Ostadoh Bez RAM Memorije

2

Ostadoh Bez RAM Memorije

offline
  • Miljan Ilic
  • Pridružio: 18 Jun 2014
  • Poruke: 178

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 07-01-2015
Ran by Miljan Ilic at 2015-01-08 12:45:16 Run:3
Running from C:\Documents and Settings\Miljan Ilic\Desktop
Loaded Profile: Miljan Ilic (Available profiles: Miljan Ilic)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
Start
REG: reg query "HKLM\SOFTWARE\7626913198" /s
End
*****************


========= reg query "HKLM\SOFTWARE\7626913198" /s =========


Error: The system was unable to find the specified registry key or value


========= End of Reg: =========


==== End of Fixlog 12:45:17 ====

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6102

To izgleda to ...

Reci mi kako ti se sada ponasa racunar?

offline
  • Miljan Ilic
  • Pridružio: 18 Jun 2014
  • Poruke: 178

Isto kai kao i pre, ponovo se pojavljaju one reklame, malo je brzi kad se startuje, dosta ram memorije je oslobodjeno i skinuto je oko 10 procesa. Skenirao sam sa AdWare i dobio sledeci izvestaj

AdwCleaner[S0].txt:# AdwCleaner v4.107 - Report created 08/01/2015 at 10:34:05
# Updated 07/01/2015 by Xplode
# Database : 2014-12-21.4 [Local]
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Miljan Ilic - MINT
# Running from : C:\Documents and Settings\Miljan Ilic\Desktop\adwcleaner_4.107.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\IePluginServices
Folder Deleted : C:\Documents and Settings\All Users\Application Data\NCH Software
Folder Deleted : C:\Program Files\NCH Software
Folder Deleted : C:\Program Files\SupTab
Folder Deleted : C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Mail.Ru
Folder Deleted : C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\MailRu
Folder Deleted : C:\Documents and Settings\Miljan Ilic\Application Data\NCH Software
Folder Deleted : C:\Documents and Settings\Miljan Ilic\Application Data\sweet-page
Folder Deleted : C:\Documents and Settings\Miljan Ilic\Application Data\etranslator
File Deleted : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\hxxp_www.superfish.com_0.localstorage
File Deleted : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Deleted : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\hxxps_www.superfish.com_0.localstorage
File Deleted : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\hxxps_www.superfish.com_0.localstorage-journal
File Deleted : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\chrome-extension_ilhhefepljbmehhbmjcflhcchkddfaon_0.localstorage
File Deleted : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\chrome-extension_ilhhefepljbmehhbmjcflhcchkddfaon_0.localstorage-journal
File Deleted : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Extension Settings\ilhhefepljbmehhbmjcflhcchkddfaon

***** [ Scheduled Tasks ] *****

Task Deleted : update-sys
Task Deleted : update-S-1-5-21-507921405-879983540-1417001333-1003

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Classes\.
Key Deleted : HKLM\SOFTWARE\Classes\..9
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622342229}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{c66d046f-1dcb-47a1-97ec-2fea00a6796a}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655345529}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666346629}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c66d046f-1dcb-47a1-97ec-2fea00a6796a}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{c66d046f-1dcb-47a1-97ec-2fea00a6796a}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\SavePass 1.1
Key Deleted : HKCU\Software\SupHpUISoft
Key Deleted : HKLM\SOFTWARE\Crossrider
Key Deleted : HKLM\SOFTWARE\GlobalUpdate
Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Deleted : HKLM\SOFTWARE\SavePass 1.1
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\SupTab
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\supWPM
Key Deleted : HKLM\SOFTWARE\sweet-pageSoftware
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1

***** [ Browsers ] *****

-\\ Internet Explorer v6.0.2900.5512


-\\ Opera v26.0.1656.60


*************************

AdwCleaner[R0].txt - [10652 octets] - [08/01/2015 10:24:45]
AdwCleaner[S0].txt - [10535 octets] - [08/01/2015 10:34:05]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10596 octets] ##########

AdwCleaner[R0].txt:
# AdwCleaner v4.107 - Report created 08/01/2015 at 10:24:45
# Updated 07/01/2015 by Xplode
# Database : 2014-12-21.4 [Local]
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Miljan Ilic - MINT
# Running from : C:\Documents and Settings\Miljan Ilic\Desktop\adwcleaner_4.107.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Extension Settings\ilhhefepljbmehhbmjcflhcchkddfaon
File Found : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\chrome-extension_ilhhefepljbmehhbmjcflhcchkddfaon_0.localstorage
File Found : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\chrome-extension_ilhhefepljbmehhbmjcflhcchkddfaon_0.localstorage-journal
File Found : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\hxxp_www.superfish.com_0.localstorage
File Found : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
File Found : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\hxxps_www.superfish.com_0.localstorage
File Found : C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\hxxps_www.superfish.com_0.localstorage-journal
Folder Found : C:\Documents and Settings\All Users\Application Data\IePluginServices
Folder Found : C:\Documents and Settings\All Users\Application Data\IePluginServices
Folder Found : C:\Documents and Settings\All Users\Application Data\NCH Software
Folder Found : C:\Documents and Settings\All Users\Application Data\NCH Software
Folder Found : C:\Documents and Settings\Miljan Ilic\Application Data\etranslator
Folder Found : C:\Documents and Settings\Miljan Ilic\Application Data\NCH Software
Folder Found : C:\Documents and Settings\Miljan Ilic\Application Data\sweet-page
Folder Found : C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Mail.Ru
Folder Found : C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\MailRu
Folder Found : C:\Program Files\NCH Software
Folder Found : C:\Program Files\SupTab

***** [ Scheduled Tasks ] *****

Task Found : update-sys
Task Found : update-S-1-5-21-507921405-879983540-1417001333-1003
Task Found : update-sys

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\GlobalUpdate
Key Found : HKCU\Software\InstallCore
Key Found : HKCU\Software\InstalledBrowserExtensions
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c66d046f-1dcb-47a1-97ec-2fea00a6796a}
Key Found : HKCU\Software\SavePass 1.1
Key Found : HKCU\Software\SupHpUISoft
Key Found : HKLM\SOFTWARE\Classes\.
Key Found : HKLM\SOFTWARE\Classes\..9
Key Found : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622342229}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622342229}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{c66d046f-1dcb-47a1-97ec-2fea00a6796a}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
Key Found : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Found : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550655345529}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660666346629}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Found : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Found : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Crossrider
Key Found : HKLM\SOFTWARE\GlobalUpdate
Key Found : HKLM\SOFTWARE\InstalledBrowserExtensions
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{c66d046f-1dcb-47a1-97ec-2fea00a6796a}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507}
Key Found : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
Key Found : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
Key Found : HKLM\SOFTWARE\SavePass 1.1
Key Found : HKLM\SOFTWARE\SupDp
Key Found : HKLM\SOFTWARE\SupTab
Key Found : HKLM\SOFTWARE\supWindowsMangerProtect
Key Found : HKLM\SOFTWARE\supWPM
Key Found : HKLM\SOFTWARE\sweet-pageSoftware
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\IePluginServices
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect

***** [ Browsers ] *****

-\\ Internet Explorer v6.0.2900.5512


-\\ Opera v26.0.1656.60


*************************

AdwCleaner[R0].txt - [10510 octets] - [08/01/2015 10:24:45]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [10571 octets] ##########

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6102

Dr.Cooler ::Isto kai kao i pre, ponovo se pojavljaju one reklame, malo je brzi kad se startuje, dosta ram memorije je oslobodjeno i skinuto je oko 10 procesa.

Hm...Ok-et, furni mi sveze FRST logove (oba loga). Takodje mi reci u kom browser ti se pojavljuju te reklame? Bilo bi fino da mi postavis i screenshot da vidim.

Vezano za AdwCleaner, to je genericki skener koji lovi registry po nazivima. On ce uvek pronaci brdo necega a u praksi samo 20% tih unosa predstavlja problem, ostalo su obicni neaktivni reg zapisi.

U tvom slucaju alat jeste uklonio jedan adware task i folder ali je takodje uklonio i tri legitimna. Dobra strana jeste ta sto je ciljao i Opera browser u koji ja nemam defaulti uvid ali resetovanje Opere bi resilo problem. Sto se tice registry sekcije, to su sve bezopasni ostatci.

Pored FRST logova, trebace mi uvid u dodatane izvestaje. Koristicemo Zoek alat za tu svrhu.



Preuzmi smeenk-ov zoek () sa ovog linka i sačuvaj ga na Desktop.
Raspakuj arhivu u neki folder (uputstvo), a zatim:

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


Klikni na More Options dugme i stikliraj polje ispred sledece opcije:
Do a Quick Scan
Napomena: Stikliraj samo navedenu opciju, ostale opcije ne dirati ! !


Klikni na dugme i pričekaj da se skeniranje završi.
zoek ce na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)

Arrow Kopiraj sadrzaj tog loga u poruku.

offline
  • Miljan Ilic
  • Pridružio: 18 Jun 2014
  • Poruke: 178

Napisano: 09 Jan 2015 16:46

Ovako... Reklame ukljucuje neki SavePass v1.2 kog nikako nmg da obrisem, probao sam na sve nacine ali njega nista ne brise. Takodje mi izlaze u PopUp proziri koje otvara clkmon.exe koji se pokrece pri svakom pokretanji racunra i kog ja gasim ali kasnije pocne sa radom ali je nevidljim u Task Manager-u. Evo ispod screenshot-ova i izvestaji. Pozz

FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-01-2015
Ran by Miljan Ilic (administrator) on MINT on 09-01-2015 16:32:15
Running from C:\Documents and Settings\Miljan Ilic\Desktop
Loaded Profile: Miljan Ilic (Available profiles: Miljan Ilic)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 6 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Skillbrains) C:\Program Files\Skillbrains\lightshot\5.2.0.17\Lightshot.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
() C:\Documents and Settings\Miljan Ilic\Desktop\zoek.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
(Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3653136 2014-11-09] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2013-01-31] ()
HKLM\...\Run: [Smapp] => C:\Program Files\Analog Devices\SoundMAX\SMTray.exe [143360 2003-05-05] (Analog Devices, Inc.)
HKLM\...\Run: [Lightshot] => C:\Program Files\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2015\avgrsx.exe /sync /restart

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Search Page = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: HKU\S-1-5-21-507921405-879983540-1417001333-1003 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\windows\system32\shdocvw.dll (Microsoft Corporation)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-507921405-879983540-1417001333-1003 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = go.mail.ru/search?q={SearchTerms}&fr=ntg
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgfws; C:\Program Files\AVG\AVG2015\avgfws.exe [1486664 2014-11-09] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3488784 2014-11-09] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [298080 2014-11-09] (AVG Technologies CZ, s.r.o.)
S2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) [File not signed]
S4 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S4 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AR9271; C:\windows\System32\DRIVERS\athuw.sys [1714176 2010-01-05] (Atheros Communications, Inc.)
R1 Avgdiskx; C:\windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.)
R3 Avgfwdx; C:\windows\System32\DRIVERS\avgfwdx.sys [30944 2012-01-12] (AVG Technologies CZ, s.r.o.)
S3 Avgfwfd; C:\windows\System32\DRIVERS\avgfwdx.sys [30944 2012-01-12] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriverl; C:\windows\System32\DRIVERS\avgidsdriverlx.sys [198936 2014-10-29] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\windows\System32\DRIVERS\avgidshx.sys [147736 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\windows\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\windows\System32\DRIVERS\avglogx.sys [230680 2014-07-18] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\windows\System32\DRIVERS\avgmfx86.sys [98584 2014-10-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\windows\System32\DRIVERS\avgtdix.sys [200984 2014-10-10] (AVG Technologies CZ, s.r.o.)
S3 CCDECODE; C:\windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 EsgScanner; C:\windows\System32\DRIVERS\EsgScanner.sys [19984 2015-01-08] ()
R3 gameenum; C:\windows\System32\DRIVERS\gameenum.sys [10624 2008-04-14] (Microsoft Corporation)
S3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [23256 2014-11-21] (Malwarebytes Corporation)
S3 NdisIP; C:\windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 SISNIC; C:\windows\System32\DRIVERS\sisnic.sys [32768 2008-04-13] (SiS Corporation)
S3 STAC97; C:\windows\System32\drivers\STAC97.sys [273296 2005-04-14] (SigmaTel, Inc.) [File not signed]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S4 IntelIde; No ImagePath

========================== Drivers MD5 =======================

C:\windows\System32\DRIVERS\ACPI.sys 8FD99680A539792A30E97944FDAECF17
C:\windows\system32\Drivers\ACPIEC.sys 9859C0F6936E723E4892D7141B1327D5
C:\windows\System32\drivers\aeaudio.sys 11C04B17ED2ABBB4833694BCD644AC90
C:\windows\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557
C:\windows\System32\drivers\afd.sys 322D0E36693D6E24A2398BEE62A268CD
C:\windows\System32\Drivers\ssadadb.sys 2F8616646215EEDB28C2E40994DB8E38
C:\windows\System32\DRIVERS\athuw.sys 8E2257584B2C52D44B4CB1949947D885
C:\windows\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC
C:\windows\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674
C:\windows\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159
C:\windows\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68
C:\windows\System32\DRIVERS\avgdiskx.sys CB2C2B24BD7E64CFB2B24D401FF5BBC0
C:\windows\System32\DRIVERS\avgfwdx.sys 8BE661C16FBF84A73BCEC84B6B4A9DB5
C:\windows\System32\DRIVERS\avgfwdx.sys 8BE661C16FBF84A73BCEC84B6B4A9DB5
C:\windows\System32\DRIVERS\avgidsdriverlx.sys 0BAF28B3E27E7C3AD5844406CF470420
C:\windows\System32\DRIVERS\avgidshx.sys 6A019432682A6BD98B1548015CA7A4D4
C:\windows\System32\DRIVERS\avgidsshimx.sys 2429F7F025F63532B6B264D97E4ECA49
C:\windows\System32\DRIVERS\avgldx86.sys 9AFD535116E986D49877B811F3665E8E
C:\windows\System32\DRIVERS\avglogx.sys D94378757947E02AE9BC484DF196A44D
C:\windows\System32\DRIVERS\avgmfx86.sys 35DD83C14AA01F4817BA46A4D6B6A520
C:\windows\System32\DRIVERS\avgrkx86.sys F016B95273E0B1961F204F7FD2FFD811
C:\windows\System32\DRIVERS\avgtdix.sys 5A22A7A67BFB67D3223B7A339FC97780
C:\windows\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9
C:\windows\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
C:\windows\System32\DRIVERS\CCDECODE.sys 0BE5AEF125BE881C4F854C554F2B025C
C:\windows\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B
C:\windows\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32
C:\windows\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE
C:\windows\System32\DRIVERS\ssudbus.sys 50D5624BB26AF7EAE92EF95F3C6E3CE7
C:\windows\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25
C:\windows\System32\drivers\dmboot.sys D992FE1274BDE0F84AD826ACAE022A41
C:\windows\System32\drivers\dmio.sys 7C824CF7BBDE77D95C08005717A95F6F
C:\windows\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F
C:\windows\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45
C:\windows\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8
C:\windows\System32\DRIVERS\EsgScanner.sys 01CE484FF6D70A39479BC6D619DE7ED6
C:\windows\system32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E
C:\windows\System32\DRIVERS\fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81
C:\windows\system32\Drivers\Fips.sys D45926117EB9FA946A6AF572FBE1CAA3
C:\windows\System32\DRIVERS\flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0
C:\windows\System32\DRIVERS\fltMgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0
C:\windows\system32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A
C:\windows\System32\DRIVERS\ftdisk.sys 6AC26732762483366C3969C9E4D2259D
C:\windows\System32\DRIVERS\gameenum.sys 065639773D8B03F33577F6CDAEA21063
C:\windows\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2
C:\windows\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1
C:\windows\System32\Drivers\HTTP.sys F6AACF5BCE2893E0C1754AFEB672E5C9
C:\windows\system32\Drivers\i8042prt.sys 4A0B06AA8943C1E332520F7440C0AA30
C:\windows\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E
C:\windows\System32\DRIVERS\intelppm.sys 8C953733D8F36EB2133F5BB58808B66B
C:\windows\System32\DRIVERS\Ip6Fw.sys 3BB22519A194418D5FEC05D800A19AD0
C:\windows\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182
C:\windows\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5
C:\windows\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB
C:\windows\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91
C:\windows\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89
C:\windows\System32\DRIVERS\isapnp.sys 05A299EC56E52649B1CF2FC52D20F2D7
C:\windows\System32\DRIVERS\kbdclass.sys 463C1EC80CD17420A542B7F36A36F128
C:\windows\System32\DRIVERS\kbdhid.sys 9EF487A186DEA361AA06913A75B3FA99
C:\windows\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378
C:\windows\system32\Drivers\KSecDD.sys 1705745D900DABF2D89F90EBADDC7517
C:\windows\system32\drivers\mbam.sys A3F4391DFDF2F9E9FE4EAD193265A5AD
C:\windows\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6
C:\windows\system32\Drivers\Modem.sys DFCBAD3CEC1C5F964962AE10E0BCC8E1
C:\windows\System32\DRIVERS\mouclass.sys 35C9E97194C8CFB8430125F8DBC34D04
C:\windows\System32\DRIVERS\mouhid.sys B1C303E17FB9D46E87A98E4BA6769685
C:\windows\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD
C:\windows\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD
C:\windows\System32\DRIVERS\mrxsmb.sys 68755F0FF16070178B54674FE5B847B0
C:\windows\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027
C:\windows\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1
C:\windows\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E
C:\windows\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D
C:\windows\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136
C:\windows\System32\drivers\MSTEE.sys E53736A9E30C45FA9E7B5EAC55056D1D
C:\windows\system32\Drivers\Mup.sys 2F625D11385B1A94360BFC70AAEFDEE1
C:\windows\System32\DRIVERS\NABTSFEC.sys 5B50F1B2A2ED47D560577B221DA734DB
C:\windows\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D
C:\windows\System32\DRIVERS\NdisIP.sys 7FF1F1FD8609C149AA432F95A8163D97
C:\windows\System32\DRIVERS\ndistapi.sys 1AB3D00C991AB086E69DB84B6C0ED78F
C:\windows\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849
C:\windows\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB
C:\windows\system32\Drivers\NDProxy.sys 6215023940CFD3702B46ABC304E1D45A
C:\windows\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0
C:\windows\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D
C:\windows\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A
C:\windows\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA
C:\windows\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD
C:\windows\System32\DRIVERS\nv4_mini.sys 7C56F3FD65B2BDB315CA3605A5392D7B
C:\windows\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57
C:\windows\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9
C:\windows\System32\DRIVERS\parport.sys 5575FAF8F97CE5E713D108C2A58D7C7C
C:\windows\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6
C:\windows\system32\Drivers\ParVdm.sys 70E98B3FD8E963A6A46A2E6247E0BEA1
C:\windows\System32\DRIVERS\pci.sys A219903CCF74233761D92BEF471A07B1
C:\windows\System32\DRIVERS\pciide.sys CCF5F451BB1A5A2A522A76E670000FF0
C:\windows\system32\Drivers\Pcmcia.sys 9E89EF60E9EE05E3F2EEF2DA7397F1C1
C:\windows\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99
C:\windows\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424
C:\windows\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD
C:\windows\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C
C:\windows\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6
C:\windows\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE
C:\windows\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242
C:\windows\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A
C:\windows\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332
C:\windows\System32\DRIVERS\rdpdr.sys 15CABD0F7C00C47C70124907916AF3F1
C:\windows\system32\Drivers\RDPWD.sys 6728E45B66F93C08F11DE2E316FC70DD
C:\windows\System32\DRIVERS\redbook.sys F828DD7E1419B6653894A8F97A0094C5
C:\windows\System32\DRIVERS\secdrv.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE
C:\windows\System32\DRIVERS\serial.sys CCA207A8896D4C6A0C9CE29A4AE411A7
C:\windows\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562
C:\windows\System32\DRIVERS\sisnic.sys 3FBB6EF8B5A71A2FA11F5F461BB73219
C:\windows\System32\DRIVERS\SLIP.sys 866D538EBE33709A5C9F5C62B73B7D14
C:\windows\System32\drivers\smwdm.sys FA3368A7039F5ABAA4B933703AC34763
C:\windows\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F
C:\windows\System32\DRIVERS\sr.sys 76BB022C2FB6902FD5BDD4F78FC13A5D
C:\windows\System32\DRIVERS\srv.sys 5252605079810904E31C332E241CD59B
C:\windows\System32\DRIVERS\ssadbus.sys BB6EDB0257860083193CC1581AC7D485
C:\windows\System32\DRIVERS\ssadmdfl.sys 5BCB68F7B62159C07789D3F405750623
C:\windows\System32\DRIVERS\ssadmdm.sys 1588A89F9CD9E68DE9FCC9F60FDB5C08
C:\windows\System32\DRIVERS\ssadserd.sys 9EFD9F42795C9E90206C1E9A9B25E8D3
C:\windows\System32\DRIVERS\ssudmdm.sys 9359AB8BEA059222742345ED63147222
C:\windows\System32\drivers\STAC97.sys EE74E3B1B521CEF8E8C9D008E4BDB45C
C:\windows\System32\DRIVERS\StreamIP.sys 77813007BA6265C4B6098187E6ED79D2
C:\windows\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F
C:\windows\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01
C:\windows\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290
C:\windows\System32\DRIVERS\tcpip.sys 93EA8D04EC73A85DB02EB8805988F733
C:\windows\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397
C:\windows\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61
C:\windows\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E
C:\windows\System32\DRIVERS\uagp35.sys D85938F272D1BCF3DB3A31FC0A048928
C:\windows\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9
C:\windows\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31
C:\windows\System32\drivers\usbaudio.sys E919708DB44ED8543A7C017953148330
C:\windows\System32\DRIVERS\usbccgp.sys 173F317CE0DB8E21322E71B7E60A27E8
C:\windows\System32\DRIVERS\usbehci.sys 65DCF09D0E37D4C6B11B5B0B76D470A7
C:\windows\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C
C:\windows\System32\DRIVERS\usbohci.sys 0DAECCE65366EA32B162F85F07C6753B
C:\windows\System32\DRIVERS\usbprint.sys A717C8721046828520C9EDF31288FC00
C:\windows\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9
C:\windows\System32\Drivers\usbvideo.sys 63BBFCA7F390F4C49ED4B96BFB1633E0
C:\windows\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1
C:\windows\system32\Drivers\VolSnap.sys 4C8FCB5CC53AAB716D810740FE59D025
C:\windows\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6
C:\windows\System32\DRIVERS\Wdf01000.sys FD47474BD21794508AF449D9D91AF6E6
C:\windows\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F
C:\windows\System32\drivers\ws2ifsl.sys 6ABE6E225ADB5A751622A9CC3BC19CE8
C:\windows\System32\DRIVERS\WSTCODEC.SYS C98B39829C2BBD34E454150633C62C78

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-09 16:32 - 2015-01-09 16:32 - 00019005 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\FRST.txt
2015-01-09 16:25 - 2015-01-09 16:28 - 00047930 _____ () C:\zoek-results.log
2015-01-09 16:23 - 2015-01-09 16:28 - 00000721 _____ () C:\runcheck.txt
2015-01-09 16:22 - 2015-01-09 16:22 - 00000000 ____D () C:\zoek_backup
2015-01-09 16:18 - 2015-01-09 16:19 - 01295360 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\zoek.exe
2015-01-09 15:22 - 2015-01-09 15:09 - 00000439 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\server.cfg
2015-01-09 10:16 - 2015-01-09 11:13 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Desktop\Radio
2015-01-08 21:59 - 2015-01-08 21:59 - 00000777 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-08 21:59 - 2015-01-08 21:59 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-01-08 21:59 - 2015-01-08 21:59 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-08 21:59 - 2014-11-21 06:14 - 00023256 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2015-01-08 20:51 - 2015-01-08 20:51 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Desktop\Themes
2015-01-08 20:51 - 2015-01-08 20:51 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Desktop\Sources
2015-01-08 20:51 - 2015-01-08 20:51 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Desktop\Smileys
2015-01-08 20:51 - 2015-01-08 20:51 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Desktop\Packages
2015-01-08 20:51 - 2015-01-08 20:51 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Desktop\custom_avatar
2015-01-08 20:51 - 2015-01-08 20:51 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Desktop\cache
2015-01-08 20:51 - 2015-01-08 20:51 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Desktop\avatars
2015-01-08 20:51 - 2015-01-08 20:51 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Desktop\attachments
2015-01-08 20:51 - 2014-11-18 04:52 - 00137444 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\install_2-1_postgresql.sql
2015-01-08 20:51 - 2014-11-18 04:52 - 00089269 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\install.php
2015-01-08 20:51 - 2014-11-18 04:52 - 00076947 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\SSI.php
2015-01-08 20:51 - 2014-11-18 04:52 - 00069062 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\install_2-1_mysql.sql
2015-01-08 20:51 - 2014-11-18 04:52 - 00027508 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\ssi_examples.php
2015-01-08 20:51 - 2014-11-18 04:52 - 00018760 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\readme_install.html
2015-01-08 20:51 - 2014-11-18 04:52 - 00014825 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\index.php
2015-01-08 20:51 - 2014-11-18 04:52 - 00009560 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\subscriptions.php
2015-01-08 20:51 - 2014-11-18 04:52 - 00009187 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\cron.php
2015-01-08 20:51 - 2014-11-18 04:52 - 00005679 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\ssi_examples.shtml
2015-01-08 20:51 - 2014-11-18 04:52 - 00005427 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\Settings_bak.php
2015-01-08 20:51 - 2014-11-18 04:52 - 00005427 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\Settings.php
2015-01-08 20:51 - 2014-11-18 04:52 - 00005122 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\contributors.txt
2015-01-08 20:51 - 2014-11-18 04:52 - 00003819 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\proxy.php
2015-01-08 20:51 - 2014-11-18 04:52 - 00003342 ____N () C:\Documents and Settings\Miljan Ilic\Desktop\agreement.txt
2015-01-08 20:41 - 2015-01-08 20:43 - 20447072 _____ (Malwarebytes Corporation ) C:\Documents and Settings\Miljan Ilic\Desktop\mbam-setup-2.0.4.1028.exe
2015-01-08 20:35 - 2015-01-08 20:37 - 02692229 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\smf_2-1_beta1_install.zip
2015-01-08 12:43 - 2015-01-07 20:03 - 01115648 _____ (Farbar) C:\Documents and Settings\Miljan Ilic\Desktop\FRST.exe
2015-01-08 12:29 - 2015-01-08 12:30 - 00000210 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\Cenovnik.txt
2015-01-08 12:00 - 2015-01-08 14:24 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Desktop\BGHoster GameHosting Template by Djoxi
2015-01-08 11:59 - 2015-01-08 11:59 - 02953916 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\gbhoster.rar
2015-01-08 11:46 - 2015-01-08 11:50 - 00003204 _____ () C:\windows\setupapi.log
2015-01-08 11:46 - 2015-01-08 11:46 - 00019984 _____ () C:\windows\system32\Drivers\EsgScanner.sys
2015-01-08 11:19 - 2015-01-08 11:19 - 00000377 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\Game Hosting Files.lnk
2015-01-08 11:17 - 2015-01-08 11:17 - 00000339 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\cPanel.lnk
2015-01-08 11:14 - 2015-01-08 11:14 - 00000428 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\Pawno.exe.lnk
2015-01-08 11:12 - 2015-01-08 11:12 - 00000339 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\Muzika.lnk
2015-01-08 10:24 - 2015-01-08 10:34 - 00000000 ____D () C:\AdwCleaner
2015-01-07 21:16 - 2015-01-08 21:59 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2015-01-07 21:15 - 2015-01-09 10:04 - 00114904 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-07 21:15 - 2015-01-07 21:52 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable)
2015-01-07 21:13 - 2014-11-21 06:14 - 00054360 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2015-01-07 21:10 - 2015-01-07 21:10 - 00000008 __RSH () C:\Documents and Settings\All Users\ntuser.pol
2015-01-07 19:59 - 2015-01-07 19:59 - 00024877 _____ () C:\ComboFix.txt
2015-01-07 19:59 - 2015-01-07 19:59 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\temp
2015-01-07 19:59 - 2015-01-07 19:59 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\temp
2015-01-07 19:48 - 2015-01-09 16:32 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\temp
2015-01-07 13:29 - 2015-01-07 19:49 - 00008192 ____H () C:\windows\system32\config\SECURITY.tmp.LOG
2015-01-07 13:29 - 2015-01-07 13:29 - 00000000 ____H () C:\windows\system32\config\system.tmp.LOG
2015-01-07 13:29 - 2015-01-07 13:29 - 00000000 ____H () C:\windows\system32\config\software.tmp.LOG
2015-01-07 13:29 - 2015-01-07 13:29 - 00000000 ____H () C:\windows\system32\config\SAM.tmp.LOG
2015-01-07 13:29 - 2015-01-07 13:29 - 00000000 ____H () C:\windows\system32\config\default.tmp.LOG
2015-01-07 12:52 - 2015-01-07 19:59 - 00000000 ____D () C:\Qoobox
2015-01-07 12:14 - 2011-06-26 07:45 - 00256000 _____ () C:\windows\PEV.exe
2015-01-07 12:14 - 2010-11-07 18:20 - 00208896 _____ () C:\windows\MBR.exe
2015-01-07 12:14 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\windows\NIRCMD.exe
2015-01-07 12:14 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\windows\SWREG.exe
2015-01-07 12:14 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\windows\SWSC.exe
2015-01-07 12:14 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\windows\SWXCACLS.exe
2015-01-07 12:14 - 2000-08-31 01:00 - 00098816 _____ () C:\windows\sed.exe
2015-01-07 12:14 - 2000-08-31 01:00 - 00080412 _____ () C:\windows\grep.exe
2015-01-07 12:14 - 2000-08-31 01:00 - 00068096 _____ () C:\windows\zip.exe
2015-01-07 12:13 - 2015-01-07 19:48 - 00000000 ____D () C:\windows\erdnt
2015-01-07 11:26 - 2015-01-07 11:26 - 00001279 _____ () C:\Radio.amx
2015-01-07 10:17 - 2015-01-07 10:17 - 00000000 __HDC () C:\windows\$NtUninstallWdf01005$
2015-01-07 10:17 - 2015-01-07 10:17 - 00000000 ____H () C:\windows\system32\Drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2015-01-07 10:17 - 2015-01-07 10:17 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_ssadadb_01005.Wdf
2015-01-07 10:17 - 2006-10-08 21:51 - 00023856 _____ (Microsoft Corporation) C:\windows\system32\spupdsvc.exe
2015-01-07 10:17 - 2006-10-08 21:51 - 00014640 ____N (Microsoft Corporation) C:\windows\system32\spmsg.dll
2015-01-07 10:12 - 2015-01-07 10:17 - 00007845 _____ () C:\windows\Wdf01005Inst.log
2015-01-07 02:10 - 2015-01-09 16:32 - 00000000 ____D () C:\FRST
2015-01-07 01:29 - 2015-01-07 11:55 - 00000000 ____D () C:\Program Files\AVG Web TuneUp
2015-01-07 01:23 - 2015-01-07 01:24 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\Avg_Update_1014av
2015-01-07 01:23 - 2015-01-07 01:23 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Avg_Update_1014av
2015-01-06 16:34 - 2013-12-26 06:41 - 00184248 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\windows\system32\Drivers\ssudmdm.sys
2015-01-06 16:34 - 2013-12-26 06:41 - 00088632 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\windows\system32\Drivers\ssudbus.sys
2015-01-06 16:30 - 2013-12-26 06:41 - 01418432 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01005.dll
2015-01-06 16:30 - 2013-12-26 06:41 - 01418432 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdfCoInstaller01005.dll
2015-01-06 16:30 - 2013-12-26 06:41 - 00153672 _____ (MCCI Corporation) C:\windows\system32\Drivers\ssadmdm.sys
2015-01-06 16:30 - 2013-12-26 06:41 - 00136904 _____ (MCCI Corporation) C:\windows\system32\Drivers\ssadbus.sys
2015-01-06 16:30 - 2013-12-26 06:41 - 00130248 _____ (MCCI Corporation) C:\windows\system32\Drivers\ssadserd.sys
2015-01-06 16:30 - 2013-12-26 06:41 - 00032064 _____ (Google Inc) C:\windows\system32\Drivers\ssadadb.sys
2015-01-06 16:30 - 2013-12-26 06:41 - 00017864 _____ (MCCI Corporation) C:\windows\system32\Drivers\ssadmdfl.sys
2015-01-06 16:30 - 2013-12-26 06:41 - 00015560 _____ (MCCI Corporation) C:\windows\system32\Drivers\ssadcmnt.sys
2015-01-06 16:30 - 2013-12-26 06:41 - 00015560 _____ (MCCI Corporation) C:\windows\system32\Drivers\ssadcm.sys
2015-01-06 16:30 - 2013-12-26 06:41 - 00015304 _____ (MCCI Corporation) C:\windows\system32\Drivers\ssadwhnt.sys
2015-01-06 16:30 - 2013-12-26 06:41 - 00015304 _____ (MCCI Corporation) C:\windows\system32\Drivers\ssadwh.sys
2015-01-06 12:11 - 2015-01-06 12:13 - 00000000 ____D () C:\Program Files\PhotoZoom Pro 5
2015-01-06 12:11 - 2015-01-06 12:11 - 00000768 _____ () C:\Documents and Settings\All Users\Desktop\PhotoZoom Pro 5.lnk
2015-01-03 21:52 - 2015-01-03 22:05 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\.zenmap
2015-01-03 21:50 - 2015-01-08 10:40 - 00000000 ____D () C:\Program Files\Nmap
2015-01-03 20:32 - 2015-01-03 20:35 - 00000000 ____D () C:\My Web Sites
2015-01-03 19:52 - 2015-01-03 19:52 - 00000000 ____D () C:\Program Files\Common Files\Java
2015-01-03 19:52 - 2015-01-03 19:52 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Sun
2015-01-03 19:51 - 2015-01-03 19:51 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\Oracle
2015-01-03 19:50 - 2015-01-03 19:50 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Sun
2015-01-03 19:50 - 2015-01-03 19:49 - 00146432 _____ (Oracle Corporation) C:\windows\system32\javacpl.cpl
2015-01-03 19:50 - 2015-01-03 19:49 - 00096680 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2015-01-03 19:49 - 2015-01-03 19:50 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java
2015-01-03 19:48 - 2015-01-03 19:51 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Oracle
2015-01-03 19:48 - 2015-01-03 19:48 - 00000000 ____D () C:\Program Files\Java
2015-01-03 19:46 - 2015-01-03 19:46 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\Sun
2015-01-03 19:43 - 2015-01-03 19:43 - 00000000 ____D () C:\Program Files\DirBuster
2015-01-03 19:43 - 2015-01-03 19:43 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\DirBuster
2015-01-03 12:42 - 2015-01-03 12:42 - 00000104 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\Shortcut to Internet.lnk
2015-01-02 22:31 - 2015-01-03 16:04 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Kometa
2015-01-02 22:27 - 2015-01-02 22:27 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Вoйти в Интeрнет 2inf.net
2015-01-02 22:21 - 2015-01-07 21:06 - 00000000 ____D () C:\windows\system32\GroupPolicy
2015-01-02 22:20 - 2015-01-02 22:20 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Поиcк в Интeрнете
2015-01-02 22:18 - 2015-01-08 22:50 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\SystemDir
2015-01-02 13:26 - 2015-01-09 15:59 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\PawnPlus
2015-01-02 13:26 - 2015-01-09 15:56 - 00000000 ____D () C:\Program Files\PawnPlus
2015-01-02 13:26 - 2015-01-02 13:26 - 00000682 _____ () C:\Documents and Settings\Miljan Ilic\Desktop\PawnPlus.lnk
2015-01-02 13:26 - 2015-01-02 13:26 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\PawnPlus
2015-01-02 13:26 - 2015-01-02 13:26 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\PawnPlus
2014-12-31 17:57 - 2014-12-31 17:57 - 00000000 ____D () C:\Program Files\AC3Filter
2014-12-31 17:57 - 2014-12-31 17:57 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AC3Filter
2014-12-31 17:57 - 2013-04-05 21:26 - 01679360 _____ () C:\windows\system32\ac3filter.acm
2014-12-31 17:51 - 2014-12-31 17:51 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\GRETECH
2014-12-31 17:50 - 2014-12-31 17:50 - 00000856 _____ () C:\Documents and Settings\Miljan Ilic\Start Menu\GOM Player.lnk
2014-12-31 17:50 - 2014-12-31 17:50 - 00000000 ____D () C:\Program Files\GRETECH
2014-12-31 17:50 - 2014-12-31 17:50 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\GRETECH
2014-12-31 17:50 - 2014-12-31 17:50 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\GOM Player
2014-12-28 14:23 - 2014-12-28 14:23 - 00000000 ____D () C:\Internet
2014-12-28 14:21 - 2014-12-28 14:21 - 00000000 ____D () C:\Program Files\Offline Downloader
2014-12-28 14:21 - 2014-12-28 14:21 - 00000000 ____D () C:\install
2014-12-28 14:21 - 2014-12-28 14:21 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Offline Downloader
2014-12-28 14:15 - 2015-01-07 01:08 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\TempImg
2014-12-27 20:54 - 2014-12-27 20:53 - 00090112 _____ () C:\windows\Minidump\Mini122714-01.dmp
2014-12-27 13:36 - 2015-01-04 20:12 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\TS3Client
2014-12-27 13:36 - 2014-12-27 13:36 - 00000837 _____ () C:\Documents and Settings\All Users\Desktop\TeamSpeak 3 Client.lnk
2014-12-27 13:36 - 2014-12-27 13:36 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-12-27 13:36 - 2014-12-27 13:36 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\TeamSpeak 3 Client
2014-12-26 21:36 - 2014-12-26 22:51 - 00003216 _____ () C:\serverporuke.amx
2014-12-26 18:25 - 2014-12-26 18:25 - 00000000 ___HD () C:\windows\PIF
2014-12-26 17:51 - 2014-12-27 17:56 - 00001456 _____ () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Adobe Save for Web 13.0 Prefs
2014-12-26 16:39 - 2014-12-26 17:41 - 00000132 _____ () C:\Documents and Settings\Miljan Ilic\Application Data\Adobe PNG Format CS6 Prefs
2014-12-26 16:06 - 2014-12-26 16:06 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\NVIDIA
2014-12-26 16:02 - 2014-12-26 16:02 - 00000854 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Photoshop CS6.lnk
2014-12-26 16:02 - 2014-12-26 16:02 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\regid.1986-12.com.adobe
2014-12-26 16:01 - 2014-12-26 16:01 - 00000816 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Bridge CS6.lnk
2014-12-26 15:59 - 2014-12-26 16:01 - 00000000 ____D () C:\Program Files\Adobe
2014-12-26 15:59 - 2014-12-26 15:59 - 00001144 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
2014-12-26 15:59 - 2014-12-26 15:59 - 00001000 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Extension Manager CS6.lnk
2014-12-25 22:10 - 2014-12-25 22:10 - 00002765 _____ () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\recently-used.xbel
2014-12-25 21:36 - 2014-12-25 22:10 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\gtk-2.0
2014-12-25 21:36 - 2014-12-25 21:36 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\.thumbnails
2014-12-25 21:33 - 2014-12-27 20:57 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\.gimp-2.8
2014-12-25 21:33 - 2014-12-25 21:33 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\gegl-0.2
2014-12-25 21:33 - 2014-12-25 21:33 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\fontconfig
2014-12-25 21:27 - 2015-01-08 10:40 - 00000000 ____D () C:\Program Files\GIMP 2
2014-12-25 18:31 - 2014-12-26 17:12 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Adobe
2014-12-25 18:31 - 2014-12-26 16:00 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-12-25 18:31 - 2014-12-25 18:31 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\Macromedia
2014-12-25 18:30 - 2014-12-26 17:51 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\Adobe
2014-12-24 23:19 - 2014-12-24 23:19 - 00000000 ____D () C:\New folder
2014-12-24 22:40 - 2015-01-07 19:35 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\Skype
2014-12-24 22:40 - 2015-01-07 16:24 - 00002267 _____ () C:\Documents and Settings\All Users\Desktop\Skype.lnk
2014-12-24 22:40 - 2014-12-24 22:40 - 00000000 ___RD () C:\Program Files\Skype
2014-12-24 22:40 - 2014-12-24 22:40 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-12-24 22:40 - 2014-12-24 22:40 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Skype
2014-12-24 22:40 - 2014-12-24 22:40 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Skype
2014-12-24 22:39 - 2014-12-24 22:40 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2014-12-24 22:34 - 2008-04-14 00:16 - 00010880 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ndisip.sys
2014-12-24 22:34 - 2008-04-14 00:16 - 00010880 _____ (Microsoft Corporation) C:\windows\system32\Drivers\NdisIP.sys
2014-12-24 22:34 - 2008-04-14 00:09 - 00005504 ____C (Microsoft Corporation) C:\windows\system32\dllcache\mstee.sys
2014-12-24 22:34 - 2008-04-14 00:09 - 00005504 _____ (Microsoft Corporation) C:\windows\system32\Drivers\MSTEE.sys
2014-12-24 22:33 - 2008-04-14 05:42 - 00091136 ____C (Microsoft Corporation) C:\windows\system32\dllcache\kswdmcap.ax
2014-12-24 22:33 - 2008-04-14 05:42 - 00091136 _____ (Microsoft Corporation) C:\windows\system32\kswdmcap.ax
2014-12-24 22:33 - 2008-04-14 05:42 - 00061952 ____C (Microsoft Corporation) C:\windows\system32\dllcache\kstvtune.ax
2014-12-24 22:33 - 2008-04-14 05:42 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\kstvtune.ax
2014-12-24 22:33 - 2008-04-14 05:42 - 00053760 ____C (Microsoft Corporation) C:\windows\system32\dllcache\vfwwdm32.dll
2014-12-24 22:33 - 2008-04-14 05:42 - 00053760 _____ (Microsoft Corporation) C:\windows\system32\vfwwdm32.dll
2014-12-24 22:33 - 2008-04-14 05:42 - 00043008 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ksxbar.ax
2014-12-24 22:33 - 2008-04-14 05:42 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\ksxbar.ax
2014-12-24 22:33 - 2008-04-14 05:42 - 00028672 ____C (Microsoft Corporation) C:\windows\system32\dllcache\vidcap.ax
2014-12-24 22:33 - 2008-04-14 05:42 - 00028672 _____ (Microsoft Corporation) C:\windows\system32\vidcap.ax
2014-12-24 22:33 - 2008-04-14 05:42 - 00020992 ____C (Microsoft Corporation) C:\windows\system32\dllcache\dshowext.ax
2014-12-24 22:33 - 2008-04-14 05:42 - 00020992 _____ (Microsoft Corporation) C:\windows\system32\dshowext.ax
2014-12-24 22:33 - 2008-04-14 05:42 - 00016384 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ipsink.ax
2014-12-24 22:33 - 2008-04-14 05:42 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ipsink.ax
2014-12-24 22:33 - 2008-04-14 00:16 - 00121984 ____C (Microsoft Corporation) C:\windows\system32\dllcache\usbvideo.sys
2014-12-24 22:33 - 2008-04-14 00:16 - 00121984 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2014-12-24 22:33 - 2008-04-14 00:16 - 00085248 ____C (Microsoft Corporation) C:\windows\system32\dllcache\nabtsfec.sys
2014-12-24 22:33 - 2008-04-14 00:16 - 00085248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\NABTSFEC.sys
2014-12-24 22:33 - 2008-04-14 00:16 - 00019200 ____C (Microsoft Corporation) C:\windows\system32\dllcache\wstcodec.sys
2014-12-24 22:33 - 2008-04-14 00:16 - 00019200 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WSTCODEC.SYS
2014-12-24 22:33 - 2008-04-14 00:16 - 00017024 ____C (Microsoft Corporation) C:\windows\system32\dllcache\ccdecode.sys
2014-12-24 22:33 - 2008-04-14 00:16 - 00017024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\CCDECODE.sys
2014-12-24 22:33 - 2008-04-14 00:16 - 00015232 ____C (Microsoft Corporation) C:\windows\system32\dllcache\streamip.sys
2014-12-24 22:33 - 2008-04-14 00:16 - 00015232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\StreamIP.sys
2014-12-24 22:33 - 2008-04-14 00:16 - 00011136 ____C (Microsoft Corporation) C:\windows\system32\dllcache\slip.sys
2014-12-24 22:33 - 2008-04-14 00:16 - 00011136 _____ (Microsoft Corporation) C:\windows\system32\Drivers\SLIP.sys
2014-12-24 22:33 - 2008-04-14 00:15 - 00060032 ____C (Microsoft Corporation) C:\windows\system32\dllcache\usbaudio.sys
2014-12-24 22:33 - 2008-04-14 00:15 - 00060032 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBAUDIO.sys
2014-12-24 16:16 - 2014-12-24 16:16 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Lightshot
2014-12-24 14:54 - 2015-01-08 22:51 - 00000000 ____D () C:\Program Files\Steam
2014-12-24 14:54 - 2014-12-24 14:54 - 00000638 _____ () C:\Documents and Settings\All Users\Desktop\Steam.lnk
2014-12-24 14:54 - 2014-12-24 14:54 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Steam
2014-12-21 16:27 - 2014-12-21 16:38 - 00000600 _____ () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\PUTTY.RND
2014-12-18 20:51 - 2015-01-08 10:39 - 00000000 ____D () C:\Program Files\Counter-Strike v42
2014-12-17 20:57 - 2015-01-07 21:07 - 00000000 ____D () C:\Program Files\TeamViewer
2014-12-17 20:57 - 2014-12-21 11:38 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\TeamViewer
2014-12-17 20:57 - 2014-12-17 20:57 - 00000706 _____ () C:\Documents and Settings\All Users\Desktop\TeamViewer 10.lnk
2014-12-17 20:57 - 2014-12-17 20:57 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\TeamViewer 10
2014-12-13 13:12 - 2015-01-08 10:18 - 00000000 ___RD () C:\Documents and Settings\Miljan Ilic\My Documents\Dropbox
2014-12-13 13:10 - 2014-12-13 13:10 - 00000000 ____D () C:\Program Files\Dropbox
2014-12-13 13:10 - 2014-12-13 13:10 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Dropbox
2014-12-13 13:05 - 2015-01-08 10:18 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\Dropbox
2014-12-11 16:48 - 2014-12-11 16:48 - 00000040 _____ () C:\Autoconfig.ini
2014-12-11 16:47 - 2013-06-01 06:13 - 01571160 ____N () C:\windows\TotalUninstaller.exe
2014-12-11 16:47 - 2013-05-10 10:48 - 00162136 _____ () C:\windows\system32\spe__ci.exe
2014-12-11 16:47 - 2012-11-17 09:29 - 00000363 _____ () C:\windows\system32\spe__l.smt
2014-12-11 16:47 - 2011-04-11 06:26 - 00024064 _____ () C:\windows\system32\spe__l.dll
2014-12-11 16:47 - 2010-10-20 09:49 - 00065536 _____ (SS) C:\windows\system32\spe__ci.dll
2014-12-11 16:40 - 2008-04-14 00:17 - 00025856 ____C (Microsoft Corporation) C:\windows\system32\dllcache\usbprint.sys
2014-12-11 16:40 - 2008-04-14 00:17 - 00025856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbprint.sys
2014-12-11 16:38 - 2015-01-06 16:23 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Samsung
2014-12-11 16:37 - 2014-12-11 16:48 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Samsung Printers
2014-12-11 16:37 - 2014-12-11 16:37 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\Samsung
2014-12-11 16:35 - 2014-12-11 16:35 - 00000000 ____D () C:\Program Files\Common Files\Common Desktop Agent
2014-12-11 16:33 - 2015-01-06 16:29 - 00000000 ____D () C:\Program Files\Samsung

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-09 16:26 - 2014-11-23 12:23 - 00000830 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-01-09 16:23 - 2014-11-23 14:11 - 00000600 _____ () C:\Documents and Settings\Miljan Ilic\Application Data\winscp.rnd
2015-01-09 15:26 - 2014-11-21 21:36 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2015-01-09 14:17 - 2014-11-23 12:31 - 00000386 _____ () C:\windows\Tasks\Opera scheduled Autoupdate 1416742248.job
2015-01-09 13:28 - 2014-11-21 21:38 - 00000211 _____ () C:\windows\wiadebug.log
2015-01-09 11:26 - 2014-11-21 20:59 - 00032632 _____ () C:\windows\SchedLgU.Txt
2015-01-09 10:39 - 2014-11-21 20:50 - 00027230 _____ () C:\windows\wmsetup.log
2015-01-09 10:07 - 2014-11-21 20:53 - 00333592 _____ () C:\windows\WindowsUpdate.log
2015-01-09 10:01 - 2014-11-23 12:30 - 00000000 ____D () C:\Program Files\Opera
2015-01-09 10:01 - 2014-11-21 21:38 - 00000048 _____ () C:\windows\wiaservc.log
2015-01-09 10:01 - 2014-11-21 20:59 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-01-09 00:25 - 2014-11-21 21:01 - 00000178 ___SH () C:\Documents and Settings\Miljan Ilic\ntuser.ini
2015-01-08 13:59 - 2014-11-25 18:39 - 00000754 _____ () C:\windows\WORDPAD.INI
2015-01-08 10:41 - 2014-11-21 22:18 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NVIDIA
2015-01-08 10:41 - 2014-11-21 22:12 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-08 10:33 - 2014-12-04 14:48 - 00000000 ____D () C:\windows\pss
2015-01-08 10:33 - 2008-04-14 13:00 - 00000552 _____ () C:\windows\win.ini
2015-01-08 10:33 - 2008-04-14 13:00 - 00000257 _____ () C:\windows\system.ini
2015-01-07 19:49 - 2014-11-21 21:34 - 00057344 _____ () C:\windows\system32\config\SECURITY.bak
2015-01-07 19:49 - 2014-11-21 21:34 - 00028672 _____ () C:\windows\system32\config\SAM.bak
2015-01-07 19:49 - 2014-11-21 21:33 - 26476544 _____ () C:\windows\system32\config\software.bak
2015-01-07 19:49 - 2014-11-21 21:33 - 04980736 _____ () C:\windows\system32\config\system.bak
2015-01-07 19:49 - 2014-11-21 21:33 - 00397312 _____ () C:\windows\system32\config\default.bak
2015-01-07 13:49 - 2014-11-21 20:59 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2015-01-07 10:17 - 2014-11-21 21:35 - 00056533 _____ () C:\windows\iis6.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00018615 _____ () C:\windows\ocgen.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00017954 _____ () C:\windows\comsetup.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00017720 _____ () C:\windows\FaxSetup.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00013623 _____ () C:\windows\tsoc.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00012226 _____ () C:\windows\msmqinst.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00009218 _____ () C:\windows\ntdtcsetup.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00003873 _____ () C:\windows\netfxocm.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00001912 _____ () C:\windows\MedCtrOC.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00001563 _____ () C:\windows\tabletoc.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00001355 _____ () C:\windows\imsins.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00001227 _____ () C:\windows\ocmsn.log
2015-01-07 10:17 - 2014-11-21 21:35 - 00001180 _____ () C:\windows\msgsocm.log
2015-01-07 01:08 - 2014-12-02 15:39 - 00000000 ____D () C:\Program Files\Power Sound Editor Free
2015-01-06 21:50 - 2014-12-02 15:39 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\Power Sound Editor Free
2015-01-06 14:41 - 2014-11-28 14:57 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Application Data\uTorrent
2015-01-06 12:11 - 2014-11-21 20:47 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
2015-01-04 19:50 - 2014-11-28 18:18 - 00191488 ___SH () C:\Documents and Settings\Miljan Ilic\My Documents\Thumbs.db
2015-01-03 21:52 - 2014-11-21 21:01 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic
2015-01-02 20:13 - 2014-11-23 16:17 - 00000000 ____D () C:\windows\Microsoft.NET
2015-01-02 18:06 - 2014-11-21 21:35 - 00539546 _____ () C:\windows\system32\PerfStringBackup.INI
2014-12-31 09:16 - 2008-04-14 13:00 - 00002206 _____ () C:\windows\system32\wpa.dbl
2014-12-27 20:54 - 2014-12-04 04:33 - 00000000 ____D () C:\windows\Minidump
2014-12-27 19:40 - 2014-11-21 21:34 - 03617088 _____ () C:\windows\system32\FNTCACHE.DAT
2014-12-27 16:23 - 2014-11-21 21:45 - 00069648 _____ () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-12-27 15:18 - 2014-11-22 13:32 - 00000000 ____D () C:\Program Files\WinSCP
2014-12-26 18:00 - 2014-11-23 12:22 - 00000000 ____D () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Adobe
2014-12-24 16:16 - 2014-12-01 20:30 - 00000413 _____ () C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\UserProducts.xml
2014-12-24 16:15 - 2014-12-01 20:29 - 00000000 ____D () C:\Program Files\Skillbrains

Some content of TEMP:
====================
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\7za.exe
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpcvpqcj.dll
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\hijackthis.exe
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\NirCmd.exe
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\PEVZ.EXE
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\Quarantine.exe
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\remove.exe
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\sed.exe
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\shortcut.exe
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\sqlite3.dll
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\swreg.exe
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\swxcacls.exe
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\Uninstall.exe
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\wget.exe
C:\Documents and Settings\Miljan Ilic\Local Settings\temp\zoek-delete.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

Zoek-Results.txt


Zoek.exe v5.0.0.0 Updated 09-January-2015
Tool run by Miljan Ilic on pet 09.01.2015 at 16:23:31,93.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Miljan Ilic\Desktop\zoek.exe [Scan all users] [Checkboxes used]

==== System Restore Info ======================

1/9/2015 4:25:22 PM Zoek.exe System Restore Point Created Succesfully.

==== Files Recently Created / Modified ======================

====== C:\windows ====
2015-01-07 11:14:59 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\windows\PEV.exe
2015-01-07 11:14:59 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\windows\grep.exe
2015-01-07 11:14:59 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\windows\zip.exe
2015-01-07 11:14:59 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\windows\SWSC.exe
2015-01-07 11:14:59 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\windows\MBR.exe
2014-12-11 15:47:22 A359924461317E87EB5DC85FEAF10C53 1571160 ------w- C:\windows\TotalUninstaller.exe
2014-12-11 15:47:22 1C27CEECA7EAECC2A74C3D9D9DF68CA6 26694 ------w- C:\windows\uninstall.ico
====== C:\DOCUME~1\MILJAN~1\LOCALS~1\Temp ====
2015-01-08 10:46:41 01CE484FF6D70A39479BC6D619DE7ED6 19984 ----a-w- C:\Documents and Settings\Miljan Ilic\Local Settings\temp\EsgScanner.sys
2015-01-08 09:38:28 4FE87910C995BBC88C5DC07F57D58D0F 201921 ----a-w- C:\Documents and Settings\Miljan Ilic\Local Settings\temp\Uninstall.exe
2015-01-08 09:17:44 97511FE2CA09CC2E06C3CD6519C3494E 43008 ----a-w- C:\Documents and Settings\Miljan Ilic\Local Settings\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpcvpqcj.dll
====== Java Cache =====
====== C:\windows\system32 =====
2015-01-07 09:17:23 33E0C59138483D08A111B8B8CF94A18C 14640 ------w- C:\windows\System32\spmsg.dll
2015-01-07 09:17:16 757D76B67819CCC54D7799F05C9FA8F7 23856 ----a-w- C:\windows\System32\spupdsvc.exe
2015-01-06 15:30:13 FE6668E25B71ABC06C04B4CA2B3B9C9C 1418432 ----a-w- C:\windows\System32\WdfCoInstaller01005.dll
2015-01-03 18:50:36 AF055C8537B32EA3A8FA5EA8AEB76621 146432 ----a-w- C:\windows\System32\javacpl.cpl
2015-01-03 18:50:36 742BD1F196FEFC94A6379BA039D3CD00 96680 ----a-w- C:\windows\System32\WindowsAccessBridge.dll
2014-12-31 16:57:37 9ED755BD9B8E154749E7EFC237214B39 1679360 ----a-w- C:\windows\System32\ac3filter.acm
====== C:\windows\system32\drivers =====
2015-01-08 20:59:29 A3F4391DFDF2F9E9FE4EAD193265A5AD 23256 ----a-w- C:\windows\System32\drivers\mbam.sys
2015-01-08 10:46:41 01CE484FF6D70A39479BC6D619DE7ED6 19984 ----a-w- C:\windows\System32\drivers\EsgScanner.sys
2015-01-07 20:15:03 8E2E9CCD873ABF180F48BCAEEEBE347D 114904 ----a-w- C:\windows\System32\drivers\MBAMSwissArmy.sys
2015-01-07 20:13:45 FFB32E70D735146F5630DC7A96B6E1A8 54360 ----a-w- C:\windows\System32\drivers\mbamchameleon.sys
2015-01-07 09:17:57 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\windows\System32\drivers\Msft_Kernel_ssadadb_01005.Wdf
2015-01-07 09:17:55 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\windows\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2015-01-06 15:34:59 9359AB8BEA059222742345ED63147222 184248 ----a-w- C:\windows\System32\drivers\ssudmdm.sys
2015-01-06 15:34:53 50D5624BB26AF7EAE92EF95F3C6E3CE7 88632 ----a-w- C:\windows\System32\drivers\ssudbus.sys
2015-01-06 15:30:25 9EFD9F42795C9E90206C1E9A9B25E8D3 130248 ----a-w- C:\windows\System32\drivers\ssadserd.sys
2015-01-06 15:30:14 5BCB68F7B62159C07789D3F405750623 17864 ----a-w- C:\windows\System32\drivers\ssadmdfl.sys
2015-01-06 15:30:14 370168F1FD1CEF45DA470A44439426CA 15560 ----a-w- C:\windows\System32\drivers\ssadcmnt.sys
2015-01-06 15:30:14 370168F1FD1CEF45DA470A44439426CA 15560 ----a-w- C:\windows\System32\drivers\ssadcm.sys
2015-01-06 15:30:14 1588A89F9CD9E68DE9FCC9F60FDB5C08 153672 ----a-w- C:\windows\System32\drivers\ssadmdm.sys
2015-01-06 15:30:13 FE6668E25B71ABC06C04B4CA2B3B9C9C 1418432 ----a-w- C:\windows\System32\drivers\WdfCoInstaller01005.dll
2015-01-06 15:30:13 2F8616646215EEDB28C2E40994DB8E38 32064 ----a-w- C:\windows\System32\drivers\ssadadb.sys
2015-01-06 15:30:12 BB6EDB0257860083193CC1581AC7D485 136904 ----a-w- C:\windows\System32\drivers\ssadbus.sys
2015-01-06 15:30:12 88BBDA3D977429C6DAB0991EC5339A19 15304 ----a-w- C:\windows\System32\drivers\ssadwhnt.sys
2015-01-06 15:30:12 88BBDA3D977429C6DAB0991EC5339A19 15304 ----a-w- C:\windows\System32\drivers\ssadwh.sys
2014-12-24 21:34:08 E53736A9E30C45FA9E7B5EAC55056D1D 5504 ----a-w- C:\windows\System32\drivers\MSTEE.sys
2014-12-24 21:34:00 7FF1F1FD8609C149AA432F95A8163D97 10880 ----a-w- C:\windows\System32\drivers\NdisIP.sys
2014-12-24 21:33:57 77813007BA6265C4B6098187E6ED79D2 15232 ----a-w- C:\windows\System32\drivers\StreamIP.sys
2014-12-24 21:33:54 866D538EBE33709A5C9F5C62B73B7D14 11136 ----a-w- C:\windows\System32\drivers\SLIP.sys
2014-12-24 21:33:51 C98B39829C2BBD34E454150633C62C78 19200 ----a-w- C:\windows\System32\drivers\WSTCODEC.SYS
2014-12-24 21:33:47 5B50F1B2A2ED47D560577B221DA734DB 85248 ----a-w- C:\windows\System32\drivers\NABTSFEC.sys
2014-12-24 21:33:42 0BE5AEF125BE881C4F854C554F2B025C 17024 ----a-w- C:\windows\System32\drivers\CCDECODE.sys
2014-12-24 21:33:26 E919708DB44ED8543A7C017953148330 60032 ----a-w- C:\windows\System32\drivers\USBAUDIO.sys
2014-12-24 21:33:08 63BBFCA7F390F4C49ED4B96BFB1633E0 121984 ----a-w- C:\windows\System32\drivers\usbvideo.sys
2014-12-11 15:40:11 A717C8721046828520C9EDF31288FC00 25856 ----a-w- C:\windows\System32\drivers\usbprint.sys
====== C:\windows\Tasks ======
====== C:\windows\Temp ======
======= C:\Program Files =====
2015-01-07 00:29:04 -------- d-----w- C:\Program Files\AVG Web TuneUp
2015-01-06 11:11:54 -------- d-----w- C:\Program Files\PhotoZoom Pro 5
2015-01-03 20:50:15 -------- d-----w- C:\Program Files\Nmap
2015-01-03 18:52:21 -------- d-----w- C:\Program Files\Common Files\Java
2015-01-03 18:48:29 -------- d-----w- C:\Program Files\Java
2015-01-03 18:43:13 -------- d-----w- C:\Program Files\DirBuster
2015-01-02 12:26:21 -------- d-----w- C:\Program Files\PawnPlus
2014-12-31 16:57:36 -------- d-----w- C:\Program Files\AC3Filter
2014-12-31 16:50:17 -------- d-----w- C:\Program Files\GRETECH
2014-12-28 13:21:46 -------- d-----w- C:\Program Files\Offline Downloader
2014-12-27 12:36:16 -------- d-----w- C:\Program Files\TeamSpeak 3 Client
2014-12-26 14:59:24 -------- d-----w- C:\Program Files\Adobe
2014-12-25 20:27:30 -------- d-----w- C:\Program Files\GIMP 2
2014-12-25 17:31:05 -------- d-----w- C:\Program Files\Common Files\Adobe
2014-12-24 21:40:19 -------- d-----w- C:\Program Files\Common Files\Skype
2014-12-24 21:40:15 -------- d-----r- C:\Program Files\Skype
2014-12-24 13:54:43 -------- d-----w- C:\Program Files\Steam
2014-12-18 19:51:15 -------- d-----w- C:\Program Files\Counter-Strike v42
2014-12-17 19:57:04 -------- d-----w- C:\Program Files\TeamViewer
2014-12-13 12:10:35 -------- d-----w- C:\Program Files\Dropbox
2014-12-11 15:35:57 -------- d-----w- C:\Program Files\Common Files\Common Desktop Agent
2014-12-11 15:33:46 -------- d-----w- C:\Program Files\Samsung
======= C: =====
2015-01-07 10:26:19 AD83AC8D1EAE18550763393AEE06710C 1279 ----a-w- C:\Radio.amx
2014-12-26 20:36:49 49086BC38A8AE43E98043A88D4FB7B2E 3216 ----a-w- C:\serverporuke.amx
2014-12-11 15:48:38 039D48A909C16A0AFFF4F2191B100B34 40 ----a-w- C:\Autoconfig.ini
====== C:\Documents and Settings\Miljan Ilic\Application Data ======
2015-01-03 18:51:14 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Application Data\Oracle
2015-01-03 18:50:54 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Sun
2015-01-03 18:46:25 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Application Data\Sun
2015-01-03 18:43:16 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\DirBuster
2015-01-02 21:31:25 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Kometa
2015-01-02 21:27:14 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\?o??? ? ???e???? 2inf.net
2015-01-02 21:20:36 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\???c? ? ???e?????
2015-01-02 21:18:19 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\SystemDir
2015-01-02 12:26:39 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\PawnPlus
2015-01-02 12:26:21 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\PawnPlus
2015-01-02 12:26:21 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Application Data\PawnPlus
2014-12-31 16:50:28 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Application Data\GRETECH
2014-12-28 13:21:49 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Offline Downloader
2014-12-27 12:36:35 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Application Data\TS3Client
2014-12-26 16:51:51 1BBDA0E4F8AFB975E63313FF4425B005 1456 ----a-w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Adobe Save for Web 13.0 Prefs
2014-12-26 15:39:28 71F94CBFFB92DE2F5F690BAF37A9CD6F 132 ----a-w- C:\Documents and Settings\Miljan Ilic\Application Data\Adobe PNG Format CS6 Prefs
2014-12-26 15:06:31 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Application Data\NVIDIA
2014-12-25 21:10:19 0ECCB46F4B1DF35778465CD6A77FF2CD 2765 ----a-w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\recently-used.xbel
2014-12-25 20:36:37 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\gtk-2.0
2014-12-25 20:33:58 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\fontconfig
2014-12-25 20:33:47 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\gegl-0.2
2014-12-25 17:30:52 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Application Data\Adobe
2014-12-24 21:40:52 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Skype
2014-12-24 21:40:42 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Application Data\Skype
2014-12-21 15:27:57 CFE83B91F5021861552E98A2431C3532 600 ----a-w- C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\PUTTY.RND
2014-12-17 19:57:42 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Application Data\TeamViewer
2014-12-13 12:10:08 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Dropbox
2014-12-13 12:05:45 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Application Data\Dropbox
2014-12-11 15:37:32 -------- d-----w- C:\Documents and Settings\Miljan Ilic\Application Data\Samsung
====== C:\Documents and Settings\Miljan Ilic ======
2015-01-08 19:41:31 3BD59D6C407AB1F6DDD7C5D9BD727469 20447072 ----a-w- C:\Documents and Settings\Miljan Ilic\Desktop\mbam-setup-2.0.4.1028.exe
2015-01-08 11:43:27 05EE8B7DE7067EC38D232FE84B5BE9C1 1115648 ----a-w- C:\Documents and Settings\Miljan Ilic\Desktop\FRST.exe
2015-01-03 20:52:09 -------- d-----w- C:\Documents and Settings\Miljan Ilic\.zenmap
2014-12-25 20:36:37 -------- d-----w- C:\Documents and Settings\Miljan Ilic\.thumbnails
2014-12-25 20:33:48 -------- d-----w- C:\Documents and Settings\Miljan Ilic\.gimp-2.8

====== C: exe-files ==
2015-01-09 14:54:47 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Documents and Settings\Miljan Ilic\Application Data\PawnPlus\Updates\PawnPlus-Setup-0.4.8.exe
2015-01-08 19:41:31 3BD59D6C407AB1F6DDD7C5D9BD727469 20447072 ----a-w- C:\Documents and Settings\Miljan Ilic\Desktop\mbam-setup-2.0.4.1028.exe
2015-01-08 11:43:27 05EE8B7DE7067EC38D232FE84B5BE9C1 1115648 ----a-w- C:\Documents and Settings\Miljan Ilic\Desktop\FRST.exe
2015-01-08 10:46:14 A6073B7978493CCD2D95AB1C5DDF2829 6463360 ----a-w- C:\RECYCLER\S-1-5-21-507921405-879983540-1417001333-1003\Dc5\SpyHunter\SpyHunter4.exe
2015-01-08 10:46:10 E2219B37718E36357F2CEBFB6133896D 770944 ----a-w- C:\RECYCLER\S-1-5-21-507921405-879983540-1417001333-1003\Dc5\SpyHunter\SH4Service.exe
2015-01-08 09:38:28 4FE87910C995BBC88C5DC07F57D58D0F 201921 ----a-w- C:\Documents and Settings\Miljan Ilic\Local Settings\temp\Uninstall.exe
2015-01-07 11:14:59 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\WINDOWS\PEV.exe
2015-01-07 11:14:59 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\WINDOWS\grep.exe
2015-01-07 11:14:59 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\WINDOWS\zip.exe
2015-01-07 11:14:59 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\WINDOWS\SWSC.exe
2015-01-07 11:14:59 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\WINDOWS\MBR.exe
2015-01-07 09:17:16 757D76B67819CCC54D7799F05C9FA8F7 23856 ----a-w- C:\WINDOWS\system32\spupdsvc.exe
2015-01-07 09:17:16 4E5AE8DAC927A370D44FE0BBD5DC1EDC 221488 -c----w- C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe
2015-01-07 00:21:28 DA676F1DD9265DCF6035E218E09EAC22 7140600 ----a-w- C:\Program Files\AVG\AVG2015\Notification\Launcher.exe
2015-01-06 15:35:14 B11CE5D70B7F71C6233BBA79AE3DE0FB 1061632 ----a-w- C:\Program Files\Samsung\USB Drivers\Uninstall.exe
2015-01-06 11:11:55 AFC0877A322AE291F3B7221652E92CAB 22324225 ----a-w- C:\Program Files\PhotoZoom Pro 5\Uninstall.exe
2015-01-06 11:11:55 0B8E2EB8CB3B4B3AB9636EF928C530C9 2515968 ----a-w- C:\Program Files\PhotoZoom Pro 5\PhotoZoom Pro 5.exe
2015-01-06 11:11:07 AFC0877A322AE291F3B7221652E92CAB 22324225 ----a-w- C:\Documents and Settings\Miljan Ilic\My Documents\Downloads\Benvista PhotoZoom Pro 5.0.2.0 Multilingual + (zabranjeno)\~Get Your Files Here\PhotoZoom Pro 5 Setup-32bits.exe
2015-01-03 18:50:00 AA3520FB0133A56BEE1DB34D74DBEF64 176552 ----a-w- C:\Documents and Settings\All Users\Application Data\Oracle\Java\javapath_target_13625921\java.exe
2015-01-03 18:50:00 AA3520FB0133A56BEE1DB34D74DBEF64 176552 ----a-w- C:\Documents and Settings\All Users\Application Data\Oracle\Java\javapath\java.exe
2015-01-03 18:50:00 75D477E868CA51EC1B09D730570F322B 176552 ----a-w- C:\Documents and Settings\All Users\Application Data\Oracle\Java\javapath_target_13625921\javaw.exe
2015-01-03 18:50:00 75D477E868CA51EC1B09D730570F322B 176552 ----a-w- C:\Documents and Settings\All Users\Application Data\Oracle\Java\javapath\javaw.exe
2015-01-03 18:50:00 691D49FB44EDE9788288CABE4F7E0DAF 272296 ----a-w- C:\Documents and Settings\All Users\Application Data\Oracle\Java\javapath_target_13625921\javaws.exe
2015-01-03 18:50:00 691D49FB44EDE9788288CABE4F7E0DAF 272296 ----a-w- C:\Documents and Settings\All Users\Application Data\Oracle\Java\javapath\javaws.exe
2015-01-03 18:49:12 67F763B09F4BC8689E6FA9761E068D74 159656 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\unpack200.exe
2015-01-03 18:49:12 57E1F756FAA787623DFCD2C1B2AACC68 51112 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\ssvagent.exe
2015-01-03 18:49:12 28FC00F89631B0F6E1E9CA386FADD566 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\tnameserv.exe
2015-01-03 18:49:11 E3E6B18458FFB07CB24D7A0BA77C9FDF 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\pack200.exe
2015-01-03 18:49:11 DC197DCE6325CBAC905DE0D0E3BA3E8E 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\rmid.exe
2015-01-03 18:49:11 7AB1F1B3FB6C3DACA34EA2F988CDF5AC 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\orbd.exe
2015-01-03 18:49:11 75EE99C7F0038C746D82C76221ECA4EF 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\policytool.exe
2015-01-03 18:49:11 4109C4DB4BD48F5BF8115C7523A6B6F8 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\klist.exe
2015-01-03 18:49:11 33D2AF53E209DA3E2BA939EB89801DC0 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\rmiregistry.exe
2015-01-03 18:49:11 29E65AC6AFD8A0A9CAA361FF6F7B4886 16296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\servertool.exe
2015-01-03 18:49:11 26C7F32186B1F0364CD06EA69227A79D 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\ktab.exe
2015-01-03 18:49:10 B719E0F43166037DF46B5CFBE60A5118 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jjs.exe
2015-01-03 18:49:10 A458E2535E46151690E53E2A03FAA711 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\keytool.exe
2015-01-03 18:49:10 9BFAEF308D50779F6B255CB7BA7DCA5A 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\kinit.exe
2015-01-03 18:49:10 4367C05B0CF5553E71B34F51003D0615 76200 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jp2launcher.exe
2015-01-03 18:49:09 BB8C890E3E6372F2720709262BD42BF4 30632 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\jabswitch.exe
2015-01-03 18:49:09 AA3520FB0133A56BEE1DB34D74DBEF64 176552 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\java.exe
2015-01-03 18:49:09 75D477E868CA51EC1B09D730570F322B 176552 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javaw.exe
2015-01-03 18:49:09 74713E9C1B01B152DDD3A1A3519A3647 15784 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\java-rmi.exe
2015-01-03 18:49:09 70E67429D2C011FD0419AF899A8D0D70 68520 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javacpl.exe
2015-01-03 18:49:09 691D49FB44EDE9788288CABE4F7E0DAF 272296 ----a-w- C:\Program Files\Java\jre1.8.0_25\bin\javaws.exe
2015-01-03 18:43:16 70A50BA02C2782908EBEB028BDF5B6AC 49396 ----a-w- C:\Program Files\DirBuster\Uninstall.exe
=== C: other files ==
2015-01-08 20:59:29 A3F4391DFDF2F9E9FE4EAD193265A5AD 23256 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys
2015-01-08 19:35:51 C484A89220224149AA1A1EED8DD408FD 2692229 ----a-w- C:\Documents and Settings\Miljan Ilic\Desktop\smf_2-1_beta1_install.zip
2015-01-08 10:46:41 01CE484FF6D70A39479BC6D619DE7ED6 19984 ----a-w- C:\WINDOWS\system32\drivers\EsgScanner.sys
2015-01-08 10:46:41 01CE484FF6D70A39479BC6D619DE7ED6 19984 ----a-w- C:\Documents and Settings\Miljan Ilic\Local Settings\temp\EsgScanner.sys
2015-01-08 10:46:40 01CE484FF6D70A39479BC6D619DE7ED6 19984 ----a-w- C:\RECYCLER\S-1-5-21-507921405-879983540-1417001333-1003\Dc5\SpyHunter\EsgScanner.sys
2015-01-07 20:15:03 8E2E9CCD873ABF180F48BCAEEEBE347D 114904 ----a-w- C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
2015-01-07 20:13:45 FFB32E70D735146F5630DC7A96B6E1A8 54360 ----a-w- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2015-01-06 15:35:13 A175D9A8D289512224C07F4311029AB9 23352 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_conn_us_0E6E57A0F8790CC94C165D62F281D71A4A473995\i386\ss_conn_usb_driver.sys
2015-01-06 15:35:09 B9C53AFC61379E0662D61372074FE17A 82232 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssudrmnetm_532C2A7795D4346AE5D9F3E1F1FB6E612F4E8564\i386\ssudrmnetmp.sys
2015-01-06 15:35:08 6EE5F5CD82DA3F7FF7FE3E4210D64AFE 61752 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssudrmnet_1834CD32A22996985EF464CDE109908F6E2F78AC\i386\ssudrmnet.sys
2015-01-06 15:35:07 78A8B448C5337B57A881ACF3578E834E 34744 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssudeadb_8DE97E366EAB05493F13E1CCDC9381D575A94776\i386\ssudeadb.sys
2015-01-06 15:35:05 18DCE0A182CA372B2CE54A8E4C2CB434 184248 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssudserd_14C49C452178680CCCE1690B613F0072BB8C35D3\i386\ssudserd.sys
2015-01-06 15:35:03 D4906DF9B670AC50EED58AE7FE9FAEA0 184248 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssudobex_48855AFB1AD58BB1D83ECF43ECCBAB9DF8701BAB\i386\ssudobex.sys
2015-01-06 15:35:03 AF47F1B34808B10E77C72BDACBB3B66E 46904 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssudnd5_B2077BDF6CDC3AC29873DE2049861F4DEFCA1032\i386\ssudnd5.sys
2015-01-06 15:34:59 9359AB8BEA059222742345ED63147222 184248 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssudmdm_52851D56B8EE77D8A9AE04BF5B53C4E5C60DE1A9\i386\ssudmdm.sys
2015-01-06 15:34:59 9359AB8BEA059222742345ED63147222 184248 ----a-w- C:\WINDOWS\system32\drivers\ssudmdm.sys
2015-01-06 15:34:57 7FABC8C6EA483C7AA5202B177C009156 184248 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssuddmgr_1CCF4D091C27CE930B64A44A08D9B6DB24BAAE54\i386\ssuddmgr.sys
2015-01-06 15:34:53 50D5624BB26AF7EAE92EF95F3C6E3CE7 88632 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssudbus_67EC8599D0DBEBAA5D93716F0FE0667D8989F964\i386\ssudbus.sys
2015-01-06 15:34:53 50D5624BB26AF7EAE92EF95F3C6E3CE7 88632 ----a-w- C:\WINDOWS\system32\drivers\ssudbus.sys
2015-01-06 15:34:51 B9C53AFC61379E0662D61372074FE17A 82232 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\i386\ssudrmnetmp.sys
2015-01-06 15:34:51 A175D9A8D289512224C07F4311029AB9 23352 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\i386\ss_conn_usb_driver.sys
2015-01-06 15:34:50 D4906DF9B670AC50EED58AE7FE9FAEA0 184248 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\i386\ssudobex.sys
2015-01-06 15:34:50 AF47F1B34808B10E77C72BDACBB3B66E 46904 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\i386\ssudnd5.sys
2015-01-06 15:34:50 9359AB8BEA059222742345ED63147222 184248 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\i386\ssudmdm.sys
2015-01-06 15:34:50 7FABC8C6EA483C7AA5202B177C009156 184248 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\i386\ssuddmgr.sys
2015-01-06 15:34:50 78A8B448C5337B57A881ACF3578E834E 34744 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\i386\ssudeadb.sys
2015-01-06 15:34:50 6EE5F5CD82DA3F7FF7FE3E4210D64AFE 61752 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\i386\ssudrmnet.sys
2015-01-06 15:34:50 6ABA325428A2CBC77309D00BB3EAD45A 26424 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\amd64\ss_conn_usb_driver.sys
2015-01-06 15:34:50 50D5624BB26AF7EAE92EF95F3C6E3CE7 88632 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\i386\ssudbus.sys
2015-01-06 15:34:50 18DCE0A182CA372B2CE54A8E4C2CB434 184248 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\i386\ssudserd.sys
2015-01-06 15:34:49 E0FB647661B59632E3987D40D6F75281 108856 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\amd64\ssudbus.sys
2015-01-06 15:34:49 CF395756B72B26FBF87BD27A80178297 40760 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\amd64\ssudeadb.sys
2015-01-06 15:34:49 C342997C8D791423846F432220C59F1C 206136 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\amd64\ssudobex.sys
2015-01-06 15:34:49 8FE6E753E4EF4157811A8E372AE2325C 206136 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\amd64\ssuddmgr.sys
2015-01-06 15:34:49 8701274A0E31CC113355D801BDF9B508 70456 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\amd64\ssudrmnet.sys
2015-01-06 15:34:49 6A87E01028D7594BD58EB47DABD8CEAE 206136 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\amd64\ssudmdm.sys
2015-01-06 15:34:49 5934F38B3BCC0D6202D68424F63E2EF4 94520 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\amd64\ssudrmnetmp.sys
2015-01-06 15:34:49 579BF7A6C64178EFAB4656E4AC73070C 206136 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\amd64\ssudserd.sys
2015-01-06 15:34:49 081885431F12113607402C150CAD06AD 52536 ----a-w- C:\Program Files\Samsung\USB Drivers\25_escape\amd64\ssudnd5.sys
2015-01-06 15:33:07 CCAAC4BBD81EAEF50535913E149959B2 16384 -c--a-w- C:\WINDOWS\system32\DRVSTORE\FlashUSB_0AAAC6943F36313CF672566BE0B8F22C22D12389\FlashUsb.sys
2015-01-06 15:32:58 322761FBC5D9439EE46FA997B4F88064 19968 ----a-w- C:\Program Files\Samsung\USB Drivers\24_flashusbdriver\X64\flashusb.sys
2015-01-06 15:32:57 CCAAC4BBD81EAEF50535913E149959B2 16384 ----a-w- C:\Program Files\Samsung\USB Drivers\24_flashusbdriver\WIN32\FlashUsb.sys
2015-01-06 15:30:27 D44F264BA03A7EB3BC8B4DB871251948 12616 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssdudfu_574BD7177B890D867B1197717EDBE5D152BA0EE1\i386\ssduwhnt.sys
2015-01-06 15:30:27 D44F264BA03A7EB3BC8B4DB871251948 12616 ----a-w- C:\Program Files\Samsung\USB Drivers\20_NXP_Driver\i386\ssduwhnt.sys
2015-01-06 15:30:27 AE3970CF0D14A0E3F1DB7D7B92FC499E 15944 ----a-w- C:\Program Files\Samsung\USB Drivers\20_NXP_Driver\amd64\ssduwhnt.sys
2015-01-06 15:30:27 5CB8CE3CB1BB8A205DA6311509188668 80968 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssdudfu_574BD7177B890D867B1197717EDBE5D152BA0EE1\i386\ssdudfu.sys
2015-01-06 15:30:27 5CB8CE3CB1BB8A205DA6311509188668 80968 ----a-w- C:\Program Files\Samsung\USB Drivers\20_NXP_Driver\i386\ssdudfu.sys
2015-01-06 15:30:27 29011AE5334C1E1A3141B7BE199858FC 101960 ----a-w- C:\Program Files\Samsung\USB Drivers\20_NXP_Driver\amd64\ssdudfu.sys
2015-01-06 15:30:25 9EFD9F42795C9E90206C1E9A9B25E8D3 130248 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssadsdm2_3ECD13C410CC236CB91642586BDF039009AA82A0\i386\ssadserd.sys
2015-01-06 15:30:25 9EFD9F42795C9E90206C1E9A9B25E8D3 130248 ----a-w- C:\WINDOWS\system32\drivers\ssadserd.sys
2015-01-06 15:30:25 370168F1FD1CEF45DA470A44439426CA 15560 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssadsdm2_3ECD13C410CC236CB91642586BDF039009AA82A0\i386\ssadcmnt.sys
2015-01-06 15:30:14 5BCB68F7B62159C07789D3F405750623 17864 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssadmdm2_C0B805498F39DB6D0E03942E19D3155A96B507B7\i386\ssadmdfl.sys
2015-01-06 15:30:14 5BCB68F7B62159C07789D3F405750623 17864 ----a-w- C:\WINDOWS\system32\drivers\ssadmdfl.sys
2015-01-06 15:30:14 370168F1FD1CEF45DA470A44439426CA 15560 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssadmdm2_C0B805498F39DB6D0E03942E19D3155A96B507B7\i386\ssadcmnt.sys
2015-01-06 15:30:14 370168F1FD1CEF45DA470A44439426CA 15560 ----a-w- C:\WINDOWS\system32\drivers\ssadcmnt.sys
2015-01-06 15:30:14 370168F1FD1CEF45DA470A44439426CA 15560 ----a-w- C:\WINDOWS\system32\drivers\ssadcm.sys
2015-01-06 15:30:14 1588A89F9CD9E68DE9FCC9F60FDB5C08 153672 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssadmdm2_C0B805498F39DB6D0E03942E19D3155A96B507B7\i386\ssadmdm.sys
2015-01-06 15:30:14 1588A89F9CD9E68DE9FCC9F60FDB5C08 153672 ----a-w- C:\WINDOWS\system32\drivers\ssadmdm.sys
2015-01-06 15:30:13 2F8616646215EEDB28C2E40994DB8E38 32064 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssadadb2_5187FDAA55E44E17455FBA162CCA1A02035D4ABE\i386\ssadadb.sys
2015-01-06 15:30:13 2F8616646215EEDB28C2E40994DB8E38 32064 ----a-w- C:\WINDOWS\system32\drivers\ssadadb.sys
2015-01-06 15:30:12 BB6EDB0257860083193CC1581AC7D485 136904 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssadbus_1C9C39A75DA714E53B5078329C59B37A64EA984D\i386\ssadbus.sys
2015-01-06 15:30:12 BB6EDB0257860083193CC1581AC7D485 136904 ----a-w- C:\WINDOWS\system32\drivers\ssadbus.sys
2015-01-06 15:30:12 88BBDA3D977429C6DAB0991EC5339A19 15304 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssadbus_1C9C39A75DA714E53B5078329C59B37A64EA984D\i386\ssadwhnt.sys
2015-01-06 15:30:12 88BBDA3D977429C6DAB0991EC5339A19 15304 ----a-w- C:\WINDOWS\system32\drivers\ssadwhnt.sys
2015-01-06 15:30:12 88BBDA3D977429C6DAB0991EC5339A19 15304 ----a-w- C:\WINDOWS\system32\drivers\ssadwh.sys
2015-01-06 15:30:11 FF20F67DD5644BD1D2E7FCD95AF7F03B 158024 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadserd.sys
2015-01-06 15:30:11 FE9FA1AAE4D00CA73ADEF4437CD89679 17224 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadcmnt.sys
2015-01-06 15:30:11 D6CFD3B2EABCF9327DE39C62BABFA1E3 21320 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadmdfl.sys
2015-01-06 15:30:11 BB6EDB0257860083193CC1581AC7D485 136904 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\i386\ssadbus.sys
2015-01-06 15:30:11 9EFD9F42795C9E90206C1E9A9B25E8D3 130248 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\i386\ssadserd.sys
2015-01-06 15:30:11 88BBDA3D977429C6DAB0991EC5339A19 15304 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\i386\ssadwhnt.sys
2015-01-06 15:30:11 5EB01E6148742C3EC2185AC92F6D16FD 188232 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadmdm.sys
2015-01-06 15:30:11 5BCB68F7B62159C07789D3F405750623 17864 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\i386\ssadmdfl.sys
2015-01-06 15:30:11 52D6F40B50ECFC051979FEC68E74F0F8 169288 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadbus.sys
2015-01-06 15:30:11 3CF7A4350C9646D92F147D620EC0D363 38080 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadadb.sys
2015-01-06 15:30:11 370168F1FD1CEF45DA470A44439426CA 15560 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\i386\ssadcmnt.sys
2015-01-06 15:30:11 2F8616646215EEDB28C2E40994DB8E38 32064 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\i386\ssadadb.sys
2015-01-06 15:30:11 1588A89F9CD9E68DE9FCC9F60FDB5C08 153672 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\i386\ssadmdm.sys
2015-01-06 15:30:11 0D7B007DEA662EE90C87CB0AEA5D692A 17736 ----a-w- C:\Program Files\Samsung\USB Drivers\16_Shrewsbury\amd64\ssadwhnt.sys
2015-01-06 15:30:07 70BF608172E040C96EFE99AF0E4B063E 74752 -c--a-w- C:\WINDOWS\system32\DRVSTORE\mbtmdm_3229A2AA426C7B42BE118BA79D4A213EA10E29F8\i386\mbtusbser.sys
2015-01-06 15:30:06 70BF608172E040C96EFE99AF0E4B063E 74752 ----a-w- C:\Program Files\Samsung\USB Drivers\11_HSP_Plus_Default\i386\mbtusbser.sys
2015-01-06 15:30:06 26910E5CB2CDCA5E480C58C21E3B34FC 87936 ----a-w- C:\Program Files\Samsung\USB Drivers\11_HSP_Plus_Default\amd64\mbtusbser.sys
2015-01-06 15:30:05 DBF83E9BB5BB53223A519EB79B477E10 17408 -c--a-w- C:\WINDOWS\system32\DRVSTORE\HSPUSB_66BEF421612C6C2CB007247E73D9A13E8F319FFA\i386\HSPUSB.sys
2015-01-06 15:30:04 DBF83E9BB5BB53223A519EB79B477E10 17408 ----a-w- C:\Program Files\Samsung\USB Drivers\09_Hsp\i386\hspusb.sys
2015-01-06 15:30:04 16BD2CECA46F955C1362564D83662E58 24064 ----a-w- C:\Program Files\Samsung\USB Drivers\09_Hsp\amd64\hspusb.sys
2015-01-06 15:30:03 994D2E5378CC337EC7DD73C1E04FCAA4 100224 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_bsdm2_10B17303D78CD94FDDF50F961E3454D4DD5E1A7A\i386\ss_bserd.sys
2015-01-06 15:30:03 2DD4E8844F8F094659DD695A80FED36E 12416 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_bsdm2_10B17303D78CD94FDDF50F961E3454D4DD5E1A7A\i386\ss_bcmnt.sys
2015-01-06 15:30:02 B89D62206034E5FE573C80A24DD55675 14848 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_bmdm2_25CD552B0C6354F58CE1CF1AC1C75967943356E3\i386\ss_bmdfl.sys
2015-01-06 15:30:02 2DD4E8844F8F094659DD695A80FED36E 12416 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_bmdm2_25CD552B0C6354F58CE1CF1AC1C75967943356E3\i386\ss_bcmnt.sys
2015-01-06 15:30:02 1ED0FCEA586FE2A416EE15196E5631DD 123648 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_bmdm2_25CD552B0C6354F58CE1CF1AC1C75967943356E3\i386\ss_bmdm.sys
2015-01-06 15:30:01 F9F4BC8A7EC80F39DE8323D0D1BC85FE 12288 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_bbus_12BC85144F8D71EFF2F5EFF4FD945E30B2447D45\i386\ss_bwhnt.sys
2015-01-06 15:30:01 F9F4BC8A7EC80F39DE8323D0D1BC85FE 12288 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\i386\ss_bwhnt.sys
2015-01-06 15:30:01 EF806D212D34B0E173BAEB3564D53E37 127488 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\amd64\ss_bbus.sys
2015-01-06 15:30:01 CC98D196AFAD3580E454DDED14BDAC7A 15872 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\amd64\ss_bwhnt.sys
2015-01-06 15:30:01 B89D62206034E5FE573C80A24DD55675 14848 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\i386\ss_bmdfl.sys
2015-01-06 15:30:01 994D2E5378CC337EC7DD73C1E04FCAA4 100224 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\i386\ss_bserd.sys
2015-01-06 15:30:01 946684DEF391FA17A830091EA84E74FE 15360 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\amd64\ss_bcmnt.sys
2015-01-06 15:30:01 71A9DA6BEAA4CB54DFB827FB78600A5D 161280 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\amd64\ss_bmdm.sys
2015-01-06 15:30:01 677CDC98F8363ACCAAE783FDE1599C2A 128000 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\amd64\ss_bserd.sys
2015-01-06 15:30:01 3F0164FBC0BD1ADBD02DF9759181451A 98432 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_bbus_12BC85144F8D71EFF2F5EFF4FD945E30B2447D45\i386\ss_bbus.sys
2015-01-06 15:30:01 3F0164FBC0BD1ADBD02DF9759181451A 98432 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\i386\ss_bbus.sys
2015-01-06 15:30:01 2DD4E8844F8F094659DD695A80FED36E 12416 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\i386\ss_bcmnt.sys
2015-01-06 15:30:01 1ED0FCEA586FE2A416EE15196E5631DD 123648 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\i386\ss_bmdm.sys
2015-01-06 15:30:01 08B1B34ABEBEB6AC2DEA06900C56411E 18944 ----a-w- C:\Program Files\Samsung\USB Drivers\07_Schorl\amd64\ss_bmdfl.sys
2015-01-06 15:29:59 625A76BFBB915F7AE8141A4165F41E88 130376 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscesdm2_C6FE525C458C00233F20EB7491F6DD676FFA01AA\i386\ssceserd.sys
2015-01-06 15:29:58 718442270A7719652DF0BDD5A85B3B46 15560 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscesdm2_C6FE525C458C00233F20EB7491F6DD676FFA01AA\i386\sscecmnt.sys
2015-01-06 15:29:57 82E42B6977C614CC9D036723D410A1DF 153672 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscemdm2_5EBB3D6DA92B17829FC055C1BB115D6871BE0753\i386\sscemdm.sys
2015-01-06 15:29:57 7E7493BBEE5468BB34C9E019A06F5310 15304 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscebus_4656504F09566F9F2F68E219042888A5BFB32A64\i386\sscewhnt.sys
2015-01-06 15:29:57 718442270A7719652DF0BDD5A85B3B46 15560 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscemdm2_5EBB3D6DA92B17829FC055C1BB115D6871BE0753\i386\sscecmnt.sys
2015-01-06 15:29:57 33B11FF28DF39D086E3D80ACC0F87D90 136904 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscebus_4656504F09566F9F2F68E219042888A5BFB32A64\i386\sscebus.sys
2015-01-06 15:29:57 2635EB2E07E7389977E1F87B2570E655 17864 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscemdm2_5EBB3D6DA92B17829FC055C1BB115D6871BE0753\i386\sscemdfl.sys
2015-01-06 15:29:56 EB5818115562D45A66E23C85C90E9442 158024 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\amd64\ssceserd.sys
2015-01-06 15:29:56 2697A4F6BA959FDD45249C9DE1D725E8 17736 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\amd64\sscewhnt.sys
2015-01-06 15:29:55 FA03D4C16F2F7ACD43E6317767764E0C 169288 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\amd64\sscebus.sys
2015-01-06 15:29:55 F45937AB7F170570DC40F7A00F65AAF9 16768 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\i386\sscecm95.sys
2015-01-06 15:29:55 D72A342711D3CB977BE9F2605EE853B5 13184 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\i386\sscewh95.sys
2015-01-06 15:29:55 9428B5CA620EBB466BF82C834AD90285 10624 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\i386\sscecr.sys
2015-01-06 15:29:55 82E42B6977C614CC9D036723D410A1DF 153672 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\i386\sscemdm.sys
2015-01-06 15:29:55 7E7493BBEE5468BB34C9E019A06F5310 15304 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\i386\sscewhnt.sys
2015-01-06 15:29:55 718442270A7719652DF0BDD5A85B3B46 15560 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\i386\sscecmnt.sys
2015-01-06 15:29:55 625A76BFBB915F7AE8141A4165F41E88 130376 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\i386\ssceserd.sys
2015-01-06 15:29:55 5D00795AD1BBD618A0CF993E979E0143 17224 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\amd64\sscecmnt.sys
2015-01-06 15:29:55 50C23ED603E5DF8A7CF1D56DDEF31A15 21320 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\amd64\sscemdfl.sys
2015-01-06 15:29:55 33B11FF28DF39D086E3D80ACC0F87D90 136904 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\i386\sscebus.sys
2015-01-06 15:29:55 2635EB2E07E7389977E1F87B2570E655 17864 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\i386\sscemdfl.sys
2015-01-06 15:29:55 1F48814204F6B2C03687A1675772E899 188232 ----a-w- C:\Program Files\Samsung\USB Drivers\04_semseyite\amd64\sscemdm.sys
2015-01-06 15:29:53 8F40A62436A05A8963391DFB1D9F2876 15560 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscdw2k_98F6650F059EE74320CA2904CF69E3FA9AC0D1C6\i386\sscdcmnt.sys
2015-01-06 15:29:53 68820F9A67F0D170A6842094EBDCD924 17864 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscdw2k_98F6650F059EE74320CA2904CF69E3FA9AC0D1C6\i386\sscdmdfl.sys
2015-01-06 15:29:53 0A3B7562002C50F208FCCDEB7380B57B 153672 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscdw2k_98F6650F059EE74320CA2904CF69E3FA9AC0D1C6\i386\sscdmdm.sys
2015-01-06 15:29:51 E6CE6348A4F6E06925548F62527F0F99 136776 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscdbus_11E99993606D473E8E208F8EDE350D0CEBCE8B4A\i386\sscdbus.sys
2015-01-06 15:29:51 BF6F31B9F5A98400DFB42CDB2C6537E1 130248 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscdsdm2_72005F063049A1049641C01E0F876924A1F87E3B\i386\sscdserd.sys
2015-01-06 15:29:51 96E20FE523F992F96CCA23B2437F5CC7 15304 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscdbus_11E99993606D473E8E208F8EDE350D0CEBCE8B4A\i386\sscdwhnt.sys
2015-01-06 15:29:51 8F40A62436A05A8963391DFB1D9F2876 15560 -c--a-w- C:\WINDOWS\system32\DRVSTORE\sscdsdm2_72005F063049A1049641C01E0F876924A1F87E3B\i386\sscdcmnt.sys
2015-01-06 15:29:50 E6CE6348A4F6E06925548F62527F0F99 136776 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\i386\sscdbus.sys
2015-01-06 15:29:50 DF11D259C10C9D0DFCCBA1093C5DB1BD 169288 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\amd64\sscdbus.sys
2015-01-06 15:29:50 BF6F31B9F5A98400DFB42CDB2C6537E1 130248 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\i386\sscdserd.sys
2015-01-06 15:29:50 96E20FE523F992F96CCA23B2437F5CC7 15304 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\i386\sscdwhnt.sys
2015-01-06 15:29:50 8F40A62436A05A8963391DFB1D9F2876 15560 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\i386\sscdcmnt.sys
2015-01-06 15:29:50 68820F9A67F0D170A6842094EBDCD924 17864 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\i386\sscdmdfl.sys
2015-01-06 15:29:50 6166669C3BC2624EA479A482AE663E21 17736 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\amd64\sscdwhnt.sys
2015-01-06 15:29:50 3EF9386DC95BF2AE60D08367E5E4E785 21320 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\amd64\sscdmdfl.sys
2015-01-06 15:29:50 187C98B48C70400C7CE5F11EC2BB9214 17224 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\amd64\sscdcmnt.sys
2015-01-06 15:29:50 1381D76044350F327539E47B67367992 158024 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\amd64\sscdserd.sys
2015-01-06 15:29:50 0A3B7562002C50F208FCCDEB7380B57B 153672 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\i386\sscdmdm.sys
2015-01-06 15:29:50 00D2AA893C662A9EB9B779F6CA2B0DFB 188232 ----a-w- C:\Program Files\Samsung\USB Drivers\03_Swallowtail\amd64\sscdmdm.sys
2015-01-06 15:29:47 E09E2592DB41BF4B5DDF7F80B2F296FE 12416 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssm_bus_95AA2419C5D388E462430C22E7B02579DD7F6677\i386\ssm_whnt.sys
2015-01-06 15:29:47 9ECE19A1A4F4896597C3BB840FBFA721 104448 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssm_bus_95AA2419C5D388E462430C22E7B02579DD7F6677\i386\ssm_bus.sys
2015-01-06 15:29:46 ED2EE4BA7169D0A68B2FBB7DCFA6D69D 12544 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssm_mdm2_53F3D224B432100E2DE0FA124810CB8E06580477\i386\ssm_cmnt.sys
2015-01-06 15:29:46 C0BA1357C63DEACF3B3CCF4B989FEF06 132608 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssm_mdm2_53F3D224B432100E2DE0FA124810CB8E06580477\i386\ssm_mdm.sys
2015-01-06 15:29:46 8E93A17A5253999A0E7C332F475699DC 14848 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssm_mdm2_53F3D224B432100E2DE0FA124810CB8E06580477\i386\ssm_mdfl.sys
2015-01-06 15:29:45 ED2EE4BA7169D0A68B2FBB7DCFA6D69D 12544 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssm_ser2_53F3D224B432100E2DE0FA124810CB8E06580477\i386\ssm_cmnt.sys
2015-01-06 15:29:45 C0BA1357C63DEACF3B3CCF4B989FEF06 132608 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ssm_ser2_53F3D224B432100E2DE0FA124810CB8E06580477\i386\ssm_mdm.sys
2015-01-06 15:29:45 A2551BFA549D794B2943E8949115FEA6 15872 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\amd64\ssm_whnt.sys
2015-01-06 15:29:45 8E1B485AEBF4743F05B4FB162F6ED430 136192 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\amd64\ssm_bus.sys
2015-01-06 15:29:45 5AA4563B1B5AAC10D3979CC7E9F6C6D6 15360 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\amd64\ssm_cmnt.sys
2015-01-06 15:29:45 1FFCC272F19BD84596378780F5C9843D 172032 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\amd64\ssm_mdm.sys
2015-01-06 15:29:45 1DFDEE4A0E168B6362A6A0778EAFDB55 18944 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\amd64\ssm_mdfl.sys
2015-01-06 15:29:44 ED2EE4BA7169D0A68B2FBB7DCFA6D69D 12544 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\i386\ssm_cmnt.sys
2015-01-06 15:29:44 E09E2592DB41BF4B5DDF7F80B2F296FE 12416 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\i386\ssm_whnt.sys
2015-01-06 15:29:44 C0BA1357C63DEACF3B3CCF4B989FEF06 132608 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\i386\ssm_mdm.sys
2015-01-06 15:29:44 BF8401AF15EB892A812C288BFF7F366D 10760 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\i386\ssm_cr.sys
2015-01-06 15:29:44 A3B8B77B3D74D89489827C94D4E9F93F 16648 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\i386\ssm_cm95.sys
2015-01-06 15:29:44 9ECE19A1A4F4896597C3BB840FBFA721 104448 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\i386\ssm_bus.sys
2015-01-06 15:29:44 8E93A17A5253999A0E7C332F475699DC 14848 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\i386\ssm_mdfl.sys
2015-01-06 15:29:44 591B6764D57EBA44094E47F48949203C 13448 ----a-w- C:\Program Files\Samsung\USB Drivers\02_Siberian\i386\ssm_wh95.sys
2015-01-06 15:29:42 4450BC0B2E9D7D9B90E3C3DE4EA00A78 14848 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_mdm2_EB81822238EB1929C978C1DB6FCDA34F8D43341D\i386\ss_mdfl.sys
2015-01-06 15:29:42 30B8D0DD01EAD1243F329CAF7D7D1517 123776 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_mdm2_EB81822238EB1929C978C1DB6FCDA34F8D43341D\i386\ss_mdm.sys
2015-01-06 15:29:42 01FAF94DE32A4D2944BD845F462EE5B8 12416 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_mdm2_EB81822238EB1929C978C1DB6FCDA34F8D43341D\i386\ss_cmnt.sys
2015-01-06 15:29:41 EF40C8A268A5263A0EF48FED8E57CBED 161280 ----a-w- C:\Program Files\Samsung\USB Drivers\01_Simmental\amd64\ss_mdm.sys
2015-01-06 15:29:41 B629928BB05B91CFF8378F277603F75A 12288 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_bus_7406BFDDA6E4A90AE547DA7E2665EFD972F6B38A\i386\ss_whnt.sys
2015-01-06 15:29:41 AB90FDA84DD20FAF3408A95E02ED7F53 15872 ----a-w- C:\Program Files\Samsung\USB Drivers\01_Simmental\amd64\ss_whnt.sys
2015-01-06 15:29:41 54946449A0EB74915A4BB34F7EE51A5A 98560 -c--a-w- C:\WINDOWS\system32\DRVSTORE\ss_bus_7406BFDDA6E4A90AE547DA7E2665EFD972F6B38A\i386\ss_bus.sys
2015-01-06 15:29:41 451DB3D10E6112E06B4506D4A7BECEC1 18944 ----a-w- C:\Program Files\Samsung\USB Drivers\01_Simmental\amd64\ss_mdfl.sys
2015-01-06 15:29:40 D21FF3592DAEE244EE8376830A672B52 127488 ----a-w- C:\Program Files\Samsung\USB Drivers\01_Simmental\amd64\ss_bus.sys
2015-01-06 15:29:40 BB8238DEB31EA703BBA558DD981405CA 3840 ----a-w- C:\Program Files\Samsung\USB Drivers\01_Simmental\i386\ss_cr.sys
2015-01-06 15:29:40 B96A2A5FED060C0CF9F2A75ABF3B5CDC 15360 ----a-w- C:\Program Files\Samsung\USB Drivers\01_Simmental\amd64\ss_cmnt.sys
2015-01-06 15:29:40 B629928BB05B91CFF8378F277603F75A 12288 ----a-w- C:\Program Files\Samsung\USB Drivers\01_Simmental\i386\ss_whnt.sys
2015-01-06 15:29:40 4450BC0B2E9D7D9B90E3C3DE4EA00A78 14848 ----a-w- C:\Program Files\Samsung\USB Drivers\01_Simmental\i386\ss_mdfl.sys
2015-01-06 15:29:40 30B8D0DD01EAD1243F329CAF7D7D1517 123776 ----a-w- C:\Program Files\Samsung\USB Drivers\01_Simmental\i386\ss_mdm.sys
2015-01-06 15:29:40 01FAF94DE32A4D2944BD845F462EE5B8 12416 ----a-w- C:\Program Files\Samsung\USB Drivers\01_Simmental\i386\ss_cmnt.sys
2015-01-06 15:29:39 54946449A0EB74915A4BB34F7EE51A5A 98560 ----a-w- C:\Program Files\Samsung\USB Drivers\01_Simmental\i386\ss_bus.sys
2015-01-03 19:34:35 38913D0CB1005276A5EBABE030544983 1012016 ----a-w- C:\My Web Sites\GP\hts-cache\new.zip
2015-01-03 18:49:12 CE44A9D4918DCDC7CCCF5503BF4D7A3D 14130 ----a-w- C:\Program Files\Java\jre1.8.0_25\lib\deploy\ffjcext.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\windows\system32\ctfmon.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"="C:\Program Files\AVG\AVG2015\avgui.exe /TRAYONLY"
"NvCplDaemon"="RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup"
"NvMediaCenter"="RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login"
"nwiz"="C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet"
"Smapp"="C:\Program Files\Analog Devices\SoundMAX\SMTray.exe"
"Lightshot"="C:\Program Files\Skillbrains\lightshot\Lightshot.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\windows\system32\ctfmon.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeAAMUpdater-1.0]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UpdaterStartupUtility"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AdobeCS6ServiceManager]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CS6ServiceManager"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Adobe\\CS6ServiceManager\\CS6ServiceManager.exe\" -launchedbylogin"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CDAServer]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CDASrv"
"hkey"="HKLM"
"command"="C:\\Program Files\\Common Files\\Common Desktop Agent\\CDASrv.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\GrooveMonitor]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GrooveMonitor"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="jusched"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SwitchBoard]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SwitchBoard"
"hkey"="HKLM"
"command"="C:\\Program Files\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^Miljan Ilic^Start Menu^Programs^Startup^Dropbox.lnk]
"path"="C:\\Documents and Settings\\Miljan Ilic\\Start Menu\\Programs\\Startup\\Dropbox.lnk"
"backup"="C:\\windows\\pss\\Dropbox.lnkStartup"
"command"="C:\\DOCUME~1\\MILJAN~1\\APPLIC~1\\Dropbox\\bin\\Dropbox.exe /systemstartup"
"item"="Dropbox"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services]


==== Task Scheduler Jobs ======================

C:\windows\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
C:\windows\tasks\Opera scheduled Autoupdate 1416742248.job --a------ C:\Program Files\Opera\launcher.exe [17.12.2014 09:50]

==== Firefox Extensions ======================

ProfilePath: C:\Documents and Settings\MILJAN~1\Application Data\KompoZer\Profiles\0rw1vmfp.default
- Undetermined - %ProfilePath%\extensions\installed-extensions.txt
- KompoZer classic - %ProfilePath%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================


==== Chromium Look ======================

Переводчик для Chrome 2 - Miljan Ilic\Application Data\Opera Software\Opera Stable\Extensions\faminaibgiklngmfpfbhmokfmnglamcm
SavePass 1.1 - Miljan Ilic\Application Data\Opera Software\Opera Stable\Extensions\ilhhefepljbmehhbmjcflhcchkddfaon

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on pet 09.01.2015 at 16:28:36,23 ======================



mycity.rs/must-login.png

mycity.rs/must-login.png

















Dopuna: 09 Jan 2015 16:48

P.S Koristim Operu za web pretrazivanje

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6102

Uputstvo za Ambulantu ne kaze da stikliras sve opcije u FRST interfejsu. Jasno stoji slika koja govori sta treba stiklirati. Ne treba mi 'Drivers MD5' kao i ShortCut.txt izvestaji, da mi trebaju, trazio bih ih.

Mislim da vidim problem. Predhodni izvestaji jos nemaju podrsku za Opera dijagnostiku. Ostale pretrazivace smo ocistili ali smo preskocili Opera browser. Ovo ce mozda resiti ili nece resili problem ali je samo prva faza ove druge runde.







zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:

SavePass;a
SavePass;z
EmptyCLSID;
ilhhefepljbmehhbmjcflhcchkddfaon;chr
Reboot;


Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

offline
  • Miljan Ilic
  • Pridružio: 18 Jun 2014
  • Poruke: 178

Zoek.exe v5.0.0.0 Updated 09-January-2015
Tool run by Miljan Ilic on sub 10.01.2015 at 16:40:34,21.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Miljan Ilic\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2015-01-09-152836.log 47930 bytes

==== Folders Found ======================

2015-01-07 18:47:48 2015-01-07 18:47:49 -------- d-----w- C:\Qoobox\Quarantine\C\Program Files\SavePass 1.1

==== Files Found ======================


--- C:\Qoobox\Quarantine\C\Program Files\SavePass 1.1\SavePass 1.1.ico.vir ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 15086
Created time: 2015-01-06 05:11:02
Modified time: 2015-01-06 05:11:02
MD5: 5FB4F68AA1CCB8E16BE97C426DB643AB
SHA1: E368DC97604E2061DB64BC4906E33767F4751C25


==== Registry Search Results for "SavePass" ======================


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}]
"AppName"="SavePass 1.1-codedownloader.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}]
"AppName"="SavePass 1.1-bg.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"SavePass 1.1-bg.exe"=dword:00001f40

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}]
"AppName"="SavePass 1.1-codedownloader.exe"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}]
"AppName"="SavePass 1.1-bg.exe"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E21CDDB-3794-427F-872-30CDF3E36D4D}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D486C76-2F2C-4A58-98C9-2587C58988FB}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4B3E1DEC-20D-4B82-BCC1-73D169F124D}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{503782D3-4820-4C6C-9CCA-D72ACE6F6DC}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{533B8AD5-8B08-4609-A894-ACC885278D55}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{55CF9A49-9253-4819-8B8A-C1E8B05A88F8}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{57B9A4C7-1EE5-4F0B-AFD5-BD6EB5D3FB30}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66CBAEC3-D90D-4EF9-9468-40B099CD20FB}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ADD0AAFF-A81A-4AF4-B627-E8157A765470}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BDD2B4B7-90CB-46CD-8034-B2294DDB4748}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D00F1715-89D4-4F6F-B6C-F046FA393F93}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F978213-B506-4059-8AE1-145FADDAD4A}]
"AppPath"="C:\\Program Files\\SavePass 1.1"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Search Assistant\ACMru\5603]
"000"="SavePass"

[HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Search Assistant\ACMru\5604]
"000"="SavePass"

==== Chromium Look ======================

Переводчик для Chrome 2 - Miljan Ilic\Application Data\Opera Software\Opera Stable\Extensions\faminaibgiklngmfpfbhmokfmnglamcm

==== Chromium Fix ======================

C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\https_www.superfish.com_0.localstorage deleted successfully
C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully
C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\http_www.superfish.com_0.localstorage deleted successfully
C:\Documents and Settings\Miljan Ilic\Application Data\Opera Software\Opera Stable\Local Storage\http_www.superfish.com_0.localstorage-journal deleted successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=5 folders=0 14528 bytes)

==== After Reboot ======================

==== EOF on sub 10.01.2015 at 16:47:43,25 ======================

Evo loga, i ja sam u Exstensions u operi pronasao SavePass v1.2 i obrisao ga tako da sada nema problema. Jedino jos ctfmon.exe pravi probleme i izbacuje neke pop-up prozore. I jos uvek je tu ova neka ruska redirekcija: [IMG]http://prntscr.com/5qroxq[/IMG] Ali uglavnom sada je sve OK i komp se dosta ubrzao. Hvala Vam Punooooo!!! Pozz

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6102

Dr.Cooler ::Evo loga, i ja sam u Exstensions u operi pronasao SavePass v1.2 i obrisao ga tako da sada nema problema. Jedino jos ctfmon.exe pravi probleme i izbacuje neke pop-up prozore. I jos uvek je tu ova neka ruska redirekcija: [IMG]http://prntscr.com/5qroxq[/IMG] Ali uglavnom sada je sve OK i komp se dosta ubrzao. Hvala Vam Punooooo!!! Pozz


Ma nema ni govora predaji ... Smile


Idemo dalje. Ponovo pokreni Zoek na isti nacin kao i malopre sto si, ali ovaj put koristis ovaj zoek script:

ChromeLook;
codedownloader.exe;z
AutoClean;
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}];r
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION];r
"SavePass 1.1-bg.exe"=-;r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E21CDDB-3794-427F-872-30CDF3E36D4D}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D486C76-2F2C-4A58-98C9-2587C58988FB}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4B3E1DEC-20D-4B82-BCC1-73D169F124D}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{503782D3-4820-4C6C-9CCA-D72ACE6F6DC}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{533B8AD5-8B08-4609-A894-ACC885278D55}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{55CF9A49-9253-4819-8B8A-C1E8B05A88F8}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{57B9A4C7-1EE5-4F0B-AFD5-BD6EB5D3FB30}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66CBAEC3-D90D-4EF9-9468-40B099CD20FB}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ADD0AAFF-A81A-4AF4-B627-E8157A765470}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BDD2B4B7-90CB-46CD-8034-B2294DDB4748}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D00F1715-89D4-4F6F-B6C-F046FA393F93}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F978213-B506-4059-8AE1-145FADDAD4A}];r
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Search Assistant];r
Reboot;


Napomena da ce zoek ovaj put restartovati masinu a po restartu iskopiraj mi sveze formiran zoek log.

offline
  • Miljan Ilic
  • Pridružio: 18 Jun 2014
  • Poruke: 178

Zoek.exe v5.0.0.0 Updated 09-January-2015
Tool run by Miljan Ilic on sub 10.01.2015 at 21:05:29,57.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Miljan Ilic\Desktop\zoek.exe [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2015-01-09-152836.log 47930 bytes
C:\zoek-results2015-01-10-154743.log 6594 bytes

==== Empty Folders Check ======================

C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA deleted successfully
C:\Documents and Settings\Miljan Ilic\Application Data\Mozilla deleted successfully
C:\Documents and Settings\Miljan Ilic\Application Data\New Version Available deleted successfully
C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\SystemDir deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E21CDDB-3794-427F-872-30CDF3E36D4D} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D486C76-2F2C-4A58-98C9-2587C58988FB} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4B3E1DEC-20D-4B82-BCC1-73D169F124D} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{503782D3-4820-4C6C-9CCA-D72ACE6F6DC} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{533B8AD5-8B08-4609-A894-ACC885278D55} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{55CF9A49-9253-4819-8B8A-C1E8B05A88F8} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{57B9A4C7-1EE5-4F0B-AFD5-BD6EB5D3FB30} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66CBAEC3-D90D-4EF9-9468-40B099CD20FB} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ADD0AAFF-A81A-4AF4-B627-E8157A765470} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BDD2B4B7-90CB-46CD-8034-B2294DDB4748} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D00F1715-89D4-4F6F-B6C-F046FA393F93} deleted successfully
HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F978213-B506-4059-8AE1-145FADDAD4A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]
"SavePass 1.1-bg.exe"=-
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27dbfecf-9223-40bd-bd3c-1b0b04fb57f5}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2b76d7c6-58c7-4b24-8859-27eacb422bf5}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2E21CDDB-3794-427F-872-30CDF3E36D4D}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3D486C76-2F2C-4A58-98C9-2587C58988FB}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4B3E1DEC-20D-4B82-BCC1-73D169F124D}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{503782D3-4820-4C6C-9CCA-D72ACE6F6DC}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{533B8AD5-8B08-4609-A894-ACC885278D55}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{55CF9A49-9253-4819-8B8A-C1E8B05A88F8}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{57B9A4C7-1EE5-4F0B-AFD5-BD6EB5D3FB30}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{66CBAEC3-D90D-4EF9-9468-40B099CD20FB}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ADD0AAFF-A81A-4AF4-B627-E8157A765470}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BDD2B4B7-90CB-46CD-8034-B2294DDB4748}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D00F1715-89D4-4F6F-B6C-F046FA393F93}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F978213-B506-4059-8AE1-145FADDAD4A}]
[-HKEY_USERS\S-1-5-21-507921405-879983540-1417001333-1003\Software\Microsoft\Search Assistant]

==== Deleting Files \ Folders ======================

C:\Program Files\ComPlus Applications deleted
C:\Program Files\AVG Web TuneUp deleted
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg_Update_1014av deleted
C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Skillbrains deleted
C:\windows\SET3.tmp deleted
C:\windows\SET4.tmp deleted
C:\windows\SET8.tmp deleted
C:\windows\system32\GroupPolicy\Adm deleted
"C:\Program Files\Skillbrains\lightshot\5.2.0.17\Lightshot.dll" deleted
"C:\Program Files\Skillbrains\lightshot\5.2.0.17\Lightshot.exe" deleted
"C:\Program Files\Skillbrains\lightshot\5.2.0.17\uploader.dll" deleted
"C:\Program Files\Skillbrains" deleted
"C:\Program Files\Skillbrains\lightshot" deleted
"C:\Program Files\Skillbrains\lightshot\5.2.0.17" deleted

==== Folders Found ======================


==== Files Found ======================


==== Firefox Extensions ======================

ProfilePath: C:\Documents and Settings\MILJAN~1\Application Data\KompoZer\Profiles\0rw1vmfp.default
- Undetermined - %ProfilePath%\extensions\installed-extensions.txt
- KompoZer classic - %ProfilePath%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================


==== Chromium Look ======================

Переводчик для Chrome 2 - Miljan Ilic\Application Data\Opera Software\Opera Stable\Extensions\faminaibgiklngmfpfbhmokfmnglamcm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{FFEBBF0A-C22C-4172-89FF-45215A135AC7} ?????@Mail.Ru Url="http://go.mail.ru/search?q={SearchTerms}&fr=ntg"

==== shortcuts on Users Desktops ======================

C:\Documents and Settings\Miljan Ilic\Desktop\Counter-Strike WaRzOnE.lnk - C:\Games\Counter-Strike\hl.exe -steam -game cstrike -noforcemparms -noforcemaccel
C:\Documents and Settings\Miljan Ilic\Desktop\cPanel.lnk - D:\cPanel
C:\Documents and Settings\Miljan Ilic\Desktop\Game Hosting Files.lnk - D:\Game Hosting Files
C:\Documents and Settings\Miljan Ilic\Desktop\KompoZer.lnk - D:\Programi i Drajveri\KompoZer 0.7.10\kompozer.exe
C:\Documents and Settings\Miljan Ilic\Desktop\Muzika.lnk - D:\Muzika
C:\Documents and Settings\Miljan Ilic\Desktop\Pawno.exe.lnk - D:\pawno\pawno.exe
C:\Documents and Settings\Miljan Ilic\Desktop\PawnPlus.lnk - C:\Program Files\PawnPlus\PawnPlus.exe
C:\Documents and Settings\Miljan Ilic\Desktop\Power Sound Editor Free.lnk - C:\Program Files\Power Sound Editor Free\PowerSoundEditorFree.exe
C:\Documents and Settings\Miljan Ilic\Desktop\San Andreas Multiplayer.lnk - D:\Grand Theft Auto San Andreas PC\samp.exe
C:\Documents and Settings\Miljan Ilic\Desktop\Shortcut to Internet.lnk -
C:\Documents and Settings\Miljan Ilic\Desktop\Shortcut to putty.exe.lnk - C:\Program Files\PuTTY\putty.exe
C:\Documents and Settings\Miljan Ilic\Desktop\Ultra Audio Recorder.lnk - C:\Program Files\Ultra Audio Recorder\SplashPro.exe
C:\Documents and Settings\Miljan Ilic\Desktop\µTorrent.lnk - C:\Documents and Settings\Miljan Ilic\Application Data\uTorrent\uTorrent.exe

==== shortcuts on All Users Desktop ======================

C:\Documents and Settings\All Users\Desktop\PhotoZoom Pro 5.lnk - C:\Program Files\PhotoZoom Pro 5\PhotoZoom Pro 5.exe
C:\Documents and Settings\All Users\Desktop\Skype.lnk - C:\windows\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe
C:\Documents and Settings\All Users\Desktop\Steam.lnk - C:\Program Files\Steam\Steam.exe
C:\Documents and Settings\All Users\Desktop\TeamSpeak 3 Client.lnk - C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe
C:\Documents and Settings\All Users\Desktop\TeamViewer 10.lnk - C:\Program Files\TeamViewer\TeamViewer.exe
C:\Documents and Settings\All Users\Desktop\WinSCP.lnk - C:\Program Files\WinSCP\WinSCP.exe

==== shortcuts in Users Start Menu ======================

C:\Documents and Settings\Default User\Start Menu\Programs\Remote Assistance.lnk - C:\windows\system32\rcimlby.exe -LaunchRA
C:\Documents and Settings\Default User\Start Menu\Programs\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Documents and Settings\Default User\Start Menu\Programs\Accessories\Command Prompt.lnk - C:\windows\system32\cmd.exe
C:\Documents and Settings\Default User\Start Menu\Programs\Accessories\Notepad.lnk - C:\windows\system32\notepad.exe
C:\Documents and Settings\Default User\Start Menu\Programs\Accessories\Program Compatibility Wizard.lnk -
C:\Documents and Settings\Default User\Start Menu\Programs\Accessories\Synchronize.lnk - C:\windows\system32\mobsync.exe
C:\Documents and Settings\Default User\Start Menu\Programs\Accessories\Tour Windows XP.lnk - C:\windows\system32\tourstart.exe
C:\Documents and Settings\Default User\Start Menu\Programs\Accessories\Windows Explorer.lnk - C:\windows\explorer.exe
C:\Documents and Settings\Default User\Start Menu\Programs\Accessories\Accessibility\Magnifier.lnk - C:\windows\system32\magnify.exe
C:\Documents and Settings\Default User\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk - C:\windows\system32\narrator.exe
C:\Documents and Settings\Default User\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk - C:\windows\system32\osk.exe
C:\Documents and Settings\Default User\Start Menu\Programs\Accessories\Accessibility\Utility Manager.lnk - C:\windows\system32\utilman.exe /start
C:\Documents and Settings\Default User\Start Menu\Programs\Accessories\Entertainment\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Documents and Settings\Miljan Ilic\Start Menu\GOM Player.lnk - C:\Program Files\GRETECH\GomPlayer\GOM.EXE
C:\Documents and Settings\Miljan Ilic\Start Menu\Power Sound Editor Free.lnk - C:\Program Files\Power Sound Editor Free\PowerSoundEditorFree.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Outlook Express.lnk - C:\Program Files\Outlook Express\msimn.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Remote Assistance.lnk - C:\windows\system32\rcimlby.exe -LaunchRA
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\µTorrent.lnk - C:\Documents and Settings\Miljan Ilic\Application Data\uTorrent\uTorrent.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Address Book.lnk - C:\Program Files\Outlook Express\wab.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Command Prompt.lnk - C:\windows\system32\cmd.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Notepad.lnk - C:\windows\system32\notepad.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Program Compatibility Wizard.lnk -
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Synchronize.lnk - C:\windows\system32\mobsync.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Tour Windows XP.lnk - C:\windows\system32\tourstart.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Windows Explorer.lnk - C:\windows\explorer.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Accessibility\Magnifier.lnk - C:\windows\system32\magnify.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk - C:\windows\system32\narrator.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk - C:\windows\system32\osk.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Accessibility\Utility Manager.lnk - C:\windows\system32\utilman.exe /start
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Accessories\Entertainment\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\CoffeeCup Software\CoffeeCup Free HTML Editor.lnk - C:\Documents and Settings\Miljan Ilic\Application Data\CoffeeCup Software\CoffeeCup Free HTML Editor\Coffee.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Counter-Strike\Counter-Strike WaRzOnE.lnk - C:\Games\Counter-Strike\hl.exe -steam -game cstrike -noforcemparms -noforcemaccel
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\DirBuster\DirBuster.lnk - C:\Program Files\DirBuster\DirBuster.jar
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\DirBuster\Uninstall.lnk - C:\Program Files\DirBuster\Uninstall.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Dropbox\Dropbox.lnk - C:\Documents and Settings\Miljan Ilic\Application Data\Dropbox\bin\Dropbox.exe /home
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Dropbox\Uninstall Dropbox.lnk - C:\Documents and Settings\Miljan Ilic\Application Data\Dropbox\bin\DropboxUninstaller.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Half-Life\Half-Life WaRzOnE.lnk - C:\Games\Counter-Strike\hl.exe -steam -noforcemparms -noforcemaccel
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\HLDS\HLDS.lnk - C:\Games\Counter-Strike\hlds.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Offline Downloader\About Offline Downloader.lnk - C:\Program Files\Offline Downloader\readme.rtf
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Offline Downloader\Help.lnk - C:\Program Files\Offline Downloader\extra.hlp
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Offline Downloader\License.lnk - C:\Program Files\Offline Downloader\License.txt
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Offline Downloader\Offline Downloader.lnk - C:\Program Files\Offline Downloader\offline.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Offline Downloader\Read Me.lnk - C:\Program Files\Offline Downloader\README.TXT
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Offline Downloader\Uninstall.lnk - C:\Program Files\Offline Downloader\uninstall.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\PawnPlus\PawnPlus.lnk - C:\Program Files\PawnPlus\PawnPlus.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\PawnPlus\Uninstall.lnk - C:\Program Files\PawnPlus\Uninstall.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\San Andreas Multiplayer\San Andreas Multiplayer.lnk - D:\Grand Theft Auto San Andreas PC\samp.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\San Andreas Multiplayer\Uninstall.lnk - D:\Grand Theft Auto San Andreas PC\SAMPUninstall.exe
C:\Documents and Settings\Miljan Ilic\Start Menu\Programs\Startup\Dropbox.lnk - C:\Documents and Settings\Miljan Ilic\Application Data\Dropbox\bin\Dropbox.exe /systemstartup

==== shortcuts in All Users Start Menu ======================

C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk - C:\windows\system32\control.exe appwiz.cpl,,3
C:\Documents and Settings\All Users\Start Menu\Windows Catalog.lnk -
C:\Documents and Settings\All Users\Start Menu\Windows Update.lnk - C:\windows\system32\wupdmgr.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Bridge CS6.lnk - C:\Program Files\Adobe\Adobe Bridge CS6\Bridge.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk - C:\Program Files\Adobe\Adobe Utilities - CS6\ExtendScript Toolkit CS6\ExtendScript Toolkit.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Extension Manager CS6.lnk - C:\Program Files\Adobe\Adobe Extension Manager CS6\Adobe Extension Manager CS6.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Photoshop CS6.lnk - C:\Program Files\Adobe\Adobe Photoshop CS6\Photoshop.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Disketch Disc Label Software.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe
C:\Documents and Settings\All Users\Start Menu\Programs\MSN.lnk - C:\Program Files\MSN\MSNCoreFiles\Install\msnsusii.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Opera.lnk - C:\Program Files\Opera\launcher.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk - C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk - C:\Program Files\Movie Maker\moviemk.exe
C:\Documents and Settings\All Users\Start Menu\Programs\WinSCP.lnk - C:\Program Files\WinSCP\WinSCP.exe
C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip\7-Zip File Manager.lnk - C:\Program Files\7-Zip\7zFM.exe
C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip\7-Zip Help.lnk - C:\Program Files\7-Zip\7-zip.chm
C:\Documents and Settings\All Users\Start Menu\Programs\AC3Filter\AC3Filter Config.lnk - C:\Program Files\AC3Filter\ac3config.exe
C:\Documents and Settings\All Users\Start Menu\Programs\AC3Filter\Clear filter cache.lnk - C:\Program Files\AC3Filter\Clear filter cache.reg
C:\Documents and Settings\All Users\Start Menu\Programs\AC3Filter\License.lnk - C:\Program Files\AC3Filter\GPL.txt
C:\Documents and Settings\All Users\Start Menu\Programs\AC3Filter\Readme.lnk - C:\Program Files\AC3Filter\Readme.txt
C:\Documents and Settings\All Users\Start Menu\Programs\AC3Filter\Reset to defaults.lnk - C:\Program Files\AC3Filter\Reset to defaults.reg
C:\Documents and Settings\All Users\Start Menu\Programs\AC3Filter\Restore default presets.lnk - C:\Program Files\AC3Filter\Presets.reg
C:\Documents and Settings\All Users\Start Menu\Programs\AC3Filter\SPDIF test (32bit).lnk - C:\Program Files\AC3Filter\spdif_test.exe
C:\Documents and Settings\All Users\Start Menu\Programs\AC3Filter\Uninstall AC3Filter.lnk - C:\Program Files\AC3Filter\unins000.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Calculator.lnk - C:\windows\system32\calc.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Paint.lnk - C:\windows\system32\mspaint.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk - C:\windows\system32\mstsc.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Scanner and Camera Wizard.lnk - C:\WINDOWS\system32\wiaacmgr.exe -SelectDevice
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\WordPad.lnk - C:\Program Files\Windows NT\Accessories\wordpad.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Accessibility\Accessibility Wizard.lnk - C:\windows\system32\accwiz.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Communications\HyperTerminal.lnk - C:\Program Files\Windows NT\hypertrm.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Communications\Network Connections.lnk - C:\windows\explorer.exe ::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{21EC2020-3AEA-1069-A2DD-08002B30309D}\::{7007acc7-3202-11d1-aad2-00805fc1270e}
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Communications\Network Setup Wizard.lnk - C:\windows\system32\rundll32.exe hnetwiz.dll,HomeNetWizardRunDll
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Communications\New Connection Wizard.lnk - C:\windows\system32\rundll32.exe netshell.dll,StartNCW
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Communications\Wireless Network Setup Wizard.lnk - C:\windows\system32\rundll32.exe shell32.dll,Control_RunDLL NetSetup.cpl,@0,WNSW
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Entertainment\Sound Recorder.lnk - C:\windows\system32\sndrec32.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\Entertainment\Volume Control.lnk - C:\windows\system32\sndvol32.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\PhotoZoom Pro 5\Naru?i PhotoZoom Pro 5.lnk -
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\PhotoZoom Pro 5\PhotoZoom Pro 5 Pomo?.lnk -
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\PhotoZoom Pro 5\PhotoZoom Pro 5.lnk - C:\Program Files\PhotoZoom Pro 5\PhotoZoom Pro 5.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\PhotoZoom Pro 5\Pro?itaj me.lnk -
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\System Tools\Backup.lnk - C:\windows\system32\ntbackup.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\System Tools\Character Map.lnk - C:\windows\system32\charmap.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\System Tools\Disk Cleanup.lnk - C:\windows\system32\cleanmgr.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\System Tools\Disk Defragmenter.lnk - C:\windows\system32\dfrg.msc
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\System Tools\Files and Settings Transfer Wizard.lnk - C:\windows\system32\usmt\migwiz.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\System Tools\Scheduled Tasks.lnk - C:\windows\explorer.exe ::{20D04FE0-3AEA-1069-A2D8-08002B30309D}\::{21EC2020-3AEA-1069-A2DD-08002B30309D}\::{D6277990-4C6A-11CF-8D87-00AA0060F5BF}
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\System Tools\Security Center.lnk - C:\windows\system32\wscui.cpl
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\System Tools\System Information.lnk - C:\Program Files\Common Files\Microsoft Shared\MSInfo\msinfo32.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Accessories\System Tools\System Restore.lnk - C:\windows\system32\restore\rstrui.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Component Services.lnk - C:\WINDOWS\system32\Com\comexp.msc
C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Computer Management.lnk - C:\windows\system32\compmgmt.msc /s
C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Data Sources (ODBC).lnk - C:\windows\system32\odbcad32.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Event Viewer.lnk - C:\windows\system32\eventvwr.msc /s
C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Local Security Policy.lnk - C:\windows\system32\secpol.msc /s
C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Microsoft .NET Framework 1.1 Configuration.lnk - C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorcfg.msc
C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Microsoft .NET Framework 1.1 Wizards.lnk - C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\ConfigWizards.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Performance.lnk - C:\windows\system32\perfmon.msc /s
C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools\Services.lnk - C:\windows\system32\services.msc /s
C:\Documents and Settings\All Users\Start Menu\Programs\AVG\AVG 2015.lnk - C:\Program Files\AVG\AVG2015\avgui.exe
C:\Documents and Settings\All Users\Start Menu\Programs\CoffeeCup Software\Website Insight.lnk - C:\Documents and Settings\Miljan Ilic\Application Data\CoffeeCup Software\Website Insight\WebsiteInsight.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Games\Freecell.lnk - C:\windows\system32\freecell.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Games\Hearts.lnk - C:\windows\system32\mshearts.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Games\Internet Backgammon.lnk - C:\Program Files\MSN Gaming Zone\Windows\bckgzm.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Games\Internet Checkers.lnk - C:\Program Files\MSN Gaming Zone\Windows\chkrzm.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Games\Internet Hearts.lnk - C:\Program Files\MSN Gaming Zone\Windows\hrtzzm.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Games\Internet Reversi.lnk - C:\Program Files\MSN Gaming Zone\Windows\Rvsezm.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Games\Internet Spades.lnk - C:\Program Files\MSN Gaming Zone\Windows\shvlzm.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Games\Minesweeper.lnk - C:\windows\system32\winmine.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Games\Pinball.lnk - C:\Program Files\Windows NT\Pinball\PINBALL.EXE
C:\Documents and Settings\All Users\Start Menu\Programs\Games\Solitaire.lnk - C:\windows\system32\sol.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Games\Spider Solitaire.lnk - C:\windows\system32\spider.exe
C:\Documents and Settings\All Users\Start Menu\Programs\GOM Player\GOM Player.lnk - C:\Program Files\GRETECH\GomPlayer\GOM.EXE
C:\Documents and Settings\All Users\Start Menu\Programs\GOM Player\Uninstall.lnk - C:\Program Files\GRETECH\GomPlayer\Uninstall.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Graphics Related Programs\Graphics File Converter.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind Pixillion
C:\Documents and Settings\All Users\Start Menu\Programs\Graphics Related Programs\PhotoPad Editor.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind PhotoPad
C:\Documents and Settings\All Users\Start Menu\Programs\Graphics Related Programs\Video File Converter.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind Prism
C:\Documents and Settings\All Users\Start Menu\Programs\Java\About Java.lnk - C:\Program Files\Java\jre1.8.0_25\bin\javacpl.exe -tab about
C:\Documents and Settings\All Users\Start Menu\Programs\Java\Check For Updates.lnk - C:\Program Files\Java\jre1.8.0_25\bin\javacpl.exe -tab update
C:\Documents and Settings\All Users\Start Menu\Programs\Java\Configure Java.lnk - C:\Program Files\Java\jre1.8.0_25\bin\javacpl.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Java\Get Help.lnk -
C:\Documents and Settings\All Users\Start Menu\Programs\Java\Visit Java.com.lnk -
C:\Documents and Settings\All Users\Start Menu\Programs\Lightshot\Lightshot.lnk - C:\Program Files\Skillbrains\lightshot\Lightshot.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Lightshot\Uninstall Lightshot.lnk - C:\Program Files\Skillbrains\lightshot\unins000.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office Access 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office Excel 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office Groove 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\GrooveIcon.ico
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office InfoPath 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office OneNote 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office Outlook 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office PowerPoint 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office Publisher 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office Word 2007.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Digital Certificate for VBA Projects.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Clip Organizer.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office 2007 Language Settings.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office Diagnostics.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Office\Microsoft Office Tools\Microsoft Office Picture Manager.lnk - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Accounting Software.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind ExpressAccounts
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Classic FTP Software.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind ClassicFTP
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Doxillion Document Converter.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind Doxillion
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Express Burn CD, DVD or Blu-Ray.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind ExpressBurn
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Express Dictate Recorder.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind Express
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Express Rip CD Ripper.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind Rip
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Express Zip File Compression.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind ExpressZip
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Graphics File Converter.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind Pixillion
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Invoicing Software.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind ExpressInvoice
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\MixPad MultiTrack Mixer.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind MixPad
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Prism Video File Format Converter.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind Prism
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\RecordPad Sound Recorder.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind RecordPad
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\SoundTap Streaming Recorder.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind SoundTap
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Switch Sound File Converter.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind Switch
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\Video Capture Software.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind Debut
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\VideoPad Video Editor.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind VideoPad
C:\Documents and Settings\All Users\Start Menu\Programs\NCH Software Suite\WavePad Sound Editor.lnk - C:\Program Files\NCH Software\Disketch\disketch.exe -extfind WavePad
C:\Documents and Settings\All Users\Start Menu\Programs\Power Sound Editor Free\Power Sound Editor Free.lnk - C:\Program Files\Power Sound Editor Free\PowerSoundEditorFree.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Power Sound Editor Free\Uninstall.lnk - C:\Program Files\Power Sound Editor Free\unins000.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Samsung Printers\Order Supplies.lnk - C:\Program Files\Samsung\Easy Printer Manager\OrderSupplies.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Samsung Printers\Samsung Easy Printer Manager.lnk - C:\Program Files\Samsung\Easy Printer Manager\IDS.Application.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Samsung Printers\Samsung Universal Print Driver 2.lnk - C:\Program Files\Samsung\Samsung Universal Print Driver 2\PrinterSelector\SUPDApp.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Samsung Printers\Uninstall Samsung Printer Software.lnk - C:\WINDOWS\TotalUninstaller.exe /REMOVE_ALL
C:\Documents and Settings\All Users\Start Menu\Programs\Skype\Skype.lnk - C:\Program Files\Skype\Phone\Skype.exe
C:\Documents and Settings\All Users\Start Menu\Programs\SoundMAX\DLS Loader.lnk - C:\Program Files\Analog Devices\SoundMAX\DLSLoader.exe
C:\Documents and Settings\All Users\Start Menu\Programs\SoundMAX\SoundMAX Control Panel.lnk - C:\WINDOWS\system32\rundll32.exe shell32.dll,Control_RunDLL "C:\Program Files\Analog Devices\SoundMAX\smax3cp.cpl"
C:\Documents and Settings\All Users\Start Menu\Programs\SoundMAX\SoundMAX FAQs.lnk - C:\Program Files\Analog Devices\SoundMAX\SMaxFAQ.htm
C:\Documents and Settings\All Users\Start Menu\Programs\Steam\Steam.lnk - C:\Program Files\Steam\Steam.exe
C:\Documents and Settings\All Users\Start Menu\Programs\TeamSpeak 3 Client\TeamSpeak 3 Client.lnk - C:\Program Files\TeamSpeak 3 Client\ts3client_win32.exe
C:\Documents and Settings\All Users\Start Menu\Programs\TeamSpeak 3 Client\Uninstall.lnk - C:\Program Files\TeamSpeak 3 Client\Uninstall.exe
C:\Documents and Settings\All Users\Start Menu\Programs\TeamViewer 10\License.lnk - C:\Program Files\TeamViewer\License.txt
C:\Documents and Settings\All Users\Start Menu\Programs\TeamViewer 10\TeamViewer 10.lnk - C:\Program Files\TeamViewer\TeamViewer.exe
C:\Documents and Settings\All Users\Start Menu\Programs\TeamViewer 10\Uninstall TeamViewer 10.lnk - C:\Program Files\TeamViewer\uninstall.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Ultra Audio Recorder\Ultra Audio Recorder Help.lnk - C:\Program Files\Ultra Audio Recorder\help.chm
C:\Documents and Settings\All Users\Start Menu\Programs\Ultra Audio Recorder\Ultra Audio Recorder.lnk - C:\Program Files\Ultra Audio Recorder\SplashPro.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Ultra Audio Recorder\Uninstall.lnk - C:\Program Files\Ultra Audio Recorder\unins000.exe

==== shortcuts in Quick Launch ======================

C:\Documents and Settings\Miljan Ilic\Application Data\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk - C:\Program Files\GRETECH\GomPlayer\GOM.EXE
C:\Documents and Settings\Miljan Ilic\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Miljan Ilic\Application Data\Microsoft\Internet Explorer\Quick Launch\Mail.Ru.lnk - C:\Program Files\Internet Explorer\IEXPLORE.EXE mail.ru/cnt/8136
C:\Documents and Settings\Miljan Ilic\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk - C:\Program Files\Opera\launcher.exe
C:\Documents and Settings\Miljan Ilic\Application Data\Microsoft\Internet Explorer\Quick Launch\Power Sound Editor Free.lnk - C:\Program Files\Power Sound Editor Free\PowerSoundEditorFree.exe
C:\Documents and Settings\Miljan Ilic\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk - C:\Program Files\Windows Media Player\wmplayer.exe /prefetch:1
C:\Documents and Settings\Miljan Ilic\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk - C:\Documents and Settings\Miljan Ilic\Application Data\uTorrent\uTorrent.exe
C:\Documents and Settings\Miljan Ilic\Application Data\Microsoft\Internet Explorer\Quick Launch\?o??? ? ???e???? 2inf.net.lnk -

==== shortcuts After Repair ======================

C:\Documents and Settings\Miljan Ilic\Application Data\Microsoft\Internet Explorer\Quick Launch\Mail.Ru.lnk - C:\Program Files\Internet Explorer\IEXPLORE.EXE

==== Empty IE Cache ======================

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\Miljan Ilic\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Documents and Settings\Miljan Ilic\Local Settings\Application Data\Opera Software\Opera Stable\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=84 folders=13 21962044 bytes)

==== Empty Temp Folders ======================

C:\Documents and Settings\Default User\Local Settings\Temp emptied successfully
C:\Documents and Settings\LocalService\Local Settings\temp emptied successfully
C:\Documents and Settings\Miljan Ilic\Local Settings\temp will be emptied at reboot
C:\Documents and Settings\NetworkService\Local Settings\temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\DOCUME~1\MILJAN~1\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

ctfmon.exe je idalje tu Sad
==== Deleting Files / Folders ======================

"C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Documents and Settings\Miljan Ilic\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found

==== EOF on sub 10.01.2015 at 22:34:08,51 ======================

Ko je trenutno na forumu
 

Ukupno su 522 korisnika na forumu :: 16 registrovanih, 3 sakrivenih i 503 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., bato, djboj, galijot, HrcAk47, MarKhan, Milan A. Nikolic, Rakenica, raketaš, ruseskij, sakota79, Skywhaler, Smd, Trpe Grozni, VJ, yrraf