Laptop sporo podize sistem

1

Laptop sporo podize sistem

offline
  • Pridružio: 17 Avg 2008
  • Poruke: 293
  • Gde živiš: Titograd

Napisano: 24 Mar 2015 19:31

Zdravo.
Laptop Acer Aspire V-3 571G Intel I7, 2.2GH, Nvidia gforce GT 630M, sa 2GB VRAM,
6GB DDR3, ovo su osnovne krakteristike .
Pri svakom ukljucivanju racunar se sporo pokrece, treba mu 3-4 miuta da podigne sistem, ponekad i duze. kada se pokrene radi dobro, mada ponekad bas uspori i ukoci .
To je zadnja 2 mjeseca.
Preskeniran antivirus Avast, nema nista. Preskeniran Amtimaleware bit-om, sve ok.
Defragmentirao harddisk.
Skenirao HDD sa MHDD evo slika,


Farbar Recovery Scan Tool skenirao, evo fajlovi:
https://www.mycity.rs/must-login.png

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by MILICA (administrator) on MILICA-PC on 24-03-2015 19:11:41
Running from C:\Users\MILICA\Desktop
Loaded Profiles: MILICA (Available profiles: MILICA)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: engleski (SAD)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-02-05] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-99242400-127638202-4162518150-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-99242400-127638202-4162518150-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31344744 2015-02-26] (Skype Technologies S.A.)
HKU\S-1-5-21-99242400-127638202-4162518150-1000\...\MountPoints2: {7c677fe0-3a95-11e2-894d-806e6f6e6963} - F:\DistinguishOS.exe
HKU\S-1-5-21-99242400-127638202-4162518150-1000\...\Winlogon: [Shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [177624 2015-02-05] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [164752 2015-02-05] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MILICA\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MILICA\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MILICA\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MILICA\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MILICA\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MILICA\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MILICA\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MILICA\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homep.....kId=255141
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homep.....kId=255141
HKU\S-1-5-21-99242400-127638202-4162518150-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homep.....r&ie=UTF-8
HKU\S-1-5-21-99242400-127638202-4162518150-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKU\S-1-5-21-99242400-127638202-4162518150-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKU\S-1-5-21-99242400-127638202-4162518150-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
URLSearchHook: HKU\S-1-5-21-99242400-127638202-4162518150-1000 - (No Name) - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No File
SearchScopes: HKU\S-1-5-21-99242400-127638202-4162518150-1000 -> DefaultScope {BF559907-4C84-4F34-B10C-8D624ED02953} URL = http://search.yahoo.com/search?fr=chr-greentree_ie.....=198484&p={searchTerms}
SearchScopes: HKU\S-1-5-21-99242400-127638202-4162518150-1000 -> {4247EC19-8187-4B6C-B8B5-ACB9A257B27A} URL = http://blekko.com/ws/?source=5f97ddbe&tbp=rbox&u=8.....3a436c7&q={searchTerms}&r=292
SearchScopes: HKU\S-1-5-21-99242400-127638202-4162518150-1000 -> {BF559907-4C84-4F34-B10C-8D624ED02953} URL = http://search.yahoo.com/search?fr=chr-greentree_ie.....=198484&p={searchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2014-12-12] (IObit)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2014-12-22] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-06] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-05] (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-22] (Oracle Corporation)
BHO-x32: No Name -> {03EB0E9C-7A91-4381-A220-9B52B641CDB1} -> No File
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-03-06] (RealDownloader)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-06] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-05] (Google Inc.)
BHO-x32: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-05] (Google Inc.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - No Name - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-05] (Google Inc.)
Toolbar: HKU\S-1-5-21-99242400-127638202-4162518150-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-03-05] (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\MILICA\AppData\Roaming\Mozilla\Firefox\Profiles\3zn7ieqz.default-1423821611941
FF Homepage: https://www.google.me/webhp?ie=utf-8&oe=utf-8&gws_rd=cr&ei=Q9PdVKWYMIKBadSogsgI|hxxp://www.neurohirurgija.in.rs/diskus_hernija.htm|hxxp://www.tsplines.com/support/basictutorials.html|hxxp://www.boatdesign.net/forums/services-employment/yacht-design-project-sale-30970.html|hxxp://sajam.co.rs/active/sr-latin/home/details/_params/sajam_id/68572.html|https://www.google.me/search?newwindow=1&biw=1163&bih=609&site=webhp&tbm=isch&sa=1&q=ideas+boat+concept&oq=ideas+boat+concept&gs_l=img.12...74446.77114.0.78609.0.0.0.0.0.0.0.0..0.0.msedr...0...1c.1.61.img..0.0.0.FYn9otaOHhQ|https://support.mozilla.org/sr-Cyrl/kb/resetujte-fajerfoks-lako-resite-vecinu-problema?redirectlocale=en-US&redirectslug=reset-firefox-easily-fix-most-problems|about:support|https://www.behance.net/gallery/21177483/Fusion56-Speedboat-from-precious-wood
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-12] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2013-09-17] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-12-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-12-22] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-12] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll No File
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.9.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2012-11-30] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.1.18 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll [2013-07-17] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-03-06] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-03-06] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-03-06] (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.1.18 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll [2013-07-17] (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-03-06] (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin HKU\S-1-5-21-99242400-127638202-4162518150-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\MILICA\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-01-27] (Google)
FF Plugin HKU\S-1-5-21-99242400-127638202-4162518150-1000: @talk.google.com/O1DPlugin -> C:\Users\MILICA\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-01-27] (Google)
FF Plugin HKU\S-1-5-21-99242400-127638202-4162518150-1000: @tools.google.com/Google Update;version=3 -> C:\Users\MILICA\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-99242400-127638202-4162518150-1000: @tools.google.com/Google Update;version=9 -> C:\Users\MILICA\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-99242400-127638202-4162518150-1000: visuland.com/vlplugin -> C:\Users\MILICA\AppData\Local\Real5D\npvlplugin.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2014-12-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2014-12-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2014-12-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2014-12-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2014-12-22] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\MILICA\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-01-27] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\MILICA\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-01-27] (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\pogodakyu.xml [2015-02-25]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\vokabular.xml [2015-02-25]
FF Extension: Google Translator for Firefox - C:\Users\MILICA\AppData\Roaming\Mozilla\Firefox\Profiles\3zn7ieqz.default-1423821611941\Extensions\translator@zoli.bod.xpi [2015-02-13]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-03-21]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-03-21]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-03-21]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-11-29]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2012-11-30]
FF HKLM-x32\...\Firefox\Extensions: [{ec8030f7-c20a-464f-9b0e-13a3a9e97384}] - C:\Program Files (x86)\SocialKredits\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{DAC3F861-B30D-40dd-9166-F4E75327FAC7}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-07-17]
FF HKU\S-1-5-21-99242400-127638202-4162518150-1000\...\Firefox\Extensions: [{ec8030f7-c20a-464f-9b0e-13a3a9e97384}] - C:\Program Files (x86)\SocialKredits\Firefox

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/", "https://www.google.me/webhp?tab=ww"
CHR Profile: C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-09]
CHR Extension: (Google Drive) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-09]
CHR Extension: (YouTube) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-09]
CHR Extension: (Google Search) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-09]
CHR Extension: (Gmail Offline) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2014-08-09]
CHR Extension: (PanicButton) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm [2014-08-09]
CHR Extension: (Avast Online Security) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-09]
CHR Extension: (Facebook Unseen) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop [2014-11-25]
CHR Extension: (Google Wallet) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-09]
CHR Extension: (Lavasoft NewTab) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole [2014-11-26]
CHR Extension: (Google Quick Scroll) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc [2014-08-12]
CHR Extension: (Gmail) - C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-09]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-06]
CHR HKLM-x32\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx [2013-09-03]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [815392 2014-11-04] (IObit)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S4 DMAgent; C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe [514048 2011-11-30] (Red Bend Ltd.) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2015-02-05] (NVIDIA Corporation)
S4 hasplms; C:\Windows\system32\hasplms.exe [4609928 2013-08-01] (SafeNet Inc.)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-08] (Intel Corporation)
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-03-11] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-11] (Malwarebytes Corporation)
S4 McNeelUpdate; C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe [67224 2014-06-09] (Robert McNeel & Associates)
S4 Megatech-Software-Protection; C:\Program Files (x86)\Megatech\MProtect\MPServ.EXE [36864 2007-12-12] () [File not signed]
S4 mi-raysat_3dsmax2013_64; C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [86016 2011-09-15] () [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-02-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2015-02-05] (NVIDIA Corporation)
S4 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [337776 2014-04-30] (arvato digital services llc)
S4 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-03-06] ()
S4 SentinelKeysServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [374304 2011-09-22] (SafeNet, Inc.)
S4 SentinelProtectionServer; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1259040 2011-09-22] (SafeNet, Inc)
S4 SentinelSecurityRuntime; C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [292384 2011-09-22] (SafeNet, Inc.)
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S4 UI Assistant Service; C:\Program Files (x86)\Internet Bilo gdje\AssistantServices.exe [253264 2011-01-24] ()
S4 WiMAXAppSrv; C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe [979456 2011-11-30] (Intel(R) Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S4 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864 2012-02-19] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [60488 2014-11-26] (SafeNet Inc.)
R3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [303624 2014-11-26] (SafeNet Inc.)
S3 AMPPAL; C:\Windows\System32\DRIVERS\AMPPAL.sys [299008 2011-09-15] (Windows (R) Win 7 DDK provider) [File not signed]
S3 AMPPALP; C:\Windows\System32\DRIVERS\amppal.sys [299008 2011-09-15] (Windows (R) Win 7 DDK provider) [File not signed]
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-06] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-12-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-06] ()
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [331608 2014-11-26] (SafeNet Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-11] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-03-11] (Malwarebytes Corporation)
R2 multikey; C:\Windows\System32\DRIVERS\multikey.sys [76040 2015-02-22] (Chingachguk & Denger2k (Elite & SP edition))
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-02-05] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2008-07-11] (SafeNet, Inc.)
R3 SmbDrv; C:\Windows\System32\DRIVERS\Smb_driver.sys [22800 2012-02-14] (Synaptics Incorporated)
S3 SNTUSB64; C:\Windows\System32\DRIVERS\SNTUSB64.SYS [63528 2011-05-27] (SafeNet, Inc.)
S2 SSPORT; C:\Windows\SysWOW64\Drivers\SSPORT.sys [11576 2009-09-10] (Samsung Electronics)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 BTATH_BUS; system32\DRIVERS\btath_bus.sys [X]
S3 BtFilter; system32\DRIVERS\btfilter.sys [X]
S2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-24 19:11 - 2015-03-24 19:12 - 00032926 _____ () C:\Users\MILICA\Desktop\FRST.txt
2015-03-24 19:11 - 2015-03-24 19:11 - 02095616 _____ (Farbar) C:\Users\MILICA\Desktop\FRST64.exe
2015-03-24 19:11 - 2015-03-24 19:11 - 00000000 ____D () C:\FRST
2015-03-24 00:42 - 2015-03-24 00:42 - 00000000 ____D () C:\Users\MILICA\Downloads\HDD_Regenerator_2011 DC 08.05.2013
2015-03-23 22:56 - 2015-03-23 22:56 - 00001101 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2015-03-23 22:56 - 2015-03-23 22:56 - 00000000 ____D () C:\Users\MILICA\AppData\Roaming\Canneverbe Limited
2015-03-23 22:56 - 2015-03-23 22:56 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2015-03-23 22:56 - 2015-03-23 22:56 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2015-03-23 21:26 - 2015-03-23 21:26 - 00003408 ____N () C:\bootsqm.dat
2015-03-21 22:19 - 2015-03-21 22:19 - 00534811 _____ () C:\Users\MILICA\Desktop\Boki _Mach3_Screen_2x.rar
2015-03-21 20:08 - 2015-03-21 20:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-19 22:08 - 2015-03-23 10:36 - 00000000 ____D () C:\Users\MILICA\Desktop\Krevet
2015-03-19 01:06 - 2015-03-19 01:06 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-03-19 01:06 - 2015-03-19 01:06 - 00001098 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-03-19 01:06 - 2015-03-19 01:06 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-03-19 01:06 - 2015-03-11 21:14 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-03-19 01:06 - 2015-03-11 21:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-03-19 01:06 - 2015-03-11 21:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-03-19 00:06 - 2015-03-19 22:11 - 00000000 ____D () C:\Users\MILICA\AppData\Roaming\NVIDIA
2015-03-18 22:33 - 2015-03-18 22:33 - 00000000 ____D () C:\Windows\SysWOW64\NV
2015-03-18 22:33 - 2015-03-18 22:33 - 00000000 ____D () C:\Windows\system32\NV
2015-03-18 22:30 - 2015-02-05 20:07 - 06861128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-03-18 22:30 - 2015-02-05 20:07 - 03517584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-03-18 22:30 - 2015-02-05 20:07 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-03-18 22:30 - 2015-02-05 20:07 - 00935056 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-03-18 22:30 - 2015-02-05 20:07 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-03-18 22:30 - 2015-02-05 20:06 - 01098384 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-03-18 22:30 - 2015-02-05 20:06 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-03-18 22:30 - 2015-02-05 20:06 - 00074896 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-03-18 22:30 - 2015-02-05 13:50 - 04236870 _____ () C:\Windows\system32\nvcoproc.bin
2015-03-18 22:23 - 2015-02-05 22:01 - 32106640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 24768144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 20466496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 18575880 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 17253848 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 16017040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 14119744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 13294528 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 13208200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 10773704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 10713256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 10284872 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-03-18 22:23 - 2015-02-05 22:01 - 03610768 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 03299512 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 03247248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 02902784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434752.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434752.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 00995248 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 00969872 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 00943760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 00929936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 00908104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 00877816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 00353224 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 00305136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 00177624 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 00164752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-03-18 22:23 - 2015-02-05 22:01 - 00031376 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2015-03-18 22:23 - 2015-02-05 22:01 - 00027441 _____ () C:\Windows\system32\nvinfo.pb
2015-03-18 20:53 - 2015-03-18 20:53 - 00001003 _____ () C:\Users\MILICA\Moje slike.lnk
2015-03-18 19:52 - 2015-03-18 19:52 - 00000000 ____D () C:\CrystalDiskMark00D4DC91
2015-03-18 16:24 - 2015-03-18 17:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2015-03-18 16:24 - 2015-03-18 17:24 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2015-03-18 16:23 - 2015-03-18 16:32 - 00000000 ____D () C:\Program Files\CrystalDiskMark
2015-03-17 20:17 - 2015-03-17 20:17 - 00000000 ____D () C:\Users\MILICA\Tracing
2015-03-14 00:25 - 2015-03-14 00:25 - 00001250 _____ () C:\Users\MILICA\Desktop\On-Screen Keyboard.lnk
2015-03-14 00:02 - 2014-09-15 21:07 - 00000638 _____ () C:\Users\MILICA\Desktop\Posao.lnk
2015-03-13 01:55 - 2015-03-17 21:11 - 00000000 ____D () C:\Users\MILICA\Desktop\Reklama N
2015-03-11 22:44 - 2015-03-24 18:30 - 00003344 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-99242400-127638202-4162518150-1000
2015-03-11 21:53 - 2006-12-25 14:05 - 01323008 _____ (Acer inc.) C:\Windows\SysWOW64\Acer.Empowering.Windows.Forms.dll
2015-03-11 21:53 - 2006-11-22 10:05 - 00053248 _____ ( ) C:\Windows\SysWOW64\Interop.Shell32.dll
2015-03-11 21:53 - 2006-08-04 09:44 - 00331776 _____ () C:\Windows\SysWOW64\ScrollBarLib.dll
2015-03-11 21:43 - 2015-03-11 21:43 - 00003010 _____ () C:\Windows\System32\Tasks\{E7F7673D-9BD3-4981-8B75-E568C3D2BC4E}
2015-03-11 21:40 - 2015-03-11 21:40 - 00000000 ____D () C:\Acer
2015-03-11 20:47 - 2015-03-11 20:47 - 00036230 _____ () C:\Users\MILICA\energy-report.html
2015-03-10 23:21 - 2015-03-06 06:56 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-03-10 23:21 - 2015-03-06 06:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-03-10 23:21 - 2015-03-06 06:42 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-03-10 23:21 - 2015-03-06 06:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-03-10 23:21 - 2015-03-06 06:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-10 23:21 - 2015-03-06 06:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-10 23:21 - 2015-03-06 06:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-03-10 23:21 - 2015-03-06 06:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-03-10 23:21 - 2015-03-06 06:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-03-10 23:21 - 2015-03-06 06:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-03-10 23:21 - 2015-03-06 06:42 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-03-10 23:21 - 2015-03-06 06:42 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-03-10 23:21 - 2015-03-06 06:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-03-10 23:21 - 2015-03-06 06:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-03-10 23:21 - 2015-03-06 06:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-03-10 23:21 - 2015-03-06 06:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-03-10 23:21 - 2015-03-06 06:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-03-10 23:21 - 2015-03-06 06:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-03-10 23:21 - 2015-03-06 06:10 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-03-10 23:21 - 2015-03-06 06:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-03-10 23:21 - 2015-03-06 06:10 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-03-10 23:21 - 2015-03-06 06:10 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-03-10 23:21 - 2015-03-06 06:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-03-10 23:21 - 2015-03-06 06:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-03-10 23:21 - 2015-03-06 06:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-03-10 23:21 - 2015-03-06 06:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-03-10 23:21 - 2015-03-06 06:09 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-03-10 23:21 - 2015-03-06 06:09 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-03-10 23:21 - 2015-03-06 06:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-03-10 23:21 - 2015-03-06 06:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-03-10 23:21 - 2015-03-06 06:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-03-10 22:56 - 2015-03-23 23:46 - 00014590 _____ () C:\Windows\PFRO.log
2015-03-10 22:55 - 2015-03-10 22:55 - 00000000 ____H () C:\asc_rdflag
2015-03-10 22:34 - 2015-03-10 22:34 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-03-10 22:34 - 2015-03-10 22:34 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-03-10 22:34 - 2015-03-10 22:34 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-03-10 22:33 - 2015-03-10 22:33 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-10 22:33 - 2015-03-10 22:33 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-03-10 22:33 - 2015-03-10 22:33 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-03-10 22:33 - 2015-03-10 22:33 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-03-10 22:31 - 2015-03-24 18:29 - 00004471 _____ () C:\Windows\setupact.log
2015-03-10 22:31 - 2015-03-10 22:31 - 00000000 _____ () C:\Windows\setuperr.log
2015-03-10 22:30 - 2015-03-10 22:30 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-10 22:30 - 2015-03-10 22:30 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-03-10 22:29 - 2015-03-10 22:29 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-10 22:29 - 2015-03-10 22:29 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-10 22:29 - 2015-03-10 22:29 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-03-10 22:29 - 2015-03-10 22:29 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-03-10 22:29 - 2015-03-10 22:29 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-03-10 22:29 - 2015-03-10 22:29 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-10 22:29 - 2015-03-10 22:29 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-03-10 22:29 - 2015-03-10 22:29 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-03-10 22:29 - 2015-03-10 22:29 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-03-10 22:29 - 2015-03-10 22:29 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-03-10 22:29 - 2015-03-10 22:29 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-03-10 22:28 - 2015-03-10 22:28 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-10 22:28 - 2015-03-10 22:28 - 12875264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-03-10 22:28 - 2015-03-10 22:28 - 01067520 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-10 22:28 - 2015-03-10 22:28 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 25021440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 19720192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 14398976 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 12827648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 06035456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 04300288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 02886144 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-03-10 22:27 - 2015-03-10 22:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-03-10 22:27 - 2015-03-10 22:27 - 02358784 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-03-10 22:27 - 2015-03-10 22:27 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-03-10 22:27 - 2015-03-10 22:27 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 01311232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-03-10 22:27 - 2015-03-10 22:27 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-03-10 22:27 - 2015-03-10 22:27 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00389800 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00342696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-03-10 22:27 - 2015-03-10 22:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-03-10 22:27 - 2015-03-10 22:27 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-03-10 22:27 - 2015-03-10 22:27 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-03-10 22:27 - 2015-03-10 22:27 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-03-10 22:25 - 2015-03-10 22:25 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-03-10 22:25 - 2015-03-10 22:25 - 11411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-03-10 22:25 - 2015-03-10 22:25 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-03-10 22:25 - 2015-03-10 22:25 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00616360 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-03-10 22:25 - 2015-03-10 22:25 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-03-10 22:25 - 2015-03-10 22:25 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-03-10 22:25 - 2015-03-10 22:25 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-03-10 22:25 - 2015-03-10 22:25 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-03-10 22:25 - 2015-03-10 22:25 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-03-10 22:25 - 2015-03-10 22:25 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2015-03-10 22:25 - 2015-03-10 22:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2015-03-10 22:25 - 2015-03-10 22:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2015-03-10 21:19 - 2015-03-10 21:19 - 00000854 _____ () C:\Users\MILICA\Desktop\Desktop 2.lnk
2015-03-10 20:32 - 2015-03-10 20:32 - 00000000 ____D () C:\Users\MILICA\AppData\Roaming\Grasshopper
2015-03-10 20:32 - 2015-03-10 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\T-Splines for Rhino (64)
2015-03-10 19:59 - 2015-03-10 19:59 - 00037781 _____ () C:\Users\MILICA\energy-report 1.html
2015-03-09 18:39 - 2015-03-09 18:39 - 00000000 ____D () C:\Users\MILICA\AppData\Local\Lenovo
2015-03-09 12:38 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-03-09 12:38 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-03-09 12:38 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-03-08 22:25 - 2015-03-24 18:30 - 00003212 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-99242400-127638202-4162518150-1000
2015-03-08 21:30 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-03-08 21:30 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-03-08 21:30 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-03-08 21:30 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2015-03-08 21:30 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2015-03-08 21:30 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-03-08 21:30 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-03-08 21:30 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-03-08 21:30 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2015-03-08 21:30 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2015-03-08 21:30 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-03-08 21:30 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-03-08 21:30 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-03-08 21:30 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-03-08 21:30 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-03-08 20:51 - 2015-03-08 20:51 - 00000000 ____D () C:\Windows\System32\Tasks\Lenovo
2015-03-08 20:50 - 2015-03-08 20:55 - 00000000 ____D () C:\Program Files (x86)\Lenovo
2015-03-07 20:36 - 2015-03-07 20:39 - 00000000 ____D () C:\Users\MILICA\AppData\Roaming\BatteryBar
2015-03-03 01:41 - 2015-03-03 01:41 - 00000000 ____D () C:\ProgramData\GML
2015-02-27 00:18 - 2015-02-27 00:18 - 00000000 ____D () C:\Users\Public\Documents\X+
2015-02-27 00:17 - 2015-02-27 00:17 - 00000000 ____D () C:\Program Files (x86)\Verisurf Uninstall
2015-02-27 00:16 - 2015-02-27 00:16 - 00000000 ____D () C:\Users\MILICA\AppData\Local\CNC_Software,_Inc
2015-02-26 23:29 - 2015-02-26 23:29 - 00000051 _____ () C:\Windows\mwMSimApp.INI
2015-02-26 22:28 - 2015-03-03 01:40 - 00000000 ____D () C:\Users\MILICA\Documents\my mcamx8
2015-02-26 22:26 - 2015-02-26 22:26 - 00000000 ____D () C:\Users\MILICA\AppData\Roaming\Mastercam
2015-02-26 22:01 - 2015-02-26 22:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mastercam X8
2015-02-26 21:53 - 2015-02-27 00:17 - 00000000 ____D () C:\Program Files\mcamX8
2015-02-26 21:53 - 2015-02-26 21:53 - 00000000 ____D () C:\Program Files\Common Files\Mastercam
2015-02-26 03:38 - 2015-02-26 03:38 - 760496207 _____ () C:\Windows\MEMORY.DMP
2015-02-26 03:38 - 2015-02-26 03:38 - 00741784 _____ () C:\Windows\Minidump\022615-127796-01.dmp
2015-02-26 02:00 - 2015-02-22 23:45 - 00076040 _____ (Chingachguk & Denger2k (Elite & SP edition)) C:\Windows\system32\Drivers\multikey.sys
2015-02-26 01:45 - 2014-01-24 11:29 - 00000000 _____ () C:\Windows\SysWOW64\config.hsp
2015-02-26 00:38 - 2015-01-09 00:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls
2015-02-26 00:38 - 2015-01-09 00:43 - 00419936 _____ () C:\Windows\system32\locale.nls
2015-02-26 00:27 - 2013-08-01 15:11 - 04609928 _____ (SafeNet Inc.) C:\Windows\system32\hasplms.exe
2015-02-26 00:27 - 2013-08-01 15:11 - 00198088 _____ (Aladdin Knowledge Systems Ltd.) C:\Windows\SysWOW64\hlvdd.dll
2015-02-26 00:26 - 2015-02-27 00:17 - 00000000 ____D () C:\Users\Public\Documents\shared mcamx8
2015-02-26 00:14 - 2015-02-26 21:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter
2015-02-26 00:14 - 2015-02-26 21:50 - 00000000 ____D () C:\Program Files (x86)\CodeMeter
2015-02-26 00:14 - 2015-02-26 00:14 - 00000000 ____D () C:\ProgramData\CodeMeter
2015-02-26 00:14 - 2015-02-26 00:14 - 00000000 ____D () C:\Program Files\WIBU-SYSTEMS
2015-02-26 00:14 - 2015-02-26 00:14 - 00000000 ____D () C:\Program Files\CodeMeter
2015-02-25 19:38 - 2015-01-09 04:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-02-25 19:38 - 2015-01-09 04:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-02-25 19:38 - 2015-01-09 04:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-02-25 19:38 - 2015-01-09 03:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-02-22 21:56 - 2015-02-22 21:56 - 00000000 ____D () C:\Users\MILICA\AppData\Roaming\MecSoft
2015-02-22 21:55 - 2015-02-22 21:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VisualCADCAM 2014
2015-02-22 21:55 - 2015-02-22 21:55 - 00000000 ____D () C:\Program Files\MecSoft Corporation

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-24 19:07 - 2012-11-29 19:48 - 00000000 ____D () C:\Users\MILICA\AppData\Roaming\Skype
2015-03-24 19:06 - 2012-11-30 02:03 - 00000266 _____ () C:\Windows\Tasks\AutoKMS.job
2015-03-24 18:40 - 2009-07-14 05:45 - 00020704 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-24 18:40 - 2009-07-14 05:45 - 00020704 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-24 18:36 - 2012-12-14 00:24 - 00000912 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-99242400-127638202-4162518150-1000UA.job
2015-03-24 18:36 - 2012-11-29 18:34 - 01654160 _____ () C:\Windows\WindowsUpdate.log
2015-03-24 18:29 - 2014-01-04 22:04 - 00000435 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-03-24 18:28 - 2012-11-30 22:05 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-24 18:28 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-24 18:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-03-24 15:32 - 2012-11-30 15:41 - 00000000 ____D () C:\Users\MILICA\Documents\Outlook датотеке
2015-03-24 14:54 - 2014-08-20 22:27 - 00000000 ___RD () C:\Users\MILICA\Dropbox
2015-03-24 14:54 - 2009-07-14 06:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-24 14:51 - 2014-08-20 22:24 - 00000000 ____D () C:\Users\MILICA\AppData\Roaming\Dropbox
2015-03-24 10:36 - 2012-12-14 00:24 - 00000860 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-99242400-127638202-4162518150-1000Core.job
2015-03-24 10:34 - 2012-12-08 22:54 - 00000000 ____D () C:\Users\MILICA\AppData\Roaming\uTorrent
2015-03-24 10:33 - 2012-11-29 19:51 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-03-24 08:37 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sr-Latn-CS
2015-03-24 08:33 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2015-03-24 01:06 - 2015-01-04 11:43 - 00000000 ____D () C:\Users\MILICA\AppData\Local\PokerStars
2015-03-23 21:34 - 2014-09-15 19:23 - 00000982 _____ () C:\Users\MILICA\Desktop\Dropbox.lnk
2015-03-23 21:34 - 2014-08-20 22:26 - 00000000 ____D () C:\Users\MILICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-03-23 20:41 - 2014-01-24 17:28 - 00000000 ____D () C:\wifidata
2015-03-23 20:31 - 2012-11-29 20:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-22 20:56 - 2012-11-30 11:15 - 00000000 ____D () C:\Users\MILICA\AppData\Local\CrashDumps
2015-03-22 19:31 - 2014-01-24 17:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Who Is On My Wifi
2015-03-22 12:20 - 2014-03-03 22:15 - 00000500 _____ () C:\Windows\SysWOW64\Drivers\iaxext_474.set
2015-03-22 12:20 - 2014-03-03 22:15 - 00000500 _____ () C:\Windows\SysWOW64\Drivers\dcompbg212.dat
2015-03-22 12:20 - 2014-03-03 22:15 - 00000500 _____ () C:\Windows\d_iclink185.ini
2015-03-20 19:41 - 2012-12-09 16:58 - 00007600 _____ () C:\Users\MILICA\AppData\Local\resmon.resmoncfg
2015-03-20 09:39 - 2009-07-14 08:46 - 00000000 ____D () C:\Windows\ShellNew
2015-03-19 02:14 - 2012-11-29 19:32 - 00097210 _____ () C:\Users\MILICA\AppData\Local\HWVendorDetection.log
2015-03-18 22:33 - 2012-11-29 19:05 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-18 22:30 - 2013-01-15 22:07 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-03-18 22:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help
2015-03-18 22:29 - 2013-04-07 19:08 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-03-18 22:29 - 2013-01-15 22:09 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-03-18 20:53 - 2012-11-29 18:34 - 00000000 ____D () C:\Users\MILICA
2015-03-18 20:44 - 2013-07-01 16:32 - 00000000 ____D () C:\G
2015-03-18 19:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-03-18 16:24 - 2014-11-11 21:40 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2015-03-17 20:17 - 2012-11-29 19:48 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-03-17 20:16 - 2012-11-29 19:48 - 00000000 ____D () C:\ProgramData\Skype
2015-03-15 19:59 - 2009-07-14 05:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-03-13 11:01 - 2012-12-04 10:51 - 00000099 _____ () C:\Users\Public\LMDebug.log
2015-03-13 10:56 - 2012-12-04 10:44 - 00000000 ____D () C:\Program Files (x86)\Samsung
2015-03-11 21:53 - 2012-11-29 18:38 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-03-11 01:03 - 2012-11-30 01:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-03-11 01:03 - 2009-07-14 03:34 - 00000524 _____ () C:\Windows\win.ini
2015-03-11 01:00 - 2013-07-29 10:19 - 00000000 ____D () C:\Windows\system32\MRT
2015-03-11 00:46 - 2012-11-29 19:54 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-03-10 23:02 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-03-10 22:57 - 2009-07-14 05:45 - 05127000 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-03-10 22:55 - 2014-04-27 14:08 - 59326464 _____ () C:\Windows\system32\config\COMPONENTS.iodefrag.bak
2015-03-10 22:55 - 2014-04-19 15:12 - 134627328 _____ () C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2015-03-10 22:55 - 2014-04-19 15:12 - 00323584 _____ () C:\Windows\system32\config\DEFAULT.iodefrag.bak
2015-03-10 22:55 - 2014-04-19 15:12 - 00032768 _____ () C:\Windows\system32\config\SECURITY.iodefrag.bak
2015-03-10 22:55 - 2014-04-19 15:12 - 00028672 _____ () C:\Windows\system32\config\SAM.iodefrag.bak
2015-03-10 22:49 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-03-10 22:49 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-03-10 21:55 - 2012-12-28 19:52 - 00000000 ____D () C:\Program Files\Recuva
2015-03-10 11:29 - 2012-11-30 16:02 - 00000000 ____D () C:\Users\MILICA\AppData\Local\Google
2015-03-10 00:11 - 2012-12-11 16:54 - 00000000 ____D () C:\ProgramData\FLEXnet
2015-03-08 22:17 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-08 20:51 - 2012-11-29 18:46 - 00000000 ____D () C:\Windows\Downloaded Installations
2015-03-03 01:47 - 2015-01-04 11:40 - 00000000 ____D () C:\Program Files (x86)\PokerStars
2015-03-01 22:40 - 2013-07-01 22:28 - 00000211 _____ () C:\ProgramData\acer.zip
2015-02-27 00:19 - 2012-11-29 18:54 - 00149056 _____ () C:\Users\MILICA\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-26 23:20 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Setup
2015-02-26 21:40 - 2012-11-30 11:42 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-26 10:39 - 2012-12-05 17:27 - 00000000 ____D () C:\Windows\pss
2015-02-26 03:38 - 2012-11-29 19:28 - 00000000 ____D () C:\Windows\Minidump
2015-02-26 01:45 - 2012-11-29 19:51 - 00000047 _____ () C:\Windows\SysWOW64\config.nt
2015-02-26 00:40 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing
2015-02-24 03:17 - 2012-11-29 19:57 - 00295552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-02-22 21:56 - 2013-06-16 12:00 - 00000000 ____D () C:\Users\MILICA\AppData\Roaming\MecSoft Corporation
2015-02-22 21:56 - 2013-05-06 20:11 - 00000000 __SHD () C:\Windows\SysWOW64\AI_RecycleBin
2015-02-22 21:55 - 2012-12-25 23:09 - 00000000 ____D () C:\ProgramData\MecSoft Corporation
2015-02-22 20:47 - 2014-06-18 22:16 - 00000000 ____D () C:\Users\Public\Documents\KeyShot 5
2015-02-22 20:45 - 2012-12-09 00:09 - 00000000 ____D () C:\Users\MILICA\Documents\Bunkspeed Content

==================== Files in the root of some directories =======

2013-04-03 18:44 - 2014-08-06 12:49 - 0000132 _____ () C:\Users\MILICA\AppData\Roaming\Adobe BMP Format CS6 Prefs
2012-12-21 23:29 - 2015-01-24 19:01 - 0000132 _____ () C:\Users\MILICA\AppData\Roaming\Adobe PNG Format CS6 Prefs
2014-12-09 20:14 - 2014-03-20 23:49 - 0053248 _____ (Microsoft Corporation) C:\Users\MILICA\AppData\Roaming\armsvc .exe
2014-12-19 01:23 - 2014-12-19 01:23 - 0001181 _____ () C:\Users\MILICA\AppData\Roaming\trace_FilterInstaller.1.txt
2014-12-19 01:23 - 2014-12-20 00:50 - 0000919 _____ () C:\Users\MILICA\AppData\Roaming\trace_FilterInstaller.txt
2014-12-19 01:23 - 2014-12-20 00:50 - 0000000 _____ () C:\Users\MILICA\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2014-04-20 23:09 - 2014-04-20 23:09 - 0001904 _____ () C:\Users\MILICA\AppData\Local\2.reg
2014-01-07 12:03 - 2014-01-07 12:03 - 0004608 _____ () C:\Users\MILICA\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-11-29 19:32 - 2015-03-19 02:14 - 0097210 _____ () C:\Users\MILICA\AppData\Local\HWVendorDetection.log
2013-06-27 21:38 - 2013-06-27 21:39 - 0000068 _____ () C:\Users\MILICA\AppData\Local\KeyShot.log
2014-04-07 20:26 - 2014-04-07 20:26 - 0000952 _____ () C:\Users\MILICA\AppData\Local\NFS_MillDisplay0.dat
2012-12-09 16:58 - 2015-03-20 19:41 - 0007600 _____ () C:\Users\MILICA\AppData\Local\resmon.resmoncfg
2012-11-29 19:18 - 2012-11-29 19:20 - 0002201 _____ () C:\Users\MILICA\AppData\Local\WiDiSetupLog.20121129.191849.txt
2013-07-01 22:28 - 2015-03-01 22:40 - 0000211 _____ () C:\ProgramData\acer.zip

Some content of TEMP:
====================
C:\Users\MILICA\AppData\Local\Temp\AcDeltree.exe
C:\Users\MILICA\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp4e3ifp.dll
C:\Users\MILICA\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpnfhadh.dll
C:\Users\MILICA\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-03-18 19:11

==================== End Of Log ============================

https://www.mycity.rs/must-login.png

Dopuna: 24 Mar 2015 21:41

da dodam u msconfig sistem podize samo antivirus i nvidia

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6102

Pozdrav hak1,

Generalno gledano, postavljeni logovi ne pokazuju znakove aktivne infekcije. Ima par stvari koje bi valjalo srediti kada si vec ovde, ukloniti non-default registry kljuc i slicno ...

Prvo, preporika da se manes IOBit programa, a deinstaliraj;
- IObit Apps Toolbar v7.1
- Media Player

Potom ...




1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:

Start
CreateRestorePoint:
File: C:\Program Files (x86)\Megatech\MProtect\MPServ.EXE
File: C:\Windows\System32\zlhp1020.dll

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-99242400-127638202-4162518150-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-99242400-127638202-4162518150-1000\...\Winlogon: [Shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
SearchScopes: HKU\S-1-5-21-99242400-127638202-4162518150-1000 -> {4247EC19-8187-4B6C-B8B5-ACB9A257B27A} URL = http://blekko.com/ws/?source=5f97ddbe&tbp=rbox&u=8.....3a436c7&q={searchTerms}&r=292
BHO-x32: No Name -> {03EB0E9C-7A91-4381-A220-9B52B641CDB1} -> No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM-x32 - No Name - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No File
Task: {414E630D-D4E9-497F-909B-181E07F615FD} - \ProgramRefresh-ATFST No Task File <==== ATTENTION

RemoveProxy:
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm
AlternateDataStreams: C:\ProgramData\Temp:6E64BB99
AlternateDataStreams: C:\ProgramData\Temp:87C79266

EmptyTemp:
End


2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.

3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.



Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.





.




Preuzmi smeenk-ov zoek () sa ovog linka i sačuvaj ga na Desktop.

Ako nisi preuzeo .exe verziju vec arhivu, raspakuj arhivu u neki folder (uputstvo), a zatim:

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:

QuickScan;
UninstallList;
FakeCHRProfiles;delete
Network.Proxy;ff
Reboot;


Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

offline
  • Pridružio: 17 Avg 2008
  • Poruke: 293
  • Gde živiš: Titograd

Zdravo Magna86,
uninstalirao - IObit Apps Toolbar v7.1 i advansedsistemcare i Media Player .
Fix log:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
Ran by MILICA at 2015-03-25 16:28:08 Run:1
Running from C:\Users\MILICA\Desktop
Loaded Profiles: MILICA (Available profiles: MILICA)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CreateRestorePoint:
File: C:\Program Files (x86)\Megatech\MProtect\MPServ.EXE
File: C:\Windows\System32\zlhp1020.dll

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-99242400-127638202-4162518150-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-99242400-127638202-4162518150-1000\...\Winlogon: [Shell] C:\Windows\Explorer.exe [2871808 2011-02-25] (Microsoft Corporation) <==== ATTENTION
SearchScopes: HKU\S-1-5-21-99242400-127638202-4162518150-1000 -> {4247EC19-8187-4B6C-B8B5-ACB9A257B27A} URL = http://blekko.com/ws/?source=5f97ddbe&tbp=rbox&u=8.....3a436c7&q={searchTerms}&r=292
BHO-x32: No Name -> {03EB0E9C-7A91-4381-A220-9B52B641CDB1} -> No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM-x32 - No Name - {03EB0E9C-7A91-4381-A220-9B52B641CDB1} - No File
Task: {414E630D-D4E9-497F-909B-181E07F615FD} - \ProgramRefresh-ATFST No Task File <==== ATTENTION

RemoveProxy:
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm
AlternateDataStreams: C:\ProgramData\Temp:6E64BB99
AlternateDataStreams: C:\ProgramData\Temp:87C79266

EmptyTemp:
End
*****************

Restore point was successfully created.

========================= File: C:\Program Files (x86)\Megatech\MProtect\MPServ.EXE ========================

MD5: 68B005AF0BC4F8823EAB5B105A40CC28
Creation and modification date: 2007-12-12 08:29 - 2007-12-12 08:29
Size: 0036864
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End Of File: ======


========================= File: C:\Windows\System32\zlhp1020.dll ========================

MD5: 5098D96D9E1975DBFE870757B097CC51
Creation and modification date: 2013-10-23 21:00 - 2012-09-18 14:27
Size: 0192512
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product Name:
Description:
File Version:
Product Version:
Copyright:

====== End Of File: ======

Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
HKU\S-1-5-21-99242400-127638202-4162518150-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value deleted successfully.
HKU\S-1-5-21-99242400-127638202-4162518150-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => value deleted successfully.
"HKU\S-1-5-21-99242400-127638202-4162518150-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4247EC19-8187-4B6C-B8B5-ACB9A257B27A}" => Key deleted successfully.
HKCR\CLSID\{4247EC19-8187-4B6C-B8B5-ACB9A257B27A} => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value deleted successfully.
HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} => value deleted successfully.
HKCR\Wow6432Node\CLSID\{03EB0E9C-7A91-4381-A220-9B52B641CDB1} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{414E630D-D4E9-497F-909B-181E07F615FD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{414E630D-D4E9-497F-909B-181E07F615FD}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ProgramRefresh-ATFST" => Key deleted successfully.

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value deleted successfully.
HKU\S-1-5-21-99242400-127638202-4162518150-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value deleted successfully.
HKU\S-1-5-21-99242400-127638202-4162518150-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value deleted successfully.


========= End of RemoveProxy: =========

C:\ProgramData\Reprise => ":wupeogjxldtlfudivq`qsp`26hfm" ADS removed successfully.
C:\ProgramData\Temp => ":6E64BB99" ADS removed successfully.
C:\ProgramData\Temp => ":87C79266" ADS removed successfully.
EmptyTemp: => Removed 1.7 GB temporary data.


The system needed a reboot.

==== End of Fixlog 16:30:51 ====

Zoek-result:

Zoek.exe v5.0.0.0 Updated 23-March-2015
Tool run by MILICA on sre 25.03.2015 at 16:59:07,42.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\MILICA\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

25.3.2015 17:00:46 Zoek.exe System Restore Point Created Successfully.

==== FireFox Fix ======================

ProfilePath: C:\Users\MILICA\AppData\Roaming\Mozilla\Firefox\Profiles\3zn7ieqz.default-1423821611941

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_25.03.2015_1701_.backup


Restartovao i opet se isto sporo dize.
Pozzzzzzz

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6102

Pozdrav,

Zoek izvestaj nije kompletan. Trebao si da sacekas da alat zavrsi rad. Ponovi drugi korak (dijagnostika sa zoek alatom) pa mi postavi svez zoek log (ali kada zoek zavrsi dijagnostiku, ne pre)

offline
  • Pridružio: 17 Avg 2008
  • Poruke: 293
  • Gde živiš: Titograd

Zdravo,
sad je zavrsio do kraja.


Zoek.exe v5.0.0.0 Updated 23-March-2015
Tool run by MILICA on sre 25.03.2015 at 23:40:24,52.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\MILICA\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2015-03-25-160117.log 661 bytes

==== FireFox Fix ======================

ProfilePath: C:\Users\MILICA\AppData\Roaming\Mozilla\Firefox\Profiles\3zn7ieqz.default-1423821611941

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_25.03.2015_2342_.backup

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2015-02-26 22:29:08 1A5E4C62F55C4D1687560C2AE0319EC4 51 ----a-w- C:\Windows\mwMSimApp.INI
====== C:\Users\MILICA\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2015-03-18 21:23:02 C239C2DC3CFCCDF34EBBE487BA87D52B 16017040 ----a-w- C:\Windows\SysWOW64\nvwgf2um.dll
2015-03-18 21:23:02 BEEA0DAC92DE547308490AB21AC3D87E 877816 ----a-w- C:\Windows\SysWOW64\nvumdshim.dll
2015-03-18 21:23:01 C4AF7B27D1075C1538202AD78CB328C3 24768144 ----a-w- C:\Windows\SysWOW64\nvoglv32.dll
2015-03-18 21:23:01 7678A3DF65245E7776B7913E7E90A1C0 305136 ----a-w- C:\Windows\SysWOW64\nvoglshim32.dll
2015-03-18 21:23:01 36954111C79EE44D1E5F5F02C3E78B73 10773704 ----a-w- C:\Windows\SysWOW64\nvopencl.dll
2015-03-18 21:23:00 FB50C5D41D7F82EA3718650C4DF536CF 3247248 ----a-w- C:\Windows\SysWOW64\nvcuvid.dll
2015-03-18 21:23:00 E30DCEF5DB526593786F8A7A66EDC11E 20466496 ----a-w- C:\Windows\SysWOW64\nvcompiler.dll
2015-03-18 21:23:00 B64744D40FBA7087418CB3026942769D 908104 ----a-w- C:\Windows\SysWOW64\NvFBC.dll
2015-03-18 21:23:00 A2DFE770DC30E4B9B0C597FAE2103A74 929936 ----a-w- C:\Windows\SysWOW64\NvIFR.dll
2015-03-18 21:23:00 5C75272E819BD2F906623EF1C4C6D425 164752 ----a-w- C:\Windows\SysWOW64\nvinit.dll
2015-03-18 21:23:00 31195A395F86E72F0D805915D2FA07E4 14119744 ----a-w- C:\Windows\SysWOW64\nvd3dum.dll
2015-03-18 21:23:00 16F7BA56230013306E917735A14E7D29 2902784 ----a-w- C:\Windows\SysWOW64\nvapi.dll
2015-03-18 21:23:00 0E33E10321FB93651EE64AB28E489C20 10713256 ----a-w- C:\Windows\SysWOW64\nvcuda.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2015-03-24 19:21:31 75A43F9EA79BF721DC6D94980F85F87D 943616 ----a-w- C:\Windows\Sysnative\appraiser.dll
2015-03-24 19:21:31 4BA77DD4E4894EAF2BCB2D3E0A0B6F7A 30720 ----a-w- C:\Windows\Sysnative\acmigration.dll
2015-03-24 19:21:30 EBDBE8037B0BE75B05CBC5DEEE49BA90 677888 ----a-w- C:\Windows\Sysnative\generaltel.dll
2015-03-24 19:21:30 B3B9C29F90A10216F13113757BCACAD8 1107456 ----a-w- C:\Windows\Sysnative\aeinv.dll
2015-03-24 19:21:30 82009026471290E8A512D1FE2442FDFC 760832 ----a-w- C:\Windows\Sysnative\invagent.dll
2015-03-24 19:21:29 E82D241A892C15FB42AB0A3D83C01ACA 414720 ----a-w- C:\Windows\Sysnative\devinv.dll
2015-03-24 19:21:27 EBDE90C94A0671F05AAA0DF2A2139F43 227328 ----a-w- C:\Windows\Sysnative\aepdu.dll
2015-03-24 19:21:27 1C11E0739B2B354647D292FCDCB7AF8E 192000 ----a-w- C:\Windows\Sysnative\aepic.dll
2015-03-18 21:30:30 FEB3F266AAEE159BFAFCA82C576230F1 1098384 ----a-w- C:\Windows\Sysnative\nv3dappshext.dll
2015-03-18 21:30:30 FD740172B08E21E3364B208B2B8080EF 4236870 ----a-w- C:\Windows\Sysnative\nvcoproc.bin
2015-03-18 21:30:30 F8E051E2C0E45EFD66DF1754B675833D 385168 ----a-w- C:\Windows\Sysnative\nvmctray.dll
2015-03-18 21:30:30 DEE0626C6BD2C2FFDC7A37B2502E98A9 3517584 ----a-w- C:\Windows\Sysnative\nvsvc64.dll
2015-03-18 21:30:30 DBE05B71928ACDA229B7EF0990EA74E3 2558792 ----a-w- C:\Windows\Sysnative\nvsvcr.dll
2015-03-18 21:30:30 97ADEBE576474D4CEC53F8E06590FFC8 935056 ----a-w- C:\Windows\Sysnative\nvvsvc.exe
2015-03-18 21:30:30 7A9E03C6F105F8471EDEA1448B476BC5 74896 ----a-w- C:\Windows\Sysnative\nv3dappshextr.dll
2015-03-18 21:30:30 331F731B5E660D8C55B4DA0CCA09B6ED 6861128 ----a-w- C:\Windows\Sysnative\nvcpl.dll
2015-03-18 21:30:30 1902EE6D98F9911729A2DEB4AA04E943 62792 ----a-w- C:\Windows\Sysnative\nvshext.dll
2015-03-18 21:23:02 D3069F84428EFEDB8EAA083741B7CEF6 995248 ----a-w- C:\Windows\Sysnative\nvumdshimx.dll
2015-03-18 21:23:02 36B01EC2DC169DB45C801A5BC0CBE670 18575880 ----a-w- C:\Windows\Sysnative\nvwgf2umx.dll
2015-03-18 21:23:01 F5DFB62C6A453DBA3D8E0D0BFC1EFAF7 353224 ----a-w- C:\Windows\Sysnative\nvoglshim64.dll
2015-03-18 21:23:01 9EF2996DA79FEC7EC22BCE4CB840CD4C 13294528 ----a-w- C:\Windows\Sysnative\nvopencl.dll
2015-03-18 21:23:01 94347A7E86A13AA86C300F1C5C5CEF3C 32106640 ----a-w- C:\Windows\Sysnative\nvoglv64.dll
2015-03-18 21:23:00 F7FF52F5C6DFDE1E6F5B324D6EE33DA0 27441 ----a-w- C:\Windows\Sysnative\nvinfo.pb
2015-03-18 21:23:00 E9431F732193A7491C0656A2003CF4AF 177624 ----a-w- C:\Windows\Sysnative\nvinitx.dll
2015-03-18 21:23:00 A511A028F8A62D17D93545ABDABE63AD 1895240 ----a-w- C:\Windows\Sysnative\nvdispco6434752.dll
2015-03-18 21:23:00 9BDA27EA6E10AB35CE0A2997071B0189 25460880 ----a-w- C:\Windows\Sysnative\nvcompiler.dll
2015-03-18 21:23:00 9078AC0E927A0C79482B3641C85BAC15 13208200 ----a-w- C:\Windows\Sysnative\nvcuda.dll
2015-03-18 21:23:00 7E666353814451F0F542A2C3A84B34A8 1557648 ----a-w- C:\Windows\Sysnative\nvdispgenco6434752.dll
2015-03-18 21:23:00 7818577E0532183144F15ED2F0149B18 3299512 ----a-w- C:\Windows\Sysnative\nvapi64.dll
2015-03-18 21:23:00 707C496AEF315B7FF5A1CDB066C582BE 969872 ----a-w- C:\Windows\Sysnative\NvIFR64.dll
2015-03-18 21:23:00 51882706E67A98DC5985247D4933D836 943760 ----a-w- C:\Windows\Sysnative\NvFBC64.dll
2015-03-18 21:23:00 1ACC850CEA37D18049CC0B3E6DE8FB7A 3610768 ----a-w- C:\Windows\Sysnative\nvcuvid.dll
2015-03-18 21:23:00 1A9C3171C139A58A960EDAB048058067 17253848 ----a-w- C:\Windows\Sysnative\nvd3dumx.dll
====== C:\Windows\Sysnative\drivers =====
2015-03-19 00:06:55 E9CD058C79EA15B4AA93E259FA713B07 136408 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2015-03-19 00:06:39 C799AD006F4DC6F78BE812D469A5F566 107736 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
2015-03-19 00:06:39 5FAD1352703E1D6DA474A2D83A54C97B 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2015-03-19 00:06:39 0BBF8A029234ED8C6A0BAE8C1967BC5E 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2015-03-18 21:23:01 6DBDE7A7C81F05C20C82291401627503 31376 ----a-w- C:\Windows\Sysnative\drivers\nvpciflt.sys
2015-03-18 21:23:01 3B99271224C43ADAB5A7F8D4B574AE3F 10284872 ----a-w- C:\Windows\Sysnative\drivers\nvlddmkm.sys
2015-03-10 22:21:40 8BA90F480705D7153AD0060CCA62222A 155576 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2015-03-10 22:21:39 56ED3EE5FED6BF2FC1305CF872042868 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
2015-03-10 21:25:34 27667A788130A7F7A5858DE27572E6D7 459336 ----a-w- C:\Windows\Sysnative\drivers\cng.sys
2015-03-10 21:25:27 87BCD1034CBF33537D4D4C251D39BA26 94656 ----a-w- C:\Windows\Sysnative\drivers\mountmgr.sys
2015-03-10 21:25:26 ED6E75158D28D33A2E2A020AC5B2B59D 663552 ----a-w- C:\Windows\Sysnative\drivers\PEAuth.sys
2015-03-10 21:25:26 90C53BD47979FB8814F465A08B885102 61440 ----a-w- C:\Windows\Sysnative\drivers\appid.sys
2015-03-08 20:30:37 E9981ECE8D894CEF7038FD1D040EB426 56832 ----a-w- C:\Windows\Sysnative\drivers\TsUsbFlt.sys
2015-02-26 01:00:01 8894A680F52C01D00A8582C853651CB1 76040 ----a-w- C:\Windows\Sysnative\drivers\multikey.sys
====== C:\Windows\Tasks ======
2015-03-11 21:44:58 EA63E4D57605C6F7173E9F7CAE593D49 3344 ----a-w- C:\Windows\Sysnative\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-99242400-127638202-4162518150-1000
2015-03-11 20:43:23 6DF153D03A2ECA4F5E83622D3699C58D 3010 ----a-w- C:\Windows\Sysnative\Tasks\{E7F7673D-9BD3-4981-8B75-E568C3D2BC4E}
2015-03-08 21:25:01 8C06ED314B77586A8508DA6FF18FADF1 3212 ----a-w- C:\Windows\Sysnative\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-99242400-127638202-4162518150-1000
2015-03-08 19:51:15 -------- d-----w- C:\Windows\Sysnative\Tasks\Lenovo
====== C:\Windows\Temp ======
======= C:\Program Files =====
2015-03-18 15:23:55 -------- d-----w- C:\Program Files\CrystalDiskMark
2015-02-26 20:53:42 -------- d-----w- C:\Program Files\Common Files\Mastercam
2015-02-26 20:53:14 -------- d-----w- C:\Program Files\mcamX8
======= C:\PROGRA~2 =====
2015-03-23 21:56:47 -------- d-----w- C:\PROGRA~2\CDBurnerXP
2015-03-18 15:24:15 -------- d-----w- C:\PROGRA~2\CrystalDiskInfo
2015-03-08 19:50:56 -------- d-----w- C:\PROGRA~2\Lenovo
2015-02-26 23:17:11 -------- d-----w- C:\PROGRA~2\Verisurf Uninstall
2015-02-26 20:53:17 -------- d-----w- C:\PROGRA~2\COMMON~1\WIBU Shared
2015-02-26 01:09:20 -------- d-----w- C:\PROGRA~2\COMMON~1\Wise Installation Wizard
2015-02-26 00:45:45 -------- d-----w- C:\PROGRA~2\HASP Drivers
2015-02-25 23:14:06 -------- d-----w- C:\PROGRA~2\CodeMeter
======= C: =====
2015-03-23 20:26:31 EED1F227DA6DCE23A5A7413F8B94C948 3408 ------w- C:\bootsqm.dat
2015-03-10 21:55:44 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\asc_rdflag
====== C:\Users\MILICA\AppData\Roaming ======
2015-03-24 20:03:37 -------- d-----w- C:\Users\MILICA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PIS
2015-03-23 21:56:48 -------- d-----w- C:\Users\MILICA\AppData\Roaming\Canneverbe Limited
2015-03-18 23:06:38 -------- d-----w- C:\Users\MILICA\AppData\Roaming\NVIDIA
2015-03-10 19:32:10 -------- d-----w- C:\Users\MILICA\AppData\Roaming\Grasshopper
2015-03-09 17:39:10 -------- d-----w- C:\Users\MILICA\AppData\Local\Lenovo
2015-03-07 19:36:42 -------- d-----w- C:\Users\MILICA\AppData\Roaming\BatteryBar
2015-02-26 23:16:59 -------- d-----w- C:\Users\MILICA\AppData\Local\CNC_Software,_Inc
2015-02-26 21:26:52 -------- d-----w- C:\Users\MILICA\AppData\Roaming\Mastercam
====== C:\Users\MILICA ======
2015-03-25 00:06:23 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LocK-A-FoLdeR
2015-03-25 00:03:53 F00245FFDFB6C19664B27553F50F4AE4 606938 ----a-w- C:\Users\MILICA\Desktop\LocK-A-FoLdeR-V3.9.2.exe
2015-03-24 20:02:38 73B23E94AB3BCD76228C787BAE1E9591 20662742 ----a-w- C:\Users\MILICA\Desktop\TaurInstallCG.exe
2015-03-24 18:11:09 F58676DE827DD9A5F3A44A698E8B4663 2095616 ----a-w- C:\Users\MILICA\Desktop\FRST64.exe
2015-03-23 21:56:57 -------- d-----w- C:\ProgramData\Canneverbe Limited
2015-03-18 19:53:04 D318A306C964C592C675CB808EEF5E71 1003 ----a-w- C:\Users\MILICA\Moje slike.lnk
2015-03-18 15:24:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2015-03-17 19:17:49 -------- d-----w- C:\Users\MILICA\Tracing
2015-03-11 19:47:32 C9BDFE5D5917C8C9EE2107DFC8B81AF2 36230 ----a-w- C:\Users\MILICA\energy-report.html
2015-03-10 19:32:10 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\T-Splines for Rhino (64)
2015-03-10 18:59:15 F5302612A8DB1455364FCD2432190CBA 37781 ----a-w- C:\Users\MILICA\energy-report 1.html
2015-03-03 00:41:34 -------- d-----w- C:\ProgramData\GML
2015-02-26 23:18:15 -------- d-----w- C:\Users\Public\Documents\X+
2015-02-26 21:01:01 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mastercam X8
2015-02-25 23:26:18 -------- d-----w- C:\Users\Public\Documents\shared mcamx8
2015-02-25 23:14:06 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter

====== C: exe-files ==
2015-03-25 00:03:53 F00245FFDFB6C19664B27553F50F4AE4 606938 ----a-w- C:\Users\MILICA\Desktop\LocK-A-FoLdeR-V3.9.2.exe
2015-03-24 20:03:38 011E2E42C7A8DA111D065F16D87CCDB8 121344 ----a-w- C:\Pis\uninstall.exe
2015-03-24 20:02:38 73B23E94AB3BCD76228C787BAE1E9591 20662742 ----a-w- C:\Users\MILICA\Desktop\TaurInstallCG.exe
2015-03-24 18:11:09 F58676DE827DD9A5F3A44A698E8B4663 2095616 ----a-w- C:\Users\MILICA\Desktop\FRST64.exe
2015-03-23 23:42:25 4F9D681AFB10609349227D7E9607547C 1876704 ----a-r- C:\Users\MILICA\Downloads\HDD_Regenerator_2011 DC 08.05.2013\(zabranjeno)\hddreg.exe
2015-03-23 23:42:23 63845286D678340CBD67D2735B3A28D0 1954544 ----a-r- C:\Users\MILICA\Downloads\HDD_Regenerator_2011 DC 08.05.2013\(zabranjeno)\HDD Regenerator.exe
2015-03-23 23:42:23 4C7A12D97900295A87AC6B40B8EB0ACF 8318088 ----a-r- C:\Users\MILICA\Downloads\HDD_Regenerator_2011 DC 08.05.2013\hr.exe
2015-03-23 21:56:47 D6AE27758B5006B2A49B58A4FF442DB7 24392 ----a-w- C:\Program Files (x86)\CDBurnerXP\updater.exe
2015-03-23 21:56:47 AD71B733AF543D8A6C544FC289EBA063 25928 ----a-w- C:\Program Files (x86)\CDBurnerXP\cdbxpcmd.exe
2015-03-23 21:56:47 2F55D81E9B862B865D414E2391DC9DE6 1578683 ----a-w- C:\Program Files (x86)\CDBurnerXP\unins000.exe
2015-03-23 21:56:47 19DDBFD028622D8A306FD5AF18ED0BC5 1744712 ----a-w- C:\Program Files (x86)\CDBurnerXP\cdbxpp.exe
2015-03-22 18:31:24 B6B5882A38152B94E38C93B8D068226B 719368 ----a-w- C:\Program Files (x86)\IO3O LLC\Who Is On My Wifi\unins000.exe
2015-03-22 12:00:13 07306A732240061342E92111911FD53C 962296 ----a-w- C:\Pis\servis.EXE
2015-03-22 12:00:11 657DE880696E4C35C601BB8FF1C64881 1190773 ----a-w- C:\Pis\pis.EXE
2015-03-21 22:39:02 9EC37BA26CBCF0A8397D62221C2CD0A1 439696 ----a-w- C:\Users\MILICA\AppData\Local\NVIDIA\NvBackend\Packages\000071cb\CoProc update.19413874.exe
2015-03-21 22:39:02 0EC0242B7EFA92AFDF538C8C7A70EDDF 5274920 ----a-w- C:\Users\MILICA\AppData\Local\NVIDIA\NvBackend\Packages\0000724f\DAO.19420491.exe
2015-03-20 08:14:22 304F0859E65A2BBE271BEFCB7851C048 675256 ----a-w- C:\Users\MILICA\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2015-03-20 08:14:18 F71300ACCA78CC082E6BD32DB83706FB 172984 ----a-w- C:\Users\MILICA\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
2015-03-20 00:24:06 A38E9C48F13C11CAB641A0C91F8F12A1 885840 ----a-w- C:\Program Files (x86)\Google\Update\Install\{8A8AC1B4-64C0-4307-9E07-AFD778735D04}\41.0.2272.101_41.0.2272.89_chrome_updater.exe
2015-03-20 00:24:06 A38E9C48F13C11CAB641A0C91F8F12A1 885840 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\41.0.2272.101\41.0.2272.101_41.0.2272.89_chrome_updater.exe
=== C: other files ==
2015-03-25 21:37:59 F769E5B9272873C4E1E9BDEB4606D50B 179 ----a-w- C:\dcam\exec\005.bat
2015-03-25 21:37:59 F769E5B9272873C4E1E9BDEB4606D50B 179 ----a-w- C:\dcam\exec\00.bat
2015-03-25 21:37:59 F769E5B9272873C4E1E9BDEB4606D50B 179 ----a-w- C:\dcam\exec\0.bat
2015-03-25 21:37:59 F769E5B9272873C4E1E9BDEB4606D50B 179 ----a-w- C:\dcam\exec\.bat
2015-03-25 21:37:59 EE2FE560647F3C7A39CB40900278066E 121 ----a-w- C:\dcam\exec\Help1004.bat
2015-03-25 21:37:59 EE2FE560647F3C7A39CB40900278066E 121 ----a-w- C:\dcam\exec\Help10.bat
2015-03-25 21:37:59 EE2FE560647F3C7A39CB40900278066E 121 ----a-w- C:\dcam\exec\Help1.bat
2015-03-25 21:37:59 EE2FE560647F3C7A39CB40900278066E 121 ----a-w- C:\dcam\exec\Help.bat
2015-03-25 21:37:59 C8B74B6E65F163975E487D8B555966E5 113 ----a-w- C:\dcam\exec\COM Register Exchange1004.bat
2015-03-25 21:37:59 C8B74B6E65F163975E487D8B555966E5 113 ----a-w- C:\dcam\exec\COM Register Exchange10.bat
2015-03-25 21:37:59 C8B74B6E65F163975E487D8B555966E5 113 ----a-w- C:\dcam\exec\COM Register Exchange1.bat
2015-03-25 21:37:59 C8B74B6E65F163975E487D8B555966E5 113 ----a-w- C:\dcam\exec\COM Register Exchange.bat
2015-03-25 21:37:59 54DC8ABE779AD1DC50B997BE2CF5E202 107 ----a-w- C:\dcam\exec\COM005.bat
2015-03-25 21:37:59 54DC8ABE779AD1DC50B997BE2CF5E202 107 ----a-w- C:\dcam\exec\COM00.bat
2015-03-25 21:37:59 54DC8ABE779AD1DC50B997BE2CF5E202 107 ----a-w- C:\dcam\exec\COM0.bat
2015-03-25 21:37:59 54DC8ABE779AD1DC50B997BE2CF5E202 107 ----a-w- C:\dcam\exec\COM.bat
2015-03-25 21:37:59 117065A3BC892C917E63ED288250CB83 102 ----a-w- C:\dcam\exec\Exchange1004.bat
2015-03-25 21:37:59 117065A3BC892C917E63ED288250CB83 102 ----a-w- C:\dcam\exec\Exchange10.bat
2015-03-25 21:37:59 117065A3BC892C917E63ED288250CB83 102 ----a-w- C:\dcam\exec\Exchange1.bat
2015-03-25 21:37:59 117065A3BC892C917E63ED288250CB83 102 ----a-w- C:\dcam\exec\Exchange.bat
2015-03-25 21:08:35 7EB5D12E5B464736A6AF56094F5A4F83 22464416 ----a-w- C:\Users\MILICA\Desktop\Turbo Boost_Intel_2.1.23.0_W7x64_A.zip
2015-03-25 21:03:33 0B8DD87544535CD8ED080802A985C52D 41661051 ----a-w- C:\Users\MILICA\Desktop\Turbo Boost_Intel_8.0.0.1262_W7x64_A.zip
2015-03-24 19:21:29 7EBB5DAD11B1D0B12317A191C8325991 21128 ----a-w- C:\Windows\System32\appraiser\nxquery.sys
2015-03-19 00:06:55 E9CD058C79EA15B4AA93E259FA713B07 136408 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2015-03-19 00:06:39 C799AD006F4DC6F78BE812D469A5F566 107736 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2015-03-19 00:06:39 5FAD1352703E1D6DA474A2D83A54C97B 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2015-03-19 00:06:39 0BBF8A029234ED8C6A0BAE8C1967BC5E 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-99242400-127638202-4162518150-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"RESTART_STICKY_NOTES"="C:\Windows\system32\StikyNot.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"RESTART_STICKY_NOTES"="C:\Windows\system32\StikyNot.exe"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\Windows\\SysWOW64\\nvinit.dll"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\20131121]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="20131121"
"hkey"="HKLM"
"command"="C:\\Program Files\\AVAST Software\\Avast\\setup\\emupdate\\1e1e9b92-20d2-4a83-a5cb-1e13978c1324.exe /check"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ACPW06EN]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ACPW06EN"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\ACD Systems\\ACDSee Pro\\6.0\\ACDSeePro6InTouch2.exe\" /pid ACPW06EN"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acrobat Assistant 8.0]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Acrobat Assistant 8.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Adobe\\Acrobat 11.0\\Acrobat\\Acrotray.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ACSW16EN]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ACSW16EN"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\ACD Systems\\ACDSee\\16.0\\acdIDInTouch2.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Adobe ARM"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeAAMUpdater-1.0"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeCS6ServiceManager]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeCS6ServiceManager"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\CS6ServiceManager\\CS6ServiceManager.exe\" -launchedbylogin"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Advanced SystemCare 6]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Advanced SystemCare 6"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\IObit\\Advanced SystemCare 6\\ASCTray.exe\" /AutoStart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Advanced SystemCare 7]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Advanced SystemCare 7"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\IObit\\Advanced SystemCare 7\\ASCTray.exe\" /Auto"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\APSDaemon]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="APSDaemon"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AthBtTray]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AthBtTray"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Bluetooth Suite\\AthBtTray.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AtherosBtStack]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AtherosBtStack"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Bluetooth Suite\\BtvStack.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BCSSync]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BCSSync"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Microsoft Office\\Office14\\BCSSync.exe\" /DelayServices"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DivXMediaServer]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DivXMediaServer"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\DivX\\DivX Media Server\\DivXMediaServer.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DivXUpdate]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DivXUpdate"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\DivX\\DivX Update\\DivXUpdate.exe\" /CHECKNOW"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Dolby Home Theater v4]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Dolby Home Theater v4"
"hkey"="HKLM"
"command"="\"C:\\Dolby PCEE4\\pcee4.exe\" -autostart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ETDCtrl]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ETDCtrl"
"hkey"="HKLM"
"command"="%ProgramFiles%\\Elantech\\ETDCtrl.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Google Update"
"hkey"="HKCU"
"command"="\"C:\\Users\\MILICA\\AppData\\Local\\Google\\Update\\GoogleUpdate.exe\" /c"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HDD Regenerator]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HDD Regenerator"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\HDD Regenerator\\Shell.exe\" /1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HotKeysCmds]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HotKeysCmds"
"hkey"="HKLM"
"command"="C:\\Windows\\system32\\hkcmd.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IAStorIcon]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="IAStorIcon"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Intel\\Intel(R) Rapid Storage Technology\\IAStorIcon.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IgfxTray]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="IgfxTray"
"hkey"="HKLM"
"command"="C:\\Windows\\system32\\igfxtray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IntelPAN]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="IntelPAN"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Intel\\WirelessCommon\\iFrmewrk.exe\" /tf Intel PAN Tray"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IntelTBRunOnce]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="IntelTBRunOnce"
"hkey"="HKLM"
"command"="wscript.exe //b //nologo \"C:\\Program Files\\Intel\\TurboBoost\\RunTBGadgetOnce.vbs\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IntelWirelessWiMAX]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="IntelWirelessWiMAX"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Intel\\WiMAX\\Bin\\WiMAXCU.exe\" /tasktray /nosplash"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LManager]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="LManager"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Launch Manager\\LManager.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MCShield Monitor]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MCShield Monitor"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\MCShield\\mcshieldrtm.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NokiaSuite.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NokiaSuite.exe"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Nokia\\Nokia Suite\\NokiaSuite.exe -tray"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvBackend]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NvBackend"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\NVIDIA Corporation\\Update Core\\NvBackend.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Nvtmru]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Nvtmru"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\NVIDIA Corporation\\NVIDIA Update Core\\nvtmru.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\OscarXG]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="OscarXG"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Wireless 5-Mode Oscar Editor\\OscarEditor.exe\" Minimum"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Persistence]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Persistence"
"hkey"="HKLM"
"command"="C:\\Windows\\system32\\igfxpers.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PWRISOVM.EXE]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="PWRISOVM.EXE"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\PowerISO\\PWRISOVM.EXE -startup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="QuickTime Task"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RESTART_STICKY_NOTES]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RESTART_STICKY_NOTES"
"hkey"="HKCU"
"command"="C:\\Windows\\system32\\StikyNot.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVBg_Dolby]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RtHDVBg_Dolby"
"hkey"="HKLM"
"command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVBg64.exe /FORPCEE4 "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RtHDVCpl"
"hkey"="HKLM"
"command"="C:\\Program Files\\Realtek\\Audio\\HDA\\RAVCpl64.exe -s"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Samsung PanelMgr]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Samsung PanelMgr"
"hkey"="HKLM"
"command"="C:\\Windows\\Samsung\\PanelMgr\\ssmmgr.exe /autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SearchSettings]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SearchSettings"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Spigot\\Search Settings\\SearchSettings.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ShadowPlay]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ShadowPlay"
"hkey"="HKLM"
"command"="C:\\Windows\\system32\\rundll32.exe C:\\Windows\\system32\\nvspcap64.dll,ShadowPlayOnSystemStart"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SunJavaUpdateSched"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\swg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="swg"
"hkey"="HKCU"
"command"="\"C:\\Program Files (x86)\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SwitchBoard]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SwitchBoard"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SynTPEnh]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SynTPEnh"
"hkey"="HKLM"
"command"="%ProgramFiles%\\Synaptics\\SynTP\\SynTPEnh.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TkBellExe]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TkBellExe"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Real\\RealPlayer\\update\\realsched.exe\" -osboot"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UIExec]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UIExec"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Internet Bilo gdje\\UIExec.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\USB3MON]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="USB3MON"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Intel\\Intel(R) USB 3.0 eXtensible Host Controller Driver\\Application\\iusb3mon.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="uTorrent"
"hkey"="HKCU"
"command"="\"C:\\Users\\MILICA\\AppData\\Roaming\\uTorrent\\uTorrent.exe\" /MINIMIZED"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Viber]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Viber"
"hkey"="HKCU"
"command"="\"C:\\Users\\MILICA\\AppData\\Local\\Viber\\Viber.exe\" StartMinimized"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\{0228e555-4f9c-4e35-a3ec-b109a192b4c2}]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"
"hkey"="HKLM"
"command"="C:\\Program Files (x86)\\Google\\Gmail Notifier\\gnotify.exe"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CLS 2013.10.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\CLS 2013.10.lnk"
"backup"="C:\\Windows\\pss\\CLS 2013.10.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\Windows\\Installer\\{5CE55520-DA6D-473D-A1A2-71047C3A3BC5}\\NewShortcut11.70787B93_F30E_4877_AFB6_34DDA9EE532D.exe "
"item"="CLS 2013.10"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^CodeMeter Control Center.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\CodeMeter Control Center.lnk"
"backup"="C:\\Windows\\pss\\CodeMeter Control Center.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~2\\CODEME~1\\Runtime\\bin\\CODEME~2.EXE "
"item"="CodeMeter Control Center"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SOLIDWORKS 2015 Fast Start.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\SOLIDWORKS 2015 Fast Start.lnk"
"backup"="C:\\Windows\\pss\\SOLIDWORKS 2015 Fast Start.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\Windows\\Installer\\{F8093877-4F2C-40ED-9BA7-2F9F48F5176F}\\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe "
"item"="SOLIDWORKS 2015 Fast Start"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SOLIDWORKS Background Downloader.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\SOLIDWORKS Background Downloader.lnk"
"backup"="C:\\Windows\\pss\\SOLIDWORKS Background Downloader.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~2\\COMMON~1\\SOLIDW~2\\BACKGR~1\\SLDBGD~1.EXE /launch_from 0"
"item"="SOLIDWORKS Background Downloader"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Who Is On My Wifi.lnk]
"path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Who Is On My Wifi.lnk"
"backup"="C:\\Windows\\pss\\Who Is On My Wifi.lnk.CommonStartup"
"backupExtension"=".CommonStartup"
"command"="C:\\PROGRA~2\\IO3OLL~1\\WHOISO~1\\mywifi.exe "
"item"="Who Is On My Wifi"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^MILICA^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
"path"="C:\\Users\\MILICA\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Dropbox.lnk"
"backup"="C:\\Windows\\pss\\Dropbox.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\Users\\MILICA\\AppData\\Roaming\\Dropbox\\bin\\Dropbox.exe /systemstartup"
"item"="Dropbox"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^MILICA^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Intel(R) Turbo Boost Technology Monitor 2.0.lnk]
"path"="C:\\Users\\MILICA\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Intel(R) Turbo Boost Technology Monitor 2.0.lnk"
"backup"="C:\\Windows\\pss\\Intel(R) Turbo Boost Technology Monitor 2.0.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~1\\Intel\\TURBOB~1\\SIGNAL~1.EXE "
"item"="Intel(R) Turbo Boost Technology Monitor 2.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^MILICA^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 ????? ?? ?????? ?? ?????? ? ?????????.lnk]
"path"="C:\\Users\\MILICA\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\OneNote 2010 ????? ?? ?????? ?? ?????? ? ?????????.lnk"
"backup"="C:\\Windows\\pss\\OneNote 2010 ????? ?? ?????? ?? ?????? ? ?????????.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~2\\MICROS~1\\Office14\\ONENOTEM.EXE /tsr"
"item"="OneNote 2010 ????? ?? ?????? ?? ?????? ? ?????????"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeARMservice]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdobeFlashPlayerUpdateSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdvancedSystemCareService6]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdvancedSystemCareService7]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AdvancedSystemCareService8]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Application Updater]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AtherosSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Bonjour Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\CodeMeter.exe]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\CoordinatorServiceHost]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\cphs]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\DMAgent]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\DsiWMIService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\FlexNet Licensing Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\FLEXnet Licensing Service 64]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\GfExperienceService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdate]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gupdatem]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\gusvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\hasplms]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\hddrsrv]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\IAStorDataMgrSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ICCS]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Intel(R) Capability Licensing Service Interface]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\jhi_service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Lenovo EasyPlus Hotspot]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Live Updater Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\LiveUpdateSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\LMS]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MBAMScheduler]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MBAMService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\McNeelUpdate]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Megatech-Software-Protection]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\mi-raysat_3dsmax2013_64]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MozillaMaintenance]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MyWiFiDHCPDNS]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\NvNetworkService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\NvStreamSvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\nvsvc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\nvUpdatusService]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\PSI_SVC_2_x64]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\RealNetworks Downloader Resolver Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SentinelKeysServer]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SentinelProtectionServer]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SentinelSecurityRuntime]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ServiceLayer]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Skype C2C Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SkypeUpdate]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SolidWorks Licensing Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SwitchBoard]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\TurboBoost]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\UI Assistant Service]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\UNS]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\WiMAXAppSrv]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\ZAtheros Wlan Agent]


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [12.02.2015 16:37]
C:\Windows\tasks\AutoKMS.job --a------ C:\Windows\AutoKMS\AutoKMS.exe []
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30.11.2012 22:05]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30.11.2012 22:05]
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-99242400-127638202-4162518150-1000Core.job --a------ C:\Users\MILIC:A\AppData\LoC:al\Google\Update\GoogleUpdate.exe []
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-99242400-127638202-4162518150-1000UA.job --a------ C:\Users\MILICA\AppData\Local\Google\Update\GoogleUpdate.exe [30.11.2012 22:05]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AutoKMS" [C:\Windows\AutoKMS\AutoKMS.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-99242400-127638202-4162518150-1000Core" [C:\Users\MILICA\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-99242400-127638202-4162518150-1000UA" [C:\Users\MILICA\AppData\Local\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-99242400-127638202-4162518150-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-99242400-127638202-4162518150-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealUpgradeLogonTaskS-1-5-21-99242400-127638202-4162518150-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\RealUpgradeScheduledTaskS-1-5-21-99242400-127638202-4162518150-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]
"C:\Windows\SysNative\tasks\UALU notificatin" ["C:\Program Files\Acer\Acer Updater\UALU.exe"]
"C:\Windows\SysNative\tasks\Uninstaller_SkipUac_MILICA" [C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe]
"C:\Windows\SysNative\tasks\{98FAECED-BEFB-423F-AF2A-CD3CE8931612}" [C:\Windows\System32\fsquirt.exe]
"C:\Windows\SysNative\tasks\{9AE88ACD-8263-44EA-BFAF-40A577187D7C}" ["c:\program files (x86)\mozilla firefox\firefox.exe"]
"C:\Windows\SysNative\tasks\{E7F7673D-9BD3-4981-8B75-E568C3D2BC4E}" [C:\Acer\Empowering Technology\Acer.Empowering.Framework.Supervisor.exe]
"C:\Windows\SysNative\tasks\Lenovo\Lenovo Customer Feedback Program 64 35" ["%ProgramFiles(x86)%\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe"]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\MILICA\AppData\Roaming\Mozilla\Firefox\Profiles\3zn7ieqz.default-1423821611941
user_pref("browser.startup.homepage", "https://www.google.me/webhp?ie=utf-8&oe=utf-8&gws_rd=cr&ei=Q9PdVKWYMIKBadSogsgI|http://www.neurohirurgija.in.rs/diskus_hernija.htm|http://www.tsplines.com/support/basictutorials.html|http://www.boatdesign.net/forums/services-employment/yacht-design-project-sale-30970.html|http://sajam.co.rs/active/sr-latin/home/details/_params/sajam_id/68572.html|https://www.google.me/search?newwindow=1&biw=1163&bih=609&site=webhp&tbm=isch&sa=1&q=ideas+boat+concept&oq=ideas+boat+concept&gs_l=img.12...74446.77114.0.78609.0.0.0.0.0.0.0.0..0.0.msedr...0...1c.1.61.img..0.0.0.FYn9otaOHhQ|https://support.mozilla.org/sr-Cyrl/kb/resetujte-fajerfoks-lako-resite-vecinu-problema?redirectlocale=en-US&redirectslug=reset-firefox-easily-fix-most-problems|about:support|https://www.behance.net/gallery/21177483/Fusion56-Speedboat-from-precious-wood");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{DAC3F861-B30D-40dd-9166-F4E75327FAC7}"="C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext" [17.07.2013 21:58]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"{ec8030f7-c20a-464f-9b0e-13a3a9e97384}"="C:\Program Files (x86)\SocialKredits\Firefox" []

==== Firefox Extensions ======================

ProfilePath: C:\Users\MILICA\AppData\Roaming\Mozilla\Firefox\Profiles\3zn7ieqz.default-1423821611941
- Google Translator for Firefox - %ProfilePath%\extensions\translator@zoli.bod.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Skype Click to Call - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
- Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
- Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\MILICA\AppData\Roaming\Mozilla\Firefox\Profiles\3zn7ieqz.default-1423821611941
A56B8E622037E6D57480F16F4B8F472C - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin
395BB0421E1C57D201DCE4D48E05E0BA - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit)
BF115DE08783E9FA8A9BB83DAA39149B - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit)
F7015E6C5FE1E74C0E029A291E732787 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit)
2C82D753EF779945977C82A3908DA20A - C:\Windows\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.90.5
C62322C77D1AAB77B1CF1130FCC3673A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll - Shockwave Flash
98137411B9C632095F919E2CE70B288A - C:\Users\MILICA\AppData\Local\Google\Update\1.3.26.9\npGoogleUpdate3.dll - Google Update
2D684F0DDF782C73847BED9503250991 - C:\Users\MILICA\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - Google Talk Plugin
6C3E34E303DBDCB9F7EC1F7A7F6B1629 - C:\Users\MILICA\AppData\Roaming\Mozilla\plugins\npo1d.dll - Google Talk Plugin Video Renderer
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System


==== Fake Chromium Profiles Check ======================

Fake profile C:\Users\Administrator\AppData\Local\Torch deleted
Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\Administrator\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\Administrator\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\Guest\AppData\Local\Torch deleted
Fake profile C:\Users\Guest\AppData\Local\Google\Chrome deleted
Fake profile C:\Users\Guest\AppData\Local\Google\Chrome SxS deleted
Fake profile C:\Users\Guest\AppData\Local\Comodo\Dragon deleted
Fake profile C:\Users\MILICA\AppData\Local\Torch deleted
Fake profile C:\Users\MILICA\AppData\Local\Comodo\Dragon deleted

==== Chromium Look ======================

Google Chrome Version: 41.0.2272.101 (Latest Stable version: 41.0.2272.101)

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[06.08.2014 20:15]
oejkcgajlodefenbbjdnaiahmbnnoole - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\chrome-newtab-search.crx[03.09.2013 14:06]

Google Docs - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Gmail Offline - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk
PanicButton - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm
Avast Online Security - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Facebook Unseen - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicapmagmhahddefgokbabbgieiogjop
Google Wallet - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Lavasoft NewTab - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\oejkcgajlodefenbbjdnaiahmbnnoole
Google Quick Scroll - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\okanipcmceoeemlbjnmnbdibhgpbllgc
Gmail - MILICA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\MILICA\AppData\Local\Google\Chrome\User Data\Default\Preferences
"startup_urls": [ "http://www.google.com/", "https://www.google.me/webhp?tab=ww" ]


==== C:\zoek_backup content ======================

C:\zoek_backup (files=3 folders=0 27623 bytes)

==== After Reboot ======================

==== EOF on sre 25.03.2015 at 23:49:48,94 ======================

Sada sam vidio da nijesam deinstalirao IObit Apps toolbar, i ne mogu da ga maknem nikako.

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6102

Ok, budi strpljiv do sutra. Sutra cu pregledati ovaj log. Cisto da znas da me ne cekas.

Wink

offline
  • Pridružio: 17 Avg 2008
  • Poruke: 293
  • Gde živiš: Titograd

Hvala puno.
Pozzzzzzzzz

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6102

Pozz,


Hajde sada ponovo pokreni zoek (sacekaj da se alat ucita) i na isti nacin kao i prosli put radimo ali ovaj put koristi ovaj scritp;



EmptyFoldersCheck;Delete
type C:\dcam\exec\005.bat;b
ipconfig /flushdns >> %temp%\log.txt;b
bitsadmin /reset /allusers >> %temp%\log.txt;b
EmptyCLSID;
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SearchSettings];r
C:\Program Files (x86)\Common Files\Spigot;f
FFDefaults;
CHRDefaults;
ResetIEProxy;
AutoClean;




Klikni na RunScript dugme i sacekaj da alat zavrsi skeniranje. Po restartu mi postavi sveze formiran zoek log i reci mi ima li poboljsanja?

offline
  • Pridružio: 17 Avg 2008
  • Poruke: 293
  • Gde živiš: Titograd

Zdravo,
Ovo ne mogu da izbrisem, '' C:\dcam\exec\005.bat;b '' ArtCAm program u kojem radim stalno necu moci da pokrecem. Ovo mi je od pocetka instalirana.od 2013god, i nije stvaralo probleme.

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6102

Taj .bat file i nije bio meta, slobodno izvrsi script.

Ko je trenutno na forumu
 

Ukupno su 701 korisnika na forumu :: 35 registrovanih, 4 sakrivenih i 662 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _Petar, _Sale, A.R.Chafee.Jr., Bahuss, Brankoni, Drug pukovnik, Duh sa sekirom, FOX, goxsys, h8propaganda, Hoegaarden, HrcAk47, ILGromovnik, Kaplar2, Konda, Kruger, ljuba, louderick, mcgunner, mean_machine, moldway, Neo BetOnBit, Panter, RJ, Smd, sokars, sosko, Stanlio, stegonosa, Toni, Toper, vladom6, Voivoda, Živković, 223223