Sporo se gasi win xp i download fajlova

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

1.Sporo mi se gasi win xp od neki dan.Zadrzi se na onome plavom ekranu kada se gasi i pise windows is shutting down i tako stoji oko 2minute dok se ne ugasi.Pokusavao sam sa onim "Kako ubrzati gasenje windows" menjanje u registrima ali isto opet nema razlike tako da nije do toga.
2.Kada skinem neki fajl sa interneta u bilo kom browseru,primer:Camtasi Studio zauzima oko 250mb pocnem skidati sve uredu kada dodje do 250/250mb onda mi ukoci i cekam da nesto ono obavi i tek posle pola minute mi pokaze da je fajl skinut takodje mi ubaguje i ne mogu koristiti druge stranice tabove dok ne zavrsi to sto radi.Nemam antivirus niti bilo sta slicno jer to skinem svako 2-3 meseca pa preskeniram sa nekoliko av,antispyware,malwarebytes,combofix...
Sporo gasenje se desilo pre oko 25 dana.A ovo sa fajlovima ima mozda preko mesec dana.
Pokusao sam da resim sa par programa kao sto su Advanced System Care,Glary Untitles a i probao sam preko registrija da smanjim vreme gasenja programa "waittotimekill" sve sam podesio na 4000 ali isto je ostalo ni sekunde se nije brze gasio,tako da nije do toga jer mi ukoci na plavom ekranu gde pise windows is shuting down.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:02-06-2014
Ran by Zeljko (administrator) on ADMINISTRATOR on 05-06-2014 13:29:47
Running from E:\Documents and Settings\Zeljko\My Documents\Downloads
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-10-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [NvMediaCenter] => C:\WINDOWS\system32\NvMCTray.dll [108832 2013-01-31] (NVIDIA Corporation)
HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-1547161642-1659004503-1801674531-1003\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-1547161642-1659004503-1801674531-1003\...\Policies\system: [DisableLockWorkStation] 0
HKU\S-1-5-21-1547161642-1659004503-1801674531-1003\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-1547161642-1659004503-1801674531-1003\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-1547161642-1659004503-1801674531-1003\...\Policies\Explorer: [NoFileAssociate] 1
HKU\S-1-5-21-1547161642-1659004503-1801674531-1003\...\Policies\Explorer: [NoSMBalloonTip] 1
HKU\S-1-5-21-1547161642-1659004503-1801674531-1003\...\Policies\Explorer: [NoNetHood] 0
HKU\S-1-5-21-1547161642-1659004503-1801674531-1003\...\Policies\Explorer: [NoCDBurning] 0

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Search bar = ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {724D43A0-0D85-11D4-9908-00400523E39A} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4A38C904-265F-4E99-ABB0-7E03680B28AA}: [NameServer]192.168.1.1,81.93.64.1
Tcpip\..\Interfaces\{F85AFED7-7362-46A5-8449-145789134850}: [NameServer]8.8.8.8,8.8.4.4

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @gentek.com/thinclient - C:\Program Files\Maxthon\Core\Webkit\Npplugins\npthinclient.dll No File
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 - E:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - E:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 - E:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @gentek.com/thinclient - C:\Program Files\Maxthon\Core\Webkit\Npplugins\npthinclient.dll No File
FF user.js: detected! => C:\Documents and Settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default\user.js
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF Extension: TVU Web Player - C:\Documents and Settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default\Extensions\firefox@tvunetworks.com [2013-12-08]
FF Extension: iMacros for Firefox - C:\Documents and Settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default\Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [2014-05-25]
FF Extension: DownloadHelper - C:\Documents and Settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-30]
FF Extension: Ghostery - C:\Documents and Settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default\Extensions\firefox@ghostery.com.xpi [2014-06-01]
FF Extension: PrivDog - C:\Documents and Settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default\Extensions\PrivDog@AdTrustMedia.com.xpi [2014-06-02]
FF Extension: SQLite Manager - C:\Documents and Settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default\Extensions\SQLiteManager@mrinalkant.blogspot.com.xpi [2014-06-01]
FF Extension: NoScript - C:\Documents and Settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-06-01]
FF Extension: Adblock Plus - C:\Documents and Settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-01]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

Chrome:
=======
CHR StartupUrls: "hxxp://www.google.rs/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\35.0.1916.114\pdf.dll ()
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java Deployment Toolkit 7.0.600.19) - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U60) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
CHR Plugin: (VLC Web Plugin) - E:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Documents and Settings\Zeljko\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-04]
CHR Extension: (Google disk) - C:\Documents and Settings\Zeljko\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-04]
CHR Extension: (YouTube) - C:\Documents and Settings\Zeljko\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-04]
CHR Extension: (Google pretraživanje) - C:\Documents and Settings\Zeljko\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-04]
CHR Extension: (Google Novčanik) - C:\Documents and Settings\Zeljko\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-04]
CHR Extension: (Gmail) - C:\Documents and Settings\Zeljko\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-04]

========================== Services (Whitelisted) =================

R2 6to4; C:\WINDOWS\System32\6to4svc.dll [100352 2008-04-14] (Microsoft Corporation)
S4 DragonUpdater; C:\Program Files\Comodo\Dragon\dragon_updater.exe [2135232 2014-05-21] ()
S3 Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [121600 2013-04-05] (Intel Corporation)
S3 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-06-01] (Oracle Corporation)
S3 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2014-02-04] ()
S3 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [281152 2014-02-04] ()
S3 HWDeviceService.exe; No ImagePath
S3 LiveUpdateSvc; No ImagePath

==================== Drivers (Whitelisted) ====================

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [36864 2013-11-03] (Advanced Micro Devices)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 DroidCam; C:\WINDOWS\System32\drivers\droidcam.sys [21376 2014-04-30] (Dev47Apps)
S3 E100E; C:\WINDOWS\System32\DRIVERS\e100ent.sys [25360 2004-08-25] (Intel Corporation)
R3 HBtnKey; C:\WINDOWS\System32\DRIVERS\tkbtnpn.sys [7463 2007-10-30] (Lenovo)
S3 Intels51; C:\WINDOWS\System32\DRIVERS\Intels51.sys [670203 2003-05-22] (Intel Corporation)
S3 mcaudrv_simple; C:\WINDOWS\System32\drivers\mcaudrv.sys [29728 2013-12-06] (Visicom Media Inc.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [70912 2013-11-03] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [168040 2013-11-03] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2013-11-03] (NVIDIA Corporation)
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [15688 2013-09-30] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [10320 2013-09-30] ()
S3 rt2870; C:\WINDOWS\System32\DRIVERS\Drt2870.sys [1213632 2011-11-14] (Ralink Technology, Corp.)
S3 ssudserd; C:\WINDOWS\System32\DRIVERS\ssudserd.sys [182680 2013-08-21] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
S3 tapse01; C:\WINDOWS\System32\DRIVERS\tapse01.sys [33720 2013-10-16] (The OpenVPN Project)
R1 Tcpip6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
R2 UI5IFS; C:\Program Files\Ashampoo\Ashampoo UnInstaller 5\IFS32.sys [33632 2013-05-08] ()
R3 usbcamcl; C:\WINDOWS\System32\DRIVERS\usbcamcl.sys [31104 2009-10-31] (usb camera)
U3 AeLookupSvc;
S3 AmdLLD; No ImagePath
U3 Appinfo;
U3 AxInstSV;
S3 catchme; \??\C:\DOCUME~1\Zeljko\LOCALS~1\Temp\catchme.sys [X]
U4 CertPropSvc;
U3 clr_optimization_v2.0.50727_64;
U4 CscService;
U4 defragsvc;
U4 EFS;
S3 ESEADriver2; No ImagePath
S3 ew_hwusbdev; No ImagePath
U3 fdPHost;
U4 FDResPub;
U3 HomeGroupListener;
U3 HomeGroupProvider;
S3 huawei_cdcacm; No ImagePath
S3 huawei_cdcecm; No ImagePath
S3 huawei_enumerator; No ImagePath
S3 huawei_ext_ctrl; No ImagePath
S4 IntelIde; No ImagePath
U4 IPBusEnum;
U4 iphlpsvc;
U3 KeyIso;
U4 lltdsvc;
U4 MSiSCSI;
U3 netprofm;
U3 p2pimsvc;
U3 p2psvc;
S3 PBDOWNFORCE_SERVICE; No ImagePath
U4 PcaSvc;
U4 PeerDistSvc;
U4 PNRPAutoReg;
U3 PNRPsvc;
U4 QWAVE;
U4 SCPolicySvc;
U4 SensrSvc;
U4 SNMPTRAP;
U3 sppuinotify;
S2 StarOpen; No ImagePath
U4 TabletInputService;
U4 TBS;
U4 TermService; %SystemRoot%\System32\svchost.exe -k DComLaunch
U4 UI0Detect;
U4 UmRdpService;
U4 WbioSrvc;
U4 wcncsvc;
U4 wercplsupport;
U4 WerSvc;
U4 WinDefend;
U4 WinHttpAutoProxySvc;
U4 WPCSvc;
U4 WPDBusEnum;
S3 WpdUsb; system32\DRIVERS\wpdusb.sys [X]
U4 WwanSvc;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-05 13:29 - 2014-06-05 13:29 - 00000000 ____D () C:\FRST
2014-06-04 19:59 - 2014-06-04 23:55 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\Zvornik Avioni
2014-06-04 19:20 - 2014-06-04 19:33 - 00001859 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2014-06-04 19:20 - 2014-06-04 19:20 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome
2014-06-04 17:01 - 2014-06-04 17:04 - 00002957 _____ () C:\WINDOWS\setupapi.log
2014-06-04 17:01 - 2014-06-04 17:01 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-06-04 17:01 - 2014-06-04 17:01 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-06-04 15:26 - 2014-06-04 15:26 - 00404920 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-06-04 15:21 - 2014-06-04 15:21 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\fp_11.7.700.224_archive
2014-06-04 15:07 - 2014-06-04 15:07 - 00000775 _____ () C:\Documents and Settings\Zeljko\Start Menu\BS.Player FREE.lnk
2014-06-04 15:07 - 2014-06-04 15:07 - 00000775 _____ () C:\Documents and Settings\Zeljko\Desktop\BS.Player FREE.lnk
2014-06-04 15:07 - 2014-06-04 15:07 - 00000000 ____D () C:\Documents and Settings\Zeljko\Start Menu\Programs\BS.Player
2014-06-04 15:06 - 2014-06-04 15:22 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\BSplayer
2014-06-03 23:20 - 2014-06-03 23:20 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\fp_10.3.183.48_archive
2014-06-03 23:13 - 2014-06-04 00:31 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\Flash PLAyer
2014-06-03 22:25 - 2014-06-03 22:25 - 00012720 _____ () C:\Documents and Settings\Zeljko\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-06-03 14:08 - 2014-06-03 14:08 - 03452968 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-02 22:58 - 2014-06-05 13:30 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\temp
2014-06-02 22:58 - 2014-06-02 22:58 - 00025889 _____ () C:\ComboFix.txt
2014-06-02 22:58 - 2014-06-02 22:58 - 00000000 ____D () C:\Documents and Settings\UpdatusUser\Local Settings\temp
2014-06-02 22:58 - 2014-06-02 22:58 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\temp
2014-06-02 22:58 - 2014-06-02 22:58 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\temp
2014-06-02 22:58 - 2014-06-02 22:58 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\temp
2014-06-02 22:58 - 2014-06-02 22:58 - 00000000 ____D () C:\Documents and Settings\Administrator.ADMINISTRATOR\Local Settings\temp
2014-06-02 22:28 - 2014-06-05 09:03 - 00028513 _____ () C:\WINDOWS\WindowsUpdate.log
2014-06-02 22:28 - 2014-06-02 22:31 - 00369299 _____ () C:\Documents and Settings\Zeljko\avgremover.log
2014-06-02 19:41 - 2014-06-02 19:41 - 00000000 ____D () C:\Program Files\Security Task Manager
2014-06-02 16:18 - 2014-06-02 16:18 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Application Data\COMODO
2014-06-02 16:17 - 2014-06-02 16:17 - 00000000 __SHD () C:\Documents and Settings\NetworkService\IETldCache
2014-06-02 16:13 - 2014-06-02 19:33 - 00065536 _____ () C:\WINDOWS\system32\config\COMODO I.evt
2014-06-02 16:11 - 2014-06-02 16:11 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Adtrustmedia
2014-06-02 16:09 - 2014-06-02 19:35 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Comodo
2014-06-02 12:44 - 2014-06-02 12:44 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\WFT_Downloaded_Files_2-6-2014_12-41-32
2014-06-02 12:43 - 2014-06-02 12:43 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\WFT_Downloaded_Files_2-6-2014_12-40-50
2014-06-01 23:28 - 2014-06-01 23:28 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Application Data\COMODO
2014-06-01 23:27 - 2014-06-01 23:27 - 00000000 ____D () C:\Documents and Settings\Zeljko\SecurityScans
2014-06-01 23:19 - 2014-06-01 23:20 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\Adobe
2014-06-01 23:05 - 2014-06-02 19:37 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Comodo
2014-06-01 23:04 - 2014-06-02 19:35 - 00000000 ____D () C:\Program Files\Comodo
2014-06-01 23:04 - 2014-06-01 23:28 - 00048392 _____ (COMODO CA Limited) C:\WINDOWS\system32\certsentry.dll
2014-06-01 23:03 - 2014-06-01 23:03 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71.dll
2014-06-01 23:03 - 2014-06-01 23:03 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr71.dll
2014-06-01 21:00 - 2014-06-01 21:00 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-01 21:00 - 2014-06-01 20:59 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-06-01 21:00 - 2014-06-01 20:59 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2014-06-01 20:59 - 2014-06-01 20:59 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-06-01 20:59 - 2014-06-01 20:59 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-06-01 20:59 - 2014-06-01 20:59 - 00096680 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-06-01 20:59 - 2014-06-01 20:59 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java
2014-06-01 20:43 - 2014-06-01 20:43 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\CrystalIdea Software
2014-06-01 20:13 - 2014-06-02 19:55 - 00000000 ____D () C:\WINDOWS\system32\Macromed
2014-06-01 18:42 - 2014-06-01 18:45 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\Maxthon3
2014-06-01 18:14 - 2014-06-05 09:01 - 00000224 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2014-06-01 18:14 - 2014-06-01 18:24 - 00000218 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
2014-06-01 18:13 - 2014-06-03 00:16 - 00065536 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-06-01 18:13 - 2014-06-03 00:16 - 00065536 _____ () C:\WINDOWS\system32\config\EventForwarding-Operational.Evt
2014-06-01 18:12 - 2014-06-01 18:12 - 00000000 _____ () C:\asc_rdflag
2014-06-01 17:20 - 2014-03-06 18:59 - 11113472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieframe.dll
2014-06-01 17:20 - 2014-03-06 18:59 - 02006016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iertutil.dll
2014-06-01 17:20 - 2014-03-06 18:59 - 00743424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2014-06-01 17:20 - 2014-03-06 18:59 - 00630272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeeds.dll
2014-06-01 17:20 - 2014-03-06 18:59 - 00522240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsdbgui.dll
2014-06-01 17:20 - 2014-03-06 18:59 - 00247808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieproxy.dll
2014-06-01 17:20 - 2014-03-06 18:59 - 00055296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2014-06-01 17:20 - 2014-03-06 18:59 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpshims.dll
2014-06-01 17:18 - 2014-02-26 02:59 - 00013312 ____N (Microsoft Corporation) C:\WINDOWS\system32\xp_eos.exe
2014-06-01 17:18 - 2014-02-26 02:59 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xp_eos.exe
2014-06-01 16:58 - 2014-06-01 16:59 - 00006608 _____ () C:\WINDOWS\system32\TZLog.log
2014-06-01 16:48 - 2013-07-17 01:58 - 00123008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
2014-06-01 16:48 - 2013-07-17 01:58 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys
2014-06-01 16:48 - 2013-07-17 01:58 - 00046848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irbus.sys
2014-06-01 16:47 - 2013-08-09 01:55 - 00144128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys
2014-06-01 16:47 - 2013-08-09 01:55 - 00032384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbccgp.sys
2014-06-01 16:47 - 2013-07-03 03:12 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2014-06-01 16:47 - 2013-07-03 02:59 - 00014976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
2014-06-01 16:47 - 2009-03-18 12:02 - 00030336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys
2014-06-01 16:20 - 2013-02-12 01:32 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023x.sys
2014-06-01 15:24 - 2012-01-11 20:06 - 00003072 ____N () C:\WINDOWS\system32\iacenc.dll
2014-06-01 15:24 - 2012-01-11 20:06 - 00003072 ____C () C:\WINDOWS\system32\dllcache\iacenc.dll
2014-06-01 15:19 - 2011-08-16 11:45 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iecompat.dll
2014-06-01 15:05 - 2011-07-15 14:29 - 00456320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mrxsmb.sys
2014-06-01 15:01 - 2014-06-01 17:21 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-06-01 14:49 - 2014-06-01 17:51 - 00065536 _____ () C:\WINDOWS\system32\config\Windows .evt
2014-06-01 14:49 - 2014-06-01 17:51 - 00065536 _____ () C:\WINDOWS\system32\config\Microsof.evt
2014-06-01 14:49 - 2014-06-01 14:49 - 00000000 __HDC () C:\WINDOWS\$968930Uinstall_KB968930$
2014-06-01 14:49 - 2014-06-01 14:49 - 00000000 ____D () C:\WINDOWS\system32\winrm
2014-06-01 14:49 - 2014-06-01 14:49 - 00000000 ____D () C:\WINDOWS\system32\WindowsPowerShell
2014-06-01 14:33 - 2013-07-04 04:03 - 02149888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2014-06-01 14:33 - 2013-07-04 03:59 - 02193536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2014-06-01 14:33 - 2013-07-04 03:08 - 02028544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2014-06-01 14:32 - 2014-06-01 14:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallbasecsp$
2014-06-01 14:32 - 2008-05-03 12:55 - 00002560 ____N (Microsoft Corporation) C:\WINDOWS\system32\xpsp4res.dll
2014-06-01 14:31 - 2014-06-01 14:31 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2014-06-01 13:48 - 2014-06-01 13:48 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\RoboForm
2014-06-01 13:47 - 2014-06-01 13:47 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\RoboForm
2014-06-01 10:17 - 2014-06-01 10:17 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\Eusing
2014-06-01 10:16 - 2014-06-01 22:31 - 00000000 ____D () C:\Documents and Settings\Zeljko\Start Menu\Programs\Free Registry Cleaner
2014-06-01 02:26 - 2014-06-01 02:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\regid.1995-08.com.techsmith
2014-05-30 14:29 - 2014-05-30 14:29 - 01440054 _____ () C:\Documents and Settings\Zeljko\Desktop\1231.bmp
2014-05-30 13:24 - 2014-05-30 13:24 - 01440054 _____ () C:\Documents and Settings\Zeljko\Desktop\123.bmp
2014-05-30 00:20 - 2014-05-30 00:20 - 00000000 ____D () C:\WINDOWS\system32\Lang
2014-05-30 00:18 - 2014-05-30 00:18 - 00000235 _____ () C:\Documents and Settings\All Users\Application Data\SYSTEM_CLEANER_HISTORY.xml
2014-05-30 00:17 - 2014-05-30 00:17 - 00002252 _____ () C:\Documents and Settings\All Users\Application Data\SERVICES_HISTORY.xml
2014-05-30 00:16 - 2014-05-30 00:16 - 00005021 _____ () C:\Documents and Settings\All Users\Application Data\InternetSettingsHistory.xml
2014-05-30 00:15 - 2014-05-30 00:15 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Backup
2014-05-30 00:07 - 2014-05-30 00:07 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\RegInOut
2014-05-28 22:04 - 2014-05-28 22:04 - 00001864 _____ () C:\Documents and Settings\All Users\Desktop\Google Earth Pro.lnk
2014-05-28 22:04 - 2014-05-28 22:04 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Google Earth Pro
2014-05-28 17:55 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll
2014-05-28 14:10 - 2014-05-28 17:50 - 00000000 ____D () C:\Documents and Settings\Zeljko\Start Menu\Programs\Sprites
2014-05-28 14:10 - 2014-05-28 14:10 - 01062704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscomctl.ocx
2014-05-28 14:10 - 2014-05-28 14:10 - 00140096 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMDLG32.OCX
2014-05-28 14:10 - 2014-05-28 14:10 - 00053760 _____ () C:\WINDOWS\system32\zlib.dll
2014-05-28 14:10 - 2014-05-28 14:10 - 00049152 _____ (PCSCT Software) C:\WINDOWS\UNINS.EXE
2014-05-28 14:10 - 2014-05-28 14:10 - 00028672 _____ ( ) C:\WINDOWS\system32\shelllnk.dll
2014-05-28 14:10 - 2014-05-28 14:10 - 00006114 _____ () C:\WINDOWS\system32\shelllnk.tlb
2014-05-28 14:10 - 2014-05-28 14:10 - 00002616 _____ () C:\WINDOWS\system32\shelllnk.lib
2014-05-28 14:10 - 2014-05-28 14:10 - 00000975 _____ () C:\WINDOWS\system32\shelllnk.exp
2014-05-26 19:03 - 2013-06-19 17:16 - 00342640 _____ (Hide My IP) C:\WINDOWS\system32\HMIPCore.dll
2014-05-26 19:02 - 2014-05-26 19:07 - 00004112 _____ () C:\WINDOWS\system32\HideMyIpSRV.ini
2014-05-26 19:02 - 2014-05-26 19:07 - 00002240 _____ () C:\WINDOWS\system32\HideMyIpSRVOff.ini
2014-05-26 18:49 - 2014-05-26 18:49 - 00000000 ____D () C:\Program Files\Origin Games
2014-05-25 22:27 - 2014-05-29 23:57 - 00000433 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics
2014-05-25 21:59 - 2014-05-25 21:59 - 00000000 ____D () C:\Program Files\JAM Software
2014-05-25 21:59 - 2014-05-25 21:59 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\JAM Software
2014-05-25 21:59 - 2014-05-25 21:59 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\UltraSearch
2014-05-25 16:38 - 2014-05-25 16:38 - 00000000 ____D () C:\Program Files\Badosoft
2014-05-25 16:11 - 2014-05-25 16:11 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\New Folder
2014-05-25 13:02 - 2014-05-25 13:02 - 00000833 _____ () C:\Documents and Settings\Zeljko\Start Menu\µTorrent.lnk
2014-05-24 14:29 - 2014-05-24 14:29 - 00000814 _____ () C:\Documents and Settings\Zeljko\Desktop\Photoshop CS6.lnk
2014-05-24 13:27 - 2014-05-24 13:27 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2014-05-24 11:35 - 2014-05-24 11:35 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\F-Secure
2014-05-24 01:30 - 2014-05-24 01:30 - 00020353 _____ () C:\WINDOWS\prodsett_copy.ini
2014-05-24 01:29 - 2014-05-24 01:29 - 00000000 __SHD () C:\Documents and Settings\Default User\IETldCache
2014-05-24 01:29 - 2014-05-24 01:29 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Application Data\F-Secure
2014-05-24 01:22 - 2014-05-24 13:20 - 00000000 ____D () C:\Program Files\F-Secure
2014-05-24 01:21 - 2014-05-24 13:21 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\F-Secure
2014-05-22 22:33 - 2014-05-22 22:33 - 00000935 _____ () C:\Documents and Settings\Zeljko\Desktop\DiskDefragPro.lnk
2014-05-22 22:01 - 2014-05-22 22:01 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\MapleStudio
2014-05-22 19:43 - 2014-05-22 19:43 - 00000197 _____ () C:\Documents and Settings\Zeljko\Application Data\gdscan.log
2014-05-22 19:43 - 2014-05-22 19:43 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_GDKBFlt32_01007.Wdf
2014-05-22 19:42 - 2014-05-22 22:13 - 00000000 ____D () C:\Program Files\G Data
2014-05-21 16:09 - 2014-05-21 16:09 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\BitDefender
2014-05-21 15:48 - 2014-05-21 15:48 - 00000000 ____D () C:\Program Files\Lavasoft
2014-05-16 02:26 - 2014-05-26 19:29 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
2014-05-16 02:25 - 2014-05-26 19:29 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-13 19:35 - 2008-04-14 05:42 - 00151552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irftp.exe
2014-05-13 19:35 - 2008-04-14 05:42 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\irftp.exe
2014-05-13 19:35 - 2008-04-14 05:42 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wshirda.dll
2014-05-13 19:35 - 2008-04-14 05:42 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshirda.dll
2014-05-13 19:35 - 2008-04-14 05:41 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irmon.dll
2014-05-13 19:35 - 2008-04-14 05:41 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\irmon.dll
2014-05-13 19:35 - 2008-04-14 00:21 - 00101120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthpan.sys
2014-05-13 19:35 - 2008-04-14 00:21 - 00101120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2014-05-13 19:35 - 2008-04-14 00:16 - 00059136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rfcomm.sys
2014-05-13 19:35 - 2008-04-14 00:16 - 00059136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2014-05-13 19:35 - 2008-04-14 00:16 - 00017024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthenum.sys
2014-05-13 19:35 - 2008-04-14 00:16 - 00017024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2014-05-12 22:31 - 2014-05-12 22:31 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\BANDISOFT
2014-05-12 22:28 - 2014-05-12 22:28 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\Nvidia Corporation
2014-05-11 15:38 - 2014-05-11 15:38 - 00233312 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-18-0.dat
2014-05-11 14:02 - 2014-05-11 14:02 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\TuneUp Software
2014-05-10 18:08 - 2014-05-10 18:08 - 00000000 ____D () C:\Documents and Settings\Zeljko\dwhelper
2014-05-10 18:02 - 2014-06-03 22:26 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-10 15:09 - 2014-05-10 15:09 - 00000815 _____ () C:\Documents and Settings\All Users\Desktop\TeamViewer 9.lnk
2014-05-10 15:09 - 2014-05-10 15:09 - 00000000 ____D () C:\Program Files\TeamViewer
2014-05-10 15:09 - 2014-05-10 15:09 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\TeamViewer 9
2014-05-08 20:01 - 2014-05-08 20:01 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\CrashRpt
2014-05-06 22:43 - 2014-06-01 18:12 - 30113792 _____ () C:\WINDOWS\system32\config\software.iodefrag.bak
2014-05-06 22:43 - 2014-06-01 18:12 - 04886528 _____ () C:\WINDOWS\system32\config\default.iodefrag.bak
2014-05-06 22:43 - 2014-06-01 18:12 - 00057344 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2014-05-06 22:43 - 2014-06-01 18:12 - 00028672 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.bak
2014-05-06 18:54 - 2014-06-01 16:21 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2014-05-06 18:54 - 2014-05-06 18:54 - 00000000 ____D () C:\WINDOWS\system32\PreInstall

==================== One Month Modified Files and Folders =======

2014-06-05 13:30 - 2014-06-02 22:58 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\temp
2014-06-05 13:29 - 2014-06-05 13:29 - 00000000 ____D () C:\FRST
2014-06-05 09:03 - 2014-06-02 22:28 - 00028513 _____ () C:\WINDOWS\WindowsUpdate.log
2014-06-05 09:02 - 2014-03-22 14:40 - 00000237 _____ () C:\WINDOWS\wiadebug.log
2014-06-05 09:02 - 2014-03-22 14:40 - 00000048 _____ () C:\WINDOWS\wiaservc.log
2014-06-05 09:01 - 2014-06-01 18:14 - 00000224 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Logon.job
2014-06-05 09:01 - 2013-11-03 19:54 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-06-05 00:24 - 2014-03-22 14:40 - 00032480 _____ () C:\WINDOWS\SchedLgU.Txt
2014-06-05 00:24 - 2014-01-19 22:59 - 00182054 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
2014-06-05 00:24 - 2013-11-03 19:57 - 00000178 ___SH () C:\Documents and Settings\Zeljko\ntuser.ini
2014-06-05 00:24 - 2013-11-03 19:57 - 00000000 ____D () C:\Documents and Settings\Zeljko
2014-06-04 23:55 - 2014-06-04 19:59 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\Zvornik Avioni
2014-06-04 22:15 - 2014-04-17 14:04 - 00000000 ____D () C:\Program Files\Steam
2014-06-04 19:58 - 2013-11-03 20:23 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\AIMP3
2014-06-04 19:44 - 2013-11-09 14:40 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\Youtube Downloader HD
2014-06-04 19:33 - 2014-06-04 19:20 - 00001859 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2014-06-04 19:20 - 2014-06-04 19:20 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome
2014-06-04 19:20 - 2013-11-03 19:59 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\Google
2014-06-04 19:19 - 2013-11-03 19:59 - 00000000 ____D () C:\Program Files\Google
2014-06-04 17:16 - 2013-11-04 22:53 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\.minecraft
2014-06-04 17:11 - 2013-11-03 20:13 - 01075020 _____ () C:\WINDOWS\system32\nvdrsdb1.bin
2014-06-04 17:11 - 2013-11-03 20:13 - 00000001 _____ () C:\WINDOWS\system32\nvdrssel.bin
2014-06-04 17:04 - 2014-06-04 17:01 - 00002957 _____ () C:\WINDOWS\setupapi.log
2014-06-04 17:04 - 2013-11-03 20:14 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
2014-06-04 17:04 - 2013-11-03 20:11 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-06-04 17:01 - 2014-06-04 17:01 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-06-04 17:01 - 2014-06-04 17:01 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-06-04 15:59 - 2013-11-03 20:21 - 00602460 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-04 15:26 - 2014-06-04 15:26 - 00404920 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-06-04 15:22 - 2014-06-04 15:06 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\BSplayer
2014-06-04 15:21 - 2014-06-04 15:21 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\fp_11.7.700.224_archive
2014-06-04 15:07 - 2014-06-04 15:07 - 00000775 _____ () C:\Documents and Settings\Zeljko\Start Menu\BS.Player FREE.lnk
2014-06-04 15:07 - 2014-06-04 15:07 - 00000775 _____ () C:\Documents and Settings\Zeljko\Desktop\BS.Player FREE.lnk
2014-06-04 15:07 - 2014-06-04 15:07 - 00000000 ____D () C:\Documents and Settings\Zeljko\Start Menu\Programs\BS.Player
2014-06-04 00:31 - 2014-06-03 23:13 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\Flash PLAyer
2014-06-03 23:20 - 2014-06-03 23:20 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\fp_10.3.183.48_archive
2014-06-03 22:26 - 2014-05-10 18:02 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-03 22:25 - 2014-06-03 22:25 - 00012720 _____ () C:\Documents and Settings\Zeljko\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-06-03 14:16 - 2013-11-06 21:12 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\Notepad++
2014-06-03 14:08 - 2014-06-03 14:08 - 03452968 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-03 00:16 - 2014-06-01 18:13 - 00065536 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-06-03 00:16 - 2014-06-01 18:13 - 00065536 _____ () C:\WINDOWS\system32\config\EventForwarding-Operational.Evt
2014-06-03 00:16 - 2014-03-01 20:52 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2014-06-03 00:16 - 2013-12-07 17:42 - 00065536 _____ () C:\WINDOWS\system32\config\TuneUp.evt
2014-06-02 23:49 - 2013-11-10 19:37 - 00000000 ___RD () C:\Documents and Settings\Zeljko\Desktop\Programi
2014-06-02 23:01 - 2013-11-03 19:27 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-06-02 22:58 - 2014-06-02 22:58 - 00025889 _____ () C:\ComboFix.txt
2014-06-02 22:58 - 2014-06-02 22:58 - 00000000 ____D () C:\Documents and Settings\UpdatusUser\Local Settings\temp
2014-06-02 22:58 - 2014-06-02 22:58 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\temp
2014-06-02 22:58 - 2014-06-02 22:58 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\temp
2014-06-02 22:58 - 2014-06-02 22:58 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\temp
2014-06-02 22:58 - 2014-06-02 22:58 - 00000000 ____D () C:\Documents and Settings\Administrator.ADMINISTRATOR\Local Settings\temp
2014-06-02 22:58 - 2013-11-03 19:54 - 00000000 __SHD () C:\Documents and Settings\LocalService
2014-06-02 22:58 - 2013-11-03 19:32 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-06-02 22:56 - 2001-08-23 12:00 - 00000227 _____ () C:\WINDOWS\system.ini
2014-06-02 22:32 - 2013-12-31 18:30 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0
2014-06-02 22:32 - 2013-12-31 18:30 - 00000000 ____D () C:\Documents and Settings\Guest
2014-06-02 22:32 - 2013-12-31 18:30 - 00000000 ____D () C:\Documents and Settings\ASPNET
2014-06-02 22:32 - 2013-12-31 18:30 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-06-02 22:31 - 2014-06-02 22:28 - 00369299 _____ () C:\Documents and Settings\Zeljko\avgremover.log
2014-06-02 22:24 - 2014-03-20 22:45 - 00000000 ____D () C:\WINDOWS\erdnt
2014-06-02 19:55 - 2014-06-01 20:13 - 00000000 ____D () C:\WINDOWS\system32\Macromed
2014-06-02 19:43 - 2014-01-29 22:52 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\SecTaskMan
2014-06-02 19:41 - 2014-06-02 19:41 - 00000000 ____D () C:\Program Files\Security Task Manager
2014-06-02 19:37 - 2014-06-01 23:05 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Comodo
2014-06-02 19:35 - 2014-06-02 16:09 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Comodo
2014-06-02 19:35 - 2014-06-01 23:04 - 00000000 ____D () C:\Program Files\Comodo
2014-06-02 19:33 - 2014-06-02 16:13 - 00065536 _____ () C:\WINDOWS\system32\config\COMODO I.evt
2014-06-02 16:18 - 2014-06-02 16:18 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Application Data\COMODO
2014-06-02 16:17 - 2014-06-02 16:17 - 00000000 __SHD () C:\Documents and Settings\NetworkService\IETldCache
2014-06-02 16:11 - 2014-06-02 16:11 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Adtrustmedia
2014-06-02 15:32 - 2013-11-14 21:22 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MCShield
2014-06-02 12:44 - 2014-06-02 12:44 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\WFT_Downloaded_Files_2-6-2014_12-41-32
2014-06-02 12:43 - 2014-06-02 12:43 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\WFT_Downloaded_Files_2-6-2014_12-40-50
2014-06-01 23:33 - 2014-01-05 10:42 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\Comodo
2014-06-01 23:28 - 2014-06-01 23:28 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Application Data\COMODO
2014-06-01 23:28 - 2014-06-01 23:04 - 00048392 _____ (COMODO CA Limited) C:\WINDOWS\system32\certsentry.dll
2014-06-01 23:27 - 2014-06-01 23:27 - 00000000 ____D () C:\Documents and Settings\Zeljko\SecurityScans
2014-06-01 23:20 - 2014-06-01 23:19 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\Adobe
2014-06-01 23:20 - 2013-12-07 17:54 - 00000132 _____ () C:\Documents and Settings\Zeljko\Application Data\Adobe PNG Format CS6 Prefs
2014-06-01 23:03 - 2014-06-01 23:03 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71.dll
2014-06-01 23:03 - 2014-06-01 23:03 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr71.dll
2014-06-01 22:31 - 2014-06-01 10:16 - 00000000 ____D () C:\Documents and Settings\Zeljko\Start Menu\Programs\Free Registry Cleaner
2014-06-01 21:44 - 2013-11-05 23:52 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-06-01 21:15 - 2013-11-09 14:40 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Youtube Downloader HD
2014-06-01 21:00 - 2014-06-01 21:00 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-01 20:59 - 2014-06-01 21:00 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-06-01 20:59 - 2014-06-01 21:00 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2014-06-01 20:59 - 2014-06-01 20:59 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-06-01 20:59 - 2014-06-01 20:59 - 00175528 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-06-01 20:59 - 2014-06-01 20:59 - 00096680 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-06-01 20:59 - 2014-06-01 20:59 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java
2014-06-01 20:43 - 2014-06-01 20:43 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\CrystalIdea Software
2014-06-01 18:45 - 2014-06-01 18:42 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\Maxthon3
2014-06-01 18:32 - 2014-04-10 22:48 - 00000000 ____D () C:\Program Files\Opera
2014-06-01 18:32 - 2013-11-03 21:13 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\IObit
2014-06-01 18:24 - 2014-06-01 18:14 - 00000218 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
2014-06-01 18:20 - 2001-08-23 12:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-06-01 18:12 - 2014-06-01 18:12 - 00000000 _____ () C:\asc_rdflag
2014-06-01 18:12 - 2014-05-06 22:43 - 30113792 _____ () C:\WINDOWS\system32\config\software.iodefrag.bak
2014-06-01 18:12 - 2014-05-06 22:43 - 04886528 _____ () C:\WINDOWS\system32\config\default.iodefrag.bak
2014-06-01 18:12 - 2014-05-06 22:43 - 00057344 _____ () C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2014-06-01 18:12 - 2014-05-06 22:43 - 00028672 _____ () C:\WINDOWS\system32\config\SAM.iodefrag.bak
2014-06-01 17:51 - 2014-06-01 14:49 - 00065536 _____ () C:\WINDOWS\system32\config\Windows .evt
2014-06-01 17:51 - 2014-06-01 14:49 - 00065536 _____ () C:\WINDOWS\system32\config\Microsof.evt
2014-06-01 17:51 - 2013-11-03 20:15 - 00000000 ____D () C:\WINDOWS\security
2014-06-01 17:21 - 2014-06-01 15:01 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-06-01 16:59 - 2014-06-01 16:58 - 00006608 _____ () C:\WINDOWS\system32\TZLog.log
2014-06-01 16:25 - 2013-11-08 23:57 - 00000000 ____D () C:\WINDOWS\system32\XPSViewer
2014-06-01 16:21 - 2014-05-06 18:54 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
2014-06-01 14:56 - 2013-11-03 19:27 - 00000000 ____D () C:\Program Files\Outlook Express
2014-06-01 14:53 - 2013-11-03 19:28 - 00000000 ____D () C:\Program Files\Movie Maker
2014-06-01 14:49 - 2014-06-01 14:49 - 00000000 __HDC () C:\WINDOWS\$968930Uinstall_KB968930$
2014-06-01 14:49 - 2014-06-01 14:49 - 00000000 ____D () C:\WINDOWS\system32\winrm
2014-06-01 14:49 - 2014-06-01 14:49 - 00000000 ____D () C:\WINDOWS\system32\WindowsPowerShell
2014-06-01 14:49 - 2013-11-03 20:15 - 00000000 ____D () C:\WINDOWS\Help
2014-06-01 14:49 - 2013-11-03 19:25 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
2014-06-01 14:32 - 2014-06-01 14:32 - 00000000 __HDC () C:\WINDOWS\$NtUninstallbasecsp$
2014-06-01 14:31 - 2014-06-01 14:31 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2014-06-01 14:16 - 2013-11-03 19:26 - 00000000 ____D () C:\Program Files\Messenger
2014-06-01 14:05 - 2013-11-04 23:40 - 29310976 _____ () C:\WINDOWS\system32\config\software.iobit
2014-06-01 14:05 - 2013-11-04 23:40 - 04886528 _____ () C:\WINDOWS\system32\config\default.iobit
2014-06-01 14:05 - 2013-11-04 23:40 - 00057344 _____ () C:\WINDOWS\system32\config\SECURITY.iobit
2014-06-01 14:05 - 2013-11-04 23:40 - 00028672 _____ () C:\WINDOWS\system32\config\SAM.iobit
2014-06-01 14:01 - 2013-11-04 23:35 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\ProductData
2014-06-01 13:48 - 2014-06-01 13:48 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\RoboForm
2014-06-01 13:47 - 2014-06-01 13:47 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\RoboForm
2014-06-01 10:20 - 2014-04-27 23:59 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\DAEMON Tools Lite
2014-06-01 10:17 - 2014-06-01 10:17 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\Eusing
2014-06-01 02:30 - 2014-05-03 21:40 - 00000000 ____D () C:\Program Files\WestBalkan Avangard CS 1.6
2014-06-01 02:26 - 2014-06-01 02:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\regid.1995-08.com.techsmith
2014-05-30 15:14 - 2014-01-19 11:50 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\uTorrent
2014-05-30 14:29 - 2014-05-30 14:29 - 01440054 _____ () C:\Documents and Settings\Zeljko\Desktop\1231.bmp
2014-05-30 13:24 - 2014-05-30 13:24 - 01440054 _____ () C:\Documents and Settings\Zeljko\Desktop\123.bmp
2014-05-30 00:20 - 2014-05-30 00:20 - 00000000 ____D () C:\WINDOWS\system32\Lang
2014-05-30 00:20 - 2013-11-03 20:18 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-05-30 00:18 - 2014-05-30 00:18 - 00000235 _____ () C:\Documents and Settings\All Users\Application Data\SYSTEM_CLEANER_HISTORY.xml
2014-05-30 00:17 - 2014-05-30 00:17 - 00002252 _____ () C:\Documents and Settings\All Users\Application Data\SERVICES_HISTORY.xml
2014-05-30 00:16 - 2014-05-30 00:16 - 00005021 _____ () C:\Documents and Settings\All Users\Application Data\InternetSettingsHistory.xml
2014-05-30 00:15 - 2014-05-30 00:15 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Backup
2014-05-30 00:07 - 2014-05-30 00:07 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\RegInOut
2014-05-29 23:57 - 2014-05-25 22:27 - 00000433 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics
2014-05-29 23:57 - 2014-03-07 13:28 - 00004945 _____ () C:\WINDOWS\system32\RaCoInst.log
2014-05-29 15:03 - 2013-11-15 14:17 - 00002347 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-29 13:18 - 2014-03-29 23:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Origin
2014-05-29 13:17 - 2014-03-29 23:57 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\Origin
2014-05-29 13:04 - 2014-03-29 23:53 - 00000000 ____D () C:\Program Files\Origin
2014-05-28 22:04 - 2014-05-28 22:04 - 00001864 _____ () C:\Documents and Settings\All Users\Desktop\Google Earth Pro.lnk
2014-05-28 22:04 - 2014-05-28 22:04 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Google Earth Pro
2014-05-28 22:00 - 2014-02-16 12:49 - 00000886 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-28 22:00 - 2014-02-16 12:49 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-28 17:50 - 2014-05-28 14:10 - 00000000 ____D () C:\Documents and Settings\Zeljko\Start Menu\Programs\Sprites
2014-05-28 17:47 - 2014-01-19 19:40 - 00000000 ____D () C:\Program Files\QuickTime
2014-05-28 14:10 - 2014-05-28 14:10 - 01062704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscomctl.ocx
2014-05-28 14:10 - 2014-05-28 14:10 - 00140096 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMDLG32.OCX
2014-05-28 14:10 - 2014-05-28 14:10 - 00053760 _____ () C:\WINDOWS\system32\zlib.dll
2014-05-28 14:10 - 2014-05-28 14:10 - 00049152 _____ (PCSCT Software) C:\WINDOWS\UNINS.EXE
2014-05-28 14:10 - 2014-05-28 14:10 - 00028672 _____ ( ) C:\WINDOWS\system32\shelllnk.dll
2014-05-28 14:10 - 2014-05-28 14:10 - 00006114 _____ () C:\WINDOWS\system32\shelllnk.tlb
2014-05-28 14:10 - 2014-05-28 14:10 - 00002616 _____ () C:\WINDOWS\system32\shelllnk.lib
2014-05-28 14:10 - 2014-05-28 14:10 - 00000975 _____ () C:\WINDOWS\system32\shelllnk.exp
2014-05-28 13:53 - 2013-11-04 23:35 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\Apple Computer
2014-05-27 21:13 - 2013-11-03 19:29 - 00000749 ___RH () C:\WINDOWS\WindowsShell.Manifest
2014-05-27 21:13 - 2013-11-03 19:29 - 00000749 ___RH () C:\WINDOWS\system32\wuaucpl.cpl.manifest
2014-05-27 21:13 - 2013-11-03 19:29 - 00000749 ___RH () C:\WINDOWS\system32\sapi.cpl.manifest
2014-05-27 21:13 - 2013-11-03 19:29 - 00000749 ___RH () C:\WINDOWS\system32\nwc.cpl.manifest
2014-05-27 21:13 - 2013-11-03 19:29 - 00000749 ___RH () C:\WINDOWS\system32\ncpa.cpl.manifest
2014-05-27 21:13 - 2013-11-03 19:29 - 00000749 ___RH () C:\WINDOWS\system32\cdplayer.exe.manifest
2014-05-26 19:29 - 2014-05-16 02:26 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
2014-05-26 19:29 - 2014-05-16 02:25 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-26 19:07 - 2014-05-26 19:02 - 00004112 _____ () C:\WINDOWS\system32\HideMyIpSRV.ini
2014-05-26 19:07 - 2014-05-26 19:02 - 00002240 _____ () C:\WINDOWS\system32\HideMyIpSRVOff.ini
2014-05-26 18:49 - 2014-05-26 18:49 - 00000000 ____D () C:\Program Files\Origin Games
2014-05-26 00:25 - 2014-04-19 19:48 - 00001516 _____ () C:\WINDOWS\Sandboxie.ini
2014-05-25 21:59 - 2014-05-25 21:59 - 00000000 ____D () C:\Program Files\JAM Software
2014-05-25 21:59 - 2014-05-25 21:59 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\JAM Software
2014-05-25 21:59 - 2014-05-25 21:59 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\UltraSearch
2014-05-25 16:38 - 2014-05-25 16:38 - 00000000 ____D () C:\Program Files\Badosoft
2014-05-25 16:11 - 2014-05-25 16:11 - 00000000 ____D () C:\Documents and Settings\Zeljko\Desktop\New Folder
2014-05-25 13:02 - 2014-05-25 13:02 - 00000833 _____ () C:\Documents and Settings\Zeljko\Start Menu\µTorrent.lnk
2014-05-24 14:29 - 2014-05-24 14:29 - 00000814 _____ () C:\Documents and Settings\Zeljko\Desktop\Photoshop CS6.lnk
2014-05-24 13:27 - 2014-05-24 13:27 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2014-05-24 13:27 - 2013-11-03 20:51 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\Adobe
2014-05-24 13:21 - 2014-05-24 01:21 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\F-Secure
2014-05-24 13:20 - 2014-05-24 01:22 - 00000000 ____D () C:\Program Files\F-Secure
2014-05-24 11:35 - 2014-05-24 11:35 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\F-Secure
2014-05-24 02:03 - 2014-05-03 14:13 - 00000524 _____ () C:\WINDOWS\Tasks\Auslogics Disk Defrag Prof Task {00000001-D8A3-4DA1-8E7F-9A9755418F49} for Zeljko.job
2014-05-24 01:30 - 2014-05-24 01:30 - 00020353 _____ () C:\WINDOWS\prodsett_copy.ini
2014-05-24 01:29 - 2014-05-24 01:29 - 00000000 __SHD () C:\Documents and Settings\Default User\IETldCache
2014-05-24 01:29 - 2014-05-24 01:29 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Application Data\F-Secure
2014-05-23 19:04 - 2013-11-09 18:52 - 00000000 ____D () C:\FFOutput
2014-05-22 22:33 - 2014-05-22 22:33 - 00000935 _____ () C:\Documents and Settings\Zeljko\Desktop\DiskDefragPro.lnk
2014-05-22 22:31 - 2013-11-03 20:13 - 01075020 _____ () C:\WINDOWS\system32\nvdrsdb0.bin
2014-05-22 22:13 - 2014-05-22 19:42 - 00000000 ____D () C:\Program Files\G Data
2014-05-22 22:12 - 2014-01-27 15:40 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\G Data
2014-05-22 22:12 - 2013-11-03 22:00 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-05-22 22:12 - 2013-11-03 20:46 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2014-05-22 22:12 - 2013-11-03 20:15 - 00000000 ____D () C:\WINDOWS\system32\spool
2014-05-22 22:12 - 2013-11-03 20:15 - 00000000 ____D () C:\WINDOWS\system32\mui
2014-05-22 22:01 - 2014-05-22 22:01 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\MapleStudio
2014-05-22 20:43 - 2013-11-03 20:15 - 00000000 ____D () C:\WINDOWS\repair
2014-05-22 20:43 - 2013-11-03 19:27 - 00000000 ____D () C:\WINDOWS\Registration
2014-05-22 19:43 - 2014-05-22 19:43 - 00000197 _____ () C:\Documents and Settings\Zeljko\Application Data\gdscan.log
2014-05-22 19:43 - 2014-05-22 19:43 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_GDKBFlt32_01007.Wdf
2014-05-22 18:11 - 2013-11-30 15:41 - 00000000 ____D () C:\WINDOWS\pss
2014-05-22 18:06 - 2014-03-11 13:55 - 00000000 ____D () C:\Download XP
2014-05-21 23:03 - 2013-11-04 20:16 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\TeamViewer
2014-05-21 16:09 - 2014-05-21 16:09 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\BitDefender
2014-05-21 15:48 - 2014-05-21 15:48 - 00000000 ____D () C:\Program Files\Lavasoft
2014-05-14 23:40 - 2013-11-28 19:41 - 00000000 ____D () C:\WINDOWS\Minidump
2014-05-13 22:53 - 2013-12-05 23:16 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Readon
2014-05-13 22:53 - 2013-11-04 19:03 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\vlc
2014-05-13 19:33 - 2013-11-03 20:47 - 00000406 __RSH () C:\Documents and Settings\All Users\ntuser.pol
2014-05-12 23:34 - 2014-01-19 22:59 - 01176136 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1547161642-1659004503-1801674531-1003-0.dat
2014-05-12 22:31 - 2014-05-12 22:31 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\BANDISOFT
2014-05-12 22:28 - 2014-05-12 22:28 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\Nvidia Corporation
2014-05-11 15:40 - 2014-03-19 19:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Package Cache
2014-05-11 15:38 - 2014-05-11 15:38 - 00233312 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-18-0.dat
2014-05-11 14:27 - 2014-02-23 19:58 - 00000000 ____D () C:\Program Files\Hosts_Anti_Adwares_PUPs
2014-05-11 14:22 - 2014-04-03 18:35 - 00000000 ____D () C:\Program Files\BSRemote
2014-05-11 14:22 - 2014-04-03 18:35 - 00000000 ____D () C:\Documents and Settings\Zeljko\Start Menu\Programs\BSRemote
2014-05-11 14:02 - 2014-05-11 14:02 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\TuneUp Software
2014-05-11 13:57 - 2013-11-03 21:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Avira
2014-05-11 10:20 - 2013-11-21 17:03 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-05-11 10:20 - 2013-11-03 19:29 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx
2014-05-11 10:20 - 2013-11-03 19:29 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2014-05-11 10:20 - 2013-11-03 19:29 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2014-05-10 18:08 - 2014-05-10 18:08 - 00000000 ____D () C:\Documents and Settings\Zeljko\dwhelper
2014-05-10 16:43 - 2014-04-25 14:52 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2014-05-10 16:43 - 2013-11-03 19:28 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-05-10 15:09 - 2014-05-10 15:09 - 00000815 _____ () C:\Documents and Settings\All Users\Desktop\TeamViewer 9.lnk
2014-05-10 15:09 - 2014-05-10 15:09 - 00000000 ____D () C:\Program Files\TeamViewer
2014-05-10 15:09 - 2014-05-10 15:09 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\TeamViewer 9
2014-05-10 13:51 - 2013-11-13 20:50 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
2014-05-10 13:47 - 2014-04-17 22:53 - 00000000 ____D () C:\Program Files\Auslogics
2014-05-10 13:47 - 2014-01-23 16:11 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\GlarySoft
2014-05-10 13:47 - 2013-11-03 21:00 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Auslogics
2014-05-10 13:46 - 2013-11-03 20:15 - 00000000 ____D () C:\WINDOWS\system
2014-05-09 10:46 - 2014-04-02 14:22 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-05-08 20:01 - 2014-05-08 20:01 - 00000000 ____D () C:\Documents and Settings\Zeljko\Local Settings\Application Data\CrashRpt
2014-05-08 16:26 - 2014-01-09 16:14 - 00000000 ____D () C:\Documents and Settings\Zeljko\Application Data\TS3Client
2014-05-07 18:00 - 2013-11-12 21:30 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Adobe
2014-05-06 19:00 - 2014-05-05 22:17 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-05-06 18:54 - 2014-05-06 18:54 - 00000000 ____D () C:\WINDOWS\system32\PreInstall

==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe => MD5 is legit
C:\WINDOWS\system32\winlogon.exe => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
C:\WINDOWS\system32\User32.dll => MD5 is legit
C:\WINDOWS\system32\userinit.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================
mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Preuzmi sUBs-ov ComboFix sa sledeće adrese na Desktop:


Bleeping Computer
Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu);
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save.



Kada preuzimanje programa bude završeno:
deaktiviraj zaštitni softver (uputstvo);
zatvori pokrenute programe;
dvoklikom pokreni program ComboFix;
u prozoru koji se otvori klikni "I Agree".
U toku rada, ComboFix će:proveriti postoji li novija verzija programa:
klikni Yes ako bude ponuđeno preuzimanje iste.ako Recovery Console nije instalirana, ponuditi instalaciju:
obavezno prihvati klikom na Yes i isprati postupak.postaviti/dati određeni broj upita/obaveštenja:
prihvati klikom na Yes ili OK.po potrebi, restartovati Windows (više puta);
na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu:
klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All;
klikni desnim tasterom miša na obeleženi tekst i izaberi Copy;
klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste.


Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt);
Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku;
Nemoj kliktati u okviru ComboFix prozora dok radi jer to može usporiti rad alata;
Nemoj ponovo pokretati ComboFix na svoju ruku - javi se u temi bilo kakav problem da imaš tokom prvog pokretanja alata;
Ako nakon restarta dobijaš grešku prilikom startovanja pojedinih programa da su označeni za brisanje (Illegal operation attempted on a registry key that has been marked for deletion), onda ponovo restartuj sistem i to ce rešiti problem.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

ComboFix 14-06-04.01 - Zeljko 06/05/2014 19:01:35.4.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.895.508 [GMT 1:00]
Running from: c:\documents and settings\Zeljko\desktop\ComboFix.exe
.
.
((((((((((((((((((((((((( Files Created from 2014-05-05 to 2014-06-05 )))))))))))))))))))))))))))))))
.
.
2014-06-05 14:07 . 2014-06-05 14:07 -------- d-----w- C:\SUPERDelete
2014-06-05 12:29 . 2014-06-05 12:30 -------- d-----w- C:\FRST
2014-06-04 14:26 . 2014-06-04 14:26 404920 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-06-04 14:06 . 2014-06-04 14:22 -------- d-----w- c:\documents and settings\Zeljko\Application Data\BSplayer
2014-06-02 18:41 . 2014-06-02 18:41 -------- d-----w- c:\program files\Security Task Manager
2014-06-02 15:18 . 2014-06-02 15:18 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\COMODO
2014-06-02 15:17 . 2014-06-02 15:17 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2014-06-02 15:12 . 2014-06-02 15:12 -------- d-sh--w- c:\windows\system32\config\systemprofile\IETldCache
2014-06-02 15:11 . 2014-06-02 15:11 -------- d-----w- c:\documents and settings\All Users\Application Data\Adtrustmedia
2014-06-02 15:09 . 2014-06-02 18:35 -------- d-----w- c:\documents and settings\All Users\Application Data\Comodo
2014-06-01 22:28 . 2014-06-01 22:28 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\COMODO
2014-06-01 22:27 . 2014-06-01 22:27 -------- d-----w- c:\documents and settings\Zeljko\SecurityScans
2014-06-01 22:19 . 2014-06-01 22:20 -------- d-----w- c:\documents and settings\Zeljko\Local Settings\Application Data\Adobe
2014-06-01 22:04 . 2014-06-01 22:28 48392 ----a-w- c:\windows\system32\certsentry.dll
2014-06-01 22:04 . 2014-06-02 18:35 -------- d-----w- c:\program files\Comodo
2014-06-01 22:03 . 2014-06-01 22:03 1060864 ----a-w- c:\windows\system32\mfc71.dll
2014-06-01 22:03 . 2014-06-01 22:03 348160 ----a-w- c:\windows\system32\msvcr71.dll
2014-06-01 20:00 . 2014-06-01 20:00 -------- d-----w- c:\program files\Common Files\Java
2014-06-01 20:00 . 2014-06-01 19:59 145408 ----a-w- c:\windows\system32\javacpl.cpl
2014-06-01 19:59 . 2014-06-01 19:59 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-06-01 19:43 . 2014-06-01 19:43 -------- d-----w- c:\documents and settings\Zeljko\Application Data\CrystalIdea Software
2014-06-01 19:13 . 2014-06-02 18:55 -------- d-----w- c:\windows\system32\Macromed
2014-06-01 17:42 . 2014-06-01 17:45 -------- d-----w- c:\documents and settings\Zeljko\Application Data\Maxthon3
2014-06-01 16:20 . 2014-03-06 17:59 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2014-06-01 16:20 . 2014-03-06 17:59 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2014-06-01 16:20 . 2014-03-06 17:59 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2014-06-01 16:20 . 2014-03-06 17:59 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2014-06-01 16:20 . 2014-03-06 17:59 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2014-06-01 16:20 . 2014-03-06 17:59 11113472 -c----w- c:\windows\system32\dllcache\ieframe.dll
2014-06-01 16:20 . 2014-03-06 17:59 522240 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2014-06-01 16:20 . 2014-03-06 17:59 2006016 -c----w- c:\windows\system32\dllcache\iertutil.dll
2014-06-01 16:18 . 2014-02-26 01:59 13312 -c----w- c:\windows\system32\dllcache\xp_eos.exe
2014-06-01 16:18 . 2014-02-26 01:59 13312 ------w- c:\windows\system32\xp_eos.exe
2014-06-01 15:48 . 2013-07-17 00:58 123008 -c----w- c:\windows\system32\dllcache\usbvideo.sys
2014-06-01 15:48 . 2013-07-17 00:58 46848 -c----w- c:\windows\system32\dllcache\irbus.sys
2014-06-01 15:48 . 2013-07-17 00:58 60160 -c----w- c:\windows\system32\dllcache\usbaudio.sys
2014-06-01 15:47 . 2013-07-03 02:12 25088 -c----w- c:\windows\system32\dllcache\hidparse.sys
2014-06-01 15:47 . 2013-07-03 01:59 14976 -c----w- c:\windows\system32\dllcache\usbscan.sys
2014-06-01 15:47 . 2009-03-18 11:02 30336 -c----w- c:\windows\system32\dllcache\usbehci.sys
2014-06-01 15:47 . 2013-08-09 00:55 144128 -c----w- c:\windows\system32\dllcache\usbport.sys
2014-06-01 15:47 . 2013-08-09 00:55 32384 -c----w- c:\windows\system32\dllcache\usbccgp.sys
2014-06-01 15:20 . 2013-02-12 00:32 12928 -c----w- c:\windows\system32\dllcache\usb8023x.sys
2014-06-01 14:42 . 2012-05-28 18:16 536576 ------w- c:\program files\Common Files\System\ado\SETF9A.tmp
2014-06-01 14:24 . 2012-01-11 19:06 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2014-06-01 14:24 . 2012-01-11 19:06 3072 ------w- c:\windows\system32\iacenc.dll
2014-06-01 14:19 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2014-06-01 14:05 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2014-06-01 14:01 . 2014-06-01 16:21 -------- d-----w- c:\windows\ie8updates
2014-06-01 13:57 . 2010-11-08 12:41 61440 ----a-w- c:\program files\Common Files\System\ado\SET613.tmp
2014-06-01 13:57 . 2010-11-09 14:52 200704 ----a-w- c:\program files\Common Files\System\ado\SET60D.tmp
2014-06-01 13:57 . 2010-11-09 14:52 180224 ----a-w- c:\program files\Common Files\System\ado\SET60E.tmp
2014-06-01 13:57 . 2010-11-09 14:52 102400 ----a-w- c:\program files\Common Files\System\ado\SET60C.tmp
2014-06-01 13:57 . 2010-11-08 12:41 81920 ----a-w- c:\program files\Common Files\System\ado\SET611.tmp
2014-06-01 13:57 . 2010-11-08 12:41 81920 ----a-w- c:\program files\Common Files\System\ado\SET610.tmp
2014-06-01 13:57 . 2010-11-08 12:41 81920 ------w- c:\program files\Common Files\System\ado\SET60F.tmp
2014-06-01 13:57 . 2010-11-08 12:41 61440 ----a-w- c:\program files\Common Files\System\ado\SET612.tmp
2014-06-01 13:54 . 2010-07-12 12:55 218112 ------w- c:\program files\Windows NT\Accessories\SET5D0.tmp
2014-06-01 13:49 . 2014-06-01 13:49 -------- d-----w- c:\windows\system32\winrm
2014-06-01 13:49 . 2014-06-01 13:49 -------- dc-h--w- c:\windows\$968930Uinstall_KB968930$
2014-06-01 13:33 . 2009-02-09 12:10 473600 ----a-w- c:\windows\system32\wbem\SETDB.tmp
2014-06-01 13:33 . 2009-02-06 10:10 227840 ----a-w- c:\windows\system32\wbem\SETD9.tmp
2014-06-01 13:33 . 2013-07-04 03:03 2149888 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2014-06-01 13:33 . 2009-02-09 12:10 453120 ----a-w- c:\windows\system32\wbem\SETDA.tmp
2014-06-01 13:33 . 2013-07-04 02:59 2193536 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2014-06-01 13:33 . 2013-07-04 02:08 2028544 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2014-06-01 13:32 . 2008-05-03 11:55 2560 ------w- c:\windows\system32\xpsp4res.dll
2014-06-01 12:48 . 2014-06-01 12:48 -------- d-----w- c:\documents and settings\Zeljko\Application Data\RoboForm
2014-06-01 12:47 . 2014-06-01 12:47 -------- d-----w- c:\documents and settings\All Users\Application Data\RoboForm
2014-06-01 09:17 . 2014-06-01 09:17 -------- d-----w- c:\documents and settings\Zeljko\Application Data\Eusing
2014-06-01 01:26 . 2014-06-01 01:26 -------- d-----w- c:\documents and settings\All Users\Application Data\regid.1995-08.com.techsmith
2014-05-29 23:20 . 2014-05-29 23:20 -------- d-----w- c:\windows\system32\Lang
2014-05-29 23:15 . 2014-05-29 23:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Backup
2014-05-29 23:07 . 2014-05-29 23:07 -------- d-----w- c:\documents and settings\All Users\Application Data\RegInOut
2014-05-28 16:55 . 2010-08-30 07:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-05-28 13:10 . 2014-05-28 13:10 49152 ----a-w- c:\windows\UNINS.EXE
2014-05-28 13:10 . 2014-05-28 13:10 28672 ----a-w- c:\windows\system32\shelllnk.dll
2014-05-28 13:10 . 2014-05-28 13:10 140096 ----a-w- c:\windows\system32\COMDLG32.OCX
2014-05-28 13:10 . 2014-05-28 13:10 1062704 ----a-w- c:\windows\system32\mscomctl.ocx
2014-05-28 13:10 . 2014-05-28 13:10 53760 ----a-w- c:\windows\system32\zlib.dll
2014-05-26 18:03 . 2013-06-19 16:16 342640 ----a-w- c:\windows\system32\HMIPCore.dll
2014-05-26 17:49 . 2014-05-26 17:49 -------- d-----w- c:\program files\Origin Games
2014-05-25 20:59 . 2014-05-25 20:59 -------- d-----w- c:\documents and settings\Zeljko\Application Data\JAM Software
2014-05-25 20:59 . 2014-05-25 20:59 -------- d-----w- c:\program files\JAM Software
2014-05-25 15:38 . 2014-05-25 15:38 -------- d-----w- c:\program files\Badosoft
2014-05-24 12:27 . 2014-05-24 12:27 -------- d-----w- c:\documents and settings\Zeljko\Application Data\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2014-05-24 10:35 . 2014-05-24 10:35 -------- d-----w- c:\documents and settings\Zeljko\Local Settings\Application Data\F-Secure
2014-05-24 00:29 . 2014-05-24 00:29 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\F-Secure
2014-05-24 00:29 . 2014-05-24 00:29 -------- d-sh--w- c:\documents and settings\Default User\IETldCache
2014-05-24 00:22 . 2014-05-24 12:20 -------- d-----w- c:\program files\F-Secure
2014-05-24 00:21 . 2014-05-24 12:21 -------- d-----w- c:\documents and settings\All Users\Application Data\F-Secure
2014-05-22 21:14 . 2014-05-22 21:14 -------- d-----w- c:\windows\system32\wbem\mof\good
2014-05-22 21:14 . 2014-05-22 21:14 -------- d-----w- c:\windows\system32\wbem\mof\bad
2014-05-22 21:01 . 2014-05-22 21:01 -------- d-----w- c:\documents and settings\Zeljko\Local Settings\Application Data\MapleStudio
2014-05-22 18:42 . 2014-05-22 21:13 -------- d-----w- c:\program files\G Data
2014-05-21 15:09 . 2014-05-21 15:09 -------- d-----w- c:\documents and settings\All Users\Application Data\BitDefender
2014-05-21 14:48 . 2014-05-21 14:48 -------- d-----w- c:\program files\Lavasoft
2014-05-16 01:25 . 2014-05-26 18:29 -------- d-----w- c:\program files\CCleaner
2014-05-13 18:35 . 2008-04-13 23:16 59136 -c--a-w- c:\windows\system32\dllcache\rfcomm.sys
2014-05-13 18:35 . 2008-04-13 23:16 59136 ----a-w- c:\windows\system32\drivers\rfcomm.sys
2014-05-13 18:35 . 2008-04-14 04:42 151552 -c--a-w- c:\windows\system32\dllcache\irftp.exe
2014-05-13 18:35 . 2008-04-14 04:42 151552 ----a-w- c:\windows\system32\irftp.exe
2014-05-13 18:35 . 2008-04-14 04:42 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2014-05-13 18:35 . 2008-04-14 04:42 8192 ----a-w- c:\windows\system32\wshirda.dll
2014-05-13 18:35 . 2008-04-14 04:41 28160 -c--a-w- c:\windows\system32\dllcache\irmon.dll
2014-05-13 18:35 . 2008-04-14 04:41 28160 ----a-w- c:\windows\system32\irmon.dll
2014-05-13 18:35 . 2008-04-13 23:21 101120 -c--a-w- c:\windows\system32\dllcache\bthpan.sys
2014-05-13 18:35 . 2008-04-13 23:21 101120 ----a-w- c:\windows\system32\drivers\bthpan.sys
2014-05-13 18:35 . 2008-04-13 23:16 17024 -c--a-w- c:\windows\system32\dllcache\bthenum.sys
2014-05-13 18:35 . 2008-04-13 23:16 17024 ----a-w- c:\windows\system32\drivers\bthenum.sys
2014-05-12 21:31 . 2014-05-12 21:31 -------- d-----w- c:\documents and settings\Zeljko\Application Data\BANDISOFT
2014-05-12 21:28 . 2014-05-12 21:28 -------- d-----w- c:\documents and settings\Zeljko\Local Settings\Application Data\Nvidia Corporation
2014-05-11 13:02 . 2014-05-11 13:02 -------- d-----w- c:\documents and settings\Zeljko\Application Data\TuneUp Software
2014-05-10 17:08 . 2014-05-10 17:08 -------- d-----w- c:\documents and settings\Zeljko\dwhelper
2014-05-10 14:09 . 2014-05-10 14:09 -------- d-----w- c:\program files\TeamViewer
2014-05-08 19:01 . 2014-05-08 19:01 -------- d-----w- c:\documents and settings\Zeljko\Local Settings\Application Data\CrashRpt
2014-05-08 13:48 . 2014-05-08 13:48 227704 ----a-w- c:\program files\Internet Explorer\Plugins\nppdf32.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-09 09:46 . 2014-04-02 13:22 107736 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-04-30 20:49 . 2014-04-30 20:49 21376 ----a-w- c:\windows\system32\drivers\droidcam.sys
2014-03-11 20:07 . 2014-03-11 20:07 4550656 ----a-w- c:\windows\system32\GPhotos.scr
2014-03-11 13:05 . 2014-03-11 13:05 67824 ----a-w- c:\windows\system32\drivers\aswmonflt.sys.1394543156203
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2013-10-04 20145368]
"NvMediaCenter"="NvMCTray.dll" [2013-01-31 108832]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
"NoFileAssociate"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ \0sdnclean.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKLM\~\startupfolder\C:^Documents and Settings^Zeljko^Start Menu^Programs^Startup^Rainmeter.lnk]
backup=c:\windows\pss\Rainmeter.lnkStartup
.
[HKLM\~\startupfolder\C:^Documents and Settings^Zeljko^Start Menu^Programs^Startup^TeamViewer 9.lnk]
backup=c:\windows\pss\TeamViewer 9.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-11-21 16:57 959904 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
2012-04-04 05:09 446392 ------w- c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS6ServiceManager]
2012-03-09 15:26 1073312 ----a-w- c:\program files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BluetoothAuthenticationAgent]
2008-04-14 04:42 110592 ----a-w- c:\windows\system32\bthprops.cpl
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
2014-05-20 13:29 4529944 ----a-w- c:\program files\CCleaner\CCleaner.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 04:42 1695232 ------w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2014-05-07 13:44 256896 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
2010-02-19 12:37 517096 ----a-w- c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2014-05-25 12:02 1272400 ----a-w- c:\documents and settings\Zeljko\Application Data\uTorrent\uTorrent.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"d:\\Games\\Counter-Strike\\hltv.exe"=
"c:\\Program Files\\Java\\jre7\\bin\\java.exe"=
"c:\\Documents and Settings\\Zeljko\\Application Data\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Java\\jre7\\bin\\javaw.exe"=
"d:\\Games\\Counter-Strike\\hl.exe"=
"c:\\Games\\Counter-Strike\\hl.exe"=
"c:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Steam\\SteamApps\\common\\Half-Life\\hl.exe"=
"c:\\Program Files\\TeamViewer\\Version9\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version9\\TeamViewer_Service.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:*:Disabled:@xpsp2res.dll,-22009
"8317:TCP"= 8317:TCP:TechSmith Camtasia Studio
"5985:TCP"= 5985:TCP:*:Disabled:Windows Remote Management
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
.
R2 UI5IFS;Ashampoo Uninstaller 5 FileSystemChanges Driver;c:\program files\Ashampoo\Ashampoo UnInstaller 5\IFS32.sys [2/15/2014 4:50 PM 33632]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [3/6/2014 7:32 PM 27632]
R3 usbcamcl;Driver for usbcamcl Device;c:\windows\system32\drivers\usbcamcl.sys [11/10/2013 7:36 PM 31104]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [3/22/2014 10:14 PM 1691480]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\drivers\ssadadb.sys [5/13/2011 3:21 AM 30312]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [11/15/2013 2:01 PM 84248]
S3 DroidCam;DroidCam Virtual Audio;c:\windows\system32\drivers\droidcam.sys [4/30/2014 9:49 PM 21376]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [2/24/2014 2:49 PM 23456]
S3 E100E;E100E;c:\windows\system32\drivers\E100ENT.sys [2/1/2013 1:39 AM 25360]
S3 ESEADriver2;ESEADriver2; [x]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; [x]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [11/7/2013 6:53 PM 12400]
S3 huawei_cdcacm;huawei_cdcacm; [x]
S3 huawei_cdcecm;huawei_cdcecm; [x]
S3 huawei_enumerator;huawei_enumerator; [x]
S3 huawei_ext_ctrl;huawei_ext_ctrl; [x]
S3 HWDeviceService.exe;HWDeviceService.exe; [x]
S3 Intel(R) PROSet Monitoring Service;Intel(R) PROSet Monitoring Service;c:\windows\system32\IPROSetMonitor.exe [4/5/2013 3:53 AM 121600]
S3 LiveUpdateSvc;LiveUpdate; [x]
S3 mcaudrv_simple;ManyCam Virtual Microphone;c:\windows\system32\drivers\mcaudrv.sys [12/6/2013 2:37 PM 29728]
S3 PBDOWNFORCE_SERVICE;PBDOWNFORCE_SERVICE; [x]
S3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys [3/23/2014 1:29 PM 15688]
S3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys [3/23/2014 1:29 PM 10320]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [5/13/2011 3:21 AM 121064]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [5/13/2011 3:21 AM 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [5/13/2011 3:21 AM 136808]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [5/13/2011 3:21 AM 114280]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [11/15/2013 2:01 PM 182680]
S3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\drivers\ssudserd.sys [11/15/2013 2:01 PM 182680]
S3 SwitchBoard;Adobe SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2/19/2010 1:37 PM 517096]
S3 tapse01;SurfEasy TAP-Windows Adapter V9;c:\windows\system32\drivers\tapse01.sys [10/16/2013 9:51 PM 33720]
S3 TeamViewer9;TeamViewer 9;c:\program files\TeamViewer\Version9\TeamViewer_Service.exe [5/10/2014 3:09 PM 5024576]
S4 DragonUpdater;COMODO Dragon Update Service;c:\program files\Comodo\Dragon\dragon_updater.exe [5/21/2014 11:22 AM 2135232]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-04 18:19 1091912 ----a-w- c:\program files\Google\Chrome\Application\35.0.1916.114\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-05-03 c:\windows\Tasks\Auslogics Disk Defrag Prof Task {00000001-44D8-4356-A006-762764B291CC} for Zeljko.job
- c:\program files\Auslogics\Disk Defrag Professional\DiskDefragPro.exe [2014-05-03 18:05]
.
2014-05-03 c:\windows\Tasks\Auslogics Disk Defrag Prof Task {00000001-D7AC-47CB-8091-395296FBE6C6} for Zeljko.job
- c:\program files\Auslogics\Disk Defrag Professional\DiskDefragPro.exe [2014-05-03 18:05]
.
2014-05-24 c:\windows\Tasks\Auslogics Disk Defrag Prof Task {00000001-D8A3-4DA1-8E7F-9A9755418F49} for Zeljko.job
- c:\program files\Auslogics\Disk Defrag Professional\DiskDefragPro.exe [2014-05-03 18:05]
.
2014-05-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-11-03 19:03]
.
2014-05-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-11-03 19:03]
.
2014-06-05 c:\windows\Tasks\Microsoft Windows XP End of Service Notification Logon.job
- c:\windows\system32\xp_eos.exe [2014-06-01 01:59]
.
2014-06-01 c:\windows\Tasks\Microsoft Windows XP End of Service Notification Monthly.job
- c:\windows\system32\xp_eos.exe [2014-06-01 01:59]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{4A38C904-265F-4E99-ABB0-7E03680B28AA}: NameServer = 192.168.1.1,81.93.64.1
TCP: Interfaces\{F85AFED7-7362-46A5-8449-145789134850}: NameServer = 8.8.8.8,8.8.4.4
FF - ProfilePath - c:\documents and settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default\
FF - ExtSQL: 2014-06-02 16:11; PrivDog@AdTrustMedia.com; c:\documents and settings\Zeljko\Application Data\Mozilla\Firefox\Profiles\cbmngrb9.default\extensions\PrivDog@AdTrustMedia.com.xpi
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, gmer.net
Rootkit scan 2014-06-05 19:07
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(3192)
c:\windows\system32\ieframe.dll
c:\windows\system32\msi.dll
c:\windows\system32\OneX.DLL
c:\windows\system32\eappprxy.dll
c:\windows\system32\webcheck.dll
.
Completion time: 2014-06-05 19:09:44
ComboFix-quarantined-files.txt 2014-06-05 18:09
ComboFix2.txt 2014-06-02 21:58
.
Pre-Run: 40,799,989,760 bytes free
Post-Run: 40,787,730,432 bytes free
.
- - End Of File - - 959DC07EA5267BA26A2A910F4F5108B9
A36C5E4F47E84449FF07ED3517B43A31

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Prijatelju, nemas nista ali moras nov sistem da dizes.
Servisi su ti katastrofa.
I kad skidas drajvere skidaj ih sa zvanicnog sajta nemoj da koristis razne programe za to.

Ako ne znas pitaj na Win forumu oni ce ti reci odakle da skines drajvere.

Antivirus obavezno i ne pokreci Combofix, moguce da je on i unistio sistem. Imas Malwrebytes za te stvari.