MyCity » Ambulanta -> Arhiva Ambulante » Iskakanje prozorčića

Iskakanje prozorčića

Napisano na dan: 21.9.2014

Iskakanje prozorčića

Sledeća strana

Pagination

Odgovori

Mirabe Poslao: 21 Sep 2014 15:58 Idi na vrh
offline Mirabe Građanin Pridružio: 30 Dec 2008 Poruke: 193	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Već nekoliko dana unazad počeli su da mi na kompu iskaču prozorčići sa raznim reklamama i sa nekim nepoznatim sajtovima. Predpostavljam da je verovatno pokupljen neki virus ili neka druga štetočina,jer sin koji koristi ovaj kompjuter često skida razne igrice sa interneta. Avira nije ništa detektovala. Prilažem dijagnostički izveštaj. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-09-2014 01 Ran by mirjana (administrator) on MIRJANA-PC on 21-09-2014 15:42:36 Running from C:\Users\mirjana\Downloads Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (AMD) C:\Windows\System32\atieclxx.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (BitTorrent Inc.) C:\Users\mirjana\AppData\Roaming\uTorrent\uTorrent.exe (Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe (Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Nero AG) C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13651672 2013-09-03] (Realtek Semiconductor) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-12] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7762712 2014-08-12] (SUPERAntiSpyware) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [uTorrent] => C:\Users\mirjana\AppData\Roaming\uTorrent\uTorrent.exe [1414992 2014-09-18] (BitTorrent Inc.) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-07-30] (Raptr, Inc) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe [152872 2007-06-27] (Nero AG) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\MountPoints2: {47ad14e4-b2b6-11e3-9ce7-806e6f6e6963} - F:\Run.exe HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\...\MountPoints2: {fa0a40e1-b292-11e3-ac22-74d4353a995d} - G:\RunGame.exe Startup: C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Registracija proizvoda.lnk ShortcutTarget: Logitech . Registracija proizvoda.lnk -> C:\Program Files (x86)\Logitech\Ereg\eReg.exe (Leader Technologies/Logitech) GroupPolicy: Group Policy on Chrome detected <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = google.com HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1BB6D04D8246CF01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM-x32 - DefaultScope {B707381A-E2F9-498D-AB1B-10B04E40D329} URL = SearchScopes: HKCU - DefaultScope {B707381A-E2F9-498D-AB1B-10B04E40D329} URL = trovi.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3329621&CUI=UN40283392861604427&UM=4 SearchScopes: HKCU - {B707381A-E2F9-498D-AB1B-10B04E40D329} URL = trovi.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3329621&CUI=UN40283392861604427&UM=4 BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 FireFox: ======== FF ProfilePath: C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll () FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll () FF Extension: priacEcchoap - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default\Extensions\goouue@iyia-.co.uk [2014-07-23] FF Extension: uTorrentControl_v6 - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [2014-03-23] FF Extension: MEGA - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default\Extensions\firefox@mega.co.nz.xpi [2014-03-23] FF Extension: Noia 4 Theme Manager - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default\Extensions\Noia4Options@ArisT2.xpi [2014-03-23] FF Extension: Noia Fox - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default\Extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi [2014-05-02] FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-09-19] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR StartupUrls: Default -> "hxxp://www.google.com/" CHR Profile: C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-07-28] CHR Extension: (priacEcchoap) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncaneajodfiiclghafoihjgjmbgbngd [2014-07-23] CHR Extension: (Google Wallet) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-04] CHR Extension: (priacEcchoap) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncaneajodfiiclghafoihjgjmbgbngd\3.9 [2014-07-23] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-08-12] (SUPERAntiSpyware.com) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-04-17] (Advanced Micro Devices, Inc.) [File not signed] R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-08-12] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-12] (Avira Operations GmbH & Co. KG) S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1021520 2014-08-12] (Avira Operations GmbH & Co. KG) S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] () R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation) S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed] S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-09-01] () ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices) R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] () R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-06-24] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-27] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-02-25] (Avira Operations GmbH & Co. KG) S3 b06diag; C:\Windows\system32\drivers\bxdiaga.sys [88104 2012-03-08] (Broadcom Corporation) S3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2012-02-22] (Bigfoot Networks, Inc.) S3 bxfcoe; C:\Windows\system32\drivers\bxfcoe.sys [178216 2012-02-22] (Broadcom Corporation) S3 bxois; C:\Windows\system32\drivers\bxois.sys [539176 2012-02-22] (Broadcom Corporation) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-03-23] (Disc Soft Ltd) S3 EtronSTOR; C:\Windows\System32\Drivers\EtronSTOR.sys [32512 2012-07-24] (Etron Technology Inc) S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2014-03-23] () S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [32512 2014-03-23] () R1 PStrip64; C:\Windows\System32\drivers\pstrip64.sys [13008 2006-09-30] () R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com) R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-03-28] (Duplex Secure Ltd.) S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] () U3 ak7anvwb; C:\Windows\System32\Drivers\ak7anvwb.sys [0 ] (Advanced Micro Devices) S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-21 15:42 - 2014-09-21 15:43 - 00016205 _____ () C:\Users\mirjana\Downloads\FRST.txt 2014-09-21 15:42 - 2014-09-21 15:42 - 00000000 ____D () C:\FRST 2014-09-21 15:41 - 2014-09-21 15:41 - 02105856 _____ (Farbar) C:\Users\mirjana\Downloads\FRST64.exe 2014-09-21 15:39 - 2014-09-21 15:39 - 00183101 _____ () C:\Users\mirjana\Desktop\ShinoKCR's French Quarter Kitchen.htm 2014-09-21 15:39 - 2014-09-21 15:39 - 00000000 ____D () C:\Users\mirjana\Desktop\ShinoKCR's French Quarter Kitchen_files 2014-09-21 15:38 - 2014-09-21 15:38 - 00000970 _____ () C:\Users\mirjana\Downloads\ShinoKCRFrenchQuarterCollectionupdated3.rar 2014-09-21 15:38 - 2014-09-21 15:38 - 00000970 _____ () C:\Users\mirjana\Downloads\ShinoKCRFrenchQuarterCollectionupdated3(1).rar 2014-09-20 22:57 - 2014-09-20 23:09 - 1558678802 _____ () C:\Users\mirjana\Desktop\UpdLabOTW-ShSolsCEdMM.rar 2014-09-20 22:08 - 2014-09-20 19:03 - 273654124 ____R () C:\Users\mirjana\Desktop\Dragon Valley.Sims3Pack 2014-09-20 09:23 - 2014-09-20 09:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-09-19 22:07 - 2014-09-19 22:07 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-09-17 22:01 - 2014-09-17 22:01 - 01126002 _____ () C:\Users\mirjana\Downloads\Coastal Wall Collection Part 2 AL.zip 2014-09-17 22:00 - 2014-09-17 22:00 - 01743184 _____ () C:\Users\mirjana\Downloads\Coastal Wall Collection Part 3 AL.zip 2014-09-17 22:00 - 2014-09-17 22:00 - 00649169 _____ () C:\Users\mirjana\Downloads\Elegant Kitchen Wall Set AL.zip 2014-09-17 21:57 - 2014-09-17 21:57 - 01370779 _____ () C:\Users\mirjana\Downloads\Decor Walls AL.zip 2014-09-15 23:18 - 2014-09-15 23:18 - 00283462 _____ () C:\Windows\msxml4-KB973688-enu.LOG 2014-09-15 23:17 - 2014-09-15 23:18 - 00285974 _____ () C:\Windows\msxml4-KB954430-enu.LOG 2014-09-15 23:17 - 2014-09-15 23:17 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0 2014-09-15 21:19 - 2014-09-15 21:21 - 00002702 _____ () C:\Users\mirjana\Desktop\molitva.txt 2014-09-15 17:49 - 2014-09-15 17:57 - 00000000 ____D () C:\Users\Nikola\Documents\LOTR The Return of the King (tm) Data 2014-09-14 21:41 - 2014-09-14 21:41 - 00000000 ____D () C:\Users\mirjana\Documents\LOTR The Return of the King (tm) Data 2014-09-14 21:40 - 2014-09-14 21:40 - 00001063 _____ () C:\Users\Public\Desktop\LOTR The Return of the King tm.lnk 2014-09-14 21:40 - 2014-09-14 21:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES 2014-09-14 21:38 - 2014-09-14 21:40 - 00000277 _____ () C:\debugInstaller.txt 2014-09-14 19:44 - 2014-09-14 19:44 - 00000000 ____D () C:\Users\mirjana\AppData\Local\Logitech® Webcam Software 2014-09-14 19:05 - 2014-09-14 19:05 - 00000000 ____D () C:\Users\Nikola\AppData\Local\Logitech® Webcam Software 2014-09-14 18:20 - 2014-09-14 18:20 - 00000000 ____D () C:\ProgramData\LogiShrd 2014-09-14 18:19 - 2014-09-14 18:19 - 00004121 _____ () C:\Windows\LDPINST.LOG 2014-09-14 18:19 - 2014-09-14 18:19 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Leadertech 2014-09-14 18:18 - 2014-09-14 18:19 - 00000000 ____D () C:\Program Files (x86)\Logitech 2014-09-14 18:18 - 2014-09-14 18:18 - 00001624 _____ () C:\Users\Public\Desktop\Logitech Webcam Software .lnk 2014-09-14 18:18 - 2014-09-14 18:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-09-14 18:17 - 2014-09-14 18:17 - 74637872 _____ (Logitech, Inc.) C:\Users\mirjana\Downloads\lws251.exe 2014-09-14 18:15 - 2014-09-14 18:15 - 00001938 _____ () C:\Users\mirjana\Desktop\Moja slika 9 - Shortcut.lnk 2014-09-14 18:09 - 2014-09-14 18:19 - 00000000 ____D () C:\Users\mirjana\AppData\Local\Ahead 2014-09-14 18:09 - 2014-09-14 18:09 - 00002746 _____ () C:\Users\Public\Desktop\Nero StartSmart.lnk 2014-09-14 18:09 - 2014-09-14 18:09 - 00002646 _____ () C:\Users\Public\Desktop\Nero Home.lnk 2014-09-14 18:09 - 2014-09-14 18:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Premium 2014-09-14 17:41 - 2014-09-14 18:20 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Ahead 2014-09-14 17:41 - 2014-09-14 17:41 - 00000000 ____D () C:\ProgramData\Ahead 2014-09-14 17:40 - 2014-09-14 17:40 - 00000000 ____D () C:\ProgramData\Nero 2014-09-14 17:40 - 2014-09-14 17:40 - 00000000 ____D () C:\Program Files (x86)\Nero 2014-09-14 13:53 - 2014-09-14 13:53 - 00000516 _____ () C:\Users\mirjana\Desktop\NBA 2K14 - Shortcut.lnk 2014-09-14 11:08 - 2014-09-14 11:08 - 00000516 _____ () C:\Users\Nikola\Desktop\NBA 2K14 - Shortcut.lnk 2014-09-13 20:41 - 2014-09-13 20:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth 2014-09-13 20:38 - 2014-09-13 20:38 - 00895120 _____ (Google Inc.) C:\Users\mirjana\Downloads\GoogleEarthPluginSetup.exe 2014-09-11 23:59 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-09-11 23:59 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-09-11 23:59 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-09-11 23:59 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-09-11 23:59 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-09-11 23:59 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-09-11 23:59 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-09-11 23:59 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-09-11 23:59 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-09-11 23:59 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-09-11 23:59 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-09-11 23:59 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-09-11 23:59 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-09-11 23:59 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-09-11 23:59 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-09-11 23:59 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-09-11 23:59 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-09-11 23:59 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-09-11 23:59 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-09-11 23:59 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-09-11 23:59 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-09-11 23:59 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-09-11 23:59 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-09-11 23:59 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-09-11 23:59 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-09-11 23:59 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-09-11 23:59 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-09-11 23:59 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-09-11 23:59 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-09-11 23:59 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-09-11 23:59 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-09-11 23:59 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-09-11 23:59 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-09-11 23:59 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-09-11 23:59 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-09-11 23:59 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-09-11 23:59 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-09-11 23:59 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-09-11 23:59 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-09-11 23:59 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-09-11 23:59 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-09-11 23:59 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-09-11 23:59 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-09-11 23:59 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-09-11 23:59 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-09-11 23:59 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-09-11 23:59 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-09-11 23:59 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-09-11 23:59 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-09-11 23:59 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-09-11 23:59 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-09-11 23:59 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-09-11 23:59 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-09-11 23:59 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-09-11 23:59 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-09-11 23:59 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-09-11 23:53 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2014-09-11 23:53 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2014-09-11 10:10 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll 2014-09-11 10:10 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll 2014-09-11 10:09 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2014-09-11 10:09 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2014-09-11 10:08 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-09-11 10:08 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-09-11 10:08 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2014-09-11 10:08 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2014-09-11 10:08 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2014-09-11 10:07 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-09-11 10:07 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-09-07 17:51 - 2014-09-07 17:51 - 00000000 ____D () C:\Users\mirjana\AppData\Local\Ubisoft Game Launcher 2014-09-02 20:43 - 2014-09-11 10:00 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-09-02 16:32 - 2014-09-02 16:32 - 00000000 ____D () C:\Users\Nikola\AppData\Local\PunkBuster 2014-09-02 16:31 - 2014-09-02 16:31 - 00000000 ____D () C:\Users\Nikola\Documents\My Games 2014-09-01 17:35 - 2014-09-06 14:24 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr 2014-09-01 17:34 - 2014-09-01 17:34 - 00000000 ____D () C:\Users\mirjana\Documents\My Games 2014-09-01 17:34 - 2014-09-01 17:34 - 00000000 ____D () C:\Users\mirjana\AppData\Local\PunkBuster 2014-09-01 17:33 - 2014-09-01 17:33 - 00000000 ____D () C:\ProgramData\Orbit 2014-09-01 17:32 - 2014-09-06 14:24 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.exe 2014-09-01 17:32 - 2014-09-06 11:27 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0 2014-09-01 17:32 - 2014-09-01 17:32 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2014-09-01 17:32 - 2014-09-01 17:32 - 00001205 _____ () C:\Users\mirjana\Desktop\Uplay.lnk 2014-09-01 17:32 - 2014-09-01 17:32 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2014-09-01 17:32 - 2014-09-01 17:32 - 00000000 ____D () C:\Program Files (x86)\Ubisoft 2014-09-01 14:30 - 2014-09-01 14:30 - 00000000 ____D () C:\Users\Nikola\AppData\Roaming\Warner Bros. Interactive Entertainment 2014-08-31 11:32 - 2014-08-31 11:32 - 00001714 _____ () C:\Users\mirjana\Desktop\LEGOLOTR - Shortcut.lnk 2014-08-31 11:32 - 2014-08-31 11:32 - 00001018 _____ () C:\Users\mirjana\Desktop\rld.dll - Shortcut.lnk 2014-08-31 11:32 - 2014-08-31 11:32 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Warner Bros. Interactive Entertainment 2014-08-30 21:02 - 2014-08-30 21:06 - 202160500 _____ (Realtek Semiconductor Corp.) C:\Users\mirjana\Downloads\win7_win8_win81_r272.exe 2014-08-28 23:08 - 2014-08-28 23:08 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Gaijin Ent 2014-08-28 23:06 - 2014-08-28 23:06 - 00000776 _____ () C:\Users\mirjana\Desktop\Mystery Cookbook.lnk 2014-08-28 23:06 - 2014-08-28 23:06 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mystery Cookbook 2014-08-28 23:05 - 2014-08-28 23:04 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-08-28 23:04 - 2014-08-28 23:04 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-08-28 23:04 - 2014-08-28 23:04 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-08-28 23:04 - 2014-08-28 23:04 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-08-28 23:04 - 2014-08-28 23:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-08-28 23:04 - 2014-08-28 23:04 - 00000000 ____D () C:\Program Files (x86)\Java 2014-08-28 22:50 - 2014-08-28 22:51 - 68611227 _____ () C:\Users\mirjana\Downloads\UpdHmeMakOverMM.rar 2014-08-28 09:53 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-28 09:53 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-28 09:53 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-24 00:21 - 2014-08-24 00:21 - 00095681 _____ () C:\Users\mirjana\Downloads\MTS_dDefinder_1334942_Outdoorlightingtweaksv22.zip 2014-08-24 00:18 - 2014-08-24 00:18 - 00000895 _____ () C:\Users\mirjana\Downloads\MTS_aikeaguinea_1371629_AikeaGuinea_NoDriftFreecamMod_IP.rar 2014-08-24 00:18 - 2014-08-24 00:18 - 00000827 _____ () C:\Users\mirjana\Downloads\MTS_aikea_guinea_1051134_AikeaGuinea-NoDriftFreecamMod.rar 2014-08-24 00:11 - 2014-08-24 00:11 - 00000633 _____ () C:\Users\mirjana\Downloads\MTS_SIMul8rReviews_1303516_SIMul8rReviews_MicrowaveSlotsMod.rar 2014-08-23 18:50 - 2014-06-06 17:40 - 00001117 _____ () C:\Users\mirjana\Desktop\The Sims™ 3 Into the Future.lnk 2014-08-22 19:10 - 2014-08-22 19:10 - 04574968 _____ (Avira Operations GmbH & Co. KG) C:\Users\mirjana\Downloads\avira_en_av___ws.exe ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-21 15:43 - 2014-09-21 15:42 - 00016205 _____ () C:\Users\mirjana\Downloads\FRST.txt 2014-09-21 15:43 - 2014-03-23 15:30 - 00000934 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-09-21 15:42 - 2014-09-21 15:42 - 00000000 ____D () C:\FRST 2014-09-21 15:41 - 2014-09-21 15:41 - 02105856 _____ (Farbar) C:\Users\mirjana\Downloads\FRST64.exe 2014-09-21 15:40 - 2014-03-23 12:42 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\uTorrent 2014-09-21 15:39 - 2014-09-21 15:39 - 00183101 _____ () C:\Users\mirjana\Desktop\ShinoKCR's French Quarter Kitchen.htm 2014-09-21 15:39 - 2014-09-21 15:39 - 00000000 ____D () C:\Users\mirjana\Desktop\ShinoKCR's French Quarter Kitchen_files 2014-09-21 15:39 - 2014-03-23 22:28 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Skype 2014-09-21 15:38 - 2014-09-21 15:38 - 00000970 _____ () C:\Users\mirjana\Downloads\ShinoKCRFrenchQuarterCollectionupdated3.rar 2014-09-21 15:38 - 2014-09-21 15:38 - 00000970 _____ () C:\Users\mirjana\Downloads\ShinoKCRFrenchQuarterCollectionupdated3(1).rar 2014-09-21 14:59 - 2014-03-23 14:20 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-09-21 10:15 - 2014-03-31 19:55 - 00000000 ____D () C:\Users\Nikola\AppData\Local\CrashDumps 2014-09-21 09:48 - 2014-03-30 16:38 - 00000000 ____D () C:\Users\mirjana\AppData\Local\CrashDumps 2014-09-21 01:23 - 2014-03-23 14:54 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware 2014-09-20 23:09 - 2014-09-20 22:57 - 1558678802 _____ () C:\Users\mirjana\Desktop\UpdLabOTW-ShSolsCEdMM.rar 2014-09-20 20:43 - 2014-03-23 15:30 - 00000930 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-09-20 20:41 - 2009-07-14 06:45 - 00029200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-09-20 20:41 - 2009-07-14 06:45 - 00029200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-09-20 19:03 - 2014-09-20 22:08 - 273654124 ____R () C:\Users\mirjana\Desktop\Dragon Valley.Sims3Pack 2014-09-20 09:25 - 2014-03-25 01:28 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2014-09-20 09:23 - 2014-09-20 09:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-09-20 09:23 - 2014-03-23 22:28 - 00002517 _____ () C:\Users\Public\Desktop\Skype.lnk 2014-09-20 09:23 - 2014-03-23 22:28 - 00000000 ___RD () C:\Program Files (x86)\Skype 2014-09-20 09:23 - 2014-03-23 22:28 - 00000000 ____D () C:\ProgramData\Skype 2014-09-20 09:15 - 2014-03-23 12:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-09-20 08:50 - 2014-04-05 13:04 - 00205791 _____ () C:\Windows\setupact.log 2014-09-20 08:50 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-09-19 23:33 - 2014-03-23 20:12 - 01413570 _____ () C:\Windows\WindowsUpdate.log 2014-09-19 22:07 - 2014-09-19 22:07 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-09-18 20:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-09-17 22:01 - 2014-09-17 22:01 - 01126002 _____ () C:\Users\mirjana\Downloads\Coastal Wall Collection Part 2 AL.zip 2014-09-17 22:00 - 2014-09-17 22:00 - 01743184 _____ () C:\Users\mirjana\Downloads\Coastal Wall Collection Part 3 AL.zip 2014-09-17 22:00 - 2014-09-17 22:00 - 00649169 _____ () C:\Users\mirjana\Downloads\Elegant Kitchen Wall Set AL.zip 2014-09-17 21:57 - 2014-09-17 21:57 - 01370779 _____ () C:\Users\mirjana\Downloads\Decor Walls AL.zip 2014-09-17 11:01 - 2014-06-21 19:42 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Tropico 5 2014-09-16 21:40 - 2014-05-08 17:28 - 00000000 ____D () C:\Users\Nikola\AppData\Roaming\Skype 2014-09-15 23:18 - 2014-09-15 23:18 - 00283462 _____ () C:\Windows\msxml4-KB973688-enu.LOG 2014-09-15 23:18 - 2014-09-15 23:17 - 00285974 _____ () C:\Windows\msxml4-KB954430-enu.LOG 2014-09-15 23:17 - 2014-09-15 23:17 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0 2014-09-15 21:21 - 2014-09-15 21:19 - 00002702 _____ () C:\Users\mirjana\Desktop\molitva.txt 2014-09-15 17:57 - 2014-09-15 17:49 - 00000000 ____D () C:\Users\Nikola\Documents\LOTR The Return of the King (tm) Data 2014-09-15 17:49 - 2014-03-28 08:17 - 00000000 ____D () C:\Users\Nikola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2014-09-14 21:41 - 2014-09-14 21:41 - 00000000 ____D () C:\Users\mirjana\Documents\LOTR The Return of the King (tm) Data 2014-09-14 21:40 - 2014-09-14 21:40 - 00001063 _____ () C:\Users\Public\Desktop\LOTR The Return of the King tm.lnk 2014-09-14 21:40 - 2014-09-14 21:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES 2014-09-14 21:40 - 2014-09-14 21:38 - 00000277 _____ () C:\debugInstaller.txt 2014-09-14 21:40 - 2014-03-28 08:18 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2014-09-14 19:44 - 2014-09-14 19:44 - 00000000 ____D () C:\Users\mirjana\AppData\Local\Logitech® Webcam Software 2014-09-14 19:05 - 2014-09-14 19:05 - 00000000 ____D () C:\Users\Nikola\AppData\Local\Logitech® Webcam Software 2014-09-14 18:20 - 2014-09-14 18:20 - 00000000 ____D () C:\ProgramData\LogiShrd 2014-09-14 18:20 - 2014-09-14 17:41 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Ahead 2014-09-14 18:19 - 2014-09-14 18:19 - 00004121 _____ () C:\Windows\LDPINST.LOG 2014-09-14 18:19 - 2014-09-14 18:19 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Leadertech 2014-09-14 18:19 - 2014-09-14 18:18 - 00000000 ____D () C:\Program Files (x86)\Logitech 2014-09-14 18:19 - 2014-09-14 18:09 - 00000000 ____D () C:\Users\mirjana\AppData\Local\Ahead 2014-09-14 18:19 - 2014-03-23 12:29 - 00010353 _____ () C:\Windows\system32\lvcoinst.log 2014-09-14 18:19 - 2014-03-23 12:29 - 00000000 ____D () C:\Program Files\Common Files\logishrd 2014-09-14 18:18 - 2014-09-14 18:18 - 00001624 _____ () C:\Users\Public\Desktop\Logitech Webcam Software .lnk 2014-09-14 18:18 - 2014-09-14 18:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-09-14 18:17 - 2014-09-14 18:17 - 74637872 _____ (Logitech, Inc.) C:\Users\mirjana\Downloads\lws251.exe 2014-09-14 18:15 - 2014-09-14 18:15 - 00001938 _____ () C:\Users\mirjana\Desktop\Moja slika 9 - Shortcut.lnk 2014-09-14 18:09 - 2014-09-14 18:09 - 00002746 _____ () C:\Users\Public\Desktop\Nero StartSmart.lnk 2014-09-14 18:09 - 2014-09-14 18:09 - 00002646 _____ () C:\Users\Public\Desktop\Nero Home.lnk 2014-09-14 18:09 - 2014-09-14 18:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Premium 2014-09-14 17:41 - 2014-09-14 17:41 - 00000000 ____D () C:\ProgramData\Ahead 2014-09-14 17:40 - 2014-09-14 17:40 - 00000000 ____D () C:\ProgramData\Nero 2014-09-14 17:40 - 2014-09-14 17:40 - 00000000 ____D () C:\Program Files (x86)\Nero 2014-09-14 15:12 - 2014-05-09 18:57 - 00000000 ____D () C:\temp 2014-09-14 14:08 - 2014-03-24 14:43 - 00690266 _____ () C:\Windows\system32\perfh00C.dat 2014-09-14 14:08 - 2014-03-24 14:43 - 00478818 _____ () C:\Windows\system32\perfh001.dat 2014-09-14 14:08 - 2014-03-24 14:43 - 00129844 _____ () C:\Windows\system32\perfc00C.dat 2014-09-14 14:08 - 2014-03-24 14:43 - 00094558 _____ () C:\Windows\system32\perfc001.dat 2014-09-14 14:08 - 2014-03-24 14:12 - 00696758 _____ () C:\Windows\system32\perfh007.dat 2014-09-14 14:08 - 2014-03-24 14:12 - 00148770 _____ () C:\Windows\system32\perfc007.dat 2014-09-14 14:08 - 2009-07-14 07:13 - 02992454 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-09-14 13:53 - 2014-09-14 13:53 - 00000516 _____ () C:\Users\mirjana\Desktop\NBA 2K14 - Shortcut.lnk 2014-09-14 12:00 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2014-09-14 11:08 - 2014-09-14 11:08 - 00000516 _____ () C:\Users\Nikola\Desktop\NBA 2K14 - Shortcut.lnk 2014-09-14 08:46 - 2014-03-23 15:30 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-09-13 20:54 - 2014-03-23 15:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2014-09-13 20:41 - 2014-09-13 20:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth 2014-09-13 20:41 - 2014-03-23 15:29 - 00000000 ____D () C:\Program Files (x86)\Google 2014-09-13 20:38 - 2014-09-13 20:38 - 00895120 _____ (Google Inc.) C:\Users\mirjana\Downloads\GoogleEarthPluginSetup.exe 2014-09-13 20:38 - 2014-03-23 15:30 - 00003930 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-09-13 20:38 - 2014-03-23 15:30 - 00003678 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-09-12 22:19 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-09-12 09:35 - 2014-04-09 21:24 - 00933764 _____ () C:\Windows\PFRO.log 2014-09-12 09:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK 2014-09-12 09:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\ar-SA 2014-09-12 09:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sk-SK 2014-09-12 09:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\ar-SA 2014-09-11 23:58 - 2014-03-24 12:41 - 00000000 ____D () C:\Windows\system32\MRT 2014-09-11 23:58 - 2014-03-23 16:02 - 02951676 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-09-11 23:54 - 2014-03-24 12:41 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-09-11 23:53 - 2014-05-05 23:13 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-09-11 10:17 - 2014-03-24 14:23 - 00000000 ____D () C:\Windows\sk-SK 2014-09-11 10:16 - 2014-07-23 10:23 - 00000000 ____D () C:\ProgramData\Trusted Publisher 2014-09-11 10:16 - 2014-06-14 17:08 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\rmi 2014-09-11 10:00 - 2014-09-02 20:43 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-09-09 21:59 - 2014-03-23 14:20 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-09-09 21:59 - 2014-03-23 14:20 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-09-09 21:59 - 2014-03-23 14:20 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-09-07 17:51 - 2014-09-07 17:51 - 00000000 ____D () C:\Users\mirjana\AppData\Local\Ubisoft Game Launcher 2014-09-06 14:24 - 2014-09-01 17:35 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr 2014-09-06 14:24 - 2014-09-01 17:32 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.exe 2014-09-06 11:27 - 2014-09-01 17:32 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0 2014-09-05 04:10 - 2014-09-11 10:07 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-09-05 04:05 - 2014-09-11 10:07 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-09-02 16:32 - 2014-09-02 16:32 - 00000000 ____D () C:\Users\Nikola\AppData\Local\PunkBuster 2014-09-02 16:31 - 2014-09-02 16:31 - 00000000 ____D () C:\Users\Nikola\Documents\My Games 2014-09-01 17:34 - 2014-09-01 17:34 - 00000000 ____D () C:\Users\mirjana\Documents\My Games 2014-09-01 17:34 - 2014-09-01 17:34 - 00000000 ____D () C:\Users\mirjana\AppData\Local\PunkBuster 2014-09-01 17:33 - 2014-09-01 17:33 - 00000000 ____D () C:\ProgramData\Orbit 2014-09-01 17:32 - 2014-09-01 17:32 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2014-09-01 17:32 - 2014-09-01 17:32 - 00001205 _____ () C:\Users\mirjana\Desktop\Uplay.lnk 2014-09-01 17:32 - 2014-09-01 17:32 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2014-09-01 17:32 - 2014-09-01 17:32 - 00000000 ____D () C:\Program Files (x86)\Ubisoft 2014-09-01 17:31 - 2014-04-21 10:42 - 00118839 _____ () C:\Windows\DirectX.log 2014-09-01 17:23 - 2014-03-23 15:38 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-09-01 14:30 - 2014-09-01 14:30 - 00000000 ____D () C:\Users\Nikola\AppData\Roaming\Warner Bros. Interactive Entertainment 2014-09-01 13:00 - 2009-07-14 07:08 - 00032536 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-08-31 11:32 - 2014-08-31 11:32 - 00001714 _____ () C:\Users\mirjana\Desktop\LEGOLOTR - Shortcut.lnk 2014-08-31 11:32 - 2014-08-31 11:32 - 00001018 _____ () C:\Users\mirjana\Desktop\rld.dll - Shortcut.lnk 2014-08-31 11:32 - 2014-08-31 11:32 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Warner Bros. Interactive Entertainment 2014-08-30 21:06 - 2014-08-30 21:02 - 202160500 _____ (Realtek Semiconductor Corp.) C:\Users\mirjana\Downloads\win7_win8_win81_r272.exe 2014-08-29 09:15 - 2009-07-14 06:45 - 00311760 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-08-28 23:08 - 2014-08-28 23:08 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Gaijin Ent 2014-08-28 23:07 - 2014-04-15 21:09 - 00000000 ____D () C:\ProgramData\Oracle 2014-08-28 23:06 - 2014-08-28 23:06 - 00000776 _____ () C:\Users\mirjana\Desktop\Mystery Cookbook.lnk 2014-08-28 23:06 - 2014-08-28 23:06 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mystery Cookbook 2014-08-28 23:04 - 2014-08-28 23:05 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-08-28 23:04 - 2014-08-28 23:04 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-08-28 23:04 - 2014-08-28 23:04 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-08-28 23:04 - 2014-08-28 23:04 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-08-28 23:04 - 2014-08-28 23:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-08-28 23:04 - 2014-08-28 23:04 - 00000000 ____D () C:\Program Files (x86)\Java 2014-08-28 22:51 - 2014-08-28 22:50 - 68611227 _____ () C:\Users\mirjana\Downloads\UpdHmeMakOverMM.rar 2014-08-27 14:37 - 2014-03-23 12:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2014-08-27 14:37 - 2014-03-23 12:48 - 00000000 ____D () C:\ProgramData\Avira 2014-08-27 14:37 - 2014-03-23 12:48 - 00000000 ____D () C:\Program Files (x86)\Avira 2014-08-27 14:37 - 2014-03-23 12:45 - 00000000 ____D () C:\ProgramData\Package Cache 2014-08-25 06:53 - 2010-11-21 05:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-08-24 00:21 - 2014-08-24 00:21 - 00095681 _____ () C:\Users\mirjana\Downloads\MTS_dDefinder_1334942_Outdoorlightingtweaksv22.zip 2014-08-24 00:18 - 2014-08-24 00:18 - 00000895 _____ () C:\Users\mirjana\Downloads\MTS_aikeaguinea_1371629_AikeaGuinea_NoDriftFreecamMod_IP.rar 2014-08-24 00:18 - 2014-08-24 00:18 - 00000827 _____ () C:\Users\mirjana\Downloads\MTS_aikea_guinea_1051134_AikeaGuinea-NoDriftFreecamMod.rar 2014-08-24 00:11 - 2014-08-24 00:11 - 00000633 _____ () C:\Users\mirjana\Downloads\MTS_SIMul8rReviews_1303516_SIMul8rReviews_MicrowaveSlotsMod.rar 2014-08-23 04:36 - 2014-08-15 16:20 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Raptr 2014-08-23 04:36 - 2014-08-15 16:20 - 00000000 ____D () C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved 2014-08-23 04:36 - 2014-08-15 16:20 - 00000000 ____D () C:\Program Files (x86)\Raptr 2014-08-23 04:36 - 2014-03-27 11:28 - 00000000 ____D () C:\Users\Nikola 2014-08-23 04:36 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration 2014-08-23 04:07 - 2014-08-28 09:53 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-23 03:45 - 2014-08-28 09:53 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-08-23 02:59 - 2014-08-28 09:53 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-22 19:10 - 2014-08-22 19:10 - 04574968 _____ (Avira Operations GmbH & Co. KG) C:\Users\mirjana\Downloads\avira_en_av___ws.exe 2014-08-22 19:01 - 2014-03-23 12:24 - 00000000 ____D () C:\Users\mirjana Some content of TEMP: ==================== C:\Users\mirjana\AppData\Local\Temp\AutoRun.exe C:\Users\mirjana\AppData\Local\Temp\AutoRunGUI.dll C:\Users\mirjana\AppData\Local\Temp\avgnt.exe C:\Users\mirjana\AppData\Local\Temp\DseShExt-x64.dll C:\Users\mirjana\AppData\Local\Temp\DseShExt-x86.dll C:\Users\mirjana\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe C:\Users\mirjana\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe C:\Users\mirjana\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe C:\Users\mirjana\AppData\Local\Temp\LEGOLOTR.exe C:\Users\mirjana\AppData\Local\Temp\NER004912DB.DLL C:\Users\mirjana\AppData\Local\Temp\NER010470F1.DLL C:\Users\mirjana\AppData\Local\Temp\NER020D6446.DLL C:\Users\mirjana\AppData\Local\Temp\NER02A929FD.DLL C:\Users\mirjana\AppData\Local\Temp\NER02C92FA9.DLL C:\Users\mirjana\AppData\Local\Temp\NER0307385E.DLL C:\Users\mirjana\AppData\Local\Temp\NER03263680.DLL C:\Users\mirjana\AppData\Local\Temp\NER03C2030A.DLL C:\Users\mirjana\AppData\Local\Temp\NER03E1598C.DLL C:\Users\mirjana\AppData\Local\Temp\NER04012ED2.DLL C:\Users\mirjana\AppData\Local\Temp\NER04203D0D.DLL C:\Users\mirjana\AppData\Local\Temp\NER04DB5EE3.DLL C:\Users\mirjana\AppData\Local\Temp\NER06710648.DLL C:\Users\mirjana\AppData\Local\Temp\NER06CE22D0.DLL C:\Users\mirjana\AppData\Local\Temp\NER06ED3A72.DLL C:\Users\mirjana\AppData\Local\Temp\NER1D5A51CA.EXE C:\Users\mirjana\AppData\Local\Temp\NER20184B2A.EXE C:\Users\mirjana\AppData\Local\Temp\NER207625F0.EXE C:\Users\mirjana\AppData\Local\Temp\NER3415620D.DLL C:\Users\mirjana\AppData\Local\Temp\NER34E05D8B.DLL C:\Users\mirjana\AppData\Local\Temp\NER34FF1F88.DLL C:\Users\mirjana\AppData\Local\Temp\NER36956605.DLL C:\Users\mirjana\AppData\Local\Temp\NER36B47777.DLL C:\Users\mirjana\AppData\Local\Temp\NER3869539A.DLL C:\Users\mirjana\AppData\Local\Temp\NER38880FF9.DLL C:\Users\mirjana\AppData\Local\Temp\NER38E55B2A.DLL C:\Users\mirjana\AppData\Local\Temp\NER3A4C7F69.DLL C:\Users\mirjana\AppData\Local\Temp\NER3A9A07FF.DLL C:\Users\mirjana\AppData\Local\Temp\NER3AB92F9D.DLL C:\Users\mirjana\AppData\Local\Temp\NER3C2079E4.DLL C:\Users\mirjana\AppData\Local\Temp\NER3DE53E02.DLL C:\Users\mirjana\AppData\Local\Temp\NER3FD86D28.DLL C:\Users\mirjana\AppData\Local\Temp\NER42386AA5.DLL C:\Users\mirjana\AppData\Local\Temp\NER441C1913.DLL C:\Users\mirjana\AppData\Local\Temp\NER465D0208.DLL C:\Users\mirjana\AppData\Local\Temp\NER48506F9A.EXE C:\Users\mirjana\AppData\Local\Temp\NER4D211C26.DLL C:\Users\mirjana\AppData\Local\Temp\NER4EF57993.DLL C:\Users\mirjana\AppData\Local\Temp\NER51743DEA.DLL C:\Users\mirjana\AppData\Local\Temp\NER53392E7B.DLL C:\Users\mirjana\AppData\Local\Temp\NER54FD69B9.DLL C:\Users\mirjana\AppData\Local\Temp\NER57DA0020.DLL C:\Users\mirjana\AppData\Local\Temp\NER57EA2A79.DLL C:\Users\mirjana\AppData\Local\Temp\NER59BE02EF.DLL C:\Users\mirjana\AppData\Local\Temp\NER5A4A57B2.DLL C:\Users\mirjana\AppData\Local\Temp\NER5B7376BD.DLL C:\Users\mirjana\AppData\Local\Temp\NER5C0F6717.DLL C:\Users\mirjana\AppData\Local\Temp\NER5D272FAD.DLL C:\Users\mirjana\AppData\Local\Temp\NER5E020346.DLL C:\Users\mirjana\AppData\Local\Temp\NER5FB76992.DLL C:\Users\mirjana\AppData\Local\Temp\NER5FC66402.DLL C:\Users\mirjana\AppData\Local\Temp\NER617B1508.DLL C:\Users\mirjana\AppData\Local\Temp\NER617B785A.DLL C:\Users\mirjana\AppData\Local\Temp\NER634F706F.DLL C:\Users\mirjana\AppData\Local\Temp\NER63DB159A.DLL C:\Users\mirjana\AppData\Local\Temp\NER65041E98.DLL C:\Users\mirjana\AppData\Local\Temp\NER65CF1FE5.DLL C:\Users\mirjana\AppData\Local\Temp\NER66C805D3.DLL C:\Users\mirjana\AppData\Local\Temp\NER68BB1C2D.DLL C:\Users\mirjana\AppData\Local\Temp\NER69967835.DLL C:\Users\mirjana\AppData\Local\Temp\NER6A9F516A.DLL C:\Users\mirjana\AppData\Local\Temp\NER6B4B321D.DLL C:\Users\mirjana\AppData\Local\Temp\NER6C737382.DLL C:\Users\mirjana\AppData\Local\Temp\NER6D1F187B.DLL C:\Users\mirjana\AppData\Local\Temp\NER6F121352.DLL C:\Users\mirjana\AppData\Local\Temp\NER70595BB2.DLL C:\Users\mirjana\AppData\Local\Temp\NER70E61A68.DLL C:\Users\mirjana\AppData\Local\Temp\NER720E6D4C.DLL C:\Users\mirjana\AppData\Local\Temp\NER72AA5A04.DLL C:\Users\mirjana\AppData\Local\Temp\NER744011D0.DLL C:\Users\mirjana\AppData\Local\Temp\NER74AD2986.DLL C:\Users\mirjana\AppData\Local\Temp\NER7604533D.DLL C:\Users\mirjana\AppData\Local\Temp\NER76A02933.DLL C:\Users\mirjana\AppData\Local\Temp\NER76FE1139.DLL C:\Users\mirjana\AppData\Local\Temp\NER771D62EF.DLL C:\Users\mirjana\AppData\Local\Temp\NER773C537E.DLL C:\Users\mirjana\AppData\Local\Temp\NER774C76AE.DLL C:\Users\mirjana\AppData\Local\Temp\NER777B7CB4.DLL C:\Users\mirjana\AppData\Local\Temp\NER7865714F.DLL C:\Users\mirjana\AppData\Local\Temp\NER798D5405.DLL C:\Users\mirjana\AppData\Local\Temp\NER7A1A38B3.DLL C:\Users\mirjana\AppData\Local\Temp\NER7A293F28.DLL C:\Users\mirjana\AppData\Local\Temp\NER7BEE7328.DLL C:\Users\mirjana\AppData\Local\Temp\NER7C0D538C.DLL C:\Users\mirjana\AppData\Local\Temp\NER7CC8027A.DLL C:\Users\mirjana\AppData\Local\Temp\NER7CD86FE6.DLL C:\Users\mirjana\AppData\Local\Temp\NER7D935E05.DLL C:\Users\mirjana\AppData\Local\Temp\NER7D937D38.DLL C:\Users\mirjana\AppData\Local\Temp\NER7DA26706.DLL C:\Users\mirjana\AppData\Local\Temp\NER7DB22797.DLL C:\Users\mirjana\AppData\Local\Temp\NER7DC22F65.DLL C:\Users\mirjana\AppData\Local\Temp\NER7DD13126.DLL C:\Users\mirjana\AppData\Local\Temp\NER7DE13F52.DLL C:\Users\mirjana\AppData\Local\Temp\NER7E7D59C8.DLL C:\Users\mirjana\AppData\Local\Temp\NER80223D66.DLL C:\Users\mirjana\AppData\Local\Temp\NER811C2399.DLL C:\Users\mirjana\AppData\Local\Temp\NER814A7F85.DLL C:\Users\mirjana\AppData\Local\Temp\NER81897C90.DLL C:\Users\mirjana\AppData\Local\Temp\NER81A86FEA.DLL C:\Users\mirjana\AppData\Local\Temp\NER82150600.DLL C:\Users\mirjana\AppData\Local\Temp\NER82B13F7D.DLL C:\Users\mirjana\AppData\Local\Temp\NER82FF6161.DLL C:\Users\mirjana\AppData\Local\Temp\NER83DA750E.DLL C:\Users\mirjana\AppData\Local\Temp\NER83F90267.DLL C:\Users\mirjana\AppData\Local\Temp\NER841832EC.DLL C:\Users\mirjana\AppData\Local\Temp\NER842842A4.DLL C:\Users\mirjana\AppData\Local\Temp\NER84476ED9.DLL C:\Users\mirjana\AppData\Local\Temp\NER85607B36.DLL C:\Users\mirjana\AppData\Local\Temp\NER856F7065.EXE C:\Users\mirjana\AppData\Local\Temp\NER859E7DF6.DLL C:\Users\mirjana\AppData\Local\Temp\NER85AE3D2D.DLL C:\Users\mirjana\AppData\Local\Temp\NER85DC2E69.DLL C:\Users\mirjana\AppData\Local\Temp\NER85EC407E.DLL C:\Users\mirjana\AppData\Local\Temp\NER86B723FD.DLL C:\Users\mirjana\AppData\Local\Temp\NER87346561.DLL C:\Users\mirjana\AppData\Local\Temp\NER87725A7D.EXE C:\Users\mirjana\AppData\Local\Temp\NER87D03B01.DLL C:\Users\mirjana\AppData\Local\Temp\NER87DF2BC0.DLL C:\Users\mirjana\AppData\Local\Temp\NER881E56D6.DLL C:\Users\mirjana\AppData\Local\Temp\NER884C1466.EXE C:\Users\mirjana\AppData\Local\Temp\NER886C0CFB.DLL C:\Users\mirjana\AppData\Local\Temp\NER88BA221C.DLL C:\Users\mirjana\AppData\Local\Temp\NER88C94660.DLL C:\Users\mirjana\AppData\Local\Temp\NER88D97679.DLL C:\Users\mirjana\AppData\Local\Temp\NER89087321.DLL C:\Users\mirjana\AppData\Local\Temp\NER89170275.DLL C:\Users\mirjana\AppData\Local\Temp\NER892712CE.DLL C:\Users\mirjana\AppData\Local\Temp\NER89461633.DLL C:\Users\mirjana\AppData\Local\Temp\NER89466E06.DLL C:\Users\mirjana\AppData\Local\Temp\NER89566062.DLL C:\Users\mirjana\AppData\Local\Temp\NER89656FAC.DLL C:\Users\mirjana\AppData\Local\Temp\NER8984777B.DLL C:\Users\mirjana\AppData\Local\Temp\NER89B35D77.DLL C:\Users\mirjana\AppData\Local\Temp\NER89E242D3.DLL C:\Users\mirjana\AppData\Local\Temp\NER8A011994.EXE C:\Users\mirjana\AppData\Local\Temp\NER8A5F7BA1.DLL C:\Users\mirjana\AppData\Local\Temp\NER8A6E31A5.DLL C:\Users\mirjana\AppData\Local\Temp\NER8A6E5F7E.DLL C:\Users\mirjana\AppData\Local\Temp\NER8A8E0E4B.EXE C:\Users\mirjana\AppData\Local\Temp\NER8AAD206B.DLL C:\Users\mirjana\AppData\Local\Temp\NER8AAD4963.DLL C:\Users\mirjana\AppData\Local\Temp\NER8B1A4E45.DLL C:\Users\mirjana\AppData\Local\Temp\NER8C717D92.DLL C:\Users\mirjana\AppData\Local\Temp\NER8CFE42A0.DLL C:\Users\mirjana\AppData\Local\Temp\NER8D0D3CD5.EXE C:\Users\mirjana\AppData\Local\Temp\NER8D1D620A.DLL C:\Users\mirjana\AppData\Local\Temp\NER8E45070C.DLL C:\Users\mirjana\AppData\Local\Temp\NER8E453E17.DLL C:\Users\mirjana\AppData\Local\Temp\NER8E64415E.DLL C:\Users\mirjana\AppData\Local\Temp\NER8EC27E17.DLL C:\Users\mirjana\AppData\Local\Temp\NER8F107122.DLL C:\Users\mirjana\AppData\Local\Temp\NER8F3F74B5.DLL C:\Users\mirjana\AppData\Local\Temp\NER8F5E0F2E.DLL C:\Users\mirjana\AppData\Local\Temp\NER90380ED3.EXE C:\Users\mirjana\AppData\Local\Temp\NER98E02C31.DLL C:\Users\mirjana\AppData\Local\Temp\NER9A37511F.DLL C:\Users\mirjana\AppData\Local\Temp\NER9A855AB5.DLL C:\Users\mirjana\AppData\Local\Temp\NER9AC37E85.DLL C:\Users\mirjana\AppData\Local\Temp\NER9BDC144A.DLL C:\Users\mirjana\AppData\Local\Temp\NER9C78468F.DLL C:\Users\mirjana\AppData\Local\Temp\NERA3C82F73.EXE C:\Users\mirjana\AppData\Local\Temp\NERA85A3A0D.DLL C:\Users\mirjana\AppData\Local\Temp\NERA8B87AB8.DLL C:\Users\mirjana\AppData\Local\Temp\NERA8E6604D.DLL C:\Users\mirjana\AppData\Local\Temp\NERA90632BE.DLL C:\Users\mirjana\AppData\Local\Temp\NERA934040E.DLL C:\Users\mirjana\AppData\Local\Temp\NERAE051476.EXE C:\Users\mirjana\AppData\Local\Temp\NERAE827FA4.DLL C:\Users\mirjana\AppData\Local\Temp\NERAEA12204.DLL C:\Users\mirjana\AppData\Local\Temp\NERAFAA1072.DLL C:\Users\mirjana\AppData\Local\Temp\NERB19D45AC.DLL C:\Users\mirjana\AppData\Local\Temp\NERB1BC60E2.DLL C:\Users\mirjana\AppData\Local\Temp\NERB3DE6947.DLL C:\Users\mirjana\AppData\Local\Temp\NERB3EE61F1.DLL C:\Users\mirjana\AppData\Local\Temp\NERB41D2293.DLL C:\Users\mirjana\AppData\Local\Temp\NERB43C003B.DLL C:\Users\mirjana\AppData\Local\Temp\NERB45B6A4B.DLL C:\Users\mirjana\AppData\Local\Temp\NERB46B3DEF.DLL C:\Users\mirjana\AppData\Local\Temp\NERB5844412.DLL C:\Users\mirjana\AppData\Local\Temp\NERB7860B74.DLL C:\Users\mirjana\AppData\Local\Temp\NERB7E42173.DLL C:\Users\mirjana\AppData\Local\Temp\NERB89F74BE.DLL C:\Users\mirjana\AppData\Local\Temp\NERB8BE1519.EXE C:\Users\mirjana\AppData\Local\Temp\NERB8FD4124.DLL C:\Users\mirjana\AppData\Local\Temp\NERBB0F6717.EXE C:\Users\mirjana\AppData\Local\Temp\NERC127078C.DLL C:\Users\mirjana\AppData\Local\Temp\NERC27E4D64.DLL C:\Users\mirjana\AppData\Local\Temp\NERC29E3F44.EXE C:\Users\mirjana\AppData\Local\Temp\NERC2CC379C.DLL C:\Users\mirjana\AppData\Local\Temp\NERC2EC5C1D.DLL C:\Users\mirjana\AppData\Local\Temp\NERC2FB1FAB.DLL C:\Users\mirjana\AppData\Local\Temp\NERC51D74C1.DLL C:\Users\mirjana\AppData\Local\Temp\NERCE9F39DF.EXE C:\Users\mirjana\AppData\Local\Temp\NERD5DF5607.DLL C:\Users\mirjana\AppData\Local\Temp\NERD5EF150D.DLL C:\Users\mirjana\AppData\Local\Temp\NERD68B5B7D.DLL C:\Users\mirjana\AppData\Local\Temp\NERD8FB4556.DLL C:\Users\mirjana\AppData\Local\Temp\NERD93948F2.DLL C:\Users\mirjana\AppData\Local\Temp\NERD9A63E93.DLL C:\Users\mirjana\AppData\Local\Temp\NERDAFE3186.DLL C:\Users\mirjana\AppData\Local\Temp\NERDBA90936.DLL C:\Users\mirjana\AppData\Local\Temp\NERE01C7ABA.DLL C:\Users\mirjana\AppData\Local\Temp\NERF5517D72.DLL C:\Users\mirjana\AppData\Local\Temp\NERF64A52F3.EXE C:\Users\mirjana\AppData\Local\Temp\NERF6A84F23.DLL C:\Users\mirjana\AppData\Local\Temp\NERF7C1636C.DLL C:\Users\mirjana\AppData\Local\Temp\NERF8F9083C.DLL C:\Users\mirjana\AppData\Local\Temp\NERFACD0347.DLL C:\Users\mirjana\AppData\Local\Temp\NERFB2B2E16.DLL C:\Users\mirjana\AppData\Local\Temp\NERFB69299A.DLL C:\Users\mirjana\AppData\Local\Temp\NERFB883BB3.DLL C:\Users\mirjana\AppData\Local\Temp\NERFBA71683.DLL C:\Users\mirjana\AppData\Local\Temp\NERFE942DDD.DLL C:\Users\mirjana\AppData\Local\Temp\NERFEF26A5A.DLL C:\Users\mirjana\AppData\Local\Temp\NERFF6F4124.DLL C:\Users\mirjana\AppData\Local\Temp\ose00000.exe C:\Users\mirjana\AppData\Local\Temp\raptrpatch.exe C:\Users\mirjana\AppData\Local\Temp\raptr_stub.exe C:\Users\mirjana\AppData\Local\Temp\SAS6_Update.exe C:\Users\mirjana\AppData\Local\Temp\SDShelEx-win32.dll C:\Users\mirjana\AppData\Local\Temp\SDShelEx-x64.dll C:\Users\mirjana\AppData\Local\Temp\swt-win32-3349.dll C:\Users\mirjana\AppData\Local\Temp\ubiA2C5.tmp.exe C:\Users\mirjana\AppData\Local\Temp\Uninstall.exe C:\Users\Nikola\AppData\Local\Temp\avgnt.exe C:\Users\Nikola\AppData\Local\Temp\CmdLineExt03.dll C:\Users\Nikola\AppData\Local\Temp\LEGOLOTR.exe C:\Users\Nikola\AppData\Local\Temp\ubi86EE.tmp.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-09-16 12:59 ==================== End Of Log ============================ Pošto ne mogu da prikačim fajl (jer mi se umesto njega otvri neka reklama) ja sam i njega copy-paste: Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-09-2014 01 Ran by mirjana at 2014-09-21 15:44:03 Running from C:\Users\mirjana\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avira Desktop (Enabled - Out of date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Desktop (Enabled - Out of date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) @BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.33 - GIGABYTE) µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33870 - BitTorrent Inc.) Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated) Adobe Flash Player ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 9.0.124.0 - Adobe Systems Incorporated) Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated) AMD Accelerated Video Transcoding (Version: 13.30.100.40417 - Advanced Micro Devices, Inc.) Hidden AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden AMD Catalyst Control Center (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden AMD Fuel (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden AMD Media Foundation Decoders (Version: 1.0.70727.2220 - Advanced Micro Devices, Inc.) Hidden AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden AutoGreen B12.1220.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE) AutoGreen B12.1220.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden Avira (HKLM-x32\...\{e67154a7-9cc5-4167-b782-f3982bc6c70d}) (Version: 1.1.19.30000 - Avira Operations GmbH & Co. KG) Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.6.570 - Avira) BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.67.1076 - AB Team, d.o.o.) CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center InstallProxy (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Standard (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Traditional (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Czech (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Danish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Dutch (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help English (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Finnish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help French (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help German (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Greek (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Hungarian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Italian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Japanese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Korean (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Norwegian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Polish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Portuguese (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Russian (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Spanish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Swedish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Thai (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden CCC Help Turkish (x32 Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden ccc-utility64 (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform) Cheat Engine 6.2 (HKLM-x32\...\Cheat Engine 6.2_is1) (Version: - Dark Byte) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Far Cry 3 (HKLM-x32\...\{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}) (Version: 1.01 - Ubisoft) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.) Google Drive (HKLM-x32\...\{C6640705-7479-4EE5-BC86-879F05F65E74}) (Version: 1.17.7290.4094 - Google, Inc.) Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden Green Ranch (HKLM-x32\...\Green Ranch) (Version: 1.00 - Big Fish Games) Groove Games\Land Of The Dead (HKLM-x32\...\LandOfTheDead) (Version: - ) Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle) Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden LEGO® The Lord of the Rings™ (HKLM-x32\...\{C6F20FA7-342A-47A9-A3C8-EB36CABE6419}) (Version: 1.0.0.0 - Warner Bros. Interactive Entertainment) Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.) LOTR The Return of the King tm (HKLM-x32\...\{6E298B0A-558C-4138-0096-740677B382CD}) (Version: - ) LWS Facebook (x32 Version: 13.50.854.0 - Logitech) Hidden LWS Gallery (x32 Version: 13.51.827.0 - Logitech) Hidden LWS Help_main (x32 Version: 13.51.828.0 - Logitech) Hidden LWS Launcher (x32 Version: 13.51.828.0 - Logitech) Hidden LWS Motion Detection (x32 Version: 13.51.815.0 - Logitech) Hidden LWS Pictures And Video (x32 Version: 13.51.815.0 - Logitech) Hidden LWS Twitter (x32 Version: 13.30.1346.0 - Logitech) Hidden LWS Webcam Software (x32 Version: 13.51.815.0 - Logitech) Hidden LWS WLM Plugin (x32 Version: 1.30.1201.0 - Logitech) Hidden LWS YouTube Plugin (x32 Version: 13.31.1038.0 - Logitech) Hidden Malwarebytes Anti-Malware verzija 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Office PowerPoint Viewer 2007 (English) (HKLM-x32\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Mozilla Firefox 32.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 32.0.2 (x86 en-US)) (Version: 32.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Mystery Cookbook (HKLM-x32\...\Mystery Cookbook) (Version: 1.00 - Alawar Entertainment) NBA 2K14 (HKLM-x32\...\{4FE0545A-1BF3-4B9B-A044-6E1EE719E197}) (Version: 1.0.0 - 2K Sports) Nero 7 Premium (HKLM-x32\...\{CF097717-F174-4144-954A-FBC4BF301033}) (Version: 7.02.9753 - Nero AG) neroxml (x32 Version: 1.0.0 - Nero AG) Hidden ON_OFF Charge 2 B13.1028.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE) ON_OFF Charge 2 B13.1028.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden OpenOffice 4.0.1 (HKLM-x32\...\{47F460DA-D1BE-4D85-8DF2-AA1F31D3445F}) (Version: 4.01.9714 - Apache Software Foundation) Origin (HKLM-x32\...\Origin) (Version: 8.6.0.357 - Electronic Arts, Inc.) PC_Booster (HKLM-x32\...\S-493389286) (Version: 2.1.0.1041 - PremiumSoft) <==== ATTENTION PowerStrip 3 (remove only) (HKLM-x32\...\PowerStrip 3 (remove only)) (Version: - ) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Raptr (HKLM-x32\...\Raptr) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7037 - Realtek Semiconductor Corp.) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation) Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.) SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com) The Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts) The Sims™ 3 70s, 80s, & 90s Stuff (HKLM-x32\...\{E1868CAE-E3B9-4099-8C18-AA8944D336FD}) (Version: 17.0.77 - Electronic Arts) The Sims™ 3 Ambitions (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts) The Sims™ 3 Diesel Stuff (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts) The Sims™ 3 Fast Lane Stuff (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts) The Sims™ 3 Generations (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts) The Sims™ 3 High-End Loft Stuff (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts) The Sims™ 3 Into the Future (HKLM-x32\...\{A0BBD6C7-B546-4048-B33A-F21F5C9F5B09}) (Version: 21.0.150 - Electronic Arts) The Sims™ 3 Island Paradise (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts) The Sims™ 3 Katy Perry's Sweet Treats (HKLM-x32\...\{9B2506E3-9A3F-45B5-96BF-509CAD584650}) (Version: 13.0.62 - Electronic Arts) The Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts) The Sims™ 3 Master Suite Stuff (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts) The Sims™ 3 Movie Stuff (HKLM-x32\...\{D0087539-3C57-44E0-BEE7-D779D546CBE1}) (Version: 20.0.53 - Electronic Arts) The Sims™ 3 Outdoor Living Stuff (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts) The Sims™ 3 Pets (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts) The Sims™ 3 Seasons (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts) The Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts) The Sims™ 3 Supernatural (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts) The Sims™ 3 University Life (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts) The Sims™ 3 World Adventures (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts) Tropico 5 (HKLM-x32\...\Tropico 5_is1) (Version: - ) Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft) Windows Phone app for desktop (HKLM-x32\...\{5F71448B-88EB-4357-9A98-8658D4C49C48}) (Version: 1.1.2726.0 - Microsoft Corporation) WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 18-09-2014 07:20:52 Scheduled Checkpoint 19-09-2014 19:25:42 Windows Update ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {82FC34D7-CF35-41A1-AED2-944903440E6B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09] (Adobe Systems Incorporated) Task: {8ADE0627-963D-4A25-8AFB-FB3848BC9A15} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-13] (Google Inc.) Task: {B81190E0-A4C5-4850-91E1-94DB42191AA5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-13] (Google Inc.) Task: {FD77D810-37AF-4561-A7D3-6FCD15F21994} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2014-09-01 17:32 - 2014-09-01 17:32 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2014-04-17 22:29 - 2014-04-17 22:29 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll 2014-03-23 12:57 - 2011-03-02 13:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll 2014-09-19 22:07 - 2014-09-19 22:07 - 03734640 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll 2014-09-09 21:59 - 2014-09-09 21:59 - 16825520 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (09/21/2014 10:15:09 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: jusched.exe, version: 2.1.67.1, time stamp: 0x53d2a1f4 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x00000000 Faulting process id: 0x174 Faulting application start time: 0xjusched.exe0 Faulting application path: jusched.exe1 Faulting module path: jusched.exe2 Report Id: jusched.exe3 Error: (09/21/2014 09:48:21 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application name: jusched.exe, version: 2.1.67.1, time stamp: 0x53d2a1f4 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000 Exception code: 0xc0000005 Fault offset: 0x00000000 Faulting process id: 0xed4 Faulting application start time: 0xjusched.exe0 Faulting application path: jusched.exe1 Faulting module path: jusched.exe2 Report Id: jusched.exe3 Error: (09/20/2014 09:24:34 AM) (Source: MsiInstaller) (EventID: 1024) (User: mirjana-PC) Description: Product: Adobe Reader XI (11.0.08) - Update '{AC76BA86-7AD7-0000-2550-7A8C40011009}' could not be installed. Error code 1625. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: go.microsoft.com/fwlink/?LinkId=23127 Error: (09/20/2014 08:51:51 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/19/2014 06:13:28 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/18/2014 08:51:22 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/18/2014 03:33:07 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/18/2014 08:26:00 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/17/2014 08:05:50 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/16/2014 10:33:54 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (09/20/2014 08:50:23 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: UsbCharger Error: (09/19/2014 06:12:05 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: UsbCharger Error: (09/19/2014 06:11:51 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Function Discovery Resource Publication service terminated with the following error: %%-2147014847 Error: (09/18/2014 08:49:52 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: UsbCharger Error: (09/18/2014 03:31:45 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: UsbCharger Error: (09/18/2014 03:31:22 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 3:30:08 PM on ‎9/‎18/‎2014 was unexpected. Error: (09/18/2014 09:18:34 AM) (Source: volsnap) (EventID: 36) (User: ) Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit. Error: (09/18/2014 08:25:35 AM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: UsbCharger Error: (09/17/2014 09:25:33 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service. Error: (09/17/2014 09:18:43 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service. Microsoft Office Sessions: ========================= Error: (09/21/2014 10:15:09 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: jusched.exe2.1.67.153d2a1f4unknown0.0.0.000000000c00000050000000017401cfd4a2952eac9cC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeunknown66b397fe-4167-11e4-b125-74d4353a995d Error: (09/21/2014 09:48:21 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: jusched.exe2.1.67.153d2a1f4unknown0.0.0.000000000c000000500000000ed401cfd4a3c71da7efC:\Program Files (x86)\Common Files\Java\Java Update\jusched.exeunknowna844b65e-4163-11e4-b125-74d4353a995d Error: (09/20/2014 09:24:34 AM) (Source: MsiInstaller) (EventID: 1024) (User: mirjana-PC) Description: Adobe Reader XI (11.0.08){AC76BA86-7AD7-0000-2550-7A8C40011009}1625(NULL)(NULL)(NULL) Error: (09/20/2014 08:51:51 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/19/2014 06:13:28 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/18/2014 08:51:22 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/18/2014 03:33:07 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/18/2014 08:26:00 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/17/2014 08:05:50 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (09/16/2014 10:33:54 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 ==================== Memory info =========================== Processor: AMD Athlon(tm) X4 740 Quad Core Processor Percentage of memory in use: 31% Total physical RAM: 8141.79 MB Available physical RAM: 5600.48 MB Total Pagefile: 16281.75 MB Available Pagefile: 12769.85 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:97.56 GB) (Free:14.37 GB) NTFS Drive d: () (Fixed) (Total:976.56 GB) (Free:895.24 GB) NTFS Drive e: () (Fixed) (Total:788.8 GB) (Free:756.57 GB) NTFS Drive g: (ROTK Play Disc) (CDROM) (Total:0.53 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: FBABECFF) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=976.6 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=788.8 GB) - (Type=07 NTFS) ==================== End Of Log ============================

Profil

Sass Drake Poslao: 23 Sep 2014 12:43 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav. Izvinjavamo se što kasnimo sa odgovorom. Korak 1 Idi u Start -> Control Panel -> Programs and Features i deinstaliraj sljedeće programe: PC_Booster Korak 2 Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja. HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\...\MountPoints2: {fa0a40e1-b292-11e3-ac22-74d4353a995d} - G:\RunGame.exe GroupPolicy: Group Policy on Chrome detected <======= ATTENTION FF Extension: priacEcchoap - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default\Extensions\goouue@iyia-.co.uk [2014-07-23] FF Extension: uTorrentControl_v6 - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [2014-03-23] CHR Extension: (priacEcchoap) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncaneajodfiiclghafoihjgjmbgbngd [2014-07-23] CHR Extension: (priacEcchoap) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncaneajodfiiclghafoihjgjmbgbngd\3.9 [2014-07-23] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION EmptyTemp: U okviru Notepad-a klikni na File --> Save As Fajl nazovi Fixlist i sačuvaj na Desktop Dvoklikom ponovo pokreni FRST.exe Klikni na Fix i sačekaj dok program ne završi. Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi. Nakon završetka rada, otvoriće se Notepad, sa sadržajem koji treba da kopiraš u temu. Takođe, na Desktop-u će se nalaziti (fixlog.txt). Potrebno je da sadržaj fixlog.txt kopiraš na forum Korak 3 Preuzmi "Xplode"-ov AdwCleaner i sačuvaj ga na Desktop Dvoklikom pokreni program. u EULA prozoru klikni na I agree. Klikni na dugme Scan i sačekaj da se završi skeniranje. Klikni na dugme Clean i pričekaj da program završi. Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu. Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK Računar će se restartovati, a potom otvoriti Notepad (C:\AdwCleaner[S0].txt) sa izvještajem. Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl" Napomena: Izvještaj ce takođe biti sačuvan na C:\Adwcleaner\AdwCleaner[S0].txt

Profil

Mirabe Poslao: 23 Sep 2014 20:00 Idi na vrh
offline Mirabe Građanin Pridružio: 30 Dec 2008 Poruke: 193	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Ma nema problema,evo nadam se da sam sve ispratila kako treba: Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-09-2014 01 Ran by mirjana at 2014-09-23 17:58:26 Run:1 Running from C:\Users\mirjana\Desktop Boot Mode: Normal ============================================== Content of fixlist: *************** HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\...\MountPoints2: {fa0a40e1-b292-11e3-ac22-74d4353a995d} - G:\RunGame.exe GroupPolicy: Group Policy on Chrome detected <======= ATTENTION FF Extension: priacEcchoap - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default\Extensions\goouue@iyia-.co.uk [2014-07-23] FF Extension: uTorrentControl_v6 - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} [2014-03-23] CHR Extension: (priacEcchoap) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncaneajodfiiclghafoihjgjmbgbngd [2014-07-23] CHR Extension: (priacEcchoap) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncaneajodfiiclghafoihjgjmbgbngd\3.9 [2014-07-23] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION EmptyTemp: *************** "HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fa0a40e1-b292-11e3-ac22-74d4353a995d}" => Key deleted successfully. "HKCR\CLSID\{fa0a40e1-b292-11e3-ac22-74d4353a995d}" => Key not found. C:\Windows\system32\GroupPolicy\Machine => Moved successfully. C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully. C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default\Extensions\goouue@iyia-.co.uk => Moved successfully. C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\l05s47rw.default\Extensions\{96f454ea-9d38-474f-b504-56193e00c1a5} => Moved successfully. C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncaneajodfiiclghafoihjgjmbgbngd => Moved successfully. C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\fncaneajodfiiclghafoihjgjmbgbngd\3.9 directory not found. "HKLM\SOFTWARE\Policies\Google" => Key deleted successfully. EmptyTemp: => Removed 9.2 GB temporary data. The system needed a reboot. ==== End of Fixlog ==== mycity.rs/must-login.png

Profil

Sass Drake Poslao: 23 Sep 2014 20:24 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kakvo je sada stanje? Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop. Dvoklikom pokreni MBAR () na ikonicu programa: - Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u; - mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.; - U uvodnom prozoru klikni dugme Next ukoliko si saglasan; • Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next; • Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan; Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka: - 'Could not load protection driver' => u tom slucaju klikni OK. - 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta. >> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje. >> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje. - Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja. Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe: - Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ... - Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem. Sledeci izvestaji ce biti formirani u mbar folderu. 1. mbar-log-year-month-day (hour-minute-second).txt 2. system-log.txt Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.

Profil

Mirabe Poslao: 24 Sep 2014 16:46 Idi na vrh
offline Mirabe Građanin Pridružio: 30 Dec 2008 Poruke: 193	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 24 Sep 2014 16:09 Nema iskakanja,ajde da odradim i ovo još Dopuna: 24 Sep 2014 16:44 mycity.rs/must-login.png mycity.rs/must-login.png Dopuna: 24 Sep 2014 16:46 Ups,ja oba izveštaja prikačila kao fajl. Ako smeta,staviću sledeću iskopiranu.

Profil

Sass Drake Poslao: 24 Sep 2014 18:39 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! To bi bilo to. • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Profil

Mirabe Poslao: 24 Sep 2014 21:10 Idi na vrh
offline Mirabe Građanin Pridružio: 30 Dec 2008 Poruke: 193	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! E završeno,hvala ti na pomoći i na strpljenju! Pozdrav!

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Iskakanje prozorčića

Ko je trenutno na forumu

Ukupno su 962 korisnika na forumu :: 45 registrovanih, 8 sakrivenih i 909 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: Aleksandar Tomić, alkatraz080, anta, arton, babaroga, bankulen, Brana01, cavatina, celik, comi_pfc, dankisha, darcaud, djboj, Fog of War, h8propaganda, ikan, Karla, kolle.the.kid, ksyyaj, Kubovac, kubura91, Litostroton, lord sir giga, Marko Marković, MiGac, milenko crazy north, Mixelotti, mnn2, nenad81, pacika, Panter, randja26, repac, robert1979, savaskytec, Shinobi, slonic_tonic, Srle993, Stoilkovic, tmanda323, Toper, virked, YugoSlav, zillbg, šumar bk2

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by