Problem sa chrome pocetnom stranom

Problem sa chrome pocetnom stranom

offline
  • Pridružio: 27 Avg 2005
  • Poruke: 538

Problem sa chrome pocetnom stranom i reklamama

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:18-05-2016
Ran by RPRIVEL (administrator) on RIVELL2 (18-05-2016 16:56:05)
Running from C:\Users\RPRIVEL\Desktop
Loaded Profiles: RPRIVEL (Available Profiles: RPRIVEL)
Platform: Microsoft Windows 7 Home Basic Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(Creative Technology Ltd) C:\Program Files\Creative\Shared Files\CTAudSvc.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
() C:\MySQL\MySQL Server 5.1\bin\mysqld.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Creative Technology Ltd) C:\Windows\System32\CtHelper.exe
(A.E.T. Europe B.V.) C:\Windows\System32\aetcrss1.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\PROSPOOL\ProSpool.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Desktop.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49976 2014-08-01] (Hewlett-Packard)
HKLM\...\Run: [CTHelper] => C:\Windows\system32\CTHELPER.EXE [20480 2015-09-02] (Creative Technology Ltd)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2009-09-29] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [CertificateRegistration] => C:\Windows\system32\aetcrss1.exe [151552 2011-11-10] (A.E.T. Europe B.V.)
HKLM\...\Run: [SecurityTray] => C:\Program Files\SecurityTray\SecurityTray.exe [204976 2016-01-26] ()
HKU\S-1-5-21-3615150473-1923277583-1539101694-1000\...\RunOnce: [Application Restart #0] => C:\Program Files\Google\Chrome\Application\chrome.exe [881304 2016-05-11] (Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ProSpool - Shortcut.lnk [2016-04-28]
ShortcutTarget: ProSpool - Shortcut.lnk -> C:\PROSPOOL\ProSpool.exe ()
BootExecute: autocheck autochk * Partizan

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{620E5B35-FF62-408A-A7C3-B8B839519DF1}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3615150473-1923277583-1539101694-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3615150473-1923277583-1539101694-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKU\S-1-5-21-3615150473-1923277583-1539101694-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3615150473-1923277583-1539101694-1000\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRYEqQao2TxTGptbOxpBNeFBb3UPzoGS1k2pKEeGQr2HQR8hm7_UiG12Jra1VlgOD-p9O_A64-EqMSgXBJsjoqNQ80ZWfnBLbdtHJZtonJ5xv6CPLWfIcz013RVqW4pIqsinKwOPmMgf-aZtRbptyQPxhNmJfuEqMS3d4EDnIwkN83cvHHJkibUee4zp5aA4,&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3615150473-1923277583-1539101694-1000 -> DefaultScope {B3C8493D-1954-4908-A275-3791469AB393} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-3615150473-1923277583-1539101694-1000 -> {B3C8493D-1954-4908-A275-3791469AB393} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2015-10-04] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-10-04] (Oracle Corporation)
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://files.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\RPRIVEL\AppData\Roaming\Mozilla\Firefox\Profiles\zx7cb365.default
FF NewTab:
FF DefaultSearchEngine: Google
FF DefaultSearchEngine: findit
FF Homepage: about:blank
FF Plugin: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-10-04] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-10-04] (Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-03] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-02-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2016-05-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\RPRIVEL\AppData\Roaming\Mozilla\Firefox\Profiles\zx7cb365.default\searchplugins\findit.xml [2016-05-09]

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxp://feed.wiki-search.me/?st=ds&query={searchTerms}
CHR DefaultSearchKeyword: Default -> Wiki Search.me
CHR Profile: C:\Users\RPRIVEL\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google презентације) - C:\Users\RPRIVEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-03]
CHR Extension: (Google документи) - C:\Users\RPRIVEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-03]
CHR Extension: (Google диск) - C:\Users\RPRIVEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-19]
CHR Extension: (YouTube) - C:\Users\RPRIVEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-03]
CHR Extension: (Google Search) - C:\Users\RPRIVEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-19]
CHR Extension: (Google табеле) - C:\Users\RPRIVEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-03]
CHR Extension: (Google документи офлајн) - C:\Users\RPRIVEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-21]
CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\RPRIVEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-30]
CHR Extension: (Gmail) - C:\Users\RPRIVEL\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-03]
CHR HKLM\...\Chrome\Extension: [fcgnigmofekcllgbiejhmigggmgehkip] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2015-10-03] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2015-10-04] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [286720 2010-02-12] (Creative Technology Ltd) [File not signed]
R2 MySQL; C:\MySQL\MySQL Server 5.1\my.ini [8888 2016-04-28] () [File not signed]
R2 PSI_SVC_2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [277360 2014-04-30] (arvato digital services llc)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 COMMONFX; C:\Windows\System32\drivers\COMMONFX.SYS [97712 2015-09-02] (Creative Technology Ltd)
R3 COMMONFX.SYS; C:\Windows\System32\drivers\COMMONFX.SYS [97712 2015-09-02] (Creative Technology Ltd)
S3 CTAUDFX; C:\Windows\System32\drivers\CTAUDFX.SYS [557312 2015-09-02] (Creative Technology Ltd)
R3 CTAUDFX.SYS; C:\Windows\System32\drivers\CTAUDFX.SYS [557312 2015-09-02] (Creative Technology Ltd)
S3 ctdvda2k; C:\Windows\System32\drivers\ctdvda2k.sys [349360 2015-09-02] (Creative Technology Ltd)
S3 CTERFXFX; C:\Windows\System32\drivers\CTERFXFX.SYS [103168 2015-09-02] (Creative Technology Ltd)
S3 CTERFXFX.SYS; C:\Windows\System32\drivers\CTERFXFX.SYS [103168 2015-09-02] (Creative Technology Ltd)
S3 CTSBLFX; C:\Windows\System32\drivers\CTSBLFX.SYS [568576 2015-09-02] (Creative Technology Ltd)
R3 CTSBLFX.SYS; C:\Windows\System32\drivers\CTSBLFX.SYS [568576 2015-09-02] (Creative Technology Ltd)
R3 GemCCID; C:\Windows\System32\DRIVERS\GemCCID.sys [98816 2013-02-22] (Gemalto)
R3 ha10kx2k; C:\Windows\System32\drivers\ha10kx2k.sys [802560 2015-09-02] (Creative Technology Ltd)
S3 hap16v2k; C:\Windows\System32\drivers\hap16v2k.sys [165120 2015-09-02] (Creative Technology Ltd)
S3 hap17v2k; C:\Windows\System32\drivers\hap17v2k.sys [191744 2015-09-02] (Creative Technology Ltd)
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [20992 2006-11-02] (Microsoft Corporation)
R3 LUsbFilt; C:\Windows\System32\Drivers\LUsbFilt.Sys [38416 2015-06-18] (Logitech, Inc.)
U0 Partizan; C:\Windows\System32\drivers\Partizan.sys [40304 2016-05-09] (Greatis Software)
R3 Serenum; C:\Windows\System32\DRIVERS\nuvserenum.sys [17920 2014-01-12] (Windows (R) Win 7 DDK provider)
R3 Serial; C:\Windows\System32\DRIVERS\nuvserial.sys [76288 2014-01-12] (Nuvoton Technology Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-18 16:56 - 2016-05-18 16:56 - 00013669 _____ C:\Users\RPRIVEL\Desktop\FRST.txt
2016-05-18 16:55 - 2016-05-18 16:56 - 00000000 ____D C:\FRST
2016-05-18 16:54 - 2016-05-18 16:55 - 01733120 _____ (Farbar) C:\Users\RPRIVEL\Desktop\FRST.exe
2016-05-16 13:10 - 2016-05-16 13:10 - 00001017 _____ C:\Users\Public\Desktop\SecurityTray.lnk
2016-05-16 13:10 - 2016-05-16 13:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SecurityTray
2016-05-16 13:10 - 2016-05-16 13:10 - 00000000 ____D C:\Program Files\SecurityTray
2016-05-16 12:57 - 2016-05-16 12:57 - 00000000 ____D C:\Users\RPRIVEL\Desktop\RPRIVEL
2016-05-16 12:47 - 2016-05-16 12:47 - 00457942 _____ C:\Users\RPRIVEL\Desktop\scan0002.pdf
2016-05-16 12:41 - 2016-05-16 12:41 - 00457942 _____ C:\Users\RPRIVEL\Downloads\scan0002.pdf
2016-05-16 12:11 - 2016-05-16 12:11 - 00017787 _____ C:\Users\RPRIVEL\Desktop\uexcde01p_10350_MP-rp rivel 16.05.2016..pdf
2016-05-16 08:06 - 2016-05-16 08:06 - 00050293 _____ C:\Users\RPRIVEL\Downloads\Izvod87_2016.05.14_220000000010232913 (1).pdf
2016-05-16 08:01 - 2016-05-16 08:01 - 00050293 _____ C:\Users\RPRIVEL\Downloads\Izvod87_2016.05.14_220000000010232913.pdf
2016-05-16 07:59 - 2016-05-16 07:59 - 00054929 _____ C:\Users\RPRIVEL\Desktop\Izvod86_2016.05.13_220000000010232913.pdf
2016-05-12 11:15 - 2016-05-12 11:16 - 02045180 _____ C:\Users\RPRIVEL\Desktop\SecurityTrayInstaller_x86.zip
2016-05-12 10:51 - 2016-05-12 10:51 - 00000000 ____D C:\Users\RPRIVEL\Documents\Custom Office Templates
2016-05-12 08:47 - 2016-05-12 08:47 - 00049893 _____ C:\Users\RPRIVEL\Downloads\uexcde01p_10350_MP.NAR_160512080751_6403347.pdf
2016-05-12 07:53 - 2016-05-12 07:54 - 00778950 _____ C:\Users\RPRIVEL\Desktop\Predračun 5.pdf
2016-05-11 14:35 - 2016-05-11 14:35 - 00200704 _____ C:\Users\RPRIVEL\Desktop\009 RPRIVEL.xls
2016-05-11 13:49 - 2016-05-11 13:49 - 00000000 ___RD C:\Users\RPRIVEL\Desktop\CENOVNICI RPRIVEL-a
2016-05-11 13:49 - 2016-05-11 13:49 - 00000000 ____D C:\Users\RPRIVEL\Desktop\EVIDENCIJA HEMIKALIJA
2016-05-11 13:49 - 2016-05-11 13:49 - 00000000 ____D C:\Users\RPRIVEL\Desktop\ciscenje desktopa 18 jul
2016-05-11 13:48 - 2016-05-11 13:53 - 00000000 ____D C:\Users\RPRIVEL\Desktop\IZVOZ NOV 2015
2016-05-11 13:48 - 2016-05-11 13:49 - 00000000 ____D C:\Users\RPRIVEL\Desktop\C4
2016-05-11 13:48 - 2016-05-11 13:48 - 00000000 ____D C:\Users\RPRIVEL\Desktop\ZARADE ZA PPP PD
2016-05-11 13:48 - 2016-05-11 13:48 - 00000000 ____D C:\Users\RPRIVEL\Desktop\MVP
2016-05-11 13:48 - 2016-05-11 13:48 - 00000000 ____D C:\Users\RPRIVEL\Desktop\KULER ET ZA PALETE ELKOS
2016-05-11 13:48 - 2016-05-11 13:48 - 00000000 ____D C:\Users\RPRIVEL\Desktop\IZVOZ ELKOS ROZAJE 2015
2016-05-11 13:48 - 2016-05-11 13:48 - 00000000 ____D C:\Users\RPRIVEL\Desktop\IZVOZ 001 2016
2016-05-11 13:48 - 2016-05-11 13:48 - 00000000 ____D C:\Users\RPRIVEL\Desktop\HABER
2016-05-11 13:48 - 2016-05-11 13:48 - 00000000 ____D C:\Users\RPRIVEL\Desktop\{F61F2FAB-7CBB-4745-BC52-C9FB2A0F99EF}
2016-05-11 13:48 - 2016-03-29 14:00 - 00096598 _____ C:\Users\RPRIVEL\Desktop\Bilans uspeha 2015.pdf
2016-05-11 13:48 - 2016-03-29 13:59 - 00121649 _____ C:\Users\RPRIVEL\Desktop\Bilans stanja 2015.pdf
2016-05-11 13:48 - 2016-03-17 15:34 - 00038912 _____ C:\Users\RPRIVEL\Desktop\nalog za sluzbeno putovanje HABER.xls
2016-05-11 13:48 - 2015-11-25 11:09 - 01041354 _____ C:\Users\RPRIVEL\Desktop\2015 CENOVNIK 01 2015 u Primeni RPRIVEL-a od 25-og JUNA 2012 FINAL.pdf
2016-05-11 13:48 - 2015-11-12 16:01 - 00040960 _____ C:\Users\RPRIVEL\Desktop\Blanko nalog za placanje-70.xls
2016-05-11 13:48 - 2015-06-17 10:44 - 01503411 _____ C:\Users\RPRIVEL\Desktop\PEĐA0001.pdf
2016-05-11 13:48 - 2013-04-08 10:37 - 00064125 _____ C:\Users\RPRIVEL\Desktop\INSTRUKCIJE SBERB.pdf
2016-05-11 07:59 - 2016-04-14 17:33 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-05-11 07:59 - 2016-04-09 08:59 - 03998952 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-05-11 07:59 - 2016-04-09 08:59 - 03943144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-05-11 07:59 - 2016-04-09 08:59 - 00730344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-05-11 07:59 - 2016-04-09 08:59 - 00218856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-05-11 07:59 - 2016-04-09 08:59 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-05-11 07:59 - 2016-04-09 08:59 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-05-11 07:59 - 2016-04-09 08:57 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 01062400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 01011712 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-05-11 07:59 - 2016-04-09 08:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-05-11 07:59 - 2016-04-09 07:42 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-05-11 07:59 - 2016-04-09 07:42 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-05-11 07:59 - 2016-04-09 07:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-05-11 07:59 - 2016-04-09 07:42 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-05-11 07:59 - 2016-04-09 07:42 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-05-11 07:59 - 2016-04-09 07:40 - 02397696 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-05-11 07:59 - 2016-04-09 07:40 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-05-11 07:59 - 2016-04-09 07:38 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-05-11 07:59 - 2016-04-09 07:38 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-05-11 07:59 - 2016-04-09 07:38 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-05-11 07:59 - 2016-04-09 07:37 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-05-11 07:59 - 2016-04-09 07:37 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-05-11 07:59 - 2016-04-09 07:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-05-11 07:59 - 2016-04-09 07:37 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-05-11 07:59 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-05-10 14:26 - 2016-05-10 14:26 - 01530353 _____ C:\Users\RPRIVEL\Downloads\RN 008-1105-150001.pdf
2016-05-10 14:23 - 2016-05-10 14:23 - 00515160 _____ C:\Users\RPRIVEL\Downloads\Fin.kartica Elkos0001.pdf
2016-05-10 13:34 - 2016-05-10 13:34 - 00453238 _____ C:\Users\RPRIVEL\Downloads\ugovor Elkos 2015 predfinal pdf.pdf
2016-05-10 13:33 - 2016-05-10 13:33 - 00098652 _____ C:\Users\RPRIVEL\Downloads\EUnetADSL-anex ugovora.pdf
2016-05-10 12:58 - 2016-05-10 12:58 - 00312450 _____ C:\Users\RPRIVEL\Desktop\adresar.xml
2016-05-10 12:58 - 2016-05-10 12:58 - 00000566 _____ C:\Users\RPRIVEL\Desktop\adresar.txt
2016-05-10 11:45 - 2016-05-10 11:45 - 05284652 _____ C:\Users\RPRIVEL\Desktop\TeamViewer_en (1).zip
2016-05-10 11:34 - 2016-05-10 11:34 - 00021202 _____ C:\Users\RPRIVEL\Downloads\ponuda rprivel.pdf
2016-05-10 10:43 - 2016-05-10 10:43 - 00049947 _____ C:\Users\RPRIVEL\Downloads\uexcde01p_10300_REF.ZALIHA_160510103832_6373767.pdf
2016-05-10 10:35 - 2016-05-10 10:35 - 00000000 ____D C:\Users\RPRIVEL\AppData\Local\IsolatedStorage
2016-05-10 10:28 - 2016-05-10 10:28 - 00050455 _____ C:\Users\RPRIVEL\Downloads\Izvod81_2016.05.06_220000000010232913.pdf
2016-05-10 10:18 - 2016-05-10 10:18 - 00049999 _____ C:\Users\RPRIVEL\Downloads\uexcde01p_10300_REF.ZALIHA_160506083217_6324389.pdf
2016-05-10 10:01 - 2016-05-10 10:01 - 00040619 _____ C:\Users\RPRIVEL\Desktop\rprivel 10.05..pdf
2016-05-10 08:59 - 2016-05-10 09:00 - 05284652 _____ C:\Users\RPRIVEL\Desktop\TeamViewer_en.zip
2016-05-10 08:47 - 2016-03-29 14:01 - 00211192 _____ C:\Users\RPRIVEL\Desktop\Statistički izveštaj 2015.pdf
2016-05-09 23:15 - 2016-05-09 23:15 - 00000000 ____D C:\ProgramData\xifss
2016-05-09 22:56 - 2016-05-09 22:56 - 00000000 ____D C:\ProgramData\RegRun
2016-05-09 18:43 - 2016-05-09 23:08 - 00000000 ____D C:\ProgramData\xifs
2016-05-09 16:21 - 2016-05-18 16:14 - 00000264 _____ C:\Windows\system32\PARTIZAN.TXT
2016-05-09 16:21 - 2016-05-09 16:21 - 00000258 __RSH C:\Users\RPRIVEL\ntuser.pol
2016-05-09 16:11 - 2016-05-09 16:11 - 00040304 _____ (Greatis Software) C:\Windows\system32\Drivers\Partizan.sys
2016-05-09 16:10 - 2016-05-12 07:28 - 00000000 ____D C:\Program Files\UnHackMe
2016-05-09 16:10 - 2016-05-09 23:04 - 00000000 ____D C:\Users\RPRIVEL\Documents\RegRun2
2016-05-09 16:10 - 2016-05-09 23:00 - 00000000 ____D C:\Users\Public\Documents\regruninfo
2016-05-09 16:10 - 2016-05-09 16:10 - 00000969 _____ C:\Users\RPRIVEL\Desktop\UnHackMe.lnk
2016-05-09 16:10 - 2016-05-09 16:10 - 00000002 RSHOT C:\Windows\winstart.bat
2016-05-09 16:10 - 2016-05-09 16:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UnHackMe
2016-05-09 16:10 - 2016-04-05 15:17 - 00012808 _____ (Greatis Software, LLC.) C:\Windows\system32\Drivers\UnHackMeDrv.sys
2016-05-09 16:10 - 2015-12-28 11:32 - 00049968 _____ (Greatis Software) C:\Windows\system32\partizan.exe
2016-05-09 16:09 - 2016-04-05 14:18 - 17500752 _____ (Greatis Software, LLC. ) C:\Users\RPRIVEL\Desktop\unhackme_setup.exe
2016-05-09 15:48 - 2016-05-09 15:48 - 00000000 ____D C:\Users\RPRIVEL\AppData\LocalLow\TSearch
2016-05-09 15:47 - 2016-05-09 15:47 - 00000258 __RSH C:\ProgramData\ntuser.pol
2016-05-09 15:43 - 2016-05-09 23:04 - 00000000 ____D C:\Program Files\BitTorrent
2016-05-09 15:43 - 2016-05-09 15:42 - 00041472 _____ C:\Users\RPRIVEL\AppData\Local\Anottrans.dat
2016-05-09 15:43 - 2016-05-09 15:42 - 00000187 _____ C:\Users\RPRIVEL\AppData\Local\Anottrans.exe.config
2016-05-09 15:42 - 2016-05-09 18:44 - 00002397 _____ C:\Windows\system32\findit.xml
2016-05-09 15:42 - 2016-05-09 15:42 - 06494208 _____ C:\Users\RPRIVEL\AppData\Roaming\agent.dat
2016-05-09 15:42 - 2016-05-09 15:42 - 01626777 _____ C:\Users\RPRIVEL\AppData\Roaming\Vol-Trax.tst
2016-05-09 15:42 - 2016-05-09 15:42 - 00189580 _____ () C:\Users\RPRIVEL\AppData\Roaming\TonFix.bin
2016-05-09 15:42 - 2016-05-09 15:42 - 00126464 _____ C:\Users\RPRIVEL\AppData\Roaming\noah.dat
2016-05-09 15:42 - 2016-05-09 15:42 - 00065568 _____ C:\Users\RPRIVEL\AppData\Roaming\Config.xml
2016-05-09 15:42 - 2016-05-09 15:42 - 00018432 _____ C:\Users\RPRIVEL\AppData\Roaming\Main.dat
2016-05-09 15:41 - 2016-05-09 23:04 - 00000000 ____D C:\ProgramData\CloudPrinter
2016-05-09 15:41 - 2016-05-09 15:42 - 00005568 _____ C:\Users\RPRIVEL\AppData\Roaming\md.xml
2016-05-09 15:41 - 2016-05-09 15:41 - 00948736 _____ C:\Users\RPRIVEL\AppData\Roaming\VOL-TRAX.del
2016-05-09 15:41 - 2016-05-09 15:41 - 00948736 _____ C:\Users\RPRIVEL\AppData\Roaming\INCHITY.del
2016-05-09 15:41 - 2016-05-09 15:41 - 00848437 _____ C:\Users\RPRIVEL\AppData\Roaming\SANKIX.del
2016-05-09 15:41 - 2016-05-09 15:41 - 00127488 _____ C:\Users\RPRIVEL\AppData\Roaming\Installer.dat
2016-05-09 15:41 - 2016-05-09 15:41 - 00126464 _____ C:\Users\RPRIVEL\AppData\Roaming\lobby.dat
2016-05-09 15:41 - 2016-05-09 15:41 - 00072717 _____ C:\Users\RPRIVEL\AppData\Roaming\Inchity.tst
2016-05-09 15:41 - 2016-05-09 15:41 - 00054272 _____ C:\Users\RPRIVEL\AppData\Roaming\ApplicationHosting.dat
2016-05-09 15:41 - 2016-05-09 15:41 - 00016992 _____ C:\Users\RPRIVEL\AppData\Roaming\InstallationConfiguration.xml
2016-05-09 13:46 - 2016-05-09 13:46 - 00546299 _____ C:\Users\RPRIVEL\Downloads\Racun 003 05XY 16 OD XYog Maja 2016 RV1.pdf
2016-05-09 12:19 - 2016-05-09 12:19 - 00301288 _____ C:\Users\RPRIVEL\Downloads\ZBIRNA PORUDZBINA ELKOSa PEC PO RACUNU 003 MAJ 2016 RV1.xlsx
2016-05-09 12:17 - 2016-05-09 12:17 - 00017791 _____ C:\Users\RPRIVEL\Downloads\uexcde01p_10350_MP-rp rivel 09.05.2016..pdf
2016-05-09 07:39 - 2016-05-09 07:39 - 00000000 ____D C:\Users\Default\Documents\Visual Studio 2008
2016-05-09 07:39 - 2016-05-09 07:39 - 00000000 ____D C:\Users\Default User\Documents\Visual Studio 2008
2016-05-08 03:03 - 2016-05-08 03:03 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-05-08 03:03 - 2016-05-08 03:03 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-05-07 15:06 - 2016-05-07 15:00 - 00002837 _____ C:\Users\RPRIVEL\Desktop\Word 2013.lnk
2016-05-07 15:06 - 2016-05-07 14:39 - 00002789 _____ C:\Users\RPRIVEL\Desktop\Excel 2013.lnk
2016-05-07 14:39 - 2016-05-09 07:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-05-07 14:38 - 2016-05-07 14:46 - 00000000 ____D C:\Windows\SHELLNEW
2016-05-07 14:38 - 2016-05-07 14:38 - 00000000 ____D C:\Users\RPRIVEL\Documents\Knjizenje
2016-05-07 14:38 - 2016-05-07 14:38 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-05-07 14:37 - 2016-05-07 14:38 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2016-05-07 14:30 - 2016-05-07 14:30 - 00000000 ____D C:\Users\RPRIVEL\Desktop\Knjizenje
2016-05-07 14:29 - 2016-05-07 14:29 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2016-05-07 14:25 - 2016-05-09 23:11 - 00000000 ____D C:\Users\RPRIVEL\Desktop\OfficeProfessionalPlus_x86_en-us
2016-05-07 13:58 - 2016-05-07 14:20 - 699004928 _____ C:\Users\RPRIVEL\Desktop\OfficeProfessionalPlus_x86_en-us.img
2016-05-07 12:34 - 2016-05-07 12:34 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2016-05-07 12:28 - 2016-05-07 13:40 - 00000000 ____D C:\Users\RPRIVEL\AppData\Roaming\uTorrent
2016-05-07 12:28 - 2016-05-07 12:28 - 00002648 _____ C:\Users\RPRIVEL\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-05-07 12:21 - 2016-05-18 16:22 - 00000929 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-05-07 12:21 - 2016-05-18 16:22 - 00000917 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-05-07 12:21 - 2016-05-18 16:22 - 00000000 ____D C:\Program Files\TeamViewer
2016-05-07 12:17 - 2016-05-07 12:17 - 00000000 ____D C:\Users\RPRIVEL\AppData\Roaming\Macromedia
2016-05-07 12:10 - 2016-05-07 12:08 - 00002409 _____ C:\Users\Public\Desktop\Bitstream Font Navigator.lnk
2016-05-07 12:10 - 2016-05-07 12:06 - 00002819 _____ C:\Users\Public\Desktop\Corel PHOTO-PAINT X7.lnk
2016-05-07 12:10 - 2016-05-07 12:06 - 00002816 _____ C:\Users\Public\Desktop\Corel CAPTURE X7.lnk
2016-05-07 12:10 - 2016-05-07 12:06 - 00002309 _____ C:\Users\Public\Desktop\Corel CONNECT X7.lnk
2016-05-07 12:10 - 2016-05-07 12:05 - 00002771 _____ C:\Users\Public\Desktop\CorelDRAW X7.lnk
2016-05-07 12:05 - 2016-05-07 12:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X7
2016-05-07 12:02 - 2016-05-07 12:16 - 00000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X7
2016-05-07 11:36 - 2016-05-07 11:36 - 00000000 ____D C:\Users\RPRIVEL\Documents\Remote Assistance Logs
2016-05-07 11:32 - 2016-05-07 11:32 - 00000000 ____H C:\Users\RPRIVEL\Documents\Default.rdp
2016-05-04 04:07 - 2016-03-18 00:30 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-05-04 04:07 - 2016-03-18 00:28 - 01414144 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-05-04 04:07 - 2016-03-18 00:26 - 00872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-05-04 04:07 - 2016-03-18 00:26 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-05-04 04:07 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-05-04 04:07 - 2016-03-17 23:36 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-05-04 04:07 - 2016-03-17 23:29 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-05-04 04:07 - 2016-03-17 23:29 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-04 04:07 - 2016-03-17 23:29 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-05-04 04:07 - 2016-03-17 23:29 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-05-04 03:58 - 2016-05-16 08:18 - 00000000 ____D C:\Windows\system32\appraiser
2016-05-04 03:58 - 2016-05-04 03:58 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-05-04 03:01 - 2016-05-04 03:01 - 00000000 ____D C:\Program Files\MSXML 4.0
2016-05-04 00:53 - 2016-04-04 19:54 - 00034024 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-05-04 00:53 - 2016-04-04 19:42 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-05-04 00:53 - 2016-04-02 15:07 - 01218048 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-05-04 00:53 - 2016-03-23 16:02 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-05-04 00:53 - 2016-03-17 20:04 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-05-04 00:53 - 2016-03-17 20:04 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-05-04 00:53 - 2016-03-17 20:04 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-05-04 00:53 - 2016-03-17 20:04 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-05-04 00:53 - 2016-03-16 20:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\msorcl32.dll
2016-05-04 00:53 - 2016-03-16 20:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-05-04 00:53 - 2016-03-16 01:53 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-05-04 00:53 - 2016-03-16 01:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-05-04 00:53 - 2016-02-03 16:07 - 01167520 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-05-04 00:53 - 2016-02-02 20:48 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-05-04 00:53 - 2016-01-21 02:51 - 00057280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-05-04 00:53 - 2012-02-11 07:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2016-05-04 00:53 - 2011-03-11 07:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2016-05-04 00:53 - 2011-03-11 07:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2016-05-04 00:53 - 2011-03-11 07:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2016-05-04 00:53 - 2011-03-11 07:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2016-05-04 00:53 - 2011-03-11 07:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2016-05-04 00:53 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-05-04 00:53 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2016-05-04 00:52 - 2016-03-06 20:38 - 01240576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-05-04 00:52 - 2016-03-06 20:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2016-05-04 00:52 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2016-05-04 00:52 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2016-05-04 00:52 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2016-05-04 00:52 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2016-05-04 00:52 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2016-05-04 00:51 - 2016-02-05 20:44 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-05-04 00:51 - 2016-02-05 19:33 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\tbs.dll
2016-05-04 00:51 - 2015-06-03 22:22 - 00355456 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-05-04 00:50 - 2015-07-15 19:59 - 00078784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-05-04 00:50 - 2015-07-15 19:55 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-05-04 00:50 - 2015-07-15 19:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-05-04 00:46 - 2016-04-21 15:05 - 00374944 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-05-03 18:54 - 2016-05-03 18:54 - 00000000 ____D C:\Program Files\gs
2016-05-03 18:52 - 2016-05-03 18:52 - 00000000 ____D C:\Program Files\Common Files\Corel
2016-05-03 12:45 - 2016-05-03 12:45 - 00028179 _____ C:\Users\RPRIVEL\Downloads\don.pdf
2016-05-03 12:34 - 2016-05-07 12:09 - 00000000 ____D C:\ProgramData\Package Cache
2016-05-03 12:02 - 2016-05-03 12:02 - 00000000 ____D C:\ProgramData\UniqueId
2016-05-03 11:51 - 2016-05-12 09:22 - 00000000 ___RD C:\Users\RPRIVEL\Desktop\IZVOZ 003 MAJ 2016
2016-05-03 11:45 - 2016-05-03 11:45 - 00000000 ___RD C:\Users\RPRIVEL\Desktop\IZVOZ 002 2016 ELKOS PEC
2016-05-03 11:45 - 2016-02-12 20:39 - 02956288 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-05-03 11:45 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-05-03 11:45 - 2016-02-12 20:26 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-05-03 11:45 - 2016-02-12 20:07 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-05-03 11:45 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-05-03 11:45 - 2016-02-12 20:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-05-03 11:45 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-05-03 11:45 - 2016-02-12 20:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-05-03 11:45 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-05-03 11:45 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-05-03 11:45 - 2016-02-12 20:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-05-03 11:45 - 2016-02-09 11:50 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-05-03 11:45 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-05-03 11:45 - 2016-02-03 19:59 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-05-03 11:44 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-05-03 11:44 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-05-03 11:44 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-05-03 11:44 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-05-03 11:44 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-05-03 11:44 - 2016-02-05 20:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-05-03 11:44 - 2016-02-05 20:44 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-05-03 11:44 - 2016-02-05 20:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-05-03 11:44 - 2016-02-05 19:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-05-03 11:44 - 2016-02-05 19:43 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-05-03 11:44 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-05-03 11:44 - 2016-02-03 20:49 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2016-05-03 11:44 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-05-03 11:44 - 2016-01-11 20:54 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-05-03 11:44 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-05-03 11:44 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-04-28 12:55 - 2016-05-03 11:49 - 00000000 ____D C:\Users\RPRIVEL\Desktop\New folder
2016-04-28 12:41 - 2016-04-28 12:41 - 00000000 ____D C:\Users\RPRIVEL\AppData\Local\A.E.T. Europe B.V
2016-04-28 12:40 - 2016-04-28 12:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SafeSign Standard
2016-04-28 12:40 - 2016-04-28 12:40 - 00000000 ____D C:\ProgramData\A.E.T. Europe B.V
2016-04-28 12:40 - 2016-04-28 12:40 - 00000000 ____D C:\Program Files\A.E.T. Europe B.V
2016-04-28 12:22 - 2016-04-28 12:22 - 00003762 _____ C:\Users\RPRIVEL\Downloads\attachment.pdf
2016-04-28 11:01 - 2016-05-12 10:01 - 00000000 ____D C:\Users\RPRIVEL\Documents\My Scans
2016-04-28 10:38 - 2016-04-28 10:39 - 00072399 _____ C:\Users\RPRIVEL\Downloads\M-4_SP.pdf
2016-04-28 10:12 - 2016-04-28 10:12 - 00000510 _____ C:\Users\RPRIVEL\Desktop\epid - Shortcut.lnk
2016-04-28 10:12 - 2016-04-28 10:12 - 00000000 ____D C:\ePiD
2016-04-28 10:10 - 2016-04-28 10:10 - 00000566 _____ C:\Users\RPRIVEL\Desktop\ProSpool - Shortcut.lnk
2016-04-28 10:09 - 2016-04-28 10:09 - 00000000 ____D C:\PROSPOOL
2016-04-28 10:09 - 2016-04-28 10:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MySQL
2016-04-28 10:09 - 2016-04-28 10:09 - 00000000 ____D C:\MySQL
2016-04-28 10:04 - 2016-04-28 10:05 - 00000648 _____ C:\Users\RPRIVEL\Desktop\Stampa u PDF.lnk
2016-04-19 12:20 - 2016-04-19 12:20 - 00000000 ____D C:\Users\RPRIVEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Asseco SEE
2016-04-18 13:48 - 2016-04-18 13:48 - 00000000 ____D C:\APLIK

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-18 16:29 - 2015-10-03 23:36 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-18 16:24 - 2009-07-14 06:34 - 00020464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-05-18 16:24 - 2009-07-14 06:34 - 00020464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-05-18 16:22 - 2010-11-20 23:01 - 00781298 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-18 16:22 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2016-05-18 16:14 - 2015-10-03 23:36 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-18 16:14 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-16 15:52 - 2016-02-19 18:53 - 00027648 _____ C:\Windows\system32\BMXBkpCtrlState-{00000002-00000000-00000002-00001102-00000004-00521102}.rfx
2016-05-16 15:52 - 2016-02-19 18:53 - 00011564 _____ C:\Windows\system32\DVCState-{00000002-00000000-00000002-00001102-00000004-00521102}.rfx
2016-05-16 15:52 - 2015-10-04 01:18 - 00027648 _____ C:\Windows\system32\BMXCtrlState-{00000002-00000000-00000002-00001102-00000004-00521102}.rfx
2016-05-16 15:52 - 2015-10-03 23:10 - 00030072 _____ C:\Windows\system32\BMXStateBkp-{00000002-00000000-00000002-00001102-00000004-00521102}.rfx
2016-05-16 15:52 - 2015-10-03 23:10 - 00030072 _____ C:\Windows\system32\BMXState-{00000002-00000000-00000002-00001102-00000004-00521102}.rfx
2016-05-16 10:59 - 2015-10-03 23:36 - 00000000 ____D C:\Users\RPRIVEL\AppData\Local\Deployment
2016-05-16 08:34 - 2015-10-03 23:37 - 00002155 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-16 08:34 - 2015-10-03 23:37 - 00002143 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-05-16 08:17 - 2015-10-03 23:51 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-05-16 08:03 - 2016-02-19 18:21 - 00000000 ____D C:\Users\RPRIVEL\AppData\Roaming\HpUpdate
2016-05-12 10:34 - 2016-03-19 12:29 - 00000000 ____D C:\Users\RPRIVEL\Desktop\POTVRDE O ODST.VOZACA
2016-05-12 08:05 - 2009-07-14 06:52 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-05-12 04:15 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2016-05-12 03:26 - 2009-07-14 06:33 - 00653880 _____ C:\Windows\system32\FNTCACHE.DAT
2016-05-11 13:46 - 2016-02-19 18:42 - 00000000 ____D C:\Users\RPRIVEL\AppData\Local\CutePDF Writer
2016-05-09 23:06 - 2016-02-19 20:01 - 00001832 _____ C:\Users\RPRIVEL\Desktop\Facebook.lnk
2016-05-09 18:44 - 2015-10-03 23:41 - 00001019 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-05-09 18:44 - 2015-10-03 23:41 - 00001019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-05-09 18:44 - 2015-10-03 21:42 - 00001291 _____ C:\Users\RPRIVEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-05-09 16:21 - 2015-10-03 21:42 - 00000000 ____D C:\Users\RPRIVEL
2016-05-09 16:10 - 2009-07-14 04:04 - 00002577 _____ C:\Windows\system32\config.nt
2016-05-09 16:10 - 2009-07-14 04:04 - 00001688 _____ C:\Windows\system32\autoexec.nt
2016-05-09 15:47 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\GroupPolicy
2016-05-09 15:45 - 2016-02-19 20:05 - 00000000 ____D C:\Users\RPRIVEL\AppData\Roaming\Opera Software
2016-05-09 15:45 - 2016-02-19 20:05 - 00000000 ____D C:\Users\RPRIVEL\AppData\Local\Opera Software
2016-05-09 15:45 - 2016-02-19 20:00 - 00000000 ____D C:\Program Files\Opera
2016-05-09 11:14 - 2015-10-03 23:36 - 00157264 _____ C:\Users\RPRIVEL\AppData\Local\GDIPFONTCACHEV1.DAT
2016-05-09 03:08 - 2009-07-14 04:04 - 00000478 _____ C:\Windows\win.ini
2016-05-08 03:08 - 2016-03-20 09:07 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-08 03:04 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-05-08 03:02 - 2015-10-03 23:41 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-05-07 15:02 - 2015-10-04 18:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-05-07 14:46 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\System
2016-05-07 14:38 - 2015-10-04 18:50 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-05-07 14:37 - 2015-10-04 18:41 - 00000000 ____D C:\Program Files\Microsoft Office
2016-05-07 14:35 - 2009-07-14 06:52 - 00000000 ____D C:\Program Files\MSBuild
2016-05-07 12:21 - 2015-10-04 01:53 - 00000000 ____D C:\Users\RPRIVEL\AppData\Roaming\TeamViewer
2016-05-07 12:17 - 2016-03-19 13:31 - 00000000 ____D C:\ProgramData\Protexis
2016-05-07 12:17 - 2016-03-19 13:16 - 00000000 ____D C:\Users\RPRIVEL\Documents\Corel
2016-05-07 12:17 - 2016-03-19 13:09 - 00000000 ____D C:\ProgramData\Corel
2016-05-07 12:16 - 2016-03-19 13:31 - 00000000 ____D C:\Users\RPRIVEL\AppData\Roaming\Corel
2016-05-07 12:06 - 2016-03-19 13:18 - 00000000 ____D C:\Users\Public\Documents\Corel
2016-05-07 12:04 - 2016-03-19 13:06 - 00000000 ____D C:\Program Files\Corel
2016-05-07 11:30 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\AppCompat
2016-05-04 03:58 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\tracing
2016-04-19 12:20 - 2016-04-13 18:41 - 00000407 _____ C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2016-04-19 12:20 - 2016-04-13 18:39 - 00000354 _____ C:\Users\RPRIVEL\Desktop\OfficeBanking Desktop.appref-ms
2016-04-19 12:16 - 2016-02-19 18:39 - 00016400 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys

==================== Files in the root of some directories =======

2016-05-09 15:42 - 2016-05-09 15:42 - 6494208 _____ () C:\Users\RPRIVEL\AppData\Roaming\agent.dat
2016-05-09 15:41 - 2016-05-09 15:41 - 0054272 _____ () C:\Users\RPRIVEL\AppData\Roaming\ApplicationHosting.dat
2016-05-09 15:42 - 2016-05-09 15:42 - 0065568 _____ () C:\Users\RPRIVEL\AppData\Roaming\Config.xml
2016-05-09 15:41 - 2016-05-09 15:41 - 0948736 _____ () C:\Users\RPRIVEL\AppData\Roaming\INCHITY.del
2016-05-09 15:41 - 2016-05-09 15:41 - 0072717 _____ () C:\Users\RPRIVEL\AppData\Roaming\Inchity.tst
2016-05-09 15:41 - 2016-05-09 15:41 - 0016992 _____ () C:\Users\RPRIVEL\AppData\Roaming\InstallationConfiguration.xml
2016-05-09 15:41 - 2016-05-09 15:41 - 0127488 _____ () C:\Users\RPRIVEL\AppData\Roaming\Installer.dat
2016-05-09 15:41 - 2016-05-09 15:41 - 0126464 _____ () C:\Users\RPRIVEL\AppData\Roaming\lobby.dat
2016-05-09 15:42 - 2016-05-09 15:42 - 0018432 _____ () C:\Users\RPRIVEL\AppData\Roaming\Main.dat
2016-05-09 15:41 - 2016-05-09 15:42 - 0005568 _____ () C:\Users\RPRIVEL\AppData\Roaming\md.xml
2016-05-09 15:42 - 2016-05-09 15:42 - 0126464 _____ () C:\Users\RPRIVEL\AppData\Roaming\noah.dat
2016-05-09 15:41 - 2016-05-09 15:41 - 0848437 _____ () C:\Users\RPRIVEL\AppData\Roaming\SANKIX.del
2016-05-09 15:42 - 2016-05-09 15:42 - 0189580 _____ () C:\Users\RPRIVEL\AppData\Roaming\TonFix.bin
2016-05-09 15:43 - 2016-05-09 15:43 - 0001150 _____ () C:\Users\RPRIVEL\AppData\Roaming\uninstall_temp.ico
2016-05-09 15:41 - 2016-05-09 15:41 - 0948736 _____ () C:\Users\RPRIVEL\AppData\Roaming\VOL-TRAX.del
2016-05-09 15:42 - 2016-05-09 15:42 - 1626777 _____ () C:\Users\RPRIVEL\AppData\Roaming\Vol-Trax.tst
2016-05-09 15:43 - 2016-05-09 15:42 - 0041472 _____ () C:\Users\RPRIVEL\AppData\Local\Anottrans.dat
2016-05-09 15:43 - 2016-05-09 15:42 - 0000187 _____ () C:\Users\RPRIVEL\AppData\Local\Anottrans.exe.config
2016-02-19 18:19 - 2016-02-19 18:22 - 0000350 _____ () C:\ProgramData\hpzinstall.log
2016-04-13 18:41 - 2016-04-19 12:20 - 0000407 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Some files in TEMP:
====================
C:\Users\RPRIVEL\AppData\Local\Temp\ExPromo.exe
C:\Users\RPRIVEL\AppData\Local\Temp\FP_AX_MSI_INSTALLER.exe
C:\Users\RPRIVEL\AppData\Local\Temp\nswE23D.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-05-09 03:54

==================== End of FRST.txt ============================
https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

offline
  • Research Engineer @MalwareBytes
  • Pridružio: 09 Avg 2011
  • Poruke: 15877
  • Gde živiš: Beograd

Pozdrav,


Preuzmi Zemana AntiMalware i sacuvaj ga na Deskop.


Arrow Kada preuzimanje bude zavrseno:

Dvoklikom pokreni instalaciju i prati uputstva. Instalacija je standardna bez ikakvih dodatnih opcija.
Nakon instalacije, program ce se automatski pokrenuti i sada je potrebno klikniti na Scan.
Kada se skeniranje zavrsi, klikni Next kako bi uklonio sve pronadjene stavke.
Ako ti zatrazi da restartujes racunar, klikni na Reboot.
Ukoliko je racunar ozbiljno inficiran, nakon restarta ce uslediti jos jedno skeniranje.


Arrow Nakon toga, potrebno je da dostavis izvestaj/e:

Na tastaturi pritisni + R u isto vreme.
Kopiraj sledecu komandu i potvrdi sa OK:
%USERPROFILE%\AppData\Local\Zemana\Zemana AntiMalware\reports
Najnovji izvestaj/e kopiraj na Deskop, a zatim ga prikaci u sledecoj poruci.

offline
  • Pridružio: 27 Avg 2005
  • Poruke: 538

https://www.mycity.rs/must-login.png

offline
  • Research Engineer @MalwareBytes
  • Pridružio: 09 Avg 2011
  • Poruke: 15877
  • Gde živiš: Beograd

Da li je sada bolje?

offline
  • Pridružio: 27 Avg 2005
  • Poruke: 538

Testirao za sada je ok hvala

Ko je trenutno na forumu
 

Ukupno su 482 korisnika na forumu :: 9 registrovanih, 2 sakrivenih i 471 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., DucicM, kayvan6079, ruseskij, sakota79, Smd, Trpe Grozni, VJ, yrraf