Problem sa browserima

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Koristim op. sistem win7 32 bit-ni , anti virus AVG , i ADSL Telekom brzine 1024 kb/sec . Problem se ispoljava prilikom otvaranja novih stranica u brovserima umesto podrazumevanog pretrazivaca otvara neke druge adrese koje woot karakterise kao zarazene . To se dogadja i u mozili i u google chrome . Pokusao sam da resim problem preko vasih kolega u odelku Windows/aplikacije ali nista od njihovih saveta mi nije pomoglo pa su me oni uputili na vas . Evo teme u kojoj sam postavio problem : http://www.mycity.rs/Aplikacije/Kako-ukloniti.html

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav tacia.

Isprati uputstvo za 32bit Windows. Postavi izvestaje alata DDS i Gmera.
http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

Neko od clanova AMF Tima ce pregledati postavljene logove.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Evo izvestaja:

DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.7601.17514 BrowserJavaVersion: 10.5.1
Run by Miroslav at 9:58:43 on 2012-09-05
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.381.1033.18.2046.799 [GMT 2:00]
.
AV: AVG Anti-Virus *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Windows\system32\lsm.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\system32\rundll32.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\YourFileDownloader\YourFileUpdater.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\FsUsbExService.Exe
C:\Windows\system32\svchost.exe -k hpdevmgmt
C:\Program Files\TP-LINK\QSS\jswpbapi.exe
c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
C:\Windows\system32\rundll32.exe
C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\PROGRA~1\VIDEOD~2\bar\1.bin\4zbarsvc.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgam.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\GIGABYTE\GEST\gest.exe
C:\Program Files\GIGABYTE\GEST\GSvr.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\System32\LVCOMSX.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVG\AVG9\avgtray.exe
C:\ProgramData\Everstrike\US4Service.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\ExpressFiles\ExpressFiles.exe
C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrchMn.exe
C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe
C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\XpertVision\TBPANEL.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Windows Sidebar\sidebar.exe
D:\Nova mapa\utorrent.exe
C:\Program Files\WinFast\WFDTV\WFWIZ.exe
C:\Program Files\McAfee Security Scan\3.0.207\SSScheduler.exe
C:\Program Files\ACR\AutoClubRev\web\acrlauncher.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Users\Miroslav\AppData\Roaming\BrowserCompanion\tcbhn.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_3_300_270.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_3_300_270.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Windows\system32\conhost.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
uStart Page = hxxp://home.mywebsearch.com/index.jhtml?n=77DE8857&p2=^HJ^xdm007^S01700^rs&ptb=55750EBF-F525-4FA5-B041-91854F8A4E2D&si=CLb1rvj747ACFcNN3wod0TWQ2g
uSearch Bar = hxxp://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
uDefault_Search_URL = hxxp://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
mDefault_Search_URL = hxxp://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
mStart Page = hxxp://search.certified-toolbar.com?si=41516&home=true&tid=553
mSearch Page = hxxp://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
mSearch Bar = hxxp://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
mSearchAssistant = hxxp://www.google.com
uURLSearchHooks: H - No File
uURLSearchHooks: N/A: {93a3111f-4f74-4ed8-895e-d9708497629e} - c:\program files\videodownloadconverter_4z\bar\1.bin\4zSrcAs.dll
mURLSearchHooks: H - No File
BHO: Claro LTD Helper Object: {000f18f2-09eb-4a59-82b2-5ae4184c39c3} - c:\program files\claro ltd\claro\1.6.4.1\bh\claro.dll
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll
BHO: Toolbar BHO: {312f84fb-8970-4fd3-bddb-7012eac4afc9} - c:\progra~1\videod~2\bar\1.bin\4zbar.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll
BHO: {8984B388-A5BB-4DF7-B274-77B879E179DB} - No File
BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\12.2.0.5\AVG Secure Search_toolbar.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Search Assistant BHO: {c547c6c2-561b-4169-a2a5-20ba771ca93b} - c:\program files\videodownloadconverter_4z\bar\1.bin\4zSrcAs.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll
TB: VideoDownloadConverter: {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - c:\program files\videodownloadconverter_4z\bar\1.bin\4zbar.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: Claro LTD Toolbar: {9e131a93-eed7-4beb-b015-a0adb30b5646} - c:\program files\claro ltd\claro\1.6.4.1\claroTlbr.dll
TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\12.2.0.5\AVG Secure Search_toolbar.dll
TB: {88AC3CB6-596B-4217-964C-B6757EF9602D} - No File
uRun: [TBPanel] c:\program files\xpertvision\TBPanel.exe /A
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
uRun: [RemoTerm.exe] c:\program files\common files\pctv systems\remoterm\RemoTerm.exe
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [µTorrent] "d:\nova mapa\utorrent.exe"
uRun: [LDM] c:\program files\logitech\desktop messenger\8876480\program\LogitechDesktopMessenger.exe
uRun: [googletalk] c:\users\miroslav\appdata\roaming\google talk\googletalk.exe /autostart
uRun: [espaces] c:\premiumsoft\photofun\photofun.exe
uRun: [Tesseract-OCR] d:\skidanje sa rapidshare\jdownloader\plugins\tesseract-ocr\tesseract.exe
uRun: [Google Update] "c:\users\miroslav\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [Orb] "c:\program files\winamp remote\bin\OrbTray.exe" /background
uRun: [uTorrent] "d:\nova mapa\utorrent.exe" /MINIMIZED
uRun: [fsm]
uRun: [WinFast Schedule] c:\program files\winfast\wfdtv\WFWIZ.exe
uRun: [Facebook Update] "c:\users\miroslav\appdata\local\facebook\update\FacebookUpdate.exe" /c /nocrashserver
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
mRun: [LVCOMSX] c:\windows\system32\LVCOMSX.EXE
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
mRun: [US4Service] c:\programdata\everstrike\US4Service.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRun: [vProt] "c:\program files\avg secure search\vprot.exe"
mRun: [ROC_roc_dec12] "c:\program files\avg secure search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
mRun: [NPSStartup]
mRun: [ExpressFiles] "c:\program files\expressfiles\ExpressFiles.exe" -tray
mRun: [WinFastDTV] c:\program files\winfast\wfdtv\DTVSchdl.exe
mRun: [ArcSoft Connection Service] c:\program files\common files\arcsoft\connection service\bin\ACDaemon.exe
mRun: [VideoDownloadConverter Search Scope Monitor] "c:\progra~1\videod~2\bar\1.bin\4zsrchmn.exe" /m=2 /w /h
mRun: [VideoDownloadConverter_4z Browser Plugin Loader] c:\progra~1\videod~2\bar\1.bin\4zbrmon.exe
mRun: [BtTray] "c:\program files\ivt corporation\bluesoleil\BtTray.exe"
mRun: [HF_G_Jul] "c:\program files\avg secure search\HF_G_Jul.exe" /DoAction
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [<NO NAME>]
mRun: [Otshot] c:\program files\otshot\otshot.exe -minimize
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [VDownloader] c:\users\miroslav\appdata\local\temp\rarsfx0\VDownloader.exe /silent
mRun: [ROC_roc_ssl_v12] "c:\program files\avg secure search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
mRunOnce: [GEST] "c:\program files\gigabyte\gest\run.exe"
StartupFolder: c:\users\miroslav\appdata\roaming\micros~1\windows\startm~1\programs\startup\acrlau~1.lnk - c:\program files\acr\autoclubrev\web\acrlauncher.exe
StartupFolder: c:\users\miroslav\appdata\roaming\micros~1\windows\startm~1\programs\startup\deskto~1.lnk - c:\users\miroslav\appdata\local\vghd\bin\vghd.exe
StartupFolder: c:\users\miroslav\appdata\roaming\micros~1\windows\startm~1\programs\startup\tcbhn.lnk - c:\users\miroslav\appdata\roaming\browsercompanion\tcbhn.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\desktop messenger\8876480\program\LDMConf.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\3.0.207\SSScheduler.exe
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: Search the Web - c:\program files\sweetim\toolbars\internet explorer\resources\menuext.html
IE: Send by Bluetooth - c:\program files\ivt corporation\bluesoleil\transsend\ie\tsinfo.htm
IE: Send via &Message... - c:\program files\ivt corporation\bluesoleil\transsend\ie\tssms.htm
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{DB1103A9-AE75-4AAE-A8AB-2DF45408AC2C} : DhcpNameServer = 192.168.10.1
TCP: Interfaces\{FBEB418F-647F-4375-BEAA-FBFAA14D3226} : DhcpNameServer = 192.168.1.1
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\windows\system32\skype4com.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\12.2.0\ViProtocol.dll
AppInit_DLLs: avgrsstx.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\miroslav\appdata\roaming\mozilla\firefox\profiles\l8upevv7.default\
FF - prefs.js: browser.search.selectedEngine - AVG Secure Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com
FF - prefs.js: keyword.URL - hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=55750EBF-F525-4FA5-B041-91854F8A4E2D&n=77eda2cc&ind=2012062412&p2=^HJ^xdm007^S01700^rs&si=CLb1rvj747ACFcNN3wod0TWQ2g&searchfor=
FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\12.2.0\npsitesafety.dll
FF - plugin: c:\program files\google\update\1.3.21.111\npGoogleUpdate3.dll
FF - plugin: c:\program files\google\update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: c:\program files\mcafee\siteadvisor\NPMcFFPlg32.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\program files\nitro pdf\reader 2\npdf.dll
FF - plugin: c:\program files\nitro pdf\reader 2\npnitromozilla.dll
FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dv.dll
FF - plugin: c:\program files\nvidia corporation\3d vision\npnv3dvstreaming.dll
FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\videodownloadconverter_4z\bar\1.bin\NP4zStub.dll
FF - plugin: c:\users\miroslav\appdata\local\facebook\video\skype\npFacebookVideoCalling.dll
FF - plugin: c:\users\miroslav\appdata\local\google\update\1.3.21.115\npGoogleUpdate3.dll
FF - plugin: c:\users\miroslav\appdata\locallow\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\users\miroslav\appdata\roaming\mozilla\firefox\profiles\l8upevv7.default\extensions\{88ac3cb6-596b-4217-964c-b6757ef9602d}\plugins\np-mswmp.dll
FF - plugin: c:\users\miroslav\appdata\roaming\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\users\miroslav\appdata\roaming\mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1165635.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_270.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\Npindeo.dll
FF - plugin: c:\windows\system32\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [2011-5-1 52872]
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [2009-1-7 20744]
R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2011-5-1 216400]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2011-5-1 29712]
R1 AvgTdiX;AVG Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2011-5-1 243152]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-9-2 27496]
R1 jswpslwf;JumpStart Wireless Filter Driver;c:\windows\system32\drivers\jswpslwf.sys [2011-7-15 20384]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128]
R2 avg9emc;AVG E-mail Scanner;c:\program files\avg\avg9\avgemc.exe [2011-5-1 921952]
R2 avg9wd;AVG WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2011-5-1 308136]
R2 BsMobileCS;BsMobileCS;c:\program files\ivt corporation\bluesoleil\BsMobileCS.exe [2009-2-27 143467]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2012-1-30 238952]
R2 jswpbapi;JumpStart Push-Button Service;c:\program files\tp-link\qss\jswpbapi.exe [2011-7-15 188416]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-7-23 654408]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\progra~1\mcafee\sitead~1\mcsacore.exe [2012-8-15 95200]
R2 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;c:\program files\nitro pdf\reader 2\NitroPDFReaderDriverService2.exe [2011-6-21 196912]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia updatus\daemonu.exe [2011-4-30 2218600]
R2 SSPORT;SSPORT;c:\windows\system32\drivers\SSPORT.SYS [2011-5-3 5120]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\nvidia corporation\3d vision\nvSCPAPISvr.exe [2011-4-7 378472]
R2 WinFLdrv;WinFLdrv;c:\windows\system32\WinFLdrv.sys [2011-5-6 17984]
R3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [2008-12-7 30088]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2012-1-30 36608]
R3 GEST Service;GEST Service for program management.;c:\program files\gigabyte\gest\GSvr.exe [2011-4-30 47624]
R3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2008-7-2 26248]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-5-1 22344]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-6-10 139776]
R3 SrvHsfPCI;SrvHsfPCI;c:\windows\system32\drivers\VSTBS23.SYS [2009-7-14 266752]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-14 980992]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-14 661504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 HDD & SSD access service;HDD & SSD access service;"c:\program files\common files\binarysense\disksvc.exe" --> c:\program files\common files\binarysense\disksvc.exe [?]
S3 3xHybrid;Pinnacle PCTV 100i-110i-300i-310i-MCE;c:\windows\system32\drivers\3xHybrid.sys [2006-12-18 1121536]
S3 athur;Atheros AR9271 Wireless Network Adapter Service;c:\windows\system32\drivers\athur.sys [2010-1-5 1500160]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg9\toolbar\ToolbarBroker.exe [2011-5-1 167264]
S3 azvusb;Virtual USB Hub;c:\windows\system32\drivers\azvusb.sys [2009-8-24 44544]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
S3 jswpsapi;JumpStart Wi-Fi Protected Setup;c:\program files\tp-link\qss\jswpsapi.exe [2011-7-15 954368]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.0.207\McCHSvc.exe [2011-6-17 237008]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-4-26 114144]
S3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\system32\drivers\Ph3xIB32.sys [2009-6-10 1311232]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2011-10-19 15872]
S3 TridVid;USB TV Tuner;c:\windows\system32\drivers\tridvid6010.sys [2010-7-13 332928]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-10-19 52224]
.
=============== Created Last 30 ================
.
2012-09-04 14:03:22 -------- d-----w- c:\users\miroslav\appdata\roaming\ID3 renamer
2012-09-04 14:03:22 -------- d-----w- c:\users\miroslav\appdata\local\Jiri_Cincura_-_x2develop
2012-09-03 16:23:06 -------- d-----w- c:\users\miroslav\appdata\local\AVG Secure Search
2012-09-03 16:23:03 -------- d-----w- c:\programdata\AVG Secure Search
2012-09-03 16:22:43 -------- d-----w- c:\program files\AVG Secure Search
2012-09-02 12:04:43 27496 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2012-09-02 12:04:41 -------- d-----w- c:\program files\common files\AVG Secure Search
2012-09-01 16:58:36 -------- d-----w- c:\users\miroslav\appdata\roaming\IClaro
2012-09-01 16:55:50 -------- d-----w- c:\users\miroslav\appdata\roaming\BrowserCompanion
2012-08-30 13:11:30 73696 ----a-w- c:\program files\mozilla firefox\breakpadinjector.dll
2012-08-25 22:13:25 -------- d-----w- c:\users\miroslav\appdata\roaming\Jarte
2012-08-25 20:33:54 -------- d-----w- c:\users\miroslav\appdata\roaming\StartMenuX
2012-08-25 20:33:54 -------- d-----w- c:\programdata\StartMenuX
2012-08-19 10:27:53 -------- d-----w- c:\users\miroslav\appdata\roaming\VDownloader
2012-08-19 10:27:53 -------- d-----w- c:\users\miroslav\appdata\local\VDownloader
2012-08-18 17:58:22 -------- d-----w- c:\program files\smartdl
2012-08-18 12:41:08 -------- d-----w- c:\users\miroslav\appdata\local\Skymonk2
2012-08-16 23:26:34 207292 ----a-w- C:\torrent.exe
2012-08-16 16:04:42 -------- d-----w- c:\programdata\EasyMP3Downloader
2012-08-16 12:58:07 -------- d-----w- C:\Storage
2012-08-16 12:55:21 -------- d-----w- c:\program files\WOLFCODERS SecurityCam
2012-08-15 16:07:24 393728 ----a-w- c:\windows\system32\drivers\bthport.sys
2012-08-15 14:19:55 400896 ----a-w- c:\windows\system32\srcore.dll
2012-08-15 14:19:54 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-08-15 14:19:51 492032 ----a-w- c:\windows\system32\win32spl.dll
2012-08-15 14:19:51 317440 ----a-w- c:\windows\system32\spoolsv.exe
2012-08-15 14:19:49 41984 ----a-w- c:\windows\system32\browcli.dll
2012-08-15 14:19:49 102912 ----a-w- c:\windows\system32\browser.dll
2012-08-15 14:19:47 769024 ----a-w- c:\windows\system32\localspl.dll
2012-08-14 09:23:28 -------- d-----w- c:\program files\Claro LTD
2012-08-13 17:07:25 -------- d-----w- c:\users\miroslav\appdata\local\Pokki
2012-08-13 17:04:06 -------- d-----w- c:\program files\Winamp Detect
2012-08-13 10:52:33 -------- d-----w- c:\users\miroslav\appdata\roaming\flashInstall
2012-08-12 10:46:42 -------- d-----w- c:\program files\ExpressFiles
2012-08-12 10:24:38 -------- d-----w- c:\program files\Flash Player Pro
2012-08-11 16:18:07 -------- d-----w- c:\windows\system32\Adobe
2012-08-11 15:12:47 -------- d-----w- c:\program files\common files\McAfee
2012-08-11 15:12:41 -------- d-----w- c:\program files\McAfee
2012-08-11 08:03:13 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-11 08:03:13 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-10 22:21:10 -------- d-----w- c:\program files\Flash Movie Player
2012-08-09 09:13:10 -------- d-----w- c:\program files\Foxy Games
2012-08-09 09:13:09 -------- d-----w- C:\Downloads
2012-08-08 21:09:40 -------- d-----w- C:\Share
2012-08-08 17:49:12 -------- d-----w- c:\program files\CertifiedToolsToolbar
2012-08-08 17:49:05 -------- d-----w- c:\program files\Protected Search
2012-08-08 17:47:54 -------- d-----w- c:\program files\otshot
2012-08-08 17:47:42 -------- d-----w- c:\program files\Vid-Saver
2012-08-08 17:46:29 -------- d-----w- c:\users\miroslav\appdata\roaming\ZalmanInstaller_otshot
2012-08-08 17:43:03 -------- d-----w- c:\users\miroslav\appdata\roaming\YourFileDownloader
2012-08-08 17:43:03 -------- d-----w- c:\program files\YourFileDownloader
2012-08-08 10:37:04 -------- d-----w- c:\users\miroslav\appdata\local\ActiveDancer
.
==================== Find3M ====================
.
2012-09-05 06:33:55 16608 ----a-w- c:\windows\gdrv.sys
2012-07-16 16:45:51 477240 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-07-05 20:06:30 772544 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-07-05 20:06:20 687544 ----a-w- c:\windows\system32\deployJava1.dll
2012-06-27 05:53:07 981504 ----a-w- c:\windows\system32\wininet.dll
2012-06-27 04:10:55 1638912 ----a-w- c:\windows\system32\mshtml.tlb
.
============= FINISH: 10:00:59.75 ===============



https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav, tacija


Preuzmi program OTL sa donjeg linka na Desktop:

OTL download
Klikni na dati link i u prozoru koji se otvori, klikni na dugme Save;
kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati datoteku, odaberi Desktop i klikni na dugme Save.
Dvoklikom pokreni OTL;

klikni na dugme Run Scan;

po završetku skeniranja, izveštaj će se otvoriti u programu Notepad (napomena: izveštaj će automatski biti sačuvan na Desktopu kao OTL.Txt) .

Priloži izveštaj OTL.Txt uz poruku korišćenjem opcije Prikači fajl.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 05 Sep 2012 14:34

Preskenirao je ali je izvestaj izbacio kao extras ane kao otl.txt , valjda je to isto.
https://www.mycity.rs/must-login.png

Dopuna: 05 Sep 2012 14:37

tacija ::Preskenirao je ali je izvestaj izbacio kao extras ane kao otl.txt , valjda je to isto.
https://www.mycity.rs/must-login.png

Tek sad sam video da ima i izvestaj otl , izvinjavam se:
https://www.mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Korak 1.

Idi u Start -> Control Panel -> Programs and Features i deinstaliraj sledece programe:

Claro LTD toolbar on IE

Takodje obrisi sve ono sto ne koristis i sto ti nije potrebno.



Korak 2.

Ponovo pokreni program OTL dvoklikom na ikonu.

U bijeli okvir prozora gdje piše Custom Scans/Fixes iskopirati sljedeći tekst:

:OTL
IE - HKCU\..\URLSearchHook: {88ac3cb6-596b-4217-964c-b6757ef9602d} - No CLSID value found
IE - HKCU\..\URLSearchHook: {93a3111f-4f74-4ed8-895e-d9708497629e} - No CLSID value found
IE - HKCU\..\SearchScopes\{826B47AD-2CEF-4B3E-A2C7-B6B0BB0EDDE9}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=DDR&o=16621&src=crm&q={searchTerms}&locale=&apn_ptnrs=1Q&apn_dtid=YYYYYYYYRS&apn_uid=9511C679-7177-4765-84FA-12236F6DAB5B&apn_sauid=BB42F0AF-B6E1-467D-AC1C-393F127C523D
IE - HKCU\..\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}: "URL" = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?p2=^HJ^xdm007^S01700^rs&si=CLb1rvj747ACFcNN3wod0TWQ2g&ptb=55750EBF-F525-4FA5-B041-91854F8A4E2D&ind=2012070410&n=77edc20a&psa=&st=sb&searchfor={searchTerms}
FF - prefs.js..keyword.URL: "http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=55750EBF-F525-4FA5-B041-91854F8A4E2D&n=77eda2cc&ind=2012062412&p2=^HJ^xdm007^S01700^rs&si=CLb1rvj747ACFcNN3wod0TWQ2g&searchfor="
[2012/08/14 11:24:10 | 000,002,224 | ---- | M] () -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\searchplugins\BabylonMngr.xml
[2012/08/08 19:44:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com
[2012/08/08 19:48:49 | 000,003,267 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\Web Search.xml
O2 - BHO: (Claro LTD Helper Object) - {000F18F2-09EB-4A59-82B2-5AE4184C39C3} - C:\Program Files\Claro LTD\claro\1.6.4.1\bh\claro.dll (Montera Technologeis LTD)
O2 - BHO: (Toolbar BHO) - {312f84fb-8970-4fd3-bddb-7012eac4afc9} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll (MindSpark)
O2 - BHO: (no name) - {8984B388-A5BB-4DF7-B274-77B879E179DB} - No CLSID value found.
O2 - BHO: (Search Assistant BHO) - {c547c6c2-561b-4169-a2a5-20ba771ca93b} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll (MindSpark)
O3 - HKLM\..\Toolbar: (VideoDownloadConverter) - {48586425-6bb7-4f51-8dc6-38c88e3ebb58} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll (MindSpark)
O3 - HKLM\..\Toolbar: (Claro LTD Toolbar) - {9E131A93-EED7-4BEB-B015-A0ADB30B5646} - C:\Program Files\Claro LTD\claro\1.6.4.1\claroTlbr.dll (Montera Technologeis LTD)
O3 - HKCU\..\Toolbar\WebBrowser: (VideoDownloadConverter) - {48586425-6BB7-4F51-8DC6-38C88E3EBB58} - C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll (MindSpark)
@Alternate Data Stream - 158 bytes -> C:\ProgramData\TEMP:1CE11B51
@Alternate Data Stream - 142 bytes -> C:\ProgramData\TEMP:BD34FFC5
@Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:62220827
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:2AE74FF9
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:ED2D63E4
@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:2652902F
@Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:29535479
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:1EE00E38
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:FB1B13D8
@Alternate Data Stream - 100 bytes -> C:\ProgramData\TEMP:3D36932D

:commands
[CREATERESTOREPOINT]
[emptytemp]


Klikni taster Run Fix;

Izvještaj koji dobiješ iskopiraj ovde u poruci.



Korak 3.

Ponovo pokreni OTL, klikni na Run Scan i postavi novi OTL izvještaj.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

evo izvestaja koraka 2 :All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{88ac3cb6-596b-4217-964c-b6757ef9602d} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88ac3cb6-596b-4217-964c-b6757ef9602d}\ not found.
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{93a3111f-4f74-4ed8-895e-d9708497629e} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{93a3111f-4f74-4ed8-895e-d9708497629e}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{93a3111f-4f74-4ed8-895e-d9708497629e}\ deleted successfully.
Registry key HKEY_USERS\S-1-5-21-2825592823-70381299-2544238881-1003\SOFTWARE\Classes\CLSID\{93a3111f-4f74-4ed8-895e-d9708497629e}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{826B47AD-2CEF-4B3E-A2C7-B6B0BB0EDDE9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{826B47AD-2CEF-4B3E-A2C7-B6B0BB0EDDE9}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}\ not found.
Prefs.js: "http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=55750EBF-F525-4FA5-B041-91854F8A4E2D&n=77eda2cc&ind=2012062412&p2=^HJ^xdm007^S01700^rs&si=CLb1rvj747ACFcNN3wod0TWQ2g&searchfor=" removed from keyword.URL
C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\searchplugins\BabylonMngr.xml moved successfully.
C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com\defaults\preferences folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com\defaults folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com folder moved successfully.
C:\Program Files\Mozilla Firefox\searchplugins\Web Search.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000F18F2-09EB-4A59-82B2-5AE4184C39C3}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{000F18F2-09EB-4A59-82B2-5AE4184C39C3}\ not found.
File C:\Program Files\Claro LTD\claro\1.6.4.1\bh\claro.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312f84fb-8970-4fd3-bddb-7012eac4afc9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{312f84fb-8970-4fd3-bddb-7012eac4afc9}\ deleted successfully.
C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8984B388-A5BB-4DF7-B274-77B879E179DB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c547c6c2-561b-4169-a2a5-20ba771ca93b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c547c6c2-561b-4169-a2a5-20ba771ca93b}\ deleted successfully.
C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrcAs.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{48586425-6bb7-4f51-8dc6-38c88e3ebb58} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{48586425-6bb7-4f51-8dc6-38c88e3ebb58}\ deleted successfully.
File C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{9E131A93-EED7-4BEB-B015-A0ADB30B5646} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9E131A93-EED7-4BEB-B015-A0ADB30B5646}\ not found.
File C:\Program Files\Claro LTD\claro\1.6.4.1\claroTlbr.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{48586425-6BB7-4F51-8DC6-38C88E3EBB58} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{48586425-6BB7-4F51-8DC6-38C88E3EBB58}\ not found.
File C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbar.dll not found.
ADS C:\ProgramData\TEMP:1CE11B51 deleted successfully.
ADS C:\ProgramData\TEMP:BD34FFC5 deleted successfully.
ADS C:\ProgramData\TEMP:62220827 deleted successfully.
ADS C:\ProgramData\TEMP:2AE74FF9 deleted successfully.
ADS C:\ProgramData\TEMP:ED2D63E4 deleted successfully.
ADS C:\ProgramData\TEMP:2652902F deleted successfully.
ADS C:\ProgramData\TEMP:29535479 deleted successfully.
ADS C:\ProgramData\TEMP:1EE00E38 deleted successfully.
ADS C:\ProgramData\TEMP:FB1B13D8 deleted successfully.
ADS C:\ProgramData\TEMP:3D36932D deleted successfully.
========== COMMANDS ==========
Restore point Set: OTL Restore Point

[EMPTYTEMP]

User: Administrator

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56475 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Miroslav
->Temp folder emptied: 453147673 bytes
->Temporary Internet Files folder emptied: 103189955 bytes
->Java cache emptied: 222529 bytes
->FireFox cache emptied: 87992024 bytes
->Google Chrome cache emptied: 88747871 bytes
->Flash cache emptied: 70771 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 20069068 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 752221466 bytes

Total Files Cleaned = 1,436.00 mb


OTL by OldTimer - Version 3.2.61.0 log created on 09062012_072317

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...



Evo izvestaja iz koraka 3:OTL logfile created on: 06/09/2012 07:33:16 - Run 2
OTL by OldTimer - Version 3.2.61.0 Folder = C:\Users\Miroslav\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

2.00 Gb Total Physical Memory | 0.64 Gb Available Physical Memory | 32.01% Memory free
4.00 Gb Paging File | 2.33 Gb Available in Paging File | 58.17% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 116.21 Gb Total Space | 55.65 Gb Free Space | 47.88% Space Free | Partition Type: NTFS
Drive D: | 116.44 Gb Total Space | 24.42 Gb Free Space | 20.98% Space Free | Partition Type: NTFS
Drive E: | 116.67 Gb Total Space | 47.36 Gb Free Space | 40.59% Space Free | Partition Type: NTFS
Drive F: | 116.44 Gb Total Space | 30.07 Gb Free Space | 25.82% Space Free | Partition Type: NTFS
Drive J: | 931.28 Gb Total Space | 111.12 Gb Free Space | 11.93% Space Free | Partition Type: FAT32

Computer Name: MIROSLAV-PC | User Name: Miroslav | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/09/05 14:19:53 | 000,599,040 | ---- | M] (OldTimer Tools) -- C:\Users\Miroslav\Desktop\OTL.exe
PRC - [2012/09/03 18:22:43 | 001,162,848 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
PRC - [2012/09/02 14:04:42 | 000,927,840 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe
PRC - [2012/08/30 15:11:30 | 000,917,984 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/08/12 12:46:42 | 000,476,824 | ---- | M] (http://www.express-files.com/) -- C:\Program Files\ExpressFiles\ExpressFiles.exe
PRC - [2012/08/11 14:40:28 | 001,536,712 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_3_300_270.exe
PRC - [2012/08/08 19:44:02 | 000,245,168 | ---- | M] (http://yourfiledownloader.com) -- C:\Program Files\YourFileDownloader\YourFileUpdater.exe
PRC - [2012/07/21 15:48:08 | 000,049,664 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\acrlauncher.exe
PRC - [2012/06/28 17:40:52 | 000,074,752 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe
PRC - [2012/06/28 14:54:02 | 000,695,448 | ---- | M] () -- C:\Users\Miroslav\AppData\Roaming\BrowserCompanion\tcbhn.exe
PRC - [2012/06/23 10:45:16 | 000,042,536 | ---- | M] (MindSpark) -- C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrchMn.exe
PRC - [2012/06/23 10:45:16 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) -- C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe
PRC - [2012/06/23 10:45:16 | 000,030,096 | ---- | M] (VER_COMPANY_NAME) -- C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe
PRC - [2012/04/04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/02/14 10:33:10 | 000,738,680 | ---- | M] (BitTorrent, Inc.) -- D:\Nova mapa\utorrent.exe
PRC - [2012/01/27 12:30:17 | 002,077,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2012/01/13 11:21:10 | 000,095,200 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\SiteAdvisor\McSACore.exe
PRC - [2011/06/21 18:57:40 | 000,196,912 | ---- | M] (Nitro PDF Software) -- C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe
PRC - [2011/06/17 19:33:04 | 000,272,528 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee Security Scan\3.0.207\SSScheduler.exe
PRC - [2011/06/08 16:44:16 | 000,101,888 | ---- | M] (Leadtek Research Inc.) -- C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
PRC - [2011/05/01 09:40:07 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2011/05/01 09:40:07 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2011/05/01 09:40:05 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2011/05/01 09:40:04 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2011/05/01 09:40:04 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2011/05/01 09:40:04 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2011/05/01 09:40:03 | 000,842,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2011/04/08 07:14:00 | 002,218,600 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/04/07 22:44:48 | 000,841,832 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2011/04/07 21:54:52 | 000,378,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/20 14:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/10/27 19:17:52 | 000,207,424 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
PRC - [2010/08/11 16:11:38 | 002,920,448 | ---- | M] (Leadtek Research Inc.) -- C:\Program Files\WinFast\WFDTV\WFWIZ.exe
PRC - [2010/03/24 20:57:22 | 000,039,552 | ---- | M] () -- C:\ProgramData\Everstrike\US4Service.exe
PRC - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2009/09/17 17:58:40 | 000,238,952 | ---- | M] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe
PRC - [2009/05/11 09:00:36 | 000,188,416 | ---- | M] (Wireless) -- C:\Program Files\TP-LINK\QSS\jswpbapi.exe
PRC - [2009/02/27 17:04:38 | 000,850,432 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
PRC - [2009/02/27 17:04:34 | 000,278,016 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
PRC - [2009/02/27 16:42:20 | 000,098,407 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
PRC - [2009/02/27 16:40:48 | 000,143,467 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
PRC - [2008/07/03 17:00:52 | 002,161,160 | ---- | M] (Xpertvision, Inc.) -- C:\Program Files\XpertVision\TBPANEL.exe
PRC - [2008/01/28 16:07:18 | 000,285,192 | ---- | M] () -- C:\Program Files\GIGABYTE\GEST\gest.exe
PRC - [2007/12/14 11:46:28 | 000,047,624 | ---- | M] () -- C:\Program Files\GIGABYTE\GEST\GSvr.exe
PRC - [2005/12/09 15:37:42 | 000,081,920 | ---- | M] (Logitech Inc.) -- c:\Program Files\Common Files\Logitech\LVMVFM\LVPrcSrv.exe
PRC - [2005/12/09 15:32:18 | 000,225,280 | ---- | M] (Logitech Inc.) -- C:\Windows\System32\LVCOMSX.EXE
PRC - [2004/12/13 04:34:32 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe


========== Modules (No Company Name) ==========

MOD - [2012/09/03 18:22:46 | 000,132,704 | ---- | M] () -- C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.0\SiteSafety.dll
MOD - [2012/09/03 18:22:43 | 001,162,848 | ---- | M] () -- C:\Program Files\AVG Secure Search\vprot.exe
MOD - [2012/08/30 15:11:29 | 002,242,528 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012/08/11 14:40:27 | 009,465,032 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_3_300_270.dll
MOD - [2012/07/21 15:48:08 | 003,168,768 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wxmsw28uh_core_vc.dll
MOD - [2012/07/21 15:48:08 | 001,306,112 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wxbase28uh_vc.dll
MOD - [2012/07/21 15:48:08 | 000,980,992 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wx._core_.pyd
MOD - [2012/07/21 15:48:08 | 000,966,144 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wx._controls_.pyd
MOD - [2012/07/21 15:48:08 | 000,744,960 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wx._gdi_.pyd
MOD - [2012/07/21 15:48:08 | 000,730,112 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wxmsw28uh_adv_vc.dll
MOD - [2012/07/21 15:48:08 | 000,675,328 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wx._misc_.pyd
MOD - [2012/07/21 15:48:08 | 000,669,696 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wx._windows_.pyd
MOD - [2012/07/21 15:48:08 | 000,645,120 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\_ssl.pyd
MOD - [2012/07/21 15:48:08 | 000,572,928 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\sqlite3.dll
MOD - [2012/07/21 15:48:08 | 000,534,016 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wxmsw28uh_stc_vc.dll
MOD - [2012/07/21 15:48:08 | 000,479,744 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wxmsw28uh_html_vc.dll
MOD - [2012/07/21 15:48:08 | 000,447,488 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wx._stc.pyd
MOD - [2012/07/21 15:48:08 | 000,354,304 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\pythoncom26.dll
MOD - [2012/07/21 15:48:08 | 000,311,808 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\_hashlib.pyd
MOD - [2012/07/21 15:48:08 | 000,292,352 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\d3d.pyd
MOD - [2012/07/21 15:48:08 | 000,263,168 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\win32comext.shell.shell.pyd
MOD - [2012/07/21 15:48:08 | 000,167,936 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\win32gui.pyd
MOD - [2012/07/21 15:48:08 | 000,122,368 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\wxbase28uh_net_vc.dll
MOD - [2012/07/21 15:48:08 | 000,117,248 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\sip.pyd
MOD - [2012/07/21 15:48:08 | 000,111,104 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\win32file.pyd
MOD - [2012/07/21 15:48:08 | 000,110,592 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\pywintypes26.dll
MOD - [2012/07/21 15:48:08 | 000,096,256 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\win32api.pyd
MOD - [2012/07/21 15:48:08 | 000,073,728 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\_ctypes.pyd
MOD - [2012/07/21 15:48:08 | 000,053,248 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\_sqlite3.pyd
MOD - [2012/07/21 15:48:08 | 000,049,664 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\acrlauncher.exe
MOD - [2012/07/21 15:48:08 | 000,041,472 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\win32service.pyd
MOD - [2012/07/21 15:48:08 | 000,039,936 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\_socket.pyd
MOD - [2012/07/21 15:48:08 | 000,036,352 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\win32process.pyd
MOD - [2012/07/21 15:48:08 | 000,023,552 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\_multiprocessing.pyd
MOD - [2012/07/21 15:48:08 | 000,023,040 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\win32ts.pyd
MOD - [2012/07/21 15:48:08 | 000,022,528 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\win32pdh.pyd
MOD - [2012/07/21 15:48:08 | 000,017,920 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\win32event.pyd
MOD - [2012/07/21 15:48:08 | 000,011,776 | ---- | M] () -- C:\Program Files\ACR\AutoClubRev\web\select.pyd
MOD - [2012/06/28 14:54:02 | 000,695,448 | ---- | M] () -- C:\Users\Miroslav\AppData\Roaming\BrowserCompanion\tcbhn.exe
MOD - [2011/04/07 21:54:38 | 000,239,720 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
MOD - [2010/11/15 11:05:26 | 000,073,728 | ---- | M] () -- C:\Program Files\WinFast\WFDTV\RCConfig\RCKeysInfoIO.dll
MOD - [2010/03/24 20:57:22 | 000,039,552 | ---- | M] () -- C:\ProgramData\Everstrike\US4Service.exe
MOD - [2009/04/01 14:07:12 | 000,303,188 | ---- | M] () -- C:\Program Files\WinFast\WFDTV\RTL283XACCESS.dll
MOD - [2009/02/27 17:04:34 | 000,278,016 | ---- | M] () -- C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
MOD - [2009/02/27 16:44:28 | 000,053,248 | ---- | M] () -- C:\Windows\System32\HtmPrintHelper.dll
MOD - [2009/02/27 16:44:10 | 000,622,693 | ---- | M] () -- C:\Windows\System32\BSShell.dll
MOD - [2009/02/27 16:41:38 | 000,098,403 | ---- | M] () -- C:\Windows\System32\Bs2Res.dll
MOD - [2009/02/27 16:41:02 | 000,122,976 | ---- | M] () -- C:\Windows\System32\BsMobileSDK.dll
MOD - [2009/02/27 16:40:50 | 000,028,672 | ---- | M] () -- C:\Windows\System32\BsMobileCSps.dll
MOD - [2008/12/02 11:04:34 | 000,007,680 | ---- | M] () -- C:\Program Files\WinFast\WFDTV\WIZLANGENG.dll
MOD - [2008/03/07 13:54:22 | 017,907,824 | ---- | M] () -- C:\Windows\System32\BsLangInDepRes.dll
MOD - [2008/01/28 16:07:18 | 000,285,192 | ---- | M] () -- C:\Program Files\GIGABYTE\GEST\gest.exe
MOD - [2007/12/07 14:24:56 | 000,117,256 | ---- | M] () -- C:\Program Files\GIGABYTE\GEST\ycc.dll
MOD - [2007/10/05 17:37:58 | 000,151,552 | ---- | M] () -- C:\Program Files\GIGABYTE\GEST\etiv.dll
MOD - [1998/10/31 04:55:56 | 000,005,120 | ---- | M] () -- C:\Program Files\XpertVision\TBMANAGE.DLL


========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\BinarySense\disksvc.exe -- (HDD & SSD access service)
SRV - [2012/09/02 14:04:42 | 000,927,840 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe -- (vToolbarUpdater12.2.0)
SRV - [2012/08/30 15:11:29 | 000,114,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/06/23 10:45:16 | 000,042,504 | ---- | M] (COMPANYVERS_NAME) [Auto | Running] -- C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbarsvc.exe -- (VideoDownloadConverter_4zService)
SRV - [2012/04/04 15:56:40 | 000,654,408 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/01/13 11:21:10 | 000,095,200 | ---- | M] (McAfee, Inc.) [Auto | Running] -- c:\Program Files\McAfee\SiteAdvisor\McSACore.exe -- (McAfee SiteAdvisor Service)
SRV - [2011/11/10 15:17:31 | 000,167,264 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2011/06/21 18:57:40 | 000,196,912 | ---- | M] (Nitro PDF Software) [Auto | Running] -- C:\Program Files\Nitro PDF\Reader 2\NitroPDFReaderDriverService2.exe -- (NitroReaderDriverReadSpool2)
SRV - [2011/06/17 19:33:04 | 000,237,008 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe -- (McComponentHostService)
SRV - [2011/05/01 09:40:05 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2011/05/01 09:40:04 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2011/04/08 07:14:00 | 002,218,600 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/04/07 21:54:52 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2009/09/17 17:58:40 | 000,238,952 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2009/07/14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/05/11 09:00:36 | 000,954,368 | ---- | M] (Wireless) [On_Demand | Stopped] -- C:\Program Files\TP-LINK\QSS\jswpsapi.exe -- (jswpsapi)
SRV - [2009/05/11 09:00:36 | 000,188,416 | ---- | M] (Wireless) [Auto | Running] -- C:\Program Files\TP-LINK\QSS\jswpbapi.exe -- (jswpbapi)
SRV - [2009/02/27 17:04:38 | 000,850,432 | ---- | M] () [Auto | Running] -- C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe -- (BlueSoleilCS)
SRV - [2009/02/27 16:42:20 | 000,098,407 | ---- | M] () [On_Demand | Running] -- C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe -- (BsHelpCS)
SRV - [2009/02/27 16:40:48 | 000,143,467 | ---- | M] () [Auto | Running] -- C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe -- (BsMobileCS)
SRV - [2008/09/08 07:59:00 | 000,575,488 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2007/12/14 11:46:28 | 000,047,624 | ---- | M] () [On_Demand | Running] -- C:\Program Files\GIGABYTE\GEST\GSvr.exe -- (GEST Service)
SRV - [2005/12/09 15:37:42 | 000,081,920 | ---- | M] (Logitech Inc.) [Auto | Running] -- c:\Program Files\Common Files\Logitech\LVMVFM\LVPrcSrv.exe -- (LVPrcSrv)
SRV - [2004/12/13 04:34:32 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\PCTVAud.sys -- (TESTCAP)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - File not found [Kernel | System | Stopped] -- -- (SuperMounter)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\Drivers\btcombus.sys -- (BTCOMBUS)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btcomport.sys -- (BTCOM)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btnetdrv.sys -- (BT)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (agq23dt3)
DRV - [2012/09/06 07:27:29 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2012/09/03 18:22:47 | 000,027,496 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2012/07/16 18:45:51 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2012/04/04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/09/13 09:38:17 | 000,029,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2011/05/06 12:31:34 | 000,017,984 | ---- | M] () [File_System | Auto | Running] -- C:\Windows\System32\WinFLdrv.sys -- (WinFLdrv)
DRV - [2011/05/06 09:26:07 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2011/05/01 09:40:04 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2011/05/01 09:40:03 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2011/04/08 07:14:00 | 010,690,024 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010/11/20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 12:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010/11/20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/07/13 01:41:50 | 000,332,928 | ---- | M] (10Moons Technologies Co.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tridvid6010.sys -- (TridVid)
DRV - [2010/07/04 21:51:26 | 000,004,096 | ---- | M] () [Kernel | Unavailable | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - [2010/01/05 03:20:10 | 001,500,160 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\athur.sys -- (athur)
DRV - [2009/10/28 07:09:29 | 000,005,120 | ---- | M] (Samsung Electronics) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\SSPORT.SYS -- (SSPORT)
DRV - [2009/09/24 23:03:06 | 000,078,336 | ---- | M] (© Everstrike Software) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\US4Vista.sys -- (US30Sys)
DRV - [2009/08/31 10:23:28 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009/08/24 10:14:30 | 000,044,544 | ---- | M] (AzureWave Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\azvusb.sys -- (azvusb)
DRV - [2009/07/14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009/07/14 00:54:15 | 001,311,232 | ---- | M] (NXP Semiconductors) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Ph3xIB32.sys -- (Ph3xIB32)
DRV - [2009/07/14 00:13:47 | 000,266,752 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTBS23.SYS -- (SrvHsfPCI)
DRV - [2009/05/11 09:00:38 | 000,020,384 | ---- | M] (Atheros Communications, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\jswpslwf.sys -- (jswpslwf)
DRV - [2009/01/08 02:20:04 | 000,031,880 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VCommMgr.sys -- (VcommMgr)
DRV - [2009/01/07 23:39:36 | 000,020,744 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\BtHidBus.sys -- (BtHidBus)
DRV - [2009/01/03 16:40:12 | 000,039,304 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\btcusb.sys -- (Btcsrusb)
DRV - [2008/12/07 12:44:54 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\btnetBus.sys -- (btnetBUs)
DRV - [2008/11/19 08:59:30 | 000,561,920 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\emBDA.sys -- (USB28xxBGA)
DRV - [2008/11/19 08:59:12 | 000,455,168 | ---- | M] (eMPIA Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\emOEM.sys -- (USB28xxOEM)
DRV - [2008/11/11 13:42:00 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2008/11/11 13:41:00 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2008/11/11 13:41:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2008/08/26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/07/02 14:58:48 | 000,026,248 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IvtBtBus.sys -- (IvtBtBUs)
DRV - [2008/01/21 19:27:50 | 000,014,856 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VComm.sys -- (VComm)
DRV - [2007/10/11 11:10:52 | 000,030,008 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ET5Drv.sys -- (ET5Drv)
DRV - [2007/03/16 10:11:38 | 000,012,256 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\TBPanel.sys -- (TBPanel)
DRV - [2006/12/18 17:53:04 | 001,121,536 | ---- | M] (Philips Semiconductors GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\3xHybrid.sys -- (3xHybrid)
DRV - [2006/11/22 13:41:18 | 000,022,416 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Program Files\IVT Corporation\BlueSoleil\device\Win2k\BTNetFilter.sys -- (BTNetFilter)
DRV - [2005/12/09 15:37:42 | 002,400,256 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LVMVdrv.sys -- (lvmvdrv)
DRV - [2005/12/09 15:37:42 | 000,016,768 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LVPrcMon.sys -- (LVPrcMon)
DRV - [2005/12/09 15:35:54 | 002,174,464 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Lvckap.sys -- (Lvckap)
DRV - [2005/12/06 05:30:19 | 000,916,096 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LV302AV.SYS -- (PID_08A0)
DRV - [2005/12/06 05:27:04 | 000,007,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lv302af.sys -- (pepifilter)
DRV - [2005/12/06 05:26:16 | 000,039,424 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LVUSBSta.sys -- (LVUSBSta)
DRV - [2004/10/18 15:02:20 | 000,049,152 | ---- | M] (DeviceGuys, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\DgiVecp.sys -- (DgiVecp)
DRV - [2001/08/17 21:05:44 | 000,141,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Icam3.sys -- (ICAM3NT5)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si=41516&home=true&tid=553
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.certified-toolbar.com?si=41516&home=true&tid=553
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certified-toolbar.com?si=41516&home=true&tid=553
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certified-toolbar.com?si=41516&home=true&tid=553
IE - HKLM\..\SearchScopes,DefaultScope = {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{36668FFD-7809-43FB-A609-999C5A7AB5FE}: "URL" = http://search.foxtab.com/?q={searchTerms}&s=1&chnl=dcom&cd=2XzutBtN2Y1L1QzutDtDtC0F0DtDyD0Fzy0EtByDzzyB0CyE0AtN0D0TzutBtDtCtCtDzztCyC&cr=840766604
IE - HKLM\..\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}: "URL" = http://search.certified-toolbar.com?si=41516&bs=true&tid=553&q={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = http://search.certified-toolbar.com?si=41516&home=true&tid=553
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.mywebsearch.com/index.jhtml?n=77DE8857&p2=^HJ^xdm007^S01700^rs&ptb=55750EBF-F525-4FA5-B041-91854F8A4E2D&si=CLb1rvj747ACFcNN3wod0TWQ2g
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = http://search.certified-toolbar.com?si=41516&tid=553&bs=true&q=
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = http://search.certified-toolbar.com?si=41516&home=true&tid=553
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://search.certified-toolbar.com?si=41516&home=true&tid=553
IE - HKCU\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{36668FFD-7809-43FB-A609-999C5A7AB5FE}: "URL" = http://search.foxtab.com/?q={searchTerms}&s=1&chnl=dcom&cd=2XzutBtN2Y1L1QzutDtDtC0F0DtDyD0Fzy0EtByDzzyB0CyE0AtN0D0TzutBtDtCtCtDzztCyC&cr=840766604
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rlz=1I7GGLD_hr&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKCU\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://isearch.avg.com/search?cid={E5A60716-3480-4AC3-A0B9-879F66267C33}&mid=53d68bd7aaa147d1b3e2d15696bb77d6-c47b9d43fac3b23d83a0fd34fd2310baf5e994b4&lang=sr&ds=avgab0&pr=sa&d=2012-09-03 18:22:48&v=12.2.0.5&sap=dsp&q={searchTerms}
IE - HKCU\..\SearchScopes\{E88E0043-C9D4-4e33-8555-FEE4F5B63060}: "URL" = http://go.mail.ru/search?q={searchTerms}&utf8in=1&fr=ietb
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.order.1: "Claro Search"
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..browser.startup.homepage: "http://www.google.com"
FF - prefs.js..extensions.enabledAddons: 4zffxtbr@VideoDownloadConverter_4z.com:1.44.0.37692
FF - prefs.js..extensions.enabledAddons: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.4.8.1
FF - prefs.js..extensions.enabledAddons: {37fa1426-b82d-11db-8314-0800200c9a66}:2.9.11
FF - prefs.js..extensions.enabledAddons: {4176DFF4-4698-11DE-BEEB-45DA55D89593}:0.8.36
FF - prefs.js..extensions.enabledAddons: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}:20120827
FF - prefs.js..extensions.enabledAddons: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.9
FF - prefs.js..extensions.enabledAddons: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}:0.9.10
FF - prefs.js..extensions.enabledAddons: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:1.0
FF - prefs.js..extensions.enabledAddons: {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}:3.7
FF - prefs.js..keyword.URL: "http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=55750EBF-F525-4FA5-B041-91854F8A4E2D&n=77eda2cc&ind=2012062412&p2=^HJ^xdm007^S01700^rs&si=CLb1rvj747ACFcNN3wod0TWQ2g&searchfor="
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1165635.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\12.2.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.5.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/SAFFPlugin: C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@VideoDownloadConverter_4z.com/Plugin: C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll (MindSpark)
FF - HKLM\Software\MozillaPlugins\NitroPDF: C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll ( )
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Miroslav\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Miroslav\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Miroslav\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Miroslav\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Miroslav\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Miroslav\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2011/09/13 09:38:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fbphotozoom@installdaddy.com: C:\Program Files\fbphotozoom\fbphotozoom14.xpi
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\4zffxtbr@VideoDownloadConverter_4z.com: C:\Program Files\VideoDownloadConverter_4z\bar\1.bin [2012/09/06 07:23:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files\McAfee\SiteAdvisor [2012/08/15 18:31:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\12.2.0.5\ [2012/09/03 18:23:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/30 15:11:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/09/02 13:53:52 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/08/30 15:11:30 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 15.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/09/02 13:53:52 | 000,000,000 | ---D | M]

[2012/08/05 13:18:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Extensions
[2012/09/03 18:22:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\extensions
[2012/08/08 20:03:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\extensions
[2012/08/08 19:48:50 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\searchplugins
[2012/09/02 13:53:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions
[2012/08/30 15:11:39 | 000,000,000 | ---D | M] (WOT) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2012/03/31 10:18:18 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012/06/24 12:58:31 | 000,000,000 | ---D | M] (VideoDownloadConverter) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com
[2012/08/12 10:50:11 | 000,000,000 | ---D | M] (OneClickDownloader) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\OneClickDownload@OneClickDownload.com
[2012/02/10 11:43:26 | 000,000,000 | ---D | M] (Cooliris) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\piclens@cooliris.com
[2012/07/26 11:04:55 | 000,221,380 | ---- | M] () (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\gophoto@gophoto.it.xpi
[2012/08/17 09:41:47 | 000,340,132 | ---- | M] () (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
[2012/08/15 18:59:36 | 000,195,972 | ---- | M] () (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi
[2012/08/23 08:53:57 | 000,222,566 | ---- | M] () (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\{4176DFF4-4698-11DE-BEEB-45DA55D89593}.xpi
[2012/09/01 09:54:57 | 000,590,708 | ---- | M] () (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}.xpi
[2011/10/30 16:28:49 | 000,434,392 | ---- | M] () (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi
[2012/08/26 00:09:55 | 000,270,021 | ---- | M] () (No name found) -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2011/08/16 07:53:18 | 000,005,423 | ---- | M] () -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\searchplugins\Foxtab Web Search.xml
[2012/02/14 10:41:57 | 000,001,533 | ---- | M] () -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\searchplugins\mailru---.xml
[2012/08/08 19:48:50 | 000,003,267 | ---- | M] () -- C:\Users\Miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\l8upevv7.default\searchplugins\Web Search.xml
[2012/08/08 19:44:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/06/16 10:32:51 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/08/30 15:11:30 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/06/28 17:42:00 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
[2012/02/19 15:24:15 | 000,005,142 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\arccosine.xml
[2012/09/03 18:22:42 | 000,003,752 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2012/08/30 15:11:29 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/08/30 15:11:29 | 000,002,253 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage: http://www.google.com/webhp?source=search_app
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/webhp?source=search_app
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\21.0.1180.89\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\21.0.1180.89\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Miroslav\AppData\Local\Google\Chrome\Application\21.0.1180.89\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Skype Toolbars (Enabled) = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.3.0.7550_0\npSkypeChromePlugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Acrobat 6.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: downloadUpdater (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdnu.dll
CHR - plugin: downloadUpdater2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.3 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Miroslav\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Miroslav\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Nitro PDF Plug-In (Enabled) = C:\Program Files\Nitro PDF\Reader 2\npnitromozilla.dll
CHR - plugin: MindSpark Toolbar Platform Plugin Stub (Enabled) = C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll
CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\Miroslav\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Miroslav\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: AVG Secure Search = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdgpjclefcppbhifgmbncakhhphkggdb\12.2.0.5_1\
CHR - Extension: WOT = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\1.3.1_0\
CHR - Extension: YouTube = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google \u043F\u0440\u0435\u0442\u0440\u0430\u0433\u0430 = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Bejeweled 3 = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpfnajeohlopnloaaiggbnehnnldfkna\1.1_0\
CHR - Extension: SiteAdvisor = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\
CHR - Extension: Porsche = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkclphmapdcppbmekmbkcjfanpmoidpg\3_0\
CHR - Extension: Angry Birds Space = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnooodagiaoopopgidljneaphnbempag\1.1_0\
CHR - Extension: Skype Extension = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.3.0.7550_0\
CHR - Extension: Angry Birds Heikki - Full Edition = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\mobmplemkfmpcjopmgecaebllmgjigmg\4.5_0\
CHR - Extension: Onlive Clock = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\moddbcckaikhdnigidfcmaeelcobchpm\1.1_0\
CHR - Extension: GoPhoto.it = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk\1.4_0\
CHR - Extension: Cars 2 = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgbepcpbogoadmgnbgokcfhcgfmpkoni\2.3.1_0\
CHR - Extension: Gmail = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: OneClickDownload = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco\1.1_0\
CHR - Extension: AVG Secure Search = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdgpjclefcppbhifgmbncakhhphkggdb\12.2.0.5_1\
CHR - Extension: WOT = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\1.3.1_0\
CHR - Extension: YouTube = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google \u043F\u0440\u0435\u0442\u0440\u0430\u0433\u0430 = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Bejeweled 3 = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpfnajeohlopnloaaiggbnehnnldfkna\1.1_0\
CHR - Extension: SiteAdvisor = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\
CHR - Extension: Porsche = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkclphmapdcppbmekmbkcjfanpmoidpg\3_0\
CHR - Extension: Angry Birds Space = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gnooodagiaoopopgidljneaphnbempag\1.1_0\
CHR - Extension: Skype Extension = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.3.0.7550_0\
CHR - Extension: Angry Birds Heikki - Full Edition = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\mobmplemkfmpcjopmgecaebllmgjigmg\4.5_0\
CHR - Extension: Onlive Clock = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\moddbcckaikhdnigidfcmaeelcobchpm\1.1_0\
CHR - Extension: GoPhoto.it = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk\1.4_0\
CHR - Extension: Cars 2 = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgbepcpbogoadmgnbgokcfhcgfmpkoni\2.3.1_0\
CHR - Extension: Gmail = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: OneClickDownload = C:\Users\Miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco\1.1_0\

O1 HOSTS File: ([2009/06/10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {88AC3CB6-596B-4217-964C-B6757EF9602D} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BtTray] C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe ()
O4 - HKLM..\Run: [ExpressFiles] C:\Program Files\ExpressFiles\ExpressFiles.exe (http://www.express-files.com/)
O4 - HKLM..\Run: [HF_G_Jul] "C:\Program Files\AVG Secure Search\HF_G_Jul.exe" /DoAction File not found
O4 - HKLM..\Run: [LVCOMSX] C:\Windows\System32\LVCOMSX.EXE (Logitech Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [Otshot] c:\program files\otshot\otshot.exe -minimize File not found
O4 - HKLM..\Run: [ROC_roc_dec12] "C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12 File not found
O4 - HKLM..\Run: [ROC_roc_ssl_v12] C:\Program Files\AVG Secure Search\ROC_roc_ssl_v12.exe ()
O4 - HKLM..\Run: [US4Service] C:\ProgramData\Everstrike\US4Service.exe ()
O4 - HKLM..\Run: [VDownloader] C:\Users\Miroslav\AppData\Local\Temp\RarSFX0\VDownloader.exe /silent File not found
O4 - HKLM..\Run: [VideoDownloadConverter Search Scope Monitor] C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zSrchMn.exe (MindSpark)
O4 - HKLM..\Run: [VideoDownloadConverter_4z Browser Plugin Loader] C:\Program Files\VideoDownloadConverter_4z\bar\1.bin\4zbrmon.exe (VER_COMPANY_NAME)
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKLM..\Run: [WinFastDTV] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe (Leadtek Research Inc.)
O4 - HKCU..\Run: [µTorrent] D:\Nova mapa\utorrent.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [espaces] C:\premiumsoft\PhotoFun\photofun.exe File not found
O4 - HKCU..\Run: [Facebook Update] C:\Users\Miroslav\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKCU..\Run: [fsm] File not found
O4 - HKCU..\Run: [googletalk] C:\Users\Miroslav\AppData\Roaming\Google Talk\googletalk.exe /autostart File not found
O4 - HKCU..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech)
O4 - HKCU..\Run: [Orb] C:\Program Files\Winamp Remote\bin\OrbTray.exe (Orb Networks)
O4 - HKCU..\Run: [RemoTerm.exe] C:\Program Files\Common Files\PCTV Systems\RemoTerm\RemoTerm.exe File not found
O4 - HKCU..\Run: [TBPanel] C:\Program Files\XpertVision\TBPanel.exe (Xpertvision, Inc.)
O4 - HKCU..\Run: [Tesseract-OCR] D:\Skidanje sa RapidShare\JDownloader\plugins\Tesseract-OCR\tesseract.exe ()
O4 - HKCU..\Run: [uTorrent] D:\Nova mapa\utorrent.exe (BitTorrent, Inc.)
O4 - HKCU..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFDTV\WFWIZ.exe (Leadtek Research Inc.)
O4 - HKLM..\RunOnce: [GEST] C:\Program Files\GIGABYTE\GEST\run.exe ()
O4 - Startup: C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ACR Launcher.lnk = C:\Program Files\ACR\AutoClubRev\web\acrlauncher.exe ()
O4 - Startup: C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DesktopVideoPlayer.lnk = File not found
O4 - Startup: C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tcbhn.lnk = C:\Users\Miroslav\AppData\Roaming\BrowserCompanion\tcbhn.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O8 - Extra context menu item: Send by Bluetooth - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm ()
O8 - Extra context menu item: Send via &Message... - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm ()
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DB1103A9-AE75-4AAE-A8AB-2DF45408AC2C}: DhcpNameServer = 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FBEB418F-647F-4375-BEAA-FBFAA14D3226}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\bw+0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw+0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw-0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw00 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw00s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw-0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw10 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw10s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw20 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw20s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw30 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw30s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw40 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw40s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw50 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw50s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw60 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw60s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw70 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw70s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw80 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw80s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw90 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bw90s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwa0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwa0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwb0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwb0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwc0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwc0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwd0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwd0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwe0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwe0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwf0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwf0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwg0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwg0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwh0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwh0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwi0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwi0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwj0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwj0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwk0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwk0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwl0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwl0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwm0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwm0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwn0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwn0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwo0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwo0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwp0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwp0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwq0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwq0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwr0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwr0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bws0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bws0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwt0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwt0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwu0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwu0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwv0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwv0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bww0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bww0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwx0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwx0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwy0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwy0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwz0 {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\bwz0s {8d1ec586-4267-428f-a4fa-99b76db9e692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\offline-8876480 {8D1EC586-4267-428F-A4FA-99B76DB9E692} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (BackWeb Technologies Inc. )
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\System32\skype4com.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.0\ViProtocol.dll ()
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/09/06 07:23:17 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/09/05 14:19:50 | 000,599,040 | ---- | C] (OldTimer Tools) -- C:\Users\Miroslav\Desktop\OTL.exe
[2012/09/05 09:57:31 | 000,607,260 | R--- | C] (Swearware) -- C:\Users\Miroslav\Desktop\dds.scr
[2012/09/04 16:03:22 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Local\Jiri_Cincura_-_x2develop
[2012/09/04 16:03:22 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\ID3 renamer
[2012/09/03 18:23:06 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Local\AVG Secure Search
[2012/09/03 18:23:03 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Secure Search
[2012/09/03 18:22:43 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search
[2012/09/02 14:04:43 | 000,027,496 | ---- | C] (AVG Technologies) -- C:\Windows\System32\drivers\avgtpx86.sys
[2012/09/02 14:04:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVG Secure Search
[2012/09/01 18:55:50 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\BrowserCompanion
[2012/08/26 00:13:25 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\Jarte
[2012/08/25 22:33:54 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\StartMenuX
[2012/08/25 22:33:54 | 000,000,000 | ---D | C] -- C:\ProgramData\StartMenuX
[2012/08/19 12:27:53 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\VDownloader
[2012/08/19 12:27:53 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Local\VDownloader
[2012/08/18 19:58:22 | 000,000,000 | ---D | C] -- C:\Program Files\smartdl
[2012/08/18 14:41:08 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Local\Skymonk2
[2012/08/16 18:04:42 | 000,000,000 | ---D | C] -- C:\ProgramData\EasyMP3Downloader
[2012/08/16 14:58:07 | 000,000,000 | ---D | C] -- C:\Storage
[2012/08/16 14:55:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WOLFCODERS SecurityCam
[2012/08/16 14:55:21 | 000,000,000 | ---D | C] -- C:\Program Files\WOLFCODERS SecurityCam
[2012/08/15 16:20:11 | 000,627,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012/08/15 16:20:09 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/08/15 16:20:09 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/08/15 16:20:09 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/08/15 16:20:08 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/08/15 16:19:55 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2012/08/15 16:19:54 | 002,345,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/08/15 16:19:49 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browcli.dll
[2012/08/13 19:07:25 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Local\Pokki
[2012/08/13 19:04:06 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Winamp Detector Plug-in
[2012/08/13 19:04:06 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect
[2012/08/13 19:03:48 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\Winamp
[2012/08/13 12:52:33 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\flashInstall
[2012/08/12 12:46:42 | 000,000,000 | ---D | C] -- C:\Program Files\ExpressFiles
[2012/08/12 12:24:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flash Player Pro
[2012/08/12 12:24:38 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\Documents\Flash Player Pro
[2012/08/12 12:24:38 | 000,000,000 | ---D | C] -- C:\Program Files\Flash Player Pro
[2012/08/11 18:18:07 | 000,000,000 | ---D | C] -- C:\Windows\System32\Adobe
[2012/08/11 17:12:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee
[2012/08/11 17:12:41 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee
[2012/08/11 10:03:13 | 000,426,184 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/08/11 10:03:13 | 000,070,344 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/08/11 05:08:48 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\Desktop\Online Radios
[2012/08/11 00:21:12 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flash Movie Player
[2012/08/11 00:21:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Flash Movie Player
[2012/08/11 00:21:10 | 000,000,000 | ---D | C] -- C:\Program Files\Flash Movie Player
[2012/08/09 11:13:11 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Angry Birds Seasons [HD]
[2012/08/09 11:13:10 | 000,000,000 | ---D | C] -- C:\Program Files\Foxy Games
[2012/08/09 11:13:09 | 000,000,000 | ---D | C] -- C:\Downloads
[2012/08/08 23:09:40 | 000,000,000 | ---D | C] -- C:\Share
[2012/08/08 19:49:12 | 000,000,000 | ---D | C] -- C:\Program Files\CertifiedToolsToolbar
[2012/08/08 19:49:05 | 000,000,000 | ---D | C] -- C:\Program Files\Protected Search
[2012/08/08 19:47:54 | 000,000,000 | ---D | C] -- C:\Program Files\otshot
[2012/08/08 19:47:42 | 000,000,000 | ---D | C] -- C:\Program Files\Vid-Saver
[2012/08/08 19:46:29 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\ZalmanInstaller_otshot
[2012/08/08 19:43:03 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\YourFileDownloader
[2012/08/08 19:43:03 | 000,000,000 | ---D | C] -- C:\Program Files\YourFileDownloader
[2012/08/08 12:37:31 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Active Dancer
[2012/08/08 12:37:27 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtuaGirl
[2012/08/08 12:37:04 | 000,000,000 | ---D | C] -- C:\Users\Miroslav\AppData\Local\ActiveDancer

========== Files - Modified Within 30 Days ==========

[2012/09/06 07:34:37 | 000,016,944 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/06 07:34:37 | 000,016,944 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/06 07:27:29 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys
[2012/09/06 07:27:25 | 000,005,980 | ---- | M] () -- C:\Windows\System32\LOCALSERVICE.INI
[2012/09/06 07:27:15 | 000,001,032 | ---- | M] () -- C:\Windows\System32\bscs.ini
[2012/09/06 07:27:14 | 000,000,316 | -HS- | M] () -- C:\Windows\tasks\Emrucn.job
[2012/09/06 07:27:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/06 07:26:47 | 1609,424,896 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/06 07:23:02 | 000,000,920 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2825592823-70381299-2544238881-1001UA.job
[2012/09/06 07:20:00 | 000,000,938 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2825592823-70381299-2544238881-1001UA.job
[2012/09/06 06:51:13 | 093,762,729 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2012/09/05 21:22:03 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2825592823-70381299-2544238881-1001Core.job
[2012/09/05 14:19:53 | 000,599,040 | ---- | M] (OldTimer Tools) -- C:\Users\Miroslav\Desktop\OTL.exe
[2012/09/05 14:14:54 | 000,452,538 | ---- | M] () -- C:\Users\Miroslav\Desktop\amazing-gif-pt3-stop-that-cat.gif
[2012/09/05 10:51:21 | 547,965,977 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/09/05 10:20:00 | 000,000,916 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2825592823-70381299-2544238881-1001Core.job
[2012/09/05 10:06:57 | 000,302,592 | ---- | M] () -- C:\Users\Miroslav\Desktop\f2elbd8t.exe
[2012/09/05 09:57:41 | 000,607,260 | R--- | M] (Swearware) -- C:\Users\Miroslav\Desktop\dds.scr
[2012/09/03 18:41:46 | 011,400,623 | ---- | M] () -- C:\Users\Miroslav\Desktop\Exkluziv 02.01. - Uuuups....mp4
[2012/09/03 18:37:24 | 002,445,605 | ---- | M] () -- C:\Users\Miroslav\Desktop\Vrapcici - Ti i Ja.wmv.mp3
[2012/09/03 18:22:47 | 000,027,496 | ---- | M] (AVG Technologies) -- C:\Windows\System32\drivers\avgtpx86.sys
[2012/09/03 15:31:37 | 001,129,334 | ---- | M] () -- C:\Users\Miroslav\Desktop\utorrent.lng
[2012/09/02 10:44:51 | 000,618,714 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/09/02 10:44:51 | 000,107,034 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/09/01 18:58:16 | 000,002,084 | ---- | M] () -- C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tcbhn.lnk
[2012/09/01 18:54:58 | 000,000,596 | ---- | M] () -- C:\Windows\System32\InstallUtil.InstallLog
[2012/08/26 17:07:36 | 000,000,746 | ---- | M] () -- C:\Users\Miroslav\Desktop\Portable - Shortcut.lnk
[2012/08/19 18:59:53 | 000,000,064 | ---- | M] () -- C:\Users\Miroslav\AppData\Roaming\mbam.context.scan
[2012/08/17 01:26:34 | 000,207,292 | ---- | M] () -- C:\torrent.exe
[2012/08/15 18:32:04 | 000,489,336 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/08/12 12:28:27 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/08/12 12:28:27 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/08/12 07:17:29 | 000,001,179 | ---- | M] () -- C:\Users\Miroslav\Application Data\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk
[2012/08/08 23:29:20 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Angry Birds Rio.lnk
[2012/08/08 19:47:57 | 000,000,975 | ---- | M] () -- C:\Users\Miroslav\Application Data\Microsoft\Internet Explorer\Quick Launch\Otshot.lnk
[2012/08/08 12:37:27 | 000,001,138 | ---- | M] () -- C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DesktopVideoPlayer.lnk
[2012/08/07 19:25:26 | 000,001,099 | ---- | M] () -- C:\Users\Public\Desktop\Angry Birds Space.lnk
[2012/08/07 13:42:19 | 000,002,075 | ---- | M] () -- C:\Users\Public\Desktop\Angry Birds Seasons.lnk

========== Files Created - No Company Name ==========

[2012/09/05 14:14:53 | 000,452,538 | ---- | C] () -- C:\Users\Miroslav\Desktop\amazing-gif-pt3-stop-that-cat.gif
[2012/09/05 10:06:56 | 000,302,592 | ---- | C] () -- C:\Users\Miroslav\Desktop\f2elbd8t.exe
[2012/09/03 18:38:49 | 011,400,623 | ---- | C] () -- C:\Users\Miroslav\Desktop\Exkluziv 02.01. - Uuuups....mp4
[2012/09/03 18:35:54 | 002,445,605 | ---- | C] () -- C:\Users\Miroslav\Desktop\Vrapcici - Ti i Ja.wmv.mp3
[2012/09/03 15:31:21 | 001,129,334 | ---- | C] () -- C:\Users\Miroslav\Desktop\utorrent.lng
[2012/09/01 18:55:51 | 000,002,084 | ---- | C] () -- C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tcbhn.lnk
[2012/09/01 18:54:56 | 000,000,596 | ---- | C] () -- C:\Windows\System32\InstallUtil.InstallLog
[2012/08/26 17:07:36 | 000,000,746 | ---- | C] () -- C:\Users\Miroslav\Desktop\Portable - Shortcut.lnk
[2012/08/17 01:26:34 | 000,207,292 | ---- | C] () -- C:\torrent.exe
[2012/08/08 23:29:20 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Angry Birds Rio.lnk
[2012/08/08 19:47:58 | 000,000,963 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\otshot.lnk
[2012/08/08 19:47:57 | 000,000,975 | ---- | C] () -- C:\Users\Miroslav\Application Data\Microsoft\Internet Explorer\Quick Launch\Otshot.lnk
[2012/08/08 12:37:27 | 000,001,138 | ---- | C] () -- C:\Users\Miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DesktopVideoPlayer.lnk
[2012/08/07 19:25:26 | 000,001,099 | ---- | C] () -- C:\Users\Public\Desktop\Angry Birds Space.lnk
[2012/08/07 14:19:24 | 000,000,750 | ---- | C] () -- C:\Users\Miroslav\Desktop\AngryBirds - Shortcut.lnk
[2012/08/07 13:42:19 | 000,002,075 | ---- | C] () -- C:\Users\Public\Desktop\Angry Birds Seasons.lnk
[2012/07/27 12:23:15 | 000,000,218 | ---- | C] () -- C:\Users\Miroslav\.recently-used.xbel
[2012/07/18 14:18:45 | 000,000,128 | ---- | C] () -- C:\Windows\System32\REMOTEDEVICE.INI
[2012/07/18 14:18:44 | 000,005,980 | ---- | C] () -- C:\Windows\System32\LOCALSERVICE.INI
[2012/07/18 14:18:43 | 000,000,103 | ---- | C] () -- C:\Windows\System32\LOCALDEVICE.INI
[2012/07/18 14:12:09 | 000,000,000 | ---- | C] () -- C:\Windows\System32\BSPRINT.INI
[2012/07/06 09:32:39 | 000,000,064 | ---- | C] () -- C:\Users\Miroslav\AppData\Roaming\mbam.context.scan
[2012/07/02 14:16:33 | 000,000,082 | ---- | C] () -- C:\Windows\SuperUtil.ini
[2012/04/09 17:19:02 | 000,000,017 | ---- | C] () -- C:\Users\Miroslav\AppData\Local\resmon.resmoncfg
[2012/04/07 14:49:25 | 000,000,133 | ---- | C] () -- C:\Windows\(zabranjeno).INI
[2012/03/10 12:24:54 | 000,004,096 | -H-- | C] () -- C:\Users\Miroslav\AppData\Local\keyfile3.drm
[2012/02/19 16:05:05 | 000,000,002 | ---- | C] () -- C:\Windows\System32\Dvbpws.dll
[2012/02/17 19:12:03 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2012/01/30 16:45:41 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2012/01/30 16:45:41 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2011/10/30 16:32:04 | 000,141,540 | ---- | C] () -- C:\Windows\hpiins06.dat.temp
[2011/10/30 16:32:04 | 000,000,000 | ---- | C] () -- C:\Windows\hpimdl06.dat.temp
[2011/10/19 23:46:10 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2011/10/19 23:45:12 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011/09/15 15:18:09 | 000,016,384 | ---- | C] () -- C:\Users\Miroslav\AppData\Roaming\soft.exe
[2011/08/27 10:34:37 | 000,917,504 | ---- | C] () -- C:\Windows\System32\dtsdecoderdll.dll
[2011/08/16 13:08:30 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011/08/16 13:08:29 | 000,819,200 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011/08/16 13:08:29 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011/08/16 13:08:28 | 000,074,752 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2011/08/16 11:21:50 | 000,000,790 | ---- | C] () -- C:\Windows\SIERRA.INI
[2011/06/22 15:26:31 | 000,130,063 | ---- | C] () -- C:\Windows\hpiins06.dat
[2011/06/22 15:26:30 | 000,000,000 | ---- | C] () -- C:\Windows\hpimdl06.dat
[2011/06/05 17:37:06 | 000,000,056 | ---- | C] () -- C:\ProgramData\DFRM4.key
[2011/06/05 17:36:55 | 000,000,012 | ---- | C] () -- C:\Users\Miroslav\AppData\Roaming\7427
[2011/06/05 17:36:55 | 000,000,012 | ---- | C] () -- C:\ProgramData\6622
[2011/06/05 17:36:55 | 000,000,012 | ---- | C] () -- C:\Users\Miroslav\AppData\Local\2902
[2011/06/05 17:36:55 | 000,000,012 | ---- | C] () -- C:\ProgramData\1252
[2011/06/05 17:36:55 | 000,000,012 | ---- | C] () -- C:\ProgramData\0840
[2011/05/27 15:25:55 | 000,000,000 | ---- | C] () -- C:\Windows\BsMobileModel.ini
[2011/05/06 13:02:38 | 000,180,224 | ---- | C] () -- C:\Windows\System32\WinVd32.sys
[2011/05/06 12:31:34 | 000,007,680 | ---- | C] () -- C:\Windows\System32\WinFLsrv.exe
[2011/05/03 12:33:25 | 000,484,656 | ---- | C] () -- C:\Windows\ssndii.exe
[2011/05/03 12:32:35 | 000,116,016 | ---- | C] () -- C:\Windows\Wiainst.exe
[2011/05/03 12:32:26 | 000,090,112 | R--- | C] () -- C:\Windows\System32\SaSegFlt.dll
[2011/05/03 12:32:25 | 000,274,432 | R--- | C] () -- C:\Windows\System32\SaMinDrv.dll
[2011/05/03 12:32:25 | 000,106,496 | R--- | C] () -- C:\Windows\System32\SaImgFlt.dll
[2011/05/03 12:32:25 | 000,061,440 | R--- | C] () -- C:\Windows\System32\SaErHdlr.dll
[2011/05/03 12:31:37 | 000,026,624 | ---- | C] () -- C:\Windows\System32\ssb3ml3.dll
[2011/05/02 18:09:44 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2011/05/01 15:21:07 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2011/05/01 14:30:54 | 000,003,584 | ---- | C] () -- C:\Users\Miroslav\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/04/30 17:26:24 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\SAMSFPA.DAT
[2011/04/30 16:27:26 | 000,013,126 | ---- | C] () -- C:\Windows\System32\lvcoinst.ini
[2011/04/30 16:26:53 | 000,000,719 | R--- | C] () -- C:\Windows\System32\InstExec.ini
[2011/04/30 16:25:56 | 000,118,784 | R--- | C] () -- C:\Windows\bwUnin-7.2.0.137-8876480SL.exe
[2011/04/30 15:54:37 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini

< End of report >

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Kakvo je sada stanje? Imas li problema?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Stanje je potpuno isto , nista se nije promenilo

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Preuzmi TDSSKiller sa sljedeće adrese na Desktop:

TDSSKiller


Kad preuzimanje bude završeno:

Preimenuj TDSSKiller.exe u MyCity.exe

Pokreni MyCity.exe i klikni na Change parametres.

U dijelu Additional options štrikliraj opcije Verify driver signatures i Detect TDLFS file system, a zatim klikni na OK.

Klikni na Start scan.

Kad završi prikazaće ti rezultate skeniranja i tu nemoj ništa da mijenjaš već samo klikni na Continue.

Ukoliko program bude zatražio restart sistema dozvoli mu to.

Prikači uz poruku izvještaj koji se nalazi na sljedećoj lokaciji:
C:\TDSSKiller_verzija programa_DD.MM.GG_HH.MM.SS.txt
(DD-dan, MM-mesec, GG-godina, HH-sat, MM-minut, SS-sekunda; datum i vrijeme kada je log napravljen)