win 8.1 problem sa internet stranicom - moguc virus ili vec

2

win 8.1 problem sa internet stranicom - moguc virus ili vec

offline
  • Pridružio: 14 Avg 2010
  • Poruke: 185

opet do search se javlja

do-search.com/?type=sc&ts=1384205521&from=i.....LZP0EWLZPX

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6103

Pozdrav,

Hajde sada do kraja isprati moje korake koje sam napisao u ovom postu i odradi ono sto si preskocio. Isto tako mi odgovori na prvo neodgovoreno pitanje.

Potom postavi mi svez FRST izvestaj.

offline
  • Pridružio: 14 Avg 2010
  • Poruke: 185

Napisano: 13 Nov 2013 13:04

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-11-2013
Ran by M (administrator) on MIKI on 13-11-2013 13:01:11
Running from C:\Users\M\Desktop
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\WINDOWS\system32\atiesrxx.exe
(AMD) C:\WINDOWS\system32\atieclxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Hewlett-Packard Company) C:\WINDOWS\system32\Hpservice.exe
(ABBYY) C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteUser.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\WINDOWS\WinStore\WSHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe
(Microsoft Corporation) C:\WINDOWS\system32\wwahost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20279_x64__8wekyb3d8bbwe\LiveComm.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9600.16422_x64__8wekyb3d8bbwe\glcnd.exe
(Microsoft Corporation) C:\WINDOWS\FileManager\PhotosApp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\3983JEFBCreating.BubbleBreaker_1.0.0.10_neutral__vy786dcgg6jz4\PIANO8.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-20] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3053808 2013-10-29] (Synaptics Incorporated)
HKCU\...\Run: [ANT Agent] - C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe [14731776 2013-02-15] (GARMIN Corp.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-09-12] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [BtTray] - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [371976 2012-09-19] (IVT Corporation)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] - C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2012-09-14] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-04-10] (CyberLink Corp.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-10-23] (Apple Inc.)
HKLM-x32\...\Run: [Bonus.SSR.FR11] - C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [934152 2011-11-07] (ABBYY.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ips\ipsbho.dll (Symantec Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coieplg.dll (Symantec Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWOW64\skype4com.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21

Chrome:
=======
CHR RestoreOnStartup: "chrome://newtab/"
CHR Extension: (Google Docs) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google+) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm\1.2.0.418_0
CHR Extension: (LastPass) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\3.0.10_0
CHR Extension: (Dropbox) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl\3.0.8_0
CHR Extension: (Evernote Web) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol\1.0.7_0
CHR Extension: (Norton Identity Protection) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.4.3.4_0
CHR Extension: (Google Wallet) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Awesome New Tab Page 2(EXT)) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\oijkglihmcefogkmgibpajfaiekekllk\1.2.0_0
CHR Extension: (Gmail) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\Exts\Chrome.crx

==================== Services (Whitelisted) =================

R2 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [819976 2011-10-12] (ABBYY)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-09-12] (Advanced Micro Devices, Inc.)
R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1612552 2012-09-26] (IVT Corporation)
R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [146184 2012-09-19] (IVT Corporation)
R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [35744 2012-10-12] (Hewlett-Packard)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2013-10-27] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
S2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [199008 2012-06-23] (AppEx Networks Corporation)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2012-08-22] (Advanced Micro Devices)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20131101.003\BHDrvx64.sys [1524824 2013-10-23] (Symantec Corporation)
R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation)
R3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48608 2012-10-02] (Ralink Corporation)
R3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-10-11] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [140376 2013-10-11] (Symantec Corporation)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20131112.002\IDSvia64.sys [521816 2013-10-28] (Symantec Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-09-30] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20131112.020\ENG64.SYS [126040 2013-10-11] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\VirusDefs\20131112.020\EX64.SYS [2099288 2013-10-11] (Symantec Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [692832 2012-10-02] (Ralink Technology, Corp.)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146272 2013-08-22] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-08-25] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [43832 2012-08-25] (Synaptics Incorporated)
R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
R3 SRTSPX; C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [56672 2013-08-22] (Microsoft Corporation)
R3 SymDS; C:\Windows\system32\drivers\NISx64\1404000.028\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
R3 SymEFA; C:\Windows\system32\drivers\NISx64\1404000.028\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NISx64\1404000.028\SymELAM.sys [23448 2012-06-20] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-10-12] (Symantec Corporation)
R3 SymIRON; C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-13 13:00 - 2013-11-13 13:00 - 01957610 _____ (Farbar) C:\Users\M\Desktop\FRST64.exe
2013-11-13 12:58 - 2013-11-13 12:58 - 00002805 _____ C:\Users\M\Desktop\fixlist.txt
2013-11-13 10:40 - 2013-11-13 10:54 - 985876569 ____R C:\Users\M\Downloads\Homeland.S03E07.720p.HDTV.x264-KILLERS.mkv
2013-11-12 23:09 - 2013-11-12 23:09 - 00382800 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-11-12 23:06 - 2013-11-12 23:08 - 00000000 ____D C:\AdwCleaner
2013-11-12 23:05 - 2013-11-12 23:05 - 01085542 _____ C:\Users\M\Desktop\AdwCleaner.exe
2013-11-12 22:30 - 2013-11-13 13:01 - 00015470 _____ C:\Users\M\Desktop\FRST.txt
2013-11-12 22:29 - 2013-11-12 22:30 - 00020472 _____ C:\Users\M\Desktop\Addition.txt
2013-11-12 21:40 - 2013-11-12 21:40 - 00000000 ____D C:\FRST
2013-11-12 21:22 - 2013-11-12 21:22 - 00700783 _____ (Swearware) C:\Users\M\Desktop\dds+.exe
2013-11-12 21:12 - 2013-11-11 16:41 - 00031345 _____ C:\Users\M\Downloads\Homeland.S03E07.720p.HDTV.x264-KILLERS.srt
2013-11-12 20:53 - 2013-11-12 20:55 - 00000866 _____ C:\DelFix.txt
2013-11-12 19:49 - 2013-11-12 19:51 - 186814123 ____R C:\Users\M\Downloads\How.I.Met.Your.Mother.S09E09.HDTV.x264-2HD.mp4
2013-11-11 22:28 - 2013-11-12 19:21 - 00000000 ____D C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HDPlayer
2013-11-11 22:28 - 2013-11-11 23:06 - 00000000 ____D C:\Program Files (x86)\HDPlayer
2013-11-11 20:49 - 2013-11-11 21:00 - 508401191 ____R C:\Users\M\Downloads\Downton.Abbey.4x08.HDTV.x264-FoV.mp4
2013-11-11 20:48 - 2013-11-11 20:55 - 314509154 ____R C:\Users\M\Downloads\Boardwalk.Empire.S04E10.HDTV.x264-2HD.mp4
2013-11-10 18:56 - 2013-11-12 19:22 - 00000000 ____D C:\Program Files (x86)\ABBYY FineReader 11
2013-11-10 18:53 - 2013-11-13 12:05 - 00944681 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-10 18:49 - 2011-11-07 14:11 - 00000000 ____D C:\Users\M\Downloads\ABBYY FineReader 11.0.102.536 Professional Edition
2013-11-10 18:25 - 2013-11-10 18:25 - 00002764 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2013-11-10 18:25 - 2013-11-10 18:25 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-11-10 18:25 - 2013-11-10 18:25 - 00000000 ____D C:\Program Files\CCleaner
2013-11-10 13:20 - 2013-11-13 10:19 - 00000000 ____D C:\Users\M\Desktop\500 Zaboravljenih
2013-11-10 13:05 - 2013-11-10 13:05 - 00000000 ____D C:\Users\M\Downloads\boiler
2013-11-10 13:03 - 2013-11-10 13:03 - 00536962 _____ C:\Users\M\Downloads\boiler.zip
2013-11-10 11:11 - 2013-11-10 23:54 - 00000000 ____D C:\Users\M\Downloads\Despicable.Me.2.2013.DVDRip.XviD-iNViNCiBLE
2013-11-10 11:04 - 2013-11-10 15:46 - 00000000 ____D C:\Users\M\Downloads\Paranoia (2013)
2013-11-10 09:57 - 2013-11-10 09:57 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-11-10 09:57 - 2013-11-10 09:57 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-11-09 23:41 - 2013-11-09 23:41 - 00289357 _____ C:\Users\M\Downloads\IntrinsicValueSpreadsheet.zip
2013-11-09 23:37 - 2013-11-09 23:37 - 03181056 _____ C:\Users\M\Downloads\trend-following.xls
2013-11-09 23:35 - 2013-11-09 23:35 - 00129024 _____ C:\Users\M\Downloads\meltdown.xls
2013-11-09 23:24 - 2013-11-09 23:24 - 01065984 _____ C:\Users\M\Downloads\Buying-strategies.xls
2013-11-09 23:13 - 2013-11-09 23:13 - 00038912 _____ C:\Users\M\Downloads\ERPDec09.xls
2013-11-09 23:12 - 2013-11-09 23:12 - 00031744 _____ C:\Users\M\Downloads\DiscountedCashFlows.xls
2013-11-09 11:38 - 2013-11-09 11:38 - 00041843 _____ C:\Users\M\Downloads\table.csv
2013-11-09 10:07 - 2013-11-09 10:07 - 00511488 _____ C:\Users\M\Downloads\january-predicts.xls
2013-11-08 22:45 - 2013-11-10 18:08 - 01337232 _____ C:\Users\M\Downloads\CEEPeerD.xlsm
2013-11-08 22:44 - 2013-11-08 22:44 - 00134205 _____ C:\Users\M\Downloads\equities.xlsx
2013-11-08 22:18 - 2013-10-29 17:48 - 00026192 _____ C:\Users\M\Downloads\Homeland.S03E05.HDTV.x264-KILLERS.srt
2013-11-08 22:04 - 2013-11-01 21:08 - 00039114 _____ C:\Users\M\Downloads\Boardwalk.Empire.S04E08.HDTV.x264-2HD.srt
2013-11-08 22:04 - 2013-10-26 20:21 - 00047105 _____ C:\Users\M\Downloads\Boardwalk.Empire.S04E07.720p.HDTV.x264-KILLERS.srt
2013-11-08 21:43 - 2013-11-08 21:47 - 280197765 ____R C:\Users\M\Downloads\White.Collar.S05E04.HDTV.x264-2HD.mp4
2013-11-05 16:37 - 2013-11-06 22:07 - 00041043 _____ C:\Users\M\Downloads\Homeland.S03E06.HDTV.x264-2HD.srt
2013-11-05 16:32 - 2013-11-06 22:06 - 00052497 _____ C:\Users\M\Downloads\Downton_Abbey.4x07.HDTV_x264-FoV.srt
2013-11-04 19:13 - 2013-11-04 19:17 - 318943006 ____R C:\Users\M\Downloads\Downton_Abbey.4x07.HDTV_x264-FoV.mp4
2013-11-04 19:00 - 2013-11-04 19:08 - 350417636 ____R C:\Users\M\Downloads\Boardwalk.Empire.S04E09.HDTV.x264-2HD.mp4
2013-11-03 16:01 - 2013-11-03 16:01 - 00000000 ____D C:\Users\Public\CyberLink
2013-11-03 12:51 - 2013-11-03 12:51 - 00003080 _____ C:\WINDOWS\System32\Tasks\Microsoft SkyDrive Auto Update Task-S-1-5-21-432700491-4017870644-2687449469-1002
2013-11-02 20:49 - 2013-11-10 15:43 - 00000000 ____D C:\Users\M\Downloads\R.I.P.D. (2013)
2013-11-02 20:39 - 2013-11-10 09:09 - 00000000 ____D C:\Users\M\Downloads\Despicable Me 2 (2013) [1080p]
2013-11-02 20:30 - 2013-11-10 00:00 - 00000000 ____D C:\Users\M\Downloads\Prisoners 2013 TS XViD-UNiQUE
2013-11-02 15:35 - 2013-11-02 15:35 - 00001795 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-02 15:33 - 2013-11-02 15:34 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-02 15:33 - 2013-11-02 15:34 - 00000000 ____D C:\Program Files\iTunes
2013-11-02 15:33 - 2013-11-02 15:34 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-02 15:33 - 2013-11-02 15:33 - 00000000 ____D C:\Program Files\iPod
2013-11-02 14:33 - 2013-11-02 14:33 - 00000000 ____D C:\Program Files\AMD
2013-11-01 14:42 - 2013-11-01 14:42 - 00000000 ____D C:\WINDOWS\SysWOW64\Drivers\sr-Latn-RS
2013-11-01 14:41 - 2013-11-01 14:41 - 00000000 ____D C:\WINDOWS\system32\Drivers\sr-Latn-RS
2013-11-01 14:41 - 2013-11-01 14:41 - 00000000 ____D C:\WINDOWS\sr-Latn-RS
2013-11-01 13:24 - 2013-11-02 14:21 - 00060464 _____ C:\Users\M\Downloads\White.Collar.S05E03.HDTV.x264-2HD.txt
2013-11-01 12:52 - 2013-11-01 13:11 - 321988035 ____R C:\Users\M\Downloads\White.Collar.S05E03.HDTV.x264-2HD.mp4
2013-11-01 12:45 - 2013-11-03 12:53 - 00060461 _____ C:\Users\M\Downloads\White Collar - 05x03 - One Last Stakeout.2HD.English.C.orig.Addic7ed.com.srt
2013-11-01 10:29 - 2013-11-01 12:52 - 00058874 _____ C:\Users\M\Downloads\White.Collar.S05E01.HDTV.x264-2HD.srt
2013-10-30 21:58 - 2013-11-01 12:12 - 00004298 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-10-29 15:25 - 2013-10-29 15:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Internet Security
2013-10-29 11:50 - 2013-10-29 11:49 - 01060080 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2013-10-29 11:50 - 2013-10-29 11:49 - 00544496 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2013-10-29 11:50 - 2013-10-29 11:49 - 00495856 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2013-10-29 11:50 - 2013-10-29 11:49 - 00264432 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2013-10-29 11:50 - 2013-10-29 11:49 - 00192240 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo18.dll
2013-10-29 11:50 - 2013-10-29 11:49 - 00151280 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynTPCom.dll
2013-10-29 09:19 - 2013-10-29 09:19 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-10-29 09:13 - 2013-10-23 12:01 - 00872840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-10-29 09:13 - 2013-10-23 09:59 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-10-28 19:43 - 2013-11-13 08:40 - 00003898 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A8839A3A-2C06-4EC8-AC66-7675966FEDE7}
2013-10-28 19:29 - 2013-10-28 19:56 - 336956638 ____R C:\Users\M\Downloads\Boardwalk.Empire.S04E08.HDTV.x264-2HD.mp4
2013-10-28 19:28 - 2013-10-28 19:38 - 337058443 ____R C:\Users\M\Downloads\Homeland.S03E05.HDTV.x264-KILLERS.mp4
2013-10-28 19:28 - 2013-10-28 19:34 - 251989289 ____R C:\Users\M\Downloads\Downton.Abbey.4x06.HDTV.x264-FoV.mp4
2013-10-27 23:16 - 2013-11-13 08:37 - 00000000 __RDO C:\Users\M\SkyDrive
2013-10-27 23:13 - 2013-10-27 23:13 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-10-27 23:11 - 2013-11-11 22:32 - 00001662 _____ C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-27 23:10 - 2013-10-27 23:10 - 00000020 ___SH C:\Users\M\ntuser.ini
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-27 23:07 - 2013-10-27 23:07 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-10-27 22:54 - 2013-10-27 22:54 - 00000000 ____D C:\Users\Default\Documents\hp.system.package.metadata
2013-10-27 22:54 - 2013-10-27 22:54 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2013-10-27 22:54 - 2013-10-27 22:54 - 00000000 ____D C:\Users\Default User\Documents\hp.system.package.metadata
2013-10-27 22:54 - 2013-10-27 22:54 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2013-10-27 22:48 - 2013-10-27 22:48 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-10-27 22:46 - 2013-11-10 13:17 - 00000000 ____D C:\Users\M
2013-10-27 22:46 - 2013-10-27 23:07 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2013-10-27 22:46 - 2013-10-27 23:07 - 00024768 _____ C:\WINDOWS\diagerr.xml
2013-10-27 22:46 - 2013-10-27 22:48 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Vorlagen
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Startmenü
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Netzwerkumgebung
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Lokale Einstellungen
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Eigene Dateien
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Druckumgebung
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Documents\Eigene Musik
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Documents\Eigene Bilder
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\AppData\Local\Verlauf
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\AppData\Local\Anwendungsdaten
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Anwendungsdaten
2013-10-27 22:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-27 22:46 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-10-27 22:46 - 2013-08-22 16:36 - 00000000 ____D C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-27 22:40 - 2013-10-27 22:40 - 01914374 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2013-10-27 22:38 - 2013-10-27 22:38 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2013-10-27 22:38 - 2013-10-27 22:38 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-10-27 22:38 - 2013-10-27 22:38 - 00000000 ____D C:\Program Files\Synaptics
2013-10-27 22:38 - 2013-10-27 22:38 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2013-10-27 22:37 - 2013-10-27 22:57 - 00000000 ____D C:\Program Files\IDT
2013-10-27 22:37 - 2013-10-27 22:37 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-10-27 22:37 - 2013-10-27 22:37 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2013-10-27 22:37 - 2013-10-27 22:37 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-10-27 22:37 - 2012-08-20 06:45 - 07986176 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNGUI.exe
2013-10-27 22:37 - 2012-08-20 06:45 - 07712768 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNHP.dll
2013-10-27 22:37 - 2012-08-20 06:45 - 06085632 _____ (IDT, Inc.) C:\WINDOWS\system32\stlang64.dll
2013-10-27 22:37 - 2012-08-20 06:45 - 02213376 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNX.dll
2013-10-27 22:37 - 2012-08-20 06:45 - 01821184 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNC64.cpl
2013-10-27 22:37 - 2012-08-20 06:45 - 01664000 _____ (IDT, Inc.) C:\WINDOWS\sttray64.exe
2013-10-27 22:37 - 2012-08-20 06:45 - 00253952 _____ (IDT, Inc.) C:\WINDOWS\system32\IDTNJ.exe
2013-10-27 22:37 - 2012-08-20 06:45 - 00224256 _____ (IDT, Inc.) C:\WINDOWS\system32\HPToneCtrls64.dll
2013-10-27 22:35 - 2013-11-10 18:31 - 00000000 ___DC C:\WINDOWS\Panther
2013-10-27 22:35 - 2013-10-27 22:35 - 00000000 __SHD C:\Recovery
2013-10-27 22:32 - 2013-10-27 22:32 - 23213056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 17143808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 12995072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 11222016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 02763776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-10-27 22:32 - 2013-10-27 22:32 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-10-27 22:32 - 2013-10-27 22:32 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 02144768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 01537880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-10-27 22:32 - 2013-10-27 22:32 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00837120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00698880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-10-27 22:32 - 2013-10-27 22:32 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-27 22:31 - 2013-10-27 22:31 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-10-27 22:27 - 2013-10-27 22:27 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2013-10-27 22:27 - 2013-10-27 22:27 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2013-10-27 22:27 - 2013-10-27 22:27 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\Program Files\MSBuild
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\inetpub
2013-10-27 22:26 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-10-27 22:26 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-27 22:26 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2013-10-27 22:26 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2013-10-27 22:26 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-27 22:26 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2013-10-27 10:57 - 2013-07-31 14:25 - 00044427 _____ C:\Users\M\Downloads\Parades.End.1x05.HDTV.x264-FoV.srt
2013-10-27 10:57 - 2013-07-30 21:02 - 00057434 _____ C:\Users\M\Downloads\Parades.End.1x04.HDTV.x264-FoV.srt
2013-10-27 10:56 - 2013-04-06 13:26 - 00060715 _____ C:\Users\M\Downloads\Parades.End.1x03.HDTV.x264-FoV.srt
2013-10-27 10:54 - 2013-08-01 00:38 - 00045911 _____ C:\Users\M\Downloads\Parades.End.1x01.HDTV.x264-FoV.srt
2013-10-27 10:54 - 2013-03-22 21:52 - 00059712 _____ C:\Users\M\Downloads\Parades.End.1x02.HDTV.x264-FoV.srt
2013-10-27 09:40 - 2013-10-27 10:22 - 327740532 ____R C:\Users\M\Downloads\Parades.End.1x03.HDTV.x264-FoV.mp4
2013-10-27 09:40 - 2013-10-27 10:18 - 367470720 ____R C:\Users\M\Downloads\Parades.End.1x02.HDTV.x264-FoV.mp4
2013-10-27 09:39 - 2013-10-27 10:04 - 351212867 ____R C:\Users\M\Downloads\Parades.End.1x05.HDTV.x264-FoV.mp4
2013-10-27 09:39 - 2013-10-27 10:02 - 357867920 ____R C:\Users\M\Downloads\Parades.End.1x04.HDTV.x264-FoV.mp4
2013-10-27 09:39 - 2013-10-27 09:46 - 389568742 ____R C:\Users\M\Downloads\Parades.End.1x01.HDTV.x264-FoV.mp4
2013-10-26 20:10 - 2013-11-01 12:41 - 00000000 ____D C:\Users\M\Downloads\Editgrid
2013-10-26 18:21 - 2013-10-26 20:09 - 00053071 _____ C:\Users\M\Downloads\Downton.Abbey.4x05.HDTV.x264-FoV.srt
2013-10-26 16:30 - 2013-10-26 16:30 - 00000000 ____D C:\Users\M\AppData\Local\Windows Live
2013-10-25 16:09 - 2013-10-25 16:19 - 308418510 ____R C:\Users\M\Downloads\White.Collar.S05E02.HDTV.x264-2HD.mp4
2013-10-24 17:43 - 2013-10-24 18:00 - 1151835199 ____R C:\Users\M\Downloads\Boardwalk.Empire.S04E07.720p.HDTV.x264-KILLERS.mkv
2013-10-22 19:24 - 2013-10-22 08:05 - 00032288 _____ C:\Users\M\Downloads\Homeland.S03E04.HDTV.x264-2HD.srt
2013-10-22 17:26 - 2013-10-22 17:30 - 281632102 ____R C:\Users\M\Downloads\Downton.Abbey.4x05.HDTV.x264-FoV.mp4
2013-10-22 17:16 - 2013-10-22 17:32 - 369671747 ____R C:\Users\M\Downloads\Homeland.S03E04.HDTV.x264-2HD.mp4
2013-10-22 17:13 - 2013-10-22 17:26 - 337549083 ____R C:\Users\M\Downloads\White.Collar.S05E01.HDTV.x264-2HD.mp4
2013-10-16 22:19 - 2013-10-16 22:19 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-10-16 13:50 - 2013-10-16 22:31 - 00052419 _____ C:\Users\M\Downloads\Downton.Abbey.4x04.HDTV.x264-RiVER.srt
2013-10-15 21:01 - 2013-10-15 21:01 - 00000000 ____D C:\ProgramData\Ant
2013-10-15 21:00 - 2013-10-15 21:00 - 00000000 ____D C:\Users\M\AppData\Roaming\Garmin
2013-10-15 21:00 - 2013-10-15 21:00 - 00000000 ____D C:\Program Files\DIFX
2013-10-15 21:00 - 2013-10-15 21:00 - 00000000 ____D C:\Program Files (x86)\Garmin
2013-10-15 19:34 - 2013-11-01 16:11 - 00000000 ____D C:\Users\M\AppData\Roaming\Apple Computer
2013-10-15 19:34 - 2013-10-15 19:34 - 00000000 ____D C:\Users\M\AppData\Local\Apple Computer
2013-10-15 19:34 - 2013-10-15 08:28 - 00041165 _____ C:\Users\M\Downloads\Boardwalk.Empire.S04E06.HDTV.XviD-AFG.srt
2013-10-15 19:34 - 2012-08-21 12:01 - 00033240 _____ (GEAR Software Inc.) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2013-10-15 19:33 - 2013-10-15 19:33 - 00000000 ____D C:\ProgramData\Apple Computer
2013-10-15 19:32 - 2013-10-15 19:32 - 00000000 ____D C:\Users\M\AppData\Local\Apple
2013-10-15 19:32 - 2013-10-15 19:32 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2013-10-15 19:31 - 2013-10-15 19:31 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-10-14 20:48 - 2013-11-12 20:57 - 00046080 ___SH C:\Users\M\Desktop\Thumbs.db
2013-10-14 20:01 - 2013-10-14 17:18 - 00020494 _____ C:\Users\M\Downloads\Homeland.S03E03.HDTV.x264-ASAP.srt
2013-10-14 19:48 - 2013-10-14 19:52 - 302041543 ____R C:\Users\M\Downloads\Boardwalk.Empire.S04E06.HDTV.x264-KILLERS.mp4
2013-10-14 19:47 - 2013-10-14 19:58 - 408637109 ____R C:\Users\M\Downloads\Homeland.S03E03.HDTV.x264-ASAP.mp4
2013-10-14 19:47 - 2013-10-14 19:58 - 272824569 ____R C:\Users\M\Downloads\Downton.Abbey.4x04.HDTV.x264-RiVER.mp4

==================== One Month Modified Files and Folders =======

2013-11-13 13:02 - 2013-11-12 22:30 - 00015470 _____ C:\Users\M\Desktop\FRST.txt
2013-11-13 13:00 - 2013-11-13 13:00 - 01957610 _____ (Farbar) C:\Users\M\Desktop\FRST64.exe
2013-11-13 13:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-11-13 12:59 - 2013-10-11 18:49 - 00001110 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-13 12:58 - 2013-11-13 12:58 - 00002805 _____ C:\Users\M\Desktop\fixlist.txt
2013-11-13 12:57 - 2013-10-11 19:11 - 00000000 ____D C:\Users\M\AppData\Roaming\uTorrent
2013-11-13 12:56 - 2013-10-11 20:48 - 00161610 _____ C:\Users\M\Desktop\Mappe1.xlsx
2013-11-13 12:05 - 2013-11-10 18:53 - 00944681 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-13 11:12 - 2013-10-11 18:24 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-432700491-4017870644-2687449469-1002
2013-11-13 11:07 - 2013-10-12 11:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-13 11:07 - 2013-10-11 20:37 - 00413696 ___SH C:\Users\M\Downloads\Thumbs.db
2013-11-13 11:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-11-13 10:56 - 2013-10-12 07:13 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-11-13 10:56 - 2013-10-12 07:12 - 82896128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-11-13 10:54 - 2013-11-13 10:40 - 985876569 ____R C:\Users\M\Downloads\Homeland.S03E07.720p.HDTV.x264-KILLERS.mkv
2013-11-13 10:19 - 2013-11-10 13:20 - 00000000 ____D C:\Users\M\Desktop\500 Zaboravljenih
2013-11-13 08:40 - 2013-10-28 19:43 - 00003898 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A8839A3A-2C06-4EC8-AC66-7675966FEDE7}
2013-11-13 08:39 - 2013-09-30 05:14 - 01980870 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-13 08:39 - 2013-09-30 04:56 - 00842568 _____ C:\WINDOWS\system32\perfh007.dat
2013-11-13 08:39 - 2013-09-30 04:56 - 00191764 _____ C:\WINDOWS\system32\perfc007.dat
2013-11-13 08:37 - 2013-10-27 23:16 - 00000000 __RDO C:\Users\M\SkyDrive
2013-11-13 08:37 - 2012-09-26 08:53 - 00000950 _____ C:\WINDOWS\SysWOW64\bscs.ini
2013-11-13 08:36 - 2013-10-11 18:51 - 00002403 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-13 08:34 - 2013-10-11 18:49 - 00001106 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-13 08:34 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-11-13 08:34 - 2013-05-13 16:57 - 00003620 _____ C:\WINDOWS\SysWOW64\LOCALSERVICE.INI
2013-11-13 08:34 - 2013-05-13 16:57 - 00000043 _____ C:\WINDOWS\SysWOW64\LOCALDEVICE.INI
2013-11-13 00:04 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2013-11-12 23:09 - 2013-11-12 23:09 - 00382800 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-11-12 23:08 - 2013-11-12 23:06 - 00000000 ____D C:\AdwCleaner
2013-11-12 23:05 - 2013-11-12 23:05 - 01085542 _____ C:\Users\M\Desktop\AdwCleaner.exe
2013-11-12 22:30 - 2013-11-12 22:29 - 00020472 _____ C:\Users\M\Desktop\Addition.txt
2013-11-12 21:40 - 2013-11-12 21:40 - 00000000 ____D C:\FRST
2013-11-12 21:22 - 2013-11-12 21:22 - 00700783 _____ (Swearware) C:\Users\M\Desktop\dds+.exe
2013-11-12 20:57 - 2013-10-14 20:48 - 00046080 ___SH C:\Users\M\Desktop\Thumbs.db
2013-11-12 20:55 - 2013-11-12 20:53 - 00000866 _____ C:\DelFix.txt
2013-11-12 19:51 - 2013-11-12 19:49 - 186814123 ____R C:\Users\M\Downloads\How.I.Met.Your.Mother.S09E09.HDTV.x264-2HD.mp4
2013-11-12 19:22 - 2013-11-10 18:56 - 00000000 ____D C:\Program Files (x86)\ABBYY FineReader 11
2013-11-12 19:21 - 2013-11-11 22:28 - 00000000 ____D C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HDPlayer
2013-11-11 23:06 - 2013-11-11 22:28 - 00000000 ____D C:\Program Files (x86)\HDPlayer
2013-11-11 22:34 - 2013-10-12 09:15 - 00002546 _____ C:\Users\M\Desktop\Chrome-App-Übersicht.lnk
2013-11-11 22:34 - 2012-09-07 16:33 - 00420944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp100.dll
2013-11-11 22:32 - 2013-10-27 23:11 - 00001662 _____ C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-11 21:00 - 2013-11-11 20:49 - 508401191 ____R C:\Users\M\Downloads\Downton.Abbey.4x08.HDTV.x264-FoV.mp4
2013-11-11 20:55 - 2013-11-11 20:48 - 314509154 ____R C:\Users\M\Downloads\Boardwalk.Empire.S04E10.HDTV.x264-2HD.mp4
2013-11-11 20:47 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2013-11-11 16:41 - 2013-11-12 21:12 - 00031345 _____ C:\Users\M\Downloads\Homeland.S03E07.720p.HDTV.x264-KILLERS.srt
2013-11-10 23:54 - 2013-11-10 11:11 - 00000000 ____D C:\Users\M\Downloads\Despicable.Me.2.2013.DVDRip.XviD-iNViNCiBLE
2013-11-10 22:45 - 2013-10-11 18:10 - 00000000 ____D C:\Users\M\AppData\Local\Packages
2013-11-10 18:56 - 2013-10-12 19:32 - 00000000 ____D C:\Users\M\AppData\Local\ABBYY
2013-11-10 18:56 - 2013-10-12 19:32 - 00000000 ____D C:\ProgramData\ABBYY
2013-11-10 18:31 - 2013-10-27 22:35 - 00000000 ___DC C:\WINDOWS\Panther
2013-11-10 18:25 - 2013-11-10 18:25 - 00002764 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2013-11-10 18:25 - 2013-11-10 18:25 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-11-10 18:25 - 2013-11-10 18:25 - 00000000 ____D C:\Program Files\CCleaner
2013-11-10 18:08 - 2013-11-08 22:45 - 01337232 _____ C:\Users\M\Downloads\CEEPeerD.xlsm
2013-11-10 15:46 - 2013-11-10 11:04 - 00000000 ____D C:\Users\M\Downloads\Paranoia (2013)
2013-11-10 15:43 - 2013-11-02 20:49 - 00000000 ____D C:\Users\M\Downloads\R.I.P.D. (2013)
2013-11-10 13:21 - 2013-10-12 20:15 - 00000000 ____D C:\Users\M\Documents\abby
2013-11-10 13:17 - 2013-10-27 22:46 - 00000000 ____D C:\Users\M
2013-11-10 13:05 - 2013-11-10 13:05 - 00000000 ____D C:\Users\M\Downloads\boiler
2013-11-10 13:03 - 2013-11-10 13:03 - 00536962 _____ C:\Users\M\Downloads\boiler.zip
2013-11-10 09:57 - 2013-11-10 09:57 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-11-10 09:57 - 2013-11-10 09:57 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-11-10 09:09 - 2013-11-02 20:39 - 00000000 ____D C:\Users\M\Downloads\Despicable Me 2 (2013) [1080p]
2013-11-10 00:00 - 2013-11-02 20:30 - 00000000 ____D C:\Users\M\Downloads\Prisoners 2013 TS XViD-UNiQUE
2013-11-09 23:41 - 2013-11-09 23:41 - 00289357 _____ C:\Users\M\Downloads\IntrinsicValueSpreadsheet.zip
2013-11-09 23:37 - 2013-11-09 23:37 - 03181056 _____ C:\Users\M\Downloads\trend-following.xls
2013-11-09 23:35 - 2013-11-09 23:35 - 00129024 _____ C:\Users\M\Downloads\meltdown.xls
2013-11-09 23:24 - 2013-11-09 23:24 - 01065984 _____ C:\Users\M\Downloads\Buying-strategies.xls
2013-11-09 23:13 - 2013-11-09 23:13 - 00038912 _____ C:\Users\M\Downloads\ERPDec09.xls
2013-11-09 23:12 - 2013-11-09 23:12 - 00031744 _____ C:\Users\M\Downloads\DiscountedCashFlows.xls
2013-11-09 11:38 - 2013-11-09 11:38 - 00041843 _____ C:\Users\M\Downloads\table.csv
2013-11-09 10:07 - 2013-11-09 10:07 - 00511488 _____ C:\Users\M\Downloads\january-predicts.xls
2013-11-08 22:44 - 2013-11-08 22:44 - 00134205 _____ C:\Users\M\Downloads\equities.xlsx
2013-11-08 21:47 - 2013-11-08 21:43 - 280197765 ____R C:\Users\M\Downloads\White.Collar.S05E04.HDTV.x264-2HD.mp4
2013-11-06 22:07 - 2013-11-05 16:37 - 00041043 _____ C:\Users\M\Downloads\Homeland.S03E06.HDTV.x264-2HD.srt
2013-11-06 22:06 - 2013-11-05 16:32 - 00052497 _____ C:\Users\M\Downloads\Downton_Abbey.4x07.HDTV_x264-FoV.srt
2013-11-06 00:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-11-06 00:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-04 19:17 - 2013-11-04 19:13 - 318943006 ____R C:\Users\M\Downloads\Downton_Abbey.4x07.HDTV_x264-FoV.mp4
2013-11-04 19:08 - 2013-11-04 19:00 - 350417636 ____R C:\Users\M\Downloads\Boardwalk.Empire.S04E09.HDTV.x264-2HD.mp4
2013-11-03 16:50 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2013-11-03 16:01 - 2013-11-03 16:01 - 00000000 ____D C:\Users\Public\CyberLink
2013-11-03 16:00 - 2013-10-11 20:49 - 00000000 ____D C:\Users\M\Documents\Youcam
2013-11-03 12:53 - 2013-11-01 12:45 - 00060461 _____ C:\Users\M\Downloads\White Collar - 05x03 - One Last Stakeout.2HD.English.C.orig.Addic7ed.com.srt
2013-11-03 12:51 - 2013-11-03 12:51 - 00003080 _____ C:\WINDOWS\System32\Tasks\Microsoft SkyDrive Auto Update Task-S-1-5-21-432700491-4017870644-2687449469-1002
2013-11-02 15:35 - 2013-11-02 15:35 - 00001795 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-02 15:34 - 2013-11-02 15:33 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-02 15:34 - 2013-11-02 15:33 - 00000000 ____D C:\Program Files\iTunes
2013-11-02 15:34 - 2013-11-02 15:33 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-02 15:33 - 2013-11-02 15:33 - 00000000 ____D C:\Program Files\iPod
2013-11-02 14:33 - 2013-11-02 14:33 - 00000000 ____D C:\Program Files\AMD
2013-11-02 14:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-RS
2013-11-02 14:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS
2013-11-02 14:21 - 2013-11-01 13:24 - 00060464 _____ C:\Users\M\Downloads\White.Collar.S05E03.HDTV.x264-2HD.txt
2013-11-01 21:08 - 2013-11-08 22:04 - 00039114 _____ C:\Users\M\Downloads\Boardwalk.Empire.S04E08.HDTV.x264-2HD.srt
2013-11-01 16:11 - 2013-10-15 19:34 - 00000000 ____D C:\Users\M\AppData\Roaming\Apple Computer
2013-11-01 14:42 - 2013-11-01 14:42 - 00000000 ____D C:\WINDOWS\SysWOW64\Drivers\sr-Latn-RS
2013-11-01 14:42 - 2013-09-30 04:59 - 00000000 ____D C:\Program Files\Windows Journal
2013-11-01 14:42 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2013-11-01 14:42 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-11-01 14:42 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-11-01 14:42 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows Defender
2013-11-01 14:42 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\System
2013-11-01 14:42 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-11-01 14:42 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-11-01 14:42 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2013-11-01 14:42 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\servicing
2013-11-01 14:41 - 2013-11-01 14:41 - 00000000 ____D C:\WINDOWS\system32\Drivers\sr-Latn-RS
2013-11-01 14:41 - 2013-11-01 14:41 - 00000000 ____D C:\WINDOWS\sr-Latn-RS
2013-11-01 14:41 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-11-01 14:41 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-11-01 14:41 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\system32\slmgr
2013-11-01 14:41 - 2013-08-22 16:36 - 00000000 ___SD C:\WINDOWS\system32\dsc
2013-11-01 14:41 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2013-11-01 14:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2013-11-01 14:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2013-11-01 14:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-11-01 14:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2013-11-01 14:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2013-11-01 14:41 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2013-11-01 14:41 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2013-11-01 13:11 - 2013-11-01 12:52 - 321988035 ____R C:\Users\M\Downloads\White.Collar.S05E03.HDTV.x264-2HD.mp4
2013-11-01 13:02 - 2013-10-12 09:38 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2013-11-01 13:01 - 2013-10-12 09:38 - 00000000 _____ C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-11-01 12:57 - 2013-05-13 16:55 - 00000000 ____D C:\WINDOWS\Hewlett-Packard
2013-11-01 12:56 - 2012-08-04 01:02 - 00000000 ____D C:\SWSetup
2013-11-01 12:53 - 2013-05-13 17:18 - 00000000 ____D C:\ProgramData\CyberLink
2013-11-01 12:52 - 2013-11-01 10:29 - 00058874 _____ C:\Users\M\Downloads\White.Collar.S05E01.HDTV.x264-2HD.srt
2013-11-01 12:49 - 2013-05-13 17:14 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2013-11-01 12:49 - 2013-05-13 17:14 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2013-11-01 12:49 - 2013-05-13 17:14 - 00029480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3a.dll
2013-11-01 12:49 - 2013-05-13 15:52 - 00000000 ____D C:\Program Files (x86)\CyberLink
2013-11-01 12:41 - 2013-10-26 20:10 - 00000000 ____D C:\Users\M\Downloads\Editgrid
2013-11-01 12:12 - 2013-10-30 21:58 - 00004298 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-10-29 22:43 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2013-10-29 17:48 - 2013-11-08 22:18 - 00026192 _____ C:\Users\M\Downloads\Homeland.S03E05.HDTV.x264-KILLERS.srt
2013-10-29 15:25 - 2013-10-29 15:25 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Internet Security
2013-10-29 15:24 - 2013-05-13 17:36 - 00003234 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2013-10-29 12:12 - 2013-05-13 15:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-10-29 11:49 - 2013-10-29 11:50 - 01060080 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynCOM.dll
2013-10-29 11:49 - 2013-10-29 11:50 - 00544496 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynCom.dll
2013-10-29 11:49 - 2013-10-29 11:50 - 00495856 _____ (Synaptics Incorporated) C:\WINDOWS\system32\Drivers\SynTP.sys
2013-10-29 11:49 - 2013-10-29 11:50 - 00264432 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPAPI.dll
2013-10-29 11:49 - 2013-10-29 11:50 - 00192240 _____ (Synaptics Incorporated) C:\WINDOWS\system32\SynTPCo18.dll
2013-10-29 11:49 - 2013-10-29 11:50 - 00151280 _____ (Synaptics Incorporated) C:\WINDOWS\SysWOW64\SynTPCom.dll
2013-10-29 09:54 - 2013-05-13 16:50 - 00004290 _____ C:\WINDOWS\system32\RaCoInst.log
2013-10-29 09:19 - 2013-10-29 09:19 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-10-28 19:56 - 2013-10-28 19:29 - 336956638 ____R C:\Users\M\Downloads\Boardwalk.Empire.S04E08.HDTV.x264-2HD.mp4
2013-10-28 19:38 - 2013-10-28 19:28 - 337058443 ____R C:\Users\M\Downloads\Homeland.S03E05.HDTV.x264-KILLERS.mp4
2013-10-28 19:34 - 2013-10-28 19:28 - 251989289 ____R C:\Users\M\Downloads\Downton.Abbey.4x06.HDTV.x264-FoV.mp4
2013-10-28 00:08 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\restore
2013-10-27 23:13 - 2013-10-27 23:13 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-10-27 23:11 - 2013-10-11 18:15 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-27 23:11 - 2013-10-11 18:15 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-27 23:10 - 2013-10-27 23:10 - 00000020 ___SH C:\Users\M\ntuser.ini
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-27 23:08 - 2013-10-27 23:08 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-27 23:08 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2013-10-27 23:08 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2013-10-27 23:07 - 2013-10-27 23:07 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-10-27 23:07 - 2013-10-27 22:46 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2013-10-27 23:07 - 2013-10-27 22:46 - 00024768 _____ C:\WINDOWS\diagerr.xml
2013-10-27 23:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2013-10-27 23:01 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2013-10-27 23:01 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-27 22:57 - 2013-10-27 22:37 - 00000000 ____D C:\Program Files\IDT
2013-10-27 22:57 - 2013-10-12 09:15 - 00000000 ____D C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-10-27 22:57 - 2013-10-11 18:59 - 00000000 ____D C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass
2013-10-27 22:57 - 2013-09-30 04:59 - 00000000 ____D C:\WINDOWS\ShellNew
2013-10-27 22:57 - 2013-05-13 23:39 - 00000000 ____D C:\WINDOWS\en-GB
2013-10-27 22:57 - 2013-05-13 16:02 - 00000000 ____D C:\WINDOWS\de
2013-10-27 22:54 - 2013-10-27 22:54 - 00000000 ____D C:\Users\Default\Documents\hp.system.package.metadata
2013-10-27 22:54 - 2013-10-27 22:54 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2013-10-27 22:54 - 2013-10-27 22:54 - 00000000 ____D C:\Users\Default User\Documents\hp.system.package.metadata
2013-10-27 22:54 - 2013-10-27 22:54 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2013-10-27 22:54 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2013-10-27 22:54 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-10-27 22:54 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2013-10-27 22:54 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\system32\winrm
2013-10-27 22:54 - 2013-09-30 04:56 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2013-10-27 22:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2013-10-27 22:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2013-10-27 22:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2013-10-27 22:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2013-10-27 22:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2013-10-27 22:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2013-10-27 22:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2013-10-27 22:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2013-10-27 22:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2013-10-27 22:54 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\en-GB
2013-10-27 22:54 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2013-10-27 22:54 - 2013-05-13 16:45 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2013-10-27 22:54 - 2013-05-13 15:57 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe
2013-10-27 22:54 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2013-10-27 22:53 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2013-10-27 22:53 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2013-10-27 22:53 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2013-10-27 22:53 - 2012-08-03 23:29 - 00000000 ____D C:\ProgramData\PRICache
2013-10-27 22:52 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-10-27 22:52 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-10-27 22:48 - 2013-10-27 22:48 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-10-27 22:48 - 2013-10-27 22:46 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-27 22:48 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Vorlagen
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Startmenü
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Netzwerkumgebung
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Lokale Einstellungen
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Eigene Dateien
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Druckumgebung
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Documents\Eigene Musik
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Documents\Eigene Bilder
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\AppData\Local\Verlauf
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\AppData\Local\Anwendungsdaten
2013-10-27 22:46 - 2013-10-27 22:46 - 00000000 _SHDL C:\Users\M\Anwendungsdaten
2013-10-27 22:40 - 2013-10-27 22:40 - 01914374 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2013-10-27 22:38 - 2013-10-27 22:38 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2013-10-27 22:38 - 2013-10-27 22:38 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-10-27 22:38 - 2013-10-27 22:38 - 00000000 ____D C:\Program Files\Synaptics
2013-10-27 22:38 - 2013-10-27 22:38 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2013-10-27 22:37 - 2013-10-27 22:37 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-10-27 22:37 - 2013-10-27 22:37 - 00000000 ____D C:\WINDOWS\system32\SRSLabs
2013-10-27 22:37 - 2013-10-27 22:37 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-10-27 22:35 - 2013-10-27 22:35 - 00000000 __SHD C:\Recovery
2013-10-27 22:33 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2013-10-27 22:32 - 2013-10-27 22:32 - 23213056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 17143808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 12995072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 11222016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 02763776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2013-10-27 22:32 - 2013-10-27 22:32 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2013-10-27 22:32 - 2013-10-27 22:32 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 02144768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 01537880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-10-27 22:32 - 2013-10-27 22:32 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00837120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00698880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-10-27 22:32 - 2013-10-27 22:32 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-10-27 22:32 - 2013-10-27 22:32 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-27 22:32 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2013-10-27 22:31 - 2013-10-27 22:31 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-10-27 22:27 - 2013-10-27 22:27 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2013-10-27 22:27 - 2013-10-27 22:27 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2013-10-27 22:27 - 2013-10-27 22:27 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\Program Files\MSBuild
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-10-27 22:27 - 2013-10-27 22:27 - 00000000 ____D C:\inetpub
2013-10-27 22:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2013-10-27 22:27 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2013-10-27 21:23 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-10-27 10:22 - 2013-10-27 09:40 - 327740532 ____R C:\Users\M\Downloads\Parades.End.1x03.HDTV.x264-FoV.mp4
2013-10-27 10:18 - 2013-10-27 09:40 - 367470720 ____R C:\Users\M\Downloads\Parades.End.1x02.HDTV.x264-FoV.mp4
2013-10-27 10:04 - 2013-10-27 09:39 - 351212867 ____R C:\Users\M\Downloads\Parades.End.1x05.HDTV.x264-FoV.mp4
2013-10-27 10:02 - 2013-10-27 09:39 - 357867920 ____R C:\Users\M\Downloads\Parades.End.1x04.HDTV.x264-FoV.mp4
2013-10-27 09:46 - 2013-10-27 09:39 - 389568742 ____R C:\Users\M\Downloads\Parades.End.1x01.HDTV.x264-FoV.mp4
2013-10-27 09:06 - 2013-05-13 15:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-10-26 20:21 - 2013-11-08 22:04 - 00047105 _____ C:\Users\M\Downloads\Boardwalk.Empire.S04E07.720p.HDTV.x264-KILLERS.srt
2013-10-26 20:09 - 2013-10-26 18:21 - 00053071 _____ C:\Users\M\Downloads\Downton.Abbey.4x05.HDTV.x264-FoV.srt
2013-10-26 16:30 - 2013-10-26 16:30 - 00000000 ____D C:\Users\M\AppData\Local\Windows Live
2013-10-25 16:19 - 2013-10-25 16:09 - 308418510 ____R C:\Users\M\Downloads\White.Collar.S05E02.HDTV.x264-2HD.mp4
2013-10-24 18:00 - 2013-10-24 17:43 - 1151835199 ____R C:\Users\M\Downloads\Boardwalk.Empire.S04E07.720p.HDTV.x264-KILLERS.mkv
2013-10-23 12:01 - 2013-10-29 09:13 - 00872840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-10-23 09:59 - 2013-10-29 09:13 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-10-22 17:32 - 2013-10-22 17:16 - 369671747 ____R C:\Users\M\Downloads\Homeland.S03E04.HDTV.x264-2HD.mp4
2013-10-22 17:30 - 2013-10-22 17:26 - 281632102 ____R C:\Users\M\Downloads\Downton.Abbey.4x05.HDTV.x264-FoV.mp4
2013-10-22 17:26 - 2013-10-22 17:13 - 337549083 ____R C:\Users\M\Downloads\White.Collar.S05E01.HDTV.x264-2HD.mp4
2013-10-22 08:05 - 2013-10-22 19:24 - 00032288 _____ C:\Users\M\Downloads\Homeland.S03E04.HDTV.x264-2HD.srt
2013-10-16 22:31 - 2013-10-16 13:50 - 00052419 _____ C:\Users\M\Downloads\Downton.Abbey.4x04.HDTV.x264-RiVER.srt
2013-10-16 22:19 - 2013-10-16 22:19 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-10-15 21:01 - 2013-10-15 21:01 - 00000000 ____D C:\ProgramData\Ant
2013-10-15 21:00 - 2013-10-15 21:00 - 00000000 ____D C:\Users\M\AppData\Roaming\Garmin
2013-10-15 21:00 - 2013-10-15 21:00 - 00000000 ____D C:\Program Files\DIFX
2013-10-15 21:00 - 2013-10-15 21:00 - 00000000 ____D C:\Program Files (x86)\Garmin
2013-10-15 20:54 - 2013-10-11 18:49 - 00004082 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-15 20:54 - 2013-10-11 18:49 - 00003846 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-15 19:34 - 2013-10-15 19:34 - 00000000 ____D C:\Users\M\AppData\Local\Apple Computer
2013-10-15 19:33 - 2013-10-15 19:33 - 00000000 ____D C:\ProgramData\Apple Computer
2013-10-15 19:32 - 2013-10-15 19:32 - 00000000 ____D C:\Users\M\AppData\Local\Apple
2013-10-15 19:32 - 2013-10-15 19:32 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2013-10-15 19:32 - 2013-05-13 16:50 - 00000000 ____D C:\ProgramData\Apple
2013-10-15 19:31 - 2013-10-15 19:31 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-10-15 17:09 - 2013-05-13 17:36 - 00002501 _____ C:\Users\Public\Desktop\Norton Internet Security.lnk
2013-10-15 17:09 - 2013-05-13 17:35 - 00000000 ____D C:\WINDOWS\system32\Drivers\NISx64
2013-10-15 08:28 - 2013-10-15 19:34 - 00041165 _____ C:\Users\M\Downloads\Boardwalk.Empire.S04E06.HDTV.XviD-AFG.srt
2013-10-14 19:58 - 2013-10-14 19:47 - 408637109 ____R C:\Users\M\Downloads\Homeland.S03E03.HDTV.x264-ASAP.mp4
2013-10-14 19:58 - 2013-10-14 19:47 - 272824569 ____R C:\Users\M\Downloads\Downton.Abbey.4x04.HDTV.x264-RiVER.mp4
2013-10-14 19:52 - 2013-10-14 19:48 - 302041543 ____R C:\Users\M\Downloads\Boardwalk.Empire.S04E06.HDTV.x264-KILLERS.mp4
2013-10-14 17:18 - 2013-10-14 20:01 - 00020494 _____ C:\Users\M\Downloads\Homeland.S03E03.HDTV.x264-ASAP.srt

Some content of TEMP:
====================
C:\Users\M\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-13 10:55

==================== End Of Log ============================

Dopuna: 13 Nov 2013 13:17

mycity.rs/must-login.png

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6103

I rece gore da ti se ona stranica jos prikazuje. U kojim browserima?

"desk 365" task cu da ti uklonim da ti se vise ne pojavljuje.

Na tvoje pitanje kako to da AV nije uocio do search kao virus ili vec ... pa AV-i imaju politiku da love samo pravi malware po definiciji, jer sve ovo si ti instalirao preko nekog treceg softvera ne pazeci sta instaliras.

A kako si upozoren da ce to biti instalirano, i da ce home page stranica biti izmenjena, AV ga po definiciji vise ne smatra opasnim malicioznim softverom vec kao moguc nepozeljan softver ali na korisniku je izbor.

No stvari se u zadnjih ~6 meseci menjaju jer sam adware i toolbar softver je postao mnogo agresivniji, te i odredjeni AV kompanije poseduju integrisane alate ili heuristiku koja ce to malo agresivnije da lovi.

Ukratko ...

offline
  • Pridružio: 14 Avg 2010
  • Poruke: 185

Napisano: 13 Nov 2013 13:22

Citat:pozz,

sorry, nakon sto mi dds nije radio, sve zivo pokusah da vidim hoce li funkcionisati. medjutim tek iz nekog 3, 4 puta mi se taj del/dll ili vec program otvorio.


u ovom addition log-u primetih ovo:
Task: {1905B07A-A509-45C8-B722-B871284BAC00} - \Desk 365 RunAsStdUser No Task File


taj desk 365 mi se sinoc javio pri startovanju tog update-a.


jos jedno pitanje: kako to da AV nije uocio taj do search kao virus ili vec?


poslato sinoc u PP!

ne, ne znam sta znaci taj program, znam samo da ni on nije funkcionisao, kao ni ccleaner, dds, manuelno brisanje tog pretrazivaca ....

zato se i odlucih otvoriti temu bez log-a iz dds.

i da, opet se javlja do search.

Dopuna: 13 Nov 2013 13:25

magna86 ::I rece gore da ti se ona stranica jos prikazuje. U kojim browserima?


A kako si upozoren da ce to biti instalirano, i da ce home page stranica biti izmenjena, AV ga po definiciji vise ne smatra opasnim malicioznim softverom vec kao moguc nepozeljan softver ali na korisniku je izbor.


sto je najgore, chrome me nije ni pitao da li da stavim kao standardni pretrazivac, a IE je postavio pitanje i moj klik na ne, ali se ipak stavio.

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6103

Znaci ta stranica ti se pojavljuje samo u Google Chrome browseru?

Isprati korake:
1. Podesi Home Page stranicu na GoogleChrome prateci ovo uputstvo:
https://support.google.com/chrome/answer/95314?hl=en

2. Obrisi cache & cookies na Google Chromu prateci ovo uputstvo:
https://support.google.com/chrome/answer/95582?hl=en



-------- Potom --------



Preuzmi smeenk-ov zoek.zip ili zoek.rar () sa ovog ili ovog linka i sačuvaj ga na Desktop.

Raspakuj arhivu u neki folder (uputstvo), a zatim:

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:


do-search;a
do-search;z
C:\Program Files\WindowsApps\3983JEFBCreating.BubbleBreaker_1.0.0.10_neutral__vy786dcgg6jz4\PIANO8.exe;i



Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

offline
  • Pridružio: 14 Avg 2010
  • Poruke: 185

na oba se pojavljuje :-(

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6103

Ok, samo isprati data uputstva.

offline
  • Pridružio: 14 Avg 2010
  • Poruke: 185

Zoek.exe Version 4.0.0.5 Updated 09-November-2013
Tool run by M on 13.11.2013 at 13:47:14,03.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\M\Desktop\zoek.exe [Script inserted]

==== System Restore Info ======================

13.11.2013 13:48:30 Zoek.exe System Restore Point Created Succesfully.

==== File Information Results ======================


--- C:\Program Files\WindowsApps\3983JEFBCreating.BubbleBreaker_1.0.0.10_neutral__vy786dcgg6jz4\PIANO8.exe ---
Company:
File Description: PIANO8
File Version: 1.0.0.0
Product Name: PIANO8
Copyright: Copyright © 2012
Original Filename: PIANO8.exe
File type: ----a-w-
File size: 83456
Created time: 2013-10-27 20:18:06
Modified time: 2013-10-27 20:18:07
MD5: B8E31BA319CB14D7C11837B10CF1E6A0
SHA1: AD25F7D050C7B8B8BC6B35B6827B4C3D5D73755F


==== Folders Found ======================


==== Files Found ======================


--- C:\Users\M\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\ZLM1FK16\do-search[1].xml ---
Company: ------
File Description: ------
File Version: ------
Product Name: ------
Copyright: ------
Original Filename: ------
File type: ----a-w-
File size: 13
Created time: 2013-11-12 22:17:05
Modified time: 2013-11-12 22:17:05
MD5: C1DDEA3EF6BBEF3E7060A1A9AD89E4C5
SHA1: 35E3224FCBD3E1AF306F2B6A2C6BBEA9B0867966


==== Registry Search Results for "do-search" ======================


[HKEY_LOCAL_MACHINE\SOFTWARE\do-searchSoftware]

[HKEY_LOCAL_MACHINE\SOFTWARE\do-searchSoftware\do-searchhp]

==== EOF on 13.11.2013 at 13:52:30,31 ======================

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6103

Napisano: 13 Nov 2013 13:59

Ponovo pokreni zoek ;


zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;
U beli okvir prozora iskopiraj sledeći tekst:


C:\Users\M\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\ZLM1FK16\do-search[1].xml;f
[-HKEY_LOCAL_MACHINE\SOFTWARE\do-searchSoftware];r
autoclean;



Klikni na dugme i pričekaj da se skeniranje završi.

zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

Dopuna: 13 Nov 2013 14:01

I postavi mi originalni AdwCleaner[S0].txt izvestaj. Molim te da pratis moja uputstva bas onako kako pise. Nisam ti rekao da ga pokreces dva puta.

Ko je trenutno na forumu
 

Ukupno su 1006 korisnika na forumu :: 53 registrovanih, 8 sakrivenih i 945 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, _Sale, A.R.Chafee.Jr., babaroga, bobomicek, bojank, bojcistv, BORUTUS, Bubimir, cemix, crnitrn, DeerHunter, DENIRO, Doca, dragoljub11987, Duh sa sekirom, dule10savic, Futog 74, Georgius, ILGromovnik, Još malo pa deda, kinez88, kobaja77, kybonacci, Lieutenant, maiden6657, Metanoja, milenko crazy north, Milometer, muaddib, Nemanja.M, nick79, opt1, panzerwaffe, Papadubi, Regrut Boskica, Ripanjac, RJ, royst33, ruma, S2M, sabros, slonic_tonic, Srki94, stalja, suton, tmanda323, uruk, VJ, wolf431, zicko.spacek, Čivi, 79693