MyCity » Ambulanta -> Arhiva Ambulante » Sve crno

Sve crno

Napisano na dan: 20.2.2013

Strana:
1
2
3

Sve crno

Pagination

Prethodna strana

Odgovori

Strana:
1
2
3

ajzaklija Poslao: 21 Feb 2013 17:46 Idi na vrh
offline ajzaklija Građanin Pridružio: 14 Dec 2009 Poruke: 154	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 21 Feb 2013 13:46 Znas sta je u pitanju, kad sam danas ponovo uradio system restore, vratio mi je MSE, tako da nisam ni znao Sad cu da obrisem ponovo MSE i obrisao sam TuneUp Utilities, pa kacim ponovo OTL! Dopuna: 21 Feb 2013 13:53 Aj sad OTL logfile created on: 21-Feb-13 1:48:47 PM - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Milos\Desktop 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000409 \| Country: United States \| Language: ENU \| Date Format: dd-MMM-yy 3.87 Gb Total Physical Memory \| 2.11 Gb Available Physical Memory \| 54.66% Memory free 7.73 Gb Paging File \| 5.74 Gb Available in Paging File \| 74.22% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: \| %SystemRoot% = C:\Windows \| %ProgramFiles% = C:\Program Files (x86) Drive C: \| 195.21 Gb Total Space \| 134.13 Gb Free Space \| 68.71% Space Free \| Partition Type: NTFS Drive D: \| 736.30 Gb Total Space \| 72.15 Gb Free Space \| 9.80% Space Free \| Partition Type: NTFS Computer Name: MILOS-PC_I3 \| User Name: Milos \| Logged in as Administrator. Boot Mode: Normal \| Scan Mode: Current user \| Include 64bit Scans Company Name Whitelist: Off \| Skip Microsoft Files: Off \| No Company Name Whitelist: On \| File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013-02-21 12:45:46 \| 000,602,112 \| ---- \| M] (OldTimer Tools) -- C:\Users\Milos\Desktop\OTL.exe PRC - [2013-02-21 12:20:22 \| 000,213,384 \| ---- \| M] (Google Inc.) -- C:\Users\Milos\AppData\Local\Google\Update\1.3.21.135\GoogleCrashHandler.exe PRC - [2012-12-21 13:08:56 \| 001,333,424 \| ---- \| M] (ESET) -- D:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe PRC - [2012-12-19 09:49:34 \| 000,732,648 \| ---- \| M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe PRC - [2012-12-19 09:49:12 \| 000,149,480 \| ---- \| M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe PRC - [2012-12-18 15:28:08 \| 000,065,192 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2012-12-14 16:49:28 \| 000,682,344 \| ---- \| M] (Malwarebytes Corporation) -- D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2012-12-14 16:49:28 \| 000,512,360 \| ---- \| M] (Malwarebytes Corporation) -- D:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2012-12-14 16:49:28 \| 000,398,184 \| ---- \| M] (Malwarebytes Corporation) -- D:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe PRC - [2012-10-23 10:47:48 \| 002,848,168 \| ---- \| M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe PRC - [2012-10-02 12:15:38 \| 000,382,824 \| ---- \| M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2012-02-25 13:29:40 \| 000,583,680 \| ---- \| M] (MyCity) -- D:\Program Files\MCShield\MCShieldRTM.exe PRC - [2012-01-31 09:46:56 \| 000,019,232 \| ---- \| M] (Autodesk, Inc.) -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe PRC - [2011-11-03 19:25:09 \| 002,358,656 \| ---- \| M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe PRC - [2011-01-20 10:20:12 \| 001,305,408 \| ---- \| M] (DT Soft Ltd) -- D:\Program Files\DAEMON Tools Lite\DTLite.exe PRC - [2010-09-02 09:59:16 \| 002,158,592 \| ---- \| M] () -- C:\Program Files (x86)\Vtune\TBPANEL.exe PRC - [2010-05-04 11:07:22 \| 000,503,080 \| ---- \| M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe PRC - [2009-10-14 12:36:56 \| 002,793,304 \| ---- \| M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe PRC - [2009-10-14 12:34:18 \| 000,560,472 \| ---- \| M] () -- C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe PRC - [2009-10-07 00:47:22 \| 000,125,464 \| ---- \| M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe PRC - [2009-08-27 16:09:10 \| 001,253,376 \| ---- \| M] (MAGIX AG) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe PRC - [2007-02-05 09:11:16 \| 000,112,184 \| ---- \| M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe PRC - [2007-02-05 09:11:08 \| 005,961,272 \| ---- \| M] (Sony Corporation) -- D:\Program Files\SonicStage\Omgjbox.exe PRC - [2007-02-02 18:05:24 \| 000,102,400 \| ---- \| M] (Sony Corporation) -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsDbConnection.exe PRC - [2006-12-14 00:46:16 \| 000,057,344 \| ---- \| M] () -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe PRC - [2006-03-01 02:10:18 \| 000,069,632 \| ---- \| M] (CrypKey (Canada) Ltd.) -- C:\Windows\SysWOW64\Crypserv.exe PRC - [2004-12-13 03:34:32 \| 000,049,152 \| ---- \| M] (Ulead Systems, Inc.) -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe ========== Modules (No Company Name) ========== MOD - [2013-01-26 03:35:06 \| 000,460,240 \| ---- \| M] () -- C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\ppgooglenaclpluginchrome.dll MOD - [2013-01-26 03:35:04 \| 004,012,496 \| ---- \| M] () -- C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\pdf.dll MOD - [2013-01-26 03:34:19 \| 000,597,968 \| ---- \| M] () -- C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\libglesv2.dll MOD - [2013-01-26 03:34:18 \| 000,124,368 \| ---- \| M] () -- C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\libegl.dll MOD - [2013-01-26 03:34:16 \| 001,552,848 \| ---- \| M] () -- C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\ffmpegsumo.dll MOD - [2010-11-25 09:53:57 \| 000,797,696 \| ---- \| M] () -- C:\Program Files (x86)\BearShare Applications\BearShare\ac3filter.ax MOD - [2010-09-02 09:59:16 \| 002,158,592 \| ---- \| M] () -- C:\Program Files (x86)\Vtune\TBPANEL.exe MOD - [2009-10-14 12:36:56 \| 002,793,304 \| ---- \| M] () -- C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe MOD - [2009-10-14 12:34:18 \| 000,560,472 \| ---- \| M] () -- C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe MOD - [2009-07-14 02:15:45 \| 000,364,544 \| ---- \| M] () -- C:\Windows\SysWOW64\msjetoledb40.dll MOD - [2008-10-01 09:33:30 \| 002,490,368 \| ---- \| M] () -- C:\Program Files (x86)\Common Files\Common Share\Filters\FFDShow\ffdshow.ax MOD - [2007-02-02 18:40:32 \| 000,548,864 \| ---- \| M] () -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\OpdClie.dll MOD - [2006-12-14 00:55:44 \| 000,106,496 \| ---- \| M] () -- C:\Program Files (x86)\Common Files\Sony Shared\OpenMG\OmgDseeFilter.ax MOD - [1998-10-31 03:55:56 \| 000,005,120 \| ---- \| M] () -- C:\Program Files (x86)\Vtune\TBMANAGE.DLL ========== Services (SafeList) ========== SRV:64bit: - [2012-10-19 19:42:37 \| 001,432,400 \| ---- \| M] (Flexera Software, Inc.) [On_Demand \| Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64) SRV:64bit: - [2011-03-09 12:12:26 \| 005,352,960 \| ---- \| M] (Native Instruments GmbH) [Auto \| Running] -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService) SRV:64bit: - [2009-10-07 00:47:10 \| 000,191,000 \| ---- \| M] (Logitech Inc.) [Auto \| Running] -- C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe -- (LVPrcS64) SRV:64bit: - [2009-07-14 02:41:27 \| 001,011,712 \| ---- \| M] (Microsoft Corporation) [Auto \| Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:64bit: - [2009-07-14 02:40:01 \| 000,193,536 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:64bit: - [2008-05-08 00:29:38 \| 000,122,880 \| ---- \| M] (CrypKey (Canada) Ltd.) [Auto \| Running] -- C:\Windows\SysNative\Crypserv.exe -- (Crypkey License) SRV - [2013-02-08 18:29:41 \| 000,251,248 \| ---- \| M] (Adobe Systems Incorporated) [On_Demand \| Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013-01-08 12:55:20 \| 000,161,536 \| R--- \| M] (Skype Technologies) [Auto \| Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012-12-21 13:08:56 \| 001,333,424 \| ---- \| M] (ESET) [Auto \| Running] -- D:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn) SRV - [2012-12-19 09:49:34 \| 000,732,648 \| ---- \| M] (Nokia) [On_Demand \| Running] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2012-12-18 15:28:08 \| 000,065,192 \| ---- \| M] (Adobe Systems Incorporated) [Auto \| Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2012-12-14 16:49:28 \| 000,682,344 \| ---- \| M] (Malwarebytes Corporation) [Auto \| Running] -- D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2012-12-14 16:49:28 \| 000,398,184 \| ---- \| M] (Malwarebytes Corporation) [Auto \| Running] -- D:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2012-11-15 00:53:10 \| 000,529,744 \| ---- \| M] (Valve Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012-10-23 10:47:48 \| 002,848,168 \| ---- \| M] (TeamViewer GmbH) [Auto \| Running] -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7) SRV - [2012-10-10 20:23:42 \| 001,258,856 \| ---- \| M] (NVIDIA Corporation) [Auto \| Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2012-10-02 12:15:38 \| 000,382,824 \| ---- \| M] (NVIDIA Corporation) [Auto \| Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2012-01-31 09:46:56 \| 000,019,232 \| ---- \| M] (Autodesk, Inc.) [Auto \| Running] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service) SRV - [2011-11-03 19:25:09 \| 002,358,656 \| ---- \| M] (TeamViewer GmbH) [Auto \| Running] -- C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6) SRV - [2011-06-12 10:15:00 \| 031,125,880 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- D:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service) SRV - [2011-05-12 19:13:40 \| 000,008,192 \| ---- \| M] () [Auto \| Stopped] -- C:\Windows\SysWOW64\srvany.exe -- (KMService) SRV - [2010-05-04 11:07:22 \| 000,503,080 \| ---- \| M] (Nero AG) [Auto \| Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate) SRV - [2010-03-18 12:16:28 \| 000,130,384 \| ---- \| M] (Microsoft Corporation) [Auto \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010-02-19 12:37:14 \| 000,517,096 \| ---- \| M] (Adobe Systems Incorporated) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009-08-27 16:09:10 \| 001,253,376 \| ---- \| M] (MAGIX AG) [Auto \| Running] -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe -- (Fabs) SRV - [2009-06-10 22:23:09 \| 000,066,384 \| ---- \| M] (Microsoft Corporation) [Disabled \| Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008-08-07 10:10:02 \| 003,276,800 \| ---- \| M] (MAGIX®) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance) SRV - [2007-02-05 09:11:18 \| 000,075,320 \| ---- \| M] (Sony Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe -- (SSScsiSV) SRV - [2007-02-05 09:11:16 \| 000,112,184 \| ---- \| M] (Sony Corporation) [On_Demand \| Running] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe -- (SonicStage Back-End Service) SRV - [2006-12-14 01:21:20 \| 000,045,056 \| ---- \| M] (Sony Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe -- (MSCSPTISRV) SRV - [2006-12-14 01:02:08 \| 000,069,632 \| ---- \| M] (Sony Corporation) [On_Demand \| Stopped] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV) SRV - [2006-12-14 00:46:16 \| 000,057,344 \| ---- \| M] () [On_Demand \| Running] -- C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR) SRV - [2006-03-01 02:10:18 \| 000,069,632 \| ---- \| M] (CrypKey (Canada) Ltd.) [Auto \| Running] -- C:\Windows\SysWow64\Crypserv.exe -- (Crypkey License) SRV - [2004-12-13 03:34:32 \| 000,049,152 \| ---- \| M] (Ulead Systems, Inc.) [Auto \| Running] -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper) ========== Driver Services (SafeList) ========== DRV:64bit: - [2012-12-21 13:09:28 \| 000,057,904 \| ---- \| M] (ESET) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp) DRV:64bit: - [2012-12-21 13:09:24 \| 000,190,232 \| ---- \| M] (ESET) [Kernel \| Auto \| Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw) DRV:64bit: - [2012-12-21 13:09:24 \| 000,059,440 \| ---- \| M] (ESET) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF) DRV:64bit: - [2012-12-21 13:08:54 \| 000,150,616 \| ---- \| M] (ESET) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv) DRV:64bit: - [2012-12-21 13:08:18 \| 000,213,416 \| ---- \| M] (ESET) [File_System \| System \| Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm) DRV:64bit: - [2012-12-14 16:49:28 \| 000,024,176 \| ---- \| M] (Malwarebytes Corporation) [File_System \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector) DRV:64bit: - [2012-11-09 15:33:30 \| 000,027,136 \| ---- \| M] (Nokia) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc) DRV:64bit: - [2012-11-09 15:33:30 \| 000,019,968 \| ---- \| M] (Nokia) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd) DRV:64bit: - [2012-11-09 15:33:30 \| 000,009,216 \| ---- \| M] (Nokia) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt) DRV:64bit: - [2012-11-09 15:33:30 \| 000,009,216 \| ---- \| M] (Nokia) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev) DRV:64bit: - [2012-10-17 13:53:46 \| 000,026,112 \| ---- \| M] (Nokia) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd) DRV:64bit: - [2012-08-23 15:10:20 \| 000,019,456 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2012-08-23 15:07:35 \| 000,057,856 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2012-05-15 11:47:06 \| 000,082,816 \| ---- \| M] (VSO Software) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin) DRV:64bit: - [2012-03-01 07:46:16 \| 000,023,408 \| ---- \| M] (Microsoft Corporation) [Recognizer \| Boot \| Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2012-02-22 11:34:36 \| 000,028,160 \| ---- \| M] (ManyCam LLC) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\mcaudrv_x64.sys -- (mcaudrv_simple) DRV:64bit: - [2012-01-17 13:45:56 \| 000,188,224 \| ---- \| M] (NVIDIA Corporation) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - [2012-01-11 07:11:20 \| 000,034,304 \| ---- \| M] (ManyCam LLC) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\mcvidrv_x64.sys -- (ManyCam) DRV:64bit: - [2011-06-10 05:34:52 \| 000,539,240 \| ---- \| M] (Realtek ) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:64bit: - [2011-05-28 16:53:26 \| 000,314,016 \| ---- \| M] () [Kernel \| Auto \| Running] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt) DRV:64bit: - [2011-05-28 16:53:25 \| 000,043,680 \| ---- \| M] () [Kernel \| Auto \| Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt) DRV:64bit: - [2011-04-16 19:47:26 \| 000,254,528 \| ---- \| M] (DT Soft Ltd) [Kernel \| System \| Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2011-03-11 07:41:12 \| 000,107,904 \| ---- \| M] (Advanced Micro Devices) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011-03-11 07:41:12 \| 000,027,008 \| ---- \| M] (Advanced Micro Devices) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2010-11-20 14:33:35 \| 000,078,720 \| ---- \| M] (Hewlett-Packard Company) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010-11-20 11:43:57 \| 000,032,768 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser) DRV:64bit: - [2010-01-11 11:05:20 \| 001,290,752 \| ---- \| M] (VIA Technologies, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService) DRV:64bit: - [2009-10-21 17:33:02 \| 000,474,240 \| ---- \| M] (Leadtek Research Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\wfeaglxt.sys -- (WFLR6654) DRV:64bit: - [2009-10-07 07:49:28 \| 006,379,288 \| ---- \| M] (Logitech Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) DRV:64bit: - [2009-10-07 07:47:46 \| 000,327,704 \| ---- \| M] (Logitech Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64) DRV:64bit: - [2009-10-07 00:45:50 \| 000,030,232 \| ---- \| M] () [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2Mon) DRV:64bit: - [2009-10-07 00:45:50 \| 000,030,232 \| ---- \| M] () [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\LVPr2M64.sys -- (LVPr2M64) DRV:64bit: - [2009-07-16 20:38:40 \| 000,015,416 \| ---- \| M] () [Kernel \| On_Demand \| Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor) DRV:64bit: - [2009-07-14 02:52:20 \| 000,194,128 \| ---- \| M] (AMD Technologies Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009-07-14 02:48:04 \| 000,065,600 \| ---- \| M] (LSI Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009-07-14 02:45:55 \| 000,024,656 \| ---- \| M] (Promise Technology) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009-06-10 21:34:33 \| 003,286,016 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009-06-10 21:34:28 \| 000,468,480 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009-06-10 21:34:23 \| 000,270,848 \| ---- \| M] (Broadcom Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009-06-10 21:31:59 \| 000,031,232 \| ---- \| M] (Hauppauge Computer Works, Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2008-03-17 18:12:26 \| 000,028,664 \| ---- \| M] () [Kernel \| System \| Running] -- C:\Windows\SysNative\Ckldrv.sys -- (NetworkX) DRV:64bit: - [2006-10-18 01:00:00 \| 000,052,760 \| ---- \| M] (Sonic Solutions) [Kernel \| Boot \| Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64) DRV:64bit: - [2006-07-21 19:15:00 \| 000,469,888 \| ---- \| M] (Leadtek Research Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysNative\drivers\cxavsvid.sys -- (CX88VID) DRV - [2009-07-14 02:19:10 \| 000,019,008 \| ---- \| M] (Microsoft Corporation) [File_System \| On_Demand \| Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2006-01-10 03:47:27 \| 000,031,846 \| ---- \| M] () [Kernel \| System \| Running] -- C:\Windows\SysWOW64\Ckldrv.sys -- (NetworkX) DRV - [2004-12-23 16:27:56 \| 000,027,392 \| ---- \| M] (Ulead Systems, Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\SysWOW64\drivers\ULCDRHlp.sys -- (ULCDRHlp) DRV - [1999-05-05 06:22:00 \| 000,008,944 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Running] -- C:\Windows\SysWOW64\drivers\Usbscan.sys -- (usbscan) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 54 F5 CF 9F 42 FC CB 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local> ========== FireFox ========== FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.0: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll File not found FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_39: C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: D:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: D:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( ) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@oberon-media.com/ONCAdapter: C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.8\npapicomadapter.dll File not found FF - HKLM\Software\MozillaPlugins\Adobe Reader: D:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Milos\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Milos\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll () FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Milos\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Milos\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft) FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: D:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-01-21 17:05:46 \| 000,000,000 \| ---D \| M] FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Milos\AppData\Roaming\IDM\idmmzcc5 ========== Chrome ========== CHR - homepage: about:blank CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}, CHR - homepage: about:blank CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Milos\AppData\Local\Google\Chrome\Application\24.0.1312.57\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Milos\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Milos\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll CHR - plugin: Adobe Acrobat (Disabled) = D:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = D:\Program Files\QuickTime\plugins\npqtplugin7.dll CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll CHR - plugin: Google Update (Enabled) = C:\Users\Milos\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Microsoft Office 2010 (Enabled) = D:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = D:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll CHR - Extension: Angry Birds = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\ CHR - Extension: Mp3Skull Toolbar = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\baoibaaaddojlcbojfclgifomaofgogm\1.4_0\ CHR - Extension: CaptchaTrader Notifications = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmbplgedknhmkolmdlcmgjhbjnhkaknc\1.0.3_0\ CHR - Extension: Photo Zoom for Facebook = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1208.30.1_0\ CHR - Extension: Type Scout = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fedokkaolmkkoeedicihicdeppjjeamj\4_0\ CHR - Extension: Go to IMDb = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\fipkcplmpmhcmfgkgahliaabodplkjio\1.2.6_0\ CHR - Extension: Kat.ph torrent search = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggijicjbckbcjopdpjlhgjeomikehknl\1.1_0\ CHR - Extension: AdBlock = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.60_0\ CHR - Extension: JDownloader Integration = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmochcijbhgjfdmojjenfabpafelhgdc\1.0_0\ CHR - Extension: Troll Emoticons Plus = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnomnkjliojhajcgajbjjckllbgcmpll\3.4.2_1\ CHR - Extension: Yahoo Mail Checker = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijbgodfidfimmjgeapafonbdkkkndpmp\1.4.1_0\ CHR - Extension: Downloads = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfchnphgogjhineanplmfkofljiagjfb\1_0\ CHR - Extension: YouTube Search = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdaekfpegpnndokmkpngpnecogmbfalg\1.9_0\ CHR - Extension: Until AM = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\kodigjkcpaoeodlnmcnekemakpnmegnk\0.203_0\ CHR - Extension: Webcam Toy = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\lfbgimoladefibpklnfmkpknadbklade\1.4_0\ CHR - Extension: AudioSauna = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkgfemnodkdnenmfkblebnkjpckkjcae\0.402_0\ CHR - Extension: Star Gazer = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mblmlcbknbnfebdfjnolmcapmdofhmme\1.1_0\ CHR - Extension: Google Mail Checker = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0\ CHR - Extension: GIFPAL = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\noohoboklgjeccnihfkbdakbchbhjlch\1.2_0\ CHR - Extension: (zabranjeno)-BB Search = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\okfeeplagpidgdgceaicggccompdgcon\1.4.2_0\ CHR - Extension: Surplus = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfphgaimeghgekhncbkfblhdhfaiaipf\4.0.6_0\ CHR - Extension: Psykopaint = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil\0.0.0.10_0\ CHR - Extension: Psykopaint = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil\0.0.0.10_0\.bak CHR - Extension: Gmail = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ CHR - Extension: Canvas Rider = C:\Users\Milos\AppData\Local\Google\Chrome\User Data\Default\Extensions\poknhlcknimnnbfcombaooklofipaibk\0.71_0\ O1 HOSTS File: ([2009-06-10 22:00:26 \| 000,000,824 \| ---- \| M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - No CLSID value found. O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll File not found O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:64bit: - HKLM..\Run: [egui] D:\Program Files\ESET\ESET Smart Security\egui.exe (ESET) O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA) O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe () O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKCU..\Run: [] File not found O4 - HKCU..\Run: [DAEMON Tools Lite] D:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [MCShield Monitor] D:\Program Files\MCShield\MCShieldRTM.exe (MyCity) O4 - HKCU..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe (Nokia) O4 - HKCU..\Run: [TBPanel] C:\Program Files (x86)\Vtune\TBPanel.exe () O4 - HKLM..\RunOnceEx: [Flag] Reg Error: Invalid data type. File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: = O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - D:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: E&xport to Microsoft Excel - D:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 10.0.0) O16:64bit: - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0) O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 95.180.0.18 8.8.8.8 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2D7825BC-6149-4217-8E78-F1BDE93A8263}: DhcpNameServer = 95.180.0.18 8.8.8.8 O18:64bit: - Protocol\Handler\livecall - No CLSID value found O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\msnim - No CLSID value found O18:64bit: - Protocol\Handler\mso-offdap - No CLSID value found O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\skype-ie-addon-data - No CLSID value found O18 - Protocol\Handler\livecall - No CLSID value found O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msnim - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-11-10 18:52:28 \| 000,000,000 \| ---D \| M] - D:\Autodesk -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk ) O35:64bit: - HKLM\..comfile [open] -- "%1" % O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013-02-21 12:45:37 \| 000,602,112 \| ---- \| C] (OldTimer Tools) -- C:\Users\Milos\Desktop\OTL.exe [2013-02-20 13:08:20 \| 000,000,000 \| ---D \| C] -- C:\ed1275040ee50950b86a667a444f [2013-02-20 13:07:19 \| 000,000,000 \| ---D \| C] -- C:\568102d23d61c0103097e4f44691ee [2013-02-16 20:34:52 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\Desktop\Slender - The Eight Pages_Data [2013-02-16 18:52:09 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\PC Connectivity Solution [2013-02-13 11:33:00 \| 000,096,768 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2013-02-13 11:33:00 \| 000,073,216 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2013-02-13 11:32:58 \| 000,176,640 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013-02-13 11:32:57 \| 000,248,320 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013-02-13 11:32:56 \| 000,237,056 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2013-02-13 11:32:56 \| 000,231,936 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2013-02-13 11:32:56 \| 000,173,056 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013-02-13 11:32:56 \| 000,142,848 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2013-02-13 11:32:55 \| 002,312,704 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013-02-13 11:32:55 \| 001,494,528 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013-02-13 11:32:55 \| 001,427,968 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013-02-13 11:32:54 \| 000,729,088 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013-02-13 11:32:52 \| 000,717,824 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013-02-13 11:32:51 \| 000,816,640 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013-02-13 11:32:51 \| 000,599,040 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2013-02-13 11:31:48 \| 005,553,512 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2013-02-13 11:31:47 \| 003,967,848 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2013-02-13 11:31:46 \| 003,913,064 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2013-02-13 11:31:27 \| 000,215,040 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll [2013-02-13 11:31:26 \| 000,025,600 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe [2013-02-13 11:31:26 \| 000,014,336 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll [2013-02-13 11:31:25 \| 000,007,680 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe [2013-02-13 11:31:25 \| 000,005,120 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll [2013-02-13 11:31:24 \| 000,002,048 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe [2013-02-13 11:30:46 \| 000,288,088 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS [2013-02-07 17:07:48 \| 000,627,600 \| ---- \| C] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll [2013-02-07 17:07:48 \| 000,252,296 \| ---- \| C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe [2013-02-07 17:07:48 \| 000,188,808 \| ---- \| C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe [2013-02-07 17:07:48 \| 000,188,808 \| ---- \| C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe [2013-02-07 17:06:41 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Java [2013-02-07 16:59:31 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\.android [2013-02-07 16:57:27 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\Desktop\Development [2013-02-06 12:20:38 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\AppData\Roaming\Mozilla [2013-02-05 22:18:22 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\AppData\Roaming\ActiveX [2013-01-31 15:55:56 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\AppData\Local\{2F185865-A176-42B0-88C8-E9DF3F477137} [2013-01-31 00:37:08 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\AppData\Local\{D2E8D144-E3A5-49B9-AEC7-9EB6255B531E} [2013-01-24 19:36:54 \| 000,000,000 \| ---D \| C] -- C:\Users\Milos\AppData\Local\{F73A9C5F-A5FA-44B4-9462-79C05BF7ECC0} [2013-01-23 00:11:24 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2013-01-23 00:11:23 \| 000,000,000 \| ---D \| C] -- C:\Program Files (x86)\Common Files\Skype [2012-05-15 11:47:06 \| 000,082,816 \| ---- \| C] (VSO Software) -- C:\Users\Milos\AppData\Roaming\pcouffin.sys [2 C:\Windows\.tmp files -> C:\Windows\.tmp -> ] [1 C:\Windows\SysNative\.tmp files -> C:\Windows\SysNative\.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013-02-21 13:48:35 \| 000,001,945 \| ---- \| M] () -- C:\Windows\epplauncher.mif [2013-02-21 13:29:01 \| 000,000,830 \| ---- \| M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013-02-21 13:25:01 \| 000,000,908 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1028166717-2969663755-3555985625-1000UA.job [2013-02-21 12:45:46 \| 000,602,112 \| ---- \| M] (OldTimer Tools) -- C:\Users\Milos\Desktop\OTL.exe [2013-02-21 12:25:00 \| 000,000,856 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1028166717-2969663755-3555985625-1000Core.job [2013-02-21 12:21:29 \| 000,025,216 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013-02-21 12:21:29 \| 000,025,216 \| -H-- \| M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013-02-21 12:13:38 \| 000,067,584 \| --S- \| M] () -- C:\Windows\bootstat.dat [2013-02-21 12:13:36 \| 000,000,000 \| ---- \| M] () -- C:\Windows\SysNative\drivers\lvuvc.hs [2013-02-21 12:13:34 \| 3113,525,248 \| -HS- \| M] () -- C:\hiberfil.sys [2013-02-16 19:03:11 \| 000,779,266 \| ---- \| M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013-02-16 19:03:11 \| 000,660,280 \| ---- \| M] () -- C:\Windows\SysNative\perfh009.dat [2013-02-16 19:03:11 \| 000,121,208 \| ---- \| M] () -- C:\Windows\SysNative\perfc009.dat [2013-02-16 04:20:27 \| 000,038,643 \| ---- \| M] () -- C:\Users\Milos\Desktop\48103_10200653809050931_1966944811_n.jpg [2013-02-13 11:49:01 \| 005,054,424 \| ---- \| M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013-02-08 18:29:40 \| 000,697,712 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013-02-08 18:29:40 \| 000,074,096 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013-02-07 17:07:38 \| 000,252,296 \| ---- \| M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe [2013-02-07 17:07:38 \| 000,188,808 \| ---- \| M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe [2013-02-07 17:07:38 \| 000,188,808 \| ---- \| M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe [2013-02-07 17:07:37 \| 000,627,600 \| ---- \| M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll [2013-01-29 15:52:41 \| 000,169,569 \| ---- \| M] () -- C:\Users\Milos\Desktop\productimage-picture-heisenberg-crystal-meth-13550 (1).jpg [2013-01-29 15:47:34 \| 000,340,685 \| ---- \| M] () -- C:\Users\Milos\Desktop\tumblr_m5rvv0nbLC1ry7ppro1_1280.jpg [2013-01-29 15:42:32 \| 000,019,393 \| ---- \| M] () -- C:\Users\Milos\Desktop\Season_4_-_Heisenberg.jpg [2 C:\Windows\.tmp files -> C:\Windows\.tmp -> ] [1 C:\Windows\SysNative\.tmp files -> C:\Windows\SysNative\.tmp -> ] ========== Files Created - No Company Name ========== [2013-02-16 20:34:51 \| 009,152,000 \| ---- \| C] () -- C:\Users\Milos\Desktop\Slender - The Eight Pages.exe [2013-02-16 18:44:28 \| 000,501,474 \| ---- \| C] () -- C:\Users\Milos\Desktop\15122010005.jpg [2013-02-16 04:20:27 \| 000,038,643 \| ---- \| C] () -- C:\Users\Milos\Desktop\48103_10200653809050931_1966944811_n.jpg [2013-01-29 15:51:13 \| 000,169,569 \| ---- \| C] () -- C:\Users\Milos\Desktop\productimage-picture-heisenberg-crystal-meth-13550 (1).jpg [2013-01-29 15:47:34 \| 000,340,685 \| ---- \| C] () -- C:\Users\Milos\Desktop\tumblr_m5rvv0nbLC1ry7ppro1_1280.jpg [2013-01-29 15:42:28 \| 000,019,393 \| ---- \| C] () -- C:\Users\Milos\Desktop\Season_4_-_Heisenberg.jpg [2012-11-28 20:12:09 \| 000,000,384 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\Network Meter_Settings.ini [2012-11-28 20:11:14 \| 000,000,546 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\All CPU MeterV3_Settings.ini [2012-11-28 20:08:26 \| 000,000,285 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\GPU MeterV2_Settings.ini [2012-09-14 13:13:31 \| 000,016,896 \| ---- \| C] () -- C:\Users\Milos\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-07-27 13:14:18 \| 000,170,734 \| ---- \| C] () -- C:\ProgramData\1343391053.bdinstall.bin [2012-07-26 17:48:14 \| 000,074,932 \| ---- \| C] () -- C:\ProgramData\1343321167.bdinstall.bin [2012-07-17 12:11:47 \| 000,000,196 \| ---- \| C] () -- C:\Windows\ulead32.ini [2012-07-16 23:47:20 \| 000,001,699 \| ---- \| C] () -- C:\ProgramData\1342478752.596.bin [2012-07-16 23:45:59 \| 000,182,150 \| ---- \| C] () -- C:\ProgramData\1342478752.2388.bin [2012-07-16 23:45:59 \| 000,013,106 \| ---- \| C] () -- C:\ProgramData\1342478752.4352.bin [2012-07-16 23:45:59 \| 000,008,548 \| ---- \| C] () -- C:\ProgramData\1342478752.3448.bin [2012-07-16 23:45:59 \| 000,007,399 \| ---- \| C] () -- C:\ProgramData\1342478752.3528.bin [2012-07-16 23:45:59 \| 000,003,042 \| ---- \| C] () -- C:\ProgramData\1342478752.4344.bin [2012-07-16 23:45:59 \| 000,000,558 \| ---- \| C] () -- C:\ProgramData\1342478752.4372.bin [2012-07-16 23:45:59 \| 000,000,558 \| ---- \| C] () -- C:\ProgramData\1342478752.4184.bin [2012-07-16 23:45:55 \| 000,025,587 \| ---- \| C] () -- C:\ProgramData\1342478752.4296.bin [2012-07-16 23:45:54 \| 000,017,464 \| ---- \| C] () -- C:\ProgramData\1342478752.3532.bin [2012-07-16 23:45:52 \| 000,096,135 \| ---- \| C] () -- C:\ProgramData\1342478752.5096.bin [2012-06-19 13:02:17 \| 003,123,272 \| R--- \| C] () -- C:\Windows\SysWow64\pbsvc.exe [2012-05-15 11:47:06 \| 000,099,384 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\inst.exe [2012-05-15 11:47:06 \| 000,007,859 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\pcouffin.cat [2012-05-15 11:47:06 \| 000,001,167 \| ---- \| C] () -- C:\Users\Milos\AppData\Roaming\pcouffin.inf [2012-01-24 15:08:47 \| 000,000,124 \| ---- \| C] () -- C:\Windows\WET.INI [2012-01-17 19:44:55 \| 000,159,839 \| ---- \| C] () -- C:\Windows\ScanWiz Uninstaller.exe [2012-01-15 15:55:15 \| 000,003,120 \| ---- \| C] () -- C:\Windows\SysWow64\2939cd20-1991-4ee1-a0b7-064641f81e3b.dll [2011-12-05 13:20:58 \| 000,049,152 \| ---- \| C] () -- C:\Windows\AutoSet.dll [2011-11-24 13:40:31 \| 000,000,376 \| ---- \| C] () -- C:\Windows\ODBC.INI [2011-11-13 18:17:50 \| 000,000,036 \| ---- \| C] () -- C:\Windows\mafosav.INI [2011-09-15 11:03:58 \| 000,772,990 \| ---- \| C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011-09-06 16:18:56 \| 000,136,593 \| ---- \| C] () -- C:\Windows\hphins33.dat [2011-09-06 16:18:56 \| 000,000,512 \| ---- \| C] () -- C:\Windows\hphmdl33.dat [2011-08-26 15:09:13 \| 000,157,696 \| ---- \| C] () -- C:\Windows\SysWow64\OggEnc.exe [2011-08-26 15:09:13 \| 000,145,408 \| ---- \| C] () -- C:\Windows\SysWow64\Lame.exe [2011-08-26 15:09:13 \| 000,076,800 \| ---- \| C] () -- C:\Windows\SysWow64\Faac.exe [2011-06-27 14:03:03 \| 000,000,004 \| ---- \| C] () -- C:\Windows\SysWow64\WFSCHDL.dat [2011-06-27 14:02:53 \| 000,003,732 \| ---- \| C] () -- C:\Windows\SysWow64\FMCodec.dat [2011-06-27 14:02:51 \| 000,000,002 \| ---- \| C] () -- C:\Windows\SysWow64\Dvbpws.dll [2011-06-20 19:02:58 \| 001,524,112 \| ---- \| C] () -- C:\Windows\SysWow64\bandoolmx.dll [2011-06-18 18:45:22 \| 000,000,056 \| -H-- \| C] () -- C:\ProgramData\ezsidmv.dat [2011-06-15 21:31:33 \| 000,000,219 \| ---- \| C] () -- C:\Windows\spwdr.INI [2011-06-15 21:09:27 \| 000,000,145 \| ---- \| C] () -- C:\Windows\Crypkey.ini [2011-06-15 21:09:22 \| 000,031,846 \| ---- \| C] () -- C:\Windows\SysWow64\Ckldrv.sys [2011-06-15 21:09:22 \| 000,027,648 \| R--- \| C] () -- C:\Windows\Setup_ck.exe [2011-06-15 21:09:22 \| 000,018,432 \| ---- \| C] () -- C:\Windows\Setup_ck.dll [2011-06-15 21:09:22 \| 000,011,776 \| ---- \| C] () -- C:\Windows\Ckrfresh.exe [2011-05-12 19:14:08 \| 000,008,192 \| ---- \| C] () -- C:\Windows\SysWow64\srvany.exe [2011-04-17 13:41:56 \| 000,532,480 \| ---- \| C] () -- C:\Windows\SysWow64\CddbPlaylist2Sony.dll [2011-04-16 15:49:58 \| 000,000,097 \| ---- \| C] () -- C:\Windows\SCNDRVU.INI [2011-04-16 15:38:39 \| 000,018,337 \| ---- \| C] () -- C:\Windows\Ascd_tmp.ini [2011-04-16 15:36:05 \| 000,001,769 \| ---- \| C] () -- C:\Windows\Language_trs.ini [2011-04-09 17:55:28 \| 000,179,261 \| ---- \| C] () -- C:\Windows\SysWow64\xlive.dll.cat ========== ZeroAccess Check ========== [2009-07-14 05:55:00 \| 000,000,227 \| RHS- \| M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012-06-09 06:43:10 \| 014,172,672 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:41:00 \| 012,873,728 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012-08-21 14:11:31 \| 000,857,088 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2012-08-21 14:37:44 \| 000,636,928 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012-08-21 14:08:38 \| 000,453,120 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== Alternate Data Streams ========== @Alternate Data Stream - 228 bytes -> C:\ProgramData\TEMP:1CE11B51 @Alternate Data Stream - 128 bytes -> C:\ProgramData\TEMP:0F4A7B6A @Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:A1EDB939 < End of report > Dopuna: 21 Feb 2013 17:46 Neko resenje?

Profil

TwinHeadedEagle Poslao: 21 Feb 2013 20:31 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! To bi bilo to, uklonjeni su ostaci MSE-a. Ubuduce ne instaliraj vise od jednog u isto vreme. Ponovo pokreni OTL i klikni na CleanUp. SacŤekaj da se deinstalacija završi. Obavezno poseti temu "Testirajte da li vam je pretraživač ranjiv", pročitaj i isprati link koji stoji u njoj. Link do teme je: http://www.mycity.rs/Web-browseri/Testirajte-da-li.....anjiv.html TwinHeadedEagle (AMF Tim)

Profil

ajzaklija Poslao: 22 Feb 2013 12:48 Idi na vrh
offline ajzaklija Građanin Pridružio: 14 Dec 2009 Poruke: 154	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 21 Feb 2013 20:35 Hvala puno!! Nadam se da nece vise biti problema! Neka ostane ova tema otvorena, pa cu sutra pre podne potvrditi da li je sve ok ili mozda ne? Sve najbolje! Dopuna: 22 Feb 2013 12:48 Resen problem! Sve OK sljaka!

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Sve crno

Ko je trenutno na forumu

Ukupno su 792 korisnika na forumu :: 15 registrovanih, 2 sakrivenih i 775 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: bigfoot, Bobrock1, deimos25, goxin, kikisp, kybonacci, milan.vukovic, milenko crazy north, Nemanja.M, sevenino, Sir Budimir, slonic_tonic, SR-3m, stankolich, zlaya011

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by