Usporen internet i download

1

Usporen internet i download

offline
  • Arhitekta
  • Pridružio: 13 Okt 2009
  • Poruke: 79

Zdravo i veliki pozdrav, imam velikih problemom sa brzinom ucitavanja stranica,sporo ucitava filmove i serije bez obzira koji je sajt u pitanju, usporen download iako je brzina 40mb, cak nekoliko minuta skida i 5 mb .



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Ran by admin (administrator) on VELESSTROJRU009 (29-03-2017 22:46:56)
Running from C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XHFFRM88
Loaded Profiles: admin & novo (Available Profiles: admin & novo)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\afwServ.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Popcorn Time) C:\Program Files (x86)\Popcorn Time\Updater.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\Silverlight_x64.exe
(Microsoft Corporation) C:\2933efb2f7cb7fb96c61\install.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Corporation) C:\Windows\Installer\MSI3E7B.tmp
(Microsoft Corporation) C:\Program Files\Microsoft Silverlight\5.1.50905.0\coregen.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-08-16] (IDT, Inc.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11\WLTRAY.exe [7032320 2014-05-05] (Broadcom Corporation)
HKLM\...\Run: [RtsCM] => RTSCM64.EXE (the data entry has 65 more characters).
HKLM\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [239104 2017-03-23] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [263088 2017-03-29] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [QLBController] => C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\QLBController.exe [337184 2013-08-01] (Hewlett-Packard Company)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-08-16] (Intel Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-1186553991-1588963794-3084758233-1002\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19276288 2016-09-22] ()
HKU\S-1-5-21-1186553991-1588963794-3084758233-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27545048 2017-03-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1186553991-1588963794-3084758233-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd)
HKU\S-1-5-21-1186553991-1588963794-3084758233-1002\...\Policies\Explorer: []
HKU\S-1-5-21-1186553991-1588963794-3084758233-1002\...\MountPoints2: {4d0d3bbc-7bb4-11e4-b82c-288023034d53} - E:\Startme.exe
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
IFEO\AcroRd32.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\adobe air application installer.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\appvlp.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\bloody6.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\bttray.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\btwuiext.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\connect.service.contentservice.admin.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\excel.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\iastorui.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\kmuninstall.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msouc.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\onenote.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\onenotem.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\outlook.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\pdfvista.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\pdvdlaunchpolicy.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\powerpnt.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\setlang.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\teamviewer.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\winword.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
Lsa: [Notification Packages] scecli c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2012-02-06] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2014-05-05]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
GroupPolicy: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 127.0.0.1 activate.adobe.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{C3083EDC-54CB-4CB3-8AB9-63753944D20B}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=CMNTDFJS
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=CMNTDFJS
HKU\S-1-5-21-1186553991-1588963794-3084758233-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.goole.com/
HKU\S-1-5-21-1186553991-1588963794-3084758233-1005\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=CMNTDFJS
HKU\S-1-5-21-1186553991-1588963794-3084758233-1005\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=CMNTDFJS
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2016-11-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-01-31] (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2012-01-03] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2016-11-01] (Microsoft Corporation)
BHO-x32: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2012-01-03] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2012-01-03] (Adobe Systems Incorporated)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\e313kj05.default-1490819928788 [2017-03-29]
FF Extension: (Skype Click to Call) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14] [not signed]
FF Extension: (Site Deployment Checker) - C:\Program Files (x86)\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-03-24] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-12-02] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll [2017-03-15] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-15] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-17] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-17] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-06-09] (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2012-01-03] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-09-12] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default [2017-03-29]
CHR Extension: (AdBlock) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-03-29]
CHR Extension: (HP Client Security Manager) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ncffjdbbodifgldkcbhmiiljfcnbgjab [2016-02-13]
CHR Extension: (Chrome Web Store Payments) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-11]
CHR Extension: (Chrome Media Router) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-15]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed]
R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [262696 2017-03-29] (AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files (x86)\AVG\Antivirus\afwServ.exe [311488 2017-03-29] (AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [7448992 2017-03-29] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428680 2017-03-23] (AVG Technologies CZ, s.r.o.)
S4 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042032 2017-01-17] (Microsoft Corporation)
S4 CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-09-18] (CyberLink)
S4 CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [298760 2013-09-18] (CyberLink)
S4 hpHotkeyMonitor; C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe [681760 2013-08-01] (Hewlett-Packard Company)
S3 hpqwmiex; C:\Users\admin\AppData\Roaming\Hewlett-Packard\hpqwmiex.exe [1224192 2017-03-29] (Hewlett-Packard Company) [File not signed]
S4 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S4 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-17] (Intel Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-17] (Intel Corporation)
S4 KDService; C:\Program Files\KDService\bin\KDService.exe [440832 2013-10-02] (KYOCERA Document Solutions Inc.) [File not signed]
S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
S4 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-07-18] (PDF Complete Inc)
S4 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-08-16] (IDT, Inc.) [File not signed]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-02-21] (AVG Technologies CZ, s.r.o.)
R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2015-10-19] (Popcorn Time) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-10-29] (Microsoft Corporation)
S4 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11\bcmwltry.exe [5878272 2014-05-05] (Broadcom Corporation) [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [166136 2017-03-29] (AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [310056 2017-03-29] (AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [192096 2017-03-29] (AVG Technologies CZ, s.r.o.)
R0 avgblog; C:\Windows\system32\drivers\avgbloga.sys [336408 2017-03-29] (AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [50848 2017-03-29] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\Windows\system32\drivers\avgHwid.sys [39288 2017-03-29] (AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [128096 2017-03-29] (AVG Technologies CZ, s.r.o.)
R3 avgNetNd6; C:\Windows\System32\DRIVERS\avgNetNd6.sys [29944 2017-03-29] (AVG Technologies CZ, s.r.o.)
R1 avgNetSec; C:\Windows\system32\drivers\avgNetSec.sys [506864 2017-03-29] (AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [102136 2017-03-29] (AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [76688 2017-03-29] (AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\system32\drivers\avgSnx.sys [1006040 2017-03-29] (AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\system32\drivers\avgSP.sys [557776 2017-03-29] (AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\system32\drivers\avgStm.sys [165048 2017-03-29] (AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\system32\drivers\avgVmm.sys [340688 2017-03-29] (AVG Technologies CZ, s.r.o.)
R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [165688 2012-09-25] (Broadcom Corporation.)
R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [90608 2011-12-27] (CyberLink)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [495376 2013-07-13] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28008 2013-08-08] (Intel Corporation)
R3 MEIx64; C:\Windows\system32\drivers\TeeDriverx64.sys [99288 2013-09-17] (Intel Corporation)
S3 RTSPER; C:\Windows\System32\DRIVERS\RtsPer.sys [429272 2013-08-21] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [8873688 2013-08-02] (Realtek Semiconductor Corp.)
S3 SmbDrv; C:\Windows\system32\drivers\Smb_driver_AMDASF.sys [30448 2013-09-04] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\drivers\Smb_driver_Intel.sys [34544 2013-09-04] (Synaptics Incorporated)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-02-21] (AVG Netherlands B.V.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-06-10] (Apple, Inc.) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-03-29 22:45 - 2017-03-29 22:46 - 00000000 ____D C:\FRST
2017-03-29 22:45 - 2017-03-29 22:45 - 00000000 ____D C:\2933efb2f7cb7fb96c61
2017-03-29 22:38 - 2017-03-29 22:38 - 00000000 ____D C:\Users\admin\Desktop\Стари Firefox подаци
2017-03-29 22:37 - 2017-03-29 22:37 - 00001170 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-03-29 22:37 - 2017-03-29 22:37 - 00001158 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-03-29 22:37 - 2017-03-29 22:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-29 22:26 - 2017-03-29 22:26 - 00245488 _____ C:\Users\admin\Downloads\Firefox Setup Stub 52.0.2.exe
2017-03-29 22:19 - 2017-03-29 22:19 - 00000829 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-03-29 22:08 - 2017-03-29 22:08 - 00003148 _____ C:\Windows\System32\Tasks\SidebarExecute
2017-03-29 21:25 - 2017-03-29 21:25 - 00032332 _____ C:\Users\admin\Documents\bookmarks_3_29_17.html
2017-03-29 21:25 - 2017-03-29 21:25 - 00032332 _____ C:\Users\admin\Desktop\bookmarks_3_29_172.html
2017-03-29 21:25 - 2017-03-29 21:25 - 00032332 _____ C:\Users\admin\Desktop\bookmarks_3_29_17.html
2017-03-29 21:22 - 2017-03-29 21:22 - 00016487 _____ C:\Users\admin\Desktop\bookmarks.html
2017-03-29 20:30 - 2017-03-29 20:30 - 00000000 ____D C:\Users\novo\AppData\Roaming\AVG
2017-03-29 20:27 - 2017-03-29 20:27 - 00000000 ____D C:\Users\novo\AppData\Roaming\Hewlett-Packard
2017-03-29 20:27 - 2015-02-04 05:16 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2017-03-29 20:27 - 2015-02-04 04:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2017-03-29 20:24 - 2017-03-29 20:24 - 00000000 ____D C:\Users\novo\AppData\Local\CEF
2017-03-29 20:23 - 2017-03-29 20:23 - 00003950 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{9ABDB4BD-B8C7-4BC3-BEA6-2E5D2F9A20E7}
2017-03-29 20:23 - 2017-03-29 20:23 - 00001424 _____ C:\Users\novo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-03-29 20:23 - 2017-03-29 20:23 - 00000000 ____D C:\Users\novo\AppData\Roaming\Adobe
2017-03-29 20:23 - 2017-03-29 20:23 - 00000000 ____D C:\Users\novo\AppData\Local\VirtualStore
2017-03-29 20:23 - 2017-03-29 20:23 - 00000000 ____D C:\Users\novo\AppData\Local\Google
2017-03-29 20:23 - 2017-03-29 20:23 - 00000000 ____D C:\Users\novo\AppData\Local\Avg
2017-03-29 20:22 - 2017-03-29 20:23 - 00000000 ____D C:\Users\novo
2017-03-29 20:22 - 2017-03-29 20:22 - 00000020 ___SH C:\Users\novo\ntuser.ini
2017-03-29 20:22 - 2017-03-29 20:22 - 00000000 _SHDL C:\Users\novo\My Documents
2017-03-29 20:22 - 2017-03-29 20:22 - 00000000 _SHDL C:\Users\novo\Documents\My Videos
2017-03-29 20:22 - 2017-03-29 20:22 - 00000000 _SHDL C:\Users\novo\Documents\My Pictures
2017-03-29 20:22 - 2017-03-29 20:22 - 00000000 _SHDL C:\Users\novo\Documents\My Music
2017-03-29 20:22 - 2014-06-27 06:32 - 00000000 ____D C:\Users\novo\AppData\Roaming\Macromedia
2017-03-29 20:22 - 2014-06-04 14:21 - 00002111 _____ C:\Users\novo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2017-03-29 20:22 - 2014-05-05 07:51 - 00000000 ____D C:\Users\novo\AppData\Roaming\Media Center Programs
2017-03-29 20:22 - 2014-05-05 07:35 - 00000000 ___HD C:\Users\novo\Documents\hp.system.package.metadata
2017-03-29 20:22 - 2014-05-05 07:35 - 00000000 ___HD C:\Users\novo\Documents\hp.applications.package.appdata
2017-03-29 13:00 - 2017-03-29 12:59 - 00506864 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgNetSec.sys
2017-03-29 12:59 - 2017-03-29 12:59 - 00029944 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgNetNd6.sys
2017-03-29 12:59 - 2017-03-29 12:50 - 00400928 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2017-03-28 23:29 - 2017-03-29 20:20 - 00000225 _____ C:\Windows\CryptoMill_CreoService.001
2017-03-28 23:29 - 2017-03-29 14:04 - 00000225 _____ C:\Windows\CryptoMill_CreoService.002
2017-03-28 23:29 - 2017-03-29 13:12 - 00000225 _____ C:\Windows\CryptoMill_CreoService.003
2017-03-28 23:29 - 2017-03-29 13:03 - 00000225 _____ C:\Windows\CryptoMill_CreoService.004
2017-03-28 23:28 - 2017-03-28 23:30 - 05019280 _____ C:\Windows\system32\FNTCACHE.DAT
2017-03-28 23:18 - 2017-03-28 23:18 - 00000000 _____ C:\Windows\SysWOW64\last.dump
2017-03-28 22:47 - 2017-03-28 22:47 - 00000000 ____D C:\Users\admin\AppData\Roaming\AVG
2017-03-28 22:45 - 2017-03-29 13:00 - 00003920 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update
2017-03-28 22:45 - 2017-03-29 12:50 - 00557776 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2017-03-28 22:45 - 2017-03-29 12:50 - 00340688 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2017-03-28 22:45 - 2017-03-29 12:50 - 00165048 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2017-03-28 22:45 - 2017-03-29 12:50 - 00128096 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2017-03-28 22:45 - 2017-03-29 12:50 - 00102136 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
2017-03-28 22:45 - 2017-03-29 12:50 - 00076688 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2017-03-28 22:45 - 2017-03-29 12:50 - 00039288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys
2017-03-28 22:45 - 2017-03-29 12:49 - 01006040 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2017-03-28 22:45 - 2017-03-29 12:49 - 00336408 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys
2017-03-28 22:45 - 2017-03-29 12:49 - 00310056 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys
2017-03-28 22:45 - 2017-03-29 12:49 - 00192096 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys
2017-03-28 22:45 - 2017-03-29 12:49 - 00166136 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbdiska.sys
2017-03-28 22:45 - 2017-03-29 12:49 - 00050848 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys
2017-03-28 22:36 - 2017-03-28 22:36 - 00002603 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp.lnk
2017-03-28 22:36 - 2017-03-28 22:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp
2017-03-28 22:36 - 2017-02-21 09:29 - 00053008 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\TURegOpt.exe
2017-03-28 22:36 - 2017-02-21 09:25 - 00044304 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\authuitu.dll
2017-03-28 22:36 - 2017-02-21 09:25 - 00042256 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\SysWOW64\authuitu.dll
2017-03-28 22:34 - 2017-03-28 22:34 - 00001008 _____ C:\Users\Public\Desktop\AVG.lnk
2017-03-28 22:34 - 2017-03-28 22:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2017-03-28 22:31 - 2017-03-28 22:41 - 00000000 ____D C:\Program Files (x86)\AVG
2017-03-28 22:31 - 2017-03-28 22:39 - 00003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task
2017-03-28 22:30 - 2017-03-29 17:13 - 00000000 ____D C:\ProgramData\Avg
2017-03-28 22:30 - 2017-03-28 22:39 - 00000000 ____D C:\Users\admin\AppData\Local\AvgSetupLog
2017-03-28 22:30 - 2017-03-28 22:35 - 00000000 ____D C:\Users\admin\AppData\Local\Avg
2017-03-28 22:29 - 2017-03-28 22:30 - 03449344 _____ (AVG Technologies CZ, s.r.o.) C:\Users\admin\Downloads\AVG_Performance_1683.exe
2017-03-21 19:53 - 2017-03-29 21:39 - 00000000 ____D C:\Users\admin\AppData\Local\Opera Software
2017-03-21 19:53 - 2017-03-21 19:53 - 00000000 ____D C:\Users\admin\AppData\Roaming\Opera Software
2017-03-21 19:40 - 2017-03-29 21:39 - 00000000 ____D C:\Program Files\Opera
2017-03-21 19:39 - 2017-03-21 19:40 - 01191624 _____ (Opera Software) C:\Users\admin\Downloads\OperaSetup.exe
2017-03-19 09:47 - 2017-03-19 09:47 - 00000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
2017-03-16 23:06 - 2017-03-16 23:07 - 00000196 _____ C:\Users\admin\Downloads\Cosmopolitan_India_-_March_2017.pdf
2017-03-16 23:06 - 2017-03-16 23:06 - 00000007 _____ C:\Users\admin\Downloads\Glamour_Russia_2017-03.pdf
2017-03-16 12:03 - 2017-03-16 12:55 - 51997522 _____ C:\Users\admin\Downloads\Women_Health_USA_-_April_2017.pdf
2017-03-16 12:00 - 2017-03-16 12:41 - 34600470 _____ C:\Users\admin\Downloads\Heat_-_March_18_2017.pdf
2017-03-16 11:57 - 2017-03-16 12:44 - 38436584 _____ C:\Users\admin\Downloads\Grazia_UK_-_March_20_2017.pdf
2017-03-16 11:54 - 2017-03-16 12:46 - 44411342 _____ C:\Users\admin\Downloads\Eat_Well_-_Issue_11_2017.pdf
2017-03-16 11:49 - 2017-03-17 00:55 - 192418691 _____ C:\Users\admin\Downloads\Tatler_Russia_2017-03.pdf
2017-03-16 11:46 - 2017-03-16 12:46 - 52955154 _____ C:\Users\admin\Downloads\InStyle_Australia_Magazine_April_2017.pdf
2017-03-16 11:42 - 2017-03-16 12:57 - 71724928 _____ C:\Users\admin\Downloads\Harper_Bazaar_USA_-_April_2017.pdf
2017-03-15 20:32 - 2017-03-15 20:32 - 00002697 _____ C:\Users\Public\Desktop\Skype.lnk
2017-03-15 20:32 - 2017-03-15 20:32 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-03-15 20:32 - 2017-03-15 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-15 19:43 - 2017-03-15 20:17 - 43987185 _____ C:\Users\admin\Downloads\Schner Wohnen April 2017p FreeMags.cc.pdf
2017-03-15 19:14 - 2017-03-15 19:39 - 26317952 _____ C:\Users\admin\Downloads\Woman_s_Weekly_UK_-_21_March_2017.pdf
2017-03-15 18:00 - 2017-03-15 18:27 - 35039344 _____ C:\Users\admin\Downloads\Redbook_-_April_2017.pdf
2017-03-15 04:32 - 2017-03-15 05:16 - 28554888 _____ C:\Users\admin\Downloads\Woman_UK_-_20_March_2017.pdf
2017-03-15 02:54 - 2017-03-15 03:21 - 39742422 _____ C:\Users\admin\Downloads\Look_UK_-_20_March_2017.pdf
2017-03-15 02:54 - 2017-03-15 03:11 - 21851067 _____ C:\Users\admin\Downloads\The_New_York_Times_Magazine_2017-03-12.pdf
2017-03-15 02:50 - 2017-03-15 02:54 - 03182329 _____ C:\Users\admin\Downloads\Woman_UK_-_20_March_2017.pdf.crdownload
2017-03-15 02:32 - 2017-03-15 02:56 - 38624256 _____ C:\Users\admin\Downloads\Woman_Day_Australia_March_20_2017.pdf
2017-03-15 02:28 - 2017-03-15 02:44 - 24579774 _____ C:\Users\admin\Downloads\Woman_s_Own_-_21_March_2017.pdf
2017-03-15 02:06 - 2017-03-15 02:34 - 49768458 _____ C:\Users\admin\Downloads\HELLO_magazine_20_March_2017.pdf
2017-03-15 01:32 - 2017-03-15 01:45 - 32738334 _____ C:\Users\admin\Downloads\Prevention_Australia_April_May_2017.pdf
2017-03-15 01:13 - 2017-03-15 01:25 - 24790111 _____ C:\Users\admin\Downloads\S_Magazine_Sunday_Express_12_March_2017.pdf
2017-03-15 01:10 - 2017-03-15 01:28 - 50258210 _____ C:\Users\admin\Downloads\Todays_Bride_-_Akron-Canton_-_2017.pdf
2017-03-15 01:00 - 2017-03-15 01:34 - 59034620 _____ C:\Users\admin\Downloads\Metro_Society_February_2017.pdf
2017-03-14 23:57 - 2017-03-15 00:25 - 36643249 _____ C:\Users\admin\Downloads\Taste of Home Simple, Easy, Fast Slow Cooker 385 slow-cooked recipes that beat the clock(1).epub
2017-03-14 14:17 - 2017-03-14 14:37 - 27339869 _____ C:\Users\admin\Downloads\TV_Life_12_March_2017.pdf
2017-03-14 13:59 - 2017-03-14 14:34 - 40799565 _____ C:\Users\admin\Downloads\Next_New_Zealand_-_April_2017.pdf
2017-03-14 13:59 - 2017-03-14 14:16 - 33872943 _____ C:\Users\admin\Downloads\NW_Magazine_Issue_12_2017.pdf
2017-03-14 13:58 - 2017-03-14 14:16 - 29493779 _____ C:\Users\admin\Downloads\Absolutely_Mama_March-April_2017.pdf
2017-03-14 13:55 - 2017-03-14 14:49 - 92803067 _____ C:\Users\admin\Downloads\Vogue_Arabia_-_March_2017.pdf
2017-03-14 04:39 - 2017-03-14 05:09 - 44945365 _____ C:\Users\admin\Downloads\Moje_Lepo_Stanovanje_-_April_2017.pdf
2017-03-14 03:27 - 2017-03-14 04:09 - 42192633 _____ C:\Users\admin\Downloads\Moje_Lepo_Stanovanje_-_April_2017.pdf.crdownload
2017-03-14 02:05 - 2017-03-14 02:51 - 69238885 _____ C:\Users\admin\Downloads\Novias Spain PrimaveraVerano 2017 FreeMags.cc.pdf
2017-03-14 01:07 - 2017-03-14 01:44 - 54932670 _____ C:\Users\admin\Downloads\Woman___Home_South_Africa_-_April_2017.pdf
2017-03-14 00:19 - 2017-03-14 00:54 - 40248100 _____ C:\Users\admin\Downloads\Les Ides de ma Maison Avril 2017 FreeMags.cc.pdf
2017-03-14 00:18 - 2017-03-14 00:59 - 56539099 _____ C:\Users\admin\Desktop\Cosmopolitan_Australia_-_April_2017.pdf
2017-03-13 21:48 - 2017-03-13 22:25 - 54489719 _____ C:\Users\admin\Desktop\Harper_s_Bazaar_Australia_-_April_2017.pdf
2017-03-13 19:24 - 2017-03-13 19:25 - 01570287 _____ C:\Users\admin\Desktop\Cupcakes. Creative Ideas That Work.epub
2017-03-13 19:23 - 2017-03-13 19:35 - 21804904 _____ C:\Users\admin\Downloads\Sally's Candy Addiction Tasty Truffles, Fudges & Treats for Your Sweet-Tooth Fix.pdf
2017-03-13 19:11 - 2017-03-13 19:50 - 40343289 _____ C:\Users\admin\Downloads\Harper_s_Bazaar_Australia_-_April_2017.pdf.crdownload
2017-03-13 16:49 - 2017-03-13 16:55 - 08725052 _____ C:\Users\admin\Downloads\The Best Pressure Cooker Recipes on the Planet.epub
2017-03-13 16:35 - 2017-03-13 16:45 - 12590606 _____ C:\Users\admin\Downloads\Taste of Home Soups Mini Binder.epub
2017-03-13 16:33 - 2017-03-13 17:21 - 66443181 _____ C:\Users\admin\Downloads\Breaking Breads.pdf
2017-03-13 13:51 - 2017-03-13 13:53 - 06746690 _____ C:\Users\admin\Downloads\Unfiltered No Shame, No Regrets, Just Me.epub
2017-03-12 23:34 - 2017-03-13 00:59 - 121556080 _____ C:\Users\admin\Downloads\Femme Magazine N282 Mars 2017 FreeMags.cc.pdf
2017-03-12 23:26 - 2017-03-12 23:59 - 38950661 _____ C:\Users\admin\Downloads\Saay_-_11_March_2017.pdf
2017-03-12 15:14 - 2017-03-12 15:49 - 49554854 _____ C:\Users\admin\Downloads\New_york_family_0304_2017.pdf
2017-03-12 13:14 - 2017-03-12 13:36 - 29751668 _____ C:\Users\admin\Downloads\Latina042017.pdf
2017-03-12 02:35 - 2017-03-12 03:27 - 63299920 _____ C:\Users\admin\Downloads\Nya Rum Nr2 2017 FreeMags.cc.pdf
2017-03-12 01:14 - 2017-03-12 01:38 - 26637188 _____ C:\Users\admin\Downloads\HobbyLife Nr2 2017 FreeMags.cc.pdf
2017-03-11 23:05 - 2017-03-11 23:12 - 12675477 _____ C:\Users\admin\Downloads\Newsweek_International_17_March_2017.pdf
2017-03-11 23:03 - 2017-03-11 23:15 - 19967570 _____ C:\Users\admin\Downloads\Natural_Health_April_2017.pdf
2017-03-11 20:00 - 2017-03-11 20:13 - 36677254 _____ C:\Users\admin\Downloads\Coveted_0304_2017.pdf
2017-03-11 19:59 - 2017-03-11 19:59 - 00000007 _____ C:\Users\admin\Downloads\InStyle Germany April 2017 FreeMags.cc.pdf
2017-03-11 19:14 - 2017-03-11 19:35 - 26179198 _____ C:\Users\admin\Downloads\Life_Style_Weekly_March_20_2017.pdf
2017-03-11 18:51 - 2017-03-11 19:20 - 41782294 _____ C:\Users\admin\Downloads\Star_Magazine_USA_March_20_2017.pdf
2017-03-11 02:27 - 2017-03-11 02:53 - 39324818 _____ C:\Users\admin\Downloads\Shape USA April 2017 FreeMags.cc.pdf
2017-03-11 01:56 - 2017-03-11 02:15 - 30355359 _____ C:\Users\admin\Desktop\Family Circle April 2017 FreeMags.cc.pdf
2017-03-11 00:02 - 2017-03-11 00:26 - 36536143 _____ C:\Users\admin\Desktop\Martha Stewart Living April 2017 FreeMags.cc.pdf
2017-03-10 23:22 - 2017-03-11 00:24 - 93778902 _____ C:\Users\admin\Desktop\Harpers Bazaar India March 2017 FreeMags.cc.pdf
2017-03-10 22:37 - 2017-03-10 23:10 - 51147071 _____ C:\Users\admin\Downloads\Hrligt Hemma 18 Februari 2017 FreeMags.cc.pdf
2017-03-10 20:44 - 2017-03-10 21:50 - 100045947 _____ C:\Users\admin\Desktop\Marie Claire Italia Aprile 2017 FreeMags.cc.pdf
2017-03-10 16:38 - 2017-03-10 17:05 - 41941518 _____ C:\Users\admin\Downloads\Cucina Moderna Aprile 2017 FreeMags.cc.pdf
2017-03-10 16:19 - 2017-03-10 16:22 - 89242774 _____ C:\Users\admin\Downloads\My_Home_Improvement_-_March-April_2017.pdf
2017-03-10 16:11 - 2017-03-10 16:13 - 36901043 _____ C:\Users\admin\Desktop\Good_Housekeeping_USA_April_2017.pdf
2017-03-10 16:01 - 2017-03-10 16:51 - 75636427 _____ C:\Users\admin\Downloads\Architectural Digest USA April 2017 FreeMags.cc.pdf
2017-03-10 15:37 - 2017-03-10 15:40 - 89500300 _____ C:\Users\admin\Desktop\You_and_Your_Wedding_March_April_2017.pdf
2017-03-10 15:34 - 2017-03-10 15:36 - 34171702 _____ C:\Users\admin\Downloads\Sew_Issue_96_April_2017.pdf
2017-03-10 00:29 - 2017-03-10 01:03 - 51854979 _____ C:\Users\admin\Downloads\Traumwohnen MrzApril 2017 FreeMags.cc.pdf
2017-03-09 20:11 - 2017-03-09 20:12 - 26429902 _____ C:\Users\admin\Downloads\Pie! 100 Gorgeously Glorious Recipes.epub
2017-03-09 19:39 - 2017-03-09 19:40 - 26280799 _____ C:\Users\admin\Downloads\The_Peoples_Friend_N7666_March_11_2017.pdf
2017-03-09 19:22 - 2017-03-09 19:22 - 14985218 _____ C:\Users\admin\Downloads\Consumer_Reports_How_to_Clean_May_2017.pdf
2017-03-09 18:39 - 2017-03-09 18:40 - 23185979 _____ C:\Users\admin\Desktop\Womans_World_USA_March_20_2017.pdf
2017-03-09 18:26 - 2017-03-09 18:32 - 163129603 _____ C:\Users\admin\Downloads\Sainsburys_Magazine_March_2017p.pdf
2017-03-09 17:47 - 2017-03-09 17:48 - 42772209 _____ C:\Users\admin\Downloads\OK_Magazine_USA_Issue_12_March_20_2017.pdf
2017-03-09 16:39 - 2017-03-09 17:06 - 41572479 _____ C:\Users\admin\Desktop\Marie Claire France Avril 2017 FreeMags.cc.pdf
2017-03-09 12:46 - 2017-03-09 12:48 - 54010118 _____ C:\Users\admin\Desktop\Elle_India_March_2017.pdf
2017-03-09 12:42 - 2017-03-09 12:43 - 32456492 _____ C:\Users\admin\Desktop\Health_USA_April_2017.pdf
2017-03-09 03:01 - 2017-03-09 03:42 - 61702080 _____ C:\Users\admin\Desktop\Bella UK Issue 12 14 March 2017p FreeMags.cc.pdf
2017-03-09 01:52 - 2017-03-09 02:12 - 29458372 _____ C:\Users\admin\Desktop\Womans Weekly New Zealand March 13 2017 FreeMags.cc.pdf
2017-03-09 01:34 - 2017-03-09 01:35 - 28427071 _____ C:\Users\admin\Downloads\Sweet_paul_spring2017.pdf
2017-03-09 01:28 - 2017-03-09 01:30 - 34519212 _____ C:\Users\admin\Downloads\Vanity_Fair_UK_March_2017.pdf
2017-03-09 01:20 - 2017-03-09 01:22 - 32496189 _____ C:\Users\admin\Downloads\Heat_Issue_926_1117_March_2017.pdf
2017-03-09 01:09 - 2017-03-09 01:13 - 64164072 _____ C:\Users\admin\Downloads\The Pie Project Hot, Cold, Hand, Cheat. 60 Pies - All of Them Sweet.epub
2017-03-09 01:03 - 2017-03-09 01:04 - 36643061 _____ C:\Users\admin\Downloads\Taste of Home Simple, Easy, Fast Slow Cooker 385 Slow-Cooked Recipes That Beat The Clock.epub
2017-03-09 01:01 - 2017-03-09 01:46 - 68880638 _____ C:\Users\admin\Downloads\So isst Italien AprilMai 2017 FreeMags.cc.pdf
2017-03-09 00:50 - 2017-03-09 00:52 - 44889976 _____ C:\Users\admin\Downloads\Taste of Home Skinny Slow Cooker Cook Smart, Eat Smart with 278 Healthy Slow-Cooker Recipes.epub
2017-03-08 23:54 - 2017-03-08 23:56 - 16229643 _____ C:\Users\admin\Downloads\Tea Party 20 Themed Tea Parties with Recipes for Every Occasion, from Fabulous Showers to Intimate Gatherings.epub
2017-03-08 23:33 - 2017-03-08 23:33 - 05960128 _____ C:\Users\admin\Downloads\The Star Wars Cook Book Wookiee Cookies and Other Galactic Recipes.epub
2017-03-08 23:24 - 2017-03-08 23:48 - 36628975 _____ C:\Users\admin\Desktop\Prima UK April 2017 FreeMags.cc.pdf
2017-03-08 12:34 - 2017-03-08 12:35 - 19728832 _____ C:\Users\admin\Downloads\Label_Magazine_Autumn_2017.pdf
2017-03-08 12:33 - 2017-03-08 13:01 - 43854344 _____ C:\Users\admin\Downloads\Harpers Bazaar Mexico Marzo 2017 FreeMags.cc.pdf
2017-03-08 01:47 - 2017-03-08 02:09 - 34098037 _____ C:\Users\admin\Downloads\Jacksonville Magazines Taste Spring 2017 FreeMags.cc.pdf
2017-03-07 22:34 - 2017-03-07 23:26 - 79503288 _____ C:\Users\admin\Downloads\Living Etc UK April 2017 FreeMags.cc.pdf
2017-03-07 21:30 - 2017-03-07 21:32 - 45363489 _____ C:\Users\admin\Downloads\Look_UK_13_March_2017.pdf
2017-03-07 19:00 - 2017-03-07 19:02 - 35101346 _____ C:\Users\admin\Downloads\NW_Magazine_Issue_11_2017.pdf
2017-03-07 18:44 - 2017-03-07 18:53 - 14133500 _____ C:\Users\admin\Desktop\Womans Weekly Fiction Special April 2017 FreeMags.cc.pdf
2017-03-07 18:06 - 2017-03-07 18:25 - 28805981 _____ C:\Users\admin\Downloads\HomeMade Nr2 2017p FreeMags.cc.pdf
2017-03-07 17:37 - 2017-03-07 17:58 - 32104019 _____ C:\Users\admin\Downloads\La Cucina Italiana Turkey Mart 2017 FreeMags.cc.pdf
2017-03-07 14:59 - 2017-03-07 15:03 - 97221895 _____ C:\Users\admin\Downloads\Vogue_China_March_2017.pdf
2017-03-07 14:55 - 2017-03-07 15:26 - 47190472 _____ C:\Users\admin\Downloads\Super Food Ideas April 2017 FreeMags.cc.pdf
2017-03-07 14:53 - 2017-03-07 14:55 - 50040867 _____ C:\Users\admin\Downloads\Womens_Health_Australia_April_2017.pdf
2017-03-06 23:05 - 2017-03-06 23:35 - 46316829 _____ C:\Users\admin\Downloads\Look UK 13 March 2017 FreeMags.cc.pdf
2017-03-06 18:18 - 2017-03-06 18:22 - 106751304 _____ C:\Users\admin\Downloads\1118067754.pdf
2017-03-06 18:10 - 2017-03-06 18:13 - 66623716 _____ C:\Users\admin\Downloads\140160451X.pdf
2017-03-06 18:06 - 2017-03-06 18:55 - 74760500 _____ C:\Users\admin\Desktop\donna hay magazine Issue 92 AprilMay 2017 FreeMags.cc.pdf
2017-03-06 00:35 - 2017-03-06 00:53 - 26402815 _____ C:\Users\admin\Desktop\Yummy March 2017 FreeMags.cc.pdf
2017-03-05 14:39 - 2017-03-05 14:39 - 05638376 _____ C:\Users\admin\Desktop\Foodbook_-_Summer_Entertaining_2016.pdf
2017-03-05 13:01 - 2017-03-05 13:03 - 27056333 _____ C:\Users\admin\Downloads\In_Touch_Weekly_March_13_2017.pdf
2017-03-05 12:53 - 2017-03-05 13:42 - 75486071 _____ C:\Users\admin\Downloads\Rum Hemma Nr3 2017 FreeMags.cc.pdf
2017-03-05 01:36 - 2017-03-05 02:05 - 41995179 _____ C:\Users\admin\Downloads\House Home April 2017 FreeMags.cc.pdf
2017-03-04 19:14 - 2017-03-04 19:24 - 151991110 _____ C:\Users\admin\Desktop\Vogue_India_-_March_2017.pdf
2017-03-04 14:08 - 2017-03-04 14:08 - 11034512 _____ C:\Users\admin\Downloads\Food_In_Canada_March_2017.pdf
2017-03-04 02:25 - 2017-03-04 02:27 - 51064047 _____ C:\Users\admin\Desktop\Glamour_UK_April_2017.pdf
2017-03-04 02:22 - 2017-03-04 02:25 - 70680189 _____ C:\Users\admin\Downloads\Tatler_UK_April_2017.pdf
2017-03-03 19:05 - 2017-03-03 19:08 - 71789592 _____ C:\Users\admin\Downloads\Harpers_Bazaar_UK_April_2017.pdf
2017-03-03 19:01 - 2017-03-03 19:02 - 27371924 _____ C:\Users\admin\Downloads\Shape_Malaysia_March_2017.pdf
2017-03-03 00:48 - 2017-03-03 00:48 - 00000049 _____ C:\Users\admin\Downloads\TeleCulinria Especial Maro 2017 FreeMags.cc.pdf
2017-03-03 00:12 - 2017-03-03 00:58 - 67411692 _____ C:\Users\admin\Downloads\Period_Living_-_April_2017.pdf
2017-03-02 15:01 - 2017-03-02 15:01 - 07334048 _____ C:\Users\admin\Downloads\1452158886.epub
2017-03-02 14:15 - 2017-03-02 14:17 - 60943005 _____ C:\Users\admin\Downloads\Homestyle_UK_April_2017.pdf
2017-03-02 14:00 - 2017-03-02 14:01 - 33621153 _____ C:\Users\admin\Downloads\Hampshire_Style_March_2017.pdf
2017-03-02 13:57 - 2017-03-02 13:59 - 46301696 _____ C:\Users\admin\Downloads\Grazia_UK_Issue_617_6_March_2017.pdf
2017-02-28 23:29 - 2017-03-01 00:23 - 82160566 _____ C:\Users\admin\Downloads\Ideal Home UK April 2017 FreeMags.cc.pdf
2017-02-28 22:00 - 2017-02-28 22:03 - 66053855 _____ C:\Users\admin\Downloads\Perfect_Wedding_March_2017.pdf
2017-02-28 02:16 - 2017-02-28 02:16 - 00000049 _____ C:\Users\admin\Downloads\Home Design MarchApril 2017 FreeMags.cc.pdf
2017-02-27 21:19 - 2017-02-27 21:45 - 40654923 _____ C:\Users\admin\Downloads\Homes March 2017 FreeMags.cc.pdf
2017-02-27 15:14 - 2017-02-27 16:04 - 77027541 _____ C:\Users\admin\Desktop\Hem Ljuva Hem Nr3 2017 FreeMags.cc.pdf
2017-02-27 15:12 - 2017-02-27 15:35 - 34049141 _____ C:\Users\admin\Downloads\Home Decor March 2017 FreeMags.cc.pdf
2017-02-27 02:50 - 2017-03-14 01:56 - 00000000 ____D C:\Users\admin\Desktop\Fotografisati slike ili prepisati recept
2017-02-27 00:07 - 2017-02-27 01:24 - 117488280 _____ C:\Users\admin\Downloads\Grazia Italia N10 23 Febbraio 2017 FreeMags.cc.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-03-29 22:47 - 2014-11-28 13:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-03-29 22:46 - 2016-11-23 14:18 - 00000000 ____D C:\Users\admin\AppData\LocalLow\Mozilla
2017-03-29 22:45 - 2014-11-28 13:36 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-03-29 22:45 - 2014-11-28 13:36 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2017-03-29 22:37 - 2016-11-22 19:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-29 22:21 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-03-29 22:20 - 2016-02-10 02:55 - 00000000 ____D C:\Program Files\CCleaner
2017-03-29 22:18 - 2009-07-14 06:45 - 00026608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-29 22:18 - 2009-07-14 06:45 - 00026608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-29 22:16 - 2009-07-14 07:13 - 00783494 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-29 22:11 - 2016-02-10 02:56 - 00002804 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2017-03-29 22:09 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-29 22:08 - 2013-10-29 05:27 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2017-03-29 22:08 - 2013-10-29 05:26 - 00000000 ____D C:\Program Files\Hewlett-Packard
2017-03-29 22:07 - 2014-11-28 13:01 - 00000000 ____D C:\Users\admin\AppData\Roaming\hpqLog
2017-03-29 22:07 - 2014-05-05 07:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2017-03-29 21:53 - 2013-10-29 05:29 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-03-29 21:52 - 2013-10-29 05:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2017-03-29 21:52 - 2013-10-29 05:29 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2017-03-29 21:47 - 2014-12-02 16:15 - 00000000 __SHD C:\Users\admin\AppData\LocalLow\EmieUserList
2017-03-29 21:47 - 2014-12-02 16:15 - 00000000 __SHD C:\Users\admin\AppData\LocalLow\EmieBrowserModeList
2017-03-29 21:47 - 2014-11-28 14:38 - 00000000 __SHD C:\Users\admin\AppData\LocalLow\EmieSiteList
2017-03-29 21:39 - 2016-02-15 02:02 - 00003954 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{47A1A053-774D-4AB6-9B14-28841CA7B347}
2017-03-29 21:39 - 2014-07-21 08:44 - 00003142 _____ C:\Windows\System32\Tasks\{42EA45E0-E458-4C3D-B8FC-94AD6DC699F2}
2017-03-29 21:39 - 2014-07-08 16:33 - 00003138 _____ C:\Windows\System32\Tasks\{FF524289-C2C5-45F1-9E01-D010DAF71B54}
2017-03-29 21:39 - 2014-07-08 16:30 - 00003142 _____ C:\Windows\System32\Tasks\{82275A83-A6C8-4860-B6E2-1ADBABCFED1D}
2017-03-29 21:29 - 2014-11-28 13:01 - 00000000 ____D C:\Users\admin\AppData\Roaming\Hewlett-Packard
2017-03-29 21:28 - 2014-06-09 12:46 - 00000000 ____D C:\Program Files (x86)\Google
2017-03-29 21:14 - 2015-10-16 17:12 - 00003076 _____ C:\Windows\System32\Tasks\{359A7C2A-0CDA-47D3-826D-8D5AA6764DCA}
2017-03-29 13:10 - 2013-10-29 05:31 - 00001945 _____ C:\Windows\epplauncher.mif
2017-03-29 12:53 - 2014-05-05 07:56 - 00000225 _____ C:\Windows\CryptoMill_CreoService.005
2017-03-28 23:37 - 2016-02-10 02:18 - 00000000 ____D C:\ProgramData\AVAST Software
2017-03-28 23:04 - 2015-01-04 22:25 - 00000000 ____D C:\Users\admin\Documents\GomPlayer
2017-03-28 23:04 - 2014-10-06 06:50 - 00000000 ____D C:\Program Files (x86)\Steam
2017-03-28 23:01 - 2016-02-10 01:48 - 00000000 ____D C:\Users\admin\AppData\Roaming\TeamViewer
2017-03-28 23:01 - 2016-02-10 01:48 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-03-28 23:01 - 2014-12-02 02:25 - 00000000 ____D C:\Users\admin\AppData\Local\Microsoft Help
2017-03-28 23:01 - 2014-11-28 14:22 - 00000000 ____D C:\Users\admin\AppData\Roaming\Skype
2017-03-28 23:01 - 2014-05-05 07:48 - 00000000 ____D C:\ProgramData\Temp
2017-03-28 23:01 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep
2017-03-28 22:59 - 2013-10-29 05:31 - 00004314 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-03-28 22:41 - 2013-10-29 05:31 - 00000000 ____D C:\ProgramData\PDFC
2017-03-28 22:30 - 2014-11-28 13:02 - 00104088 _____ C:\Users\admin\AppData\Local\GDIPFONTCACHEV1.DAT
2017-03-23 20:22 - 2014-05-05 07:37 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-03-23 20:20 - 2014-06-04 14:16 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-03-16 23:14 - 2016-02-10 02:39 - 00547904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.148969896347404
2017-03-16 23:14 - 2016-02-10 02:39 - 00337592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.148969896724806
2017-03-15 20:32 - 2014-05-05 07:47 - 00000000 ____D C:\ProgramData\Skype
2017-03-15 20:29 - 2013-10-29 05:26 - 00000000 ____D C:\ProgramData\Package Cache
2017-03-15 19:19 - 2016-03-17 02:49 - 00000000 ____D C:\Users\admin\Desktop\vezbe i zdravlje
2017-03-15 19:09 - 2016-06-15 00:12 - 00000000 ____D C:\Users\admin\Desktop\baby and parents
2017-03-15 18:36 - 2016-03-06 17:55 - 00000000 ____D C:\Users\admin\Desktop\Garden and architectural
2017-03-15 18:26 - 2016-02-21 23:10 - 00000000 ____D C:\Users\admin\Desktop\Casopisi o hrani-prelistano
2017-03-15 03:42 - 2014-11-28 14:39 - 00000000 ____D C:\Windows\system32\Macromed
2017-03-15 03:42 - 2013-10-29 05:31 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-03-15 03:42 - 2013-10-29 05:31 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-15 03:42 - 2013-10-29 05:31 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-03-15 02:52 - 2016-03-06 17:45 - 00000000 ____D C:\Users\admin\Desktop\Magazin
2017-03-14 02:29 - 2016-03-06 16:52 - 00000000 ____D C:\Users\admin\Desktop\Casopisi DIY
2017-03-13 21:02 - 2016-12-14 09:51 - 00000000 ____D C:\Users\admin\Desktop\Srediti stvari
2017-03-13 16:25 - 2015-02-22 22:36 - 00000000 ____D C:\ProgramData\Oracle
2017-03-12 02:53 - 2014-06-21 18:53 - 00000000 ____D C:\Windows\Minidump
2017-03-11 18:39 - 2014-11-28 13:00 - 00000000 ____D C:\Users\admin
2017-03-10 01:51 - 2016-11-04 06:31 - 00000000 ____D C:\Users\admin\Desktop\Prelistatiiiiiiiiiii

==================== Files in the root of some directories =======

2014-06-09 13:35 - 2014-06-09 13:35 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Files to move or delete:
====================
C:\Users\admin\Start.exe


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-03-29 13:34

==================== End of FRST.txt ============================





Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by admin (29-03-2017 22:48:51)
Running from C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XHFFRM88
Windows 7 Professional Service Pack 1 (X64) (2014-06-04 12:00:27)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

admin (S-1-5-21-1186553991-1588963794-3084758233-1002 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-1186553991-1588963794-3084758233-500 - Administrator - Disabled)
Guest (S-1-5-21-1186553991-1588963794-3084758233-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-1186553991-1588963794-3084758233-1004 - Limited - Enabled)
novo (S-1-5-21-1186553991-1588963794-3084758233-1005 - Administrator - Enabled) => C:\Users\novo

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG Antivirus (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Antivirus (Enabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1186553991-1588963794-3084758233-1002\...\uTorrent) (Version: 3.4.8.42449 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat X Pro - English, Russian (HKLM-x32\...\{AC76BA86-1048-8780-7760-000000000005}) (Version: 10.1.2 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.8.0.870 - Adobe Systems Incorporated)
Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Alcor Micro Smart Card Reader Driver (HKLM-x32\...\SZCCID) (Version: 1.7.37.0 - Alcor Micro Corp.)
Alcor Micro Smart Card Reader Driver (x32 Version: 1.7.37.0 - Alcor Micro Corp.) Hidden
AutoCAD Civil 3D 2012 (HKLM\...\AutoCAD Civil 3D 2012) (Version: 9.0.1619.0 - Autodesk)
AutoCAD Civil 3D 2012 (Version: 9.0.1619.0 - Autodesk) Hidden
AutoCAD Civil 3D 2012 32 Bit Object Enabler on Autodesk® Storm and Sanitary Analysis 2012 - Language Neutral (HKLM-x32\...\{086E8CA5-8B93-4AB6-9C30-ED774084CE2C}) (Version: 1619.0 - Autodesk, Inc.)
AutoCAD Civil 3D 2012 Language Pack - English (Version: 9.0.1619.0 - Autodesk) Hidden
AutoCAD Civil 3D 2013 - English (Version: 10.0.1111.0 - Autodesk) Hidden
AutoCAD Civil 3D 2013 (HKLM\...\AutoCAD Civil 3D 2013) (Version: 10.0.1111.0 - Autodesk)
AutoCAD Civil 3D 2013 (Version: 10.0.1111.0 - Autodesk) Hidden
AutoCAD Civil 3D 2013 Language Pack - English (Version: 10.0.1111.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Material Library 2012 (HKLM-x32\...\{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library 2013 (HKLM-x32\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2012 (HKLM-x32\...\{65420DC9-306E-4371-905F-F4DC3B418E52}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2013 (HKLM-x32\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk)
Autodesk Sync (HKLM\...\{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}) (Version: 3.5.24.0 - Autodesk, Inc.)
Autodesk® Storm and Sanitary Analysis 2012 (HKLM-x32\...\{D7926497-E476-489B-B4E9-DBFCA45483A2}) (Version: 6.4.29 - Autodesk, Inc.)
Autodesk® Storm and Sanitary Analysis 2012 x64 Plug-in (HKLM\...\{477D0032-A4FC-4F9E-8C74-CBA40B712E88}) (Version: 6.4.29 - Autodesk, Inc.)
AVG (HKLM\...\AvgZen) (Version: 1.162.2.62416 - AVG Technologies)
AVG (Version: 1.162.1 - AVG Technologies) Hidden
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.74.2.60831 - AVG Technologies)
AVG PC TuneUp (x32 Version: 16.74.1 - AVG Technologies) Hidden
AVG Protection (HKLM-x32\...\AVG Antivirus) (Version: 17.3.3010 - AVG Technologies)
Bloody6 (HKLM-x32\...\Bloody3) (Version: 16.09.0013 - Bloody)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: - Broadcom Corporation)
Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.3700 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\Broadcom Wireless Utility) (Version: - Broadcom Corporation)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.68.1077 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.3207 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.2.3318 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.2.1.4225 - CyberLink Corp.)
EPUB File Reader (HKLM-x32\...\{818C5857-5C74-4CAC-9F43-E5597086852D}_is1) (Version: - epubfilereader.com)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
FMW 1 (Version: 1.182.1 - AVG Technologies) Hidden
FormatFactory 3.1.1 (HKLM-x32\...\FormatFactory) (Version: 3.1.1 - Free Time)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.2.64.5211 - Gretech Corporation)
Google Talk Plugin (HKLM-x32\...\{0C5C1177-94C5-3EFB-A8BE-3F6AF1AF887F}) (Version: 5.38.6.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
HDD Regenerator (HKLM-x32\...\{2445981B-A23B-4A0E-AD15-3D391BDAEC3E}) (Version: 1.71.0012 - Abstradrome)
HP 3D DriveGuard (HKLM-x32\...\{07F6DC37-0857-4B68-A675-4E35989E85E3}) (Version: 6.0.15.1 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{1F9551BA-A9D4-4F9D-8526-F8CEB8C10C3E}) (Version: 1.1.0.0 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{240B2BF7-E7E6-425C-A2A4-A3149189BF7F}) (Version: 2.3.1 - Hewlett-Packard Company)
HP HD Webcam Driver (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10242 - Realtek Semiconductor Corp.)
HP Hotkey Support (HKLM-x32\...\{C807BEFB-0F17-41AC-B307-D7B5E1553040}) (Version: 5.0.20.1 - Hewlett-Packard Company)
HP PageLift (HKLM-x32\...\{708ABF62-5D7A-4550-823A-1F9EFA63645A}) (Version: 1.0.11.1 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15453.4066 - Hewlett-Packard Company)
HP SoftPaq Download Manager (HKLM-x32\...\{49524B48-4FE9-4A62-A9FD-1F2258DF5489}) (Version: 3.4.12.0 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{B1AFAD6F-9192-421F-9DFF-60A59571366B}) (Version: 8.7.3 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
HP System Default Settings (HKLM-x32\...\{3A61A282-4F08-4D43-920C-DC30ECE528E8}) (Version: 2.6.1 - Hewlett-Packard Company)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.5.0.001 - HTC Corporation)
HTC Driver Installer (HKLM-x32\...\{6D6664A9-3342-4948-9B7E-034EFE366F0F}) (Version: 3.0.0.003 - HTC Corporation)
HTC Sync (HKLM-x32\...\{CBDAE89D-8ABD-4DC5-9309-C2C58696B371}) (Version: 3.3.63 - HTC Corporation)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6491.0 - IDT)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 18.5 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3324 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.1.28 - Intel Corporation)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
K-Lite Codec Pack 10.8.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.8.0 - )
Kyocera Product Library (HKLM\...\Kyocera Product Library) (Version: 4.2.1909 - KYOCERA Document Solutions Inc.)
Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version: - )
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office Home and Business 2013 - en-us (HKLM\...\HomeBusinessRetail - en-us) (Version: 15.0.4911.1002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50905.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-1186553991-1588963794-3084758233-1002\...\SkyDriveSetup.exe) (Version: 16.4.6012.0828 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual Basic Power Packs 3.0 (HKLM-x32\...\{7B4D193B-D76D-308B-8B12-5D9BB1CBCE6C}) (Version: 9.0.30214 - Microsoft)
Microsoft Visual Basic PowerPacks 10.0 (HKLM-x32\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 52.0.2 (x86 sr) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 sr)) (Version: 52.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4911.1002 - Microsoft Corporation) Hidden
opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.1.50 - PDF Complete, Inc)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 1.1.9200.23 - Realtek Semiconductor Corp.)
Serbian (Cyrillic) - Custom (HKLM\...\{92FE6ECA-4430-4973-B2FD-6D7A496A37BF}) (Version: 1.0.3.40 - но)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.9 - Synaptics Incorporated)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.50a - Ghisler Software GmbH)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1186553991-1588963794-3084758233-1002_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD Civil 3D 2013\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1186553991-1588963794-3084758233-1002_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD Civil 3D 2012\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1186553991-1588963794-3084758233-1002_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\admin\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1186553991-1588963794-3084758233-1002_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> C:\Program Files\Autodesk\AutoCAD Civil 3D 2012\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1186553991-1588963794-3084758233-1002_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\admin\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1186553991-1588963794-3084758233-1002_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD Civil 3D 2013\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1186553991-1588963794-3084758233-1002_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD Civil 3D 2012\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1186553991-1588963794-3084758233-1002_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD Civil 3D 2012\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1186553991-1588963794-3084758233-1002_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD Civil 3D 2012\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1186553991-1588963794-3084758233-1002_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\admin\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1186553991-1588963794-3084758233-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\admin\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0677753B-CC64-4982-A183-A9F7204E4253} - System32\Tasks\{42EA45E0-E458-4C3D-B8FC-94AD6DC699F2} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&amp;ver=6.16.66.105&amp;LastError=12007
Task: {07C3E580-F0F3-47B5-9AEF-6FB2C76F6764} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-01-17] (Microsoft Corporation)
Task: {116FA3F9-7BA5-4884-8743-97ACB73DB506} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2013-09-03] ()
Task: {158828ED-F837-4D19-B293-AC3E9DC41E71} - System32\Tasks\{FF524289-C2C5-45F1-9E01-D010DAF71B54} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.16.66.105/sr/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {32A08939-96F9-4C84-B11F-A41ADA763EDB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-15] (Adobe Systems Incorporated)
Task: {5BEB7D74-6527-4138-B0C9-102852B2D405} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {682E5BB3-A142-4ED1-B8D8-4F89A0C70784} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {77DA1303-E4DC-4D7E-8036-2F9AD7749C99} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-01-17] (Microsoft Corporation)
Task: {96AFF368-56CE-492C-8035-59E7B3A02C68} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2017-03-29] (AVG Technologies CZ, s.r.o.)
Task: {C6C4568E-CB0F-4182-8E63-2FD7615B37D9} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_HP => I:\_LICNO________________(Srbija)\instanlacije\PROGRAMI\PROGRAMI\ALATI\HD Programi\Hard Disk Sentinel Pro v3.50 Multilingual\MESMERiZE\HDSentinel.exe
Task: {CD6B3534-7A9D-4FEC-8381-422A555E75B8} - System32\Tasks\{82275A83-A6C8-4860-B6E2-1ADBABCFED1D} => Iexplore.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&amp;ver=6.16.66.105&amp;LastError=12007
Task: {D862957C-1C89-4CA5-9FB3-B36DC43F21D4} - System32\Tasks\{359A7C2A-0CDA-47D3-826D-8D5AA6764DCA} => Firefox.exe hxxp://ui.skype.com/ui/0/7.12.80.101/en/abandoninstall?page=tsMain
Task: {DEBFB414-C27F-4746-857F-E2CC46156866} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-03] (Piriform Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2017-03-23 20:18 - 2017-01-31 14:34 - 08909512 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2017-03-29 12:49 - 2017-03-29 12:49 - 00163016 _____ () c:\Program Files (x86)\AVG\Antivirus\x64\vaarclient.dll
2017-03-29 12:50 - 2017-03-29 12:50 - 00791536 _____ () C:\Program Files (x86)\AVG\Antivirus\x64\ffl2.dll
2017-03-29 12:50 - 2017-03-29 12:50 - 00276760 _____ () c:\Program Files (x86)\AVG\Antivirus\x64\StreamBack.dll
2016-12-16 22:03 - 2016-12-16 22:03 - 00054488 _____ () C:\Program Files\CCleaner\branding.dll
2017-03-28 22:44 - 2017-03-28 22:44 - 00171208 _____ () C:\Program Files (x86)\AVG\Antivirus\JsonRpcServer.dll
2017-03-29 12:50 - 2017-03-29 12:50 - 00177472 _____ () C:\Program Files (x86)\AVG\Antivirus\event_routing_rpc.dll
2017-03-29 20:22 - 2017-03-29 20:22 - 05898752 _____ () C:\Program Files (x86)\AVG\Antivirus\defs\17032902\algo.dll
2017-03-29 12:50 - 2017-03-29 12:50 - 00654504 _____ () C:\Program Files (x86)\AVG\Antivirus\ffl2.dll
2017-03-29 12:50 - 2017-03-29 12:50 - 00231616 _____ () C:\Program Files (x86)\AVG\Antivirus\streamback.dll
2017-03-28 22:31 - 2017-03-28 22:31 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2017-03-28 22:44 - 2017-03-28 22:44 - 48936448 _____ () C:\Program Files (x86)\AVG\Antivirus\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:1AAB2E68 [178]
AlternateDataStreams: C:\ProgramData\Temp:B755D674 [314]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1186553991-1588963794-3084758233-1002\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2016-02-10 02:04 - 00000857 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 activate.adobe.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1186553991-1588963794-3084758233-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\admin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-1186553991-1588963794-3084758233-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\novo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: Autodesk Content Service => 2
MSCONFIG\Services: PassThru Service => 2
MSCONFIG\Services: pdfcDispatcher => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\startupfolder: C:^Users^HP^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Send to OneNote.lnk => C:\Windows\pss\Send to OneNote.lnk.Startup
MSCONFIG\startupreg: AccelerometerSysTrayApplet => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Speed Launcher => "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
MSCONFIG\startupreg: CLMLServer_For_P2G8 => "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe"
MSCONFIG\startupreg: CLVirtualDrive => "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R
MSCONFIG\startupreg: CryptoMill Refresh => C:\Program Files\Hewlett-Packard\HP Trust Circles\ceflauncher -m refresh
MSCONFIG\startupreg: Google Update => "C:\Users\HP\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: HP File Sanitizer => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\Coreshredder.exe
MSCONFIG\startupreg: HTC Sync Loader => "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: MSC => "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: PDF Complete => C:\Program Files (x86)\PDF Complete\pdfsty.exe
MSCONFIG\startupreg: PWRISOVM.EXE => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
MSCONFIG\startupreg: RtsCM => RTSCM64.EXE
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: YouCam Mirage => "c:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
MSCONFIG\startupreg: YouCam Tray => "c:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe" /s

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{616B0421-1340-4C93-8CE9-7A268A651EF9}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{E71A1C87-F25F-414B-B56B-28903EC8E990}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{71392464-6115-4F9A-95C6-08083731A0D7}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{7656D7A8-3F44-44E9-AC92-6EC52FEC6219}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{8AA028DD-8DEC-4B00-8158-72513BD13DD1}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{224C3FCB-63CC-42C3-845D-C7886FCF54E1}] => (Allow) LPort=50248
FirewallRules: [{F4141CE3-88E0-4F1B-A02C-89A85B595A92}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
FirewallRules: [{F109A4C4-4083-4EB3-BCC6-088822DD3760}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
FirewallRules: [{1669B325-EC7B-494B-972F-CD046AC1E61C}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
FirewallRules: [{53563FAD-7F3C-47FC-9287-DE5E7B2E7E89}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
FirewallRules: [{2410F27D-7FF1-4D6B-9C53-FDC8DAF06D4B}] => (Allow) C:\Program Files (x86)\HTC\Internet Pass-Through\htcnat.exe
FirewallRules: [{F839A470-1BE7-4D5E-98B5-D5D704141713}] => (Allow) C:\Program Files (x86)\HTC\Internet Pass-Through\htcnat.exe
FirewallRules: [{37EC4124-099E-40F8-899A-01BB77F68E68}] => (Allow) C:\Program Files (x86)\HTC\Internet Pass-Through\htcnat.exe
FirewallRules: [{738850F4-F6BF-448A-8F74-BE5E1FE90A35}] => (Allow) C:\Program Files (x86)\HTC\Internet Pass-Through\htcnat.exe
FirewallRules: [{BC02AF8A-D076-4F03-A366-EBC08E6C2960}] => (Allow) C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
FirewallRules: [{AFDB52CD-5D47-4C31-BBA3-233D2B08B45C}] => (Allow) C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
FirewallRules: [{05719F87-7221-440B-B429-F6EAD9A166AC}] => (Allow) C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
FirewallRules: [{A2CC882A-C5EB-410C-9D29-838B2C428084}] => (Allow) C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
FirewallRules: [{EF37332F-3F68-40E4-AB06-FCA56DF53FCC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C0215298-C437-4560-8123-6215A5C3549F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{05322A56-3CEF-4271-A3CD-EA42502E429D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{8BC84B94-DA20-4C37-AEA9-60DC7A58AA27}] => (Allow) LPort=3702
FirewallRules: [{9D793450-242C-443B-9297-587F96D0B712}] => (Allow) LPort=9244
FirewallRules: [TCP Query User{C4F7F5B9-85A7-46FF-9663-8E8E14EE88C3}C:\users\admin\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\admin\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{E5E05364-AB86-4DCF-9C41-8823AF1CFC4F}C:\users\admin\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\admin\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{79E3DBCE-3AC0-4C3C-8FB3-35A2C9182347}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{ED122D99-0B98-4CB2-BAA2-32F827EA1725}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{AEC48891-04CF-4C48-A5F4-34BE39D1990B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{EA502B12-9B14-4C0E-8732-2B8C49B4EC53}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B47A07D1-B3DF-4D2B-8D8E-098545EE321F}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{A3A958F4-6A3A-4F8B-8ADF-89B72AFAE602}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [TCP Query User{9EC21DF9-6D6F-4E92-8F27-432A73EF9B87}C:\users\admin\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\admin\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{CE8048C9-7450-4A88-B3E1-A089D5D13098}C:\users\admin\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\admin\appdata\roaming\utorrent\utorrent.exe

==================== Restore Points =========================

23-03-2017 20:26:24 Windows Update
28-03-2017 22:13:34 Removed Bonjour
28-03-2017 22:19:05 Removed Readon TV Movie Radio Player 7.6.0.0
29-03-2017 13:00:23 Device Driver Package Install: AVG Technologies Network Service
29-03-2017 21:26:54 Removed Google Chrome
29-03-2017 21:30:31 Removed HP Client Security Manager.
29-03-2017 21:32:34 Removed HP File Sanitizer.
29-03-2017 21:48:41 Removed Validity Fingerprint Sensor Driver
29-03-2017 21:49:49 Removed HP Support Assistant.
29-03-2017 21:53:03 Removed HP Theft Recovery
29-03-2017 21:53:45 Removed Java 8 Update 121
29-03-2017 21:56:41 Removed HP Client Security Manager.
29-03-2017 22:04:42 Removed HP Client Security Manager.
29-03-2017 22:43:01 Windows Update

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/29/2017 10:43:07 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddWin32ServiceFiles: Unable to back up image of service HP File Sanitizer since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.
.

Error: (03/29/2017 10:14:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: IEXPLORE.EXE, version: 11.0.9600.18283, time stamp: 0x56fc59cb
Faulting module name: urlmon.dll, version: 11.0.9600.18283, time stamp: 0x56fc5af2
Exception code: 0xc0000005
Fault offset: 0x0001580c
Faulting process id: 0x888
Faulting application start time: 0x01d2a8c8f910206d
Faulting application path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Faulting module path: C:\Windows\syswow64\urlmon.dll
Report Id: 5143e13b-14bc-11e7-82b0-b8ee6556ddb2

Error: (03/29/2017 10:13:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program CCleaner64.exe version 5.14.0.5493 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 604

Start Time: 01d2a8c8b6eaafad

Termination Time: 0

Application Path: C:\Program Files\CCleaner\CCleaner64.exe

Report Id: 2da9f8e0-14bc-11e7-82b0-b8ee6556ddb2

Error: (03/28/2017 10:32:55 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Windows\Temp\AvgSetup\b6da6463-0a0c-47cf-8ce0-69a723b23441\install\fmw\avgrdsttestx.exe".
Dependent Assembly AVG.VC140.CRT,processorArchitecture="x86",publicKeyToken="f92d94485545da78",type="win32",version="14.0.23918.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (03/28/2017 10:32:47 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "C:\Windows\Temp\AvgSetup\b6da6463-0a0c-47cf-8ce0-69a723b23441\install\fmw\avgrdsttesta.exe".
Dependent Assembly AVG.VC140.CRT,processorArchitecture="amd64",publicKeyToken="f92d94485545da78",type="win32",version="14.0.23918.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (03/28/2017 10:09:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 47627

Error: (03/28/2017 10:09:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 47627

Error: (03/28/2017 10:09:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/28/2017 10:09:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 46613

Error: (03/28/2017 10:09:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 46613


System errors:
=============
Error: (03/29/2017 10:49:50 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070490: Security Update for Windows 7 for x64-based Systems (KB3126587).

Error: (03/29/2017 10:48:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070490: Security Update for Windows 7 for x64-based Systems (KB3004375).

Error: (03/29/2017 10:45:07 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070490: Security Update for Windows 7 for x64-based Systems (KB3031432).

Error: (03/29/2017 10:11:09 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
and APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Error: (03/29/2017 10:09:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The HP File Sanitizer service failed to start due to the following error:
The system cannot find the file specified.

Error: (03/29/2017 10:02:45 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}
and APPID
{344ED43D-D086-4961-86A6-1106F4ACAD9B}
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.

Error: (03/29/2017 10:01:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The HP File Sanitizer service failed to start due to the following error:
The system cannot find the file specified.

Error: (03/29/2017 09:37:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The HP File Sanitizer service failed to start due to the following error:
The system cannot find the file specified.

Error: (03/29/2017 09:34:06 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: The Windows Update service did not shut down properly after receiving a preshutdown control.

Error: (03/29/2017 08:22:58 PM) (Source: NetBT) (EventID: 4319) (User: )
Description: A duplicate name has been detected on the TCP network. The IP address of
the computer that sent the message is in the data. Use nbtstat -n in a
command window to see which name is in the Conflict state.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-4000M CPU @ 2.40GHz
Percentage of memory in use: 62%
Total physical RAM: 4009.11 MB
Available physical RAM: 1489.92 MB
Total Virtual: 8016.41 MB
Available Virtual: 5672.8 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:450.04 GB) (Free:151.67 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 49B89081)
Partition 1: (Active) - (Size=1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=12.7 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=0B)

==================== End of Addition.txt ============================
mycity.rs/must-login.png

mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja.

C:\Users\admin\Start.exe
File: C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe


U okviru Notepad-a klikni na File --> Save As
Pod Encoding izaberi UTF-8.
Fajl nazovi Fixlist i sačuvaj na Desktop
Dvoklikom ponovo pokreni FRST.exe
Klikni na Fix i sačekaj dok program ne završi.
Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi.
Nakon završetka rada, otvoriće se fixlog.txt, sa sadržajem koji treba da kopiraš u temu.
Takođe, na Desktop-u će se nalaziti (fixlog.txt).

offline
  • Arhitekta
  • Pridružio: 13 Okt 2009
  • Poruke: 79

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by admin (30-03-2017 13:20:49) Run:1
Running from C:\Users\admin\Desktop
Loaded Profiles: admin & novo (Available Profiles: admin & novo)
Boot Mode: Normal
==============================================

fixlist content:
*****************
C:\Users\admin\Start.exe
File: C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe


*****************

C:\Users\admin\Start.exe => moved successfully

========================= File: C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe ========================

File not signed
MD5: 1ECCC746ED3346133383FFCE9E99AEB5
Creation and modification date: 2016-09-22 17:38 - 2016-09-22 09:05
Size: 19276288
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version: 1.0.0.0
Product Version: 1.0.0.0
Copyright:

====== End of File: ======


==== End of Fixlog 13:20:50 ====


mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Preuzmi Zemana AntiMalware i sacuvaj ga na Deskop.


Arrow Kada preuzimanje bude zavrseno:

Dvoklikom pokreni instalaciju i prati uputstva. Instalacija je standardna bez ikakvih dodatnih opcija.
Nakon instalacije, program ce se automatski pokrenuti i sada je potrebno klikniti na Scan.
Kada se skeniranje zavrsi, klikni Next kako bi uklonio sve pronadjene stavke.
Ako ti zatrazi da restartujes racunar, klikni na Reboot.
Ukoliko je racunar ozbiljno inficiran, nakon restarta ce uslediti jos jedno skeniranje.


Arrow Nakon toga, potrebno je da dostavis izvestaj/e:

Na tastaturi pritisni + R u isto vreme.
Kopiraj sledecu komandu i potvrdi sa OK:
%USERPROFILE%\AppData\Local\Zemana\Zemana AntiMalware\reports
Najnovji izvestaj/e kopiraj na Deskop, a zatim ga prikaci u sledecoj poruci.

offline
  • Arhitekta
  • Pridružio: 13 Okt 2009
  • Poruke: 79

mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Kakvo je sad stanje?

offline
  • Arhitekta
  • Pridružio: 13 Okt 2009
  • Poruke: 79

vrlo malo poboljsanje, 50mb se skida 30 min. a 40mb je brzina interneta , filmove pre nije ni pustao, sada pusti ali stalno ucitava.

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

djordjee88 ::vrlo malo poboljsanje, 50mb se skida 30 min. a 40mb je brzina interneta , filmove pre nije ni pustao, sada pusti ali stalno ucitava.


Na sistemu nisi imao ništa konkrento od malware-a, a što se problema koji imaš tiče problem ti vjerovatno pravi provajder ili Popcorn TIme koji možda nešto skida u pozadini.


Sledeća procedura će implementirati završno čišćenje.

Arrow Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop.
Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija;

Remove disinfection tools
Create registry backup
Purge System Restore


Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad.
Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani.
Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt)

Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix
Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

offline
  • Arhitekta
  • Pridružio: 13 Okt 2009
  • Poruke: 79

TEST brzina na jednom laptopu na istoj mrezi gde je dowload oko 6mb i test sa ovog laptopa je download 600kb... A u stvarnosti je download na ovom laptopu oko 30kb.
Restarovan i sve uvek pokrenut da skida ali uvek je ukocen, iste stvari uradim na drugom laptopu i on lepo radi.



offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Probaj da deinstaliraš Popcorn Time n a tom računaru gdje je spor download. Za ostala pitanja otvori temu u Windows potforumu:

https://www.mycity.rs/Windows/

Ko je trenutno na forumu
 

Ukupno su 828 korisnika na forumu :: 42 registrovanih, 4 sakrivenih i 782 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 8u47, A.R.Chafee.Jr., Andrija357, babaroga, Bane san, Bobrock1, Dannyboy, Denaya, FileFinder, FOX, Georgius, hologram, ILGromovnik, Karla, kovinacc, Kubovac, kybonacci, Leonov, ljubacv, Lošmi, M1los, maiden6657, Mihajlo, Milometer, Mlav, mocnijogurt, Mravce, nemkea71, nick79, pein, rodoljub, sap, Sirius, slonic_tonic, Srky Boy, Steeeefan, theNedjeljko, Trpe Grozni, VJ, Vlad000, VP6919, zillbg