jbradvi9 Posted July 20, 2013 Posted July 20, 2013 I don't know how to start but some malware occupied my pc and even with several reformats this issue doesn't come away.The weird thing is that after a reformat the machine works near perfect but 3-4 hours after I notice windows programs start become unresponsive, desktop icons are frequently refreshing,start-button and taskbar freeze with no specific reason because in that period I installed only necessary software(windowsxpsp3,netframework,audio,video and printer drivers,adobe reader,flash player...) My web-browsers(IE8,firefox,chrome) are sometimes Ok but often very slow. For a page to show up it takes sometimes 1 minute if I am lucky. Quote
KenB Posted July 20, 2013 Posted July 20, 2013 Hi and welcome to ExTS I would have thought that a format and re-install would have taken care of any malware on your system. Let's just check: Download MBAM from here: ( the free version ) click here Install > Update > Run it on a quick scan ( this may still take an hour ) It will produce a log > copy this and post it here please. If the log is showing anything at all - one of our security team will advise you further. =================== Also try taking the RAM modules out and use them just one at a time. =================== Where are you based ? ISP ? =================== Quote There is an email going around offering processed pork - gelatin - and salt in a can ......this is simply SPAM !! MiniToolBoxNetwork TestWireless Test
jbradvi9 Posted July 20, 2013 Author Posted July 20, 2013 MBAM log (croatian): Malwarebytes Anti-Malware (Probni period) 1.75.0.1300 http://www.malwarebytes.org Verzija baze podataka: v2013.07.20.04 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Korisnik :: NONE-BB75D357C4 [administrator] Zaštita: Omogućena 20.7.2013 19:38:18 MBAM-log-2013-07-20 (19-52-57).txt Tip provjere: Brza provjera Opcije provjere omogućene: Memorija | Startup | Registri | Sistemske datoteke | Heurestika/Extra | Heurestika/Shuriken | PUP | PUM Opcije provjere onemogućene: P2P Provjereni objekti: 205807 Vrijeme trajanja: 13 minuta, 54 sekundi Detektirani procesi u memoriji: 0 (Zloćudne stavke nisu otkrivene) Detektirani moduli u memoriji: 0 (Zloćudne stavke nisu otkrivene) Detektirani ključevi u registru: 0 (Zloćudne stavke nisu otkrivene) Detektirani vrijednosti u registru: 0 (Zloćudne stavke nisu otkrivene) Detektirani podaci u registru: 0 (Zloćudne stavke nisu otkrivene) Detektirani direktoriji: 0 (Zloćudne stavke nisu otkrivene) Detektirane datoteke: 1 C:\Documents and Settings\Korisnik\My Documents\Downloads\Nepotvrđeno 554233.crdownload (Trojan.Agent.rfz) -> Nije pokrenuta niti jedna akcija. (kraj) ========= When I started mbam for the first time and do a quick scan the machine become unresponsive so I must reboot and start again. If I try to take out the RAM module does it mean I have to do a reformat again because I presume the malware already created some 'regenerate'-files on HDD.I haven't figured out what do You mean with "Use the RAM modules just one at a time." ========= I'm from Croatia and ISP is T-com Croatia. Waiting for more instructions....... Quote
etavares Posted July 21, 2013 Posted July 21, 2013 Hi, First, please do steps 4, 5, 7, 8 and 9 only from this link to test the RAM: http://www.wikihow.com/Test-Your-Computer's-Ram Next: Download OTL to your desktop. right click on the link and select 'Save Link/Target As'. if you have problems, try this download link: OTL Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted. When the window appears, underneath Output at the top change it to Minimal Output. Check the boxes beside LOP Check and Purity Check . . http://img.photobucket.com/albums/v708/starbuck50/new/Otllatest.png Now copy the lines in bold below. DRIVES netsvcs msconfig %SYSTEMDRIVE%\*.* %systemroot%\system32\Spool\prtprocs\w32x86\*.dll %systemroot%\*. /mp /s %systemroot%\system32\*.dll /lockedfiles %systemroot%\Tasks\*.job /lockedfiles %systemroot%\system32\drivers\*.sys /lockedfiles %systemroot%\system32\*.exe /lockedfiles %systemroot%\System32\config\*.sav %PROGRAMFILES%\* %USERPROFILE%\..|smtmp;true;true;true /FP HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU hklm\software\clients\startmenuinternet|command /rs hklm\software\clients\startmenuinternet|command /64 /rs CREATERESTOREPOINT right click in the Custom Scans/Fixes window (under the blue bar) and choose Paste. http://img.photobucket.com/albums/v708/starbuck50/new%20forum/scan-fix.png . Click the Run Scan button. http://img.photobucket.com/albums/v708/starbuck50/runscan.png Do not change any settings unless otherwise told to do so. The scan wont take long. When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL. Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them with your next reply. Note: Running the above script with OTL will : turn on your system restore and set a new restore point (XP only) set a new restore point (if system restore is turned on) Vista & Win7. In your next reply, please submit: MBAM scan report Both reports from OTL Whilst we are helping you, please don't run other programs/scans without our knowledge .... it only confuses things. -etavares Quote etavares is a member of:Alliance of Security Analysis ProfessionalsUnified Network of Instructors and Trained Eliminators
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 Can't remove because there is only one RAM stick of 2GB. I can assure I had same symptoms with an older one of 500MB. Here are the logs: mbam-log-2013-07-21 (19-27-44) Malwarebytes Anti-Malware (Trial) 1.75.0.1300 http://www.malwarebytes.org Database version: v2013.07.21.05 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Korisnik :: NONE-BB75D357C4 [administrator] Protection: Disabled 21.7.2013 19:27:44 mbam-log-2013-07-21 (19-27-44).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 204417 Time elapsed: 12 minute(s), 57 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end) ===================== Quote
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 OTL.Txt(part1) OTL logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt-1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc100-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\adawarebp [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.16 23:56:01 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.16 23:53:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll [2013.07.16 23:53:28 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll [2013.07.16 23:53:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tlntsess.exe [2013.07.16 23:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe [2013.07.16 23:53:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll [2013.07.16 23:53:10 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2013.07.16 23:53:05 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll [2013.07.16 23:53:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll [2013.07.16 23:53:02 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll [2013.07.16 23:53:00 | 001,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2013.07.16 23:52:56 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2013.07.16 23:52:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2013.07.16 23:52:30 | 001,288,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll [2013.07.16 23:52:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013.07.16 23:52:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013.07.16 23:52:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013.07.16 23:52:22 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll [2013.07.16 23:52:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013.07.16 23:52:17 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msasn1.dll [2013.07.16 23:52:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2013.07.16 23:52:11 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atl.dll [2013.07.16 23:52:08 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usp10.dll [2013.07.16 23:51:59 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013.07.16 23:51:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll [2013.07.16 23:51:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013.07.16 23:51:59 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013.07.16 23:51:59 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013.07.16 23:51:59 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013.07.16 23:51:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll [2013.07.16 23:51:54 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll [2013.07.16 23:51:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2013.07.16 23:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll [2013.07.16 23:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2013.07.16 23:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll [2013.07.16 23:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2013.07.16 23:51:40 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2013.07.16 23:51:36 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013.07.16 23:51:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\synceng.dll [2013.07.16 23:51:00 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2013.07.16 23:50:55 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013.07.16 23:50:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2013.07.16 23:50:41 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2013.07.16 23:50:34 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2013.07.16 23:50:31 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll [2013.07.16 23:50:28 | 001,876,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2013.07.16 23:50:16 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2013.07.16 23:50:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013.07.16 23:50:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2013.07.16 23:49:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys [2013.07.16 23:49:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll [2013.07.16 23:48:09 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2013.07.16 23:47:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys [2013.07.16 23:47:25 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2013.07.16 23:46:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2013.07.16 23:46:16 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013.07.16 23:45:44 | 002,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2013.07.16 23:45:44 | 002,149,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2013.07.16 23:45:43 | 002,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2013.07.16 23:45:43 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2013.07.16 23:45:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2013.07.16 23:43:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2013.07.16 23:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Notebook Content [2013.07.16 23:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies [2013.07.16 23:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\SMART Notebook [2013.07.16 23:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 23:31:04 | 002,350,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll [2013.07.16 23:31:04 | 002,281,472 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc [2013.07.16 23:31:04 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc [2013.07.16 23:31:04 | 000,237,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc [2013.07.16 23:31:04 | 000,229,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc [2013.07.16 23:31:04 | 000,225,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc [2013.07.16 23:31:04 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc [2013.07.16 23:31:04 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc [2013.07.16 23:31:04 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll [2013.07.16 23:31:04 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll [2013.07.16 23:31:04 | 000,052,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll [2013.07.16 23:31:04 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll [2013.07.16 23:31:03 | 005,672,960 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll [2013.07.16 23:31:03 | 003,895,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2013.07.16 23:31:03 | 003,398,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll [2013.07.16 23:31:03 | 000,651,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe [2013.07.16 23:31:03 | 000,286,720 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc [2013.07.16 23:31:03 | 000,274,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc [2013.07.16 23:31:03 | 000,270,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc [2013.07.16 23:31:03 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc [2013.07.16 23:31:03 | 000,212,992 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll [2013.07.16 23:31:03 | 000,181,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc [2013.07.16 23:31:03 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll [2013.07.16 23:31:03 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl [2013.07.16 23:31:02 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe [2013.07.16 23:31:02 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2013.07.16 22:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies Inc [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:39:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll [2013.07.16 22:39:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013.07.16 22:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\National Instruments [2013.07.16 22:38:57 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013.07.16 22:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\SMART Technologies [2013.07.16 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.16 22:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SMART Technologies [2013.07.16 22:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.16 22:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Epson Software [2013.07.16 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2013.07.16 22:24:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 6.0 Sprint [2013.07.16 22:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2013.07.16 22:22:51 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2013.07.16 22:22:51 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2013.07.16 22:22:51 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2013.07.16 22:22:51 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2013.07.16 22:22:51 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2013.07.16 22:22:00 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL [2013.07.16 22:21:59 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBFDE.DLL [2013.07.16 22:21:59 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BFDE.DLL [2013.07.16 22:21:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013.07.16 22:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.16 22:21:27 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll [2013.07.16 22:21:27 | 000,009,216 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\escdev.dll [2013.07.16 22:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EPSON [2013.07.16 22:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2013.07.16 22:14:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caricature Studio Green 3.6 [2013.07.16 22:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Studio Green 3.6 [2013.07.16 22:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.16 22:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.16 22:04:32 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Sun [2013.07.16 22:02:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013.07.16 22:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2013.07.16 22:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.07.16 22:02:22 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:22 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 22:02:22 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:22 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:20 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.07.16 21:58:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Sun [2013.07.16 21:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab [2013.07.16 21:52:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO [2013.07.16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\WinRAR [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR [2013.07.16 21:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\WinRAR [2013.07.16 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.07.16 21:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013.07.16 21:45:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2013.07.16 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013.07.16 21:38:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll [2013.07.16 21:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Ahead [2013.07.16 21:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\NeroInstall.bak [2013.07.16 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero 8 [2013.07.16 21:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2013.07.16 21:28:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013.07.16 21:28:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2013.07.16 21:28:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2013.07.16 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2013.07.16 21:10:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013.07.16 21:01:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2013.07.16 21:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop\Pacific Tech - NuCalc 2.0 [2013.07.16 21:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2013.07.16 20:58:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2013.07.16 20:58:07 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013.07.16 20:58:05 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013.07.16 20:58:03 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013.07.16 20:58:01 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013.07.16 20:57:58 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013.07.16 20:57:55 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013.07.16 20:57:52 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013.07.16 20:57:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013.07.16 20:57:46 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013.07.16 20:57:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013.07.16 20:57:41 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013.07.16 20:57:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013.07.16 20:56:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013.07.16 20:49:52 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013.07.16 20:49:52 | 001,522,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013.07.16 20:49:52 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013.07.16 20:49:52 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013.07.16 20:49:52 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013.07.16 20:49:51 | 005,444,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013.07.16 20:49:51 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013.07.16 20:49:51 | 000,079,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2013.07.16 20:49:51 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2013.07.16 20:49:50 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013.07.16 20:49:50 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013.07.16 20:49:48 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013.07.16 20:49:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013.07.16 20:49:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013.07.16 20:49:48 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013.07.16 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.07.16 20:49:32 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013.07.16 20:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013.07.16 20:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Downloads [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Macromedia [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Adobe [2013.07.16 20:40:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 20:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2013.07.16 20:29:16 | 000,692,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.16 20:29:16 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.16 20:27:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2013.07.16 20:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Adobe [2013.07.16 20:24:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google [2013.07.16 20:01:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2013.07.16 20:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Identities [2013.07.16 19:57:44 | 000,000,000 | ---D | C] -- C:\Intel [2013.07.16 19:49:17 | 001,371,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll [2013.07.16 19:49:15 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm [2013.07.16 19:49:14 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm [2013.07.16 19:49:14 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm [2013.07.16 19:49:11 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll [2013.07.16 19:49:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys [2013.07.16 19:49:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe [2013.07.16 19:49:05 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll [2013.07.16 19:49:05 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll [2013.07.16 19:49:05 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll [2013.07.16 19:49:05 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll [2013.07.16 19:49:05 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll [2013.07.16 19:49:05 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll [2013.07.16 19:49:05 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll [2013.07.16 19:49:05 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2013.07.16 19:49:05 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll [2013.07.16 19:49:05 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll [2013.07.16 19:49:05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll [2013.07.16 19:49:05 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll [2013.07.16 19:49:05 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax [2013.07.16 19:49:05 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax [2013.07.16 19:49:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2013.07.16 19:49:04 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll [2013.07.16 19:49:04 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll [2013.07.16 19:49:04 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll [2013.07.16 19:49:04 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll [2013.07.16 19:49:04 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll [2013.07.16 19:49:04 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll [2013.07.16 19:49:04 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll [2013.07.16 19:49:04 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll [2013.07.16 19:49:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll [2013.07.16 19:49:03 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll [2013.07.16 19:49:03 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll [2013.07.16 19:49:03 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll [2013.07.16 19:49:03 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll [2013.07.16 19:49:03 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll [2013.07.16 19:49:03 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe [2013.07.16 19:49:03 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll [2013.07.16 19:49:03 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll [2013.07.16 19:49:03 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll [2013.07.16 19:49:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll [2013.07.16 19:49:03 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll [2013.07.16 19:49:03 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe [2013.07.16 19:49:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll [2013.07.16 19:49:02 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll [2013.07.16 19:49:02 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll [2013.07.16 19:49:02 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll [2013.07.16 19:49:02 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2013.07.16 19:49:02 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll [2013.07.16 19:49:02 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll [2013.07.16 19:49:02 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll [2013.07.16 19:49:02 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll [2013.07.16 19:49:02 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll [2013.07.16 19:49:02 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe [2013.07.16 19:49:02 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll [2013.07.16 19:49:02 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll [2013.07.16 19:49:02 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2013.07.16 19:49:02 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe [2013.07.16 19:49:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe [2013.07.16 19:49:01 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe [2013.07.16 19:49:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2013.07.16 19:47:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2013.07.16 19:47:38 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe [2013.07.16 19:46:31 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2013.07.16 19:46:31 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2013.07.16 19:46:31 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2013.07.16 19:46:31 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2013.07.16 19:46:31 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2013.07.16 19:46:31 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2013.07.16 19:46:31 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2013.07.16 19:46:31 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2013.07.16 19:46:31 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2013.07.16 19:46:31 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2013.07.16 19:46:31 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2013.07.16 19:46:31 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll [2013.07.16 19:46:31 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll [2013.07.16 19:46:31 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll [2013.07.16 19:46:31 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll [2013.07.16 19:46:31 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll [2013.07.16 19:46:31 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll [2013.07.16 19:46:31 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll [2013.07.16 19:46:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2013.07.16 19:46:30 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2013.07.16 19:46:30 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2013.07.16 19:46:30 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2013.07.16 19:46:30 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2013.07.16 19:46:30 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2013.07.16 19:46:30 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2013.07.16 19:46:30 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2013.07.16 19:46:30 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2013.07.16 19:46:30 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys [2013.07.16 19:46:30 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2013.07.16 19:46:30 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2013.07.16 19:46:30 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll [2013.07.16 19:46:30 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll [2013.07.16 19:46:30 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll [2013.07.16 19:46:30 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll [2013.07.16 19:46:30 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2013.07.16 19:46:30 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2013.07.16 19:46:30 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll [2013.07.16 19:46:29 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2013.07.16 19:46:29 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys [2013.07.16 19:46:29 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys [2013.07.16 19:46:29 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys [2013.07.16 19:46:29 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys [2013.07.16 19:46:29 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys [2013.07.16 19:46:29 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys [2013.07.16 19:46:29 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys [2013.07.16 19:46:29 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys [2013.07.16 19:46:29 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys [2013.07.16 19:46:29 | 000,011,325 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll [2013.07.16 19:46:29 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys [2013.07.16 19:46:29 | 000,003,901 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll [2013.07.16 19:46:28 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys [2013.07.16 19:46:28 | 000,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys [2013.07.16 19:46:28 | 000,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys [2013.07.16 19:46:28 | 000,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys [2013.07.16 19:46:28 | 000,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys [2013.07.16 19:46:28 | 000,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys [2013.07.16 19:45:27 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2013.07.16 19:45:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2013.07.16 19:45:10 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2013.07.16 19:43:44 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$ [2013.07.16 19:35:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Preuzimanja [2013.07.16 19:29:13 | 000,207,616 | R--- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\RTL8187B.sys [2013.07.16 19:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\REALTEK USB Wireless LAN Utility [2013.07.16 19:28:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTL8187 [2013.07.16 19:28:20 | 000,000,000 | ---D | C] -- C:\Program Files\REALTEK USB Wireless LAN Driver and Utility [2013.07.16 19:28:18 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2013.07.16 19:28:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\InstallShield [2013.07.16 19:26:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Mozilla [2013.07.16 19:26:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Mozilla [2013.07.16 19:26:37 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2013.07.16 19:26:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Mozilla [2013.07.16 19:24:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Identities [2013.07.16 19:24:55 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2013.07.16 19:24:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Pictures [2013.07.16 19:24:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Music [2013.07.16 19:24:49 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Korisnik\Application Data\Microsoft [2013.07.16 19:24:49 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Korisnik\SendTo [2013.07.16 19:24:49 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Korisnik\Recent [2013.07.16 19:24:49 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Korisnik\Application Data [2013.07.16 19:24:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Korisnik\Start .......continue in next post.... Quote
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 OTL.Txt OTL logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt-1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc100-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\adawarebp [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.16 23:56:01 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.16 23:53:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll [2013.07.16 23:53:28 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll [2013.07.16 23:53:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tlntsess.exe [2013.07.16 23:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe [2013.07.16 23:53:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll [2013.07.16 23:53:10 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2013.07.16 23:53:05 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll [2013.07.16 23:53:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll [2013.07.16 23:53:02 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll [2013.07.16 23:53:00 | 001,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2013.07.16 23:52:56 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2013.07.16 23:52:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2013.07.16 23:52:30 | 001,288,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll [2013.07.16 23:52:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013.07.16 23:52:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013.07.16 23:52:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013.07.16 23:52:22 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll [2013.07.16 23:52:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013.07.16 23:52:17 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msasn1.dll [2013.07.16 23:52:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2013.07.16 23:52:11 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atl.dll [2013.07.16 23:52:08 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usp10.dll [2013.07.16 23:51:59 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013.07.16 23:51:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll [2013.07.16 23:51:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013.07.16 23:51:59 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013.07.16 23:51:59 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013.07.16 23:51:59 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013.07.16 23:51:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll [2013.07.16 23:51:54 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll [2013.07.16 23:51:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2013.07.16 23:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll [2013.07.16 23:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2013.07.16 23:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll [2013.07.16 23:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2013.07.16 23:51:40 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2013.07.16 23:51:36 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013.07.16 23:51:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\synceng.dll [2013.07.16 23:51:00 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2013.07.16 23:50:55 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013.07.16 23:50:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2013.07.16 23:50:41 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2013.07.16 23:50:34 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2013.07.16 23:50:31 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll [2013.07.16 23:50:28 | 001,876,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2013.07.16 23:50:16 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2013.07.16 23:50:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013.07.16 23:50:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2013.07.16 23:49:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys [2013.07.16 23:49:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll [2013.07.16 23:48:09 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2013.07.16 23:47:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys [2013.07.16 23:47:25 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2013.07.16 23:46:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2013.07.16 23:46:16 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013.07.16 23:45:44 | 002,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2013.07.16 23:45:44 | 002,149,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2013.07.16 23:45:43 | 002,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2013.07.16 23:45:43 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2013.07.16 23:45:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2013.07.16 23:43:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2013.07.16 23:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Notebook Content [2013.07.16 23:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies [2013.07.16 23:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\SMART Notebook [2013.07.16 23:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 23:31:04 | 002,350,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll [2013.07.16 23:31:04 | 002,281,472 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc [2013.07.16 23:31:04 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc [2013.07.16 23:31:04 | 000,237,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc [2013.07.16 23:31:04 | 000,229,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc [2013.07.16 23:31:04 | 000,225,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc [2013.07.16 23:31:04 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc [2013.07.16 23:31:04 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc [2013.07.16 23:31:04 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll [2013.07.16 23:31:04 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll [2013.07.16 23:31:04 | 000,052,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll [2013.07.16 23:31:04 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll [2013.07.16 23:31:03 | 005,672,960 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll [2013.07.16 23:31:03 | 003,895,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2013.07.16 23:31:03 | 003,398,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll [2013.07.16 23:31:03 | 000,651,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe [2013.07.16 23:31:03 | 000,286,720 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc [2013.07.16 23:31:03 | 000,274,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc [2013.07.16 23:31:03 | 000,270,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc [2013.07.16 23:31:03 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc [2013.07.16 23:31:03 | 000,212,992 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll [2013.07.16 23:31:03 | 000,181,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc [2013.07.16 23:31:03 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll [2013.07.16 23:31:03 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl [2013.07.16 23:31:02 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe [2013.07.16 23:31:02 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2013.07.16 22:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies Inc [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:39:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll [2013.07.16 22:39:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013.07.16 22:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\National Instruments [2013.07.16 22:38:57 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013.07.16 22:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\SMART Technologies [2013.07.16 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.16 22:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SMART Technologies [2013.07.16 22:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.16 22:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Epson Software [2013.07.16 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2013.07.16 22:24:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 6.0 Sprint [2013.07.16 22:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2013.07.16 22:22:51 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2013.07.16 22:22:51 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2013.07.16 22:22:51 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2013.07.16 22:22:51 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2013.07.16 22:22:51 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2013.07.16 22:22:00 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL [2013.07.16 22:21:59 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBFDE.DLL [2013.07.16 22:21:59 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BFDE.DLL [2013.07.16 22:21:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013.07.16 22:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.16 22:21:27 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll [2013.07.16 22:21:27 | 000,009,216 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\escdev.dll [2013.07.16 22:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EPSON [2013.07.16 22:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2013.07.16 22:14:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caricature Studio Green 3.6 [2013.07.16 22:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Studio Green 3.6 [2013.07.16 22:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.16 22:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.16 22:04:32 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Sun [2013.07.16 22:02:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013.07.16 22:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2013.07.16 22:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.07.16 22:02:22 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:22 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 22:02:22 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:22 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:20 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.07.16 21:58:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Sun [2013.07.16 21:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab [2013.07.16 21:52:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO [2013.07.16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\WinRAR [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR [2013.07.16 21:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\WinRAR [2013.07.16 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.07.16 21:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013.07.16 21:45:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2013.07.16 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013.07.16 21:38:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll [2013.07.16 21:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Ahead [2013.07.16 21:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\NeroInstall.bak [2013.07.16 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero 8 [2013.07.16 21:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2013.07.16 21:28:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013.07.16 21:28:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2013.07.16 21:28:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2013.07.16 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2013.07.16 21:10:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013.07.16 21:01:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2013.07.16 21:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop\Pacific Tech - NuCalc 2.0 [2013.07.16 21:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2013.07.16 20:58:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2013.07.16 20:58:07 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013.07.16 20:58:05 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013.07.16 20:58:03 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013.07.16 20:58:01 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013.07.16 20:57:58 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013.07.16 20:57:55 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013.07.16 20:57:52 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013.07.16 20:57:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013.07.16 20:57:46 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013.07.16 20:57:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013.07.16 20:57:41 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013.07.16 20:57:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013.07.16 20:56:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013.07.16 20:49:52 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013.07.16 20:49:52 | 001,522,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013.07.16 20:49:52 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013.07.16 20:49:52 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013.07.16 20:49:52 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013.07.16 20:49:51 | 005,444,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013.07.16 20:49:51 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013.07.16 20:49:51 | 000,079,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2013.07.16 20:49:51 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2013.07.16 20:49:50 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013.07.16 20:49:50 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013.07.16 20:49:48 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013.07.16 20:49:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013.07.16 20:49:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013.07.16 20:49:48 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013.07.16 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.07.16 20:49:32 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013.07.16 20:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013.07.16 20:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Downloads [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Macromedia [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Adobe [2013.07.16 20:40:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 20:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2013.07.16 20:29:16 | 000,692,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.16 20:29:16 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.16 20:27:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2013.07.16 20:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Adobe [2013.07.16 20:24:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google [2013.07.16 20:01:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2013.07.16 20:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Identities [2013.07.16 19:57:44 | 000,000,000 | ---D | C] -- C:\Intel [2013.07.16 19:49:17 | 001,371,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll [2013.07.16 19:49:15 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm [2013.07.16 19:49:14 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm [2013.07.16 19:49:14 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- ....see next post..... Quote
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 OTL.Txt OTL logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt-1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc100-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\adawarebp [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.16 23:56:01 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.16 23:53:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll [2013.07.16 23:53:28 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll [2013.07.16 23:53:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tlntsess.exe [2013.07.16 23:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe [2013.07.16 23:53:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll [2013.07.16 23:53:10 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2013.07.16 23:53:05 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll [2013.07.16 23:53:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll [2013.07.16 23:53:02 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll [2013.07.16 23:53:00 | 001,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2013.07.16 23:52:56 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2013.07.16 23:52:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2013.07.16 23:52:30 | 001,288,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll [2013.07.16 23:52:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013.07.16 23:52:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013.07.16 23:52:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013.07.16 23:52:22 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll [2013.07.16 23:52:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013.07.16 23:52:17 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msasn1.dll [2013.07.16 23:52:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2013.07.16 23:52:11 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atl.dll [2013.07.16 23:52:08 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usp10.dll [2013.07.16 23:51:59 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013.07.16 23:51:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll [2013.07.16 23:51:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013.07.16 23:51:59 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013.07.16 23:51:59 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013.07.16 23:51:59 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013.07.16 23:51:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll [2013.07.16 23:51:54 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll [2013.07.16 23:51:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2013.07.16 23:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll [2013.07.16 23:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2013.07.16 23:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll [2013.07.16 23:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2013.07.16 23:51:40 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2013.07.16 23:51:36 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013.07.16 23:51:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\synceng.dll [2013.07.16 23:51:00 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2013.07.16 23:50:55 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013.07.16 23:50:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2013.07.16 23:50:41 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2013.07.16 23:50:34 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2013.07.16 23:50:31 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll [2013.07.16 23:50:28 | 001,876,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2013.07.16 23:50:16 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2013.07.16 23:50:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013.07.16 23:50:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2013.07.16 23:49:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys [2013.07.16 23:49:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll [2013.07.16 23:48:09 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2013.07.16 23:47:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys [2013.07.16 23:47:25 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2013.07.16 23:46:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2013.07.16 23:46:16 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013.07.16 23:45:44 | 002,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2013.07.16 23:45:44 | 002,149,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2013.07.16 23:45:43 | 002,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2013.07.16 23:45:43 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2013.07.16 23:45:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2013.07.16 23:43:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2013.07.16 23:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Notebook Content [2013.07.16 23:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies [2013.07.16 23:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\SMART Notebook [2013.07.16 23:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 23:31:04 | 002,350,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll [2013.07.16 23:31:04 | 002,281,472 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc [2013.07.16 23:31:04 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc [2013.07.16 23:31:04 | 000,237,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc [2013.07.16 23:31:04 | 000,229,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc [2013.07.16 23:31:04 | 000,225,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc [2013.07.16 23:31:04 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc [2013.07.16 23:31:04 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc [2013.07.16 23:31:04 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll [2013.07.16 23:31:04 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll [2013.07.16 23:31:04 | 000,052,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll [2013.07.16 23:31:04 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll [2013.07.16 23:31:03 | 005,672,960 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll [2013.07.16 23:31:03 | 003,895,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2013.07.16 23:31:03 | 003,398,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll [2013.07.16 23:31:03 | 000,651,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe [2013.07.16 23:31:03 | 000,286,720 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc [2013.07.16 23:31:03 | 000,274,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc [2013.07.16 23:31:03 | 000,270,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc [2013.07.16 23:31:03 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc [2013.07.16 23:31:03 | 000,212,992 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll [2013.07.16 23:31:03 | 000,181,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc [2013.07.16 23:31:03 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll [2013.07.16 23:31:03 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl [2013.07.16 23:31:02 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe [2013.07.16 23:31:02 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2013.07.16 22:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies Inc [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:39:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll [2013.07.16 22:39:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013.07.16 22:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\National Instruments [2013.07.16 22:38:57 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013.07.16 22:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\SMART Technologies [2013.07.16 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.16 22:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SMART Technologies [2013.07.16 22:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.16 22:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Epson Software [2013.07.16 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2013.07.16 22:24:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 6.0 Sprint [2013.07.16 22:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2013.07.16 22:22:51 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2013.07.16 22:22:51 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2013.07.16 22:22:51 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2013.07.16 22:22:51 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2013.07.16 22:22:51 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2013.07.16 22:22:00 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL [2013.07.16 22:21:59 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBFDE.DLL [2013.07.16 22:21:59 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BFDE.DLL [2013.07.16 22:21:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013.07.16 22:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.16 22:21:27 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll [2013.07.16 22:21:27 | 000,009,216 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\escdev.dll [2013.07.16 22:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EPSON [2013.07.16 22:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2013.07.16 22:14:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caricature Studio Green 3.6 [2013.07.16 22:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Studio Green 3.6 [2013.07.16 22:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.16 22:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.16 22:04:32 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Sun [2013.07.16 22:02:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013.07.16 22:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2013.07.16 22:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.07.16 22:02:22 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:22 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 22:02:22 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:22 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:20 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.07.16 21:58:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Sun [2013.07.16 21:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab [2013.07.16 21:52:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO [2013.07.16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\WinRAR [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR [2013.07.16 21:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\WinRAR [2013.07.16 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.07.16 21:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013.07.16 21:45:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2013.07.16 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013.07.16 21:38:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll [2013.07.16 21:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Ahead [2013.07.16 21:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\NeroInstall.bak [2013.07.16 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero 8 [2013.07.16 21:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2013.07.16 21:28:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013.07.16 21:28:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2013.07.16 21:28:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2013.07.16 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2013.07.16 21:10:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013.07.16 21:01:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2013.07.16 21:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop\Pacific Tech - NuCalc 2.0 [2013.07.16 21:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2013.07.16 20:58:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2013.07.16 20:58:07 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013.07.16 20:58:05 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013.07.16 20:58:03 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013.07.16 20:58:01 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013.07.16 20:57:58 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013.07.16 20:57:55 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013.07.16 20:57:52 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013.07.16 20:57:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013.07.16 20:57:46 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013.07.16 20:57:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013.07.16 20:57:41 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013.07.16 20:57:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013.07.16 20:56:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013.07.16 20:49:52 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013.07.16 20:49:52 | 001,522,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013.07.16 20:49:52 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013.07.16 20:49:52 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013.07.16 20:49:52 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013.07.16 20:49:51 | 005,444,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013.07.16 20:49:51 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013.07.16 20:49:51 | 000,079,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2013.07.16 20:49:51 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2013.07.16 20:49:50 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013.07.16 20:49:50 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013.07.16 20:49:48 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013.07.16 20:49:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013.07.16 20:49:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013.07.16 20:49:48 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013.07.16 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.07.16 20:49:32 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013.07.16 20:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013.07.16 20:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Downloads [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Macromedia [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Adobe [2013.07.16 20:40:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 20:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2013.07.16 20:29:16 | 000,692,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.16 20:29:16 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.16 20:27:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2013.07.16 20:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Adobe [2013.07.16 20:24:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google [2013.07.16 20:01:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2013.07.16 20:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Identities [2013.07.16 19:57:44 | 000,000,000 | ---D | C] -- C:\Intel [2013.07.16 19:49:17 | 001,371,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll [2013.07.16 19:49:15 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm [2013.07.16 19:49:14 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm [2013.07.16 19:49:14 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- Quote
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 OTL.Txt-part1 OTL logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt- 1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc10 0-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{go ogle:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inp utEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition }{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\adawarebp [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.16 23:56:01 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.16 23:53:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll [2013.07.16 23:53:28 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll [2013.07.16 23:53:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tlntsess.exe [2013.07.16 23:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe [2013.07.16 23:53:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll [2013.07.16 23:53:10 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2013.07.16 23:53:05 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll [2013.07.16 23:53:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll [2013.07.16 23:53:02 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll [2013.07.16 23:53:00 | 001,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2013.07.16 23:52:56 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2013.07.16 23:52:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2013.07.16 23:52:30 | 001,288,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll [2013.07.16 23:52:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013.07.16 23:52:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013.07.16 23:52:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013.07.16 23:52:22 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll [2013.07.16 23:52:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013.07.16 23:52:17 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msasn1.dll [2013.07.16 23:52:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2013.07.16 23:52:11 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atl.dll [2013.07.16 23:52:08 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usp10.dll [2013.07.16 23:51:59 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013.07.16 23:51:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll [2013.07.16 23:51:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013.07.16 23:51:59 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013.07.16 23:51:59 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013.07.16 23:51:59 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013.07.16 23:51:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll [2013.07.16 23:51:54 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll [2013.07.16 23:51:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2013.07.16 23:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll [2013.07.16 23:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2013.07.16 23:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll [2013.07.16 23:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2013.07.16 23:51:40 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2013.07.16 23:51:36 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013.07.16 23:51:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\synceng.dll [2013.07.16 23:51:00 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2013.07.16 23:50:55 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013.07.16 23:50:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2013.07.16 23:50:41 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2013.07.16 23:50:34 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2013.07.16 23:50:31 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll [2013.07.16 23:50:28 | 001,876,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2013.07.16 23:50:16 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2013.07.16 23:50:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013.07.16 23:50:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2013.07.16 23:49:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys [2013.07.16 23:49:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll [2013.07.16 23:48:09 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2013.07.16 23:47:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys [2013.07.16 23:47:25 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2013.07.16 23:46:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2013.07.16 23:46:16 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013.07.16 23:45:44 | 002,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2013.07.16 23:45:44 | 002,149,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2013.07.16 23:45:43 | 002,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2013.07.16 23:45:43 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2013.07.16 23:45:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2013.07.16 23:43:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2013.07.16 23:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Notebook Content [2013.07.16 23:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies [2013.07.16 23:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\SMART Notebook [2013.07.16 23:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 23:31:04 | 002,350,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll [2013.07.16 23:31:04 | 002,281,472 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc [2013.07.16 23:31:04 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc [2013.07.16 23:31:04 | 000,237,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc [2013.07.16 23:31:04 | 000,229,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc [2013.07.16 23:31:04 | 000,225,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc [2013.07.16 23:31:04 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc [2013.07.16 23:31:04 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc [2013.07.16 23:31:04 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll [2013.07.16 23:31:04 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll [2013.07.16 23:31:04 | 000,052,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll [2013.07.16 23:31:04 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll [2013.07.16 23:31:03 | 005,672,960 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll [2013.07.16 23:31:03 | 003,895,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2013.07.16 23:31:03 | 003,398,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll [2013.07.16 23:31:03 | 000,651,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe [2013.07.16 23:31:03 | 000,286,720 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc [2013.07.16 23:31:03 | 000,274,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc [2013.07.16 23:31:03 | 000,270,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc [2013.07.16 23:31:03 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc [2013.07.16 23:31:03 | 000,212,992 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll [2013.07.16 23:31:03 | 000,181,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc [2013.07.16 23:31:03 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll [2013.07.16 23:31:03 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl [2013.07.16 23:31:02 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe [2013.07.16 23:31:02 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2013.07.16 22:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies Inc [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:39:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll [2013.07.16 22:39:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013.07.16 22:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\National Instruments [2013.07.16 22:38:57 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013.07.16 22:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\SMART Technologies [2013.07.16 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.16 22:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SMART Technologies [2013.07.16 22:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.16 22:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Epson Software [2013.07.16 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2013.07.16 22:24:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 6.0 Sprint [2013.07.16 22:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2013.07.16 22:22:51 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2013.07.16 22:22:51 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2013.07.16 22:22:51 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2013.07.16 22:22:51 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2013.07.16 22:22:51 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2013.07.16 22:22:00 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL [2013.07.16 22:21:59 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBFDE.DLL [2013.07.16 22:21:59 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BFDE.DLL [2013.07.16 22:21:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013.07.16 22:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.16 22:21:27 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll [2013.07.16 22:21:27 | 000,009,216 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\escdev.dll [2013.07.16 22:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EPSON [2013.07.16 22:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2013.07.16 22:14:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caricature Studio Green 3.6 [2013.07.16 22:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Studio Green 3.6 [2013.07.16 22:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.16 22:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.16 22:04:32 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Sun [2013.07.16 22:02:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013.07.16 22:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2013.07.16 22:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.07.16 22:02:22 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:22 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 22:02:22 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:22 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:20 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.07.16 21:58:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Sun [2013.07.16 21:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab [2013.07.16 21:52:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO [2013.07.16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\WinRAR [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR [2013.07.16 21:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\WinRAR [2013.07.16 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.07.16 21:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013.07.16 21:45:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2013.07.16 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013.07.16 21:38:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll [2013.07.16 21:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Ahead [2013.07.16 21:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\NeroInstall.bak [2013.07.16 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero 8 [2013.07.16 21:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2013.07.16 21:28:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013.07.16 21:28:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2013.07.16 21:28:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2013.07.16 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2013.07.16 21:10:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013.07.16 21:01:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2013.07.16 21:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop\Pacific Tech - NuCalc 2.0 [2013.07.16 21:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2013.07.16 20:58:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2013.07.16 20:58:07 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013.07.16 20:58:05 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013.07.16 20:58:03 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013.07.16 20:58:01 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013.07.16 20:57:58 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013.07.16 20:57:55 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013.07.16 20:57:52 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013.07.16 20:57:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013.07.16 20:57:46 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013.07.16 20:57:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013.07.16 20:57:41 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013.07.16 20:57:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013.07.16 20:56:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013.07.16 20:49:52 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013.07.16 20:49:52 | 001,522,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013.07.16 20:49:52 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013.07.16 20:49:52 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013.07.16 20:49:52 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013.07.16 20:49:51 | 005,444,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013.07.16 20:49:51 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013.07.16 20:49:51 | 000,079,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2013.07.16 20:49:51 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2013.07.16 20:49:50 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013.07.16 20:49:50 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013.07.16 20:49:48 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013.07.16 20:49:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013.07.16 20:49:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013.07.16 20:49:48 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013.07.16 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.07.16 20:49:32 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013.07.16 20:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013.07.16 20:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Downloads [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Macromedia [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Adobe [2013.07.16 20:40:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 20:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2013.07.16 20:29:16 | 000,692,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.16 20:29:16 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.16 20:27:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2013.07.16 20:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Adobe [2013.07.16 20:24:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google [2013.07.16 20:01:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2013.07.16 20:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Identities [2013.07.16 19:57:44 | 000,000,000 | ---D | C] -- C:\Intel [2013.07.16 19:49:17 | 001,371,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll [2013.07.16 19:49:15 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm [2013.07.16 19:49:14 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm [2013.07.16 19:49:14 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm [2013.07.16 19:49:11 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll [2013.07.16 19:49:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys [2013.07.16 19:49:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe [2013.07.16 19:49:05 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll [2013.07.16 19:49:05 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll [2013.07.16 19:49:05 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll [2013.07.16 19:49:05 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll [2013.07.16 19:49:05 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll [2013.07.16 19:49:05 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll [2013.07.16 19:49:05 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll [2013.07.16 19:49:05 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2013.07.16 19:49:05 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll [2013.07.16 19:49:05 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll [2013.07.16 19:49:05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll [2013.07.16 19:49:05 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll [2013.07.16 19:49:05 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax [2013.07.16 19:49:05 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax [2013.07.16 19:49:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2013.07.16 19:49:04 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll [2013.07.16 19:49:04 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll [2013.07.16 19:49:04 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll [2013.07.16 19:49:04 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll [2013.07.16 19:49:04 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll [2013.07.16 19:49:04 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll [2013.07.16 19:49:04 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll [2013.07.16 19:49:04 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll [2013.07.16 19:49:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll [2013.07.16 19:49:03 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll [2013.07.16 19:49:03 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll [2013.07.16 19:49:03 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll [2013.07.16 19:49:03 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll [2013.07.16 19:49:03 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll [2013.07.16 19:49:03 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe [2013.07.16 19:49:03 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll [2013.07.16 19:49:03 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll [2013.07.16 19:49:03 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll [2013.07.16 19:49:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll [2013.07.16 19:49:03 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll [2013.07.16 19:49:03 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe [2013.07.16 19:49:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll [2013.07.16 19:49:02 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll [2013.07.16 19:49:02 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll [2013.07.16 19:49:02 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll [2013.07.16 19:49:02 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2013.07.16 19:49:02 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll [2013.07.16 19:49:02 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll [2013.07.16 19:49:02 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll [2013.07.16 19:49:02 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll [2013.07.16 19:49:02 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll [2013.07.16 19:49:02 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe [2013.07.16 19:49:02 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll [2013.07.16 19:49:02 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll [2013.07.16 19:49:02 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2013.07.16 19:49:02 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe [2013.07.16 19:49:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe [2013.07.16 19:49:01 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe [2013.07.16 19:49:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2013.07.16 19:47:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2013.07.16 19:47:38 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe [2013.07.16 19:46:31 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2013.07.16 19:46:31 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2013.07.16 19:46:31 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2013.07.16 19:46:31 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2013.07.16 19:46:31 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2013.07.16 19:46:31 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2013.07.16 19:46:31 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2013.07.16 19:46:31 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2013.07.16 19:46:31 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2013.07.16 19:46:31 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2013.07.16 19:46:31 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2013.07.16 19:46:31 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll [2013.07.16 19:46:31 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll [2013.07.16 19:46:31 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll [2013.07.16 19:46:31 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll [2013.07.16 19:46:31 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll [2013.07.16 19:46:31 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll [2013.07.16 19:46:31 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll [2013.07.16 19:46:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2013.07.16 19:46:30 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2013.07.16 19:46:30 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2013.07.16 19:46:30 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2013.07.16 19:46:30 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2013.07.16 19:46:30 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2013.07.16 19:46:30 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2013.07.16 19:46:30 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2013.07.16 19:46:30 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2013.07.16 19:46:30 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys [2013.07.16 19:46:30 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2013.07.16 19:46:30 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2013.07.16 19:46:30 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll [2013.07.16 19:46:30 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll [2013.07.16 19:46:30 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll [2013.07.16 19:46:30 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll [2013.07.16 19:46:30 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2013.07.16 19:46:30 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2013.07.16 19:46:30 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll [2013.07.16 19:46:29 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2013.07.16 19:46:29 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys Quote
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 OTL.Txt (1) OTL logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt- 1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc10 0-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{go ogle:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inp utEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition }{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\adawarebp [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.16 23:56:01 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.16 23:53:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll [2013.07.16 23:53:28 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll [2013.07.16 23:53:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tlntsess.exe [2013.07.16 23:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe [2013.07.16 23:53:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll [2013.07.16 23:53:10 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2013.07.16 23:53:05 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll [2013.07.16 23:53:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll [2013.07.16 23:53:02 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll [2013.07.16 23:53:00 | 001,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2013.07.16 23:52:56 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2013.07.16 23:52:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2013.07.16 23:52:30 | 001,288,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll [2013.07.16 23:52:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013.07.16 23:52:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013.07.16 23:52:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013.07.16 23:52:22 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll [2013.07.16 23:52:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013.07.16 23:52:17 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msasn1.dll [2013.07.16 23:52:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2013.07.16 23:52:11 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atl.dll [2013.07.16 23:52:08 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usp10.dll [2013.07.16 23:51:59 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013.07.16 23:51:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll [2013.07.16 23:51:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013.07.16 23:51:59 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013.07.16 23:51:59 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013.07.16 23:51:59 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013.07.16 23:51:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll [2013.07.16 23:51:54 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll [2013.07.16 23:51:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2013.07.16 23:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll [2013.07.16 23:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2013.07.16 23:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll [2013.07.16 23:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2013.07.16 23:51:40 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2013.07.16 23:51:36 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013.07.16 23:51:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\synceng.dll [2013.07.16 23:51:00 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2013.07.16 23:50:55 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013.07.16 23:50:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2013.07.16 23:50:41 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2013.07.16 23:50:34 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2013.07.16 23:50:31 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll [2013.07.16 23:50:28 | 001,876,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2013.07.16 23:50:16 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2013.07.16 23:50:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013.07.16 23:50:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2013.07.16 23:49:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys [2013.07.16 23:49:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll [2013.07.16 23:48:09 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2013.07.16 23:47:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys [2013.07.16 23:47:25 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2013.07.16 23:46:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2013.07.16 23:46:16 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013.07.16 23:45:44 | 002,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2013.07.16 23:45:44 | 002,149,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2013.07.16 23:45:43 | 002,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2013.07.16 23:45:43 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2013.07.16 23:45:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2013.07.16 23:43:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2013.07.16 23:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Notebook Content [2013.07.16 23:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies [2013.07.16 23:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\SMART Notebook [2013.07.16 23:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 23:31:04 | 002,350,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll [2013.07.16 23:31:04 | 002,281,472 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc [2013.07.16 23:31:04 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc [2013.07.16 23:31:04 | 000,237,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc [2013.07.16 23:31:04 | 000,229,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc [2013.07.16 23:31:04 | 000,225,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc [2013.07.16 23:31:04 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc [2013.07.16 23:31:04 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc [2013.07.16 23:31:04 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll [2013.07.16 23:31:04 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll [2013.07.16 23:31:04 | 000,052,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll [2013.07.16 23:31:04 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll [2013.07.16 23:31:03 | 005,672,960 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll [2013.07.16 23:31:03 | 003,895,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2013.07.16 23:31:03 | 003,398,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll [2013.07.16 23:31:03 | 000,651,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe [2013.07.16 23:31:03 | 000,286,720 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc [2013.07.16 23:31:03 | 000,274,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc [2013.07.16 23:31:03 | 000,270,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc [2013.07.16 23:31:03 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc [2013.07.16 23:31:03 | 000,212,992 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll [2013.07.16 23:31:03 | 000,181,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc [2013.07.16 23:31:03 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll [2013.07.16 23:31:03 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl [2013.07.16 23:31:02 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe [2013.07.16 23:31:02 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2013.07.16 22:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies Inc [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:39:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll [2013.07.16 22:39:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013.07.16 22:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\National Instruments [2013.07.16 22:38:57 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013.07.16 22:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\SMART Technologies [2013.07.16 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.16 22:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SMART Technologies [2013.07.16 22:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.16 22:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Epson Software [2013.07.16 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2013.07.16 22:24:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 6.0 Sprint [2013.07.16 22:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2013.07.16 22:22:51 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2013.07.16 22:22:51 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2013.07.16 22:22:51 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2013.07.16 22:22:51 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2013.07.16 22:22:51 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2013.07.16 22:22:00 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL [2013.07.16 22:21:59 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBFDE.DLL [2013.07.16 22:21:59 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BFDE.DLL [2013.07.16 22:21:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013.07.16 22:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.16 22:21:27 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll [2013.07.16 22:21:27 | 000,009,216 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\escdev.dll [2013.07.16 22:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EPSON [2013.07.16 22:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2013.07.16 22:14:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caricature Studio Green 3.6 [2013.07.16 22:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Studio Green 3.6 [2013.07.16 22:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.16 22:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.16 22:04:32 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Sun [2013.07.16 22:02:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013.07.16 22:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2013.07.16 22:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.07.16 22:02:22 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:22 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 22:02:22 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:22 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:20 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.07.16 21:58:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Sun [2013.07.16 21:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab [2013.07.16 21:52:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO [2013.07.16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\WinRAR [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR [2013.07.16 21:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\WinRAR [2013.07.16 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.07.16 21:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013.07.16 21:45:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2013.07.16 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013.07.16 21:38:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll [2013.07.16 21:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Ahead [2013.07.16 21:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\NeroInstall.bak [2013.07.16 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero 8 [2013.07.16 21:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2013.07.16 21:28:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013.07.16 21:28:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2013.07.16 21:28:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2013.07.16 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2013.07.16 21:10:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013.07.16 21:01:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2013.07.16 21:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop\Pacific Tech - NuCalc 2.0 [2013.07.16 21:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2013.07.16 20:58:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2013.07.16 20:58:07 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013.07.16 20:58:05 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013.07.16 20:58:03 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013.07.16 20:58:01 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013.07.16 20:57:58 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013.07.16 20:57:55 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013.07.16 20:57:52 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013.07.16 20:57:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013.07.16 20:57:46 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013.07.16 20:57:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013.07.16 20:57:41 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013.07.16 20:57:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013.07.16 20:56:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013.07.16 20:49:52 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013.07.16 20:49:52 | 001,522,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013.07.16 20:49:52 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013.07.16 20:49:52 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013.07.16 20:49:52 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013.07.16 20:49:51 | 005,444,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013.07.16 20:49:51 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013.07.16 20:49:51 | 000,079,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2013.07.16 20:49:51 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2013.07.16 20:49:50 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013.07.16 20:49:50 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013.07.16 20:49:48 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013.07.16 20:49:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013.07.16 20:49:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013.07.16 20:49:48 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013.07.16 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.07.16 20:49:32 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013.07.16 20:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013.07.16 20:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Downloads [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Macromedia [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Adobe [2013.07.16 20:40:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 20:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2013.07.16 20:29:16 | 000,692,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.16 20:29:16 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.16 20:27:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2013.07.16 20:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Adobe [2013.07.16 20:24:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google [2013.07.16 20:01:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2013.07.16 20:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Identities [2013.07.16 19:57:44 | 000,000,000 | ---D | C] -- C:\Intel [2013.07.16 19:49:17 | 001,371,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll [2013.07.16 19:49:15 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm [2013.07.16 19:49:14 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm [2013.07.16 19:49:14 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm [2013.07.16 19:49:11 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll [2013.07.16 19:49:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys [2013.07.16 19:49:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe [2013.07.16 19:49:05 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll [2013.07.16 19:49:05 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll [2013.07.16 19:49:05 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll [2013.07.16 19:49:05 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll [2013.07.16 19:49:05 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll [2013.07.16 19:49:05 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll [2013.07.16 19:49:05 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll [2013.07.16 19:49:05 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2013.07.16 19:49:05 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll [2013.07.16 19:49:05 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll [2013.07.16 19:49:05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll [2013.07.16 19:49:05 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll [2013.07.16 19:49:05 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax [2013.07.16 19:49:05 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax [2013.07.16 19:49:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2013.07.16 19:49:04 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll [2013.07.16 19:49:04 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll [2013.07.16 19:49:04 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll [2013.07.16 19:49:04 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll [2013.07.16 19:49:04 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll [2013.07.16 19:49:04 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll [2013.07.16 19:49:04 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll [2013.07.16 19:49:04 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll [2013.07.16 19:49:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll [2013.07.16 19:49:03 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll [2013.07.16 19:49:03 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll [2013.07.16 19:49:03 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll [2013.07.16 19:49:03 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll [2013.07.16 19:49:03 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll [2013.07.16 19:49:03 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe [2013.07.16 19:49:03 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll [2013.07.16 19:49:03 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll [2013.07.16 19:49:03 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll [2013.07.16 19:49:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll [2013.07.16 19:49:03 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll [2013.07.16 19:49:03 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe [2013.07.16 19:49:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll [2013.07.16 19:49:02 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll [2013.07.16 19:49:02 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll [2013.07.16 19:49:02 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll [2013.07.16 19:49:02 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2013.07.16 19:49:02 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll [2013.07.16 19:49:02 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll [2013.07.16 19:49:02 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll [2013.07.16 19:49:02 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll [2013.07.16 19:49:02 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll [2013.07.16 19:49:02 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe [2013.07.16 19:49:02 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll [2013.07.16 19:49:02 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll [2013.07.16 19:49:02 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2013.07.16 19:49:02 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe [2013.07.16 19:49:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe [2013.07.16 19:49:01 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe [2013.07.16 19:49:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2013.07.16 19:47:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2013.07.16 19:47:38 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe [2013.07.16 19:46:31 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2013.07.16 19:46:31 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2013.07.16 19:46:31 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2013.07.16 19:46:31 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2013.07.16 19:46:31 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2013.07.16 19:46:31 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2013.07.16 19:46:31 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2013.07.16 19:46:31 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2013.07.16 19:46:31 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2013.07.16 19:46:31 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2013.07.16 19:46:31 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2013.07.16 19:46:31 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll [2013.07.16 19:46:31 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll [2013.07.16 19:46:31 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll [2013.07.16 19:46:31 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll [2013.07.16 19:46:31 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll [2013.07.16 19:46:31 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll [2013.07.16 19:46:31 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll [2013.07.16 19:46:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2013.07.16 19:46:30 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2013.07.16 19:46:30 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2013.07.16 19:46:30 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2013.07.16 19:46:30 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2013.07.16 19:46:30 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2013.07.16 19:46:30 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2013.07.16 19:46:30 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2013.07.16 19:46:30 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2013.07.16 19:46:30 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys [2013.07.16 19:46:30 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2013.07.16 19:46:30 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2013.07.16 19:46:30 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll [2013.07.16 19:46:30 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll [2013.07.16 19:46:30 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll [2013.07.16 19:46:30 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll [2013.07.16 19:46:30 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2013.07.16 19:46:30 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2013.07.16 19:46:30 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll [2013.07.16 19:46:29 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2013.07.16 19:46:29 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys Quote
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 part2 ..... [2013.07.16 19:46:29 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys [2013.07.16 19:46:29 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys [2013.07.16 19:46:29 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys [2013.07.16 19:46:29 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys [2013.07.16 19:46:29 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys [2013.07.16 19:46:29 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys [2013.07.16 19:46:29 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys [2013.07.16 19:46:29 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys [2013.07.16 19:46:29 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys [2013.07.16 19:46:29 | 000,011,325 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll [2013.07.16 19:46:29 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys [2013.07.16 19:46:29 | 000,003,901 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll [2013.07.16 19:46:28 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys [2013.07.16 19:46:28 | 000,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys [2013.07.16 19:46:28 | 000,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys [2013.07.16 19:46:28 | 000,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys [2013.07.16 19:46:28 | 000,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys [2013.07.16 19:46:28 | 000,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys [2013.07.16 19:45:27 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2013.07.16 19:45:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2013.07.16 19:45:10 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2013.07.16 19:43:44 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$ [2013.07.16 19:35:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Preuzimanja [2013.07.16 19:29:13 | 000,207,616 | R--- | C] (Realtek Semiconductor Corporation ) -- C:\WINDOWS\System32\drivers\RTL8187B.sys [2013.07.16 19:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\REALTEK USB Wireless LAN Utility [2013.07.16 19:28:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTL8187 [2013.07.16 19:28:20 | 000,000,000 | ---D | C] -- C:\Program Files\REALTEK USB Wireless LAN Driver and Utility [2013.07.16 19:28:18 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2013.07.16 19:28:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\InstallShield [2013.07.16 19:26:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Mozilla [2013.07.16 19:26:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Mozilla [2013.07.16 19:26:37 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2013.07.16 19:26:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Mozilla [2013.07.16 19:24:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Identities [2013.07.16 19:24:55 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2013.07.16 19:24:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Pictures [2013.07.16 19:24:52 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Music [2013.07.16 19:24:49 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Korisnik\Application Data\Microsoft [2013.07.16 19:24:49 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Korisnik\SendTo [2013.07.16 19:24:49 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Korisnik\Recent [2013.07.16 19:24:49 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Korisnik\Application Data [2013.07.16 19:24:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup [2013.07.16 19:24:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Korisnik\Start Menu [2013.07.16 19:24:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Korisnik\My Documents [2013.07.16 19:24:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Korisnik\Favorites [2013.07.16 19:24:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Accessories [2013.07.16 19:24:49 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\Cookies [2013.07.16 19:24:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Korisnik\Templates [2013.07.16 19:24:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Korisnik\PrintHood [2013.07.16 19:24:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Korisnik\NetHood [2013.07.16 19:24:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Korisnik\Local Settings [2013.07.16 19:24:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Microsoft [2013.07.16 19:24:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop [2013.07.16 19:10:26 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll [2013.07.16 19:09:34 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2013.07.16 19:09:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2013.07.16 19:09:33 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll [2013.07.16 19:09:33 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll [2013.07.16 19:09:32 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll [2013.07.16 19:09:31 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe [2013.07.16 19:09:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2013.07.16 19:09:30 | 000,000,000 | R--D | C] -- C:\Program Files [2013.07.16 19:09:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2013.07.16 19:09:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2013.07.16 19:09:27 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll [2013.07.16 19:09:27 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll [2013.07.16 19:09:27 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll [2013.07.16 19:09:27 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll [2013.07.16 19:09:27 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll [2013.07.16 19:09:27 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll [2013.07.16 19:09:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll [2013.07.16 19:09:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll [2013.07.16 19:09:21 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll [2013.07.16 19:09:21 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll [2013.07.16 19:09:21 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll [2013.07.16 19:09:21 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll [2013.07.16 19:09:21 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll [2013.07.16 19:09:21 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll [2013.07.16 19:09:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll [2013.07.16 19:09:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll [2013.07.16 19:09:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll [2013.07.16 19:09:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll [2013.07.16 19:09:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll [2013.07.16 19:09:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll [2013.07.16 19:09:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll [2013.07.16 19:09:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll [2013.07.16 19:09:19 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll [2013.07.16 19:09:19 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll [2013.07.16 19:09:19 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll [2013.07.16 19:09:19 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll [2013.07.16 19:09:19 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll [2013.07.16 19:09:19 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll [2013.07.16 19:09:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll [2013.07.16 19:09:19 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll [2013.07.16 19:09:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll [2013.07.16 19:09:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll [2013.07.16 19:09:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll [2013.07.16 19:09:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll [2013.07.16 19:09:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll [2013.07.16 19:09:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll [2013.07.16 19:09:16 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll [2013.07.16 19:09:16 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll [2013.07.16 19:09:16 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll [2013.07.16 19:09:16 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll [2013.07.16 19:09:16 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll [2013.07.16 19:09:16 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll [2013.07.16 19:09:16 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll [2013.07.16 19:09:16 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll [2013.07.16 19:09:16 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL [2013.07.16 19:09:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll [2013.07.16 19:09:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll [2013.07.16 19:09:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll [2013.07.16 19:09:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll [2013.07.16 19:09:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll [2013.07.16 19:09:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll [2013.07.16 19:09:16 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll [2013.07.16 19:09:16 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll [2013.07.16 19:09:16 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll [2013.07.16 19:09:16 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll [2013.07.16 19:09:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll [2013.07.16 19:09:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll [2013.07.16 19:09:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll [2013.07.16 19:09:14 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll [2013.07.16 19:09:14 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2013.07.16 19:09:14 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll [2013.07.16 19:09:14 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll [2013.07.16 19:09:14 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2013.07.16 19:09:14 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2013.07.16 19:09:13 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2013.07.16 19:09:13 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll [2013.07.16 19:09:13 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2013.07.16 19:09:13 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2013.07.16 19:09:13 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL [2013.07.16 19:09:13 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2013.07.16 19:09:13 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL [2013.07.16 19:09:13 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2013.07.16 19:09:13 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2013.07.16 19:09:12 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL [2013.07.16 19:09:12 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL [2013.07.16 19:09:12 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL [2013.07.16 19:09:12 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL [2013.07.16 19:09:12 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2013.07.16 19:09:12 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2013.07.16 19:09:12 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2013.07.16 19:09:12 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK [2013.07.16 19:09:11 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL [2013.07.16 19:09:11 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV [2013.07.16 19:09:11 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2013.07.16 19:09:11 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL [2013.07.16 19:09:11 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV [2013.07.16 19:09:11 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV [2013.07.16 19:09:11 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE [2013.07.16 19:09:11 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe [2013.07.16 19:09:11 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL [2013.07.16 19:09:11 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2013.07.16 19:09:10 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv [2013.07.16 19:09:10 | 000,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL [2013.07.16 19:09:10 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll [2013.07.16 19:09:08 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll [2013.07.16 19:09:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup [2013.07.16 19:09:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu [2013.07.16 19:09:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents [2013.07.16 19:09:02 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates [2013.07.16 19:09:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites [2013.07.16 19:09:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop [2013.07.16 19:08:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2013.07.16 19:08:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2013.07.16 19:08:44 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft [2013.07.16 19:08:44 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data [2013.07.16 19:08:23 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2013.07.16 19:08:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2013.07.16 19:01:06 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2013.07.16 19:01:06 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2013.07.16 19:01:06 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2013.07.16 19:01:06 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2013.07.16 19:01:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2013.07.16 17:44:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2013.07.16 17:44:45 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2013.07.16 17:44:44 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft [2013.07.16 17:44:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft [2013.07.16 17:23:45 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft [2013.07.16 17:23:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft [2013.07.16 17:22:50 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2013.07.16 17:22:49 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2013.07.16 17:22:49 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2013.07.16 17:22:49 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2013.07.16 17:22:49 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2013.07.16 17:22:49 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2013.07.16 17:22:48 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2013.07.16 17:22:48 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2013.07.16 17:22:47 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll [2013.07.16 17:22:47 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll [2013.07.16 17:22:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll [2013.07.16 17:22:47 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll [2013.07.16 17:22:46 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2013.07.16 17:22:46 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2013.07.16 17:22:46 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2013.07.16 17:22:45 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2013.07.16 17:22:45 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2013.07.16 17:22:44 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2013.07.16 17:22:43 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2013.07.16 17:22:43 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2013.07.16 17:22:43 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2013.07.16 17:22:43 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2013.07.16 17:22:42 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2013.07.16 17:22:42 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2013.07.16 17:22:42 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2013.07.16 17:22:42 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2013.07.16 17:22:41 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll [2013.07.16 17:22:40 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2013.07.16 17:22:39 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2013.07.16 17:22:38 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2013.07.16 17:22:38 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2013.07.16 17:22:37 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2013.07.16 17:22:36 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2013.07.16 17:22:36 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2013.07.16 17:22:36 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2013.07.16 17:22:36 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2013.07.16 17:22:36 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2013.07.16 17:22:36 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2013.07.16 17:22:36 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2013.07.16 17:22:36 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2013.07.16 17:22:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2013.07.16 17:22:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2013.07.16 17:22:35 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2013.07.16 17:22:35 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2013.07.16 17:22:35 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2013.07.16 17:22:35 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2013.07.16 17:22:35 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2013.07.16 17:22:35 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2013.07.16 17:22:35 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2013.07.16 17:22:33 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2013.07.16 17:22:32 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2013.07.16 17:22:31 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2013.07.16 17:22:31 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2013.07.16 17:22:30 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2013.07.16 17:22:30 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2013.07.16 17:22:30 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2013.07.16 17:22:29 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2013.07.16 17:22:28 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2013.07.16 17:22:28 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2013.07.16 17:22:27 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2013.07.16 17:22:27 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2013.07.16 17:22:27 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2013.07.16 17:22:26 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2013.07.16 17:22:26 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2013.07.16 17:22:26 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2013.07.16 17:22:26 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2013.07.16 17:22:25 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2013.07.16 17:22:25 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll [2013.07.16 17:22:25 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll [2013.07.16 17:22:24 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2013.07.16 17:22:24 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2013.07.16 17:22:24 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2013.07.16 17:22:24 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2013.07.16 17:22:23 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2013.07.16 17:22:22 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll [2013.07.16 17:22:21 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2013.07.16 17:22:18 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2013.07.16 17:22:18 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2013.07.16 17:22:14 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2013.07.16 17:22:14 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2013.07.16 17:22:13 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll [2013.07.16 17:22:12 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2013.07.16 17:22:12 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll [2013.07.16 17:22:10 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2013.07.16 17:22:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2013.07.16 17:22:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2013.07.16 17:22:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2013.07.16 17:22:09 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2013.07.16 17:22:09 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2013.07.16 17:22:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2013.07.16 17:22:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2013.07.16 17:22:09 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2013.07.16 17:22:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2013.07.16 17:22:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2013.07.16 17:22:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2013.07.16 17:22:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll [2013.07.16 17:22:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2013.07.16 17:22:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2013.07.16 17:22:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2013.07.16 17:22:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2013.07.16 17:22:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2013.07.16 17:22:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2013.07.16 17:22:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2013.07.16 17:22:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2013.07.16 17:22:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2013.07.16 17:22:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2013.07.16 17:22:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2013.07.16 17:22:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2013.07.16 17:22:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2013.07.16 17:22:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2013.07.16 17:22:07 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2013.07.16 17:22:07 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2013.07.16 17:22:07 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2013.07.16 17:22:06 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2013.07.16 17:22:06 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll [2013.07.16 17:22:06 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll [2013.07.16 17:22:06 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2013.07.16 17:22:06 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2013.07.16 17:22:05 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll [2013.07.16 17:22:04 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2013.07.16 17:22:04 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2013.07.16 17:22:04 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2013.07.16 17:22:04 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2013.07.16 17:22:04 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2013.07.16 17:22:03 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2013.07.16 17:22:03 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2013.07.16 17:22:03 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2013.07.16 17:22:03 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2013.07.16 17:22:03 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2013.07.16 17:22:02 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2013.07.16 17:22:02 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2013.07.16 17:22:02 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2013.07.16 17:22:02 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2013.07.16 17:22:02 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2013.07.16 17:22:02 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2013.07.16 17:22:01 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2013.07.16 17:22:01 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2013.07.16 17:22:01 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2013.07.16 17:22:01 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2013.07.16 17:22:01 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2013.07.16 17:22:01 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2013.07.16 17:22:01 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2013.07.16 17:22:00 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll [2013.07.16 17:22:00 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll [2013.07.16 17:22:00 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe [2013.07.16 17:22:00 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll [2013.07.16 17:21:56 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2013.07.16 17:21:50 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2013.07.16 17:21:49 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2013.07.16 17:21:47 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2013.07.16 17:21:46 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2013.07.16 17:21:46 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2013.07.16 17:21:45 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2013.07.16 17:21:45 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll [2013.07.16 17:21:45 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2013.07.16 17:21:44 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2013.07.16 17:21:43 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2013.07.16 17:21:42 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2013.07.16 17:21:42 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2013.07.16 17:21:42 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2013.07.16 17:21:42 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2013.07.16 17:21:41 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll [2013.07.16 17:21:38 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2013.07.16 17:21:37 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2013.07.16 17:21:37 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2013.07.16 17:21:36 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe [2013.07.16 17:21:36 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll [2013.07.16 17:21:36 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll [2013.07.16 17:21:35 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2013.07.16 17:21:35 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2013.07.16 17:21:35 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2013.07.16 17:21:34 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2013.07.16 17:21:34 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2013.07.16 17:21:34 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2013.07.16 17:21:33 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2013.07.16 17:21:33 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2013.07.16 17:21:33 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2013.07.16 17:21:33 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2013.07.16 17:21:33 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2013.07.16 17:21:32 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2013.07.16 17:21:32 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2013.07.16 17:21:32 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2013.07.16 17:21:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2013.07.16 17:21:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll [2013.07.16 17:21:24 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll [2013.07.16 17:21:24 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll [2013.07.16 17:21:24 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll [2013.07.16 17:21:23 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2013.07.16 17:21:21 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll [2013.07.16 17:21:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll [2013.07.16 17:21:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2013.07.16 17:21:19 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll [2013.07.16 17:21:13 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll [2013.07.16 17:21:13 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll [2013.07.16 17:21:13 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe [2013.07.16 17:21:12 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe [2013.07.16 17:21:12 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll [2013.07.16 17:21:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll [2013.07.16 17:21:09 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx [2013.07.16 17:21:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2013.07.16 17:21:05 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2013.07.16 17:21:05 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2013.07.16 17:20:30 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll [2013.07.16 17:19:56 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2013.07.16 17:19:47 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2013.07.16 17:19:47 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2013.07.16 17:19:37 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2013.07.16 17:19:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2013.07.16 17:18:51 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe [2013.07.16 17:18:51 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe [2013.07.16 17:18:51 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll [2013.07.16 17:18:51 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll [2013.07.16 17:18:51 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll [2013.07.16 17:18:51 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll [2013.07.16 17:18:41 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe [2013.07.16 17:18:40 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe [2013.07.16 17:18:40 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll [2013.07.16 17:18:40 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll [2013.07.16 17:18:40 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe [2013.07.16 17:18:39 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll [2013.07.16 17:18:39 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll [2013.07.16 17:18:39 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe [2013.07.16 17:18:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2013.07.16 17:18:35 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll [2013.07.16 17:18:35 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll [2013.07.16 17:18:35 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll [2013.07.16 17:18:35 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2013.07.16 17:18:34 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll [2013.07.16 17:18:34 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe [2013.07.16 17:18:34 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll [2013.07.16 17:18:34 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll [2013.07.16 17:18:34 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll [2013.07.16 17:18:34 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2013.07.16 17:18:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2013.07.16 17:18:33 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx [2013.07.16 17:18:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2013.07.16 17:18:28 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll [2013.07.16 17:18:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2013.07.16 17:18:27 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe [2013.07.16 17:18:27 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll [2013.07.16 17:18:27 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll [2013.07.16 17:18:26 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe [2013.07.16 17:18:26 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll [2013.07.16 17:18:26 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe [2013.07.16 17:18:26 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll [2013.07.16 17:18:26 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll [2013.07.16 17:18:25 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll [2013.07.16 17:18:25 | 000,329,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2013.07.16 17:18:25 | 000,329,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll [2013.07.16 17:18:25 | 000,210,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll [2013.07.16 17:18:25 | 000,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe [2013.07.16 17:18:24 | 001,933,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll [2013.07.16 17:18:24 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2013.07.16 17:18:24 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll [2013.07.16 17:18:24 | 000,219,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl [2013.07.16 17:18:24 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll [2013.07.16 17:18:24 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe [2013.07.16 17:18:24 | 000,053,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe [2013.07.16 17:18:24 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2013.07.16 17:18:24 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll [2013.07.16 17:18:23 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll [2013.07.16 17:18:23 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll [2013.07.16 17:18:23 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll [2013.07.16 17:18:19 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2013.07.16 17:18:14 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll [2013.07.16 17:18:14 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll [2013.07.16 17:18:14 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll [2013.07.16 17:18:14 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll [2013.07.16 17:18:10 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe [2013.07.16 17:18:09 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll [2013.07.16 17:18:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2013.07.16 17:18:08 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll [2013.07.16 17:18:08 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll [2013.07.16 17:18:08 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll [2013.07.16 17:18:08 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll [2013.07.16 17:18:07 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll [2013.07.16 17:18:04 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll [2013.07.16 17:18:04 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll [2013.07.16 17:18:04 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2013.07.16 17:18:03 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll [2013.07.16 17:18:00 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe [2013.07.16 17:18:00 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2013.07.16 17:17:59 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll [2013.07.16 17:17:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll [2013.07.16 17:17:59 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll [2013.07.16 17:17:59 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll [2013.07.16 17:17:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2013.07.16 17:17:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures [2013.07.16 17:17:50 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2013.07.16 17:17:31 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Games [2013.07.16 17:17:22 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2013.07.16 17:17:17 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools [2013.07.16 17:17:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2013.07.16 17:17:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music [2013.07.16 17:17:11 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2013.07.16 17:17:11 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services [2013.07.16 17:17:05 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2013.07.16 17:17:04 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe [2013.07.16 17:17:03 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll [2013.07.16 17:17:03 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll [2013.07.16 17:17:03 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll [2013.07.16 17:17:03 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll [2013.07.16 17:17:03 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll [2013.07.16 17:17:03 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe [2013.07.16 17:17:03 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe [2013.07.16 17:17:03 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll [2013.07.16 17:17:02 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll [2013.07.16 17:17:02 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll [2013.07.16 17:17:02 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll [2013.07.16 17:17:02 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll [2013.07.16 17:17:02 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe [2013.07.16 17:17:02 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe [2013.07.16 17:17:02 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll [2013.07.16 17:17:02 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll [2013.07.16 17:17:01 | 001,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll [2013.07.16 17:17:01 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll [2013.07.16 17:17:01 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll [2013.07.16 17:17:01 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll [2013.07.16 17:17:01 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll [2013.07.16 17:17:00 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe [2013.07.16 17:17:00 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll [2013.07.16 17:17:00 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe [2013.07.16 17:17:00 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe [2013.07.16 17:17:00 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2013.07.16 17:16:48 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe [2013.07.16 17:16:48 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe [2013.07.16 17:16:48 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll [2013.07.16 17:16:48 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll [2013.07.16 17:16:48 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2013.07.16 17:16:48 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll [2013.07.16 17:16:48 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll [2013.07.16 17:16:48 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll [2013.07.16 17:16:47 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll [2013.07.16 17:16:47 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll [2013.07.16 17:16:47 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe [2013.07.16 17:16:47 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe [2013.07.16 17:16:38 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll [2013.07.16 17:16:38 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll [2013.07.16 17:16:37 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe [2013.07.16 17:16:37 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe [2013.07.16 17:16:37 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe [2013.07.16 17:16:37 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe [2013.07.16 17:16:37 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe [2013.07.16 17:16:37 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe [2013.07.16 17:16:36 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe [2013.07.16 17:16:36 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe [2013.07.16 17:16:36 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe [2013.07.16 17:16:36 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe [2013.07.16 17:16:36 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe [2013.07.16 17:16:36 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe [2013.07.16 17:16:36 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe [2013.07.16 17:16:36 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe [2013.07.16 17:16:36 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe [2013.07.16 17:16:36 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe [2013.07.16 17:16:35 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe [2013.07.16 17:16:35 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe [2013.07.16 17:16:35 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe [2013.07.16 17:16:35 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe [2013.07.16 17:16:35 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe [2013.07.16 17:16:35 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe [2013.07.16 17:16:35 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe [2013.07.16 17:16:35 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe [2013.07.16 17:16:35 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe [2013.07.16 17:16:35 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe [2013.07.16 17:16:35 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe [2013.07.16 17:16:35 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe [2013.07.16 17:16:35 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe [2013.07.16 17:16:35 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe [2013.07.16 17:16:35 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll [2013.07.16 17:16:35 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll [2013.07.16 17:16:34 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe [2013.07.16 17:16:34 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe [2013.07.16 17:16:34 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe [2013.07.16 17:16:34 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe [2013.07.16 17:16:34 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll [2013.07.16 17:16:34 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll [2013.07.16 17:16:34 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe [2013.07.16 17:16:34 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe [2013.07.16 17:16:33 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll [2013.07.16 17:16:33 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll [2013.07.16 17:16:33 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb [2013.07.16 17:16:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe [2013.07.16 17:16:33 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll [2013.07.16 17:16:32 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll [2013.07.16 17:16:32 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll [2013.07.16 17:16:32 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll [2013.07.16 17:16:32 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll [2013.07.16 17:16:32 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll [2013.07.16 17:16:28 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll [2013.07.16 17:16:28 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll [2013.07.16 17:16:28 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll [2013.07.16 17:16:27 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll [2013.07.16 17:16:27 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb [2013.07.16 17:16:27 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll [2013.07.16 17:16:27 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb [2013.07.16 17:16:27 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe [2013.07.16 17:16:27 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll [2013.07.16 17:16:27 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe [2013.07.16 17:16:27 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll [2013.07.16 17:16:26 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll [2013.07.16 17:16:26 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll [2013.07.16 17:16:26 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll [2013.07.16 17:16:26 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll [2013.07.16 17:16:26 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll [2013.07.16 17:16:17 | 000,000,000 | ---D | C] -- C:\Program Files\MSN [2013.07.16 17:16:16 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe [2013.07.16 17:16:16 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl [2013.07.16 17:16:15 | 000,347,136 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll [2013.07.16 17:16:15 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe [2013.07.16 17:16:15 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe [2013.07.16 17:16:15 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe [2013.07.16 17:16:14 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe [2013.07.16 17:16:14 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2013.07.16 17:16:14 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe [2013.07.16 17:16:14 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2013.07.16 17:16:13 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll [2013.07.16 17:16:12 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll [2013.07.16 17:16:12 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe [2013.07.16 17:16:12 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll [2013.07.16 17:16:12 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe [2013.07.16 17:16:12 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe [2013.07.16 17:16:12 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe [2013.07.16 17:16:12 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe [2013.07.16 17:16:11 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll [2013.07.16 17:16:11 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe [2013.07.16 17:16:11 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll [2013.07.16 17:16:11 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll [2013.07.16 17:16:11 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe [2013.07.16 17:16:10 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2013.07.16 17:16:10 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2013.07.16 17:16:10 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2013.07.16 17:16:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2013.07.16 17:16:09 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2013.07.16 17:16:09 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll [2013.07.16 17:16:08 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll [2013.07.16 17:16:08 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll [2013.07.16 17:16:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2013.07.16 17:16:07 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll [2013.07.16 17:16:00 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll [2013.07.16 17:16:00 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll [2013.07.16 17:15:59 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll [2013.07.16 17:15:59 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll Quote
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 part3 ....... [2013.07.16 17:15:55 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos [2013.07.16 17:15:38 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013.07.21 18:57:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2013.07.21 18:21:00 | 000,000,940 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2013.07.21 12:00:00 | 000,000,950 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Antivirus Scheduled Scan.job [2013.07.21 03:19:06 | 000,492,584 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2013.07.21 03:19:06 | 000,091,900 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2013.07.21 03:18:12 | 000,000,306 | ---- | M] () -- C:\WINDOWS\tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1993962763-1450960922-725345543-1003.job [2013.07.21 03:18:11 | 000,001,615 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Ad-Aware Antivirus.lnk [2013.07.21 03:18:06 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013.07.21 03:17:32 | 000,000,936 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2013.07.21 03:17:32 | 000,000,278 | ---- | M] () -- C:\WINDOWS\tasks\powersuite_monitor.job [2013.07.21 03:17:31 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1993962763-1450960922-725345543-1003.job [2013.07.21 03:17:29 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013.07.21 03:01:16 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2013.07.20 23:58:27 | 000,001,503 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Izbor preglednika.lnk [2013.07.20 23:58:22 | 000,206,512 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013.07.20 22:09:46 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2013.07.20 20:51:07 | 000,000,000 | ---- | M] () -- C:\Program Files\moz_update_in_progress.lock [2013.07.19 13:25:36 | 000,000,292 | ---- | M] () -- C:\WINDOWS\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1993962763-1450960922-725345543-1003.job [2013.07.19 09:36:13 | 072,709,304 | ---- | M] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 07:05:17 | 019,625,984 | ---- | M] () -- C:\Documents and Settings\Korisnik\My Documents\bcwipecd.iso [2013.07.18 22:51:03 | 017,337,963 | ---- | M] () -- C:\Documents and Settings\Korisnik\Desktop\drivers.rar [2013.07.17 23:39:06 | 000,000,314 | ---- | M] () -- C:\WINDOWS\tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1993962763-1450960922-725345543-1003.job [2013.07.17 23:31:55 | 000,000,332 | ---- | M] () -- C:\WINDOWS\tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1993962763-1450960922-725345543-1003.job [2013.07.17 23:06:39 | 000,001,037 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Graphing Calculator Viewer.lnk [2013.07.17 23:00:20 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.17 23:00:20 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.17 22:08:22 | 000,000,026 | ---- | M] () -- C:\WINDOWS\Zone.Identifier [2013.07.17 16:55:05 | 000,001,663 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\FileZilla Client.lnk [2013.07.17 16:36:15 | 000,001,614 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CDBurnerXP.lnk [2013.07.17 16:15:44 | 000,000,492 | ---- | M] () -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk [2013.07.17 05:43:53 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Korisnik\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2013.07.17 05:41:16 | 000,000,000 | ---- | M] () -- C:\WINDOWS\EEventManager.INI [2013.07.17 04:02:17 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Korisnik\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2013.07.17 04:02:16 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk [2013.07.17 01:56:25 | 000,000,929 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\RealPlayer.lnk [2013.07.17 01:55:19 | 000,201,872 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:00 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:10:08 | 000,002,647 | ---- | M] () -- C:\Documents and Settings\Korisnik\Desktop\ScreenHunter 6.0 Pro.lnk [2013.07.17 00:15:03 | 000,000,796 | ---- | M] () -- C:\Documents and Settings\Korisnik\Desktop\BS.Player PRO.lnk [2013.07.17 00:08:48 | 000,001,937 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Parallels Workstation.lnk [2013.07.16 23:56:01 | 000,013,560 | ---- | M] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:46:07 | 000,001,501 | ---- | M] () -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk [2013.07.16 22:40:12 | 000,001,947 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\SMART Notebook 10.lnk [2013.07.16 22:40:11 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2013.07.16 22:29:07 | 000,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Epson Easy Photo Print.lnk [2013.07.16 22:22:24 | 000,001,913 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Epson Stylus SX210_SX410_TX210_TX410 Priručnik.lnk [2013.07.16 22:21:27 | 000,000,665 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\EPSON Scan.lnk [2013.07.16 22:14:36 | 000,000,859 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Caricature Studio 3.6.lnk [2013.07.16 22:04:58 | 000,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat [2013.07.16 22:04:38 | 000,000,394 | ---- | M] () -- C:\WINDOWS\ODBC.INI [2013.07.16 22:02:12 | 000,263,592 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:12 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:12 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:12 | 000,144,896 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:12 | 000,094,632 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:11 | 000,867,240 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:11 | 000,789,416 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 21:52:04 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\PowerISO.lnk [2013.07.16 21:32:25 | 000,002,352 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nero StartSmart.lnk [2013.07.16 21:32:25 | 000,002,254 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Nero Home.lnk [2013.07.16 21:30:46 | 000,001,024 | ---- | M] () -- C:\Documents and Settings\Korisnik\.rnd [2013.07.16 21:10:03 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk [2013.07.16 20:57:28 | 000,001,831 | ---- | M] () -- C:\Documents and Settings\Korisnik\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2013.07.16 20:24:20 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk [2013.07.16 19:46:19 | 000,250,048 | RHS- | M] () -- C:\ntldr [2013.07.16 19:28:21 | 000,001,619 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk [2013.07.16 19:28:21 | 000,001,601 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\REALTEK USB Wireless LAN Utility.lnk [2013.07.16 19:25:03 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Korisnik\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf [2013.07.16 17:23:48 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2013.07.16 17:23:01 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2013.07.16 17:20:52 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2013.07.16 17:20:52 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2013.07.16 17:20:52 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2013.07.16 17:20:39 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2013.07.16 17:20:39 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2013.07.16 17:20:30 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2013.07.16 17:17:30 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2013.07.16 17:15:13 | 000,000,211 | -HS- | M] () -- C:\boot.ini [4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.07.20 20:51:07 | 000,000,000 | ---- | C] () -- C:\Program Files\moz_update_in_progress.lock [2013.07.20 18:09:18 | 000,000,278 | ---- | C] () -- C:\WINDOWS\tasks\powersuite_monitor.job [2013.07.19 07:05:17 | 019,625,984 | ---- | C] () -- C:\Documents and Settings\Korisnik\My Documents\bcwipecd.iso [2013.07.18 22:51:15 | 017,337,963 | ---- | C] () -- C:\Documents and Settings\Korisnik\Desktop\drivers.rar [2013.07.17 23:32:05 | 000,000,306 | ---- | C] () -- C:\WINDOWS\tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1993962763-1450960922-725345543-1003.job [2013.07.17 23:32:04 | 000,000,314 | ---- | C] () -- C:\WINDOWS\tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1993962763-1450960922-725345543-1003.job [2013.07.17 23:31:55 | 000,000,332 | ---- | C] () -- C:\WINDOWS\tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1993962763-1450960922-725345543-1003.job [2013.07.17 23:06:39 | 000,001,037 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Graphing Calculator Viewer.lnk [2013.07.17 22:07:45 | 000,000,026 | ---- | C] () -- C:\WINDOWS\Zone.Identifier [2013.07.17 16:55:05 | 000,001,663 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\FileZilla Client.lnk [2013.07.17 16:36:15 | 000,001,614 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CDBurnerXP.lnk [2013.07.17 16:36:15 | 000,001,556 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\CDBurnerXP.lnk [2013.07.17 16:36:13 | 000,005,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2013.07.17 16:15:44 | 000,000,492 | ---- | C] () -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk [2013.07.17 16:15:05 | 000,001,501 | ---- | C] () -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk [2013.07.17 16:07:08 | 000,001,503 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Izbor preglednika.lnk [2013.07.17 05:41:16 | 000,000,000 | ---- | C] () -- C:\WINDOWS\EEventManager.INI [2013.07.17 03:31:56 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1993962763-1450960922-725345543-1003.job [2013.07.17 01:57:53 | 000,000,292 | ---- | C] () -- C:\WINDOWS\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1993962763-1450960922-725345543-1003.job [2013.07.17 01:56:25 | 000,000,929 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\RealPlayer.lnk [2013.07.17 01:10:52 | 000,000,950 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Antivirus Scheduled Scan.job [2013.07.17 01:09:04 | 000,002,647 | ---- | C] () -- C:\Documents and Settings\Korisnik\Desktop\ScreenHunter 6.0 Pro.lnk [2013.07.17 00:15:03 | 000,000,796 | ---- | C] () -- C:\Documents and Settings\Korisnik\Desktop\BS.Player PRO.lnk [2013.07.17 00:08:48 | 000,001,937 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Parallels Workstation.lnk [2013.07.17 00:01:46 | 000,001,615 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Ad-Aware Antivirus.lnk [2013.07.16 23:52:45 | 000,148,992 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mpg2splt.ax [2013.07.16 23:52:39 | 000,562,688 | ---- | C] () -- C:\WINDOWS\System32\dllcache\qedit.dll [2013.07.16 23:52:15 | 001,292,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\quartz.dll [2013.07.16 23:51:43 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\encdec.dll [2013.07.16 23:45:33 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2013.07.16 23:45:33 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll [2013.07.16 23:41:00 | 004,894,430 | ---- | C] () -- C:\Documents and Settings\Korisnik\My Documents\Tutorial for SMART Notebook 10.8.notebook [2013.07.16 23:31:03 | 001,481,884 | ---- | C] () -- C:\WINDOWS\System32\igkrng400.bin [2013.07.16 23:31:03 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v5016.dll [2013.07.16 23:31:03 | 000,029,504 | ---- | C] () -- C:\WINDOWS\System32\igxpxs32.vp [2013.07.16 23:31:03 | 000,002,096 | ---- | C] () -- C:\WINDOWS\System32\igxpxk32.vp [2013.07.16 22:40:12 | 000,001,947 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\SMART Notebook 10.lnk [2013.07.16 22:29:07 | 000,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Epson Easy Photo Print.lnk [2013.07.16 22:22:51 | 000,111,932 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat [2013.07.16 22:22:51 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat [2013.07.16 22:22:51 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat [2013.07.16 22:22:51 | 000,026,154 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat [2013.07.16 22:22:51 | 000,024,903 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat [2013.07.16 22:22:51 | 000,021,390 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat [2013.07.16 22:22:51 | 000,020,148 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat [2013.07.16 22:22:51 | 000,013,732 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_EN.cfg [2013.07.16 22:22:51 | 000,011,811 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat [2013.07.16 22:22:51 | 000,006,442 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_IT.cfg [2013.07.16 22:22:51 | 000,006,347 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_PT.cfg [2013.07.16 22:22:51 | 000,006,347 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_BP.cfg [2013.07.16 22:22:51 | 000,006,335 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_GE.cfg [2013.07.16 22:22:51 | 000,006,195 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_FR.cfg [2013.07.16 22:22:51 | 000,006,195 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_CF.cfg [2013.07.16 22:22:51 | 000,006,122 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_DU.cfg [2013.07.16 22:22:51 | 000,006,103 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_ES.cfg [2013.07.16 22:22:51 | 000,005,817 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_KO.cfg [2013.07.16 22:22:51 | 000,005,436 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_SC.cfg [2013.07.16 22:22:51 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat [2013.07.16 22:22:51 | 000,002,889 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_RU.cfg [2013.07.16 22:22:51 | 000,002,426 | ---- | C] () -- C:\WINDOWS\System32\EPPICLocal_TC.cfg [2013.07.16 22:22:51 | 000,001,146 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_DU.dat [2013.07.16 22:22:51 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat [2013.07.16 22:22:51 | 000,001,139 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat [2013.07.16 22:22:51 | 000,001,136 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat [2013.07.16 22:22:51 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat [2013.07.16 22:22:51 | 000,001,129 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat [2013.07.16 22:22:51 | 000,001,120 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_IT.dat [2013.07.16 22:22:51 | 000,001,107 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_GE.dat [2013.07.16 22:22:51 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat [2013.07.16 22:22:51 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini [2013.07.16 22:22:24 | 000,001,913 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Epson Stylus SX210_SX410_TX210_TX410 Priručnik.lnk [2013.07.16 22:21:27 | 000,000,665 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\EPSON Scan.lnk [2013.07.16 22:14:36 | 000,000,859 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Caricature Studio 3.6.lnk [2013.07.16 22:04:58 | 000,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat [2013.07.16 22:04:38 | 000,000,394 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2013.07.16 21:52:04 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\PowerISO.lnk [2013.07.16 21:32:25 | 000,002,352 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nero StartSmart.lnk [2013.07.16 21:32:25 | 000,002,254 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Nero Home.lnk [2013.07.16 21:30:44 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\Korisnik\.rnd [2013.07.16 21:10:03 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk [2013.07.16 21:10:03 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk [2013.07.16 21:07:45 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2013.07.16 20:49:50 | 000,025,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT [2013.07.16 20:29:16 | 000,000,830 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2013.07.16 20:24:20 | 000,001,831 | ---- | C] () -- C:\Documents and Settings\Korisnik\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2013.07.16 20:24:20 | 000,001,813 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk [2013.07.16 20:16:58 | 000,000,940 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2013.07.16 20:16:57 | 000,000,936 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2013.07.16 19:56:38 | 000,004,286 | ---- | C] () -- C:\Documents and Settings\Korisnik\Desktop\Project2a1w.cur [2013.07.16 19:55:32 | 000,004,286 | ---- | C] () -- C:\Documents and Settings\Korisnik\Desktop\Project18abc2q.cur [2013.07.16 19:55:24 | 000,004,286 | ---- | C] () -- C:\Documents and Settings\Korisnik\Desktop\Project12cur1c1+.cur [2013.07.16 19:49:16 | 000,613,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm [2013.07.16 19:49:16 | 000,067,374 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm [2013.07.16 19:49:16 | 000,023,195 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm [2013.07.16 19:49:16 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta [2013.07.16 19:49:16 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css [2013.07.16 19:49:16 | 000,000,855 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf [2013.07.16 19:49:16 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js [2013.07.16 19:49:15 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv [2013.07.16 19:49:15 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav [2013.07.16 19:49:15 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav [2013.07.16 19:49:15 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav [2013.07.16 19:49:15 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv [2013.07.16 19:49:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav [2013.07.16 19:49:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav [2013.07.16 19:49:15 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav [2013.07.16 19:49:15 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav [2013.07.16 19:49:15 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav [2013.07.16 19:49:15 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav [2013.07.16 19:49:15 | 000,029,070 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf [2013.07.16 19:49:15 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif [2013.07.16 19:49:15 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif [2013.07.16 19:49:15 | 000,017,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf [2013.07.16 19:49:15 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif [2013.07.16 19:49:15 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif [2013.07.16 19:49:15 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif [2013.07.16 19:49:15 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif [2013.07.16 19:49:15 | 000,006,769 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf [2013.07.16 19:49:15 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif [2013.07.16 19:49:15 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif [2013.07.16 19:49:15 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif [2013.07.16 19:49:15 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif [2013.07.16 19:49:15 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif [2013.07.16 19:49:15 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js [2013.07.16 19:49:15 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif [2013.07.16 19:49:15 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif [2013.07.16 19:49:15 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif [2013.07.16 19:49:15 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif [2013.07.16 19:49:15 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif [2013.07.16 19:49:15 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif [2013.07.16 19:49:15 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif [2013.07.16 19:49:15 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif [2013.07.16 19:49:15 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif [2013.07.16 19:49:15 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm [2013.07.16 19:49:15 | 000,000,908 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf [2013.07.16 19:49:14 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv [2013.07.16 19:49:14 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv [2013.07.16 19:49:14 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv [2013.07.16 19:49:14 | 000,184,959 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz [2013.07.16 19:49:14 | 000,077,307 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm [2013.07.16 19:49:14 | 000,066,725 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz [2013.07.16 19:49:14 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip [2013.07.16 19:49:14 | 000,018,286 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf [2013.07.16 19:49:14 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css [2013.07.16 19:49:14 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm [2013.07.16 19:49:14 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js [2013.07.16 19:49:14 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js [2013.07.16 19:49:14 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif [2013.07.16 19:49:14 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif [2013.07.16 19:49:14 | 000,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl [2013.07.16 19:49:14 | 000,001,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl [2013.07.16 19:49:14 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl [2013.07.16 19:49:14 | 000,001,451 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl [2013.07.16 19:49:14 | 000,001,448 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl [2013.07.16 19:49:14 | 000,001,250 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl [2013.07.16 19:49:14 | 000,001,049 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl [2013.07.16 19:49:14 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl [2013.07.16 19:49:14 | 000,001,036 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl [2013.07.16 19:49:14 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif [2013.07.16 19:49:14 | 000,000,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl [2013.07.16 19:49:14 | 000,000,787 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl [2013.07.16 19:49:14 | 000,000,784 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl [2013.07.16 19:49:14 | 000,000,783 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl [2013.07.16 19:49:14 | 000,000,775 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl [2013.07.16 19:49:14 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif [2013.07.16 19:49:14 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif [2013.07.16 19:49:14 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif [2013.07.16 19:49:14 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif [2013.07.16 19:49:14 | 000,000,733 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl [2013.07.16 19:49:14 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif [2013.07.16 19:49:14 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip [2013.07.16 19:46:30 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty [2013.07.16 19:46:30 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod [2013.07.16 19:46:29 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img [2013.07.16 19:28:21 | 000,001,619 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk [2013.07.16 19:28:21 | 000,001,601 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\REALTEK USB Wireless LAN Utility.lnk [2013.07.16 19:26:38 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Korisnik\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk [2013.07.16 19:26:38 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk [2013.07.16 19:26:37 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk [2013.07.16 19:25:03 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Korisnik\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf [2013.07.16 19:24:57 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Outlook Express.lnk [2013.07.16 19:24:55 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Korisnik\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2013.07.16 19:24:55 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Internet Explorer.lnk [2013.07.16 19:24:49 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Remote Assistance.lnk [2013.07.16 19:24:49 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Windows Media Player.lnk [2013.07.16 19:09:37 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2013.07.16 19:09:34 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2013.07.16 19:09:32 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2013.07.16 19:09:32 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2013.07.16 19:09:31 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2013.07.16 19:09:31 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2013.07.16 19:09:10 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2013.07.16 19:09:02 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2013.07.16 19:09:02 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2013.07.16 19:09:02 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2013.07.16 19:09:01 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2013.07.16 19:09:01 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2013.07.16 19:09:01 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2013.07.16 19:09:01 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2013.07.16 19:09:01 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2013.07.16 19:08:22 | 000,206,512 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013.07.16 19:07:29 | 000,000,211 | -HS- | C] () -- C:\boot.ini [2013.07.16 19:07:26 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2013.07.16 17:23:48 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2013.07.16 17:23:01 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2013.07.16 17:22:26 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2013.07.16 17:22:10 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2013.07.16 17:22:04 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2013.07.16 17:22:03 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2013.07.16 17:22:01 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2013.07.16 17:21:53 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2013.07.16 17:21:48 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2013.07.16 17:21:34 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2013.07.16 17:20:52 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2013.07.16 17:20:52 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2013.07.16 17:20:52 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2013.07.16 17:20:52 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2013.07.16 17:20:52 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2013.07.16 17:20:39 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2013.07.16 17:20:39 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2013.07.16 17:20:38 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2013.07.16 17:19:37 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk [2013.07.16 17:19:26 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2013.07.16 17:18:49 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2013.07.16 17:18:49 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2013.07.16 17:18:41 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2013.07.16 17:17:31 | 000,000,609 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk [2013.07.16 17:17:30 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2013.07.16 17:17:11 | 000,001,986 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\MSN.lnk [2013.07.16 17:16:40 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp [2013.07.16 17:16:40 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp [2013.07.16 17:16:40 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp [2013.07.16 17:16:40 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp [2013.07.16 17:16:40 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp [2013.07.16 17:16:40 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp [2013.07.16 17:16:40 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp [2013.07.16 17:16:39 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp [2013.07.16 17:16:39 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp [2013.07.16 17:16:39 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp [2013.07.16 17:16:39 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp [2013.07.16 17:16:36 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2013.07.16 17:16:35 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2013.07.16 17:16:34 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2013.07.16 17:16:25 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc ========== ZeroAccess Check ========== [2013.07.16 21:01:56 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2008.04.14 05:42:06 | 001,499,136 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009.02.09 14:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008.04.14 05:42:10 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both ========== LOP Check ========== [2013.07.17 00:28:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:01:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 16:36:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.20 22:47:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.17 02:02:44 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 00:07:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 22:22:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.21 03:17:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 05:45:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.19 01:24:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.16 22:49:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.17 02:07:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.16 22:29:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.17 02:02:44 | 000,000,000 | -HSD | M] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 05:41:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.17 00:01:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.20 22:47:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 00:35:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 16:36:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.16 22:14:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.19 09:58:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.20 22:48:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.18 00:42:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.17 17:07:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 01:57:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 00:09:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.16 23:37:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 22:40:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:04:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.17 02:05:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.20 18:08:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue ========== Purity Check ========== ========== Custom Scans ========== ========== Drive Information ========== Physical Drives --------------- Drive: \\\\.\\PHYSICALDRIVE0 - Fixed\thard disk media Interface type: IDE Media Type: Fixed\thard disk media Model: WDC WD2500JS-60MHB5 Partitions: 2 Status: OK Status Info: 0 Drive: \\\\.\\PHYSICALDRIVE1 - Interface type: USB Media Type: Model: Generic- Compact Flash USB Device Partitions: 0 Status: OK Status Info: 0 Drive: \\\\.\\PHYSICALDRIVE2 - Interface type: USB Media Type: Model: Generic- SM/xD-Picture USB Device Partitions: 0 Status: OK Status Info: 0 Drive: \\\\.\\PHYSICALDRIVE3 - Interface type: USB Media Type: Model: Generic- SD/MMC USB Device Partitions: 0 Status: OK Status Info: 0 Drive: \\\\.\\PHYSICALDRIVE4 - Interface type: USB Media Type: Model: Generic- MS/MS-Pro USB Device Partitions: 0 Status: OK Status Info: 0 Drive: \\\\.\\PHYSICALDRIVE5 - Interface type: USB Media Type: Model: EPSON Stylus Storage USB Device Partitions: 0 Status: OK Status Info: 0 Partitions --------------- DeviceID: Disk #0, Partition #0 PartitionType: Installable File System Bootable: True BootPartition: True PrimaryPartition: True Size: 149,00GB Starting Offset: 32256 Hidden sectors: 0 DeviceID: Disk #0, Partition #1 PartitionType: Extended w/Extended Int 13 Bootable: False BootPartition: False PrimaryPartition: False Size: 84,00GB Starting Offset: 160031047680 Hidden sectors: 0 < %SYSTEMDRIVE%\*.* > [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2013.07.16 17:15:13 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2013.07.16 17:20:52 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2013.07.16 17:20:52 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2004.08.04 14:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2013.07.16 19:46:19 | 000,250,048 | RHS- | M] () -- C:\ntldr [2013.07.21 03:17:25 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys < %systemroot%\system32\Spool\prtprocs\w32x86\*.dll > [2007.03.14 04:06:40 | 000,019,968 | ---- | M] (Black Ice Software) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\BuEProNT.dll [2007.03.22 20:24:58 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll [2003.06.19 00:31:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\Spool\prtprocs\w32x86\mdippr.dll < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > [1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] < %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\system32\drivers\*.sys /lockedfiles > < %systemroot%\system32\*.exe /lockedfiles > [1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ] < %systemroot%\System32\config\*.sav > [2013.07.16 19:07:29 | 000,094,208 | ---- | M] () -- C:\WINDOWS\System32\config\default.sav [2013.07.16 19:07:29 | 000,659,456 | ---- | M] () -- C:\WINDOWS\System32\config\software.sav [2013.07.16 19:07:29 | 000,905,216 | ---- | M] () -- C:\WINDOWS\System32\config\system.sav < %PROGRAMFILES%\* > [2013.07.20 20:51:07 | 000,000,000 | ---- | M] () -- C:\Program Files\moz_update_in_progress.lock < %USERPROFILE%\..|smtmp;true;true;true /FP > < HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Win dows\WindowsUpdate\AU > < hklm\software\clients\startmenuinternet|command /rs > HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2013.05.12 00:27:13 | 000,865,968 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2013.05.12 00:27:13 | 000,865,968 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2013.05.12 00:27:13 | 000,865,968 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2013.05.12 00:26:08 | 000,920,472 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2013.05.12 00:26:08 | 000,920,472 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2013.05.12 00:26:08 | 000,920,472 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --make-default-browser [2013.07.12 20:49:47 | 000,846,288 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --hide-icons [2013.07.12 20:49:47 | 000,846,288 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --show-icons [2013.07.12 20:49:47 | 000,846,288 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Program Files\Google\Chrome\Application\chrome.exe" [2013.07.12 20:49:47 | 000,846,288 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2013.06.07 20:26:09 | 000,174,592 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2013.06.07 20:26:09 | 000,174,592 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2013.06.07 20:26:09 | 000,174,592 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009.03.08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009.03.08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) < hklm\software\clients\startmenuinternet|command /64 /rs > HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2013.05.12 00:27:13 | 000,865,968 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2013.05.12 00:27:13 | 000,865,968 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2013.05.12 00:27:13 | 000,865,968 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2013.05.12 00:26:08 | 000,920,472 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2013.05.12 00:26:08 | 000,920,472 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2013.05.12 00:26:08 | 000,920,472 | ---- | M] (Mozilla Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --make-default-browser [2013.07.12 20:49:47 | 000,846,288 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --hide-icons [2013.07.12 20:49:47 | 000,846,288 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --show-icons [2013.07.12 20:49:47 | 000,846,288 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Program Files\Google\Chrome\Application\chrome.exe" [2013.07.12 20:49:47 | 000,846,288 | ---- | M] (Google Inc.) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2013.06.07 20:26:09 | 000,174,592 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2013.06.07 20:26:09 | 000,174,592 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2013.06.07 20:26:09 | 000,174,592 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2009.03.08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2009.03.08 14:09:26 | 000,638,816 | ---- | M] (Microsoft Corporation) < End of report > ===================== Extras.Txt OTL Extras logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Authorize dApplications\List] "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "C:\Program Files\Parallels\Parallels Workstation\Application\Parallels Transporter.exe" = C:\Program Files\Parallels\Parallels Workstation\Application\Parallels Transporter.exe:*:Enabled:Parallels Transporter -- (Parallels Holdings, Ltd. and its affiliates.) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Authori zedApplications\List] "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "C:\Program Files\SMART Technologies\Education Software\UCGui.exe" = C:\Program Files\SMART Technologies\Education Software\UCGui.exe:*:Enabled:SMART Universal Controller Interface -- (SMART Technologies ULC) "C:\Program Files\SMART Technologies\Education Software\SMARTSNMPAgent.exe" = C:\Program Files\SMART Technologies\Education Software\SMARTSNMPAgent.exe:*:Enabled:SMART SNMPAgent -- (SMART Technologies ULC) "C:\Program Files\SMART Technologies\Education Software\UCService.exe" = C:\Program Files\SMART Technologies\Education Software\UCService.exe:*:Enabled:SMART Display Controller Service -- (SMART Technologies ULC) "C:\Program Files\SMART Technologies\Education Software\VantageService.exe" = C:\Program Files\SMART Technologies\Education Software\VantageService.exe:*:Enabled:SMART Vantage Service -- (SMART Technologies ULC) "C:\Program Files\Parallels\Parallels Workstation\Application\prl_client_app.exe" = C:\Program Files\Parallels\Parallels Workstation\Application\prl_client_app.exe:*:Enabled:Parallels Desktop -- (Parallels Holdings, Ltd. and its affiliates.) "C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe" = C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe:*:Enabled:Parallels Virtualization Service -- (Parallels Holdings, Ltd. and its affiliates.) "C:\Program Files\Parallels\Parallels Workstation\Application\Parallels Transporter.exe" = C:\Program Files\Parallels\Parallels Workstation\Application\Parallels Transporter.exe:*:Enabled:Parallels Transporter -- (Parallels Holdings, Ltd. and its affiliates.) "C:\Documents and Settings\Korisnik\Application Data\BitTorrent\BitTorrent.exe" = C:\Documents and Settings\Korisnik\Application Data\BitTorrent\BitTorrent.exe:*:Disabled:BitTorrent -- (BitTorrent Inc.) "C:\Documents and Settings\Korisnik\My Documents\Preuzimanja\BitTorrent.exe" = C:\Documents and Settings\Korisnik\My Documents\Preuzimanja\BitTorrent.exe:*:Enabled:BitTorrent -- (BitTorrent Inc.) ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0E5DD7A3-BE29-430C-970B-C553F4A58C39}" = SMART Common Platform "{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25 "{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1 "{2BA00471-0328-3743-93BD-FA813353A783}" = Microsoft .NET Framework 3.0 Service Pack 1 "{2E8C03EC-E09F-4868-A4AC-02B9285D3E09}" = Document Express DjVu Plug-in "{2FC099BD-AC9B-33EB-809C-D332E1B27C40}" = Microsoft .NET Framework 3.5 "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{362A43F1-D2C1-4C89-98B7-B9BD894D160D}" = Parallels runtime modules "{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup "{3DC873BB-FFE3-46BF-9701-26B9AE371F9F}" = RealDownloader "{48F22622-1CC2-4A83-9C1E-644DD96F832D}" = Epson Event Manager "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{67E6410C-1E97-4D03-BEC2-8E83323A6BBD}" = SMART Product Drivers "{72C462E7-BAD8-4E08-9D31-AE66FB1DB459}" = Wisdom-soft ScreenHunter 6.0.851 Pro "{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page "{8722B4A9-CE59-4BA5-9D45-8E6C6789B940}" = Graphing Calculator Viewer "{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}" = Epson Easy Photo Print 2 "{9011041A-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{944167EA-7F89-4705-8DCD-1D63B53141B0}" = Ad-Aware Antivirus "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}" = RealNetworks - Microsoft Visual C++ 2010 Runtime "{AC5019DA-5DC2-44E6-808A-1A68F3CCA79D}" = Caricature Studio Green 3.6 "{AC76BA86-7AD7-1050-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Croatian "{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint "{B658C40F-7401-42CF-A2A4-FD9BFEC33E9D}" = Parallels Workstation "{BE282C23-5484-47FF-B2C1-EBEA5C893711}" = Nero 8 "{BE686891-3C56-4714-AFEF-341A7867BA80}" = REALTEK USB Wireless LAN Driver and Utility "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}" = System Requirements Lab for Intel "{E6D7E1A8-3DF6-4EAD-B382-C2BA8CD41EEB}" = Paket hrvatskog sučelja za Windows "{ED0FF410-41B9-441F-B457-4AC81782E8BF}" = SMART Notebook "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "Ad-Aware Browsing Protection" = Ad-Aware Browsing Protection "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 12.0 "BSPlayerp" = BS.Player PRO "EPSON Scanner" = EPSON Scan "Epson Stylus SX210_SX410_TX210_TX410 Korisnički vodič" = Epson Stylus SX210_SX410_TX210_TX410 Priručnik "EPSON SX210 Series" = EPSON SX210 Series Printer Uninstall "FileZilla Client" = FileZilla Client 3.7.1.1 "Google Chrome" = Google Chrome "HDMI" = Intel® Graphics Media Accelerator Driver "ie8" = Windows Internet Explorer 8 "Microsoft .NET Framework 3.5" = Microsoft .NET Framework 3.5 "Mozilla Firefox 21.0 (x86 en-US)" = Mozilla Firefox 21.0 (x86 en-US) "MozillaMaintenanceService" = Mozilla Maintenance Service "Parallels Workstation" = Parallels Workstation "PowerISO" = PowerISO "RealPlayer 16.0" = RealPlayer "Windows Media Format Runtime" = Windows Media Format Runtime "Windows XP Service Pack" = Windows XP Service Pack 3 "WinRAR archiver" = WinRAR 4.01 (32-bit) "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "BitTorrent" = BitTorrent ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 18.7.2013 21:12:21 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3011 Description = Unloading the performance counter strings for service aspnet_state (ASP.NET State Service) failed. The Error code is the first DWORD in Data section. Error - 18.7.2013 21:12:22 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3001 Description = The performance counter name string value in the registry is incorrectly formatted. The bogus string is 9050, the bogus index value is the first DWORD in Data section while the last valid index values are the second and third DWORD in Data section. Error - 19.7.2013 6:50:00 | Computer Name = NONE-BB75D357C4 | Source = crypt32 | ID = 131077 Description = Failed auto update retrieval of third-party root certificate from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/503006091D97D4F5AE39F7CBE7927D7D652D3 431.crt> with error: This operation returned because the timeout period expired. Error - 20.7.2013 2:28:12 | Computer Name = NONE-BB75D357C4 | Source = Application Hang | ID = 1002 Description = Hanging application prl_client_app.exe, version 6.0.13852.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Error - 20.7.2013 16:45:20 | Computer Name = NONE-BB75D357C4 | Source = Application Hang | ID = 1002 Description = Hanging application rstrui.exe, version 5.1.2600.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Error - 20.7.2013 17:01:28 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3001 Description = The performance counter name string value in the registry is incorrectly formatted. The bogus string is 9050, the bogus index value is the first DWORD in Data section while the last valid index values are the second and third DWORD in Data section. Error - 20.7.2013 17:01:28 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3011 Description = Unloading the performance counter strings for service ASP.NET_2.0.50727 (ASP.NET_2.0.50727) failed. The Error code is the first DWORD in Data section. Error - 20.7.2013 17:01:30 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3001 Description = The performance counter name string value in the registry is incorrectly formatted. The bogus string is 9050, the bogus index value is the first DWORD in Data section while the last valid index values are the second and third DWORD in Data section. Error - 20.7.2013 17:01:30 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3011 Description = Unloading the performance counter strings for service aspnet_state (ASP.NET State Service) failed. The Error code is the first DWORD in Data section. Error - 20.7.2013 17:01:31 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3001 Description = The performance counter name string value in the registry is incorrectly formatted. The bogus string is 9050, the bogus index value is the first DWORD in Data section while the last valid index values are the second and third DWORD in Data section. [ System Events ] Error - 16.7.2013 17:41:52 | Computer Name = NONE-BB75D357C4 | Source = ialm | ID = 262252 Description = The driver igxprd32 for the display device \Device\Video3 got stuck in an infinite loop. This usually indicates a problem with the device itself or with the device driver programming the hardware incorrectly. Please check with your hardware device vendor for any driver updates. Error - 16.7.2013 17:44:03 | Computer Name = NONE-BB75D357C4 | Source = System Error | ID = 1003 Description = Error code 000000ea, parameter1 88dd6938, parameter2 891c9148, parameter3 88f3a420, parameter4 00000001. Error - 16.7.2013 20:28:53 | Computer Name = NONE-BB75D357C4 | Source = Service Control Manager | ID = 7000 Description = The TuneUp Theme Extension service failed to start due to the following error: %%1083 < End of report > ============== Quote
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 Extras.Txt OTL Extras logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- Reg Error: Key error. File not found ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "C:\Program Files\Parallels\Parallels Workstation\Application\Parallels Transporter.exe" = C:\Program Files\Parallels\Parallels Workstation\Application\Parallels Transporter.exe:*:Enabled:Parallels Transporter -- (Parallels Holdings, Ltd. and its affiliates.) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "C:\Program Files\SMART Technologies\Education Software\UCGui.exe" = C:\Program Files\SMART Technologies\Education Software\UCGui.exe:*:Enabled:SMART Universal Controller Interface -- (SMART Technologies ULC) "C:\Program Files\SMART Technologies\Education Software\SMARTSNMPAgent.exe" = C:\Program Files\SMART Technologies\Education Software\SMARTSNMPAgent.exe:*:Enabled:SMART SNMPAgent -- (SMART Technologies ULC) "C:\Program Files\SMART Technologies\Education Software\UCService.exe" = C:\Program Files\SMART Technologies\Education Software\UCService.exe:*:Enabled:SMART Display Controller Service -- (SMART Technologies ULC) "C:\Program Files\SMART Technologies\Education Software\VantageService.exe" = C:\Program Files\SMART Technologies\Education Software\VantageService.exe:*:Enabled:SMART Vantage Service -- (SMART Technologies ULC) "C:\Program Files\Parallels\Parallels Workstation\Application\prl_client_app.exe" = C:\Program Files\Parallels\Parallels Workstation\Application\prl_client_app.exe:*:Enabled:Parallels Desktop -- (Parallels Holdings, Ltd. and its affiliates.) "C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe" = C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe:*:Enabled:Parallels Virtualization Service -- (Parallels Holdings, Ltd. and its affiliates.) "C:\Program Files\Parallels\Parallels Workstation\Application\Parallels Transporter.exe" = C:\Program Files\Parallels\Parallels Workstation\Application\Parallels Transporter.exe:*:Enabled:Parallels Transporter -- (Parallels Holdings, Ltd. and its affiliates.) "C:\Documents and Settings\Korisnik\Application Data\BitTorrent\BitTorrent.exe" = C:\Documents and Settings\Korisnik\Application Data\BitTorrent\BitTorrent.exe:*:Disabled:BitTorrent -- (BitTorrent Inc.) "C:\Documents and Settings\Korisnik\My Documents\Preuzimanja\BitTorrent.exe" = C:\Documents and Settings\Korisnik\My Documents\Preuzimanja\BitTorrent.exe:*:Enabled:BitTorrent -- (BitTorrent Inc.) ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0E5DD7A3-BE29-430C-970B-C553F4A58C39}" = SMART Common Platform "{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25 "{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1 "{2BA00471-0328-3743-93BD-FA813353A783}" = Microsoft .NET Framework 3.0 Service Pack 1 "{2E8C03EC-E09F-4868-A4AC-02B9285D3E09}" = Document Express DjVu Plug-in "{2FC099BD-AC9B-33EB-809C-D332E1B27C40}" = Microsoft .NET Framework 3.5 "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{362A43F1-D2C1-4C89-98B7-B9BD894D160D}" = Parallels runtime modules "{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup "{3DC873BB-FFE3-46BF-9701-26B9AE371F9F}" = RealDownloader "{48F22622-1CC2-4A83-9C1E-644DD96F832D}" = Epson Event Manager "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{67E6410C-1E97-4D03-BEC2-8E83323A6BBD}" = SMART Product Drivers "{72C462E7-BAD8-4E08-9D31-AE66FB1DB459}" = Wisdom-soft ScreenHunter 6.0.851 Pro "{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{7F14F68C-17FA-4F88-B3FD-7F449C1EBF32}" = EPSON Web-To-Page "{8722B4A9-CE59-4BA5-9D45-8E6C6789B940}" = Graphing Calculator Viewer "{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}" = Epson Easy Photo Print 2 "{9011041A-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{944167EA-7F89-4705-8DCD-1D63B53141B0}" = Ad-Aware Antivirus "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}" = RealNetworks - Microsoft Visual C++ 2010 Runtime "{AC5019DA-5DC2-44E6-808A-1A68F3CCA79D}" = Caricature Studio Green 3.6 "{AC76BA86-7AD7-1050-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Croatian "{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint "{B658C40F-7401-42CF-A2A4-FD9BFEC33E9D}" = Parallels Workstation "{BE282C23-5484-47FF-B2C1-EBEA5C893711}" = Nero 8 "{BE686891-3C56-4714-AFEF-341A7867BA80}" = REALTEK USB Wireless LAN Driver and Utility "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}" = System Requirements Lab for Intel "{E6D7E1A8-3DF6-4EAD-B382-C2BA8CD41EEB}" = Paket hrvatskog sučelja za Windows "{ED0FF410-41B9-441F-B457-4AC81782E8BF}" = SMART Notebook "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "Ad-Aware Browsing Protection" = Ad-Aware Browsing Protection "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 12.0 "BSPlayerp" = BS.Player PRO "EPSON Scanner" = EPSON Scan "Epson Stylus SX210_SX410_TX210_TX410 Korisnički vodič" = Epson Stylus SX210_SX410_TX210_TX410 Priručnik "EPSON SX210 Series" = EPSON SX210 Series Printer Uninstall "FileZilla Client" = FileZilla Client 3.7.1.1 "Google Chrome" = Google Chrome "HDMI" = Intel® Graphics Media Accelerator Driver "ie8" = Windows Internet Explorer 8 "Microsoft .NET Framework 3.5" = Microsoft .NET Framework 3.5 "Mozilla Firefox 21.0 (x86 en-US)" = Mozilla Firefox 21.0 (x86 en-US) "MozillaMaintenanceService" = Mozilla Maintenance Service "Parallels Workstation" = Parallels Workstation "PowerISO" = PowerISO "RealPlayer 16.0" = RealPlayer "Windows Media Format Runtime" = Windows Media Format Runtime "Windows XP Service Pack" = Windows XP Service Pack 3 "WinRAR archiver" = WinRAR 4.01 (32-bit) "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "BitTorrent" = BitTorrent ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 18.7.2013 21:12:21 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3011 Description = Unloading the performance counter strings for service aspnet_state (ASP.NET State Service) failed. The Error code is the first DWORD in Data section. Error - 18.7.2013 21:12:22 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3001 Description = The performance counter name string value in the registry is incorrectly formatted. The bogus string is 9050, the bogus index value is the first DWORD in Data section while the last valid index values are the second and third DWORD in Data section. Error - 19.7.2013 6:50:00 | Computer Name = NONE-BB75D357C4 | Source = crypt32 | ID = 131077 Description = Failed auto update retrieval of third-party root certificate from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/503006091D97D4F5AE39F7CBE7927D7D652D3431.crt> with error: This operation returned because the timeout period expired. Error - 20.7.2013 2:28:12 | Computer Name = NONE-BB75D357C4 | Source = Application Hang | ID = 1002 Description = Hanging application prl_client_app.exe, version 6.0.13852.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Error - 20.7.2013 16:45:20 | Computer Name = NONE-BB75D357C4 | Source = Application Hang | ID = 1002 Description = Hanging application rstrui.exe, version 5.1.2600.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Error - 20.7.2013 17:01:28 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3001 Description = The performance counter name string value in the registry is incorrectly formatted. The bogus string is 9050, the bogus index value is the first DWORD in Data section while the last valid index values are the second and third DWORD in Data section. Error - 20.7.2013 17:01:28 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3011 Description = Unloading the performance counter strings for service ASP.NET_2.0.50727 (ASP.NET_2.0.50727) failed. The Error code is the first DWORD in Data section. Error - 20.7.2013 17:01:30 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3001 Description = The performance counter name string value in the registry is incorrectly formatted. The bogus string is 9050, the bogus index value is the first DWORD in Data section while the last valid index values are the second and third DWORD in Data section. Error - 20.7.2013 17:01:30 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3011 Description = Unloading the performance counter strings for service aspnet_state (ASP.NET State Service) failed. The Error code is the first DWORD in Data section. Error - 20.7.2013 17:01:31 | Computer Name = NONE-BB75D357C4 | Source = LoadPerf | ID = 3001 Description = The performance counter name string value in the registry is incorrectly formatted. The bogus string is 9050, the bogus index value is the first DWORD in Data section while the last valid index values are the second and third DWORD in Data section. [ System Events ] Error - 16.7.2013 17:41:52 | Computer Name = NONE-BB75D357C4 | Source = ialm | ID = 262252 Description = The driver igxprd32 for the display device \Device\Video3 got stuck in an infinite loop. This usually indicates a problem with the device itself or with the device driver programming the hardware incorrectly. Please check with your hardware device vendor for any driver updates. Error - 16.7.2013 17:44:03 | Computer Name = NONE-BB75D357C4 | Source = System Error | ID = 1003 Description = Error code 000000ea, parameter1 88dd6938, parameter2 891c9148, parameter3 88f3a420, parameter4 00000001. Error - 16.7.2013 20:28:53 | Computer Name = NONE-BB75D357C4 | Source = Service Control Manager | ID = 7000 Description = The TuneUp Theme Extension service failed to start due to the following error: %%1083 < End of report > Quote
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 OTL.Txt part1 OTL logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt- 1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc10 0-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{go ogle:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inp utEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition }{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\adawarebp [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.16 23:56:01 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.16 23:53:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll [2013.07.16 23:53:28 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll [2013.07.16 23:53:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tlntsess.exe [2013.07.16 23:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe [2013.07.16 23:53:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll [2013.07.16 23:53:10 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2013.07.16 23:53:05 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll [2013.07.16 23:53:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll [2013.07.16 23:53:02 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll [2013.07.16 23:53:00 | 001,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2013.07.16 23:52:56 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2013.07.16 23:52:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2013.07.16 23:52:30 | 001,288,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll [2013.07.16 23:52:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013.07.16 23:52:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013.07.16 23:52:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013.07.16 23:52:22 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll [2013.07.16 23:52:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013.07.16 23:52:17 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msasn1.dll [2013.07.16 23:52:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2013.07.16 23:52:11 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atl.dll [2013.07.16 23:52:08 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usp10.dll [2013.07.16 23:51:59 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013.07.16 23:51:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll [2013.07.16 23:51:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013.07.16 23:51:59 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013.07.16 23:51:59 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013.07.16 23:51:59 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013.07.16 23:51:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll [2013.07.16 23:51:54 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll [2013.07.16 23:51:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2013.07.16 23:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll [2013.07.16 23:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2013.07.16 23:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll [2013.07.16 23:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2013.07.16 23:51:40 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2013.07.16 23:51:36 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013.07.16 23:51:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\synceng.dll [2013.07.16 23:51:00 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2013.07.16 23:50:55 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013.07.16 23:50:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2013.07.16 23:50:41 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2013.07.16 23:50:34 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2013.07.16 23:50:31 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll [2013.07.16 23:50:28 | 001,876,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2013.07.16 23:50:16 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2013.07.16 23:50:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013.07.16 23:50:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2013.07.16 23:49:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys [2013.07.16 23:49:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll [2013.07.16 23:48:09 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2013.07.16 23:47:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys [2013.07.16 23:47:25 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2013.07.16 23:46:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2013.07.16 23:46:16 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013.07.16 23:45:44 | 002,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2013.07.16 23:45:44 | 002,149,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2013.07.16 23:45:43 | 002,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2013.07.16 23:45:43 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2013.07.16 23:45:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2013.07.16 23:43:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2013.07.16 23:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Notebook Content [2013.07.16 23:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies [2013.07.16 23:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\SMART Notebook [2013.07.16 23:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 23:31:04 | 002,350,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll [2013.07.16 23:31:04 | 002,281,472 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc [2013.07.16 23:31:04 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc [2013.07.16 23:31:04 | 000,237,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc [2013.07.16 23:31:04 | 000,229,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc [2013.07.16 23:31:04 | 000,225,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc [2013.07.16 23:31:04 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc [2013.07.16 23:31:04 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc [2013.07.16 23:31:04 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll [2013.07.16 23:31:04 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll [2013.07.16 23:31:04 | 000,052,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll [2013.07.16 23:31:04 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll [2013.07.16 23:31:03 | 005,672,960 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll [2013.07.16 23:31:03 | 003,895,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2013.07.16 23:31:03 | 003,398,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll [2013.07.16 23:31:03 | 000,651,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe [2013.07.16 23:31:03 | 000,286,720 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc [2013.07.16 23:31:03 | 000,274,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc [2013.07.16 23:31:03 | 000,270,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc [2013.07.16 23:31:03 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc [2013.07.16 23:31:03 | 000,212,992 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll [2013.07.16 23:31:03 | 000,181,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc [2013.07.16 23:31:03 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll [2013.07.16 23:31:03 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl [2013.07.16 23:31:02 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe [2013.07.16 23:31:02 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2013.07.16 22:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies Inc [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:39:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll [2013.07.16 22:39:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013.07.16 22:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\National Instruments [2013.07.16 22:38:57 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013.07.16 22:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\SMART Technologies [2013.07.16 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.16 22:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SMART Technologies [2013.07.16 22:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.16 22:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Epson Software [2013.07.16 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2013.07.16 22:24:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 6.0 Sprint [2013.07.16 22:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2013.07.16 22:22:51 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2013.07.16 22:22:51 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2013.07.16 22:22:51 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2013.07.16 22:22:51 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2013.07.16 22:22:51 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2013.07.16 22:22:00 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL [2013.07.16 22:21:59 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBFDE.DLL [2013.07.16 22:21:59 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BFDE.DLL [2013.07.16 22:21:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013.07.16 22:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.16 22:21:27 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll [2013.07.16 22:21:27 | 000,009,216 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\escdev.dll [2013.07.16 22:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EPSON [2013.07.16 22:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2013.07.16 22:14:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caricature Studio Green 3.6 [2013.07.16 22:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Studio Green 3.6 [2013.07.16 22:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.16 22:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.16 22:04:32 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Sun [2013.07.16 22:02:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013.07.16 22:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2013.07.16 22:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.07.16 22:02:22 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:22 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 22:02:22 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:22 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:20 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.07.16 21:58:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Sun [2013.07.16 21:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab [2013.07.16 21:52:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO [2013.07.16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\WinRAR [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR [2013.07.16 21:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\WinRAR [2013.07.16 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.07.16 21:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013.07.16 21:45:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2013.07.16 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013.07.16 21:38:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll [2013.07.16 21:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Ahead [2013.07.16 21:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\NeroInstall.bak [2013.07.16 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero 8 [2013.07.16 21:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2013.07.16 21:28:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013.07.16 21:28:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2013.07.16 21:28:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2013.07.16 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2013.07.16 21:10:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013.07.16 21:01:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2013.07.16 21:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop\Pacific Tech - NuCalc 2.0 [2013.07.16 21:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2013.07.16 20:58:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2013.07.16 20:58:07 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013.07.16 20:58:05 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013.07.16 20:58:03 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013.07.16 20:58:01 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013.07.16 20:57:58 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013.07.16 20:57:55 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013.07.16 20:57:52 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013.07.16 20:57:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013.07.16 20:57:46 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013.07.16 20:57:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013.07.16 20:57:41 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013.07.16 20:57:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013.07.16 20:56:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013.07.16 20:49:52 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013.07.16 20:49:52 | 001,522,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013.07.16 20:49:52 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013.07.16 20:49:52 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013.07.16 20:49:52 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013.07.16 20:49:51 | 005,444,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013.07.16 20:49:51 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013.07.16 20:49:51 | 000,079,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2013.07.16 20:49:51 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2013.07.16 20:49:50 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013.07.16 20:49:50 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013.07.16 20:49:48 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013.07.16 20:49:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013.07.16 20:49:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013.07.16 20:49:48 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013.07.16 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.07.16 20:49:32 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013.07.16 20:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013.07.16 20:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Downloads [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Macromedia [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Adobe [2013.07.16 20:40:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 20:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2013.07.16 20:29:16 | 000,692,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.16 20:29:16 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.16 20:27:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2013.07.16 20:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Adobe [2013.07.16 20:24:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google [2013.07.16 20:01:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2013.07.16 20:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Identities [2013.07.16 19:57:44 | 000,000,000 | ---D | C] -- C:\Intel [2013.07.16 19:49:17 | 001,371,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll [2013.07.16 19:49:15 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm [2013.07.16 19:49:14 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm [2013.07.16 19:49:14 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm [2013.07.16 19:49:11 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll [2013.07.16 19:49:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys [2013.07.16 19:49:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe [2013.07.16 19:49:05 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll [2013.07.16 19:49:05 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll [2013.07.16 19:49:05 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll [2013.07.16 19:49:05 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll [2013.07.16 19:49:05 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll [2013.07.16 19:49:05 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll [2013.07.16 19:49:05 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll [2013.07.16 19:49:05 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2013.07.16 19:49:05 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll [2013.07.16 19:49:05 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll [2013.07.16 19:49:05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll [2013.07.16 19:49:05 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll [2013.07.16 19:49:05 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax [2013.07.16 19:49:05 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax [2013.07.16 19:49:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2013.07.16 19:49:04 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll [2013.07.16 19:49:04 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll [2013.07.16 19:49:04 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll [2013.07.16 19:49:04 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll [2013.07.16 19:49:04 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll [2013.07.16 19:49:04 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll [2013.07.16 19:49:04 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll [2013.07.16 19:49:04 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll [2013.07.16 19:49:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll [2013.07.16 19:49:03 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll [2013.07.16 19:49:03 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll [2013.07.16 19:49:03 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll [2013.07.16 19:49:03 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll [2013.07.16 19:49:03 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll [2013.07.16 19:49:03 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe [2013.07.16 19:49:03 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll [2013.07.16 19:49:03 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll [2013.07.16 19:49:03 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll [2013.07.16 19:49:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll [2013.07.16 19:49:03 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll [2013.07.16 19:49:03 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe [2013.07.16 19:49:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll [2013.07.16 19:49:02 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll [2013.07.16 19:49:02 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll [2013.07.16 19:49:02 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll [2013.07.16 19:49:02 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2013.07.16 19:49:02 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll [2013.07.16 19:49:02 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll [2013.07.16 19:49:02 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll [2013.07.16 19:49:02 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll [2013.07.16 19:49:02 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll [2013.07.16 19:49:02 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe [2013.07.16 19:49:02 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll [2013.07.16 19:49:02 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll [2013.07.16 19:49:02 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2013.07.16 19:49:02 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe [2013.07.16 19:49:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe [2013.07.16 19:49:01 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe [2013.07.16 19:49:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2013.07.16 19:47:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2013.07.16 19:47:38 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe [2013.07.16 19:46:31 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2013.07.16 19:46:31 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2013.07.16 19:46:31 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2013.07.16 19:46:31 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2013.07.16 19:46:31 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2013.07.16 19:46:31 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2013.07.16 19:46:31 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2013.07.16 19:46:31 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2013.07.16 19:46:31 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2013.07.16 19:46:31 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2013.07.16 19:46:31 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2013.07.16 19:46:31 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll [2013.07.16 19:46:31 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll [2013.07.16 19:46:31 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll [2013.07.16 19:46:31 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll [2013.07.16 19:46:31 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll [2013.07.16 19:46:31 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll [2013.07.16 19:46:31 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll [2013.07.16 19:46:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2013.07.16 19:46:30 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2013.07.16 19:46:30 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2013.07.16 19:46:30 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2013.07.16 19:46:30 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2013.07.16 19:46:30 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2013.07.16 19:46:30 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2013.07.16 19:46:30 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2013.07.16 19:46:30 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2013.07.16 19:46:30 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys [2013.07.16 19:46:30 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2013.07.16 19:46:30 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2013.07.16 19:46:30 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll [2013.07.16 19:46:30 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll [2013.07.16 19:46:30 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll [2013.07.16 19:46:30 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll [2013.07.16 19:46:30 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2013.07.16 19:46:30 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2013.07.16 19:46:30 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll [2013.07.16 19:46:29 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2013.07.16 19:46:29 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys Quote
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 part1 OTL logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt- 1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc10 0-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{go ogle:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inp utEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition }{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\adawarebp [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.16 23:56:01 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.16 23:53:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll [2013.07.16 23:53:28 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll [2013.07.16 23:53:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tlntsess.exe [2013.07.16 23:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe [2013.07.16 23:53:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll [2013.07.16 23:53:10 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2013.07.16 23:53:05 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll [2013.07.16 23:53:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll [2013.07.16 23:53:02 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll [2013.07.16 23:53:00 | 001,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2013.07.16 23:52:56 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2013.07.16 23:52:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2013.07.16 23:52:30 | 001,288,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll [2013.07.16 23:52:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013.07.16 23:52:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013.07.16 23:52:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013.07.16 23:52:22 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll [2013.07.16 23:52:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013.07.16 23:52:17 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msasn1.dll [2013.07.16 23:52:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2013.07.16 23:52:11 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atl.dll [2013.07.16 23:52:08 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usp10.dll [2013.07.16 23:51:59 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013.07.16 23:51:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll [2013.07.16 23:51:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013.07.16 23:51:59 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013.07.16 23:51:59 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013.07.16 23:51:59 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013.07.16 23:51:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll [2013.07.16 23:51:54 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll [2013.07.16 23:51:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2013.07.16 23:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll [2013.07.16 23:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2013.07.16 23:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll [2013.07.16 23:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2013.07.16 23:51:40 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2013.07.16 23:51:36 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013.07.16 23:51:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\synceng.dll [2013.07.16 23:51:00 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2013.07.16 23:50:55 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013.07.16 23:50:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2013.07.16 23:50:41 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2013.07.16 23:50:34 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2013.07.16 23:50:31 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll [2013.07.16 23:50:28 | 001,876,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2013.07.16 23:50:16 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2013.07.16 23:50:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013.07.16 23:50:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2013.07.16 23:49:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys [2013.07.16 23:49:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll [2013.07.16 23:48:09 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2013.07.16 23:47:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys [2013.07.16 23:47:25 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2013.07.16 23:46:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2013.07.16 23:46:16 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013.07.16 23:45:44 | 002,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2013.07.16 23:45:44 | 002,149,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2013.07.16 23:45:43 | 002,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2013.07.16 23:45:43 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2013.07.16 23:45:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2013.07.16 23:43:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2013.07.16 23:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Notebook Content [2013.07.16 23:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies [2013.07.16 23:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\SMART Notebook [2013.07.16 23:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 23:31:04 | 002,350,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll [2013.07.16 23:31:04 | 002,281,472 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc [2013.07.16 23:31:04 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc [2013.07.16 23:31:04 | 000,237,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc [2013.07.16 23:31:04 | 000,229,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc [2013.07.16 23:31:04 | 000,225,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc [2013.07.16 23:31:04 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc [2013.07.16 23:31:04 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc [2013.07.16 23:31:04 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll [2013.07.16 23:31:04 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll [2013.07.16 23:31:04 | 000,052,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll [2013.07.16 23:31:04 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll [2013.07.16 23:31:03 | 005,672,960 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll [2013.07.16 23:31:03 | 003,895,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2013.07.16 23:31:03 | 003,398,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll [2013.07.16 23:31:03 | 000,651,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe [2013.07.16 23:31:03 | 000,286,720 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc [2013.07.16 23:31:03 | 000,274,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc [2013.07.16 23:31:03 | 000,270,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc [2013.07.16 23:31:03 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc [2013.07.16 23:31:03 | 000,212,992 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll [2013.07.16 23:31:03 | 000,181,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc [2013.07.16 23:31:03 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll [2013.07.16 23:31:03 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl [2013.07.16 23:31:02 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe [2013.07.16 23:31:02 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2013.07.16 22:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies Inc [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:39:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll [2013.07.16 22:39:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013.07.16 22:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\National Instruments [2013.07.16 22:38:57 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013.07.16 22:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\SMART Technologies [2013.07.16 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.16 22:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SMART Technologies [2013.07.16 22:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.16 22:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Epson Software [2013.07.16 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2013.07.16 22:24:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 6.0 Sprint [2013.07.16 22:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2013.07.16 22:22:51 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2013.07.16 22:22:51 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2013.07.16 22:22:51 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2013.07.16 22:22:51 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2013.07.16 22:22:51 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2013.07.16 22:22:00 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL [2013.07.16 22:21:59 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBFDE.DLL [2013.07.16 22:21:59 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BFDE.DLL [2013.07.16 22:21:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013.07.16 22:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.16 22:21:27 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll [2013.07.16 22:21:27 | 000,009,216 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\escdev.dll [2013.07.16 22:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EPSON [2013.07.16 22:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2013.07.16 22:14:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caricature Studio Green 3.6 [2013.07.16 22:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Studio Green 3.6 [2013.07.16 22:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.16 22:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.16 22:04:32 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Sun [2013.07.16 22:02:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013.07.16 22:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2013.07.16 22:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.07.16 22:02:22 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:22 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 22:02:22 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:22 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:20 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.07.16 21:58:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Sun [2013.07.16 21:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab [2013.07.16 21:52:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO [2013.07.16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\WinRAR [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR [2013.07.16 21:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\WinRAR [2013.07.16 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.07.16 21:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013.07.16 21:45:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2013.07.16 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013.07.16 21:38:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll [2013.07.16 21:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Ahead [2013.07.16 21:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\NeroInstall.bak [2013.07.16 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero 8 [2013.07.16 21:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2013.07.16 21:28:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013.07.16 21:28:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2013.07.16 21:28:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2013.07.16 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2013.07.16 21:10:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013.07.16 21:01:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2013.07.16 21:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop\Pacific Tech - NuCalc 2.0 [2013.07.16 21:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2013.07.16 20:58:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2013.07.16 20:58:07 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013.07.16 20:58:05 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013.07.16 20:58:03 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013.07.16 20:58:01 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013.07.16 20:57:58 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013.07.16 20:57:55 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013.07.16 20:57:52 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013.07.16 20:57:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013.07.16 20:57:46 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013.07.16 20:57:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013.07.16 20:57:41 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013.07.16 20:57:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013.07.16 20:56:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013.07.16 20:49:52 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013.07.16 20:49:52 | 001,522,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013.07.16 20:49:52 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013.07.16 20:49:52 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013.07.16 20:49:52 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013.07.16 20:49:51 | 005,444,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013.07.16 20:49:51 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013.07.16 20:49:51 | 000,079,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2013.07.16 20:49:51 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2013.07.16 20:49:50 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013.07.16 20:49:50 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013.07.16 20:49:48 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013.07.16 20:49:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013.07.16 20:49:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013.07.16 20:49:48 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013.07.16 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.07.16 20:49:32 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013.07.16 20:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013.07.16 20:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Downloads [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Macromedia [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Adobe [2013.07.16 20:40:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 20:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2013.07.16 20:29:16 | 000,692,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.16 20:29:16 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.16 20:27:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2013.07.16 20:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Adobe [2013.07.16 20:24:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google [2013.07.16 20:01:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2013.07.16 20:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Identities [2013.07.16 19:57:44 | 000,000,000 | ---D | C] -- C:\Intel [2013.07.16 19:49:17 | 001,371,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll [2013.07.16 19:49:15 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm [2013.07.16 19:49:14 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm [2013.07.16 19:49:14 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm [2013.07.16 19:49:11 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll [2013.07.16 19:49:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys [2013.07.16 19:49:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe [2013.07.16 19:49:05 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll [2013.07.16 19:49:05 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll [2013.07.16 19:49:05 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll [2013.07.16 19:49:05 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll [2013.07.16 19:49:05 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll [2013.07.16 19:49:05 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll [2013.07.16 19:49:05 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll [2013.07.16 19:49:05 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2013.07.16 19:49:05 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll [2013.07.16 19:49:05 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll [2013.07.16 19:49:05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll [2013.07.16 19:49:05 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll [2013.07.16 19:49:05 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax [2013.07.16 19:49:05 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax [2013.07.16 19:49:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2013.07.16 19:49:04 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll [2013.07.16 19:49:04 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll [2013.07.16 19:49:04 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll [2013.07.16 19:49:04 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll [2013.07.16 19:49:04 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll [2013.07.16 19:49:04 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll [2013.07.16 19:49:04 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll [2013.07.16 19:49:04 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll [2013.07.16 19:49:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll [2013.07.16 19:49:03 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll [2013.07.16 19:49:03 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll [2013.07.16 19:49:03 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll [2013.07.16 19:49:03 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll [2013.07.16 19:49:03 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll [2013.07.16 19:49:03 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe [2013.07.16 19:49:03 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll [2013.07.16 19:49:03 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll [2013.07.16 19:49:03 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll [2013.07.16 19:49:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll [2013.07.16 19:49:03 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll [2013.07.16 19:49:03 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe [2013.07.16 19:49:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll [2013.07.16 19:49:02 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll [2013.07.16 19:49:02 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll [2013.07.16 19:49:02 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll [2013.07.16 19:49:02 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2013.07.16 19:49:02 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll [2013.07.16 19:49:02 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll [2013.07.16 19:49:02 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll [2013.07.16 19:49:02 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll [2013.07.16 19:49:02 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll [2013.07.16 19:49:02 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe [2013.07.16 19:49:02 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll [2013.07.16 19:49:02 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll [2013.07.16 19:49:02 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2013.07.16 19:49:02 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe [2013.07.16 19:49:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe [2013.07.16 19:49:01 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe [2013.07.16 19:49:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2013.07.16 19:47:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2013.07.16 19:47:38 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe [2013.07.16 19:46:31 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2013.07.16 19:46:31 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2013.07.16 19:46:31 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2013.07.16 19:46:31 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2013.07.16 19:46:31 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2013.07.16 19:46:31 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2013.07.16 19:46:31 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2013.07.16 19:46:31 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2013.07.16 19:46:31 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2013.07.16 19:46:31 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2013.07.16 19:46:31 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2013.07.16 19:46:31 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll [2013.07.16 19:46:31 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll [2013.07.16 19:46:31 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll [2013.07.16 19:46:31 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll [2013.07.16 19:46:31 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll [2013.07.16 19:46:31 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll [2013.07.16 19:46:31 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll [2013.07.16 19:46:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2013.07.16 19:46:30 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2013.07.16 19:46:30 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2013.07.16 19:46:30 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2013.07.16 19:46:30 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2013.07.16 19:46:30 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2013.07.16 19:46:30 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2013.07.16 19:46:30 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2013.07.16 19:46:30 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2013.07.16 19:46:30 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys [2013.07.16 19:46:30 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2013.07.16 19:46:30 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2013.07.16 19:46:30 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll [2013.07.16 19:46:30 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll [2013.07.16 19:46:30 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll [2013.07.16 19:46:30 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll [2013.07.16 19:46:30 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2013.07.16 19:46:30 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2013.07.16 19:46:30 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll [2013.07.16 19:46:29 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2013.07.16 19:46:29 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys Quote
jbradvi9 Posted July 21, 2013 Author Posted July 21, 2013 part1 ...... Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt-1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc100-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\adawarebp [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.16 23:56:01 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.16 23:53:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll [2013.07.16 23:53:28 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll [2013.07.16 23:53:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tlntsess.exe [2013.07.16 23:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe [2013.07.16 23:53:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll [2013.07.16 23:53:10 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2013.07.16 23:53:05 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll [2013.07.16 23:53:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll [2013.07.16 23:53:02 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll [2013.07.16 23:53:00 | 001,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2013.07.16 23:52:56 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2013.07.16 23:52:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2013.07.16 23:52:30 | 001,288,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll [2013.07.16 23:52:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013.07.16 23:52:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013.07.16 23:52:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013.07.16 23:52:22 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll [2013.07.16 23:52:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013.07.16 23:52:17 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msasn1.dll [2013.07.16 23:52:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2013.07.16 23:52:11 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atl.dll [2013.07.16 23:52:08 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usp10.dll [2013.07.16 23:51:59 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013.07.16 23:51:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll [2013.07.16 23:51:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013.07.16 23:51:59 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013.07.16 23:51:59 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013.07.16 23:51:59 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013.07.16 23:51:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll [2013.07.16 23:51:54 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll [2013.07.16 23:51:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2013.07.16 23:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll [2013.07.16 23:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2013.07.16 23:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll [2013.07.16 23:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2013.07.16 23:51:40 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2013.07.16 23:51:36 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013.07.16 23:51:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\synceng.dll [2013.07.16 23:51:00 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2013.07.16 23:50:55 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013.07.16 23:50:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2013.07.16 23:50:41 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2013.07.16 23:50:34 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2013.07.16 23:50:31 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll [2013.07.16 23:50:28 | 001,876,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2013.07.16 23:50:16 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2013.07.16 23:50:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013.07.16 23:50:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2013.07.16 23:49:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys [2013.07.16 23:49:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll [2013.07.16 23:48:09 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2013.07.16 23:47:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys [2013.07.16 23:47:25 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2013.07.16 23:46:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2013.07.16 23:46:16 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013.07.16 23:45:44 | 002,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2013.07.16 23:45:44 | 002,149,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2013.07.16 23:45:43 | 002,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2013.07.16 23:45:43 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2013.07.16 23:45:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2013.07.16 23:43:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2013.07.16 23:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Notebook Content [2013.07.16 23:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies [2013.07.16 23:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\SMART Notebook [2013.07.16 23:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 23:31:04 | 002,350,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll [2013.07.16 23:31:04 | 002,281,472 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc [2013.07.16 23:31:04 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc [2013.07.16 23:31:04 | 000,237,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc [2013.07.16 23:31:04 | 000,229,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc [2013.07.16 23:31:04 | 000,225,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc [2013.07.16 23:31:04 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc [2013.07.16 23:31:04 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc [2013.07.16 23:31:04 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll [2013.07.16 23:31:04 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll [2013.07.16 23:31:04 | 000,052,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll [2013.07.16 23:31:04 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll [2013.07.16 23:31:03 | 005,672,960 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll [2013.07.16 23:31:03 | 003,895,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2013.07.16 23:31:03 | 003,398,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll [2013.07.16 23:31:03 | 000,651,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe [2013.07.16 23:31:03 | 000,286,720 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc [2013.07.16 23:31:03 | 000,274,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc [2013.07.16 23:31:03 | 000,270,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc [2013.07.16 23:31:03 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc [2013.07.16 23:31:03 | 000,212,992 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll [2013.07.16 23:31:03 | 000,181,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc [2013.07.16 23:31:03 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll [2013.07.16 23:31:03 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl [2013.07.16 23:31:02 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe [2013.07.16 23:31:02 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2013.07.16 22:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies Inc [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:39:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll [2013.07.16 22:39:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013.07.16 22:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\National Instruments [2013.07.16 22:38:57 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013.07.16 22:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\SMART Technologies [2013.07.16 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.16 22:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SMART Technologies [2013.07.16 22:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.16 22:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Epson Software [2013.07.16 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2013.07.16 22:24:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 6.0 Sprint [2013.07.16 22:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2013.07.16 22:22:51 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2013.07.16 22:22:51 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2013.07.16 22:22:51 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2013.07.16 22:22:51 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2013.07.16 22:22:51 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2013.07.16 22:22:00 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL [2013.07.16 22:21:59 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBFDE.DLL [2013.07.16 22:21:59 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BFDE.DLL [2013.07.16 22:21:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013.07.16 22:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.16 22:21:27 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll [2013.07.16 22:21:27 | 000,009,216 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\escdev.dll [2013.07.16 22:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EPSON [2013.07.16 22:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2013.07.16 22:14:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caricature Studio Green 3.6 [2013.07.16 22:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Studio Green 3.6 [2013.07.16 22:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.16 22:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.16 22:04:32 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Sun [2013.07.16 22:02:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013.07.16 22:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2013.07.16 22:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.07.16 22:02:22 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:22 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 22:02:22 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:22 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:20 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.07.16 21:58:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Sun [2013.07.16 21:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab [2013.07.16 21:52:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO [2013.07.16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\WinRAR [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR [2013.07.16 21:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\WinRAR [2013.07.16 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.07.16 21:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013.07.16 21:45:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2013.07.16 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013.07.16 21:38:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll [2013.07.16 21:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Ahead [2013.07.16 21:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\NeroInstall.bak [2013.07.16 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero 8 [2013.07.16 21:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2013.07.16 21:28:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013.07.16 21:28:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2013.07.16 21:28:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2013.07.16 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2013.07.16 21:10:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013.07.16 21:01:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2013.07.16 21:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop\Pacific Tech - NuCalc 2.0 [2013.07.16 21:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2013.07.16 20:58:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2013.07.16 20:58:07 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013.07.16 20:58:05 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013.07.16 20:58:03 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013.07.16 20:58:01 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013.07.16 20:57:58 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013.07.16 20:57:55 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013.07.16 20:57:52 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013.07.16 20:57:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013.07.16 20:57:46 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013.07.16 20:57:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013.07.16 20:57:41 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013.07.16 20:57:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013.07.16 20:56:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013.07.16 20:49:52 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013.07.16 20:49:52 | 001,522,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013.07.16 20:49:52 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013.07.16 20:49:52 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013.07.16 20:49:52 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013.07.16 20:49:51 | 005,444,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013.07.16 20:49:51 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013.07.16 20:49:51 | 000,079,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2013.07.16 20:49:51 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2013.07.16 20:49:50 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013.07.16 20:49:50 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013.07.16 20:49:48 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013.07.16 20:49:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013.07.16 20:49:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013.07.16 20:49:48 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013.07.16 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.07.16 20:49:32 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013.07.16 20:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013.07.16 20:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Downloads [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Macromedia [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Adobe [2013.07.16 20:40:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 20:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2013.07.16 20:29:16 | 000,692,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.16 20:29:16 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.16 20:27:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2013.07.16 20:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Adobe [2013.07.16 20:24:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google [2013.07.16 20:01:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2013.07.16 20:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Identities [2013.07.16 19:57:44 | 000,000,000 | ---D | C] -- C:\Intel [2013.07.16 19:49:17 | 001,371,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll [2013.07.16 19:49:15 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm [2013.07.16 19:49:14 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm [2013.07.16 19:49:14 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm [2013.07.16 19:49:11 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll [2013.07.16 19:49:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys [2013.07.16 19:49:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe [2013.07.16 19:49:05 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll [2013.07.16 19:49:05 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll [2013.07.16 19:49:05 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll [2013.07.16 19:49:05 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll [2013.07.16 19:49:05 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll [2013.07.16 19:49:05 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll [2013.07.16 19:49:05 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll [2013.07.16 19:49:05 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2013.07.16 19:49:05 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll [2013.07.16 19:49:05 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll [2013.07.16 19:49:05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll [2013.07.16 19:49:05 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll [2013.07.16 19:49:05 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax [2013.07.16 19:49:05 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax [2013.07.16 19:49:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2013.07.16 19:49:04 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll [2013.07.16 19:49:04 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll [2013.07.16 19:49:04 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll [2013.07.16 19:49:04 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll [2013.07.16 19:49:04 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll [2013.07.16 19:49:04 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll [2013.07.16 19:49:04 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll [2013.07.16 19:49:04 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll [2013.07.16 19:49:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll [2013.07.16 19:49:03 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll [2013.07.16 19:49:03 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll [2013.07.16 19:49:03 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll [2013.07.16 19:49:03 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll [2013.07.16 19:49:03 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll [2013.07.16 19:49:03 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe [2013.07.16 19:49:03 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll [2013.07.16 19:49:03 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll [2013.07.16 19:49:03 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll [2013.07.16 19:49:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll [2013.07.16 19:49:03 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll [2013.07.16 19:49:03 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe [2013.07.16 19:49:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll [2013.07.16 19:49:02 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll [2013.07.16 19:49:02 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll [2013.07.16 19:49:02 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll [2013.07.16 19:49:02 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2013.07.16 19:49:02 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll [2013.07.16 19:49:02 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll [2013.07.16 19:49:02 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll [2013.07.16 19:49:02 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll [2013.07.16 19:49:02 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll [2013.07.16 19:49:02 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe [2013.07.16 19:49:02 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll [2013.07.16 19:49:02 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll [2013.07.16 19:49:02 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2013.07.16 19:49:02 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe [2013.07.16 19:49:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe [2013.07.16 19:49:01 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe [2013.07.16 19:49:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2013.07.16 19:47:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2013.07.16 19:47:38 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe [2013.07.16 19:46:31 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2013.07.16 19:46:31 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2013.07.16 19:46:31 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2013.07.16 19:46:31 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2013.07.16 19:46:31 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2013.07.16 19:46:31 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2013.07.16 19:46:31 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2013.07.16 19:46:31 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2013.07.16 19:46:31 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2013.07.16 19:46:31 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2013.07.16 19:46:31 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2013.07.16 19:46:31 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll [2013.07.16 19:46:31 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll [2013.07.16 19:46:31 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll [2013.07.16 19:46:31 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll [2013.07.16 19:46:31 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll [2013.07.16 19:46:31 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll [2013.07.16 19:46:31 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll [2013.07.16 19:46:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2013.07.16 19:46:30 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2013.07.16 19:46:30 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2013.07.16 19:46:30 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2013.07.16 19:46:30 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2013.07.16 19:46:30 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2013.07.16 19:46:30 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2013.07.16 19:46:30 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2013.07.16 19:46:30 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2013.07.16 19:46:30 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys [2013.07.16 19:46:30 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2013.07.16 19:46:30 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2013.07.16 19:46:30 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll [2013.07.16 19:46:30 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll [2013.07.16 19:46:30 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll [2013.07.16 19:46:30 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll [2013.07.16 19:46:30 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2013.07.16 19:46:30 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2013.07.16 19:46:30 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll [2013.07.16 19:46:29 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2013.07.16 19:46:29 | 000,404,990 | �GSPLIT:u�otl.txt é¦őBËI� ńB�[� �GSplit Archive �GSplit 3.0.1 ���bś@ä@&{264F7F80-8DEC-4369-9EF5-F609EB3E1641} �{orf}{num}{ore} Quote
KenB Posted July 21, 2013 Posted July 21, 2013 Please be patient - Etavares will get back to you soon :) Quote There is an email going around offering processed pork - gelatin - and salt in a can ......this is simply SPAM !! MiniToolBoxNetwork TestWireless Test
jbradvi9 Posted July 22, 2013 Author Posted July 22, 2013 For some reason I can't upload otl part 1!I made a couple of attempts! Quote
jbradvi9 Posted July 22, 2013 Author Posted July 22, 2013 part1 OTL logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt-1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc100-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\adawarebp [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.16 23:56:01 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.16 23:53:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll [2013.07.16 23:53:28 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll [2013.07.16 23:53:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tlntsess.exe [2013.07.16 23:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe [2013.07.16 23:53:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll [2013.07.16 23:53:10 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2013.07.16 23:53:05 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll [2013.07.16 23:53:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll [2013.07.16 23:53:02 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll [2013.07.16 23:53:00 | 001,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2013.07.16 23:52:56 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2013.07.16 23:52:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2013.07.16 23:52:30 | 001,288,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll [2013.07.16 23:52:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013.07.16 23:52:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013.07.16 23:52:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013.07.16 23:52:22 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll [2013.07.16 23:52:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013.07.16 23:52:17 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msasn1.dll [2013.07.16 23:52:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2013.07.16 23:52:11 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atl.dll [2013.07.16 23:52:08 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usp10.dll [2013.07.16 23:51:59 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013.07.16 23:51:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll [2013.07.16 23:51:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013.07.16 23:51:59 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013.07.16 23:51:59 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013.07.16 23:51:59 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013.07.16 23:51:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll [2013.07.16 23:51:54 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll [2013.07.16 23:51:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2013.07.16 23:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll [2013.07.16 23:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2013.07.16 23:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll [2013.07.16 23:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2013.07.16 23:51:40 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2013.07.16 23:51:36 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013.07.16 23:51:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\synceng.dll [2013.07.16 23:51:00 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2013.07.16 23:50:55 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013.07.16 23:50:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2013.07.16 23:50:41 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2013.07.16 23:50:34 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2013.07.16 23:50:31 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll [2013.07.16 23:50:28 | 001,876,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2013.07.16 23:50:16 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2013.07.16 23:50:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013.07.16 23:50:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2013.07.16 23:49:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys [2013.07.16 23:49:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll [2013.07.16 23:48:09 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2013.07.16 23:47:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys [2013.07.16 23:47:25 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2013.07.16 23:46:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2013.07.16 23:46:16 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013.07.16 23:45:44 | 002,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2013.07.16 23:45:44 | 002,149,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2013.07.16 23:45:43 | 002,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2013.07.16 23:45:43 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2013.07.16 23:45:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2013.07.16 23:43:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2013.07.16 23:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Notebook Content [2013.07.16 23:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies [2013.07.16 23:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\SMART Notebook [2013.07.16 23:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 23:31:04 | 002,350,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll [2013.07.16 23:31:04 | 002,281,472 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc [2013.07.16 23:31:04 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc [2013.07.16 23:31:04 | 000,237,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc [2013.07.16 23:31:04 | 000,229,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc [2013.07.16 23:31:04 | 000,225,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc [2013.07.16 23:31:04 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc [2013.07.16 23:31:04 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc [2013.07.16 23:31:04 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll [2013.07.16 23:31:04 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll [2013.07.16 23:31:04 | 000,052,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll [2013.07.16 23:31:04 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll [2013.07.16 23:31:03 | 005,672,960 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll [2013.07.16 23:31:03 | 003,895,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2013.07.16 23:31:03 | 003,398,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll [2013.07.16 23:31:03 | 000,651,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe [2013.07.16 23:31:03 | 000,286,720 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc [2013.07.16 23:31:03 | 000,274,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc [2013.07.16 23:31:03 | 000,270,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc [2013.07.16 23:31:03 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc [2013.07.16 23:31:03 | 000,212,992 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll [2013.07.16 23:31:03 | 000,181,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc [2013.07.16 23:31:03 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll [2013.07.16 23:31:03 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl [2013.07.16 23:31:02 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe [2013.07.16 23:31:02 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2013.07.16 22:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies Inc [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:39:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll [2013.07.16 22:39:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013.07.16 22:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\National Instruments [2013.07.16 22:38:57 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013.07.16 22:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\SMART Technologies [2013.07.16 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.16 22:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SMART Technologies [2013.07.16 22:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.16 22:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Epson Software [2013.07.16 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2013.07.16 22:24:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 6.0 Sprint [2013.07.16 22:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2013.07.16 22:22:51 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2013.07.16 22:22:51 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2013.07.16 22:22:51 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2013.07.16 22:22:51 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2013.07.16 22:22:51 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2013.07.16 22:22:00 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL [2013.07.16 22:21:59 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBFDE.DLL [2013.07.16 22:21:59 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BFDE.DLL [2013.07.16 22:21:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013.07.16 22:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.16 22:21:27 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll [2013.07.16 22:21:27 | 000,009,216 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\escdev.dll [2013.07.16 22:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EPSON [2013.07.16 22:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2013.07.16 22:14:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caricature Studio Green 3.6 [2013.07.16 22:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Studio Green 3.6 [2013.07.16 22:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.16 22:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.16 22:04:32 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Sun [2013.07.16 22:02:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013.07.16 22:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2013.07.16 22:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.07.16 22:02:22 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:22 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 22:02:22 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:22 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:20 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.07.16 21:58:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Sun [2013.07.16 21:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab [2013.07.16 21:52:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO [2013.07.16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\WinRAR [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR [2013.07.16 21:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\WinRAR [2013.07.16 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.07.16 21:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013.07.16 21:45:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2013.07.16 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013.07.16 21:38:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll [2013.07.16 21:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Ahead [2013.07.16 21:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\NeroInstall.bak [2013.07.16 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero 8 [2013.07.16 21:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2013.07.16 21:28:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013.07.16 21:28:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2013.07.16 21:28:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2013.07.16 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2013.07.16 21:10:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013.07.16 21:01:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2013.07.16 21:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop\Pacific Tech - NuCalc 2.0 [2013.07.16 21:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2013.07.16 20:58:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2013.07.16 20:58:07 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013.07.16 20:58:05 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013.07.16 20:58:03 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013.07.16 20:58:01 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013.07.16 20:57:58 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013.07.16 20:57:55 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013.07.16 20:57:52 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013.07.16 20:57:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013.07.16 20:57:46 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013.07.16 20:57:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013.07.16 20:57:41 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013.07.16 20:57:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013.07.16 20:56:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013.07.16 20:49:52 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013.07.16 20:49:52 | 001,522,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013.07.16 20:49:52 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013.07.16 20:49:52 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013.07.16 20:49:52 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013.07.16 20:49:51 | 005,444,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013.07.16 20:49:51 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013.07.16 20:49:51 | 000,079,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2013.07.16 20:49:51 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2013.07.16 20:49:50 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013.07.16 20:49:50 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013.07.16 20:49:48 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013.07.16 20:49:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013.07.16 20:49:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013.07.16 20:49:48 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013.07.16 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.07.16 20:49:32 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013.07.16 20:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013.07.16 20:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Downloads [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Macromedia [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Adobe [2013.07.16 20:40:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 20:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2013.07.16 20:29:16 | 000,692,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.16 20:29:16 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.16 20:27:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2013.07.16 20:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Adobe [2013.07.16 20:24:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google [2013.07.16 20:01:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2013.07.16 20:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Identities [2013.07.16 19:57:44 | 000,000,000 | ---D | C] -- C:\Intel [2013.07.16 19:49:17 | 001,371,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll [2013.07.16 19:49:15 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm [2013.07.16 19:49:14 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm [2013.07.16 19:49:14 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm [2013.07.16 19:49:11 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll [2013.07.16 19:49:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys [2013.07.16 19:49:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe [2013.07.16 19:49:05 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll [2013.07.16 19:49:05 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll [2013.07.16 19:49:05 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll [2013.07.16 19:49:05 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll [2013.07.16 19:49:05 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll [2013.07.16 19:49:05 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll [2013.07.16 19:49:05 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll [2013.07.16 19:49:05 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2013.07.16 19:49:05 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll [2013.07.16 19:49:05 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll [2013.07.16 19:49:05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll [2013.07.16 19:49:05 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll [2013.07.16 19:49:05 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax [2013.07.16 19:49:05 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax [2013.07.16 19:49:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2013.07.16 19:49:04 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll [2013.07.16 19:49:04 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll [2013.07.16 19:49:04 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll [2013.07.16 19:49:04 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll [2013.07.16 19:49:04 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll [2013.07.16 19:49:04 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll [2013.07.16 19:49:04 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll [2013.07.16 19:49:04 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll [2013.07.16 19:49:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll [2013.07.16 19:49:03 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll [2013.07.16 19:49:03 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll [2013.07.16 19:49:03 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll [2013.07.16 19:49:03 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll [2013.07.16 19:49:03 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll [2013.07.16 19:49:03 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe [2013.07.16 19:49:03 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll [2013.07.16 19:49:03 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll [2013.07.16 19:49:03 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll [2013.07.16 19:49:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll [2013.07.16 19:49:03 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll [2013.07.16 19:49:03 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe [2013.07.16 19:49:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll [2013.07.16 19:49:02 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll [2013.07.16 19:49:02 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll [2013.07.16 19:49:02 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll [2013.07.16 19:49:02 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2013.07.16 19:49:02 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll [2013.07.16 19:49:02 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll [2013.07.16 19:49:02 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll [2013.07.16 19:49:02 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll [2013.07.16 19:49:02 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll [2013.07.16 19:49:02 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe [2013.07.16 19:49:02 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll [2013.07.16 19:49:02 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll [2013.07.16 19:49:02 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2013.07.16 19:49:02 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe [2013.07.16 19:49:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe [2013.07.16 19:49:01 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe [2013.07.16 19:49:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2013.07.16 19:47:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2013.07.16 19:47:38 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe [2013.07.16 19:46:31 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2013.07.16 19:46:31 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2013.07.16 19:46:31 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2013.07.16 19:46:31 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2013.07.16 19:46:31 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2013.07.16 19:46:31 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2013.07.16 19:46:31 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2013.07.16 19:46:31 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2013.07.16 19:46:31 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2013.07.16 19:46:31 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2013.07.16 19:46:31 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2013.07.16 19:46:31 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll [2013.07.16 19:46:31 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll [2013.07.16 19:46:31 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll [2013.07.16 19:46:31 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll [2013.07.16 19:46:31 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll [2013.07.16 19:46:31 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll [2013.07.16 19:46:31 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll [2013.07.16 19:46:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2013.07.16 19:46:30 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2013.07.16 19:46:30 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2013.07.16 19:46:30 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2013.07.16 19:46:30 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2013.07.16 19:46:30 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2013.07.16 19:46:30 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2013.07.16 19:46:30 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2013.07.16 19:46:30 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2013.07.16 19:46:30 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys [2013.07.16 19:46:30 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2013.07.16 19:46:30 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2013.07.16 19:46:30 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll [2013.07.16 19:46:30 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll [2013.07.16 19:46:30 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll [2013.07.16 19:46:30 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll [2013.07.16 19:46:30 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2013.07.16 19:46:30 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2013.07.16 19:46:30 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll [2013.07.16 19:46:29 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2013.07.16 19:46:29 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys Quote
jbradvi9 Posted July 22, 2013 Author Posted July 22, 2013 OTL.part1(1) OTL logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt-1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc100-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Quote
jbradvi9 Posted July 22, 2013 Author Posted July 22, 2013 OTL.Txt OTL logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt-1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc100-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\adawarebp [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.16 23:56:01 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.16 23:53:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll [2013.07.16 23:53:28 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll [2013.07.16 23:53:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tlntsess.exe [2013.07.16 23:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe [2013.07.16 23:53:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll [2013.07.16 23:53:10 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2013.07.16 23:53:05 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll [2013.07.16 23:53:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll [2013.07.16 23:53:02 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll [2013.07.16 23:53:00 | 001,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2013.07.16 23:52:56 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2013.07.16 23:52:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2013.07.16 23:52:30 | 001,288,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll [2013.07.16 23:52:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013.07.16 23:52:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013.07.16 23:52:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013.07.16 23:52:22 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll [2013.07.16 23:52:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013.07.16 23:52:17 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msasn1.dll [2013.07.16 23:52:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2013.07.16 23:52:11 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atl.dll [2013.07.16 23:52:08 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usp10.dll [2013.07.16 23:51:59 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013.07.16 23:51:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll [2013.07.16 23:51:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013.07.16 23:51:59 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013.07.16 23:51:59 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013.07.16 23:51:59 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013.07.16 23:51:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll [2013.07.16 23:51:54 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll [2013.07.16 23:51:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2013.07.16 23:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll [2013.07.16 23:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2013.07.16 23:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll [2013.07.16 23:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2013.07.16 23:51:40 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2013.07.16 23:51:36 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013.07.16 23:51:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\synceng.dll [2013.07.16 23:51:00 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2013.07.16 23:50:55 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013.07.16 23:50:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2013.07.16 23:50:41 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2013.07.16 23:50:34 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2013.07.16 23:50:31 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll [2013.07.16 23:50:28 | 001,876,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2013.07.16 23:50:16 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2013.07.16 23:50:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013.07.16 23:50:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2013.07.16 23:49:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys [2013.07.16 23:49:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll [2013.07.16 23:48:09 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2013.07.16 23:47:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys [2013.07.16 23:47:25 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2013.07.16 23:46:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2013.07.16 23:46:16 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013.07.16 23:45:44 | 002,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2013.07.16 23:45:44 | 002,149,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2013.07.16 23:45:43 | 002,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2013.07.16 23:45:43 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2013.07.16 23:45:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2013.07.16 23:43:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2013.07.16 23:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Notebook Content [2013.07.16 23:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies [2013.07.16 23:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\SMART Notebook [2013.07.16 23:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 23:31:04 | 002,350,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll [2013.07.16 23:31:04 | 002,281,472 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc [2013.07.16 23:31:04 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc [2013.07.16 23:31:04 | 000,237,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc [2013.07.16 23:31:04 | 000,229,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc [2013.07.16 23:31:04 | 000,225,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc [2013.07.16 23:31:04 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc [2013.07.16 23:31:04 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc [2013.07.16 23:31:04 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll [2013.07.16 23:31:04 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll [2013.07.16 23:31:04 | 000,052,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll [2013.07.16 23:31:04 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll [2013.07.16 23:31:03 | 005,672,960 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll [2013.07.16 23:31:03 | 003,895,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2013.07.16 23:31:03 | 003,398,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll [2013.07.16 23:31:03 | 000,651,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe [2013.07.16 23:31:03 | 000,286,720 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc [2013.07.16 23:31:03 | 000,274,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc [2013.07.16 23:31:03 | 000,270,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc [2013.07.16 23:31:03 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc [2013.07.16 23:31:03 | 000,212,992 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll [2013.07.16 23:31:03 | 000,181,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc [2013.07.16 23:31:03 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll [2013.07.16 23:31:03 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl [2013.07.16 23:31:02 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe [2013.07.16 23:31:02 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2013.07.16 22:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies Inc [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:39:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll [2013.07.16 22:39:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013.07.16 22:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\National Instruments [2013.07.16 22:38:57 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013.07.16 22:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\SMART Technologies [2013.07.16 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.16 22:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SMART Technologies [2013.07.16 22:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.16 22:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Epson Software [2013.07.16 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2013.07.16 22:24:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 6.0 Sprint [2013.07.16 22:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2013.07.16 22:22:51 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2013.07.16 22:22:51 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2013.07.16 22:22:51 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2013.07.16 22:22:51 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2013.07.16 22:22:51 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2013.07.16 22:22:00 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL [2013.07.16 22:21:59 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBFDE.DLL [2013.07.16 22:21:59 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BFDE.DLL [2013.07.16 22:21:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013.07.16 22:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.16 22:21:27 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll [2013.07.16 22:21:27 | 000,009,216 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\escdev.dll [2013.07.16 22:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EPSON [2013.07.16 22:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2013.07.16 22:14:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caricature Studio Green 3.6 [2013.07.16 22:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Studio Green 3.6 [2013.07.16 22:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.16 22:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.16 22:04:32 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Sun [2013.07.16 22:02:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013.07.16 22:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2013.07.16 22:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.07.16 22:02:22 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:22 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 22:02:22 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:22 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:20 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.07.16 21:58:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Sun [2013.07.16 21:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab [2013.07.16 21:52:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO [2013.07.16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\WinRAR [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR [2013.07.16 21:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\WinRAR [2013.07.16 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.07.16 21:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013.07.16 21:45:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2013.07.16 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013.07.16 21:38:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll [2013.07.16 21:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Ahead [2013.07.16 21:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\NeroInstall.bak [2013.07.16 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero 8 [2013.07.16 21:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2013.07.16 21:28:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013.07.16 21:28:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2013.07.16 21:28:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2013.07.16 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2013.07.16 21:10:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013.07.16 21:01:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2013.07.16 21:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop\Pacific Tech - NuCalc 2.0 [2013.07.16 21:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2013.07.16 20:58:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2013.07.16 20:58:07 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013.07.16 20:58:05 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013.07.16 20:58:03 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013.07.16 20:58:01 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013.07.16 20:57:58 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013.07.16 20:57:55 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013.07.16 20:57:52 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013.07.16 20:57:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013.07.16 20:57:46 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013.07.16 20:57:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013.07.16 20:57:41 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013.07.16 20:57:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013.07.16 20:56:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013.07.16 20:49:52 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013.07.16 20:49:52 | 001,522,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013.07.16 20:49:52 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013.07.16 20:49:52 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013.07.16 20:49:52 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013.07.16 20:49:51 | 005,444,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013.07.16 20:49:51 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013.07.16 20:49:51 | 000,079,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2013.07.16 20:49:51 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2013.07.16 20:49:50 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013.07.16 20:49:50 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013.07.16 20:49:48 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013.07.16 20:49:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013.07.16 20:49:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013.07.16 20:49:48 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013.07.16 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.07.16 20:49:32 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013.07.16 20:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013.07.16 20:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Downloads [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Macromedia [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Adobe [2013.07.16 20:40:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 20:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2013.07.16 20:29:16 | 000,692,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.16 20:29:16 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.16 20:27:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2013.07.16 20:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Adobe [2013.07.16 20:24:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google [2013.07.16 20:01:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2013.07.16 20:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Identities [2013.07.16 19:57:44 | 000,000,000 | ---D | C] -- C:\Intel [2013.07.16 19:49:17 | 001,371,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll [2013.07.16 19:49:15 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm [2013.07.16 19:49:14 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm [2013.07.16 19:49:14 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm [2013.07.16 19:49:11 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll [2013.07.16 19:49:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys [2013.07.16 19:49:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe [2013.07.16 19:49:05 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll [2013.07.16 19:49:05 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll [2013.07.16 19:49:05 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll [2013.07.16 19:49:05 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll [2013.07.16 19:49:05 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll [2013.07.16 19:49:05 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll [2013.07.16 19:49:05 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll [2013.07.16 19:49:05 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2013.07.16 19:49:05 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll [2013.07.16 19:49:05 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll [2013.07.16 19:49:05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll [2013.07.16 19:49:05 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll [2013.07.16 19:49:05 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax [2013.07.16 19:49:05 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax [2013.07.16 19:49:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2013.07.16 19:49:04 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll [2013.07.16 19:49:04 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll [2013.07.16 19:49:04 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll [2013.07.16 19:49:04 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll [2013.07.16 19:49:04 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll [2013.07.16 19:49:04 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll [2013.07.16 19:49:04 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll [2013.07.16 19:49:04 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll [2013.07.16 19:49:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll [2013.07.16 19:49:03 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll [2013.07.16 19:49:03 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll [2013.07.16 19:49:03 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll [2013.07.16 19:49:03 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll [2013.07.16 19:49:03 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll [2013.07.16 19:49:03 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe [2013.07.16 19:49:03 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll [2013.07.16 19:49:03 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll [2013.07.16 19:49:03 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll [2013.07.16 19:49:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll [2013.07.16 19:49:03 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll [2013.07.16 19:49:03 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe [2013.07.16 19:49:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll [2013.07.16 19:49:02 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll [2013.07.16 19:49:02 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll [2013.07.16 19:49:02 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll [2013.07.16 19:49:02 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2013.07.16 19:49:02 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll [2013.07.16 19:49:02 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll [2013.07.16 19:49:02 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll [2013.07.16 19:49:02 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll [2013.07.16 19:49:02 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll [2013.07.16 19:49:02 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe [2013.07.16 19:49:02 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll [2013.07.16 19:49:02 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll [2013.07.16 19:49:02 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2013.07.16 19:49:02 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe [2013.07.16 19:49:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe [2013.07.16 19:49:01 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe [2013.07.16 19:49:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2013.07.16 19:47:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2013.07.16 19:47:38 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe [2013.07.16 19:46:31 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2013.07.16 19:46:31 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2013.07.16 19:46:31 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2013.07.16 19:46:31 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2013.07.16 19:46:31 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2013.07.16 19:46:31 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2013.07.16 19:46:31 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2013.07.16 19:46:31 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2013.07.16 19:46:31 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2013.07.16 19:46:31 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2013.07.16 19:46:31 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2013.07.16 19:46:31 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll [2013.07.16 19:46:31 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll [2013.07.16 19:46:31 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll [2013.07.16 19:46:31 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll [2013.07.16 19:46:31 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll [2013.07.16 19:46:31 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll [2013.07.16 19:46:31 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll [2013.07.16 19:46:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2013.07.16 19:46:30 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2013.07.16 19:46:30 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2013.07.16 19:46:30 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2013.07.16 19:46:30 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2013.07.16 19:46:30 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2013.07.16 19:46:30 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2013.07.16 19:46:30 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2013.07.16 19:46:30 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2013.07.16 19:46:30 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys [2013.07.16 19:46:30 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2013.07.16 19:46:30 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2013.07.16 19:46:30 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll [2013.07.16 19:46:30 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll [2013.07.16 19:46:30 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll [2013.07.16 19:46:30 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll [2013.07.16 19:46:30 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2013.07.16 19:46:30 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2013.07.16 19:46:30 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll [2013.07.16 19:46:29 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2013.07.16 19:46:29 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys Quote
jbradvi9 Posted July 22, 2013 Author Posted July 22, 2013 part1 but not entire NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found CREATERESTOREPOINT Restore point Set: OTL Restore Point ========== Files/Folders - Created Within 30 Days ========== [2013.07.21 18:49:30 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013.07.20 23:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2013.07.20 22:46:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013.07.20 22:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\Toolbar Cleaner [2013.07.20 21:08:33 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC [2013.07.20 18:26:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Malwarebytes [2013.07.20 18:26:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2013.07.20 18:26:23 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue [2013.07.20 18:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Uniblue [2013.07.20 10:09:22 | 000,000,000 | ---D | C] -- C:\Program Files\RAMMon [2013.07.20 09:00:04 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Process Detector [2013.07.20 07:17:07 | 000,000,000 | ---D | C] -- C:\Program Files\SAFE Block [2013.07.19 09:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Chief Architect Premier X5 Trial Version Data [2013.07.19 09:58:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Chief Architect Premier X5 Trial Version [2013.07.19 09:57:18 | 000,000,000 | ---D | C] -- C:\Program Files\Chief Architect [2013.07.19 09:50:36 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2013.07.19 09:32:58 | 072,709,304 | ---- | C] (Acronis) -- C:\Documents and Settings\Korisnik\My Documents\AcronisAlignTool_s_e_2_0_111.exe [2013.07.19 09:32:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Download Manager [2013.07.19 08:40:26 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip [2013.07.19 07:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\Jetico [2013.07.19 05:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Uranium Backup [2013.07.19 04:46:49 | 000,000,000 | ---D | C] -- C:\Sandbox [2013.07.19 02:03:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Cyber-D's AutoDelete [2013.07.19 02:03:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Cyber-D's AutoDelete [2013.07.19 02:03:34 | 000,000,000 | ---D | C] -- C:\Program Files\Cyber-D's AutoDelete [2013.07.19 01:25:03 | 000,000,000 | ---D | C] -- C:\Config.Msi [2013.07.18 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SecTaskMan [2013.07.18 18:50:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\eMule [2013.07.18 18:50:06 | 000,000,000 | ---D | C] -- C:\Program Files\eMule [2013.07.18 17:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Sandboxie [2013.07.18 17:38:16 | 000,000,000 | ---D | C] -- C:\BIOSTools [2013.07.18 17:37:52 | 000,000,000 | ---D | C] -- C:\swsetup [2013.07.18 04:00:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2013.07.18 00:21:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\LabVIEW Data [2013.07.17 23:32:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\RealPlayer Downloads [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Program Files\Pacific Tech [2013.07.17 23:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Graphing Calculator Viewer [2013.07.17 20:23:56 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2013.07.17 20:23:53 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2013.07.17 20:23:53 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2013.07.17 20:23:49 | 011,112,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2013.07.17 20:23:48 | 002,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2013.07.17 20:23:48 | 000,522,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll [2013.07.17 16:55:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\FileZilla [2013.07.17 16:54:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\FileZilla FTP Client [2013.07.17 16:54:52 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Canneverbe Limited [2013.07.17 16:36:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Canneverbe Limited [2013.07.17 16:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\CDBurnerXP [2013.07.17 16:14:32 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll [2013.07.17 16:12:26 | 000,290,560 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\dllcache\atmfd.dll [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys [2013.07.17 16:11:38 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023.sys [2013.07.17 16:09:29 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2013.07.17 06:07:22 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2013.07.17 06:01:17 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys [2013.07.17 06:00:26 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll [2013.07.17 05:52:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IECompatCache [2013.07.17 05:52:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\PrivacIE [2013.07.17 05:50:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2013.07.17 05:46:17 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2013.07.17 05:43:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Korisnik\IETldCache [2013.07.17 03:17:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BitTorrent [2013.07.17 03:01:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2013.07.17 02:57:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2013.07.17 02:57:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\hr-HR [2013.07.17 02:33:28 | 000,041,584 | ---- | C] (ThreatTrack Security) -- C:\WINDOWS\System32\drivers\gfiark.sys [2013.07.17 02:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\TuneUp Software [2013.07.17 02:04:55 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2013 [2013.07.17 02:04:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TuneUp Software [2013.07.17 02:02:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\Application Data\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013.07.17 02:02:44 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files [2013.07.17 01:57:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\RealNetworks [2013.07.17 01:57:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\OpenCandy [2013.07.17 01:56:11 | 000,000,000 | ---D | C] -- C:\Program Files\RealNetworks [2013.07.17 01:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\RealNetworks [2013.07.17 01:55:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\xing shared [2013.07.17 01:55:19 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\rmoc3260.dll [2013.07.17 01:54:07 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5016.dll [2013.07.17 01:54:07 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\WINDOWS\System32\pndx5032.dll [2013.07.17 01:54:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RealNetworks [2013.07.17 01:54:00 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\WINDOWS\System32\pncrt.dll [2013.07.17 01:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Real [2013.07.17 01:48:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Real [2013.07.17 01:40:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real [2013.07.17 01:10:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\LavasoftStatistics [2013.07.17 01:10:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Wisdom-soft [2013.07.17 01:09:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Wisdom-soft ScreenHunter 6.0 Pro [2013.07.17 01:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\Wisdom-soft [2013.07.17 00:38:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caminova [2013.07.17 00:37:59 | 000,000,000 | ---D | C] -- C:\Program Files\Caminova [2013.07.17 00:28:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Antivirus [2013.07.17 00:15:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\Webteh [2013.07.17 00:13:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\BSplayer PRO [2013.07.17 00:13:33 | 000,000,000 | ---D | C] -- C:\Program Files\Webteh [2013.07.17 00:09:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Parallels [2013.07.17 00:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Parallels [2013.07.17 00:09:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Public Parallels [2013.07.17 00:09:11 | 000,038,896 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_vtdhook_32.sys [2013.07.17 00:08:53 | 000,227,184 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_hypervisor_32.sys [2013.07.17 00:08:53 | 000,025,968 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_dev32.sys [2013.07.17 00:08:53 | 000,018,288 | ---- | C] (Parallels Holdings, Ltd. and its affiliates.) -- C:\WINDOWS\System32\drivers\prl_usb_mng32.sys [2013.07.17 00:08:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Parallels [2013.07.17 00:08:32 | 000,000,000 | ---D | C] -- C:\Program Files\Parallels [2013.07.17 00:06:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Parallels [2013.07.17 00:01:46 | 000,066,344 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbapifs.sys [2013.07.17 00:01:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Ad-Aware Antivirus [2013.07.17 00:01:45 | 000,022,064 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\sbaphd.sys [2013.07.17 00:01:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\VDD [2013.07.17 00:01:39 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Aware Antivirus [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Search Protection [2013.07.17 00:01:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\adawarebp [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\blekko toolbars [2013.07.17 00:01:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Program Files\adawaretb [2013.07.17 00:01:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\adawaretb [2013.07.16 23:56:01 | 000,013,560 | ---- | C] (GFI Software) -- C:\WINDOWS\System32\drivers\gfibto.sys [2013.07.16 23:56:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Ad-Aware Antivirus [2013.07.16 23:53:29 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\secur32.dll [2013.07.16 23:53:28 | 000,990,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kernel32.dll [2013.07.16 23:53:24 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tlntsess.exe [2013.07.16 23:53:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\telnet.exe [2013.07.16 23:53:21 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kerberos.dll [2013.07.16 23:53:10 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winhttp.dll [2013.07.16 23:53:05 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll [2013.07.16 23:53:02 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rastls.dll [2013.07.16 23:53:02 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\raschap.dll [2013.07.16 23:53:00 | 001,435,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.dll [2013.07.16 23:52:56 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2013.07.16 23:52:49 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll [2013.07.16 23:52:30 | 001,288,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ole32.dll [2013.07.16 23:52:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2013.07.16 23:52:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2013.07.16 23:52:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2013.07.16 23:52:22 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxclu.dll [2013.07.16 23:52:22 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2013.07.16 23:52:17 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msasn1.dll [2013.07.16 23:52:15 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msyuv.dll [2013.07.16 23:52:11 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atl.dll [2013.07.16 23:52:08 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usp10.dll [2013.07.16 23:51:59 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2013.07.16 23:51:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll [2013.07.16 23:51:59 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2013.07.16 23:51:59 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2013.07.16 23:51:59 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2013.07.16 23:51:59 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2013.07.16 23:51:59 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2013.07.16 23:51:59 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2013.07.16 23:51:54 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll [2013.07.16 23:51:54 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll [2013.07.16 23:51:50 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc42.dll [2013.07.16 23:51:46 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avifil32.dll [2013.07.16 23:51:46 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iyuv_32.dll [2013.07.16 23:51:46 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msrle32.dll [2013.07.16 23:51:46 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsbyuv.dll [2013.07.16 23:51:40 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2013.07.16 23:51:36 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2013.07.16 23:51:02 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\synceng.dll [2013.07.16 23:51:00 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll [2013.07.16 23:50:55 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2013.07.16 23:50:46 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2013.07.16 23:50:41 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2013.07.16 23:50:34 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2013.07.16 23:50:31 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gdi32.dll [2013.07.16 23:50:28 | 001,876,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2013.07.16 23:50:16 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll [2013.07.16 23:50:07 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2013.07.16 23:50:04 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll [2013.07.16 23:49:22 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys [2013.07.16 23:49:18 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csrsrv.dll [2013.07.16 23:48:09 | 000,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2013.07.16 23:47:29 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys [2013.07.16 23:47:25 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2013.07.16 23:46:36 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\browserchoice.exe [2013.07.16 23:46:16 | 000,139,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2013.07.16 23:45:44 | 002,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2013.07.16 23:45:44 | 002,149,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2013.07.16 23:45:43 | 002,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe [2013.07.16 23:45:43 | 002,028,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2013.07.16 23:45:25 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2013.07.16 23:43:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump [2013.07.16 23:41:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\My Notebook Content [2013.07.16 23:40:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies [2013.07.16 23:40:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\SMART Notebook [2013.07.16 23:37:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies [2013.07.16 23:31:04 | 002,350,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll [2013.07.16 23:31:04 | 002,281,472 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc [2013.07.16 23:31:04 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc [2013.07.16 23:31:04 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc [2013.07.16 23:31:04 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc [2013.07.16 23:31:04 | 000,237,568 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc [2013.07.16 23:31:04 | 000,229,376 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc [2013.07.16 23:31:04 | 000,225,280 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc [2013.07.16 23:31:04 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc [2013.07.16 23:31:04 | 000,180,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc [2013.07.16 23:31:04 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll [2013.07.16 23:31:04 | 000,057,344 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll [2013.07.16 23:31:04 | 000,052,224 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll [2013.07.16 23:31:04 | 000,024,576 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll [2013.07.16 23:31:03 | 005,672,960 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll [2013.07.16 23:31:03 | 003,895,296 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2013.07.16 23:31:03 | 003,398,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll [2013.07.16 23:31:03 | 000,651,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe [2013.07.16 23:31:03 | 000,286,720 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc [2013.07.16 23:31:03 | 000,278,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc [2013.07.16 23:31:03 | 000,274,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc [2013.07.16 23:31:03 | 000,270,336 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc [2013.07.16 23:31:03 | 000,266,240 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc [2013.07.16 23:31:03 | 000,262,144 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsky.lrc [2013.07.16 23:31:03 | 000,258,048 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrslv.lrc [2013.07.16 23:31:03 | 000,253,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc [2013.07.16 23:31:03 | 000,249,856 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc [2013.07.16 23:31:03 | 000,212,992 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll [2013.07.16 23:31:03 | 000,181,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc [2013.07.16 23:31:03 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc [2013.07.16 23:31:03 | 000,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll [2013.07.16 23:31:03 | 000,126,976 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl [2013.07.16 23:31:02 | 000,920,088 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\igxpun.exe [2013.07.16 23:31:02 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2013.07.16 22:54:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\EPSON [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\SMART Technologies Inc [2013.07.16 22:40:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SMART Technologies Inc [2013.07.16 22:39:59 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_43.dll [2013.07.16 22:39:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2013.07.16 22:39:53 | 000,000,000 | ---D | C] -- C:\Program Files\National Instruments [2013.07.16 22:38:57 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2013.07.16 22:37:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\SMART Technologies [2013.07.16 22:37:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SMART Technologies [2013.07.16 22:37:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\SMART Technologies [2013.07.16 22:37:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SMART Technologies [2013.07.16 22:29:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\UDL [2013.07.16 22:27:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Epson Software [2013.07.16 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Epson Software [2013.07.16 22:24:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 6.0 Sprint [2013.07.16 22:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 6.0 Sprint [2013.07.16 22:22:51 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK2.dll [2013.07.16 22:22:51 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EpPicPrt.dll [2013.07.16 22:22:51 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICEntry.dll [2013.07.16 22:22:51 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\PICSDK.dll [2013.07.16 22:22:51 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\EPPicMgr.dll [2013.07.16 22:22:00 | 000,008,192 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\E_DCINST.DLL [2013.07.16 22:21:59 | 000,086,528 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FLBFDE.DLL [2013.07.16 22:21:59 | 000,078,848 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\System32\E_FD4BFDE.DLL [2013.07.16 22:21:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE [2013.07.16 22:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\EPSON [2013.07.16 22:21:27 | 000,342,016 | ---- | C] (Seiko Epson Corporation) -- C:\WINDOWS\System32\eswiaud.dll [2013.07.16 22:21:27 | 000,009,216 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\escdev.dll [2013.07.16 22:21:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\EPSON [2013.07.16 22:21:23 | 000,000,000 | ---D | C] -- C:\Program Files\epson [2013.07.16 22:14:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Caricature Studio Green 3.6 [2013.07.16 22:14:35 | 000,000,000 | ---D | C] -- C:\Program Files\Caricature Studio Green 3.6 [2013.07.16 22:14:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Carnival Software [2013.07.16 22:04:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\SystemRequirementsLab [2013.07.16 22:04:32 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mdimon.dll [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2013.07.16 22:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Sun [2013.07.16 22:02:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013.07.16 22:02:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013.07.16 22:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun [2013.07.16 22:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.07.16 22:02:22 | 000,867,240 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\npDeployJava1.dll [2013.07.16 22:02:22 | 000,789,416 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\deployJava1.dll [2013.07.16 22:02:22 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaws.exe [2013.07.16 22:02:22 | 000,144,896 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javacpl.cpl [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\javaw.exe [2013.07.16 22:02:20 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\java.exe [2013.07.16 22:02:20 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\WindowsAccessBridge.dll [2013.07.16 22:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.07.16 21:58:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Sun [2013.07.16 21:58:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab [2013.07.16 21:52:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\PowerISO [2013.07.16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\WinRAR [2013.07.16 21:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR [2013.07.16 21:49:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Start Menu\Programs\WinRAR [2013.07.16 21:49:19 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.07.16 21:46:36 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2013.07.16 21:45:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2013.07.16 21:44:40 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2013.07.16 21:38:55 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll [2013.07.16 21:32:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Ahead [2013.07.16 21:32:32 | 000,000,000 | ---D | C] -- C:\Program Files\NeroInstall.bak [2013.07.16 21:32:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Nero 8 [2013.07.16 21:31:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2013.07.16 21:29:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Nero [2013.07.16 21:28:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2013.07.16 21:28:09 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2013.07.16 21:28:08 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2013.07.16 21:18:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2013.07.16 21:10:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013.07.16 21:06:44 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013.07.16 21:01:56 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2013.07.16 21:01:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Desktop\Pacific Tech - NuCalc 2.0 [2013.07.16 21:01:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2013.07.16 20:58:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2013.07.16 20:58:07 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2013.07.16 20:58:05 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2013.07.16 20:58:03 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2013.07.16 20:58:01 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2013.07.16 20:57:58 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2013.07.16 20:57:55 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2013.07.16 20:57:52 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2013.07.16 20:57:49 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2013.07.16 20:57:46 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2013.07.16 20:57:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2013.07.16 20:57:41 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2013.07.16 20:57:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2013.07.16 20:57:20 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2013.07.16 20:57:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2013.07.16 20:57:19 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2013.07.16 20:57:19 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2013.07.16 20:56:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2013.07.16 20:49:52 | 009,721,960 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.EXE [2013.07.16 20:49:52 | 001,522,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe [2013.07.16 20:49:52 | 000,891,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.CPL [2013.07.16 20:49:52 | 000,359,016 | ---- | C] (Realtek Semiconductor Crop.) -- C:\WINDOWS\vncutil.exe [2013.07.16 20:49:52 | 000,084,584 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2013.07.16 20:49:51 | 005,444,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.sys [2013.07.16 20:49:51 | 000,129,640 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\RtkAudioService.exe [2013.07.16 20:49:51 | 000,079,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoInstIIXP.dll [2013.07.16 20:49:51 | 000,011,368 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RtkCoLDRXP.dll [2013.07.16 20:49:50 | 002,180,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe [2013.07.16 20:49:50 | 001,395,800 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\Monfilt.sys [2013.07.16 20:49:48 | 002,815,592 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\ALCWZRD.EXE [2013.07.16 20:49:48 | 001,691,480 | ---- | C] (Creative) -- C:\WINDOWS\System32\drivers\Ambfilt.sys [2013.07.16 20:49:48 | 000,285,288 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2013.07.16 20:49:48 | 000,064,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\ALCMTR.EXE [2013.07.16 20:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013.07.16 20:49:32 | 002,079,816 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2013.07.16 20:49:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013.07.16 20:44:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\My Documents\Downloads [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Macromedia [2013.07.16 20:42:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Application Data\Adobe [2013.07.16 20:40:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Downloaded Installations [2013.07.16 20:31:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2013.07.16 20:29:16 | 000,692,104 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2013.07.16 20:29:16 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2013.07.16 20:27:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe [2013.07.16 20:26:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Adobe [2013.07.16 20:24:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.07.16 20:16:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google [2013.07.16 20:01:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2013.07.16 20:00:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Korisnik\Local Settings\Application Data\Identities [2013.07.16 19:57:44 | 000,000,000 | ---D | C] -- C:\Intel [2013.07.16 19:49:17 | 001,371,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll [2013.07.16 19:49:17 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll [2013.07.16 19:49:15 | 000,086,016 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\WINDOWS\System32\dllcache\sl_anet.acm [2013.07.16 19:49:14 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaud32.acm [2013.07.16 19:49:14 | 000,290,816 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\System32\dllcache\l3codeca.acm [2013.07.16 19:49:11 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpcdll.dll [2013.07.16 19:49:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys [2013.07.16 19:49:06 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll [2013.07.16 19:49:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe [2013.07.16 19:49:05 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll [2013.07.16 19:49:05 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll [2013.07.16 19:49:05 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll [2013.07.16 19:49:05 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll [2013.07.16 19:49:05 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll [2013.07.16 19:49:05 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll [2013.07.16 19:49:05 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll [2013.07.16 19:49:05 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2013.07.16 19:49:05 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll [2013.07.16 19:49:05 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll [2013.07.16 19:49:05 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll [2013.07.16 19:49:05 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll [2013.07.16 19:49:05 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax [2013.07.16 19:49:05 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax [2013.07.16 19:49:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2013.07.16 19:49:04 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll [2013.07.16 19:49:04 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll [2013.07.16 19:49:04 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll [2013.07.16 19:49:04 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll [2013.07.16 19:49:04 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll [2013.07.16 19:49:04 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll [2013.07.16 19:49:04 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll [2013.07.16 19:49:04 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll [2013.07.16 19:49:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll [2013.07.16 19:49:03 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll [2013.07.16 19:49:03 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll [2013.07.16 19:49:03 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll [2013.07.16 19:49:03 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll [2013.07.16 19:49:03 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll [2013.07.16 19:49:03 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe [2013.07.16 19:49:03 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll [2013.07.16 19:49:03 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll [2013.07.16 19:49:03 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll [2013.07.16 19:49:03 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll [2013.07.16 19:49:03 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll [2013.07.16 19:49:03 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe [2013.07.16 19:49:03 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll [2013.07.16 19:49:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll [2013.07.16 19:49:02 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll [2013.07.16 19:49:02 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll [2013.07.16 19:49:02 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll [2013.07.16 19:49:02 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2013.07.16 19:49:02 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll [2013.07.16 19:49:02 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll [2013.07.16 19:49:02 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll [2013.07.16 19:49:02 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll [2013.07.16 19:49:02 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll [2013.07.16 19:49:02 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe [2013.07.16 19:49:02 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll [2013.07.16 19:49:02 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll [2013.07.16 19:49:02 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2013.07.16 19:49:02 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe [2013.07.16 19:49:02 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax [2013.07.16 19:49:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe [2013.07.16 19:49:01 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe [2013.07.16 19:49:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2013.07.16 19:49:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2013.07.16 19:47:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2013.07.16 19:47:38 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlimport.exe [2013.07.16 19:46:31 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2013.07.16 19:46:31 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2013.07.16 19:46:31 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2013.07.16 19:46:31 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2013.07.16 19:46:31 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2013.07.16 19:46:31 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2013.07.16 19:46:31 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2013.07.16 19:46:31 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2013.07.16 19:46:31 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2013.07.16 19:46:31 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2013.07.16 19:46:31 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2013.07.16 19:46:31 | 000,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll [2013.07.16 19:46:31 | 000,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll [2013.07.16 19:46:31 | 000,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll [2013.07.16 19:46:31 | 000,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll [2013.07.16 19:46:31 | 000,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll [2013.07.16 19:46:31 | 000,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll [2013.07.16 19:46:31 | 000,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll [2013.07.16 19:46:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2013.07.16 19:46:30 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2013.07.16 19:46:30 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2013.07.16 19:46:30 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2013.07.16 19:46:30 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2013.07.16 19:46:30 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2013.07.16 19:46:30 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2013.07.16 19:46:30 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2013.07.16 19:46:30 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2013.07.16 19:46:30 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys [2013.07.16 19:46:30 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2013.07.16 19:46:30 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2013.07.16 19:46:30 | 000,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll [2013.07.16 19:46:30 | 000,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll [2013.07.16 19:46:30 | 000,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll [2013.07.16 19:46:30 | 000,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll [2013.07.16 19:46:30 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2013.07.16 19:46:30 | 000,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2013.07.16 19:46:30 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2013.07.16 19:46:30 | 000,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll [2013.07.16 19:46:29 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2013.07.16 19:46:29 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys Quote
jbradvi9 Posted July 22, 2013 Author Posted July 22, 2013 part1 (its upper part) OTL.Txt OTL logfile created on: 21.7.2013 19:07:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Korisnik\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 0000041A | Country: Croatia | Language: HRV | Date Format: d.M.yyyy 1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,26% Memory free 3,84 Gb Paging File | 2,63 Gb Available in Paging File | 68,53% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 149,04 Gb Total Space | 104,77 Gb Free Space | 70,30% Space Free | Partition Type: NTFS Drive D: | 83,84 Gb Total Space | 53,29 Gb Free Space | 63,55% Space Free | Partition Type: NTFS Computer Name: NONE-BB75D357C4 | User Name: Korisnik | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Korisnik\My Documents\Downloads\OTL.scr (OldTimer Tools) PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.) PRC - C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) PRC - C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) PRC - C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) PRC - C:\Program Files\Ad-Aware Antivirus\AdAware.exe (Lavasoft Limited) PRC - C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) PRC - C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe (RealNetworks, Inc.) PRC - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () PRC - C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) PRC - C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) PRC - C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Marker.exe (SMART Technologies ULC) PRC - C:\Program Files\SMART Technologies\Education Software\Aware.exe (SMART Technologies ULC) PRC - C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) PRC - C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) PRC - C:\WINDOWS\system32\osk.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) PRC - C:\WINDOWS\system32\msswchx.exe (Microsoft Corporation) ========== Modules (No Company Name) ========== MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtGui4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtNetwork4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.qt.vc100.4.7_9ca15c999435ee05_1.0.1.0_x-ww_b2691301\QtCore4.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostthread.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_223d02ca\boost_thread-vc100-mt-1_44.dll () MOD - C:\WINDOWS\WinSxS\x86_smarttech.boostdatetime.vc100.1.44_9ca15c999435ee05_1.0.1.0_x-ww_c41aee2c\boost_date_time-vc100-mt-1_44.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppgooglenaclpluginchrome.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll () MOD - C:\Program Files\Google\Chrome\Application\28.0.1500.72\ffmpegsumo.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libMachoUniv.dll () MOD - C:\Program Files\Ad-Aware Antivirus\Definitions\libBase64.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.HRV () MOD - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Hook\rndlpepperbrowserrecordhelper.dll () MOD - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtGuiPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtNetworkPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtXmlPrl4.dll () MOD - C:\Program Files\Parallels\Parallels Workstation\Application\QtCorePrl4.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll () MOD - C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll () MOD - C:\WINDOWS\system32\msdmo.dll () MOD - C:\WINDOWS\system32\devenum.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\EnumDevLib.dll () MOD - C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\acAuth.dll () ========== Services (SafeList) ========== SRV - (HidServ) -- %SystemRoot%\System32\hidserv.dll File not found SRV - (AdobeFlashPlayerUpdateSvc) -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (JavaQuickStarterService) -- C:\Program Files\Java\jre7\bin\jqs.exe (Oracle Corporation) SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (Ad-Aware Service) -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe (Lavasoft Limited) SRV - (RealNetworks Downloader Resolver Service) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe () SRV - (SBAMSvc) -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe (GFI Software) SRV - (Parallels Virtualization Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_disp_service.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (Parallels Networking Service) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_naptd.exe (Parallels Holdings, Ltd. and its affiliates.) SRV - (prl_mount_svc) -- C:\Program Files\Parallels\Parallels Workstation\Application\prl_mount_svc.exe () SRV - (SMART Display Controller) -- C:\Program Files\SMART Technologies\Education Software\UCService.exe (SMART Technologies ULC) SRV - (SMART Board Service) -- C:\Program Files\SMART Technologies\Education Software\SMARTBoardService.exe (SMART Technologies) ========== Driver Services (SafeList) ========== DRV - (WDICA) -- File not found DRV - (PDRFRAME) -- File not found DRV - (PDRELI) -- File not found DRV - (PDFRAME) -- File not found DRV - (PDCOMP) -- File not found DRV - (PCIDump) -- File not found DRV - (lbrtfdc) -- File not found DRV - (i2omgmt) -- File not found DRV - (Changer) -- File not found DRV - (gfibto) -- C:\WINDOWS\system32\drivers\gfibto.sys (GFI Software) DRV - (gfiark) -- C:\WINDOWS\system32\drivers\gfiark.sys (ThreatTrack Security) DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.) DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software) DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software) DRV - (StarOpen) -- C:\WINDOWS\System32\drivers\StarOpen.sys () DRV - (prl_dsk) -- C:\Program Files\Parallels\Parallels Workstation\Drivers\prl_dsk.sys (Windows ® Codename Longhorn DDK provider) DRV - (PRLVNIC) -- C:\WINDOWS\system32\drivers\prl_vnic.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels USB Device Manager) -- C:\WINDOWS\system32\drivers\prl_usb_mng32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (PRLUSBDEV) -- C:\WINDOWS\system32\drivers\prl_usb_dev32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (prl_net) -- C:\WINDOWS\system32\drivers\prl_net.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (Parallels Virtualization Hypervisor) -- C:\WINDOWS\system32\drivers\prl_hypervisor_32.sys (Parallels Holdings, Ltd. and its affiliates.) DRV - (cpudrv) -- C:\Program Files\SystemRequirementsLab\cpudrv.sys () DRV - (SCDEmu) -- C:\WINDOWS\System32\drivers\scdemu.sys (PowerISO Computing, Inc.) DRV - (Tcpip6) -- C:\WINDOWS\system32\drivers\tcpip6.sys (Microsoft Corporation) DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.) DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative) DRV - (RTL8187B) -- C:\WINDOWS\system32\drivers\RTL8187B.sys (Realtek Semiconductor Corporation ) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/ IE - HKCU\..\URLSearchHook: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - No CLSID value found IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: "false" FF - prefs.js..browser.startup.homepage: "http://google.hr" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@caminova.com/DjVuPlugin: C:\Program Files\Caminova\Document Express DjVu Plug-in\npdjvu.dll (Caminova, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013.07.17 01:56:14 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013.07.16 19:26:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Korisnik\Application Data\Mozilla\Extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013.07.20 22:46:41 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions [2013.07.20 22:47:24 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2013.07.20 22:47:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2) [2013.07.19 11:04:37 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated(2)\browser(2)\extensions(2)\{972ce4c6-7e08-4474-a285-3208198ce6fd}(2) [2013.07.17 01:56:14 | 000,000,000 | ---D | M] (RealDownloader) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\REALNETWORKS\REALDOWNLOADER\BROWSERPLUGINS\FIREFOX\EXT ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://google.hr/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\28.0.1500.72\pdf.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Google Docs = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google disk = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google pretra\u017Eivanje = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: RealDownloader = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\ CHR - Extension: Gmail = C:\Documents and Settings\Korisnik\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2004.08.04 14:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader) O2 - BHO: (SMART Notebook Download Utility) - {67BCF957-85FC-4036-8DC4-D4D80E00A77B} - C:\Program Files\SMART Technologies\Education Software\Win32\NotebookPlugin.dll (SMART Technologies ULC.) O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (EpsonToolBandKicker Class) - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O3 - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.) O3 - HKLM\..\Toolbar: (EPSON Web-To-Page) - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [Ad-Aware Antivirus] C:\Program Files\Ad-Aware Antivirus\AdAwareLauncher.exe (Lavasoft Limited) O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\Documents and Settings\All Users\Application Data\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft) O4 - HKLM..\Run: [EEventManager] C:\Program Files\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION) O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (PowerISO Computing, Inc.) O4 - HKLM..\Run: [search Protection] C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe (Lavasoft) O4 - HKLM..\Run: [sMART Board Tools] C:\Program Files\SMART Technologies\Education Software\SMARTBoardTools.exe (SMART Technologies ULC) O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.) O4 - HKCU..\Run: [EPSON SX210 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE (SEIKO EPSON CORPORATION) O4 - HKCU..\Run: [indxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\REALTEK USB Wireless LAN Utility.lnk = C:\Program Files\REALTEK USB Wireless LAN Driver and Utility\RtWLan.exe (Realtek Semiconductor Corp.) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\On-Screen Keyboard.lnk = C:\WINDOWS\system32\osk.exe (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\Korisnik\Start Menu\Programs\Startup\Prečac do Podaci.lnk = C:\Documents and Settings\Korisnik\Desktop\Podaci.txt () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B74E991F-D7D7-4B78-A51A-A639F8069534}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013.07.16 17:20:52 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) Quote
etavares Posted July 23, 2013 Posted July 23, 2013 Hello, jbradvi9. P2P Warning and Request The log shows that you have been using so called peer-to-peer or file-sharing programmes (in your case BitTorrent). These programmes allow to share files between users as the name(s) suggest. In today's world the cyber crime has come a long way and any means is used to infect personal computers to make use of their stored data or machine power for further propagation of their malware files. A popular means is the use of file-sharing tools as a tremendous amount of prospective victims can be reached through it. It is therefore possible to be infected by downloading manipulated files via peer-to-peer tools and thus suggested to be used with intense care. I recommend that you uninstall this program. That is optional, however. If you decide to not uninstall, please refrain from using it until I let you know your computer is clean. Step 1 Next, please download ComboFix from one of these locations: Bleepingcomputer InfoSpyware * IMPORTANT !!! Save ComboFix.exe to your Desktop as etavaresCF.exe Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.) Double click on etavaresCF.exe & follow the prompts. As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware. Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console. **Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures. http://img.photobucket.com/albums/v706/ried7/RcAuto1.gif Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message: http://img.photobucket.com/albums/v706/ried7/whatnext.png Click on Yes, to continue scanning for malware. When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply, along with any symptoms that are present after it runs. Note: After running Combofix, you may receive an error about "illegal operation on a registry key that has been marked for deletion." If you receive this error, please reboot and it should disappear. etavares Quote etavares is a member of:Alliance of Security Analysis ProfessionalsUnified Network of Instructors and Trained Eliminators
etavares Posted July 26, 2013 Posted July 26, 2013 Hi, sorry for the delay. I posted several days ago, but for some reason it was moderated and I needed to approve the post. That was odd, forum bug probably. -etavares Quote etavares is a member of:Alliance of Security Analysis ProfessionalsUnified Network of Instructors and Trained Eliminators
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.