API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Apr 23rd, 2014
158
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 68.38 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 23.4.2014. 19:22:13 - Run 1
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\korisnik\Desktop
  3. 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.11.9600.17041)
  5. Locale: 0000041a | Country: Hrvatska | Language: HRV | Date Format: d.M.yyyy.
  6.  
  7. 3,90 Gb Total Physical Memory | 1,58 Gb Available Physical Memory | 40,54% Memory free
  8. 7,80 Gb Paging File | 4,67 Gb Available in Paging File | 59,90% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 465,54 Gb Total Space | 370,34 Gb Free Space | 79,55% Space Free | Partition Type: NTFS
  13.  
  14. Computer Name: LENOVO | User Name: korisnik | Logged in as Administrator.
  15. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
  16. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
  17.  
  18. [color=#E56717]========== Processes (SafeList) ==========[/color]
  19.  
  20. PRC - [2014.04.23 19:19:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\korisnik\Desktop\OTL.exe
  21. PRC - [2014.04.23 19:02:20 | 000,350,496 | ---- | M] () -- C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe
  22. PRC - [2014.04.19 03:45:44 | 000,350,496 | ---- | M] () -- C:\Program Files (x86)\Surftastic\updateSurftastic.exe
  23. PRC - [2014.04.17 19:55:16 | 000,070,848 | ---- | M] () -- C:\Program Files (x86)\Mobogenie\MgAssist.exe
  24. PRC - [2014.04.07 19:12:28 | 004,162,032 | ---- | M] (Softonic) -- C:\Users\korisnik\AppData\Local\Softonic\Softonic.exe
  25. PRC - [2014.04.04 08:34:52 | 005,679,008 | ---- | M] (SkypEmoticons) -- C:\Users\korisnik\AppData\Roaming\SkypEmoticons\SE.exe
  26. PRC - [2014.04.02 03:58:05 | 000,841,032 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  27. PRC - [2014.03.16 23:32:41 | 000,764,096 | ---- | M] () -- C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
  28. PRC - [2014.02.10 04:31:16 | 002,552,856 | ---- | M] () -- C:\Program Files (x86)\AVG Nation toolbar\vprot.exe
  29. PRC - [2014.01.21 01:43:02 | 004,411,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe
  30. PRC - [2014.01.14 02:07:12 | 001,214,472 | ---- | M] (TorchMedia Inc.) -- C:\Users\korisnik\AppData\Local\Torch\Update\TorchCrashHandler.exe
  31. PRC - [2014.01.07 21:31:38 | 001,770,312 | ---- | M] (AVG Secure Search) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe
  32. PRC - [2014.01.07 21:31:38 | 000,158,536 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\loggingserver.exe
  33. PRC - [2014.01.03 02:46:10 | 030,714,328 | ---- | M] (Dropbox, Inc.) -- C:\Users\korisnik\AppData\Roaming\Dropbox\bin\Dropbox.exe
  34. PRC - [2013.12.20 05:24:44 | 000,574,464 | ---- | M] () -- C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe
  35. PRC - [2013.12.09 00:04:27 | 000,107,520 | ---- | M] () -- C:\Users\korisnik\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe
  36. PRC - [2013.11.20 02:54:20 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
  37. PRC - [2013.10.02 10:31:20 | 000,659,456 | ---- | M] (PC Utilities Software Limited) -- C:\Program Files (x86)\LiveSupport\LiveSupport.exe
  38. PRC - [2013.08.17 00:02:08 | 000,186,136 | ---- | M] (TMRG, Inc.) -- C:\Program Files (x86)\RelevantKnowledge\rlservice.exe
  39. PRC - [2013.08.17 00:02:08 | 000,157,464 | ---- | M] (TMRG, Inc.) -- C:\PROGRA~2\RELEVA~1\rlvknlg32.exe
  40. PRC - [2013.08.17 00:02:07 | 003,502,360 | ---- | M] (TMRG, Inc.) -- C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe
  41. PRC - [2013.07.04 15:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
  42. PRC - [2013.07.02 10:16:32 | 000,507,264 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
  43. PRC - [2013.06.24 15:31:06 | 031,020,056 | ---- | M] (iMesh, Inc) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe
  44. PRC - [2013.06.13 11:17:51 | 004,150,112 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
  45. PRC - [2013.05.31 12:42:12 | 002,251,128 | ---- | M] (IVONA Software Sp. z o.o.) -- C:\Program Files (x86)\IVONA\IVONA ControlCenter\IVONA ControlCenter.exe
  46. PRC - [2013.05.11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
  47. PRC - [2012.05.21 09:26:28 | 000,291,648 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
  48. PRC - [2012.02.29 03:20:04 | 000,363,800 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
  49. PRC - [2012.02.29 03:19:58 | 000,277,784 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  50. PRC - [2012.02.29 03:19:48 | 000,161,560 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  51. PRC - [2011.12.09 15:45:00 | 000,548,864 | ---- | M] (Vimicro) -- C:\Program Files (x86)\USB Camera2\VM332_STI.EXE
  52. PRC - [2011.11.29 20:04:56 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
  53. PRC - [2011.11.29 20:04:54 | 000,284,440 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
  54. PRC - [2011.08.25 20:43:44 | 000,337,776 | ---- | M] ( ) -- C:\Program Files (x86)\LockKey\LockKey.exe
  55. PRC - [2009.12.03 10:12:12 | 000,976,320 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
  56. PRC - [2009.05.14 17:07:14 | 000,759,048 | ---- | M] (ABBYY) -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
  57. PRC - [2007.01.01 23:22:02 | 003,739,648 | ---- | M] (Google) -- C:\Program Files (x86)\Google\Google Talk\googletalk.exe
  58.  
  59.  
  60. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  61.  
  62. MOD - [2014.04.17 19:55:16 | 000,474,816 | ---- | M] () -- C:\Program Files (x86)\Mobogenie\DCR.dll
  63. MOD - [2014.04.02 03:58:03 | 000,390,472 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll
  64. MOD - [2014.04.02 03:58:02 | 013,691,720 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\PepperFlash\pepflashplayer.dll
  65. MOD - [2014.04.02 03:57:59 | 004,081,480 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\pdf.dll
  66. MOD - [2014.04.02 03:57:54 | 000,674,632 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\libglesv2.dll
  67. MOD - [2014.04.02 03:57:53 | 000,093,000 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\libegl.dll
  68. MOD - [2014.04.02 03:57:52 | 001,647,432 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ffmpegsumo.dll
  69. MOD - [2014.04.02 03:57:49 | 000,065,352 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\chrome_elf.dll
  70. MOD - [2014.03.16 23:32:41 | 000,764,096 | ---- | M] () -- C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
  71. MOD - [2014.03.16 23:32:41 | 000,065,728 | ---- | M] () -- C:\Program Files (x86)\Mobogenie\Device.dll
  72. MOD - [2014.02.22 13:14:48 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\41e17b085a438c68c82e433fa8d91fac\IAStorCommon.ni.dll
  73. MOD - [2014.02.22 13:14:47 | 000,487,424 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\8055fc1bec6b39e5e2e98865ae64e898\IAStorUtil.ni.dll
  74. MOD - [2014.02.15 18:03:10 | 011,922,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\4b1795df6372b251625f958595e08d3d\System.Web.ni.dll
  75. MOD - [2014.02.15 18:03:01 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\59312674865dc2a19c27f9f460b1673b\System.Runtime.Remoting.ni.dll
  76. MOD - [2014.02.15 18:02:26 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\8bc548587e91ecf0552a40e47bbf99cc\System.Windows.Forms.ni.dll
  77. MOD - [2014.02.15 18:02:19 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5c24d3b0041ebf4f48a93615b9fa3de9\System.Drawing.ni.dll
  78. MOD - [2014.02.15 18:02:04 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1d696b2d3de530f7ee971070263667ff\WindowsBase.ni.dll
  79. MOD - [2014.02.15 18:01:55 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\217ece46920546d718414291d463bb1c\System.Xml.ni.dll
  80. MOD - [2014.02.15 18:01:46 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\5b6ddf934128d538cd5cd77bf4209b93\System.Configuration.ni.dll
  81. MOD - [2014.02.15 18:01:43 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll
  82. MOD - [2014.02.15 18:01:29 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll
  83. MOD - [2014.02.10 04:31:16 | 002,552,856 | ---- | M] () -- C:\Program Files (x86)\AVG Nation toolbar\vprot.exe
  84. MOD - [2014.01.07 21:31:38 | 000,518,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\log4cplusU.dll
  85. MOD - [2014.01.03 02:45:04 | 003,558,400 | ---- | M] () -- C:\Users\korisnik\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
  86. MOD - [2013.10.22 11:28:52 | 026,052,096 | ---- | M] () -- C:\Users\korisnik\AppData\Local\Softonic\libcef.dll
  87. MOD - [2013.10.22 11:28:52 | 000,739,840 | ---- | M] () -- C:\Users\korisnik\AppData\Local\Softonic\libglesv2.dll
  88. MOD - [2013.10.22 11:28:52 | 000,130,048 | ---- | M] () -- C:\Users\korisnik\AppData\Local\Softonic\libegl.dll
  89. MOD - [2013.10.19 01:55:02 | 025,100,288 | ---- | M] () -- C:\Users\korisnik\AppData\Roaming\Dropbox\bin\libcef.dll
  90. MOD - [2013.06.24 15:31:25 | 000,033,304 | ---- | M] () -- C:\Program Files (x86)\iMesh Applications\iMesh\avutil-49.dll
  91. MOD - [2013.06.24 15:31:24 | 000,447,512 | ---- | M] () -- C:\Program Files (x86)\iMesh Applications\iMesh\avformat-51.dll
  92. MOD - [2013.06.24 15:31:20 | 003,218,968 | ---- | M] () -- C:\Program Files (x86)\iMesh Applications\iMesh\avcodec-51.dll
  93. MOD - [2013.06.24 15:31:20 | 000,156,184 | ---- | M] () -- C:\Program Files (x86)\iMesh Applications\iMesh\ammp3.dll
  94. MOD - [2013.06.24 15:31:15 | 001,537,560 | ---- | M] () -- C:\Program Files (x86)\iMesh Applications\iMesh\nickel.ocx
  95. MOD - [2012.06.28 12:09:06 | 000,076,800 | ---- | M] () -- C:\Users\korisnik\AppData\Local\Softonic\CrashRpt1300.dll
  96. MOD - [2011.03.18 13:01:08 | 000,026,624 | ---- | M] () -- C:\Users\korisnik\AppData\Local\Softonic\imageformats\qgif4.dll
  97. MOD - [2011.03.09 18:59:22 | 008,011,264 | ---- | M] () -- C:\Users\korisnik\AppData\Local\Softonic\QtGui4.dll
  98. MOD - [2011.03.09 18:59:22 | 002,238,464 | ---- | M] () -- C:\Users\korisnik\AppData\Local\Softonic\QtCore4.dll
  99.  
  100.  
  101. [color=#E56717]========== Services (SafeList) ==========[/color]
  102.  
  103. SRV:[b]64bit:[/b] - [2014.03.06 10:29:14 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
  104. SRV:[b]64bit:[/b] - [2013.05.27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
  105. SRV:[b]64bit:[/b] - [2012.02.02 22:29:52 | 000,628,448 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
  106. SRV:[b]64bit:[/b] - [2009.09.14 07:00:00 | 000,166,400 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE -- (EPSON_EB_RPCV4_04)
  107. SRV:[b]64bit:[/b] - [2009.09.14 07:00:00 | 000,128,512 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE -- (EPSON_PM_RPCV4_04)
  108. SRV:[b]64bit:[/b] - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
  109. SRV - [2014.04.23 19:02:20 | 000,350,496 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Surftastic\bin\utilSurftastic.exe -- (Util Surftastic)
  110. SRV - [2014.04.19 03:45:44 | 000,350,496 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Surftastic\updateSurftastic.exe -- (Update Surftastic)
  111. SRV - [2014.04.17 19:55:16 | 000,070,848 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Mobogenie\MgAssist.exe -- (MgAssistService)
  112. SRV - [2014.01.14 02:07:12 | 001,214,472 | ---- | M] (TorchMedia Inc.) [Auto | Running] -- C:\Users\korisnik\AppData\Local\Torch\Update\TorchCrashHandler.exe -- (TorchCrashHandler)
  113. SRV - [2014.01.07 21:31:38 | 001,770,312 | ---- | M] (AVG Secure Search) [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe -- (vToolbarUpdater17.3.0)
  114. SRV - [2013.12.20 05:24:44 | 000,574,464 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe -- (DefaultTabSearch)
  115. SRV - [2013.12.09 00:04:27 | 000,107,520 | ---- | M] () [Auto | Running] -- C:\Users\korisnik\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe -- (DefaultTabUpdate)
  116. SRV - [2013.11.20 02:54:20 | 000,283,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe -- (avgwd)
  117. SRV - [2013.08.17 00:02:08 | 000,186,136 | ---- | M] (TMRG, Inc.) [Auto | Running] -- C:\Program Files (x86)\RelevantKnowledge\rlservice.exe -- (RelevantKnowledge)
  118. SRV - [2013.07.04 15:53:10 | 004,939,312 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe -- (AVGIDSAgent)
  119. SRV - [2013.06.13 11:17:51 | 004,150,112 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
  120. SRV - [2013.05.12 00:26:17 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  121. SRV - [2013.05.11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
  122. SRV - [2012.12.14 02:42:10 | 000,277,616 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
  123. SRV - [2012.02.29 03:20:04 | 000,363,800 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
  124. SRV - [2012.02.29 03:19:58 | 000,277,784 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
  125. SRV - [2012.02.29 03:19:48 | 000,161,560 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
  126. SRV - [2011.11.29 20:04:56 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
  127. SRV - [2010.03.18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
  128. SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
  129. SRV - [2009.05.14 17:07:14 | 000,759,048 | ---- | M] (ABBYY) [Auto | Running] -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Sprint.9.0)
  130.  
  131.  
  132. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  133.  
  134. DRV:[b]64bit:[/b] - [2014.04.15 13:35:26 | 000,240,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
  135. DRV:[b]64bit:[/b] - [2014.03.22 11:27:03 | 000,061,120 | ---- | M] (StdLib) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\wStLib64.sys -- (wStLib64)
  136. DRV:[b]64bit:[/b] - [2013.11.25 02:48:36 | 000,246,072 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
  137. DRV:[b]64bit:[/b] - [2013.10.23 02:05:08 | 000,045,880 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
  138. DRV:[b]64bit:[/b] - [2013.10.02 11:06:16 | 000,046,368 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtpx64.sys -- (avgtp)
  139. DRV:[b]64bit:[/b] - [2013.07.20 01:51:00 | 000,311,608 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
  140. DRV:[b]64bit:[/b] - [2013.07.20 01:50:56 | 000,071,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
  141. DRV:[b]64bit:[/b] - [2013.07.20 01:50:50 | 000,206,648 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
  142. DRV:[b]64bit:[/b] - [2013.07.01 01:45:28 | 000,116,536 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
  143. DRV:[b]64bit:[/b] - [2013.06.18 20:03:53 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
  144. DRV:[b]64bit:[/b] - [2013.06.18 20:03:53 | 000,030,816 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
  145. DRV:[b]64bit:[/b] - [2012.12.14 02:42:22 | 005,353,888 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
  146. DRV:[b]64bit:[/b] - [2012.08.23 16:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
  147. DRV:[b]64bit:[/b] - [2012.08.23 16:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
  148. DRV:[b]64bit:[/b] - [2012.08.23 16:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
  149. DRV:[b]64bit:[/b] - [2012.07.17 18:12:08 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
  150. DRV:[b]64bit:[/b] - [2012.05.31 17:06:50 | 002,811,904 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
  151. DRV:[b]64bit:[/b] - [2012.05.21 09:25:32 | 000,789,824 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
  152. DRV:[b]64bit:[/b] - [2012.05.21 09:25:32 | 000,357,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
  153. DRV:[b]64bit:[/b] - [2012.05.21 09:25:32 | 000,019,264 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
  154. DRV:[b]64bit:[/b] - [2012.03.02 12:49:20 | 000,104,048 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
  155. DRV:[b]64bit:[/b] - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
  156. DRV:[b]64bit:[/b] - [2012.02.06 10:31:00 | 000,958,800 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vm332avs.sys -- (vm332avs)
  157. DRV:[b]64bit:[/b] - [2012.01.31 07:17:44 | 001,601,152 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
  158. DRV:[b]64bit:[/b] - [2011.12.06 13:23:10 | 000,331,264 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
  159. DRV:[b]64bit:[/b] - [2011.11.29 19:40:32 | 000,568,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
  160. DRV:[b]64bit:[/b] - [2011.11.15 12:24:20 | 000,313,960 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rtsuvstor.sys -- (RSUSBVSTOR)
  161. DRV:[b]64bit:[/b] - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
  162. DRV:[b]64bit:[/b] - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
  163. DRV:[b]64bit:[/b] - [2010.11.21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
  164. DRV:[b]64bit:[/b] - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
  165. DRV:[b]64bit:[/b] - [2009.07.21 14:20:06 | 000,121,840 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
  166. DRV:[b]64bit:[/b] - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
  167. DRV:[b]64bit:[/b] - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
  168. DRV:[b]64bit:[/b] - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
  169. DRV:[b]64bit:[/b] - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
  170. DRV:[b]64bit:[/b] - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
  171. DRV:[b]64bit:[/b] - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
  172. DRV:[b]64bit:[/b] - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
  173. DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
  174.  
  175.  
  176. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  177.  
  178.  
  179. [color=#E56717]========== Internet Explorer ==========[/color]
  180.  
  181. IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  182. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  183. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001}: "URL" = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=393&systemid=1&v=a11465-122&apn_uid=4366492900054030&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
  184. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  185. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  186. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  187. IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001}: "URL" = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=393&systemid=1&v=a11465-122&apn_uid=4366492900054030&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
  188.  
  189. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_ss&mntrId=78152CD05AB961C9&affID=128492&tsp=5200
  190. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
  191. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = hr
  192. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F8 5A C1 F7 1D 6C CE 01 [binary data]
  193. IE - HKCU\..\SearchScopes,DefaultScope = Software\Microsoft\Internet Explorer\SearchScopes
  194. IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
  195. IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=78152CD05AB961C9&affID=128492&tsp=5200
  196. IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://avg.nation.com/avgtbavg/search/web?cid={F71DF876-CB4C-45C6-BE5A-81913770FE83}&mid=ebd71fb2ce2e47d3831df1c0c26ef62f-6fd6ecef029c1d1e2c582459213a646545800b81&lang=en&ds=AVG&coid=avgtbavg&pr=fr&d=2013-09-28 12:57:46&v=17.0.1.12&pid=nation&sg=0&sap=dsp&q={searchTerms}&cmpid=0913b
  197. IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001}: "URL" = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=393&systemid=1&v=a11465-122&apn_uid=4366492900054030&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
  198. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  199.  
  200. [color=#E56717]========== FireFox ==========[/color]
  201.  
  202. FF - prefs.js..browser.startup.homepage: "http://www.buenosearch.com/?babsrc=HP_ss&mntrId=78152CD05AB961C9&affID=128492&tsp=5200"
  203.  
  204.  
  205. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\system32\npDeployJava1.dll File not found
  206. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  207. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  208. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
  209. FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
  210. FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.3.0\\npsitesafety.dll ()
  211. FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
  212. FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
  213. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
  214. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
  215. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
  216. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  217. FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  218. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
  219. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
  220. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
  221. FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.7: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
  222. FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
  223. FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\korisnik\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
  224. FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\korisnik\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
  225.  
  226. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@MediaViewV1alpha8063.net: C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha8063\ff [2014.03.16 23:28:23 | 000,000,000 | ---D | M]
  227. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ext@MediaWatchV1home3895.net: C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3895\ff [2014.03.23 16:50:16 | 000,000,000 | ---D | M]
  228. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
  229. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
  230. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.6\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013.06.18 14:33:46 | 000,000,000 | ---D | M]
  231. FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.6\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
  232.  
  233. [2013.06.20 14:21:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\korisnik\AppData\Roaming\mozilla\Extensions
  234. [2014.03.28 22:33:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\korisnik\AppData\Roaming\mozilla\Firefox\Profiles\lfb11uoq.default\extensions
  235. [2014.03.28 22:33:26 | 000,000,000 | ---D | M] (BuenoSearch) -- C:\Users\korisnik\AppData\Roaming\mozilla\Firefox\Profiles\lfb11uoq.default\extensions\ffxtlbr@buenosearch.com
  236. [2014.03.28 22:33:26 | 000,006,226 | ---- | M] () -- C:\Users\korisnik\AppData\Roaming\mozilla\firefox\profiles\lfb11uoq.default\searchplugins\buenosearch.xml
  237. [2013.06.18 14:20:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
  238. [2013.06.18 14:20:35 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  239. [2014.03.23 16:50:16 | 000,000,000 | ---D | M] (Media Watch) -- C:\PROGRAM FILES (X86)\MEDIAWATCHV1\MEDIAWATCHV1HOME3895\FF
  240.  
  241. [color=#E56717]========== Chrome ==========[/color]
  242.  
  243. CHR - default_search_provider: Google (Enabled)
  244. CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
  245. CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
  246. CHR - homepage: http://www.buenosearch.com/?babsrc=HP_ss&mntrId=78152CD05AB961C9&affID=128492&tsp=5200
  247. CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\PepperFlash\pepflashplayer.dll
  248. CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
  249. CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll
  250. CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.116\pdf.dll
  251. CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
  252. CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll
  253. CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll
  254. CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll
  255. CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll
  256. CHR - plugin: QuickTime Plug-in 7.7.4 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll
  257. CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
  258. CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
  259. CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
  260. CHR - plugin: Intel® Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
  261. CHR - plugin: Intel® Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
  262. CHR - plugin: Java(TM) Platform SE 7 U21 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
  263. CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
  264. CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll
  265. CHR - plugin: Java Deployment Toolkit 7.0.210.11 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
  266. CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
  267. CHR - Extension: Google Docs = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
  268. CHR - Extension: Google disk = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
  269. CHR - Extension: YouTube = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
  270. CHR - Extension: Google pretraživanje = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
  271. CHR - Extension: Beach in the Maldives = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddicfadfciaeikknlkcldgockejldhek\1_0\
  272. CHR - Extension: Media Watch = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcmcjfkhjgkemgldpkhidmhibgffjlfh\1.1_0\
  273. CHR - Extension: VideoDownloadConverter = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\hefdopkjddeacfpjlhnnikdibknmdepg\8.22.3.42825_0\
  274. CHR - Extension: Media View = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\icfoldoakbikgbjfjhaobcdnnmihhedn\1.1_0\
  275. CHR - Extension: DefaultTab = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\2.0.9_0\
  276. CHR - Extension: Vaudiix = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkgjfagaabipdlhleheddgeghhhfkphe\1.3\
  277. CHR - Extension: SearchNewTab = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgdmcjflggcmbnmhhohacdhiefkabnne\1.0\
  278. CHR - Extension: Allin1Convert = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlmkmibflpaljkoooahfipdfhgpaoddh\8.22.3.46645_0\
  279. CHR - Extension: Google Novčanik = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
  280. CHR - Extension: Gmail = C:\Users\korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
  281.  
  282. O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
  283. O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
  284. O2:[b]64bit:[/b] - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
  285. O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  286. O2 - BHO: (Media Watch) - {37d51671-9630-411f-9d05-86aff6c9b3c9} - C:\Program Files (x86)\MediaWatchV1\MediaWatchV1home3895\ie\MediaWatchV1home3895.dll ()
  287. O2 - BHO: (Music Box Toolbar (Dist. by iMesh, Inc.)) - {45177936-603b-4261-8d42-df6f7091d5d0} - C:\PROGRA~2\MUSICT~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll File not found
  288. O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office12\GR469A~1.DLL (Microsoft Corporation)
  289. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
  290. O2 - BHO: (DefaultTab Browser Helper) - {7F6AFBF1-E065-4627-A2FD-810366367D01} - C:\Users\korisnik\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll (Search Results LLC.)
  291. O2 - BHO: (IVONA Reader) - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2.dll (IVONA Software Sp. z o.o.)
  292. O2 - BHO: (AVG Nation toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Nation toolbar\17.3.0.49\AVG Nation toolbar_toolbar.dll (AVG Secure Search)
  293. O2 - BHO: (Media View) - {d2c7bccd-d833-451c-8286-ad545d0263c2} - C:\Program Files (x86)\MediaViewV1\MediaViewV1alpha8063\ie\MediaViewV1alpha8063.dll ()
  294. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  295. O2 - BHO: (buenosearch Helper Object) - {F1C81E40-2485-4DB6-8C9D-04BD596B281E} - C:\Program Files (x86)\buenosearch LTD\buenosearch\1.8.28.7\bh\buenosearch.dll (Montiera Technologies LTD)
  296. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
  297. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
  298. O3 - HKLM\..\Toolbar: (Music Box Toolbar (Dist. by iMesh, Inc.)) - {45177936-603b-4261-8d42-df6f7091d5d0} - C:\PROGRA~2\MUSICT~1\Datamngr\SRTOOL~1\IE\searchresultsDx.dll File not found
  299. O3 - HKLM\..\Toolbar: (buenosearch Toolbar) - {828DC97A-2277-4E10-92A9-4907FA0922A9} - C:\Program Files (x86)\buenosearch LTD\buenosearch\1.8.28.7\buenosearchTlbr.dll (Montiera Technologies LTD)
  300. O3 - HKLM\..\Toolbar: (IVONA Reader) - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2.dll (IVONA Software Sp. z o.o.)
  301. O3 - HKLM\..\Toolbar: (AVG Nation toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Nation toolbar\17.3.0.49\AVG Nation toolbar_toolbar.dll (AVG Secure Search)
  302. O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
  303. O4:[b]64bit:[/b] - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
  304. O4:[b]64bit:[/b] - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe (Lenovo(beijing) Limited)
  305. O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
  306. O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
  307. O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
  308. O4:[b]64bit:[/b] - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
  309. O4 - HKLM..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332_STI.EXE (Vimicro)
  310. O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
  311. O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2013\avgui.exe (AVG Technologies CZ, s.r.o.)
  312. O4 - HKLM..\Run: [Dolby Advanced Audio v2] C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe (Dolby Laboratories Inc.)
  313. O4 - HKLM..\Run: [EEventManager] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
  314. O4 - HKLM..\Run: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe (Google)
  315. O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
  316. O4 - HKLM..\Run: [LockKey] C:\Program Files (x86)\LockKey\LockKey.exe ( )
  317. O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe ()
  318. O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
  319. O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
  320. O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Nation toolbar\vprot.exe ()
  321. O4 - HKCU..\Run: [AVG-Secure-Search-Update_0913b] C:\Users\korisnik\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid ebd71fb2ce2e47d3831df1c0c26ef62f-6fd6ecef029c1d1e2c582459213a646545800b81 --CMPID 0913b File not found
  322. O4 - HKCU..\Run: [EPSON SX125 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGGE.EXE /FU "C:\Windows\TEMP\E_SF20B.tmp" /EF "HKCU" File not found
  323. O4 - HKCU..\Run: [Facebook Update] C:\Users\korisnik\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
  324. O4 - HKCU..\Run: [iMesh] C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe (iMesh, Inc)
  325. O4 - HKCU..\Run: [IVONA ControlCenter] C:\Program Files (x86)\IVONA\IVONA ControlCenter\IVONA ControlCenter.exe (IVONA Software Sp. z o.o.)
  326. O4 - HKCU..\Run: [IVONA Reader] C:\Program Files (x86)\IVONA\IVONA Reader\IVONA Reader.exe (IVONA Software Sp. z o.o.)
  327. O4 - HKCU..\Run: [LiveSupport] C:\Program Files (x86)\LiveSupport\LiveSupport.exe (PC Utilities Software Limited)
  328. O4 - HKCU..\Run: [se] C:\Users\korisnik\AppData\Roaming\SkypEmoticons\SE.exe (SkypEmoticons)
  329. O4 - HKCU..\Run: [Softonic for Windows] C:\Users\korisnik\AppData\Local\Softonic\Softonic.exe (Softonic)
  330. O4 - Startup: C:\Users\korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\korisnik\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
  331. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  332. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
  333. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
  334. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  335. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
  336. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
  337. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
  338. O8:[b]64bit:[/b] - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
  339. O8:[b]64bit:[/b] - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 File not found
  340. O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
  341. O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 File not found
  342. O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
  343. O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
  344. O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
  345. O13[b]64bit:[/b] - gopher Prefix: missing
  346. O13 - gopher Prefix: missing
  347. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
  348. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{932AD439-5815-41E8-98F5-42EC5B0601E1}: DhcpNameServer = 192.168.1.1
  349. O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found
  350. O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
  351. O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
  352. O18:[b]64bit:[/b] - Protocol\Handler\viprotocol - No CLSID value found
  353. O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~2\Office12\GRA32A~1.DLL (Microsoft Corporation)
  354. O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
  355. O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.3.0\ViProtocol.dll (AVG Secure Search)
  356. O18:[b]64bit:[/b] - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
  357. O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
  358. O20:[b]64bit:[/b] - AppInit_DLLs: (C:\PROGRA~3\Wincert\WIN64C~1.DLL) - C:\ProgramData\Wincert\win64cert.dll ()
  359. O20:[b]64bit:[/b] - AppInit_DLLs: (C:\PROGRA~2\MUSICT~1\Datamngr\x64\mgrldr.dll) - File not found
  360. O20 - AppInit_DLLs: (C:\PROGRA~3\Wincert\WIN32C~1.DLL) - C:\ProgramData\Wincert\win32cert.dll ()
  361. O20 - AppInit_DLLs: (C:\PROGRA~2\MUSICT~1\Datamngr\mgrldr.dll) - File not found
  362. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  363. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  364. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  365. O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
  366. O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
  367. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  368. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  369. O27:[b]64bit:[/b] - HKLM IFEO\bitguard.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  370. O27:[b]64bit:[/b] - HKLM IFEO\bprotect.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  371. O27:[b]64bit:[/b] - HKLM IFEO\bpsvc.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  372. O27:[b]64bit:[/b] - HKLM IFEO\browsemngr.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  373. O27:[b]64bit:[/b] - HKLM IFEO\browserdefender.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  374. O27:[b]64bit:[/b] - HKLM IFEO\browsermngr.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  375. O27:[b]64bit:[/b] - HKLM IFEO\browserprotect.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  376. O27:[b]64bit:[/b] - HKLM IFEO\browsersafeguard.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  377. O27:[b]64bit:[/b] - HKLM IFEO\bundlesweetimsetup.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  378. O27:[b]64bit:[/b] - HKLM IFEO\cltmngsvc.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  379. O27:[b]64bit:[/b] - HKLM IFEO\delta babylon.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  380. O27:[b]64bit:[/b] - HKLM IFEO\delta tb.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  381. O27:[b]64bit:[/b] - HKLM IFEO\delta2.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  382. O27:[b]64bit:[/b] - HKLM IFEO\deltainstaller.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  383. O27:[b]64bit:[/b] - HKLM IFEO\deltasetup.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  384. O27:[b]64bit:[/b] - HKLM IFEO\deltatb.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  385. O27:[b]64bit:[/b] - HKLM IFEO\deltatb_2501-c733154b.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  386. O27:[b]64bit:[/b] - HKLM IFEO\dprotectsvc.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  387. O27:[b]64bit:[/b] - HKLM IFEO\iminentsetup.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  388. O27:[b]64bit:[/b] - HKLM IFEO\protectedsearch.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  389. O27:[b]64bit:[/b] - HKLM IFEO\rjatydimofu.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  390. O27:[b]64bit:[/b] - HKLM IFEO\searchprotection.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  391. O27:[b]64bit:[/b] - HKLM IFEO\searchprotector.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  392. O27:[b]64bit:[/b] - HKLM IFEO\snapdo.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  393. O27:[b]64bit:[/b] - HKLM IFEO\stinst32.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  394. O27:[b]64bit:[/b] - HKLM IFEO\stinst64.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  395. O27:[b]64bit:[/b] - HKLM IFEO\sweetimsetup.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  396. O27:[b]64bit:[/b] - HKLM IFEO\tbdelta.exetoolbar783881609.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  397. O27:[b]64bit:[/b] - HKLM IFEO\utiljumpflip.exe: Debugger - C:\Windows\SysNative\tasklist.exe (Microsoft Corporation)
  398. O27 - HKLM IFEO\bitguard.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  399. O27 - HKLM IFEO\bprotect.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  400. O27 - HKLM IFEO\bpsvc.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  401. O27 - HKLM IFEO\browsemngr.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  402. O27 - HKLM IFEO\browserdefender.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  403. O27 - HKLM IFEO\browsermngr.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  404. O27 - HKLM IFEO\browserprotect.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  405. O27 - HKLM IFEO\browsersafeguard.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  406. O27 - HKLM IFEO\bundlesweetimsetup.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  407. O27 - HKLM IFEO\cltmngsvc.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  408. O27 - HKLM IFEO\delta babylon.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  409. O27 - HKLM IFEO\delta tb.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  410. O27 - HKLM IFEO\delta2.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  411. O27 - HKLM IFEO\deltainstaller.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  412. O27 - HKLM IFEO\deltasetup.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  413. O27 - HKLM IFEO\deltatb.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  414. O27 - HKLM IFEO\deltatb_2501-c733154b.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  415. O27 - HKLM IFEO\dprotectsvc.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  416. O27 - HKLM IFEO\iminentsetup.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  417. O27 - HKLM IFEO\protectedsearch.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  418. O27 - HKLM IFEO\rjatydimofu.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  419. O27 - HKLM IFEO\searchprotection.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  420. O27 - HKLM IFEO\searchprotector.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  421. O27 - HKLM IFEO\snapdo.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  422. O27 - HKLM IFEO\stinst32.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  423. O27 - HKLM IFEO\stinst64.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  424. O27 - HKLM IFEO\sweetimsetup.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  425. O27 - HKLM IFEO\tbdelta.exetoolbar783881609.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  426. O27 - HKLM IFEO\utiljumpflip.exe: Debugger - C:\Windows\SysWow64\tasklist.exe (Microsoft Corporation)
  427. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~2\Office12\GR469A~1.DLL (Microsoft Corporation)
  428. O32 - HKLM CDRom: AutoRun - 1
  429. O34 - HKLM BootExecute: (autocheck autochk *)
  430. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  431. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  432. O35 - HKLM\..comfile [open] -- "%1" %*
  433. O35 - HKLM\..exefile [open] -- "%1" %*
  434. O36 - AppCertDlls: x64 - (C:\Program Files (x86)\Music Toolbar\Datamngr\x64\apcrtldr.dll) - File not found
  435. O36 - AppCertDlls: x86 - (C:\Program Files (x86)\Music Toolbar\Datamngr\apcrtldr.dll) - File not found
  436. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  437. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  438. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  439. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  440. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  441. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  442. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  443.  
  444. NetSvcs:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
  445.  
  446. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  447.  
  448. [2014.04.23 19:19:49 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\korisnik\Desktop\OTL.exe
  449. [2014.04.23 19:00:31 | 000,000,000 | ---D | C] -- C:\ProgramData\1F11B
  450. [2014.04.21 22:30:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
  451. [2014.04.18 20:44:35 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Roaming\Xilisoft
  452. [2014.04.18 20:43:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft
  453. [2014.04.18 20:42:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Xilisoft
  454. [2014.04.18 20:42:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xilisoft
  455. [2014.04.18 00:00:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
  456. [2014.04.16 21:54:53 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Softonic
  457. [2014.04.15 23:47:24 | 000,000,000 | ---D | C] -- C:\ProgramData\18237
  458. [2014.04.15 13:35:26 | 000,240,952 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgtdia.sys
  459. [2014.04.08 23:19:49 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Local\Temporary Projects
  460. [2014.04.05 23:29:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
  461. [2014.04.05 14:45:10 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Roaming\ViberPC
  462. [2014.04.05 14:43:56 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Local\Viber
  463. [2014.03.31 23:30:05 | 000,859,416 | ---- | C] (TMRG, Inc.) -- C:\Windows\SysNative\rlls64.dll
  464. [2014.03.31 23:30:05 | 000,593,688 | ---- | C] (TMRG, Inc.) -- C:\Windows\SysWow64\rlls.dll
  465. [2014.03.31 12:45:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RelevantKnowledge
  466. [2014.03.31 12:44:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoMedia
  467. [2014.03.31 12:44:26 | 000,000,000 | ---D | C] -- C:\Program Files\DVDVideoMedia
  468. [2014.03.31 11:49:00 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Roaming\IrfanView
  469. [2014.03.31 11:47:15 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Roaming\InfraRecorder
  470. [2014.03.31 11:39:29 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Local\CrashRpt
  471. [2014.03.31 11:39:19 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Local\Softonic
  472. [2014.03.31 11:37:29 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
  473. [2014.03.31 11:37:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
  474. [2014.03.31 11:37:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AviSynth 2.5
  475. [2014.03.31 11:37:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AML Products
  476. [2014.03.28 23:28:53 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Roaming\Publish Providers
  477. [2014.03.28 22:33:31 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Roaming\BabSolution
  478. [2014.03.28 22:33:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\buenosearch LTD
  479. [2014.03.28 22:33:24 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Roaming\buenosearch LTD
  480. [2014.03.28 22:32:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
  481. [2014.03.28 22:32:00 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Local\Sony
  482. [2014.03.28 22:32:00 | 000,000,000 | ---D | C] -- C:\Program Files\Sony
  483. [2014.03.28 22:32:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sony
  484. [2014.03.28 22:31:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony
  485. [2014.03.28 22:30:53 | 000,000,000 | ---D | C] -- C:\Users\korisnik\AppData\Roaming\Sony
  486. [2014.03.28 22:19:02 | 243,071,608 | ---- | C] (Sony Creative Software Inc.) -- C:\Users\korisnik\Desktop\vegaspro12-0-770.exe
  487. [2005.08.29 21:54:10 | 001,454,080 | ---- | C] (Silicon Valley Software) -- C:\Users\korisnik\Anim8or.exe
  488. [4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
  489.  
  490. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  491.  
  492. [2014.04.23 19:19:35 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  493. [2014.04.23 19:19:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\korisnik\Desktop\OTL.exe
  494. [2014.04.23 18:59:36 | 000,000,368 | ---- | M] () -- C:\Windows\tasks\AmiUpdXp.job
  495. [2014.04.23 18:58:34 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  496. [2014.04.23 18:58:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  497. [2014.04.23 18:58:19 | 3142,012,928 | -HS- | M] () -- C:\hiberfil.sys
  498. [2014.04.21 23:24:03 | 000,017,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  499. [2014.04.21 23:24:03 | 000,017,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  500. [2014.04.21 20:55:02 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1767590219-4005782108-214848735-1000UA.job
  501. [2014.04.21 20:55:01 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1767590219-4005782108-214848735-1000Core.job
  502. [2014.04.21 17:48:36 | 000,872,838 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
  503. [2014.04.21 17:48:36 | 000,718,532 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
  504. [2014.04.21 17:48:36 | 000,146,554 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
  505. [2014.04.21 15:54:53 | 000,000,282 | ---- | M] () -- C:\Windows\tasks\RegClean Pro_DEFAULT.job
  506. [2014.04.21 15:53:47 | 000,001,350 | ---- | M] () -- C:\Users\korisnik\Desktop\Clean Registry for Free!.lnk
  507. [2014.04.21 14:25:34 | 000,001,120 | RHS- | M] () -- C:\Users\korisnik\ntuser.pol
  508. [2014.04.20 22:53:52 | 000,274,632 | ---- | M] () -- C:\Users\korisnik\Desktop\Natalia2014(0).mp3
  509. [2014.04.18 20:43:12 | 000,001,271 | ---- | M] () -- C:\Users\Public\Desktop\Xilisoft Download YouTube Video.lnk
  510. [2014.04.18 20:32:56 | 000,000,736 | ---- | M] () -- C:\Users\korisnik\Documents\Default.sfvidcap
  511. [2014.04.18 14:16:23 | 000,020,480 | ---- | M] () -- C:\Users\korisnik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  512. [2014.04.18 14:10:08 | 003,660,549 | ---- | M] () -- C:\Users\korisnik\Desktop\Girls Just Wanna Have Fun.mp3
  513. [2014.04.18 01:18:04 | 000,687,218 | ---- | M] () -- C:\Users\korisnik\animv09c.zip
  514. [2014.04.18 00:00:36 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2013.lnk
  515. [2014.04.16 21:54:53 | 000,001,059 | ---- | M] () -- C:\Users\korisnik\Desktop\Softonic.lnk
  516. [2014.04.15 13:35:26 | 000,240,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgtdia.sys
  517. [2014.04.09 17:21:00 | 000,000,290 | ---- | M] () -- C:\Windows\tasks\RegClean Pro_UPDATES.job
  518. [2014.04.09 15:23:40 | 000,002,179 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
  519. [2014.04.05 14:45:03 | 000,001,063 | ---- | M] () -- C:\Users\korisnik\Desktop\Viber.lnk
  520. [2014.03.31 12:47:19 | 003,949,747 | ---- | M] () -- C:\Users\korisnik\Desktop\Natalia2014.mp3
  521. [2014.03.31 12:44:29 | 000,001,146 | ---- | M] () -- C:\Users\Public\Desktop\Free MP3 Cutter Joiner.lnk
  522. [2014.03.28 22:30:47 | 243,071,608 | ---- | M] (Sony Creative Software Inc.) -- C:\Users\korisnik\Desktop\vegaspro12-0-770.exe
  523. [4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]
  524.  
  525. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  526.  
  527. [2014.04.20 22:53:51 | 000,274,632 | ---- | C] () -- C:\Users\korisnik\Desktop\Natalia2014(0).mp3
  528. [2014.04.18 20:43:12 | 000,001,271 | ---- | C] () -- C:\Users\Public\Desktop\Xilisoft Download YouTube Video.lnk
  529. [2014.04.18 20:32:56 | 000,000,736 | ---- | C] () -- C:\Users\korisnik\Documents\Default.sfvidcap
  530. [2014.04.18 14:10:07 | 003,660,549 | ---- | C] () -- C:\Users\korisnik\Desktop\Girls Just Wanna Have Fun.mp3
  531. [2014.04.18 01:18:03 | 000,687,218 | ---- | C] () -- C:\Users\korisnik\animv09c.zip
  532. [2014.04.05 14:45:03 | 000,001,071 | ---- | C] () -- C:\Users\korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber.lnk
  533. [2014.04.05 14:45:03 | 000,001,063 | ---- | C] () -- C:\Users\korisnik\Desktop\Viber.lnk
  534. [2014.04.02 15:01:07 | 000,001,350 | ---- | C] () -- C:\Users\korisnik\Desktop\Clean Registry for Free!.lnk
  535. [2014.03.31 12:47:09 | 003,949,747 | ---- | C] () -- C:\Users\korisnik\Desktop\Natalia2014.mp3
  536. [2014.03.31 12:44:29 | 000,001,146 | ---- | C] () -- C:\Users\Public\Desktop\Free MP3 Cutter Joiner.lnk
  537. [2014.03.31 11:39:22 | 000,001,059 | ---- | C] () -- C:\Users\korisnik\Desktop\Softonic.lnk
  538. [2014.03.16 23:29:13 | 000,000,682 | RHS- | C] () -- C:\ProgramData\ntuser.pol
  539. [2014.01.18 02:05:55 | 000,000,860 | ---- | C] () -- C:\Users\korisnik\10 Finger BreakOut.lnk
  540. [2014.01.16 19:21:46 | 000,001,091 | ---- | C] () -- C:\Users\korisnik\GS Typing Test.lnk
  541. [2013.12.09 00:04:30 | 000,001,120 | RHS- | C] () -- C:\Users\korisnik\ntuser.pol
  542. [2013.11.28 13:07:44 | 000,000,173 | ---- | C] () -- C:\Users\korisnik\AppData\Local\msmathematics.qat.korisnik
  543. [2013.11.28 12:43:11 | 000,001,851 | ---- | C] () -- C:\Users\korisnik\GeoGebra.lnk
  544. [2013.09.17 20:20:31 | 000,858,750 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  545. [2013.09.16 12:57:42 | 000,000,000 | ---- | C] () -- C:\Windows\EEventManager.INI
  546. [2013.06.19 19:32:29 | 000,020,480 | ---- | C] () -- C:\Users\korisnik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
  547. [2013.06.18 20:02:55 | 000,001,779 | ---- | C] () -- C:\Windows\vm332Rmv.ini
  548. [2013.06.18 20:02:55 | 000,001,779 | ---- | C] () -- C:\Windows\SysWow64\vm332Rmv.ini
  549. [2013.06.18 19:51:26 | 000,755,572 | ---- | C] () -- C:\Windows\SysWow64\igkrng700.bin
  550. [2013.06.18 19:51:26 | 000,559,972 | ---- | C] () -- C:\Windows\SysWow64\igfcg700m.bin
  551. [2013.06.18 14:28:41 | 000,178,688 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
  552. [2012.12.14 02:42:30 | 000,064,512 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
  553. [2012.12.14 02:42:24 | 000,754,652 | ---- | C] () -- C:\Windows\SysWow64\igcodeckrng700.bin
  554. [2012.12.14 02:42:24 | 000,598,384 | ---- | C] () -- C:\Windows\SysWow64\igvpkrng700.bin
  555.  
  556. [color=#E56717]========== ZeroAccess Check ==========[/color]
  557.  
  558. [2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
  559.  
  560. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  561.  
  562. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  563.  
  564. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
  565.  
  566. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  567.  
  568. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  569. "" = C:\Windows\SysNative\shell32.dll -- [2013.07.26 04:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
  570. "ThreadingModel" = Apartment
  571.  
  572. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  573. "" = %SystemRoot%\system32\shell32.dll -- [2013.07.26 03:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
  574. "ThreadingModel" = Apartment
  575.  
  576. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
  577. "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
  578. "ThreadingModel" = Free
  579.  
  580. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  581. "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
  582. "ThreadingModel" = Free
  583.  
  584. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
  585. "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
  586. "ThreadingModel" = Both
  587.  
  588. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  589.  
  590. [color=#E56717]========== LOP Check ==========[/color]
  591.  
  592. [2014.03.31 12:47:51 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\Audacity
  593. [2013.06.18 14:38:28 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\AVG2013
  594. [2014.03.28 22:33:31 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\BabSolution
  595. [2014.03.28 22:33:24 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\buenosearch LTD
  596. [2013.06.18 14:33:49 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\Canneverbe Limited
  597. [2013.12.09 00:04:27 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\defaulttab
  598. [2014.04.23 19:01:02 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\Dropbox
  599. [2013.12.13 00:29:48 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\Epson
  600. [2014.03.31 11:48:47 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\InfraRecorder
  601. [2014.03.31 11:49:10 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\IrfanView
  602. [2014.02.05 23:54:33 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\IVONA ControlCenter
  603. [2014.02.06 00:19:49 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\IVONA Reader
  604. [2013.12.23 23:19:49 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\PACE Anti-Piracy
  605. [2013.06.18 14:26:08 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\pdfforge
  606. [2014.03.28 23:28:53 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\Publish Providers
  607. [2014.04.18 21:18:07 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\Sony
  608. [2013.12.08 23:55:09 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\systweak
  609. [2013.06.20 14:21:08 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\Thunderbird
  610. [2013.06.18 14:37:51 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\TuneUp Software
  611. [2014.01.18 02:11:35 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\TypingMaster7
  612. [2014.04.15 18:02:34 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\ViberPC
  613. [2014.04.18 20:44:35 | 000,000,000 | ---D | M] -- C:\Users\korisnik\AppData\Roaming\Xilisoft
  614.  
  615. [color=#E56717]========== Purity Check ==========[/color]
  616.  
  617.  
  618.  
  619. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!