  171. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 43.0.4\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2016.01.07 11:34:21 | 000,000,000 | ---D | M]
  172. FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010.05.27 09:52:33 | 000,000,000 | ---D | M]
  173.  
  174. [2014.12.12 20:24:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Feliks\AppData\Roaming\Mozilla\Extensions
  175. [2015.12.15 11:46:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Feliks\AppData\Roaming\Mozilla\Firefox\Profiles\avmum51l.default\extensions
  176. [2015.12.26 15:54:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Feliks\AppData\Roaming\Mozilla\Firefox\Profiles\wjmowhnf.default-1381686293434\extensions
  177. [2015.11.05 18:20:44 | 001,836,200 | ---- | M] () (No name found) -- C:\Users\Feliks\AppData\Roaming\Mozilla\Firefox\Profiles\wjmowhnf.default-1381686293434\extensions\adguardadblocker@adguard.com.xpi
  178. [2015.12.15 22:35:53 | 000,989,188 | ---- | M] () (No name found) -- C:\Users\Feliks\AppData\Roaming\Mozilla\Firefox\Profiles\wjmowhnf.default-1381686293434\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
  179. [2015.12.26 15:54:50 | 000,864,526 | ---- | M] () (No name found) -- C:\Users\Feliks\AppData\Roaming\Mozilla\Firefox\Profiles\wjmowhnf.default-1381686293434\extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi
  180. [2016.01.07 11:34:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
  181. [2016.01.07 11:34:27 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  182. [2013.04.11 12:14:58 | 000,124,504 | ---- | M] (RealPlayer) -- C:\Program Files\mozilla firefox\plugins\nprpplugin.dll
  183.  
  184. O1 HOSTS File: ([2014.12.12 20:20:01 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
  185. O1 - Hosts: 127.0.0.1 localhost
  186. O1 - Hosts: ::1 localhost
  187. O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
  188. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
  189. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  190. O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\Av\avgui.exe (AVG Technologies CZ, s.r.o.)
  191. O4 - HKLM..\Run: [AvgUi] C:\Program Files\AVG\Framework\Common\avguix.exe (AVG Technologies CZ, s.r.o.)
  192. O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
  193. O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
  194. O4 - HKLM..\Run: [TkBellExe] C:\Program Files\real\realplayer\update\realsched.exe (RealNetworks, Inc.)
  195. O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" File not found
  196. O4 - HKCU..\Run: [BitTorrent] C:\Users\Feliks\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc.)
  197. O4 - HKCU..\Run: [Gadwin PrintScreen] C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe (Gadwin Systems, Inc)
  198. O4 - HKCU..\Run: [Web Companion] C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize File not found
  199. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
  200. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  201. O8 - Extra context menu item: Free YouTube Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm ()
  202. O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm ()
  203. O13 - gopher Prefix: missing
  204. O15 - HKCU\..Trusted Domains: localhost ([]* in Trusted sites)
  205. O15 - HKCU\..Trusted Domains: webcompanion.com ([]http in Trusted sites)
  206. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.5.1
  207. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{293E226C-DDC6-42E0-8FED-F0A53F999255}: DhcpNameServer = 192.168.5.1
  208. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{74B9CC0F-C892-4761-80B8-D6F6F4C5130E}: DhcpNameServer = 192.168.5.1
  209. O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll File not found
  210. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  211. O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
  212. O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
  213. O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
  214. O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
  215. O32 - HKLM CDRom: AutoRun - 1
  216. O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
  217. O34 - HKLM BootExecute: (autocheck autochk *)
  218. O35 - HKLM\..comfile [open] -- "%1" %*
  219. O35 - HKLM\..exefile [open] -- "%1" %*
  220. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  221. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  222. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  223. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  224. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  225.  
  226. NetSvcs: FastUserSwitchingCompatibility - File not found
  227. NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
  228. NetSvcs: Nla - File not found
  229. NetSvcs: Ntmssvc - File not found
  230. NetSvcs: NWCWorkstation - File not found
  231. NetSvcs: Nwsapagent - File not found
  232. NetSvcs: SRService - File not found
  233. NetSvcs: WmdmPmSp - File not found
  234. NetSvcs: LogonHours - File not found
  235. NetSvcs: PCAudit - File not found
  236. NetSvcs: helpsvc - File not found
  237. NetSvcs: uploadmgr - File not found
  238.  
  239. Drivers32: msacm.divxa32 - C:\Windows\System32\msaud32_divx.acm (Microsoft Corporation)
  240. Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
  241. Drivers32: msacm.vorbis - C:\Windows\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
  242. Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
  243.  
  244. CREATERESTOREPOINT
  245. Restore point Set: OTL Restore Point
  246.  
  247. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  248.  
  249. [2016.01.08 13:27:57 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Feliks\Desktop\OTL.exe
  250. [2016.01.07 19:51:20 | 000,000,000 | ---D | C] -- C:\Users\Feliks\Desktop\The Revenant 2015
  251. [2016.01.07 12:45:24 | 000,000,000 | ---D | C] -- C:\Users\Feliks\Desktop\sherlock 4
  252. [2016.01.07 11:34:19 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
  253. [2016.01.06 16:26:48 | 000,000,000 | ---D | C] -- C:\Users\Feliks\Desktop\And Then There Were None
  254. [2016.01.04 10:36:03 | 000,000,000 | ---D | C] -- C:\Users\Feliks\Desktop\Fifty Shades of Grey (2015
  255. [2015.12.31 18:49:29 | 000,000,000 | ---D | C] -- C:\Users\Feliks\Desktop\NG
  256. [2015.12.11 11:57:16 | 000,000,000 | ---D | C] -- C:\Users\Feliks\Desktop\d_a specijal
  257.  
  258. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  259.  
  260. [2016.01.08 13:27:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Feliks\Desktop\OTL.exe
  261. [2016.01.08 13:17:22 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  262. [2016.01.08 13:11:09 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  263. [2016.01.08 12:56:03 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3574793852-2864016015-4032767632-1000UA.job
  264. [2016.01.08 09:58:53 | 000,017,360 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  265. [2016.01.08 09:58:53 | 000,017,360 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  266. [2016.01.08 09:50:51 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  267. [2016.01.08 09:50:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  268. [2016.01.08 09:50:32 | 1583,276,032 | -HS- | M] () -- C:\hiberfil.sys
  269. [2016.01.07 14:05:02 | 000,034,261 | ---- | M] () -- C:\Users\Feliks\Desktop\unnamed.jpg
  270. [2016.01.06 16:41:26 | 009,626,782 | ---- | M] () -- C:\Windows\System32\perfh009.dat
  271. [2016.01.06 16:41:26 | 008,721,450 | ---- | M] () -- C:\Windows\System32\perfc009.dat
  272. [2016.01.02 16:56:44 | 000,014,336 | ---- | M] () -- C:\Users\Feliks\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  273. [2015.12.30 07:56:00 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3574793852-2864016015-4032767632-1000Core.job
  274. [2015.12.22 20:23:36 | 000,125,861 | ---- | M] () -- C:\Users\Feliks\Desktop\10412032_542542612571142_9149431735989469507_n.jpg
  275. [2015.12.16 13:06:32 | 469,981,028 | ---- | M] () -- C:\Users\Feliks\Desktop\Fargo.S02E10.REPACK.HDTV.x264-KILLERS[ettv].avi
  276. [2015.12.12 23:21:03 | 000,968,009 | ---- | M] () -- C:\Users\Feliks\Desktop\IMG_20151212_103400.jpg
  277. [2015.12.09 15:36:38 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\AVG Protection.lnk
  278.  
  279. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  280.  
  281. [2016.01.07 14:05:01 | 000,034,261 | ---- | C] () -- C:\Users\Feliks\Desktop\unnamed.jpg
  282. [2015.12.22 20:23:36 | 000,125,861 | ---- | C] () -- C:\Users\Feliks\Desktop\10412032_542542612571142_9149431735989469507_n.jpg
  283. [2015.12.16 12:55:26 | 469,981,028 | ---- | C] () -- C:\Users\Feliks\Desktop\Fargo.S02E10.REPACK.HDTV.x264-KILLERS[ettv].avi
  284. [2015.12.12 23:21:02 | 000,968,009 | ---- | C] () -- C:\Users\Feliks\Desktop\IMG_20151212_103400.jpg
  285. [2015.09.26 15:08:31 | 000,000,005 | ---- | C] () -- C:\Users\Feliks\AppData\Roaming\mbam.context.scan
  286. [2015.06.06 12:16:09 | 000,002,856 | ---- | C] () -- C:\Windows\System32\LavasoftTcpServiceOff.ini
  287. [2013.06.26 13:25:38 | 000,003,715 | ---- | C] () -- C:\Program Files\Mozilla Firefoxavg-secure-search.xml
  288. [2011.03.03 22:46:02 | 000,014,336 | ---- | C] () -- C:\Users\Feliks\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  289.  
  290. [color=#E56717]========== ZeroAccess Check ==========[/color]
  291.  
  292. [2009.07.14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
  293.  
  294. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  295.  
  296. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  297.  
  298. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  299. "" = %SystemRoot%\system32\shell32.dll -- [2010.02.18 08:34:01 | 012,867,072 | ---- | M] (Microsoft Corporation)
  300. "ThreadingModel" = Apartment
  301.  
  302. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  303. "" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
  304. "ThreadingModel" = Free
  305.  
  306. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  307. "" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
  308. "ThreadingModel" = Both
  309.  
  310. [color=#E56717]========== LOP Check ==========[/color]
  311.  
  312. [2015.10.26 08:42:47 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\AVG
  313. [2010.10.03 12:37:40 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\Avnex
  314. [2016.01.08 13:35:25 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\BitTorrent
  315. [2015.02.05 22:08:15 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\BSplayer
  316. [2011.10.25 13:32:38 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\BSplayer Pro
  317. [2012.04.18 09:13:55 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\Canneverbe Limited
  318. [2015.06.06 12:35:13 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\DVDVideoSoft
  319. [2010.05.26 20:03:04 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\GHISLER
  320. [2010.05.27 09:59:12 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\Leadertech
  321. [2012.08.16 08:57:55 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\Nitro PDF
  322. [2014.11.13 18:08:15 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\Opera Software
  323. [2014.11.13 18:05:31 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\TuneUp Software
  324. [2015.03.03 07:42:06 | 000,000,000 | ---D | M] -- C:\Users\Feliks\AppData\Roaming\uTorrent
  325.  
  326. [color=#E56717]========== Purity Check ==========[/color]
  327.  
  328.  
  329.  
  330. [color=#E56717]========== Custom Scans ==========[/color]
  331.  
  332. [color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]
  333. [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
  334. [2009.06.10 22:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
  335. [2013.05.31 12:59:38 | 000,000,221 | ---- | M] () -- C:\files.log
  336. [2013.05.31 12:59:48 | 000,000,155 | ---- | M] () -- C:\folders.log
  337. [2016.01.08 09:50:32 | 1583,276,032 | -HS- | M] () -- C:\hiberfil.sys
  338. [2016.01.08 09:50:33 | 2111,037,440 | -HS- | M] () -- C:\pagefile.sys
  339.  
  340. [color=#A23BEC]< %systemroot%\Fonts\*.com >[/color]
  341. [2009.07.14 05:52:25 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
  342. [2009.07.14 05:52:25 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
  343. [2009.07.14 05:52:25 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
  344. [2009.07.14 05:52:25 | 000,043,318 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont
  345.  
  346. [color=#A23BEC]< %systemroot%\Fonts\*.dll >[/color]
  347.  
  348. [color=#A23BEC]< %systemroot%\Fonts\*.ini >[/color]
  349. [2009.06.10 22:31:19 | 000,000,065 | ---- | M] () -- C:\Windows\Fonts\desktop.ini
  350.  
  351. [color=#A23BEC]< %systemroot%\Fonts\*.ini2 >[/color]
  352.  
  353. [color=#A23BEC]< %systemroot%\Fonts\*.exe >[/color]
  354.  
  355. [color=#A23BEC]< %systemroot%\system32\spool\prtprocs\w32x86\*.* >[/color]
  356. [2009.07.14 02:15:26 | 000,280,064 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\system32\spool\prtprocs\w32x86\hpzppw71.dll
  357. [2009.07.14 02:15:35 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\spool\prtprocs\w32x86\jnwppr.dll
  358. [2009.07.14 02:16:19 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\spool\prtprocs\w32x86\winprint.dll
  359.  
  360. [color=#A23BEC]< %systemroot%\REPAIR\*.bak1 >[/color]
  361.  
  362. [color=#A23BEC]< %systemroot%\REPAIR\*.ini >[/color]
  363.  
  364. [color=#A23BEC]< %systemroot%\system32\*.jpg >[/color]
  365.  
  366. [color=#A23BEC]< %systemroot%\*.jpg >[/color]
  367.  
  368. [color=#A23BEC]< %systemroot%\*.png >[/color]
  369.  
  370. [color=#A23BEC]< %systemroot%\*.scr >[/color]
  371. [2013.02.05 21:56:16 | 000,322,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\WLXPGSS.SCR
  372.  
  373. [color=#A23BEC]< %systemroot%\*._sy >[/color]
  374.  
  375. [color=#A23BEC]< %APPDATA%\Adobe\Update\*.* >[/color]
  376.  
  377. [color=#A23BEC]< %ALLUSERSPROFILE%\Favorites\*.* >[/color]
  378.  
  379. [color=#A23BEC]< %APPDATA%\Microsoft\*.* >[/color]
  380.  
  381. [color=#A23BEC]< %PROGRAMFILES%\*.* >[/color]
  382. [2009.07.14 05:41:57 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini
  383. [2013.08.15 09:41:50 | 000,003,715 | ---- | M] () -- C:\Program Files\Mozilla Firefoxavg-secure-search.xml
  384.  
  385. [color=#A23BEC]< %APPDATA%\Update\*.* >[/color]
  386.  
  387. [color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
  388.  
  389. [color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
  390.  
  391. [color=#A23BEC]< %PROGRAMFILES%\bak. /s >[/color]
  392.  
  393. [color=#A23BEC]< %systemroot%\system32\bak. /s >[/color]
  394.  
  395. [color=#A23BEC]< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >[/color]
  396.  
  397. [color=#A23BEC]< %systemroot%\system32\config\systemprofile\*.dat /x >[/color]
  398.  
  399. [color=#A23BEC]< %systemroot%\*.config >[/color]
  400.  
  401. [color=#A23BEC]< %systemroot%\system32\*.db >[/color]
  402.  
  403. [color=#A23BEC]< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >[/color]
  404. [2014.11.13 19:18:41 | 000,000,221 | -HS- | M] () -- C:\Users\Feliks\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini
  405.  
  406. [color=#A23BEC]< %USERPROFILE%\Desktop\*.exe >[/color]
  407. [2013.10.21 12:18:56 | 000,915,368 | ---- | M] (Oracle Corporation) -- C:\Users\Feliks\Desktop\jxpiinstall.exe
  408. [2016.01.08 13:27:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Feliks\Desktop\OTL.exe
  409. [2015.02.06 17:31:26 | 024,743,106 | ---- | M] () -- C:\Users\Feliks\Desktop\vlc-2.1.5-win32.exe
  410.  
  411. [color=#A23BEC]< %PROGRAMFILES%\Common Files\*.* >[/color]
  412.  
  413. [color=#A23BEC]< %systemroot%\*.src >[/color]
  414.  
  415. [color=#A23BEC]< %systemroot%\install\*.* >[/color]
  416.  
  417. [color=#A23BEC]< %systemroot%\system32\DLL\*.* >[/color]
  418.  
  419. [color=#A23BEC]< %systemroot%\system32\HelpFiles\*.* >[/color]
  420.  
  421. [color=#A23BEC]< %systemroot%\system32\rundll\*.* >[/color]
  422.  
  423. [color=#A23BEC]< %systemroot%\winn32\*.* >[/color]
  424.  
  425. [color=#A23BEC]< %systemroot%\Java\*.* >[/color]
  426.  
  427. [color=#A23BEC]< %systemroot%\system32\test\*.* >[/color]
  428.  
  429. [color=#A23BEC]< %systemroot%\system32\Rundll32\*.* >[/color]
  430.  
  431. [color=#A23BEC]< %systemroot%\AppPatch\Custom\*.* >[/color]
  432.  
  433. [color=#A23BEC]< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >[/color]
  434.  
  435. [color=#A23BEC]< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >[/color]
  436.  
  437. [color=#A23BEC]< %PROGRAMFILES%\Internet Explorer\*.tmp >[/color]
  438.  
  439. [color=#A23BEC]< %PROGRAMFILES%\Internet Explorer\*.dat >[/color]
  440.  
  441. [color=#A23BEC]< %USERPROFILE%\My Documents\*.exe >[/color]
  442.  
  443. [color=#A23BEC]< %USERPROFILE%\*.exe >[/color]
  444.  
  445. [color=#A23BEC]< %systemroot%\ADDINS\*.* >[/color]
  446. [2009.06.10 22:20:04 | 000,000,802 | ---- | M] () -- C:\Windows\ADDINS\FXSEXT.ecf
  447.  
  448. [color=#A23BEC]< %systemroot%\assembly\*.bak2 >[/color]
  449.  
  450. [color=#A23BEC]< %systemroot%\Config\*.* >[/color]
  451.  
  452. [color=#A23BEC]< %systemroot%\REPAIR\*.bak2 >[/color]
  453.  
  454. [color=#A23BEC]< %systemroot%\SECURITY\Database\*.sdb /x >[/color]
  455.  
  456. [color=#A23BEC]< %systemroot%\SYSTEM\*.bak2 >[/color]
  457.  
  458. [color=#A23BEC]< %systemroot%\Web\*.bak2 >[/color]
  459.  
  460. [color=#A23BEC]< %systemroot%\Driver Cache\*.* >[/color]
  461.  
  462. [color=#A23BEC]< %PROGRAMFILES%\Mozilla Firefox\0*.exe >[/color]
  463.  
  464. [color=#A23BEC]< %ProgramFiles%\Microsoft Common\*.* >[/color]
  465.  
  466. [color=#A23BEC]< %ProgramFiles%\TinyProxy. >[/color]
  467.  
  468. [color=#A23BEC]< %USERPROFILE%\Favorites\*.url /x >[/color]
  469. [2010.05.28 06:45:22 | 000,000,402 | -HS- | M] () -- C:\Users\Feliks\Favorites\desktop.ini
  470.  
  471. [color=#A23BEC]< %systemroot%\System32\Wbem\*.exe >[/color]
  472. [2009.07.14 02:14:24 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\mofcomp.exe
  473. [2009.07.14 02:14:35 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\scrcons.exe
  474. [2009.07.14 02:14:43 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\unsecapp.exe
  475. [2009.07.14 02:14:44 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\wbemtest.exe
  476. [2009.07.14 02:14:45 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\WinMgmt.exe
  477. [2009.07.14 02:14:46 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\WMIADAP.exe
  478. [2009.07.14 02:14:46 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\WmiApSrv.exe
  479. [2009.07.14 02:14:46 | 000,395,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\WMIC.exe
  480. [2009.07.14 02:14:47 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wbem\WmiPrvSE.exe
  481.  
  482. [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >[/color]
  483.  
  484. [color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color]
  485.  
  486. [color=#E56717]========== Files - Unicode (All) ==========[/color]
  487. [2010.10.28 13:18:23 | 000,000,000 | ---D | M](C:\Users\Feliks\Favorites\??posložene zabilješke) -- C:\Users\Feliks\Favorites\⯠ijposložene zabilješke
  488.  
  489. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!