Otl
Otl
Otl
bFlt)
DRV - [2010.11.20 23:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 23:29:03 | 000,112,640 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbhub.sys -- (tsus
bhub)
DRV - [2010.11.20 23:29:03 | 000,077,184 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Sy
nth3dVsc)
DRV - [2010.11.20 23:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010.11.20 23:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Ke
rnel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 23:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storv
sc)
DRV - [2010.11.20 23:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsb
GD)
DRV - [2010.11.20 23:29:03 | 000,025,600 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (term
inpt)
DRV - [2010.11.20 23:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBu
sHID)
DRV - [2010.11.20 23:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Ke
rnel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap
)
DRV - [2010.04.07 13:16:16 | 000,376,160 | ---- | M] (Ralink Technology, Corp.)
[Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netr61.sys -- (rt6
1x86)
DRV - [2010.02.11 09:42:22 | 004,450,816 | ---- | M] (ATI Technologies Inc.) [Ke
rnel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atik
mdag)
DRV - [2009.07.14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [
Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009.07.14 00:02:46 | 001,096,704 | ---- | M] (Atheros Communications, In
c.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (a
thr)
DRV - [2009.06.19 04:45:02 | 004,172,832 | ---- | M] (Realtek Semiconductor Corp
.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVAC.SYS -- (
ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2009.03.31 10:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Ru
nning] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2007.09.17 16:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand
| Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\..\URLSearchHook: {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program
Files\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {8F5905FB-ADB1-4477-82FC-D397C1130E45}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http:/
/www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.c
onduit.com?SearchSource=10&CUI=UN18611710268783201&UM=1&ctid=CT3289075
IE - HKCU\..\URLSearchHook: {96f454ea-9d38-474f-b504-56193e00c1a5} - C:\Program
Files\uTorrentControl_v6\prxtbuTor.dll (Conduit Ltd.)
IE - HKCU\..\URLSearchHook: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program
Files\YTD Toolbar\IE\7.0\ytdToolbarIE.dll (Spigot, Inc.)
IE - HKCU\..\SearchScopes,DefaultScope = {8F5905FB-ADB1-4477-82FC-D397C1130E45}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http:/
/www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{3F254C0D-8E3B-4BD9-B449-4465F3006693}: "URL" = http:/
/search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={sear
chTerms}
IE - HKCU\..\SearchScopes\{8F5905FB-ADB1-4477-82FC-D397C1130E45}: "URL" = http:/
/search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT328907
5&CUI=UN18611710268783201&UM=1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEna
ble" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
FF - prefs.js..browser.startup.homepage: "www.google.ba"
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Ma
cromed\Flash\NPSWF32_11_6_602_180.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows
\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Progr
am Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not foun
d
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Fi
les\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11
.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\speedanalysis@Speed
Analysis.com: C:\Users\anadin\AppData\Roaming\Mozilla\Extensions\speedanalysis@S
peedAnalysis.com [2013.03.13 21:06:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Comp
onents: C:\Program Files\Mozilla Firefox\components [2013.03.25 14:33:34 | 000,0
00,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 19.0.2\extensions\\Plug
ins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\speedanalysis@SpeedA
nalysis.com: C:\Users\anadin\AppData\Roaming\Mozilla\Extensions\speedanalysis@Sp
eedAnalysis.com [2013.03.13 21:06:13 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{0F827075-B026-42F3885D-98981EE7B1AE}: C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5
c-a2f3-533ad2fec8e8}\FirefoxExtension [2013.03.13 21:07:29 | 000,000,000 | ---D
| M]
[2013.03.13 21:06:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\anadi
n\AppData\Roaming\Mozilla\Extensions
[2013.03.13 21:06:13 | 000,000,000 | ---D | M] (SpeedAnalysis.com) -- C:\Users\a
nadin\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com
[2013.03.26 21:24:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\anadi
n\AppData\Roaming\Mozilla\Firefox\Profiles\il2bo08n.default\extensions
[2013.03.26 21:24:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\anadi
n\AppData\Roaming\Mozilla\Firefox\Profiles\sx74n5fl.default\Extensions
| ---D | C] -- C:\Windows\System32\searchplug
| ---D | C] -- C:\Windows\System32\Extensions
| ---D | C] -- C:\Users\anadin\Desktop\sa mob
| ---D | C] -- C:\Users\anadin\Documents\NPS
| ---D | C] -- C:\Users\anadin\Desktop\aplika
| ---D | C] -- C:\ProgramData\PC Suite
| ---D | C] -- C:\Users\anadin\AppData\Roamin
| ---D | C] -- C:\Program Files\MarkAnyConten
| ---- | C] (Nokia) -- C:\Windows\System32\nm
| ---D | C] -- C:\Program Files\DIFX
| ---- | C] (Nokia) -- C:\Windows\System32\dr
| ---D | C] -- C:\Windows\System32\DRVSTORE
| ---D | C] -- C:\Windows\System32\Samsung_US
| ---- | C] (Teruten) -- C:\Windows\System32\
| ---D | C] -- C:\Users\anadin\Documents\My N
| ---D | C] -- C:\Users\anadin\AppData\Roamin
| ---D | C] -- C:\Program Files\InstallShield
| ---D | C] -- C:\ProgramData\Microsoft\Windo
PC Studio
| ---D | C] -- C:\Program Files\MarkAny
| ---D | C] -- C:\Program Files\PC Connectivi
| ---D | C] -- C:\Program Files\Samsung
| ---D | C] -- C:\Users\anadin\AppData\Local\
Downloaded Installations
[2013.03.26 22:07:35 | 000,000,000 | ---D | C]
g\Microsoft\Windows\Start Menu\Programs\NetTV+
[2013.03.26 22:07:35 | 000,000,000 | ---D | C]
ws\Start Menu\Programs\NetTV+ Player4
[2013.03.26 22:07:19 | 000,000,000 | ---D | C]
[2013.03.26 21:26:53 | 000,000,000 | ---D | C]
[2013.03.26 21:24:47 | 000,000,000 | ---D | C]
in Express
[2013.03.26 21:24:46 | 000,000,000 | ---D | C]
ate, LLC
[2013.03.26 21:24:46 | 000,000,000 | ---D | C]
ws\Start Menu\Programs\SmileysWeLove for IE
[2013.03.26 21:15:14 | 000,000,000 | ---D | C]
g\TuneUp Software
[2013.03.26 21:15:10 | 000,000,000 | ---D | C]
ies 2013
[2013.03.26 21:15:08 | 000,000,000 | ---D | C]
[2013.03.26 21:15:04 | 000,000,000 | -HSD | C]
42C9-BFFC-4A68511E9E4F}
[2013.03.26 21:15:04 | 000,000,000 | -H-D | C]
[2013.03.26 21:14:54 | 000,000,000 | ---D | C]
ws\Start Menu\Programs\DAEMON Tools Lite
[2013.03.26 21:14:14 | 000,242,240 | ---- | C]
m32\drivers\dtsoftbus01.sys
[2013.03.26 21:14:06 | 000,000,000 | ---D | C]
g\DAEMON Tools Lite
[2013.03.26 21:13:59 | 000,000,000 | ---D | C]
g\OpenCandy
[2013.03.26 21:13:59 | 000,000,000 | ---D | C]
Lite
[2013.03.26 21:13:06 | 000,000,000 | ---D | C]
te
[2013.03.25 14:33:35 | 000,000,000 | ---D | C]
enance Service
[2013.03.25 14:33:33 | 000,000,000 | ---D | C]
ox
[2013.03.21 18:35:47 | 000,000,000 | ---D | C]
g\GRETECH
[2013.03.20 22:24:08 | 000,000,000 | ---D | C]
ws\Start Menu\Programs\MCShield
[2013.03.20 22:24:08 | 000,000,000 | ---D | C]
[2013.03.20 22:24:08 | 000,000,000 | ---D | C]
[2013.03.20 18:02:51 | 000,000,000 | ---D | C]
g\LinkeSOFT
[2013.03.17 19:43:26 | 000,000,000 | ---D | C]
[2013.03.17 19:42:44 | 000,000,000 | RHSD | C]
I semestar
[2013.03.16 10:12:09 | 000,000,000 | ---D | C]
ws\Start Menu\Programs\Winamp
[2013.03.16 10:12:07 | 002,414,360 | ---- | C]
dows\System32\d3dx9_31.dll
[2013.03.16 10:12:07 | 001,892,184 | ---- | C]
dows\System32\D3DX9_42.dll
[2013.03.16 10:06:58 | 000,000,000 | ---D | C]
g\Microsoft\Windows\Start Menu\Programs\Winamp
[2013.03.16 10:06:58 | 000,000,000 | ---D | C]
[2013.03.16 10:06:50 | 000,000,000 | ---D | C]
PX Storage Engine
[2013.03.16 10:06:48 | 000,000,000 | ---D | C]
-- C:\Users\anadin\AppData\Roamin
Player4
-- C:\ProgramData\Microsoft\Windo
-- C:\Program Files\NETTV4
-- C:\Windows\Sun
-- C:\Users\anadin\Documents\Add-- C:\Program Files\SqueekyChocol
-- C:\ProgramData\Microsoft\Windo
-- C:\Users\anadin\AppData\Roamin
-- C:\Program Files\TuneUp Utilit
-- C:\ProgramData\TuneUp Software
-- C:\ProgramData\{C4ABDBC8-1C81-- C:\ProgramData\Common Files
-- C:\ProgramData\Microsoft\Windo
(DT Soft Ltd) -- C:\Windows\Syste
-- C:\Users\anadin\AppData\Roamin
-- C:\Users\anadin\AppData\Roamin
-- C:\Program Files\DAEMON Tools
-- C:\ProgramData\DAEMON Tools Li
-- C:\Program Files\Mozilla Maint
-- C:\Program Files\Mozilla Firef
-- C:\Users\anadin\AppData\Roamin
-- C:\ProgramData\Microsoft\Windo
-- C:\ProgramData\MCShield
-- C:\Program Files\MCShield
-- C:\Users\anadin\AppData\Roamin
-- C:\Users\anadin\Desktop\VI sem
-- C:\Users\anadin\Desktop\faks V
-- C:\ProgramData\Microsoft\Windo
(Microsoft Corporation) -- C:\Win
(Microsoft Corporation) -- C:\Win
-- C:\Users\anadin\AppData\Roamin
Detector Plug-in
-- C:\Program Files\Winamp Detect
-- C:\Program Files\Common Files\
-- C:\Users\anadin\AppData\Roamin
g\Winamp
[2013.03.16 10:06:48 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2013.03.14 18:32:58 | 000,000,000 | RHSD | C] -- C:\configuration
[2013.03.14 18:32:56 | 000,000,000 | RHSD | C] -- C:\OptionalComponents
[2013.03.14 18:26:28 | 000,000,000 | ---D | C] -- C:\Program Files\YTD Toolbar
[2013.03.14 18:26:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\
Spigot
[2013.03.14 18:26:28 | 000,000,000 | ---D | C] -- C:\Program Files\Application U
pdater
[2013.03.14 18:26:22 | 000,000,000 | ---D | C] -- C:\ProgramData\YTD Video Downl
oader
[2013.03.14 18:26:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\YTD Video Downloader
[2013.03.14 18:24:46 | 000,000,000 | ---D | C] -- C:\ProgramData\YouTube Downloa
der
[2013.03.14 18:24:41 | 000,000,000 | ---D | C] -- C:\Program Files\YouTube Downl
oader
[2013.03.14 17:36:24 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Local\
CRE
[2013.03.14 17:35:54 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2013.03.14 17:35:46 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrentContr
ol_v6
[2013.03.14 17:35:46 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Local\
Conduit
[2013.03.14 17:34:32 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2013.03.14 17:34:14 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Roamin
g\uTorrent
[2013.03.14 17:33:34 | 000,000,000 | ---D | C] -- C:\Program Files\MSECache
[2013.03.14 05:06:05 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2013.03.14 00:31:04 | 000,000,000 | ---D | C] -- C:\Program Files\Sonic Foundry
Plug-Ins
[2013.03.14 00:31:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\ExpressFX 2
[2013.03.14 00:28:39 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Roamin
g\Microsoft\Windows\Start Menu\Programs\Sonic Foundry
[2013.03.14 00:28:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\Sonic Foundry
[2013.03.14 00:28:33 | 000,954,128 | ---- | C] (Microsoft Corporation) -- C:\Win
dows\System32\temp.000
[2013.03.14 00:28:33 | 000,424,960 | ---- | C] (Voxware, Inc.) -- C:\Windows\Sys
tem32\msms001.vwp
[2013.03.14 00:28:33 | 000,281,600 | ---- | C] (Voxware, Inc.) -- C:\Windows\Sys
tem32\mvoice.vwp
[2013.03.14 00:28:33 | 000,278,016 | ---- | C] (Voxware, Inc.) -- C:\Windows\Sys
tem32\vct3216.dll
[2013.03.14 00:28:33 | 000,276,992 | ---- | C] (Fraunhofer Institut Integrierte
Schaltungen IIS) -- C:\Windows\System32\temp.001
[2013.03.14 00:28:33 | 000,089,088 | ---- | C] (Sipro Lab Telecom Inc.) -- C:\Wi
ndows\System32\sl_anet.acm
[2013.03.14 00:28:33 | 000,082,944 | ---- | C] (Voxware, Inc.) -- C:\Windows\Sys
tem32\vct3216.acm
[2013.03.14 00:28:33 | 000,058,938 | ---- | C] (Microsoft Corporation) -- C:\Win
dows\System32\atlu.dll
[2013.03.14 00:28:33 | 000,029,184 | ---- | C] (Blue Sky Software) -- C:\Windows
\System32\popup.ocx
[2013.03.14 00:28:33 | 000,000,000 | ---D | C] -- C:\Program Files\Sonic Foundry
[2013.03.14 00:28:06 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2013.03.14 00:27:46 | 000,306,688 | ---- | C] (InstallShield Software Corporati
on) -- C:\Windows\IsUninst.exe
[2013.03.13 22:29:20 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Win
dows\System32\mdimon.dll
[2013.03.13 22:27:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\Microsoft Office
[2013.03.13 22:27:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\
L&H
[2013.03.13 22:26:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Act
iveSync
[2013.03.13 22:26:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\
DESIGNER
[2013.03.13 22:26:10 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Wor
ks
[2013.03.13 22:26:01 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Vis
ual Studio
[2013.03.13 22:25:28 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2013.03.13 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2013.03.13 22:25:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Off
ice
[2013.03.13 21:42:42 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Roamin
g\Macromedia
[2013.03.13 21:42:42 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Local\
Macromedia
[2013.03.13 21:41:34 | 000,693,976 | ---- | C] (Adobe Systems Incorporated) -- C
:\Windows\System32\FlashPlayerApp.exe
[2013.03.13 21:41:34 | 000,073,432 | ---- | C] (Adobe Systems Incorporated) -- C
:\Windows\System32\FlashPlayerCPLApp.cpl
[2013.03.13 21:41:32 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2013.03.13 21:37:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013.03.13 21:37:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\
Java
[2013.03.13 21:14:26 | 000,861,088 | ---- | C] (Oracle Corporation) -- C:\Window
s\System32\npDeployJava1.dll
[2013.03.13 21:14:26 | 000,782,240 | ---- | C] (Oracle Corporation) -- C:\Window
s\System32\deployJava1.dll
[2013.03.13 21:14:26 | 000,262,560 | ---- | C] (Oracle Corporation) -- C:\Window
s\System32\javaws.exe
[2013.03.13 21:14:18 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Window
s\System32\javaw.exe
[2013.03.13 21:14:18 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Window
s\System32\java.exe
[2013.03.13 21:14:18 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\Window
s\System32\WindowsAccessBridge.dll
[2013.03.13 21:14:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2013.03.13 21:07:32 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Roamin
g\Microsoft\Windows\Start Menu\Programs\BrowserProtect
[2013.03.13 21:07:28 | 000,000,000 | ---D | C] -- C:\ProgramData\BrowserProtect
[2013.03.13 21:07:05 | 000,000,000 | ---D | C] -- C:\Program Files\BabylonToolba
r
[2013.03.13 21:06:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\Haali Media Splitter
[2013.03.13 21:06:36 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Roamin
g\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
[2013.03.13 21:06:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\ffdshow
[2013.03.13 21:06:11 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Roamin
g\SpeedanAlysis
[2013.03.13 21:06:03 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Roamin
g\PerformerSoft
[2013.03.13 21:06:01 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Roamin
g\Babylon
[2013.03.13 21:06:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
dows\System32\atioglxx.dll
[2013.03.13 20:45:55 | 000,053,248 | ---- | C] (Advanced Micro Devices Inc.) -C:\Windows\System32\aticalrt.dll
[2013.03.13 20:45:55 | 000,012,288 | ---- | C] (AMD) -- C:\Windows\System32\atim
uixx.dll
[2013.03.13 20:45:54 | 003,235,840 | ---- | C] (Advanced Micro Devices Inc.) -C:\Windows\System32\aticaldd.dll
[2013.03.13 20:45:54 | 000,278,528 | ---- | C] (ATI Technologies Inc.) -- C:\Win
dows\System32\Ati2evxx.dll
[2013.03.13 20:45:54 | 000,135,168 | ---- | C] (Advanced Micro Devices, Inc.) -C:\Windows\System32\atiadlxx.dll
[2013.03.13 20:45:54 | 000,053,248 | ---- | C] (ATI Technologies Inc.) -- C:\Win
dows\System32\drivers\ati2erec.dll
[2013.03.13 20:45:54 | 000,053,248 | ---- | C] (Advanced Micro Devices Inc.) -C:\Windows\System32\aticalcl.dll
[2013.03.13 20:45:54 | 000,051,712 | ---- | C] (Advanced Micro Devices, Inc. ) - C:\Windows\System32\amdpcom32.dll
[2013.03.13 20:45:54 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Wi
ndows\System32\ati2edxx.dll
[2013.03.13 20:44:12 | 004,172,832 | ---- | C] (Realtek Semiconductor Corp.) -C:\Windows\System32\drivers\RTKVAC.SYS
[2013.03.13 20:43:56 | 000,223,776 | ---- | C] (Realtek Semiconductor Corp.) -C:\Windows\Alcrmv.exe
[2013.03.13 20:43:54 | 019,036,704 | ---- | C] (Realtek Semiconductor Corp.) -C:\Windows\System32\ALSNDMGR.CPL
[2013.03.13 20:35:32 | 000,000,000 | R--D | C] -- C:\Users\anadin\AppData\Roamin
g\Microsoft\Windows\Start Menu\Programs\Startup
[2013.03.13 20:35:32 | 000,000,000 | R--D | C] -- C:\Users\anadin\Searches
[2013.03.13 20:35:32 | 000,000,000 | R--D | C] -- C:\Users\anadin\AppData\Roamin
g\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2013.03.13 20:35:32 | 000,000,000 | -H-D | C] -- C:\Users\anadin\Application Da
ta\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2013.03.13 20:35:23 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Roamin
g\Identities
[2013.03.13 20:35:20 | 000,000,000 | R--D | C] -- C:\Users\anadin\Contacts
[2013.03.13 20:35:10 | 000,000,000 | ---D | C] -- C:\Users\anadin\AppData\Local\
VirtualStore
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\AppData\Local\
Temporary Internet Files
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\Templates
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\Start Menu
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\SendTo
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\Recent
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\PrintHood
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\NetHood
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\Documents\My V
ideos
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\Documents\My P
ictures
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\Documents\My M
usic
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\My Documents
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\Local Settings
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\AppData\Local\
History
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\Cookies
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\Application Da
ta
[2013.03.13 20:35:05 | 000,000,000 | -HSD | C] -- C:\Users\anadin\AppData\Local\
Application Data
illa Firefox.lnk
[2013.03.18 19:52:51 | 000,000,622 | ---- | M] () -- C:\Users\anadin\Documents\F
C.xspf
[2013.03.16 10:12:09 | 000,000,961 | ---- | M] () -- C:\Users\anadin\Application
Data\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk
[2013.03.16 10:12:09 | 000,000,937 | ---- | M] () -- C:\Users\Public\Desktop\Win
amp.lnk
[2013.03.14 18:32:58 | 000,000,583 | ---- | M] () -- C:\Users\anadin\AppData\Roa
ming\Microsoft\Windows\Start Menu\Programs\Startup\configuration.lnk
[2013.03.14 18:26:14 | 000,001,004 | ---- | M] () -- C:\Users\Public\Desktop\YTD
Video Downloader.lnk
[2013.03.14 17:34:42 | 000,000,937 | ---- | M] () -- C:\Users\anadin\Application
Data\Microsoft\Internet Explorer\Quick Launch\Torrent.lnk
[2013.03.14 17:34:42 | 000,000,913 | ---- | M] () -- C:\Users\Public\Desktop\Torr
ent.lnk
[2013.03.14 00:28:39 | 000,002,005 | ---- | M] () -- C:\Users\anadin\Desktop\Sou
nd Forge 5.0.lnk
[2013.03.13 23:44:26 | 000,406,912 | ---- | M] () -- C:\Windows\System32\FNTCACH
E.DAT
[2013.03.13 22:31:27 | 000,000,376 | ---- | M] () -- C:\Windows\ODBC.INI
[2013.03.13 21:41:34 | 000,693,976 | ---- | M] (Adobe Systems Incorporated) -- C
:\Windows\System32\FlashPlayerApp.exe
[2013.03.13 21:41:34 | 000,073,432 | ---- | M] (Adobe Systems Incorporated) -- C
:\Windows\System32\FlashPlayerCPLApp.cpl
[2013.03.13 21:14:11 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\Window
s\System32\WindowsAccessBridge.dll
[2013.03.13 21:14:10 | 000,861,088 | ---- | M] (Oracle Corporation) -- C:\Window
s\System32\npDeployJava1.dll
[2013.03.13 21:14:10 | 000,782,240 | ---- | M] (Oracle Corporation) -- C:\Window
s\System32\deployJava1.dll
[2013.03.13 21:14:10 | 000,262,560 | ---- | M] (Oracle Corporation) -- C:\Window
s\System32\javaws.exe
[2013.03.13 21:14:10 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Window
s\System32\javaw.exe
[2013.03.13 21:14:10 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Window
s\System32\java.exe
[2013.03.13 20:52:28 | 000,001,024 | ---- | M] () -- C:\Users\Public\Desktop\VLC
media player.lnk
[2013.03.13 20:50:20 | 000,001,109 | ---- | M] () -- C:\Users\anadin\Application
Data\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk
[2013.03.13 20:50:20 | 000,001,085 | ---- | M] () -- C:\Users\Public\Desktop\GOM
Player.lnk
[2013.03.13 20:39:21 | 000,001,407 | ---- | M] () -- C:\Users\anadin\Application
Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.
lnk
[2013.03.13 20:33:53 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\System32\systemcpl.dll
[2013.03.13 20:33:53 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\System32\slwga.dll
[2013.03.13 20:12:37 | 000,116,385 | ---- | M] () -- C:\Windows\System32\license
.rtf
[2013.03.13 20:10:52 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2013.03.13 20:10:38 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers
\Msft_User_WpdFs_01_09_00.Wdf
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2013.04.01 16:47:20 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Wi
ndows\Start Menu\Programs\Adobe Reader XI.lnk
[2013.04.01 16:47:20 | 000,001,989 | ---- | C] () -- C:\Users\Public\Desktop\Ado
be Reader XI.lnk
[2013.03.29 22:11:12 | 000,078,085 | ---- | C] () -- C:\Users\anadin\Desktop\216
791_4819026675078_1272319201_n.jpg
[2013.03.28 18:52:15 | 000,002,112 | ---- | C] () -- C:\Users\anadin\Application
Data\Microsoft\Internet Explorer\Quick Launch\Samsung New PC Studio.lnk
[2013.03.28 18:50:09 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbEx
Device.Dll
[2013.03.28 18:50:09 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbEx
Disk.Sys
[2013.03.28 18:49:08 | 000,002,116 | ---- | C] () -- C:\Users\Public\Desktop\Sam
sung New PC Studio.lnk
[2013.03.26 22:07:35 | 000,000,974 | ---- | C] () -- C:\Users\anadin\Desktop\Net
TV+ Player4.lnk
[2013.03.26 21:24:02 | 000,001,896 | ---- | C] () -- C:\Users\Public\Desktop\DAE
MON Tools Lite.lnk
[2013.03.25 14:33:37 | 000,001,117 | ---- | C] () -- C:\ProgramData\Microsoft\Wi
ndows\Start Menu\Programs\Mozilla Firefox.lnk
[2013.03.25 14:33:37 | 000,001,105 | ---- | C] () -- C:\Users\Public\Desktop\Moz
illa Firefox.lnk
[2013.03.18 19:52:51 | 000,000,622 | ---- | C] () -- C:\Users\anadin\Documents\F
C.xspf
[2013.03.16 10:12:09 | 000,000,961 | ---- | C] () -- C:\Users\anadin\Application
Data\Microsoft\Internet Explorer\Quick Launch\Winamp.lnk
[2013.03.16 10:12:09 | 000,000,937 | ---- | C] () -- C:\Users\Public\Desktop\Win
amp.lnk
[2013.03.14 18:32:58 | 000,000,583 | ---- | C] () -- C:\Users\anadin\AppData\Roa
ming\Microsoft\Windows\Start Menu\Programs\Startup\configuration.lnk
[2013.03.14 18:26:14 | 000,001,004 | ---- | C] () -- C:\Users\Public\Desktop\YTD
Video Downloader.lnk
[2013.03.14 17:34:32 | 000,000,937 | ---- | C] () -- C:\Users\anadin\Application
Data\Microsoft\Internet Explorer\Quick Launch\Torrent.lnk
[2013.03.14 17:34:32 | 000,000,913 | ---- | C] () -- C:\Users\Public\Desktop\Torr
ent.lnk
[2013.03.14 00:28:39 | 000,002,005 | ---- | C] () -- C:\Users\anadin\Desktop\Sou
nd Forge 5.0.lnk
[2013.03.14 00:28:33 | 000,028,160 | ---- | C] () -- C:\Windows\System32\regcode
c.exe
[2013.03.13 22:31:27 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2013.03.13 21:41:35 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flas
h Player Updater.job
[2013.03.13 20:52:28 | 000,001,024 | ---- | C] () -- C:\Users\Public\Desktop\VLC
media player.lnk
[2013.03.13 20:50:20 | 000,001,109 | ---- | C] () -- C:\Users\anadin\Application
Data\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk
[2013.03.13 20:50:20 | 000,001,085 | ---- | C] () -- C:\Users\Public\Desktop\GOM
Player.lnk
[2013.03.13 20:49:51 | 000,000,414 | ---- | C] () -- C:\Windows\System32\lame_ac
m.xml
[2013.03.13 20:49:50 | 000,650,752 | ---- | C] () -- C:\Windows\System32\xvidcor
e.dll
[2013.03.13 20:49:50 | 000,243,200 | ---- | C] () -- C:\Windows\System32\xvidvfw
.dll
[2013.03.13 20:49:50 | 000,175,616 | ---- | C] () -- C:\Windows\System32\unrar.d
ll
[2013.03.13 20:49:48 | 000,079,360 | ---- | C] () -- C:\Windows\System32\ff_vfw.
dll
[2013.03.13 20:45:56 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmx
x.dll
[2013.03.13 20:45:54 | 000,189,051 | ---- | C] () -- C:\Windows\System32\atiicdx
x.dat