Tumačenje FRST

Tumačenje FRST

offline
  • Nebojša Đokić
  • vojni istoričar
  • Pridružio: 03 Jun 2010
  • Poruke: 43
  • Gde živiš: Novi Beograd

Povremeno mi se zamrzne kompjuter. Nije u pitanju napajanje a ni kondezatori. Skoro 100% je u pitanju softver. Pretpostavljam da je najbolje rešenje da reinstaliram Winodws i druge prateće progragrame ali mi trenutno treba kompjuter pa bi to odložio desetak dana. Ako mogu da ga zakrpim do tada.
Napajanje je promenjeno pre desetak dana a tom prilikom su provereni kondezatori.

Evo šta sam dobio kod FRST

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16.05.2018 01
Ran by Natalija Djokic (administrator) on PC (23-05-2018 18:07:27)
Running from C:\Documents and Settings\Natalija Djokic\My Documents\Downloads
Loaded Profiles: Natalija Djokic & UpdatusUser (Available Profiles: Natalija Djokic & UpdatusUser)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) Language: English (United States)
Internet Explorer Version 8 (Default browser: Yandex Browser)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(WiseCleaner.com) C:\Program Files\Wise\Wise System Monitor\WiseSystemMonitor.exe
(Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
( ) C:\WINDOWS\system32\lxeacoms.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMax4.exe
() C:\Program Files\Everything\Everything.exe
() C:\Program Files\Lexmark S300-S400 Series\ezprint.exe
() C:\Program Files\DjVu Printer Pilot\djvpagent.exe
(ABBYY Production LLC.) C:\Program Files\ABBYY FineReader 12\Bonus.ScreenshotReader.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Яндекс) C:\Program Files\Yandex\YandexDisk\bin\YandexDisk.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(MyCity) C:\Program Files\MCShield\MCShieldRTM.exe
() C:\Program Files\Lexmark S300-S400 Series\lxeamon.exe
(Microsoft Corporation) C:\WINDOWS\system32\mshta.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SoundMAX] => C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [716800 2005-09-07] (Analog Devices, Inc.)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [1048576 2018-01-15] ()
HKLM\...\Run: [EzPrint] => C:\Program Files\Lexmark S300-S400 Series\ezprint.exe [150264 2013-01-23] ()
HKLM\...\Run: [DjVu Printer Pilot virtual printer agent] => C:\Program Files\DjVu Printer Pilot\djvpagent.exe [94208 2010-11-12] ()
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Adobe_ID0EYTHM] => C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe [1884160 2007-03-20] (Adobe Systems Incorporated)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [Bonus.SSR.FR12] => C:\Program Files\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [1527960 2016-01-20] (ABBYY Production LLC.)
HKLM\...\Run: [InstallerLauncher] => "C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe" /run:"C:\Program Files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-41 (the data entry has 36 more characters).
HKLM\...\Run: [DriverPack Notifier] => C:\Program Files\DriverPack Notifier\DriverPackNotifier.exe [258560 2015-12-18] ()
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [925696 2005-05-20] (Analog Devices, Inc.)
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [1753192 2011-02-24] ()
HKLM\...\Run: [SyncManPath] => C:\Program Files\Yandex\YandexDisk\bin\YandexDisk.exe [17581048 2018-05-13] (Яндекс)
HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [13619968 2018-04-12] (Piriform Ltd)
HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\Run: [MCShield Monitor] => C:\Program Files\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity)
HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\MountPoints2: {021fc29c-edfe-11e1-be13-001731685797} - F:\autorun.exe
HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\sstext3d.scr [679936 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [] => [X]
GroupPolicy: Restriction ? <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{8A659256-1A93-43D8-90CD-75B451065AFF}: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{8B08C823-B96B-4454-BD80-840837036890}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006
HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
URLSearchHook: [S-1-5-21-1220945662-1770027372-1417001333-1004] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> D:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll [2007-03-16] (Adobe Systems Incorporated.)
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-08-08] (Oracle Corporation)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-08] (Oracle Corporation)
Toolbar: HKU\.DEFAULT -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10] (Adobe Systems Incorporated)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_144-windows-i586.cab
DPF: {CAFEEFAC-0018-0000-00144-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_144-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_144-windows-i586.cab
Handler: jpip - {B92DD248-E3D5-4A92-B311-C9B841681455} - C:\Program Files\LizardTech\Express View\expressview.dll [2008-12-16] (Lizardtech Software)
Handler: sidlet - {B92DD248-E3D5-4A92-B311-C9B841681455} - C:\Program Files\LizardTech\Express View\expressview.dll [2008-12-16] (Lizardtech Software)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328 [2018-05-22]
FF Extension: (AdGuard AdBlocker) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328\Extensions\adguardadblocker@adguard.com.xpi [2018-04-10]
FF Extension: (Gismeteo) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328\Extensions\extensions@gismeteo.com.xpi [2018-04-20]
FF Extension: (Youtube to MP3 Plugin) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328\Extensions\flv2mp3@hotger.com.xpi [2018-01-15]
FF Extension: (Save text to file) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328\Extensions\HighlightedTextToFile@bobbyrne01.org.xpi [2018-01-01]
FF Extension: (HTML5 Video Everywhere!) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328\Extensions\html5-video-everywhere@lejenome.me.xpi [2018-01-01]
FF Extension: (Print Friendly & PDF) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328\Extensions\jid0-YQz0l1jthOIz179ehuitYAOdBEs@jetpack.xpi [2018-01-01]
FF Extension: (uBlock Origin) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328\Extensions\uBlock0@raymondhill.net.xpi [2018-05-16]
FF Extension: (YesScript) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328\Extensions\yesscript@userstyles.org.xpi [2018-01-01] [Legacy]
FF Extension: (NoScript) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2018-01-29] [Legacy]
FF Extension: (Adblock Plus) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-05-17]
FF Extension: (Simple YouTube MP3 Button) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\xemmnxfx.default-1514815597328\Extensions\{e33788ea-0bb9-4502-9c77-bdc551afc8ab}.xpi [2018-01-15]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2016-09-20] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-09] ()
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-08] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-08] (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @mozilla.zeniko.ch/SumatraPDF_Browser_Plugin -> C:\Program Files\SumatraPDF\npPdfViewer.dll [2015-08-06] (Simon Bьnzli)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2014-06-19] (Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\S-1-5-21-1220945662-1770027372-1417001333-1003: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2014-06-19] (Tracker Software Products (Canada) Ltd.)

Chrome:
=======
CHR HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [69632 2017-05-08] (Adobe Systems) [File not signed]
S3 Adobe Version Cue CS3; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe [153792 2007-03-20] (Adobe Systems Incorporated)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2018-05-09] (Adobe Systems Incorporated) [File not signed]
R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021056 2016-03-03] (Adobe Systems, Incorporated)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S2 lxeaCATSCustConnectService; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxeaserv.exe [193192 2010-04-14] (Lexmark International, Inc.)
R2 lxea_device; C:\WINDOWS\system32\lxeacoms.exe [598696 2010-04-14] ( )
R2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2218600 2011-04-08] (NVIDIA Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 acedrv10; C:\WINDOWS\system32\drivers\acedrv10.sys [328824 2007-07-24] (Protect Software GmbH)
S2 acehlp10; C:\WINDOWS\system32\drivers\acehlp10.sys [201848 2007-07-11] (Protect Software GmbH)
R3 AEAudioService; C:\WINDOWS\System32\drivers\AEAudio.sys [127872 2005-03-05] (Andrea Electronics Corporation)
R1 BIOS; C:\WINDOWS\system32\drivers\BIOS.sys [13696 2005-03-16] (BIOSTAR Group) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R3 FETND5BV; C:\WINDOWS\System32\DRIVERS\fetnd5bv.sys [43008 2005-06-21] (VIA Technologies, Inc. )
S3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
S3 genmcmnUSB; C:\WINDOWS\System32\DRIVERS\gflmouhid.sys [6528 2003-08-07] ()
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R3 HSFHWBS2; C:\WINDOWS\System32\DRIVERS\HSFBS2S2.sys [220032 2008-04-14] (Conexant Systems, Inc.)
R3 HSF_DP; C:\WINDOWS\System32\DRIVERS\HSFDPSP2.sys [1041536 2008-04-14] (Conexant Systems, Inc.)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2016-06-24] (REALiX(tm))
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-12] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)
S3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2010-03-15] (Padus, Inc.) [File not signed]
S3 RT73; C:\WINDOWS\System32\DRIVERS\rt73.sys [465152 2008-10-21] (Ralink Technology, Corp.) [File not signed]
R1 SCDEmu; C:\WINDOWS\system32\Drivers\SCDEmu.sys [124304 2017-02-02] (Power Software Ltd)
R3 SenFiltService; C:\WINDOWS\System32\drivers\Senfilt.sys [393088 2005-08-11] (Sensaura)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
R0 videX32; C:\WINDOWS\System32\DRIVERS\videX32.sys [13976 2017-06-05] (VIA Technologies, Inc.)
R3 winachsf; C:\WINDOWS\System32\DRIVERS\HSFCXTS2.sys [685056 2008-04-14] (Conexant Systems, Inc.)
R3 WiseHDInfo; C:\WINDOWS\WiseHDInfo32.dll [34376 2018-01-20] (wisecleaner.com)
R1 WiseTDIFw; C:\WINDOWS\WiseTDIFw.sys [21424 2017-05-15] (WiseCleaner.com) [File not signed]
R1 WiseUnlock; C:\WINDOWS\WiseUnlock.sys [32840 2018-01-08] (WiseCleaner.com)
R0 xfilt; C:\WINDOWS\System32\DRIVERS\xfilt.sys [23192 2017-06-05] (VIA Technologies, Inc.)
R1 ZAM; C:\WINDOWS\System32\drivers\zam32.sys [181496 2018-01-21] (Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard32.sys [181496 2018-01-21] (Zemana Ltd.)
S2 adfs; no ImagePath
S3 cleanhlp; \??\F:\bin\cleanhlp32.sys [X]
S3 cpuz137; \??\C:\DOCUME~1\NATALI~1\LOCALS~1\Temp\Rar$EXa0.161\pcwiz_x32.sys [X]
S4 IntelIde; no ImagePath
S4 IUFileFilter; \??\C:\Program Files\IObit\IObit Uninstaller\drivers\win7_x86\IUFileFilter.sys [X]
S1 ntiomin; no ImagePath
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-05-22 16:46 - 2018-05-22 16:46 - 000000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Яндекс.Диск
2018-05-21 12:56 - 2011-04-08 07:14 - 002116894 _____ C:\WINDOWS\system32\nvdata.bin
2018-05-21 12:56 - 2011-04-08 07:14 - 000944232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3220140.dll
2018-05-21 12:56 - 2011-04-08 07:14 - 000855656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvgenco322060.dll
2018-05-21 12:56 - 2011-04-08 07:14 - 000003629 _____ C:\WINDOWS\system32\nvinfo.pb
2018-05-21 02:20 - 2018-05-21 02:20 - 001127214 _____ C:\Documents and Settings\Natalija Djokic\My Documents\Nabavke naoružanja ТNR.pdf
2018-05-21 01:42 - 2018-05-21 01:42 - 001138692 _____ C:\Documents and Settings\Natalija Djokic\My Documents\O nabavkama naoruzanja ТNR.pdf
2018-05-19 23:43 - 2018-05-23 18:07 - 000025100 _____ C:\WINDOWS\ZAM.krnl.trace
2018-05-19 23:43 - 2018-05-23 18:07 - 000009019 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2018-05-15 03:23 - 2018-05-15 03:23 - 000000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\SoundMAX
2018-05-07 14:57 - 2018-05-07 14:57 - 000000724 _____ C:\Documents and Settings\All Users\Desktop\qBittorrent.lnk
2018-05-07 14:57 - 2018-05-07 14:57 - 000000000 ____D C:\Program Files\qBittorrent
2018-05-07 14:57 - 2018-05-07 14:57 - 000000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\qBittorrent
2018-05-05 17:08 - 2018-05-05 17:08 - 001101435 _____ C:\Documents and Settings\Natalija Djokic\My Documents\Nana Mouskouri _ Biography & History _ AllMusic.pdf
2018-05-05 16:55 - 2018-05-05 16:55 - 005219907 _____ C:\Documents and Settings\Natalija Djokic\My Documents\Nana Mouskouri - Wikipedia.pdf
2018-05-05 16:51 - 2018-05-05 16:51 - 001584022 _____ C:\Documents and Settings\Natalija Djokic\My Documents\Yves Montand - Wikipedia.pdf
2018-05-05 00:46 - 2010-03-15 14:55 - 000000211 ___SH C:\BOOT.BAK
2018-05-05 00:44 - 2017-11-16 19:40 - 000631531 _____ C:\txtsetup.sif
2018-05-05 00:44 - 2008-04-14 14:00 - 000260288 _____ C:\$LDR$
2018-05-05 00:42 - 2018-05-05 00:46 - 000000000 ____D C:\$WIN_NT$.~BT
2018-05-05 00:42 - 2018-05-05 00:42 - 000000801 _____ C:\WINDOWS\UPGRADE.TXT
2018-05-02 23:57 - 2018-05-03 00:56 - 000000000 ____D C:\Program Files\DLL Suite
2018-05-02 18:14 - 2018-05-22 18:15 - 000000404 _____ C:\WINDOWS\Tasks\At3.job
2018-05-02 18:14 - 2018-05-02 18:14 - 000000000 ____D C:\Program Files\DriverPack Notifier
2018-05-02 04:57 - 2018-05-02 04:57 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\My Documents\mouse
2018-05-01 05:40 - 2018-05-01 05:40 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Sun
2018-04-30 08:42 - 2018-05-22 08:43 - 000000404 _____ C:\WINDOWS\Tasks\At2.job
2018-04-30 08:38 - 2018-04-30 08:38 - 000000000 ____D C:\Documents and Settings\NetworkService\Application Data\DRPSu
2018-04-30 08:38 - 2018-04-30 08:38 - 000000000 ____D C:\Documents and Settings\NetworkService\Application Data\Adobe
2018-04-30 08:37 - 2018-05-22 08:38 - 000000404 _____ C:\WINDOWS\Tasks\At1.job
2018-04-30 08:37 - 2018-05-02 18:15 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\DriverPack Notifier
2018-04-30 08:37 - 2018-04-30 09:06 - 000065536 _____ C:\WINDOWS\system32\config\Microsof.evt
2018-04-30 08:36 - 2018-04-30 08:36 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\DRPSu
2018-04-30 08:36 - 2018-04-30 08:36 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\DRPNano
2018-04-30 02:04 - 2018-04-30 02:04 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2018-04-30 01:45 - 2018-04-30 01:45 - 000000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office
2018-04-30 01:42 - 2018-04-30 01:48 - 000000000 ____D C:\Program Files\Microsoft Works
2018-04-30 01:42 - 2018-04-30 01:42 - 000000000 ____D C:\Program Files\Microsoft Visual Studio
2018-04-30 01:38 - 2018-04-30 01:41 - 000000000 ____D C:\WINDOWS\SHELLNEW
2018-04-30 01:37 - 2018-04-30 01:42 - 000000000 ____D C:\Program Files\Microsoft Office
2018-04-30 01:37 - 2018-04-30 01:37 - 000000000 __RHD C:\MSOCache

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-05-23 18:08 - 2010-03-15 15:06 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Local Settings\Temp
2018-05-23 18:07 - 2018-01-08 22:29 - 000000000 ____D C:\FRST
2018-05-23 18:00 - 2018-01-29 02:25 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\MCShield
2018-05-23 18:00 - 2017-01-11 05:41 - 000000000 ___RD C:\Documents and Settings\Natalija Djokic\YandexDisk
2018-05-23 17:59 - 2017-10-24 13:43 - 000000300 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2018-05-23 17:59 - 2017-05-15 23:28 - 000000458 _____ C:\WINDOWS\Tasks\Wise System Monitor.job
2018-05-23 17:59 - 2016-05-13 11:24 - 000000882 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-05-23 17:59 - 2010-07-10 19:12 - 000000000 __SHD C:\WINDOWS\CSC
2018-05-23 17:59 - 2010-03-15 15:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-05-23 17:51 - 2018-01-16 05:47 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\qBittorrent
2018-05-23 17:45 - 2016-09-26 23:04 - 000000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-05-23 17:15 - 2015-07-09 01:49 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\Everything
2018-05-23 17:13 - 2016-05-13 11:24 - 000000886 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-05-23 16:55 - 2018-04-11 22:55 - 000000536 _____ C:\WINDOWS\Tasks\Update for Yandex Browser.job
2018-05-23 15:10 - 2015-11-16 15:38 - 000000000 ____D C:\temp
2018-05-23 15:05 - 2017-05-10 15:38 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Desktop\Word
2018-05-23 15:04 - 2017-05-10 15:28 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Desktop\NEKORIŠĆENI
2018-05-23 14:54 - 2017-12-13 19:45 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\My Documents\word
2018-05-23 08:29 - 2017-06-02 13:51 - 000032586 ____N C:\WINDOWS\SchedLgU.Txt
2018-05-23 08:29 - 2010-03-15 15:06 - 000000178 ___SH C:\Documents and Settings\Natalija Djokic\ntuser.ini
2018-05-23 04:51 - 2017-10-24 01:31 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\MediaMonkey
2018-05-22 02:14 - 2017-09-29 05:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-05-21 22:41 - 2010-03-15 15:44 - 000000000 RSHDC C:\WINDOWS\system32\dllcache
2018-05-21 22:41 - 2001-08-23 13:00 - 000214016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netevent.dll
2018-05-21 22:41 - 2001-08-23 13:00 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\netevent.dll
2018-05-21 12:59 - 2015-03-25 02:24 - 000000178 ___SH C:\Documents and Settings\UpdatusUser\ntuser.ini
2018-05-21 12:58 - 2015-03-25 02:22 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-05-21 12:58 - 2010-03-15 15:44 - 000000000 ____D C:\WINDOWS\Help
2018-05-21 12:57 - 2015-03-25 02:23 - 000259604 _____ C:\WINDOWS\system32\nvdrsdb1.bin
2018-05-21 12:57 - 2015-03-25 02:23 - 000259604 _____ C:\WINDOWS\system32\nvdrsdb0.bin
2018-05-21 12:57 - 2015-03-25 02:23 - 000000001 _____ C:\WINDOWS\system32\nvdrssel.bin
2018-05-21 12:56 - 2010-03-15 15:44 - 000000000 ___HD C:\WINDOWS\inf
2018-05-21 04:54 - 2017-11-16 05:07 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\nView_Profiles
2018-05-19 22:43 - 2016-09-26 23:04 - 000000892 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2018-05-19 22:43 - 2010-03-15 14:59 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-05-19 22:33 - 2018-03-13 17:45 - 000000880 _____ C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job
2018-05-19 15:09 - 2001-08-23 13:00 - 000002206 _____ C:\WINDOWS\system32\wpa.dbl
2018-05-16 16:05 - 2010-03-15 16:05 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\Adobe
2018-05-16 09:13 - 2015-03-20 01:04 - 000065536 _____ C:\WINDOWS\system32\config\ODiag.evt
2018-05-15 08:54 - 2016-08-18 15:26 - 000000000 ____D C:\WINDOWS\Minidump
2018-05-15 03:31 - 2010-03-15 15:12 - 000000000 _____ C:\WINDOWS\AS_Debug.txt
2018-05-15 03:23 - 2010-03-15 15:44 - 000000000 ____D C:\WINDOWS\system
2018-05-12 23:47 - 2018-01-08 23:12 - 000000000 ____D C:\AdwCleaner
2018-05-09 21:58 - 2010-03-15 15:33 - 000093846 _____ C:\WINDOWS\system32\nvapps.xml
2018-05-09 05:45 - 2016-09-26 23:04 - 000804864 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-05-09 05:45 - 2016-09-26 23:04 - 000144896 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-05-06 12:15 - 2010-03-15 15:48 - 000000267 ___SH C:\boot.ini
2018-05-05 17:10 - 2015-03-30 17:57 - 004256256 ___SH C:\Documents and Settings\Natalija Djokic\My Documents\Thumbs.db
2018-05-02 14:55 - 2017-09-24 16:50 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\Youtube Downloader HD
2018-05-02 05:02 - 2010-03-15 15:13 - 000000000 ____D C:\WINDOWS\system32\ReinstallBackups
2018-05-02 01:08 - 2010-03-15 15:33 - 000000000 ____D C:\WINDOWS\nview
2018-05-02 00:25 - 2010-03-15 15:44 - 000000000 ____D C:\WINDOWS\Network Diagnostic
2018-04-30 07:52 - 2010-03-15 15:07 - 000260600 _____ C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2018-04-30 02:26 - 2010-03-15 15:49 - 004218704 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-04-30 02:14 - 2015-03-20 01:00 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\Microsoft Help
2018-04-30 02:12 - 2001-08-23 13:00 - 000000721 _____ C:\WINDOWS\win.ini
2018-04-30 01:48 - 2010-03-15 15:52 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2018-04-30 01:38 - 2010-03-15 14:58 - 000000000 ____D C:\Program Files\Common Files\System
2018-04-28 11:12 - 2015-03-19 18:51 - 000000688 _____ C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
2018-04-28 00:40 - 2016-06-28 17:44 - 000000000 ____D C:\Program Files\SpeedFan
2018-04-28 00:33 - 2017-12-18 17:43 - 000000000 ____D C:\Program Files\Malwarebytes
2018-04-26 14:38 - 2017-04-14 17:12 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\ProductData

==================== Files in the root of some directories =======

2017-12-06 15:14 - 2017-12-06 15:14 - 000003584 _____ () C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-11-13 07:30 - 2017-11-13 07:30 - 000000138 _____ () C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\fusioncache.dat
2017-02-18 06:10 - 2018-03-29 22:08 - 202184704 _____ () C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\SageThumbs.db3
2018-01-16 05:09 - 2018-01-16 05:09 - 000263899 _____ () C:\Documents and Settings\All Users\Application Data\1516071732.bdinstall.bin

Files to move or delete:
====================
C:\Windows\Tasks\At1.job
C:\Windows\Tasks\At2.job
C:\Windows\Tasks\At3.job


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 16.05.2018 01
Ran by Natalija Djokic (23-05-2018 18:08:57)
Running from C:\Documents and Settings\Natalija Djokic\My Documents\Downloads
Microsoft Windows XP Professional Service Pack 3 (X86) (2010-03-15 13:04:10)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1220945662-1770027372-1417001333-500 - Administrator - Enabled)
ASPNET (S-1-5-21-1220945662-1770027372-1417001333-1005 - Limited - Enabled)
Guest (S-1-5-21-1220945662-1770027372-1417001333-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1220945662-1770027372-1417001333-1000 - Limited - Disabled)
Natalija Djokic (S-1-5-21-1220945662-1770027372-1417001333-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Natalija Djokic
SUPPORT_388945a0 (S-1-5-21-1220945662-1770027372-1417001333-1002 - Limited - Disabled)
UpdatusUser (S-1-5-21-1220945662-1770027372-1417001333-1004 - Limited - Enabled) => %SystemDrive%\Documents and Settings\UpdatusUser

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)


==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0014-0000-0000-0000000FF1CE}_PRO_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0015-0419-0000-0000000FF1CE}_PRO_{06BBE4EF-FA0F-43D4-8DE6-12B15AE6DC8F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0016-0419-0000-0000000FF1CE}_PRO_{06BBE4EF-FA0F-43D4-8DE6-12B15AE6DC8F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0018-0419-0000-0000000FF1CE}_PRO_{06BBE4EF-FA0F-43D4-8DE6-12B15AE6DC8F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0019-0419-0000-0000000FF1CE}_PRO_{06BBE4EF-FA0F-43D4-8DE6-12B15AE6DC8F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001A-0419-0000-0000000FF1CE}_PRO_{06BBE4EF-FA0F-43D4-8DE6-12B15AE6DC8F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001B-0419-0000-0000000FF1CE}_PRO_{06BBE4EF-FA0F-43D4-8DE6-12B15AE6DC8F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0407-0000-0000000FF1CE}_PRO_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0409-0000-0000000FF1CE}_PRO_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0419-0000-0000000FF1CE}_PRO_{EFE123B8-9F0A-4C50-A67B-0BADF3CB00DC}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-001F-0422-0000-0000000FF1CE}_PRO_{E23630A0-8B0D-4145-9CEA-9B4967CDDC0E}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-006E-0419-0000-0000000FF1CE}_PRO_{8D43357C-7ED3-4E4C-9804-DB84C67823BC}) (Version: - Microsoft) Hidden
7-Zip 16.02 (HKLM\...\{23170F69-40C1-2701-1602-000001000000}) (Version: 16.02.00.0 - Igor Pavlov)
7-Zip 16.02 (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov)
ABBYY FineReader 12 Professional (HKLM\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.1.609 - ABBYY Production LLC)
ABBYY ScanTo Office 1.0 (HKLM\...\{5730CAAC-9368-4813-9D3C-7D1AB5F0A154}) (Version: 1.00.899.4211 - ABBYY Software Limited <www.abbyy.com>)
AC3Filter 2.6.0b (HKLM\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)
Add or Remove Adobe Creative Suite 3 Master Collection (HKLM\...\Adobe_4dcfd9b7e901b57f81f667144603236) (Version: 1.0 - Adobe Systems Incorporated)
Additional languages for ABBYY FineReader 8.0 Professional Edition (HKLM\...\{895F70B1-3C3B-43D8-B4E7-0FDDEF74D823}) (Version: 8.00.738.00 - ABBYY Software House)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.1.0.5790 - Adobe Systems Inc.)
Adobe Creative Suite 4 Master Collection (HKLM\...\Adobe_b2d6abde968e6f277ddbfd501383e02) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Flash Player 29 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 29 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 29 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 29.0.0.171 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM\...\Adobe_2ac78060bc5856b0c1cf873bb919b58) (Version: 10.0 - Adobe Systems Incorporated)
AFPL Ghostscript 8.54 (HKLM\...\AFPL Ghostscript 8.54) (Version: - )
AFPL Ghostscript Fonts (HKLM\...\AFPL Ghostscript Fonts) (Version: - )
Agent Ransack (HKLM\...\{8B51F879-18C4-4C37-8D2B-E340AEE7AACB}) (Version: 7.0.828.1 - Mythicsoft Ltd)
AHV content for Acrobat and Flash (HKLM\...\{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}) (Version: 1 - Adobe Systems Incorporated) Hidden
AllDup 4.0.32 (HKLM\...\AllDup_is1) (Version: 4.0.32 - Michael Thummerer Software Design)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BurnInTest 7.0.1013 (HKLM\...\BurnInTest) (Version: 7.0.1013 - PassMark)
CCleaner (HKLM\...\CCleaner) (Version: 5.42 - Piriform)
Connect (HKLM\...\{B29AD377-CC12-490A-A480-1452337C618D}) (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
Corel Graphics Suite 11 (HKLM\...\{07A540AB-D785-11D5-8E89-0090275862A0}) (Version: 11 - Corel Corporation) Hidden
Corel Graphics Suite 11 (HKLM\...\InstallShield_{07A540AB-D785-11D5-8E89-0090275862A0}) (Version: 11 - Corel Corporation)
Croatian language for ABBYY FineReader 8.0 Professional Edition (HKLM\...\{FDDF811F-A238-4F58-87DC-82C284169F3A}) (Version: 8.00.738.00 - ABBYY Software House)
Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform)
DjVu Editor (HKLM\...\{4396BE64-7A77-4A64-8E0A-575B71F849D2}) (Version: - )
DjVu Shell Extension Pack (HKLM\...\{E680FD3D-CCAA-4E1D-811B-16A490F61585}) (Version: 7.1.33351 - Cuminas Corporation)
DjVu Solo 3.1 (HKLM\...\DjVu Solo 3.1) (Version: - )
DjVuLibre DjView 3.5.27+4.10.4 (HKLM\...\DjVuLibre+DjView) (Version: 3.5.27+4.10.4 - DjVuZone)
DriverPack Notifier (HKLM\...\DriverPack Notifier) (Version: 17.7.52+patch.11 - DriverPack Solution)
Duplicate Cleaner Free 3.2.7 (HKLM\...\Duplicate Cleaner Free) (Version: 3.2.7 - DigitalVolcano Software Ltd) <==== ATTENTION
Epubor Ultimate (HKLM\...\Epubor Ultimate) (Version: 3.0.9.914 - Epubor Inc.)
Everything 1.3.4.686 (x86) (HKLM\...\Everything) (Version: - )
FastStone Image Viewer 6.3 (HKLM\...\FastStone Image Viewer) (Version: 6.3 - FastStone Soft)
FileOptimizer (HKLM\...\FileOptimizer) (Version: 11.1.0.0 - Javier Gutiérrez Chamorro (Guti))
Foxit Advanced PDF Editor 3 (HKLM\...\B521582C-6BE3-491D-BCC8-FFB8301298E9_is1) (Version: 3.1.0.0 - Foxit Corporation)
Foxit PhantomPDF Business (HKLM\...\{5590505B-D3CB-4489-A543-75731D7C4249}) (Version: 6.2.1.618 - Foxit Corporation)
Free Unit Converter 2.11 (HKLM\...\Free Unit Converter_is1) (Version: - Unit Conversion, Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Google2SRT (HKLM\...\{B0A59B6D-5983-46D2-9B34-51B1C15055CD}) (Version: 0.7.5 - Google2SRT)
High-Logic FontCreator 6.0 (HKLM\...\FontCreator6_is1) (Version: - High-Logic B.V.)
HTML to PDF Converter Free (HKLM\...\{9ECF0D24-31C8-4872-AB59-02B0A1711E63}) (Version: 3.2 - PDFArea Software)
Hugin 2013.0.0 (HKLM\...\Hugin) (Version: 2013.0.0 hg_0d404a7088e6 - The Hugin Development Team)
HWiNFO32 Version 5.30 (HKLM\...\HWiNFO32_is1) (Version: 5.30 - Martin Malík - REALiX)
ICE Book Reader Professional v9.1.0 Russian (HKLM\...\ICE Book Reader Professional Russian_is1) (Version: - ICE Graphics)
Icecream Ebook Reader verzija 5.07 (HKLM\...\{B8C30F0F-1F23-49E1-A3ED-44DE17660EE2}_is1) (Version: 5.07 - Icecream Apps)
Icecream Image Resizer version 1.50 (HKLM\...\{2F8F5694-F482-481A-B05F-4A6D8A275B84}_is1) (Version: 1.50 - Icecream Apps)
Icecream Media Converter version 1.56 (HKLM\...\{896F1686-6F72-480B-B60B-336E7F8A2EE2}_is1) (Version: 1.56 - Icecream Apps)
Icecream PDF Split and Merge version 3.41 (HKLM\...\{95DC4DB4-99FB-4FB2-ADBD-97F194EDEB4D}_is1) (Version: 3.41 - Icecream Apps)
Icecream Screen Recorder version 2.24 (HKLM\...\{7ADEC622-3230-4C9A-9DCE-9BD462B74095}_is1) (Version: 2.24 - Icecream Apps)
Image Resizer for Windows (HKLM\...\{6285B71F-660A-478B-A876-C7E66A678E6A}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
Java 8 Update 144 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Jutoh 2.65 (HKLM\...\Jutoh_is1) (Version: 2.65 - Anthemion Software Ltd.)
K-Lite Mega Codec Pack 13.6.5 (HKLM\...\KLiteCodecPack_is1) (Version: 13.6.5 - KLCP)
kuler (HKLM\...\{098727E1-775A-4450-B573-3F441F1CA243}) (Version: 2.0 - Adobe Systems Incorporated) Hidden
Lexmark S300-S400 Series (HKLM\...\Lexmark S300-S400 Series) (Version: - Lexmark International, Inc.)
Lizardtech DjVu Control (HKLM\...\{105CFC7C-6992-11D5-BD9D-000102C10FD8}) (Version: - )
Lizardtech DjVu IFilter 1.1 (HKLM\...\{55E8D9EB-AA2B-4898-B64C-475E1C54DBBB}) (Version: - )
Lizardtech Document Express Editor (HKLM\...\{6B5D24D9-58D9-491C-AF7D-0FF20E79016B}) (Version: - )
Lizardtech Document Express Enterprise (HKLM\...\{DC4C11E1-4B61-4A40-A65F-945E914C0E02}) (Version: - )
Lizardtech Express View Browser Plug-in (HKLM\...\{9CD8FC8E-A1CA-4634-96BC-CD6B2D4797CC}) (Version: - )
LizardTech Virtual Printer Pro (HKLM\...\{BD428835-0F5D-11D6-ACCE-0010B541CF4D}) (Version: - )
MahJong Suite 2011 v8.1 (HKLM\...\MahJong Suite_is1) (Version: - TreeCardGames)
MCShield ::Anti-Malware Tool:: (HKLM\...\MCShield) (Version: 3.0.5.28 - MyCity)
MediaInfo 0.7.95 (HKLM\...\MediaInfo) (Version: 0.7.95 - MediaArea.net)
MediaInfo Lite 0.7.92.1 (HKLM\...\mediainfolite_is1) (Version: 0.7.92.1 - )
MediaMonkey 4.1 (HKLM\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)
Microsoft .NET Framework 1.1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2003 programski dodatak za preslovljavanje (HKLM\...\{51312349-0B4D-450E-AFAA-03CC28A9531F}) (Version: 1.0.0527.0 - Microsoft)
Microsoft Office Excel 2007 Help Обновление (KB963678) (HKLM\...\{90120000-0016-0419-0000-0000000FF1CE}_PRO_{420938DB-BF97-4664-BE29-0C68B4802C00}) (Version: - Microsoft)
Microsoft Office Outlook 2007 Help Обновление (KB963677) (HKLM\...\{90120000-001A-0419-0000-0000000FF1CE}_PRO_{E9D6C0F9-9879-4FC4-8E13-BF0D3953E0E6}) (Version: - Microsoft)
Microsoft Office Powerpoint 2007 Help Обновление (KB963669) (HKLM\...\{90120000-0018-0419-0000-0000000FF1CE}_PRO_{BD1C2AC7-63F3-4C75-8B44-DE3D700B3BC8}) (Version: - Microsoft)
Microsoft Office Word 2007 Help Обновление (KB963665) (HKLM\...\{90120000-001B-0419-0000-0000000FF1CE}_PRO_{D3A002FB-0F62-4840-80AD-2D2C63F83449}) (Version: - Microsoft)
Microsoft Office Профессиональный 2007 (HKLM\...\PRO) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
MSXML 6.0 Parser (HKLM\...\{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}) (Version: 6.10.1129.0 - Microsoft Corporation)
NVIDIA Graphics Driver 270.61 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 270.61 - NVIDIA Corporation)
NVIDIA nView 135.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 135.70 - NVIDIA Corporation)
NVIDIA Update 1.1.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.1.34 - NVIDIA Corporation)
OpenOffice.org 3.0 (HKLM\...\{F44DA61E-720D-4E79-871F-F6E628B33242}) (Version: 3.0.9358 - OpenOffice.org)
Paint.NET v3.5.11 (HKLM\...\{72EF03F5-0507-4861-9A44-D99FD4C41417}) (Version: 3.61.0 - dotPDN LLC)
PDF Annotator 6.1.0.615 (HKLM\...\PDFAnnotator_is1) (Version: 6.1.0.615 - GRAHL software design)
PDF Settings CS4 (HKLM\...\{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}) (Version: 9.0 - Adobe Systems Incorporated) Hidden
PDF-XChange 2012 Pro (HKLM\...\{7283AD1F-8026-4486-B2BC-61AD52A01B5F}) (Version: 5.5.308.2 - Tracker Software Products (Canada) Ltd.)
Photoshop Camera Raw (HKLM\...\{CC75AB5C-2110-4A7F-AF52-708680D22FE8}) (Version: 5.0 - Adobe Systems Incorporated) Hidden
Platform (HKLM\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.13 - VIA Technologies, Inc.) Hidden
PotPlayer (HKLM\...\PotPlayer) (Version: 1.7.10667 - Kakao Corp.)
PowerISO (HKLM\...\PowerISO) (Version: 6.8 - Power Software Ltd)
Print to PDF Annotator (novaPDF OEM 7.7 printer) (HKLM\...\Print to PDF Annotator_is1) (Version: 7.7.400 - Softland)
Process Hacker 2.38 (r11) (HKLM\...\Process_Hacker2_is1) (Version: 2.38.0.11 - wj32)
ProtectDisc Helper Driver 10 (HKLM\...\ProtectDisc Driver 10) (Version: 10.0.0.1 - )
PSP Thumbnail Handler (HKLM\...\{2086A549-ED96-4dc9-BBE3-0538AB29ABEC}) (Version: 2.10.49 - Bot Productions)
qBittorrent 4.1.0 (HKLM\...\qBittorrent) (Version: 4.1.0 - The qBittorrent project)
QuarkXPress 7.2 (HKLM\...\{A38048C6-89D1-44EC-BC95-E95DD4A19B5E}) (Version: 7.20.0000 - Quark Inc.)
Scribus 1.4.5 (HKLM\...\Scribus 1.4.5) (Version: 1.4.5 - The Scribus Team)
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 5.10.01.4151 - Analog Devices)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
Subtitle Workshop 2.51 (HKLM\...\SubtitleWorkshop) (Version: - )
Suite Shared Configuration CS4 (HKLM\...\{842B4B72-9E8F-4962-B3C1-1C422A5C4434}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
SumatraPDF 3.2.10963 (HKLM\...\SumatraPDF) (Version: 3.2.10963 - Krzysztof Kowalczyk)
TagScanner 6.0.22 (HKLM\...\TagScanner_is1) (Version: - Sergey Serkov)
Time Adjuster STANDARD 3.1 (HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\TimeAdjuster) (Version: - IrekSoftware.com)
TL-WN321G Wireless Utility (HKLM\...\{1FF78023-EFA4-491F-9F5A-284DE97AA326}) (Version: 1.0.3.0 - TP-LINK)
Uninstall (HKLM\...\DjVu Printer Pilot_is1) (Version: 1.1 - )
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0014-0000-0000-0000000FF1CE}_PRO_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VIA Platform Device Manager (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.13 - VIA Technologies, Inc.)
VIA Rhine-Family Fast Ethernet Adapter (HKLM\...\VN_VUIns_Rhine_VIA) (Version: - )
WebFldrs XP (HKLM\...\{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden
WinDjView 2.1 (HKLM\...\WinDjView) (Version: 2.1 - Andrew Zhezherun)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
WinHex (HKLM\...\WinHex) (Version: - )
WinPcap 4.1.2 (HKLM\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.11 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Wise Duplicate Finder 1.21 (HKLM\...\Wise Duplicate Finder_is1) (Version: 1.21 - WiseCleaner.com, Inc.)
Wise Force Deleter 1.4.6 (HKLM\...\Wise Force Deleter_is1) (Version: 1.4.6 - WiseCleaner.com, Inc.)
Wise Memory Optimizer 3.5.2 (HKLM\...\Wise Memory Optimizer_is1) (Version: 3.5.2 - WiseCleaner.com, Inc.)
Wise System Monitor 1.4.5 (HKLM\...\Wise System Monitor_is1) (Version: 1.4.5 - WiseCleaner.com, Inc.)
Yandex (HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\YandexBrowser) (Version: 17.4.1.1026 - YANDEX)
Youtube Downloader HD v. 2.9.9.30 (HKLM\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)
Яндекс.Диск (HKLM\...\YandexDisk) (Version: 1.4.20.5482 - Яндекс)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003_Classes\CLSID\{2053984E-D49A-4007-A67F-E79B249960FA}\InprocServer32 -> C:\Program Files\Microsoft\Microsoft Office 2003 programski dodatak za preslovljavanje\Translit.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003_Classes\CLSID\{4EC8247D-830A-A4AC-C6F6-ABA7876F16ED}\InprocServer32 -> C:\WINDOWS\system32\ole32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003_Classes\CLSID\{787C9EE8-BD4E-4065-C422-23315F86C601}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003_Classes\CLSID\{AB246BE9-1623-4A84-ABDA-CFF4D4A273CB}\InprocServer32 -> C:\WINDOWS\system32\kernel32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ YndCase0Sync] -> {63D48440-63AB-44D0-B323-4731DFCDE9E9} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskOverlays-2398.dll [2018-05-13] (Яндекс)
ShellIconOverlayIdentifiers: [ YndCase1Modified] -> {7E7DC279-E6BE-4D57-9DEC-14FA0339DBC0} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskOverlays-2398.dll [2018-05-13] (Яндекс)
ShellIconOverlayIdentifiers: [ YndCase2Error] -> {FB2FE984-05F5-4512-9D9B-69D3DE61F6D9} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskOverlays-2398.dll [2018-05-13] (Яндекс)
ShellIconOverlayIdentifiers: [ YndCase3Shared] -> {AF8D197E-7022-4c3d-BD88-68AD35C9C169} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskOverlays-2398.dll [2018-05-13] (Яндекс)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers1: [ABBYYS2OContextMenuExtension] -> {0DE76E1C-40C5-4fae-A59A-44EF606A0B02} => C:\Program Files\ABBYY ScanTo Office 1.0\STOShellExtension.dll [2004-10-04] (ABBYY (BIT Software))
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => D:\Program Files\Adobe\Acrobat 8.0\Acrobat Elements\ContextMenu.dll [2007-05-10] (Adobe Systems Inc.)
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> No File
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> No File
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers1: [FineReader12ContextMenu] -> {55344AC6-630B-430C-B292-C7BE21F90061} => C:\Program Files\ABBYY FineReader 12\FRIntegration.dll [2016-01-20] (ABBYY Production LLC.)
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x86.dll [2014-04-15] (Foxit Corporation)
ContextMenuHandlers1: [IcecreamShellExtension] -> {A8B59160-93EA-4303-9192-AA3C64FDBE31} => D:\Program Files\Icecream PDF Split and Merge\IcecreamShell.dll [2017-05-03] (TODO: <Company name>)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2017-02-02] (Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (Alexander Roshal)
ContextMenuHandlers1: [Yandex.Disk] -> {97836AB9-12C5-4C30-A128-B75196DD1787} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskShellExt-4724.dll [2018-05-13] (Яндекс)
ContextMenuHandlers2: [AgentRansack] -> {2AE9D6D8-E348-4853-B266-C78844D31B97} => C:\Program Files\Mythicsoft\Agent Ransack\ShellExt.dll [2014-11-21] (Mythicsoft Ltd)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers4: [AgentRansack] -> {2AE9D6D8-E348-4853-B266-C78844D31B97} => C:\Program Files\Mythicsoft\Agent Ransack\ShellExt.dll [2014-11-21] (Mythicsoft Ltd)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2017-02-02] (Power Software Ltd)
ContextMenuHandlers4: [Yandex.Disk] -> {97836AB9-12C5-4C30-A128-B75196DD1787} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskShellExt-4724.dll [2018-05-13] (Яндекс)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nView\nvshell.dll [2011-02-24] ()
ContextMenuHandlers5: [NvCplDesktopContext] -> {A70C977A-BF00-412C-90B7-034C51DA2439} => C:\WINDOWS\system32\nvcpl.dll [2011-04-07] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => D:\Program Files\Adobe\Acrobat 8.0\Acrobat Elements\ContextMenu.dll [2007-05-10] (Adobe Systems Inc.)
ContextMenuHandlers6: [AgentRansack] -> {2AE9D6D8-E348-4853-B266-C78844D31B97} => C:\Program Files\Mythicsoft\Agent Ransack\ShellExt.dll [2014-11-21] (Mythicsoft Ltd)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2016-03-08] (Piriform Ltd)
ContextMenuHandlers6: [Fast Explorer] -> {693BE9C0-BEC3-11D2-B4C1-C33BBD3AD64B} => C:\Documents and Settings\All Users\Application Data\AllDup\FEShlExt.dll [2008-08-21] (Alex Yakovlev)
ContextMenuHandlers6: [FineReader12ContextMenu] -> {55344AC6-630B-430C-B292-C7BE21F90061} => C:\Program Files\ABBYY FineReader 12\FRIntegration.dll [2016-01-20] (ABBYY Production LLC.)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2017-02-02] (Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (Alexander Roshal)

==================== Scheduled Tasks=============================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_29_0_0_171_Plugin.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_29_0_0_171_pepper.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\At1.job => C:\Program Files\DriverPack Notifier\DriverPackNotifier.exe
Task: C:\WINDOWS\Tasks\At2.job => C:\Program Files\DriverPack Notifier\DriverPackNotifier.exe
Task: C:\WINDOWS\Tasks\At3.job => C:\Program Files\DriverPack Notifier\DriverPackNotifier.exe
Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Update for Yandex Browser.job => C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Yandex\YandexBrowser\Application\browser.exe
Task: C:\WINDOWS\Tasks\Wise System Monitor.job => C:\Program Files\Wise\Wise System Monitor\WiseSystemMonitor.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\URUSoft\Subtitle Workshop\Help\Manual (Espaсol).lnk -> C:\Program Files\URUSoft\Subtitle Workshop\Manual\ManualSPA.html (No File) <==== Cyrillic
Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enblend Droplet 360.lnk -> C:\Program Files\Hugin\bin\enblend_droplet_360.bat ()
Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enblend Droplet.lnk -> C:\Program Files\Hugin\bin\enblend_droplet.bat ()
Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enfuse Align Droplet.lnk -> C:\Program Files\Hugin\bin\enfuse_align_droplet.bat ()
Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enfuse Auto Align Droplet.lnk -> C:\Program Files\Hugin\bin\enfuse_auto_align_droplet.bat (No File)
Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enfuse Auto Droplet.lnk -> C:\Program Files\Hugin\bin\enfuse_auto_droplet.bat ()
Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enfuse Droplet 360.lnk -> C:\Program Files\Hugin\bin\enfuse_droplet_360.bat ()
Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enfuse Droplet.lnk -> C:\Program Files\Hugin\bin\enfuse_droplet.bat ()
Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Everything\Тражи „Everything“.lnk -> C:\Program Files\Everything\Everything.exe () <==== Cyrillic
Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Everything\Уклони „Everything“.lnk -> C:\Program Files\Everything\Uninstall.exe () <==== Cyrillic
Shortcut: C:\Documents and Settings\Natalija Djokic\Favorites\FileOptimizer Home Page.lnk -> hxxp://nikkhokkho.sourceforge.net/static.php?page=FileOptimize
Shortcut: C:\Documents and Settings\Natalija Djokic\Desktop\NEKORIŠĆENI\Скриншоты в Яндекс.Диске.lnk -> C:\Program Files\Yandex\YandexDisk\bin\YandexDiskScreenshotEditor.exe (Яндекс) <==== Cyrillic
Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Яндекс.Диск\Скриншоты в Яндекс.Диске.lnk -> C:\Program Files\Yandex\YandexDisk\bin\YandexDiskScreenshotEditor.exe (Яндекс) <==== Cyrillic
Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Средства Microsoft Office\Microsoft Office 2007 Языковые параметры.lnk -> C:\WINDOWS\Installer\{90120000-0014-0000-0000-0000000FF1CE}\misc.exe () <==== Cyrillic
Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Средства Microsoft Office\Диспетчер рисунков Microsoft Office.lnk -> C:\WINDOWS\Installer\{90120000-0014-0000-0000-0000000FF1CE}\oisicon.exe () <==== Cyrillic
Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Средства Microsoft Office\Организатор клипов (Microsoft).lnk -> C:\WINDOWS\Installer\{90120000-0014-0000-0000-0000000FF1CE}\cagicon.exe () <==== Cyrillic
Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Средства Microsoft Office\Центр диагностики Microsoft Office.lnk -> C:\WINDOWS\Installer\{90120000-0014-0000-0000-0000000FF1CE}\misc.exe () <==== Cyrillic
Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Средства Microsoft Office\Цифровой сертификат для проектов VBA.lnk -> C:\WINDOWS\Installer\{90120000-0014-0000-0000-0000000FF1CE}\misc.exe () <==== Cyrillic
Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Lexmark\S400 Series\Visit Product Home Page.LNK -> hxxp:\\www.lexmark.com\M
Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\ICE Book Reader Professional Russian\Деинсталлировать ICE Book Reader Professional Russian.lnk -> C:\Program Files\ICE Book Reader Professional Russian\unins000.exe () <==== Cyrillic

ShortcutWithArgument: C:\Documents and Settings\Natalija Djokic\Desktop\NEKORIŠĆENI\Яндекс.Диск.lnk -> C:\Program Files\Yandex\YandexDisk\bin\YandexDiskStarter.exe (Яндекс) -> -desktop <==== Cyrillic
ShortcutWithArgument: C:\Documents and Settings\All Users\Start Menu\Programs\Яндекс.Диск\Яндекс.Диск.lnk -> C:\Program Files\Yandex\YandexDisk\bin\YandexDiskStarter.exe (Яндекс) -> -desktop <==== Cyrillic
ShortcutWithArgument: C:\Documents and Settings\All Users\Start Menu\Programs\DjVuLibre\Help\Online documentation.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> url.dll,FileProtocolHandler hxxp://djvu.sourceforge.net/doc/index.html
ShortcutWithArgument: C:\Documents and Settings\All Users\Start Menu\Programs\DjVuLibre\Help\Visit Djvu.org.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> url.dll,FileProtocolHandler hxxp://djvu.org
ShortcutWithArgument: C:\Documents and Settings\All Users\Start Menu\Programs\DjVuLibre\Help\Visit DjVuLibre download page.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> url.dll,FileProtocolHandler hxxp://sourceforge.net/projects/djvu/files/DjVuLibre_Windows/
ShortcutWithArgument: C:\Documents and Settings\All Users\Start Menu\Programs\DjVuLibre\Help\Visit DjvuLibre.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> url.dll,FileProtocolHandler hxxp://djvu.sourceforge.net

==================== Loaded Modules (Whitelisted) ==============

2017-11-13 07:26 - 2002-09-10 14:57 - 000257536 _____ () C:\WINDOWS\system32\BIIMG.dll
2016-06-28 17:27 - 2010-11-12 15:48 - 000037888 _____ () C:\WINDOWS\system32\djvppm.dll
2016-05-10 14:50 - 2009-11-04 08:14 - 000157696 _____ () C:\WINDOWS\System32\spool\PRTPROCS\W32X86\lxeadrpp.dll
2015-07-09 01:49 - 2018-01-15 09:50 - 001048576 _____ () C:\Program Files\Everything\Everything.exe
2016-05-10 14:50 - 2013-01-23 13:43 - 000150264 _____ () C:\Program Files\Lexmark S300-S400 Series\ezprint.exe
2016-05-10 14:50 - 2010-04-05 05:56 - 000716954 _____ () C:\Program Files\Lexmark S300-S400 Series\Epwizard.DLL
2016-05-10 14:50 - 2010-04-05 05:55 - 000159890 _____ () C:\Program Files\Lexmark S300-S400 Series\customui.dll
2016-05-10 14:50 - 2010-04-05 05:54 - 000123033 _____ () C:\Program Files\Lexmark S300-S400 Series\Eputil.DLL
2016-05-10 14:50 - 2010-04-05 05:54 - 000143502 _____ () C:\Program Files\Lexmark S300-S400 Series\Imagutil.DLL
2016-05-10 14:50 - 2010-04-05 05:55 - 000061604 _____ () C:\Program Files\Lexmark S300-S400 Series\Epfunct.DLL
2016-05-10 14:50 - 2010-04-05 05:56 - 002203803 _____ () C:\Program Files\Lexmark S300-S400 Series\EPWizRes.dll
2016-05-10 14:50 - 2010-04-05 05:56 - 000045221 _____ () C:\Program Files\Lexmark S300-S400 Series\epstring.dll
2016-05-10 14:50 - 2010-04-05 05:56 - 000094359 _____ () C:\Program Files\Lexmark S300-S400 Series\EPOEMDll.dll
2016-05-10 14:50 - 2009-04-07 14:25 - 000409600 _____ () C:\Program Files\Lexmark S300-S400 Series\iptk.dll
2016-05-10 14:50 - 2009-03-02 09:25 - 000151552 _____ () C:\Program Files\Lexmark S300-S400 Series\lxeaptp.dll
2016-05-10 14:50 - 2009-05-18 08:29 - 000819200 _____ () C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\lxeaptpc.dll
2016-05-10 14:50 - 2009-11-04 08:14 - 000165376 _____ () C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\lxeadrui.dll
2016-05-10 14:50 - 2009-11-09 03:06 - 000159744 _____ () C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\lxeaPRPR.DLL
2016-05-10 14:50 - 2009-11-04 08:14 - 000236032 _____ () C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\lxeadr.dll
2010-11-12 15:42 - 2010-11-12 15:42 - 000094208 _____ () C:\Program Files\DjVu Printer Pilot\djvpagent.exe
2013-09-11 22:04 - 2013-09-11 22:04 - 000686408 _____ () c:\program files\abbyy finereader 12\DL100JP2KLib.dll
2018-03-12 16:20 - 2018-05-13 11:32 - 000271680 _____ () C:\Program Files\Yandex\YandexDisk\bin\libpng14-14.dll
2018-03-12 16:20 - 2018-05-13 11:32 - 000158016 _____ () C:\Program Files\Yandex\YandexDisk\bin\zlib1.dll
2018-04-12 22:15 - 2018-04-12 22:15 - 000085832 _____ () C:\Program Files\CCleaner\lang\lang-2074.dll
2016-05-10 14:50 - 2013-01-23 13:43 - 000772712 _____ () C:\Program Files\Lexmark S300-S400 Series\lxeamon.exe
2016-05-10 14:50 - 2010-04-01 12:23 - 000389120 _____ () C:\Program Files\Lexmark S300-S400 Series\lxeascw.dll
2016-05-10 14:50 - 2009-05-27 07:16 - 000192512 _____ () C:\WINDOWS\system32\spool\drivers\w32x86\3\lxeadatr.dll
2016-05-10 14:50 - 2010-04-01 12:24 - 001159168 _____ () C:\Program Files\Lexmark S300-S400 Series\lxeaDRS.dll
2016-05-10 14:50 - 2009-03-10 00:43 - 000155648 _____ () C:\Program Files\Lexmark S300-S400 Series\lxeacaps.dll
2016-05-10 14:49 - 2009-02-20 03:48 - 000299008 _____ () C:\WINDOWS\system32\lxeasm.dll
2016-05-10 14:49 - 2009-02-20 03:48 - 000023552 _____ () C:\WINDOWS\system32\lxeasmr.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\system32\netevent.dll:SummaryInformation [43]
AlternateDataStreams: C:\WINDOWS\system32\netevent.dll:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2007-08-11 08:58 - 2016-10-21 21:49 - 000000768 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 mpa.one.microsoft.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
HKU\S-1-5-21-1220945662-1770027372-1417001333-1004\Control Panel\Desktop\\Wallpaper -> (None)
DNS Servers: 192.168.1.1 - 0.0.0.0
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupfolder: C:^Documents and Settings^Natalija Djokic^Start Menu^Programs^Startup^OpenOffice.org 3.0.lnk => C:\WINDOWS\pss\OpenOffice.org 3.0.lnkStartup
MSCONFIG\startupreg: ProductUpdater =>

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

DomainProfile\AuthorizedApplications: [C:\Program Files\Winamp\winamp.exe] => Enabled:Winamp
StandardProfile\AuthorizedApplications: [C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe] => Enabled:Daemonu.exe
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\lxeacoms.exe] => Enabled:S300-S400 Series Server
StandardProfile\AuthorizedApplications: [C:\Program Files\Bonjour\mDNSResponder.exe] => Enabled:Bonjour
StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe] => Enabled:Adobe Version Cue CS3 Server
StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe] => Enabled:Adobe CSI CS4
StandardProfile\AuthorizedApplications: [C:\Program Files\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe] => Disabled:Advanced SystemCare 10
StandardProfile\AuthorizedApplications: [C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe] => Enabled:Flashget3
StandardProfile\AuthorizedApplications: [D:\Program Files\MediaMonkey\MediaMonkey.exe] => Enabled:MediaMonkey
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Yandex\YandexBrowser\Application\browser.exe] => Enabled:Yandex
StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE] => Enabled:Microsoft Office Outlook
StandardProfile\AuthorizedApplications: [C:\Program Files\qBittorrent\qbittorrent.exe] => Enabled:qBittorrent
StandardProfile\AuthorizedApplications: [C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe] => Enabled:Daemonu.exe
StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22007
StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22008
StandardProfile\GloballyOpenPorts: [3703:TCP] => Enabled:Adobe Version Cue CS3 Server
StandardProfile\GloballyOpenPorts: [3704:TCP] => Enabled:Adobe Version Cue CS3 Server
StandardProfile\GloballyOpenPorts: [50900:TCP] => Enabled:Adobe Version Cue CS3 Server
StandardProfile\GloballyOpenPorts: [50901:TCP] => Enabled:Adobe Version Cue CS3 Server
StandardProfile\GloballyOpenPorts: [5353:TCP] => Enabled:Adobe CSI CS4

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/21/2018 05:39:15 PM) (Source: Microsoft Management Console) (EventID: 1000) (User: )
Description: Event-ID 1000

Error: (05/20/2018 11:20:51 AM) (Source: crypt32) (EventID: 11) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/20/2018 11:20:51 AM) (Source: crypt32) (EventID: 11) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/19/2018 11:45:28 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/19/2018 03:26:06 PM) (Source: Microsoft Management Console) (EventID: 1000) (User: )
Description: Event-ID 1000

Error: (05/12/2018 11:34:22 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/12/2018 11:34:22 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/12/2018 11:28:57 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.


System errors:
=============
Error: (05/23/2018 05:59:40 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
ntiomin

Error: (05/23/2018 05:59:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The lxeaCATSCustConnectService service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (05/23/2018 05:59:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 milliseconds) waiting for the lxeaCATSCustConnectService service to connect.

Error: (05/23/2018 05:59:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The adfs service failed to start due to the following error:
The system cannot find the file specified.

Error: (05/23/2018 12:29:25 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
ntiomin

Error: (05/23/2018 12:29:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The lxeaCATSCustConnectService service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

Error: (05/23/2018 12:29:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 milliseconds) waiting for the lxeaCATSCustConnectService service to connect.

Error: (05/23/2018 12:29:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The adfs service failed to start due to the following error:
The system cannot find the file specified.


==================== Memory info ===========================

Processor: Intel(R) Celeron(R) CPU 2.80GHz
Percentage of memory in use: 42%
Total physical RAM: 1535.2 MB
Available physical RAM: 881.23 MB
Total Virtual: 2388.73 MB
Available Virtual: 1987.32 MB

==================== Drives ================================

Drive c: (SISTEM) (Fixed) (Total:29.29 GB) (Free:3.22 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive d: (ARHIVA) (Fixed) (Total:124.08 GB) (Free:5.77 GB) NTFS
Drive e: () (Fixed) (Total:488.28 GB) (Free:25.45 GB) NTFS
Drive f: () (Fixed) (Total:781.25 GB) (Free:34.15 GB) NTFS
Drive g: () (Fixed) (Total:149.42 GB) (Free:20.05 GB) NTFS
Drive h: () (Fixed) (Total:361.33 GB) (Free:19.95 GB) NTFS
Drive i: () (Fixed) (Total:81.9 GB) (Free:19.43 GB) NTFS
Drive k: (KINGSTON) (Removable) (Total:7.21 GB) (Free:2.2 GB) FAT32


==================== MBR & Partition Table ==================

==================== End of Addition.txt ============================

Da li se iz ovog može da vidi šta je mom kompjuteru i da li može da se popravi, bar privremeno a da ne reinstaliram ceo winodws.

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Ja u izvještajima ne vidim tragove malicioznog softvera, a ne vidim ni nešto što bi moglo da bude uzrok zamrzavanja.

offline
  • Nebojša Đokić
  • vojni istoričar
  • Pridružio: 03 Jun 2010
  • Poruke: 43
  • Gde živiš: Novi Beograd

Hvala sass drake.
Da li bi mogla da bude jedna od dve RAM memorije neispravna i da ako je neispravna dovodi do zamrzavanja. Trenutno to zamrzavanje nije često možda jednom u dva dana i to po pravilu kad radim u wordu ili kad treba da otvorim novi tab na netu. Na mozili mi se to dešavalo često ali od kada sam mozilu zamenio yandeksom pre nedelju dana to mi se desilo samo jednom.
Testirao sam kompjuter sa burnin i pokazao je da je sve ok osim port za ekran gde je pokazao neke greške ali po njima ne i bitne.
Kad sam prvi put ispitivao RAM memoriju odmah je pao sistem ali kasnija dva tri puta pokazao je da je sve ok.
chkdsk pokazuje da je sve ok osim da u bitmap ima praznih polja ili tako nešto.

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Moguće da RAM pravi problem ako je jedan od modula neispravan.

offline
  • Nebojša Đokić
  • vojni istoričar
  • Pridružio: 03 Jun 2010
  • Poruke: 43
  • Gde živiš: Novi Beograd

Hvala mnogo Sass Drake.

Ko je trenutno na forumu
 

Ukupno su 534 korisnika na forumu :: 5 registrovanih, 4 sakrivenih i 525 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: babaroga, Istman, laurusri, ruma, zziko