MyCity » Ambulanta -> Arhiva Ambulante » Kompjuter počeo da se "zaglavljuje"

Kompjuter počeo da se "zaglavljuje"

Napisano na dan: 19.12.2017

Kompjuter počeo da se "zaglavljuje"

Odgovori

ltcolonel Poslao: 19 Dec 2017 00:19 Idi na vrh
offline ltcolonel Građanin Nebojša Đokić vojni istoričar Pridružio: 03 Jun 2010 Poruke: 43 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Poslednjih par dana kompjuter je počeo povremeno da mi se zaglavljuje i to na samom početku rada ili čak pri dizanju sistema. Ako se ne zaglavi na početku onda radi bez problema. Posle resetovanja skoro uvek radi bez problema. FRST izveštaj Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-12-2017 Ran by Natalija Djokic (administrator) on PC (19-12-2017 00:11:53) Running from C:\Documents and Settings\Natalija Djokic\My Documents\Downloads Loaded Profiles: Natalija Djokic & UpdatusUser (Available Profiles: Natalija Djokic & UpdatusUser) Platform: Microsoft Windows XP Professional Service Pack 3 (X86) Language: English (United States) Internet Explorer Version 8 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVAST Software) D:\Program Files\New Folder\AvastSvc.exe (Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe ( ) C:\WINDOWS\system32\lxeacoms.exe (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (AVAST Software) D:\Program Files\New Folder\aswidsagent.exe (WiseCleaner.com) C:\Program Files\Wise\Wise System Monitor\WiseSystemMonitor.exe (Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe (Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMax4.exe (Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe () C:\Program Files\Everything\Everything.exe () C:\Program Files\Lexmark S300-S400 Series\ezprint.exe () C:\Program Files\DjVu Printer Pilot\djvpagent.exe (AVAST Software) D:\Program Files\New Folder\AvastUI.exe (Яндекс) C:\Program Files\Yandex\YandexDisk\bin\YandexDisk.exe () C:\Program Files\Lexmark S300-S400 Series\lxeamon.exe (ABBYY Production LLC.) C:\Program Files\ABBYY FineReader 12\Bonus.ScreenshotReader.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [925696 2005-05-20] (Analog Devices, Inc.) HKLM\...\Run: [SoundMAX] => C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [716800 2005-09-07] (Analog Devices, Inc.) HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2013-01-03] () HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [1048576 2014-08-06] () HKLM\...\Run: [EzPrint] => C:\Program Files\Lexmark S300-S400 Series\ezprint.exe [150264 2013-01-23] () HKLM\...\Run: [DjVu Printer Pilot virtual printer agent] => C:\Program Files\DjVu Printer Pilot\djvpagent.exe [94208 2010-11-12] () HKLM\...\Run: [] => [X] HKLM\...\Run: [Adobe_ID0EYTHM] => C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe [1884160 2007-03-20] (Adobe Systems Incorporated) HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k HKLM\...\Run: [AvastUI.exe] => D:\Program Files\New Folder\AvLaunch.exe [253344 2017-11-10] (AVAST Software) HKLM\...\Run: [SyncManPath] => C:\Program Files\Yandex\YandexDisk\bin\YandexDisk.exe [17419768 2017-12-10] (Яндекс) HKLM\...\Run: [Bonus.SSR.FR12] => C:\Program Files\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [1527960 2016-01-20] (ABBYY Production LLC.) HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7972528 2017-12-13] (Piriform Ltd) HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\MountPoints2: {021fc29c-edfe-11e1-be13-001731685797} - F:\autorun.exe HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\sstext3d.scr [679936 2008-04-14] (Microsoft Corporation) HKU\S-1-5-18\...\Run: [] => [X] GroupPolicy: Restriction ? <==== ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0 Tcpip\..\Interfaces\{8A659256-1A93-43D8-90CD-75B451065AFF}: [DhcpNameServer] 192.168.1.1 0.0.0.0 Tcpip\..\Interfaces\{8B08C823-B96B-4454-BD80-840837036890}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006 HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} URLSearchHook: [S-1-5-21-1220945662-1770027372-1417001333-1004] ATTENTION => Default URLSearchHook is missing SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated) BHO: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> D:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll [2007-03-16] (Adobe Systems Incorporated.) BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-08-08] (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> D:\Program Files\New Folder\aswWebRepIE.dll [2017-11-10] (AVAST Software) BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10] (Adobe Systems Incorporated) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-08] (Oracle Corporation) Toolbar: HKU\.DEFAULT -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10] (Adobe Systems Incorporated) Toolbar: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10] (Adobe Systems Incorporated) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_144-windows-i586.cab DPF: {CAFEEFAC-0018-0000-00144-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_144-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinstall-1_8_0_144-windows-i586.cab Handler: jpip - {B92DD248-E3D5-4A92-B311-C9B841681455} - C:\Program Files\LizardTech\Express View\expressview.dll [2008-12-16] (Lizardtech Software) Handler: sidlet - {B92DD248-E3D5-4A92-B311-C9B841681455} - C:\Program Files\LizardTech\Express View\expressview.dll [2008-12-16] (Lizardtech Software) FireFox: ======== FF ProfilePath: C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515 [2017-12-19] FF Extension: (Adguard AdBlocker) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\adguardadblocker@adguard.com.xpi [2017-10-16] FF Extension: (Gismeteo) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\extensions@gismeteo.com.xpi [2017-11-13] FF Extension: (HTML5 Video Everywhere!) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\html5-video-everywhere@lejenome.me.xpi [2017-12-16] FF Extension: (Web Clipper : Easy Screenshot) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\jid0-SnuIiIyRmNnMhukLu6VK8DQkq12@jetpack.xpi [2017-07-26] [Legacy] FF Extension: (Print Friendly & PDF) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\jid0-YQz0l1jthOIz179ehuitYAOdBEs@jetpack.xpi [2017-09-06] FF Extension: (AllQuakes) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\jid1-Cl7nfq5lKDIAuw@jetpack.xpi [2017-11-23] FF Extension: (Context Search) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\olivier.debroqueville@gmail.com.xpi [2017-11-28] FF Extension: (uBlock Origin) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\uBlock0@raymondhill.net.xpi [2017-12-14] FF Extension: (Avast Online Security) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\wrc@avast.com.xpi [2017-10-07] FF Extension: (YesScript) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\yesscript@userstyles.org.xpi [2017-08-08] [Legacy] FF Extension: (NoScript) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2017-12-12] [Legacy] FF Extension: (Adblock Plus) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-12-12] FF Extension: (DownThemAll!) - C:\Documents and Settings\Natalija Djokic\Application Data\Mozilla\Firefox\Profiles\vd24v60x.default-1501044131515\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2017-08-06] [Legacy] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2016-09-20] [Legacy] [not signed] FF HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi => not found FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-12] () FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-04-15] (Foxit Corporation) FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2014-04-15] (Foxit Corporation) FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-08] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-08] (Oracle Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation) FF Plugin: @mozilla.zeniko.ch/SumatraPDF_Browser_Plugin -> C:\Program Files\SumatraPDF\npPdfViewer.dll [2015-08-06] (Simon Bьnzli) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.) FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2014-06-19] (Tracker Software Products (Canada) Ltd.) FF Plugin HKU\S-1-5-21-1220945662-1770027372-1417001333-1003: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2014-06-19] (Tracker Software Products (Canada) Ltd.) Chrome: ======= CHR Profile: C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Google\Chrome\User Data\Default [2017-12-17] CHR Extension: (Google Docs) - C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-09-26] CHR Extension: (Gismeteo) - C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bfegaehidkkcfaikpaijcdahnpikhobf [2017-03-10] CHR Extension: (Adblock for Youtube™) - C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2017-04-09] CHR Extension: (Video Downloader professional) - C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2016-12-19] CHR Extension: (AdBlock) - C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-12] CHR Extension: (Take Webpage Screenshots Entirely - FireShot) - C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2016-11-18] CHR Extension: (Chrome Web Store Payments) - C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09] CHR Extension: (Adblock Pro) - C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2016-11-18] CHR Extension: (AdBlocker Ultimate) - C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ohahllgiabjaoigichmmfljhkcfikeof [2017-01-13] CHR Extension: (Print Friendly & PDF) - C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ohlencieiipommannpdfcmfdpjjmeolj [2017-02-03] CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [69632 2017-05-08] (Adobe Systems) [File not signed] S3 Adobe Version Cue CS3; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe [153792 2007-03-20] (Adobe Systems Incorporated) S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-12-12] (Adobe Systems Incorporated) [File not signed] R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021056 2016-03-03] (Adobe Systems, Incorporated) R3 aswbIDSAgent; D:\Program Files\New Folder\aswidsagent.exe [5904136 2017-11-10] (AVAST Software) R2 avast! Antivirus; D:\Program Files\New Folder\AvastSvc.exe [281416 2017-11-10] (AVAST Software) S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed] S2 lxeaCATSCustConnectService; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxeaserv.exe [193192 2010-04-14] (Lexmark International, Inc.) R2 lxea_device; C:\WINDOWS\system32\lxeacoms.exe [598696 2010-04-14] ( ) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4563920 2017-11-01] (Malwarebytes) ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 acedrv10; C:\WINDOWS\system32\drivers\acedrv10.sys [328824 2007-07-24] (Protect Software GmbH) S2 acehlp10; C:\WINDOWS\system32\drivers\acehlp10.sys [201848 2007-07-11] (Protect Software GmbH) R3 AEAudioService; C:\WINDOWS\System32\drivers\AEAudio.sys [127872 2005-03-04] (Andrea Electronics Corporation) R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [157176 2017-11-10] (AVAST Software) R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [255616 2017-11-10] (AVAST Software s.r.o.) R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [157408 2017-11-10] (AVAST Software s.r.o.) R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [276728 2017-11-10] (AVAST Software s.r.o.) R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [50376 2017-11-10] (AVAST Software s.r.o.) S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42848 2017-11-10] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [124952 2017-11-10] (AVAST Software) R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [70112 2017-11-10] (AVAST Software) R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [70864 2017-11-10] (AVAST Software) R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [783136 2017-11-10] (AVAST Software) R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [388760 2017-11-15] (AVAST Software) R3 aswStmXP; C:\WINDOWS\System32\drivers\aswStmXP.sys [205392 2017-11-10] (AVAST Software) R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [298360 2017-11-10] (AVAST Software) R1 BIOS; C:\WINDOWS\system32\drivers\BIOS.sys [13696 2005-03-16] (BIOSTAR Group) [File not signed] S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation) R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [59896 2017-11-29] () R3 FETND5BV; C:\WINDOWS\System32\DRIVERS\fetnd5bv.sys [43008 2005-06-21] (VIA Technologies, Inc. ) S3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. ) R3 genmcmnUSB; C:\WINDOWS\System32\DRIVERS\gflmouhid.sys [6528 2003-08-07] () R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed] R3 HSFHWBS2; C:\WINDOWS\System32\DRIVERS\HSFBS2S2.sys [220032 2008-04-14] (Conexant Systems, Inc.) R3 HSF_DP; C:\WINDOWS\System32\DRIVERS\HSFDPSP2.sys [1041536 2008-04-14] (Conexant Systems, Inc.) R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2016-06-23] (REALiX(tm)) S3 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [151328 2017-12-18] (Malwarebytes) S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [40376 2017-12-18] (Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [221112 2017-12-18] (Malwarebytes) R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-12] () S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation) R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.) S3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2010-03-15] (Padus, Inc.) [File not signed] S3 RT73; C:\WINDOWS\System32\DRIVERS\rt73.sys [465152 2008-10-21] (Ralink Technology, Corp.) [File not signed] R1 SCDEmu; C:\WINDOWS\system32\Drivers\SCDEmu.sys [124304 2017-02-02] (Power Software Ltd) R3 SenFiltService; C:\WINDOWS\System32\drivers\Senfilt.sys [393088 2005-08-11] (Sensaura) R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (Almico Software) R0 videX32; C:\WINDOWS\System32\DRIVERS\videX32.sys [13976 2017-06-05] (VIA Technologies, Inc.) R3 winachsf; C:\WINDOWS\System32\DRIVERS\HSFCXTS2.sys [685056 2008-04-14] (Conexant Systems, Inc.) R3 WiseHDInfo; C:\WINDOWS\WiseHDInfo32.dll [13264 2017-05-15] (wisecleaner.com) [File not signed] R1 WiseTDIFw; C:\WINDOWS\WiseTDIFw.sys [21424 2017-05-15] (WiseCleaner.com) [File not signed] R1 WiseUnlock; C:\WINDOWS\WiseUnlock.sys [11728 2015-05-11] (WiseCleaner.com) [File not signed] R0 xfilt; C:\WINDOWS\System32\DRIVERS\xfilt.sys [23192 2017-06-05] (VIA Technologies, Inc.) S2 adfs; no ImagePath S3 cleanhlp; \??\F:\bin\cleanhlp32.sys [X] S3 cpuz137; \??\C:\DOCUME~1\NATALI~1\LOCALS~1\Temp\Rar$EXa0.161\pcwiz_x32.sys [X] S4 IntelIde; no ImagePath S4 IUFileFilter; \??\C:\Program Files\IObit\IObit Uninstaller\drivers\win7_x86\IUFileFilter.sys [X] S1 ntiomin; no ImagePath U1 WS2IFSL; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-12-18 16:46 - 2017-12-18 16:46 - 000151328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2017-12-18 16:45 - 2017-12-18 16:45 - 000040376 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2017-12-18 16:44 - 2017-12-18 23:40 - 000221112 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2017-12-18 16:43 - 2017-12-18 16:43 - 000001721 _____ C:\Documents and Settings\All Users\Desktop\Malwarebytes.lnk 2017-12-18 16:43 - 2017-12-18 16:43 - 000000000 ____D C:\Program Files\Malwarebytes 2017-12-18 16:43 - 2017-12-18 16:43 - 000000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes 2017-12-18 16:43 - 2017-12-18 16:43 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\Malwarebytes 2017-12-18 16:43 - 2017-11-29 09:11 - 000059896 _____ C:\WINDOWS\system32\Drivers\mbae.sys 2017-12-17 18:15 - 2017-12-17 18:28 - 000000000 ____D C:\AdwCleaner 2017-12-17 17:09 - 2017-12-19 00:11 - 000000000 ____D C:\FRST 2017-12-17 15:35 - 2017-12-17 15:35 - 000000808 _____ C:\DelFix.txt 2017-12-17 15:35 - 2017-12-17 15:35 - 000000000 ____D C:\WINDOWS\ERUNT 2017-12-13 18:45 - 2017-12-13 18:48 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\My Documents\word 2017-12-13 15:10 - 2017-12-13 15:08 - 006680786 ____R C:\Documents and Settings\Natalija Djokic\My Documents\Greek and Roman Artillery. Historical Development.djvu 2017-12-13 06:01 - 2017-12-13 06:00 - 015943677 ____R C:\Documents and Settings\Natalija Djokic\My Documents\The-history-of-the-origins-of-Christianity-Book-1-Life-of-Jesus-by-Ernest-Renan.djvu 2017-12-12 18:22 - 2017-12-12 18:22 - 000002052 _____ C:\Documents and Settings\All Users\Desktop\ABBYY FineReader 12.lnk 2017-12-12 18:22 - 2017-12-12 18:22 - 000000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\ABBYY FineReader 12 2017-12-12 18:13 - 2017-12-12 18:31 - 000000000 ____D C:\Program Files\ABBYY FineReader 12 2017-12-11 22:51 - 2017-12-11 22:51 - 000167766 _____ C:\Documents and Settings\Natalija Djokic\My Documents\Homage to Academician Sima Ćirković.pdf 2017-12-11 22:27 - 2017-12-11 22:27 - 000178717 _____ C:\Documents and Settings\Natalija Djokic\My Documents\Brus ONLINE - Rudarstvo na istočnoj strani Kopaonika.pdf 2017-12-11 00:20 - 2017-12-11 00:20 - 000000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\Яндекс.Диск 2017-12-06 14:14 - 2017-12-06 14:14 - 000003584 _____ C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2017-12-06 02:25 - 2017-12-06 02:25 - 014938896 _____ C:\Documents and Settings\Natalija Djokic\My Documents\Korice napred.tif 2017-12-06 02:11 - 2017-12-06 02:12 - 017182748 _____ C:\Documents and Settings\Natalija Djokic\My Documents\Vicentije Rakic bakrorez iz 1807.tif 2017-12-03 00:49 - 2017-12-03 00:49 - 000050912 _____ C:\Documents and Settings\Natalija Djokic\My Documents\001.pdf 2017-12-02 01:08 - 2017-11-20 23:00 - 001687464 _____ (SpeedyFox) C:\Documents and Settings\Natalija Djokic\Desktop\speedyfox.exe 2017-11-21 02:27 - 2017-11-21 02:38 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\My Documents\Преузимање 2017-11-21 01:58 - 2017-11-21 03:10 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Thunderbird 2017-11-21 01:58 - 2017-11-21 01:58 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\Thunderbird ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-12-19 00:13 - 2010-03-15 14:06 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Local Settings\Temp 2017-12-19 00:08 - 2016-05-13 10:24 - 000000886 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2017-12-19 00:07 - 2016-05-13 10:24 - 000000882 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2017-12-18 23:45 - 2016-09-26 22:04 - 000000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2017-12-18 23:42 - 2017-01-11 04:41 - 000000000 ___RD C:\Documents and Settings\Natalija Djokic\YandexDisk 2017-12-18 23:40 - 2017-05-15 22:28 - 000000458 _____ C:\WINDOWS\Tasks\Wise System Monitor.job 2017-12-18 23:38 - 2017-10-24 12:43 - 000000300 ____H C:\WINDOWS\Tasks\CCleaner Update.job 2017-12-18 23:38 - 2017-10-06 21:12 - 000000338 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job 2017-12-18 23:38 - 2010-03-15 14:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-12-18 23:00 - 2017-06-02 12:51 - 000032510 _____ C:\WINDOWS\SchedLgU.Txt 2017-12-18 23:00 - 2010-07-10 18:12 - 000000000 __SHD C:\WINDOWS\CSC 2017-12-18 22:37 - 2017-02-18 05:10 - 152765440 _____ C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\SageThumbs.db3 2017-12-18 19:01 - 2010-03-15 14:06 - 000000178 ___SH C:\Documents and Settings\Natalija Djokic\ntuser.ini 2017-12-18 19:01 - 2010-03-15 14:06 - 000000000 ____D C:\Documents and Settings\Natalija Djokic 2017-12-18 18:59 - 2015-07-09 00:49 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\Everything 2017-12-18 15:13 - 2017-10-24 00:31 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\MediaMonkey 2017-12-18 07:44 - 2016-05-13 10:35 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\uTorrent 2017-12-17 18:28 - 2017-04-14 16:13 - 000000000 ____D C:\Program Files\Common Files\IObit 2017-12-17 18:28 - 2017-04-14 16:12 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\IObit 2017-12-17 18:27 - 2015-03-25 01:24 - 000000178 ___SH C:\Documents and Settings\UpdatusUser\ntuser.ini 2017-12-16 23:43 - 2016-09-26 22:04 - 000000892 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job 2017-12-16 23:43 - 2010-03-15 13:59 - 000000000 ____D C:\WINDOWS\system32\Macromed 2017-12-15 20:58 - 2015-03-19 17:51 - 000000688 _____ C:\Documents and Settings\All Users\Desktop\CCleaner.lnk 2017-12-15 06:29 - 2017-09-25 02:30 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\ebook_convert 2017-12-14 02:43 - 2017-02-17 14:34 - 000000000 ____D C:\Program Files\SumatraPDF 2017-12-14 02:28 - 2015-03-22 03:15 - 000092156 _____ C:\Documents and Settings\Natalija Djokic\Desktop\SumatraPDF-settings.txt 2017-12-14 02:27 - 2017-02-17 14:35 - 000001592 _____ C:\Documents and Settings\All Users\Start Menu\Programs\SumatraPDF.lnk 2017-12-13 18:48 - 2016-12-02 00:00 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\My Documents\YTD Video Downloader 2017-12-13 18:38 - 2015-03-30 16:57 - 004020224 ___SH C:\Documents and Settings\Natalija Djokic\My Documents\Thumbs.db 2017-12-12 18:13 - 2015-11-16 14:42 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\ABBYY 2017-12-12 14:45 - 2016-09-26 22:04 - 000803328 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2017-12-12 14:45 - 2016-09-26 22:04 - 000144896 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2017-12-10 16:29 - 2010-03-15 14:52 - 000000000 ____D C:\Program Files\Common Files\ACD Systems 2017-12-08 11:55 - 2017-02-08 15:19 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service 2017-12-08 07:30 - 2017-09-29 04:31 - 000000000 ____D C:\Program Files\Mozilla Firefox 2017-12-06 04:14 - 2010-03-15 15:05 - 000000000 ____D C:\Documents and Settings\Natalija Djokic\Application Data\Adobe 2017-12-05 14:35 - 2017-02-08 15:19 - 000000736 _____ C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk 2017-12-05 14:35 - 2017-02-08 15:19 - 000000730 _____ C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk 2017-12-03 13:33 - 2016-11-14 03:37 - 000000000 ____D C:\Program Files\Software Translator 2017-12-01 14:43 - 2017-04-07 16:33 - 000002630 _____ C:\Documents and Settings\Natalija Djokic\Desktop\µTorrent.lnk 2017-11-28 18:35 - 2016-05-25 03:53 - 005735662 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1220945662-1770027372-1417001333-1003-0.dat 2017-11-28 18:35 - 2016-05-13 16:54 - 000863502 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat 2017-11-21 03:12 - 2017-09-20 06:56 - 000000000 ____D C:\Program Files\MusicBee 2017-11-19 13:49 - 2015-11-16 14:38 - 000000000 ____D C:\temp 2017-11-19 02:00 - 2017-08-19 05:43 - 000000622 _____ C:\Documents and Settings\Natalija Djokic\Desktop\PotPlayer.lnk ==================== Files in the root of some directories ======= 2017-12-06 14:14 - 2017-12-06 14:14 - 000003584 _____ () C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2017-11-13 06:30 - 2017-11-13 06:30 - 000000138 _____ () C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\fusioncache.dat 2017-02-18 05:10 - 2017-12-18 22:37 - 152765440 _____ () C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\SageThumbs.db3 ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End of FRST.txt ============================ Additional scan result of Farbar Recovery Scan Tool (x86) Version: 17-12-2017 Ran by Natalija Djokic (19-12-2017 00:14:40) Running from C:\Documents and Settings\Natalija Djokic\My Documents\Downloads Microsoft Windows XP Professional Service Pack 3 (X86) (2010-03-15 13:04:10) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1220945662-1770027372-1417001333-500 - Administrator - Enabled) ASPNET (S-1-5-21-1220945662-1770027372-1417001333-1005 - Limited - Enabled) Guest (S-1-5-21-1220945662-1770027372-1417001333-501 - Limited - Disabled) HelpAssistant (S-1-5-21-1220945662-1770027372-1417001333-1000 - Limited - Disabled) Natalija Djokic (S-1-5-21-1220945662-1770027372-1417001333-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Natalija Djokic SUPPORT_388945a0 (S-1-5-21-1220945662-1770027372-1417001333-1002 - Limited - Disabled) UpdatusUser (S-1-5-21-1220945662-1770027372-1417001333-1004 - Limited - Enabled) => %SystemDrive%\Documents and Settings\UpdatusUser ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Malwarebytes (Enabled - Up to date) {D4AC7077-9720-47B0-8B38-DFAF3AA21DB6} AV: Avast Antivirus (Enabled - Up to date) {7591db91-41f0-48a3-b128-1a293fd8233d} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\uTorrent) (Version: 3.5.0.44294 - BitTorrent Inc.) 2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM\...\{90120000-0014-0000-0000-0000000FF1CE}_PRO_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) 7-Zip 16.02 (HKLM\...\{23170F69-40C1-2701-1602-000001000000}) (Version: 16.02.00.0 - Igor Pavlov) 7-Zip 16.02 (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov) ABBYY FineReader 12 Professional (HKLM\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.1.609 - ABBYY Production LLC) ABBYY ScanTo Office 1.0 (HKLM\...\{5730CAAC-9368-4813-9D3C-7D1AB5F0A154}) (Version: 1.00.899.4211 - ABBYY Software Limited <www.abbyy.com>) AC3Filter 2.6.0b (HKLM\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky) Add or Remove Adobe Creative Suite 3 Master Collection (HKLM\...\Adobe_4dcfd9b7e901b57f81f667144603236) (Version: 1.0 - Adobe Systems Incorporated) Additional languages for ABBYY FineReader 8.0 Professional Edition (HKLM\...\{895F70B1-3C3B-43D8-B4E7-0FDDEF74D823}) (Version: 8.00.738.00 - ABBYY Software House) Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.1.0.5790 - Adobe Systems Inc.) Adobe Creative Suite 4 Master Collection (HKLM\...\Adobe_b2d6abde968e6f277ddbfd501383e02) (Version: 4.0 - Adobe Systems Incorporated) Adobe Flash Player 28 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 28.0.0.126 - Adobe Systems Incorporated) Adobe Flash Player 28 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 28.0.0.126 - Adobe Systems Incorporated) Adobe Flash Player 28 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 28.0.0.126 - Adobe Systems Incorporated) Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated) Adobe Photoshop CS3 (HKLM\...\Adobe_2ac78060bc5856b0c1cf873bb919b58) (Version: 10.0 - Adobe Systems Incorporated) AFPL Ghostscript 8.54 (HKLM\...\AFPL Ghostscript 8.54) (Version: - ) AFPL Ghostscript Fonts (HKLM\...\AFPL Ghostscript Fonts) (Version: - ) Agent Ransack (HKLM\...\{8B51F879-18C4-4C37-8D2B-E340AEE7AACB}) (Version: 7.0.828.1 - Mythicsoft Ltd) AHV content for Acrobat and Flash (HKLM\...\{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}) (Version: 1 - Adobe Systems Incorporated) Hidden AllDup 4.0.32 (HKLM\...\AllDup_is1) (Version: 4.0.32 - Michael Thummerer Software Design) Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 17.8.2318 - AVAST Software) Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) BurnInTest 7.0.1013 (HKLM\...\BurnInTest) (Version: 7.0.1013 - PassMark) calibre (HKLM\...\{DD649DA2-BBD9-4247-85DD-E04F7C1E8552}) (Version: 1.48.0 - Kovid Goyal) CCleaner (HKLM\...\CCleaner) (Version: 5.38 - Piriform) Connect (HKLM\...\{B29AD377-CC12-490A-A480-1452337C618D}) (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden Corel Graphics Suite 11 (HKLM\...\{07A540AB-D785-11D5-8E89-0090275862A0}) (Version: 11 - Corel Corporation) Hidden Corel Graphics Suite 11 (HKLM\...\InstallShield_{07A540AB-D785-11D5-8E89-0090275862A0}) (Version: 11 - Corel Corporation) Croatian language for ABBYY FineReader 8.0 Professional Edition (HKLM\...\{FDDF811F-A238-4F58-87DC-82C284169F3A}) (Version: 8.00.738.00 - ABBYY Software House) Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) DjVu Editor (HKLM\...\{4396BE64-7A77-4A64-8E0A-575B71F849D2}) (Version: - ) DjVu Shell Extension Pack (HKLM\...\{E680FD3D-CCAA-4E1D-811B-16A490F61585}) (Version: 7.1.33351 - Cuminas Corporation) DjVu Solo 3.1 (HKLM\...\DjVu Solo 3.1) (Version: - ) DjVuLibre DjView 3.5.27+4.10.4 (HKLM\...\DjVuLibre+DjView) (Version: 3.5.27+4.10.4 - DjVuZone) Duplicate Cleaner Free 3.2.7 (HKLM\...\Duplicate Cleaner Free) (Version: 3.2.7 - DigitalVolcano Software Ltd) <==== ATTENTION Epubor Ultimate (HKLM\...\Epubor Ultimate) (Version: 3.0.9.914 - Epubor Inc.) Everything 1.3.4.686 (x86) (HKLM\...\Everything) (Version: - ) FastStone Image Viewer 6.3 (HKLM\...\FastStone Image Viewer) (Version: 6.3 - FastStone Soft) FileOptimizer (HKLM\...\FileOptimizer) (Version: 11.1.0.0 - Javier Gutiérrez Chamorro (Guti)) FormatFactory 3.6.0.0 (HKLM\...\FormatFactory) (Version: 3.6.0.0 - Format Factory) Foxit Advanced PDF Editor 3 (HKLM\...\B521582C-6BE3-491D-BCC8-FFB8301298E9_is1) (Version: 3.1.0.0 - Foxit Corporation) Foxit PhantomPDF Business (HKLM\...\{5590505B-D3CB-4489-A543-75731D7C4249}) (Version: 6.2.1.618 - Foxit Corporation) Free Unit Converter 2.11 (HKLM\...\Free Unit Converter_is1) (Version: - Unit Conversion, Inc.) Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden Google2SRT (HKLM\...\{B0A59B6D-5983-46D2-9B34-51B1C15055CD}) (Version: 0.7.5 - Google2SRT) High-Logic FontCreator 6.0 (HKLM\...\FontCreator6_is1) (Version: - High-Logic B.V.) HTML to PDF Converter Free (HKLM\...\{9ECF0D24-31C8-4872-AB59-02B0A1711E63}) (Version: 3.2 - PDFArea Software) Hugin 2013.0.0 (HKLM\...\Hugin) (Version: 2013.0.0 hg_0d404a7088e6 - The Hugin Development Team) HWiNFO32 Version 5.30 (HKLM\...\HWiNFO32_is1) (Version: 5.30 - Martin Malík - REALiX) ICE Book Reader Professional v9.1.0 Russian (HKLM\...\ICE Book Reader Professional Russian_is1) (Version: - ICE Graphics) Icecream Ebook Reader verzija 5.07 (HKLM\...\{B8C30F0F-1F23-49E1-A3ED-44DE17660EE2}_is1) (Version: 5.07 - Icecream Apps) Icecream Image Resizer version 1.50 (HKLM\...\{2F8F5694-F482-481A-B05F-4A6D8A275B84}_is1) (Version: 1.50 - Icecream Apps) Icecream Media Converter version 1.56 (HKLM\...\{896F1686-6F72-480B-B60B-336E7F8A2EE2}_is1) (Version: 1.56 - Icecream Apps) Icecream PDF Converter version 2.74 (HKLM\...\{6811A286-E9F4-4035-9738-7721C087E500}_is1) (Version: 2.74 - Icecream Apps) Icecream PDF Split and Merge version 3.41 (HKLM\...\{95DC4DB4-99FB-4FB2-ADBD-97F194EDEB4D}_is1) (Version: 3.41 - Icecream Apps) Icecream Screen Recorder version 2.24 (HKLM\...\{7ADEC622-3230-4C9A-9DCE-9BD462B74095}_is1) (Version: 2.24 - Icecream Apps) Image Resizer for Windows (HKLM\...\{6285B71F-660A-478B-A876-C7E66A678E6A}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden Image Resizer for Windows (HKLM\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson) Java 8 Update 144 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation) Jutoh 2.65 (HKLM\...\Jutoh_is1) (Version: 2.65 - Anthemion Software Ltd.) K-Lite Mega Codec Pack 13.6.5 (HKLM\...\KLiteCodecPack_is1) (Version: 13.6.5 - KLCP) kuler (HKLM\...\{098727E1-775A-4450-B573-3F441F1CA243}) (Version: 2.0 - Adobe Systems Incorporated) Hidden Leawo Blu-ray Player version 1.9.5.0 (HKLM\...\{CF7F52BF-DEE0-44CD-A7E1-AADD5CCECCDD}_is1) (Version: 1.9.5.0 - Leawo Software) Lexmark S300-S400 Series (HKLM\...\Lexmark S300-S400 Series) (Version: - Lexmark International, Inc.) Lizardtech DjVu Control (HKLM\...\{105CFC7C-6992-11D5-BD9D-000102C10FD8}) (Version: - ) Lizardtech DjVu IFilter 1.1 (HKLM\...\{55E8D9EB-AA2B-4898-B64C-475E1C54DBBB}) (Version: - ) Lizardtech Document Express Editor (HKLM\...\{6B5D24D9-58D9-491C-AF7D-0FF20E79016B}) (Version: - ) Lizardtech Document Express Enterprise (HKLM\...\{DC4C11E1-4B61-4A40-A65F-945E914C0E02}) (Version: - ) Lizardtech Express View Browser Plug-in (HKLM\...\{9CD8FC8E-A1CA-4634-96BC-CD6B2D4797CC}) (Version: - ) LizardTech Virtual Printer Pro (HKLM\...\{BD428835-0F5D-11D6-ACCE-0010B541CF4D}) (Version: - ) MahJong Suite 2011 v8.1 (HKLM\...\MahJong Suite_is1) (Version: - TreeCardGames) Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes) MediaInfo 0.7.95 (HKLM\...\MediaInfo) (Version: 0.7.95 - MediaArea.net) MediaInfo Lite 0.7.92.1 (HKLM\...\mediainfolite_is1) (Version: 0.7.92.1 - ) MediaMonkey 4.1 (HKLM\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.) Microsoft .NET Framework 1.1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Office 2003 programski dodatak za preslovljavanje (HKLM\...\{51312349-0B4D-450E-AFAA-03CC28A9531F}) (Version: 1.0.0527.0 - Microsoft) Microsoft Office Профессиональный 2007 (HKLM\...\PRO) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Mozilla Firefox 52.5.2 ESR (x86 en-US) (HKLM\...\Mozilla Firefox 52.5.2 ESR (x86 en-US)) (Version: 52.5.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 52.5.2.6549 - Mozilla) MSXML 6.0 Parser (HKLM\...\{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}) (Version: 6.10.1129.0 - Microsoft Corporation) NVIDIA Graphics Driver 307.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.74 - NVIDIA Corporation) NVIDIA nView 136.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.53 - NVIDIA Corporation) NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation) OpenOffice.org 3.0 (HKLM\...\{F44DA61E-720D-4E79-871F-F6E628B33242}) (Version: 3.0.9358 - OpenOffice.org) Paint.NET v3.5.11 (HKLM\...\{72EF03F5-0507-4861-9A44-D99FD4C41417}) (Version: 3.61.0 - dotPDN LLC) PDF Annotator 6.1.0.615 (HKLM\...\PDFAnnotator_is1) (Version: 6.1.0.615 - GRAHL software design) PDF Settings CS4 (HKLM\...\{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}) (Version: 9.0 - Adobe Systems Incorporated) Hidden PDF-XChange 2012 Pro (HKLM\...\{7283AD1F-8026-4486-B2BC-61AD52A01B5F}) (Version: 5.5.308.2 - Tracker Software Products (Canada) Ltd.) Photoshop Camera Raw (HKLM\...\{CC75AB5C-2110-4A7F-AF52-708680D22FE8}) (Version: 5.0 - Adobe Systems Incorporated) Hidden Platform (HKLM\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.13 - VIA Technologies, Inc.) Hidden PotPlayer (HKLM\...\PotPlayer) (Version: 1.7.5545 - Kakao Corp.) PowerISO (HKLM\...\PowerISO) (Version: 6.8 - Power Software Ltd) Print to PDF Annotator (novaPDF OEM 7.7 printer) (HKLM\...\Print to PDF Annotator_is1) (Version: 7.7.400 - Softland) ProtectDisc Helper Driver 10 (HKLM\...\ProtectDisc Driver 10) (Version: 10.0.0.1 - ) PSP Thumbnail Handler (HKLM\...\{2086A549-ED96-4dc9-BBE3-0538AB29ABEC}) (Version: 2.10.49 - Bot Productions) QuarkXPress 7.2 (HKLM\...\{A38048C6-89D1-44EC-BC95-E95DD4A19B5E}) (Version: 7.20.0000 - Quark Inc.) SageThumbs 2.0.0.22 (HKLM\...\SageThumbs) (Version: 2.0.0.22 - Cherubic Software) Scribus 1.4.5 (HKLM\...\Scribus 1.4.5) (Version: 1.4.5 - The Scribus Team) SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 5.10.01.4151 - Analog Devices) Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform) SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - ) Subtitle Workshop 2.51 (HKLM\...\SubtitleWorkshop) (Version: - ) Suite Shared Configuration CS4 (HKLM\...\{842B4B72-9E8F-4962-B3C1-1C422A5C4434}) (Version: 1.0 - Adobe Systems Incorporated) Hidden SumatraPDF 3.2.10963 (HKLM\...\SumatraPDF) (Version: 3.2.10963 - Krzysztof Kowalczyk) TagScanner 6.0.22 (HKLM\...\TagScanner_is1) (Version: - Sergey Serkov) ThumbView_Lite 1.0 (HKLM\...\ThumbView_Lite 1.0) (Version: - ) Time Adjuster STANDARD 3.1 (HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\...\TimeAdjuster) (Version: - IrekSoftware.com) TL-WN321G Wireless Utility (HKLM\...\{1FF78023-EFA4-491F-9F5A-284DE97AA326}) (Version: 1.0.3.0 - TP-LINK) UltimateDefrag (HKLM\...\UltimateDefrag) (Version: 5.1.10.0 - DiskTrix, Inc.) Uninstall (HKLM\...\DjVu Printer Pilot_is1) (Version: 1.1 - ) VIA Platform Device Manager (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.13 - VIA Technologies, Inc.) VIA Rhine-Family Fast Ethernet Adapter (HKLM\...\VN_VUIns_Rhine_VIA) (Version: - ) WebFldrs XP (HKLM\...\{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden WinDjView 2.1 (HKLM\...\WinDjView) (Version: 2.1 - Andrew Zhezherun) Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation) Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - ) WinHex (HKLM\...\WinHex) (Version: - ) WinPcap 4.1.2 (HKLM\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) WinRAR 5.11 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH) Wise Duplicate Finder 1.21 (HKLM\...\Wise Duplicate Finder_is1) (Version: 1.21 - WiseCleaner.com, Inc.) Wise Force Deleter 1.42 (HKLM\...\Wise Force Deleter_is1) (Version: 1.42 - WiseCleaner.com, Inc.) Wise Memory Optimizer 3.5.2 (HKLM\...\Wise Memory Optimizer_is1) (Version: 3.5.2 - WiseCleaner.com, Inc.) Wise System Monitor 1.44 (HKLM\...\Wise System Monitor_is1) (Version: 1.44 - WiseCleaner.com, Inc.) Youtube Downloader HD v. 2.9.9.30 (HKLM\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com) Яндекс.Диск (HKLM\...\YandexDisk) (Version: 1.4.18.5424 - Яндекс) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003_Classes\CLSID\{2053984E-D49A-4007-A67F-E79B249960FA}\InprocServer32 -> C:\Program Files\Microsoft\Microsoft Office 2003 programski dodatak za preslovljavanje\Translit.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003_Classes\CLSID\{4EC8247D-830A-A4AC-C6F6-ABA7876F16ED}\InprocServer32 -> C:\WINDOWS\system32\ole32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003_Classes\CLSID\{787C9EE8-BD4E-4065-C422-23315F86C601}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-1220945662-1770027372-1417001333-1003_Classes\CLSID\{AB246BE9-1623-4A84-ABDA-CFF4D4A273CB}\InprocServer32 -> C:\WINDOWS\system32\kernel32.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [ YndCase0Sync] -> {63D48440-63AB-44D0-B323-4731DFCDE9E9} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskOverlays-2398.dll [2017-12-10] (Яндекс) ShellIconOverlayIdentifiers: [ YndCase1Modified] -> {7E7DC279-E6BE-4D57-9DEC-14FA0339DBC0} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskOverlays-2398.dll [2017-12-10] (Яндекс) ShellIconOverlayIdentifiers: [ YndCase2Error] -> {FB2FE984-05F5-4512-9D9B-69D3DE61F6D9} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskOverlays-2398.dll [2017-12-10] (Яндекс) ShellIconOverlayIdentifiers: [ YndCase3Shared] -> {AF8D197E-7022-4c3d-BD88-68AD35C9C169} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskOverlays-2398.dll [2017-12-10] (Яндекс) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\New Folder\ashShell.dll [2017-11-10] (AVAST Software) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) ContextMenuHandlers1: [ABBYYS2OContextMenuExtension] -> {0DE76E1C-40C5-4fae-A59A-44EF606A0B02} => C:\Program Files\ABBYY ScanTo Office 1.0\STOShellExtension.dll [2004-10-04] (ABBYY (BIT Software)) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => D:\Program Files\Adobe\Acrobat 8.0\Acrobat Elements\ContextMenu.dll [2007-05-10] (Adobe Systems Inc.) ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> No File ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> No File ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\New Folder\ashShell.dll [2017-11-10] (AVAST Software) ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2016-03-08] (Piriform Ltd) ContextMenuHandlers1: [FineReader12ContextMenu] -> {55344AC6-630B-430C-B292-C7BE21F90061} => C:\Program Files\ABBYY FineReader 12\FRIntegration.dll [2016-01-20] (ABBYY Production LLC.) ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x86.dll [2014-04-15] (Foxit Corporation) ContextMenuHandlers1: [IcecreamShellExtension] -> {A8B59160-93EA-4303-9192-AA3C64FDBE31} => D:\Program Files\Icecream PDF Split and Merge\IcecreamShell.dll [2017-05-03] (TODO: <Company name>) ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson) ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2017-02-02] (Power Software Ltd) ContextMenuHandlers1: [SageThumbs] -> {4A34B3E3-F50E-4FF6-8979-7E4176466FF2} => C:\Program Files\SageThumbs\32\SageThumbs.dll [2015-03-10] (CherubicSoft) ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (Alexander Roshal) ContextMenuHandlers1: [Yandex.Disk] -> {97836AB9-12C5-4C30-A128-B75196DD1787} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskShellExt-4724.dll [2017-12-10] (Яндекс) ContextMenuHandlers2: [AgentRansack] -> {2AE9D6D8-E348-4853-B266-C78844D31B97} => C:\Program Files\Mythicsoft\Agent Ransack\ShellExt.dll [2014-11-21] (Mythicsoft Ltd) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\New Folder\ashShell.dll [2017-11-10] (AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) ContextMenuHandlers4: [AgentRansack] -> {2AE9D6D8-E348-4853-B266-C78844D31B97} => C:\Program Files\Mythicsoft\Agent Ransack\ShellExt.dll [2014-11-21] (Mythicsoft Ltd) ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2017-02-02] (Power Software Ltd) ContextMenuHandlers4: [Yandex.Disk] -> {97836AB9-12C5-4C30-A128-B75196DD1787} => C:\Program Files\Yandex\YandexDisk\bin\YandexDiskShellExt-4724.dll [2017-12-10] (Яндекс) ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\WINDOWS\system32\nvshell.dll [2008-10-07] () ContextMenuHandlers5: [NvCplDesktopContext] -> {A70C977A-BF00-412C-90B7-034C51DA2439} => C:\WINDOWS\system32\nvcpl.dll [2013-01-03] (NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => D:\Program Files\Adobe\Acrobat 8.0\Acrobat Elements\ContextMenu.dll [2007-05-10] (Adobe Systems Inc.) ContextMenuHandlers6: [AgentRansack] -> {2AE9D6D8-E348-4853-B266-C78844D31B97} => C:\Program Files\Mythicsoft\Agent Ransack\ShellExt.dll [2014-11-21] (Mythicsoft Ltd) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => D:\Program Files\New Folder\ashShell.dll [2017-11-10] (AVAST Software) ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell.dll [2016-03-08] (Piriform Ltd) ContextMenuHandlers6: [Fast Explorer] -> {693BE9C0-BEC3-11D2-B4C1-C33BBD3AD64B} => C:\Documents and Settings\All Users\Application Data\AllDup\FEShlExt.dll [2008-08-20] (Alex Yakovlev) ContextMenuHandlers6: [FineReader12ContextMenu] -> {55344AC6-630B-430C-B292-C7BE21F90061} => C:\Program Files\ABBYY FineReader 12\FRIntegration.dll [2016-01-20] (ABBYY Production LLC.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2017-02-02] (Power Software Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-08-27] (Alexander Roshal) ==================== Scheduled Tasks============================= (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_28_0_0_126_pepper.exe Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\Avast Emergency Update.job => D:\Program Files\New Folder\AvEmUpdate.exe Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\Wise System Monitor.job => C:\Program Files\Wise\Wise System Monitor\WiseSystemMonitor.exe ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\ThumbView_Lite\Homepage.lnk -> hxxp://thumbview.sourceforge.ne Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enblend Droplet 360.lnk -> C:\Program Files\Hugin\bin\enblend_droplet_360.bat () Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enblend Droplet.lnk -> C:\Program Files\Hugin\bin\enblend_droplet.bat () Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enfuse Align Droplet.lnk -> C:\Program Files\Hugin\bin\enfuse_align_droplet.bat () Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enfuse Auto Align Droplet.lnk -> C:\Program Files\Hugin\bin\enfuse_auto_align_droplet.bat (No File) Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enfuse Auto Droplet.lnk -> C:\Program Files\Hugin\bin\enfuse_auto_droplet.bat () Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enfuse Droplet 360.lnk -> C:\Program Files\Hugin\bin\enfuse_droplet_360.bat () Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Hugin\Enfuse Droplet.lnk -> C:\Program Files\Hugin\bin\enfuse_droplet.bat () Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Everything\Тражи „Everything“.lnk -> C:\Program Files\Everything\Everything.exe () <==== Cyrillic Shortcut: C:\Documents and Settings\Natalija Djokic\Start Menu\Programs\Everything\Уклони „Everything“.lnk -> C:\Program Files\Everything\Uninstall.exe () <==== Cyrillic Shortcut: C:\Documents and Settings\Natalija Djokic\Favorites\FileOptimizer Home Page.lnk -> hxxp://nikkhokkho.sourceforge.net/static.php?page=FileOptimize Shortcut: C:\Documents and Settings\Natalija Djokic\Desktop\NEKORIŠĆENI\Скриншоты в Яндекс.Диске.lnk -> C:\Program Files\Yandex\YandexDisk\bin\YandexDiskScreenshotEditor.exe (Яндекс) <==== Cyrillic Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Яндекс.Диск\Скриншоты в Яндекс.Диске.lnk -> C:\Program Files\Yandex\YandexDisk\bin\YandexDiskScreenshotEditor.exe (Яндекс) <==== Cyrillic Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Средства Microsoft Office\Microsoft Office 2007 Языковые параметры.lnk -> C:\WINDOWS\Installer\{90120000-0014-0000-0000-0000000FF1CE}\misc.exe () <==== Cyrillic Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Средства Microsoft Office\Диспетчер рисунков Microsoft Office.lnk -> C:\WINDOWS\Installer\{90120000-0014-0000-0000-0000000FF1CE}\oisicon.exe () <==== Cyrillic Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Средства Microsoft Office\Организатор клипов (Microsoft).lnk -> C:\WINDOWS\Installer\{90120000-0014-0000-0000-0000000FF1CE}\cagicon.exe () <==== Cyrillic Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Средства Microsoft Office\Центр диагностики Microsoft Office.lnk -> C:\WINDOWS\Installer\{90120000-0014-0000-0000-0000000FF1CE}\misc.exe () <==== Cyrillic Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Средства Microsoft Office\Цифровой сертификат для проектов VBA.lnk -> C:\WINDOWS\Installer\{90120000-0014-0000-0000-0000000FF1CE}\misc.exe () <==== Cyrillic Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\Lexmark\S400 Series\Visit Product Home Page.LNK -> hxxp:\\www.lexmark.com\M Shortcut: C:\Documents and Settings\All Users\Start Menu\Programs\ICE Book Reader Professional Russian\Деинсталлировать ICE Book Reader Professional Russian.lnk -> C:\Program Files\ICE Book Reader Professional Russian\unins000.exe () <==== Cyrillic ShortcutWithArgument: C:\Documents and Settings\Natalija Djokic\Desktop\NEKORIŠĆENI\Яндекс.Диск.lnk -> C:\Program Files\Yandex\YandexDisk\bin\YandexDiskStarter.exe (Яндекс) -> -desktop <==== Cyrillic ShortcutWithArgument: C:\Documents and Settings\All Users\Start Menu\Programs\Яндекс.Диск\Яндекс.Диск.lnk -> C:\Program Files\Yandex\YandexDisk\bin\YandexDiskStarter.exe (Яндекс) -> -desktop <==== Cyrillic ShortcutWithArgument: C:\Documents and Settings\All Users\Start Menu\Programs\DjVuLibre\Help\Online documentation.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> url.dll,FileProtocolHandler hxxp://djvu.sourceforge.net/doc/index.html ShortcutWithArgument: C:\Documents and Settings\All Users\Start Menu\Programs\DjVuLibre\Help\Visit Djvu.org.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> url.dll,FileProtocolHandler hxxp://djvu.org ShortcutWithArgument: C:\Documents and Settings\All Users\Start Menu\Programs\DjVuLibre\Help\Visit DjVuLibre download page.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> url.dll,FileProtocolHandler hxxp://sourceforge.net/projects/djvu/files/DjVuLibre_Windows/ ShortcutWithArgument: C:\Documents and Settings\All Users\Start Menu\Programs\DjVuLibre\Help\Visit DjvuLibre.lnk -> C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) -> url.dll,FileProtocolHandler hxxp://djvu.sourceforge.net ==================== Loaded Modules (Whitelisted) ============== 2017-11-10 12:54 - 2017-11-10 12:54 - 000059040 _____ () D:\Program Files\New Folder\module_lifetime.dll 2017-11-10 12:54 - 2017-11-10 12:54 - 000167096 _____ () D:\Program Files\New Folder\JsonRpcServer.dll 2017-11-10 12:54 - 2017-11-10 12:54 - 000237808 _____ () D:\Program Files\New Folder\event_routing_rpc.dll 2017-11-10 12:54 - 2017-11-10 12:54 - 000244584 _____ () D:\Program Files\New Folder\tasks_core.dll 2017-11-10 12:54 - 2017-11-10 12:54 - 000151104 _____ () D:\Program Files\New Folder\network_notifications.dll 2017-12-18 14:23 - 2017-12-18 14:23 - 005766800 _____ () D:\Program Files\New Folder\defs\17121800\algo.dll 2017-11-10 12:54 - 2017-11-10 12:54 - 000710056 _____ () D:\Program Files\New Folder\ffl2.dll 2017-11-10 12:54 - 2017-11-10 12:54 - 000245608 _____ () D:\Program Files\New Folder\streamback.dll 2017-11-13 06:26 - 2002-09-10 13:57 - 000257536 _____ () C:\WINDOWS\system32\BIIMG.dll 2016-06-28 16:27 - 2010-11-12 14:48 - 000037888 _____ () C:\WINDOWS\system32\djvppm.dll 2016-05-10 13:50 - 2009-11-04 07:14 - 000157696 _____ () C:\WINDOWS\System32\spool\PRTPROCS\W32X86\lxeadrpp.dll 2016-05-10 13:50 - 2009-12-16 05:42 - 000167936 _____ () C:\Program Files\Lexmark\S300-S400 Series\lxeamicro.dll 2016-05-10 13:50 - 2010-04-01 11:24 - 001159168 _____ () C:\Program Files\Lexmark\S300-S400 Series\lxeadrs.dll 2016-05-10 13:50 - 2009-03-09 23:43 - 000155648 _____ () C:\Program Files\Lexmark\S300-S400 Series\lxeacaps.dll 2017-12-18 16:43 - 2017-11-29 09:11 - 001934792 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2017-11-10 12:54 - 2017-11-10 12:54 - 000142792 _____ () d:\Program Files\New Folder\vaarclient.dll 2015-07-09 00:49 - 2014-08-06 02:01 - 001048576 _____ () C:\Program Files\Everything\Everything.exe 2016-05-10 13:50 - 2013-01-23 12:43 - 000150264 _____ () C:\Program Files\Lexmark S300-S400 Series\ezprint.exe 2016-05-10 13:50 - 2010-04-05 04:56 - 000716954 _____ () C:\Program Files\Lexmark S300-S400 Series\Epwizard.DLL 2016-05-10 13:50 - 2010-04-05 04:55 - 000159890 _____ () C:\Program Files\Lexmark S300-S400 Series\customui.dll 2016-05-10 13:50 - 2010-04-05 04:54 - 000123033 _____ () C:\Program Files\Lexmark S300-S400 Series\Eputil.DLL 2016-05-10 13:50 - 2010-04-05 04:54 - 000143502 _____ () C:\Program Files\Lexmark S300-S400 Series\Imagutil.DLL 2016-05-10 13:50 - 2010-04-05 04:55 - 000061604 _____ () C:\Program Files\Lexmark S300-S400 Series\Epfunct.DLL 2016-05-10 13:50 - 2010-04-05 04:56 - 002203803 _____ () C:\Program Files\Lexmark S300-S400 Series\EPWizRes.dll 2016-05-10 13:50 - 2010-04-05 04:56 - 000045221 _____ () C:\Program Files\Lexmark S300-S400 Series\epstring.dll 2016-05-10 13:50 - 2010-04-05 04:56 - 000094359 _____ () C:\Program Files\Lexmark S300-S400 Series\EPOEMDll.dll 2016-05-10 13:50 - 2009-04-07 13:25 - 000409600 _____ () C:\Program Files\Lexmark S300-S400 Series\iptk.dll 2016-05-10 13:50 - 2009-03-02 08:25 - 000151552 _____ () C:\Program Files\Lexmark S300-S400 Series\lxeaptp.dll 2010-11-12 14:42 - 2010-11-12 14:42 - 000094208 _____ () C:\Program Files\DjVu Printer Pilot\djvpagent.exe 2017-10-06 21:09 - 2017-10-06 21:09 - 048936448 _____ () D:\Program Files\New Folder\libcef.dll 2017-12-11 00:20 - 2017-12-10 13:56 - 000271680 _____ () C:\Program Files\Yandex\YandexDisk\bin\libpng14-14.dll 2017-12-11 00:20 - 2017-12-10 13:56 - 000158016 _____ () C:\Program Files\Yandex\YandexDisk\bin\zlib1.dll 2016-05-10 13:50 - 2013-01-23 12:43 - 000772712 _____ () C:\Program Files\Lexmark S300-S400 Series\lxeamon.exe 2016-05-10 13:50 - 2010-04-01 11:23 - 000389120 _____ () C:\Program Files\Lexmark S300-S400 Series\lxeascw.dll 2016-05-10 13:50 - 2009-05-27 06:16 - 000192512 _____ () C:\WINDOWS\system32\spool\drivers\w32x86\3\lxeadatr.dll 2016-05-10 13:50 - 2010-04-01 11:24 - 001159168 _____ () C:\Program Files\Lexmark S300-S400 Series\lxeaDRS.dll 2016-05-10 13:50 - 2009-03-09 23:43 - 000155648 _____ () C:\Program Files\Lexmark S300-S400 Series\lxeacaps.dll 2016-05-10 13:49 - 2009-02-20 02:48 - 000299008 _____ () C:\WINDOWS\system32\lxeasm.dll 2016-05-10 13:49 - 2009-02-20 02:48 - 000023552 _____ () C:\WINDOWS\system32\lxeasmr.dll 2013-09-11 21:04 - 2013-09-11 21:04 - 000686408 _____ () c:\program files\abbyy finereader 12\DL100JP2KLib.dll 2017-12-13 19:04 - 2017-12-13 19:04 - 000081160 _____ () C:\Program Files\CCleaner\lang\lang-2074.dll 2008-04-14 05:42 - 2008-04-14 05:42 - 001288192 _____ () C:\WINDOWS\system32\quartz.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) HKLM\...\.scr: SageThumbsImage.scr => "%1" /S <==== ATTENTION ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2007-08-11 07:58 - 2016-10-21 20:49 - 000000768 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 mpa.one.microsoft.com ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1220945662-1770027372-1417001333-1003\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Natalija Djokic\Local Settings\Application Data\Microsoft\Wallpaper1.bmp HKU\S-1-5-21-1220945662-1770027372-1417001333-1004\Control Panel\Desktop\\Wallpaper -> (None) DNS Servers: 192.168.1.1 - 0.0.0.0 Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == MSCONFIG\startupfolder: C:^Documents and Settings^Natalija Djokic^Start Menu^Programs^Startup^OpenOffice.org 3.0.lnk => C:\WINDOWS\pss\OpenOffice.org 3.0.lnkStartup MSCONFIG\startupreg: ProductUpdater => C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) DomainProfile\AuthorizedApplications: [C:\Program Files\Winamp\winamp.exe] => Enabled:Winamp StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE] => Enabled:Microsoft Office Outlook StandardProfile\AuthorizedApplications: [C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe] => Enabled:Daemonu.exe StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\lxeacoms.exe] => Enabled:S300-S400 Series Server StandardProfile\AuthorizedApplications: [C:\Program Files\Bonjour\mDNSResponder.exe] => Enabled:Bonjour StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe] => Enabled:Adobe Version Cue CS3 Server StandardProfile\AuthorizedApplications: [C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe] => Enabled:Adobe CSI CS4 StandardProfile\AuthorizedApplications: [C:\Program Files\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe] => Disabled:Advanced SystemCare 10 StandardProfile\AuthorizedApplications: [C:\Documents and Settings\Natalija Djokic\Application Data\uTorrent\uTorrent.exe] => Enabled:µTorrent StandardProfile\AuthorizedApplications: [C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe] => Enabled:Flashget3 StandardProfile\AuthorizedApplications: [D:\Program Files\MediaMonkey\MediaMonkey.exe] => Enabled:MediaMonkey StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox) StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22007 StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22008 StandardProfile\GloballyOpenPorts: [3703:TCP] => Enabled:Adobe Version Cue CS3 Server StandardProfile\GloballyOpenPorts: [3704:TCP] => Enabled:Adobe Version Cue CS3 Server StandardProfile\GloballyOpenPorts: [50900:TCP] => Enabled:Adobe Version Cue CS3 Server StandardProfile\GloballyOpenPorts: [50901:TCP] => Enabled:Adobe Version Cue CS3 Server StandardProfile\GloballyOpenPorts: [5353:TCP] => Enabled:Adobe CSI CS4 ==================== Restore Points ========================= 17-12-2017 15:35:32 System Checkpoint 17-12-2017 15:35:33 System Checkpoint 17-12-2017 15:35:33 System Checkpoint 17-12-2017 15:35:45 End of disinfection ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (12/18/2017 11:00:53 PM) (Source: Userenv) (EventID: 1082) (User: NT AUTHORITY) Description: Windows cannot set the background refresh timer for Group Policy. WaitForMultipleObjects (The handle is invalid. ). Group Policy processing aborted. Error: (12/16/2017 02:26:34 PM) (Source: Microsoft Management Console) (EventID: 1000) (User: ) Description: Event-ID 1000 Error: (12/16/2017 02:21:36 PM) (Source: Microsoft Management Console) (EventID: 1000) (User: ) Description: Event-ID 1000 Error: (12/12/2017 06:04:29 PM) (Source: MsiInstaller) (EventID: 10005) (User: PC) Description: Product: ABBYY FineReader 12 Professional -- ABBYY Licensing Service is unavailable: The RPC server is unavailable. Diagnostic Message: 540(0x000006BA) 550(0x000006BA) 563(0x000006BA) Error: (12/10/2017 11:30:23 PM) (Source: crypt32) (EventID: 8) (User: ) Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This operation returned because the timeout period expired. Error: (12/10/2017 11:30:23 PM) (Source: crypt32) (EventID: 8) (User: ) Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This operation returned because the timeout period expired. Error: (10/07/2017 11:54:22 AM) (Source: MsiInstaller) (EventID: 10005) (User: PC) Description: Product: ACDSee Pro 9 -- ACDSee Pro 9 is not supported on Windows XP or Vista. The program is only supported on Windows 7 or higher. For more information, please contact ACD Systems Customer Care at acdsee.com Error: (09/10/2017 09:45:20 PM) (Source: IUService.exe) (EventID: 0) (User: ) Description: Event-ID 0 Error: (09/09/2017 02:44:30 AM) (Source: MsiInstaller) (EventID: 11706) (User: PC) Description: Product: ABBYY FineReader 12 Professional -- Error 1706. No valid source could be found for product ABBYY FineReader 12 Professional. The Windows Installer cannot continue. Error: (09/09/2017 02:43:37 AM) (Source: MsiInstaller) (EventID: 11706) (User: PC) Description: Product: ABBYY FineReader 12 Professional -- Error 1706. No valid source could be found for product ABBYY FineReader 12 Professional. The Windows Installer cannot continue. System errors: ============= Error: (12/18/2017 11:39:13 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: ntiomin Error: (12/18/2017 11:39:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The lxeaCATSCustConnectService service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. Error: (12/18/2017 11:39:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Timeout (30000 milliseconds) waiting for the lxeaCATSCustConnectService service to connect. Error: (12/18/2017 11:39:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The adfs service failed to start due to the following error: The system cannot find the file specified. Error: (12/18/2017 10:16:12 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: ntiomin Error: (12/18/2017 10:15:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The lxeaCATSCustConnectService service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. Error: (12/18/2017 10:15:59 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Timeout (30000 milliseconds) waiting for the lxeaCATSCustConnectService service to connect. Error: (12/18/2017 10:15:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The adfs service failed to start due to the following error: The system cannot find the file specified. Error: (12/18/2017 05:52:46 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: ntiomin Error: (12/18/2017 05:52:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The lxeaCATSCustConnectService service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. ==================== Memory info =========================== Processor: Intel(R) Celeron(R) CPU 2.80GHz Percentage of memory in use: 70% Total physical RAM: 1535.2 MB Available physical RAM: 454.52 MB Total Virtual: 2388.05 MB Available Virtual: 1088.61 MB ==================== End of Addition.txt ============================ Da li neko može na osnovu ovog da zaključi zašto se zaglavljuje.

Profil

Sass Drake Poslao: 19 Dec 2017 01:37 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! U ovim izvještajima ne vidim tragove malicioznog softvera. Iz tvog opisa da blokira samo prilikom paljenja (i to prvog) izgleda da je problem hardverske prirode i moje skromno iskustvo kaže da jedan od mogućih problema nabubrjeli kondenzator(i). Dok je računar još upaljen odradi i ovo: • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Profil

ltcolonel Poslao: 19 Dec 2017 03:55 Idi na vrh
offline ltcolonel Građanin Nebojša Đokić vojni istoričar Pridružio: 03 Jun 2010 Poruke: 43 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Hvala na pomoći.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Kompjuter počeo da se "zaglavljuje"

Ko je trenutno na forumu

Ukupno su 1274 korisnika na forumu :: 64 registrovanih, 7 sakrivenih i 1203 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 357magnum, A.R.Chafee.Jr., airsuba, Apok, babaroga, Bojan85, bojcistv, Boris90, BSD, bufanje, cemix, CheefCoach, comi_pfc, CrazyDiablo, Dimitrise93, djboj, DonRumataEstorski, DPera, dule10savic, elenemste, GandorCC, Georgius, GORDI, gorican, goxin, ikan, Još malo pa deda, Klecaviks, Kubovac, kybonacci, milenko crazy north, mkukoleca, moldway, mrvica78, muaddib, nenad81, NoOneEver Dreams, novator, nuke92, opt1, ozzy, Parker, repac, rovac, scimitar19, shaja1, Smiljke, Srky Boy, Srle993, stalja, StepskiVuk, Tvrtko I, vasa.93, virked, VJ, Vlad000, vlad4, vladaa012, wizzardone, yrraf, YugoSlav, zillbg, |_MeD_|, 125

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by