MyCity » Ambulanta -> Arhiva Ambulante » Ponovo je kompjuter u problemu

Ponovo je kompjuter u problemu

Napisano na dan: 21.8.2015

Ponovo je kompjuter u problemu

Sledeća strana

Pagination

Odgovori

Mirabe Poslao: 21 Avg 2015 18:55 Idi na vrh
offline Mirabe Građanin Pridružio: 30 Dec 2008 Poruke: 193	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Znači ovo je već po ko zna koji put da molim za pomoć ali nema mi druge. Kompjuter je inače sinov a on kao i svaki tinejdžer ne mari mnogo za moje pretnje i savete,pa se i ovaj put navuklo verovtno svašta. Pale se kojekakvi sajtovi,reklame,iskaču razni prozorčići i slično. Avira mi je nekoliko puta prijavljivala neke viruse koje sam obrisala ali i dalje problem ostaje. Prilažem izveštaj: Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:21-08-2015 Ran by mirjana (administrator) on MIRJANA-PC (21-08-2015 18:31:21) Running from C:\Users\mirjana\Desktop Loaded Profiles: mirjana & Nikola (Available Profiles: mirjana & Nikola) Platform: Windows 10 Pro (X64) Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: [Link mogu videti samo ulogovani korisnici] ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Reimage®) C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe () C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Microsoft Corporation) C:\Windows\System32\wscript.exe (Microsoft Corporation) C:\Windows\System32\schtasks.exe (AMD) C:\Windows\System32\atieclxx.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (BitTorrent Inc.) C:\Users\mirjana\AppData\Roaming\uTorrent\uTorrent.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe (Microsoft Corporation) C:\Users\mirjana\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Hewlett-Packard Co.) C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe (Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuSchd2.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.803.16240.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe (Microsoft Corporation) C:\Users\Nikola\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Hewlett-Packard Co.) C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe (Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuSchd2.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Program Files\WindowsApps\Microsoft.BingWeather_4.4.200.0_x86__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe (Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe () C:\Program Files\WinRAR\WinRAR.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [782008 2015-07-26] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard) HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard) HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [134368 2015-07-02] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc.) HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation) HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [uTorrent] => C:\Users\mirjana\AppData\Roaming\uTorrent\uTorrent.exe [1693024 2015-08-01] (BitTorrent Inc.) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53661824 2015-07-28] (Skype Technologies S.A.) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [Speech Recognition] => C:\Windows\Speech\Common\sapisvr.exe [45056 2015-07-10] (Microsoft Corporation) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [GameTracker] => C:\Program Files (x86)\GameTracker\GTLite.exe HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [OneDrive] => C:\Users\mirjana\AppData\Local\Microsoft\OneDrive\OneDrive.exe [404064 2015-08-19] (Microsoft Corporation) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\Run: [UpdateAdmin] => C:\Users\mirjana\AppData\Local\UpdateAdmin\UpdateAdmin.exe [237328 2015-07-28] (DownloadAdmin) HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\RunOnce: [Uninstall C:\Users\mirjana\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\mirjana\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\...\RunOnce: [Uninstall C:\Users\mirjana\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\mirjana\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64" HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity) HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\...\Run: [OneDrive] => C:\Users\Nikola\AppData\Local\Microsoft\OneDrive\OneDrive.exe [404064 2015-08-20] (Microsoft Corporation) HKU\User-5\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7805120 2015-07-10] (Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-05-26] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Search Page = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici]{A2D43EE7-C241-435D-8105-7D428F7B56BE}&i= HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici]{A2D43EE7-C241-435D-8105-7D428F7B56BE}&i= HKU\User-5\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1001 -> DefaultScope {B44D390C-36C7-4F4A-B20A-D00DB37A80C9} URL = [Link mogu videti samo ulogovani korisnici]{52E40C1F-5B0B-4605-A928-B8413029FA50}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1001 -> {B44D390C-36C7-4F4A-B20A-D00DB37A80C9} URL = [Link mogu videti samo ulogovani korisnici]{52E40C1F-5B0B-4605-A928-B8413029FA50}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1001 -> {EFAE7327-3B53-4BF4-A7FC-10205393D89C} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&fr=tightropetb&type=11433 SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> DefaultScope {2667FCCE-DEB4-41D2-92CA-534E8292675D} URL = [Link mogu videti samo ulogovani korisnici]{A2D43EE7-C241-435D-8105-7D428F7B56BE}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> {2667FCCE-DEB4-41D2-92CA-534E8292675D} URL = [Link mogu videti samo ulogovani korisnici]{A2D43EE7-C241-435D-8105-7D428F7B56BE}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> {AD5E7C6E-576F-4A13-8FFA-639A61C76F99} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&fr=tightropetb&type=11147 BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Co.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll [2014-12-07] (Oracle Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-12-07] (Oracle Corporation) BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Co.) Toolbar: HKLM - eShield - {DFEAF413-9005-4EDB-9714-0E5A8022B1B4} - C:\Program Files (x86)\TNT2\2.0.0.1983\IEToolbar64.dll No File Toolbar: HKLM-x32 - eShield - {DFEAF413-9005-4EDB-9714-0E5A8022B1B4} - C:\Program Files (x86)\TNT2\2.0.0.1983\ietoolbar.dll No File Toolbar: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> No Name - {6850E5FA-A5BC-4E5D-98BF-2F0105860AEA} - No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{30cda258-ac9d-4d63-97d0-7f8c14f3078c}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{796c7a48-c32f-44e6-9d15-a5ec8060ae9e}: [DhcpNameServer] 192.168.1.1 StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016 FF NewTab: [Link mogu videti samo ulogovani korisnici] FF DefaultSearchUrl: [Link mogu videti samo ulogovani korisnici] FF SearchEngineOrder.1: Google FF Homepage: [Link mogu videti samo ulogovani korisnici] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1215155.dll [No File] FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2014-12-07] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2014-12-07] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [No File] FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [No File] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> e:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File] FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1578651779-4044669291-1851725983-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File FF user.js: detected! => C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\user.js [2015-08-19] FF SearchPlugin: C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\searchplugins\ask-search.xml [2014-12-03] FF Extension: Avira Browser Safety - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\abs@avira.com [2015-08-13] FF Extension: CinemaP-1.9cV19.08 - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\AVJYFVOD75109374@HCDE39471360.com [2015-08-19] FF Extension: MEGA - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\firefox@mega.co.nz.xpi [2014-11-26] FF Extension: PriceExpert - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\support@priceexpert.com.xpi [2014-12-03] FF Extension: eShield - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\toolbar11433@eshield.com.xpi [2015-08-19] FF Extension: Record Page - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\{26a46a2e-a565-42b9-a3f1-96dc63b2a3cc}.xpi [2015-08-19] FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-08-15] FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-05-26] FF HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 Chrome: ======= CHR Profile: C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Translate) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-01-02] CHR Extension: (YouTube) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-02] CHR Extension: (TV) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\bppbpeijolfcampacpljolaegibfhjph [2015-01-02] CHR Extension: (AVG Secure Search) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2015-05-01] CHR Extension: (Google Search) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-02] CHR Extension: (Logitech Smooth Scrolling) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2015-01-02] CHR Extension: (YoWindow Free Weather) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\fanogbnclpilemkifpjeglokomebpnef [2015-01-02] CHR Extension: (wide awake theme) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\jghojamolcelbkfdejjhaliddkkhhpeb [2015-07-12] CHR Extension: (Quick Earth) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\khodocggeplgfhppgagfdpbjkniadmdh [2015-08-01] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-05] CHR Extension: (CinemaP-1.9cV19.08) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2015-08-19] CHR Extension: (Google Mail Checker) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2015-01-02] CHR Extension: (Autofill) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlmmgnhgdeffjkdckmikfpnddkbbfkkk [2015-01-02] CHR Extension: (Chrome Web Store Payments) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-04] CHR Extension: (Gmail) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-02] CHR Extension: (Record Page) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\poihgldcgdeiiclapfocpigklbcgjlff [2015-08-19] CHR HKLM-x32\...\Chrome\Extension: [dkmjljdbbgogihjcapfhgkonfmccbffp] - [Link mogu videti samo ulogovani korisnici] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01] Opera: ======= OPR Extension: (CinemaP-1.9cV19.08) - C:\Users\mirjana\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2015-08-19] OPR Extension: (Record Page) - C:\Users\mirjana\AppData\Roaming\Opera Software\Opera Stable\Extensions\poihgldcgdeiiclapfocpigklbcgjlff [2015-08-19] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed] S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [887128 2015-07-26] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [461672 2015-07-26] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [461672 2015-07-26] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1213072 2015-07-26] (Avira Operations GmbH & Co. KG) S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] () R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [218816 2015-07-02] (Avira Operations GmbH & Co. KG) S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [326144 2015-07-10] (Microsoft Corporation) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation) S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [134144 2015-07-10] (Microsoft Corporation) R2 CoreMessagingRegistrar; C:\Windows\system32\coremessaging.dll [808856 2015-07-22] (Microsoft Corporation) R2 CoreMessagingRegistrar; C:\Windows\SysWOW64\coremessaging.dll [510976 2015-07-22] (Microsoft Corporation) S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [27136 2015-07-10] (Microsoft Corporation) S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [267776 2015-07-10] (Microsoft Corporation) S3 DmEnrollmentSvc; C:\Windows\SysWOW64\Windows.Internal.Management.dll [193024 2015-07-10] (Microsoft Corporation) S3 embeddedmode; C:\Windows\System32\embeddedmodesvc.dll [87040 2015-07-10] (Microsoft Corporation) S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [275456 2015-07-10] (Microsoft Corporation) R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed] R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company) S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed] S3 icssvc; C:\Windows\System32\tetheringservice.dll [148992 2015-07-24] (Microsoft Corporation) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] S3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [22528 2015-07-10] (Microsoft Corporation) R3 LicenseManager; C:\Windows\system32\LicenseManagerSvc.dll [21504 2015-07-10] (Microsoft Corporation) S2 MapsBroker; C:\Windows\System32\moshost.dll [62464 2015-07-10] (Microsoft Corporation) R2 MSMQ; C:\Windows\system32\mqsvc.exe [26112 2015-08-14] (Microsoft Corporation) S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-12-03] (Hewlett-Packard) [File not signed] S2 OneSyncSvc; C:\Windows\System32\APHostService.dll [296960 2015-07-10] (Microsoft Corporation) R2 OneSyncSvc_Session4; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) R2 OneSyncSvc_Session4; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) R2 OneSyncSvc_Session5; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) R2 OneSyncSvc_Session5; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2007048 2015-08-08] (Electronic Arts) S3 PimIndexMaintenanceSvc; C:\Windows\System32\PimIndexMaintenance.dll [289280 2015-07-10] (Microsoft Corporation) S3 PimIndexMaintenanceSvc_Session4; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) S3 PimIndexMaintenanceSvc_Session4; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) S3 PimIndexMaintenanceSvc_Session5; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) S3 PimIndexMaintenanceSvc_Session5; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-12-03] (Hewlett-Packard) [File not signed] R2 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [7414256 2015-05-19] (Reimage®) S3 RetailDemo; C:\Windows\system32\RDXService.dll [988672 2015-08-03] (Microsoft Corporation) S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [1031680 2015-07-12] (Microsoft Corporation) R3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2674176 2015-07-10] (Microsoft Corporation) R3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [2049024 2015-07-10] (Microsoft Corporation) S3 UnistoreSvc; C:\Windows\System32\unistore.dll [1203200 2015-07-24] (Microsoft Corporation) S3 UnistoreSvc; C:\Windows\SysWOW64\unistore.dll [925696 2015-07-24] (Microsoft Corporation) S3 UnistoreSvc_Session4; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) S3 UnistoreSvc_Session4; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) S3 UnistoreSvc_Session5; C:\WINDOWS\System32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) S3 UnistoreSvc_Session5; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) S3 UserDataSvc; C:\Windows\System32\userdataservice.dll [1420288 2015-07-30] (Microsoft Corporation) S3 UserDataSvc_Session4; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) S3 UserDataSvc_Session4; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) S3 UserDataSvc_Session5; C:\WINDOWS\system32\svchost.exe [39856 2015-07-10] (Microsoft Corporation) S3 UserDataSvc_Session5; C:\WINDOWS\SysWOW64\svchost.exe [35176 2015-07-10] (Microsoft Corporation) S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [506880 2015-07-10] (Microsoft Corporation) S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [84480 2015-08-14] (Microsoft Corporation) R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [578560 2015-08-14] (Microsoft Corporation) S3 WalletService; C:\Windows\system32\WalletService.dll [504320 2015-07-10] (Microsoft Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [918016 2015-07-10] (Microsoft Corporation) S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1149440 2015-07-10] (Microsoft Corporation) S3 XboxNetApiSvc; C:\Windows\system32\XboxNetApiSvc.dll [1019392 2015-07-10] (Microsoft Corporation) S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe /medsvc [X] <==== ATTENTION ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S5 3ware; C:\Windows\System32\drivers\3ware.sys [107360 2015-07-10] (LSI) R5 ACPI; C:\Windows\System32\drivers\ACPI.sys [565088 2015-07-22] (Microsoft Corporation) R5 acpiex; C:\Windows\System32\Drivers\acpiex.sys [127840 2015-07-10] (Microsoft Corporation) S5 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [1135456 2015-07-10] (PMC-Sierra) S5 agp440; C:\Windows\System32\drivers\agp440.sys [63328 2015-07-10] (Microsoft Corporation) S5 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc.) S5 amdsata; C:\Windows\System32\drivers\amdsata.sys [83296 2015-07-10] (Advanced Micro Devices) S5 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259424 2015-07-10] (AMD Technologies Inc.) S5 amdxata; C:\Windows\System32\drivers\amdxata.sys [26976 2015-07-10] (Advanced Micro Devices) R5 amd_sata; C:\Windows\System32\drivers\amd_sata.sys [82240 2013-06-27] (Advanced Micro Devices) R5 amd_xata; C:\Windows\System32\drivers\amd_xata.sys [42304 2013-06-27] (Advanced Micro Devices) R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices) R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] () S5 arcsas; C:\Windows\System32\drivers\arcsas.sys [131936 2015-07-10] (PMC-Sierra, Inc.) R5 atapi; C:\Windows\System32\drivers\atapi.sys [28512 2015-07-10] (Microsoft Corporation) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-07-22] (Advanced Micro Devices) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [137288 2015-08-13] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [148632 2015-08-13] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-11-24] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-08-13] (Avira Operations GmbH & Co. KG) S5 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2015-07-10] (Broadcom Corporation) S3 b06diag; C:\Windows\system32\drivers\bxdiaga.sys [88104 2012-03-08] (Broadcom Corporation) S3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2012-02-22] (Bigfoot Networks, Inc.) S3 bxfcoe; C:\Windows\system32\drivers\bxfcoe.sys [178216 2012-02-22] (Broadcom Corporation) S3 bxois; C:\Windows\system32\drivers\bxois.sys [539176 2012-02-22] (Broadcom Corporation) R5 CLFS; C:\Windows\System32\drivers\CLFS.sys [380768 2015-07-10] (Microsoft Corporation) R5 CNG; C:\Windows\System32\Drivers\cng.sys [601344 2015-07-17] (Microsoft Corporation) R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys [39936 2015-07-10] (Microsoft Corporation) R5 disk; C:\Windows\System32\drivers\disk.sys [101216 2015-07-10] (Microsoft Corporation) R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-03-23] (Disc Soft Ltd) S5 ebdrv; C:\Windows\System32\drivers\evbda.sys [3436896 2015-07-10] (QLogic Corporation) R5 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [88928 2015-07-10] (Microsoft Corporation) S5 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [116576 2015-07-10] (Microsoft Corporation) S3 EtronSTOR; C:\Windows\System32\Drivers\EtronSTOR.sys [32512 2012-07-24] (Etron Technology Inc) R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83968 2015-07-10] (Microsoft Corporation) R5 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [83808 2015-07-10] (Microsoft Corporation) R5 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [368992 2015-07-10] (Microsoft Corporation) U5 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [31072 2015-07-10] (Microsoft Corporation) R5 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [633184 2015-07-10] (Microsoft Corporation) S5 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [66912 2015-07-10] (Microsoft Corporation) S3 genericusbfn; C:\Windows\System32\drivers\genericusbfn.sys [20992 2015-07-10] (Microsoft Corporation) R1 GpuEnergyDrv; C:\Windows\System32\drivers\gpuenergydrv.sys [8192 2015-07-10] (Microsoft Corporation) S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2014-03-23] () S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [32512 2014-03-23] () S5 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64352 2015-07-10] (Hewlett-Packard Company) S5 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [29024 2015-07-10] (Microsoft Corporation) S5 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [673120 2015-07-10] (Intel Corporation) S5 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412000 2015-07-10] (Intel Corporation) S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424800 2015-07-10] (Mellanox) S5 intelide; C:\Windows\System32\drivers\intelide.sys [19296 2015-07-10] (Microsoft Corporation) S5 intelpep; C:\Windows\System32\drivers\intelpep.sys [43872 2015-07-10] (Microsoft Corporation) S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [26624 2015-07-10] (Microsoft Corporation) S5 isapnp; C:\Windows\System32\drivers\isapnp.sys [22368 2015-07-10] (Microsoft Corporation) R5 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [131424 2015-07-10] (Microsoft Corporation) R5 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [158560 2015-07-10] (Microsoft Corporation) S5 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [108896 2015-07-10] (LSI Corporation) S5 LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [104800 2015-07-10] (LSI Corporation) S5 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies) S5 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82784 2015-07-10] (LSI Corporation) S5 megasas; C:\Windows\System32\drivers\megasas.sys [59744 2015-07-10] (Avago Technologies) S5 megasr; C:\Windows\System32\drivers\megasr.sys [575840 2015-07-10] (LSI Corporation, Inc.) S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705376 2015-07-10] (Mellanox) R5 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [102752 2015-08-04] (Microsoft Corporation) R3 MQAC; C:\Windows\System32\drivers\mqac.sys [175104 2015-08-14] (Microsoft Corporation) R5 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [19296 2015-07-10] (Microsoft Corporation) R5 Mup; C:\Windows\System32\Drivers\mup.sys [118624 2015-07-10] (Microsoft Corporation) S5 mvumis; C:\Windows\System32\drivers\mvumis.sys [63840 2015-07-10] (Marvell Semiconductor, Inc.) S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76128 2015-07-10] (Mellanox) R5 NDIS; C:\Windows\System32\drivers\ndis.sys [1168736 2015-07-19] (Microsoft Corporation) S5 nvraid; C:\Windows\System32\drivers\nvraid.sys [150368 2015-07-10] (NVIDIA Corporation) S5 nvstor; C:\Windows\System32\drivers\nvstor.sys [166240 2015-07-10] (NVIDIA Corporation) S5 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [126304 2015-07-10] (Microsoft Corporation) R5 partmgr; C:\Windows\System32\drivers\partmgr.sys [117088 2015-07-10] (Microsoft Corporation) R5 pci; C:\Windows\System32\drivers\pci.sys [325984 2015-07-15] (Microsoft Corporation) R5 pciide; C:\Windows\System32\drivers\pciide.sys [15712 2015-07-10] (Microsoft Corporation) S5 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [118112 2015-07-10] (Microsoft Corporation) R5 pcw; C:\Windows\System32\drivers\pcw.sys [51552 2015-07-10] (Microsoft Corporation) R5 pdc; C:\Windows\System32\drivers\pdc.sys [98144 2015-07-10] (Microsoft Corporation) S5 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58208 2015-07-10] (LSI Corporation) S5 percsas3i; C:\Windows\System32\drivers\percsas3i.sys [58720 2015-07-10] (Avago Technologies) R5 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [237392 2015-08-06] (Microsoft Corporation) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek ) S5 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [109920 2015-07-10] (Microsoft Corporation) S5 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44896 2015-07-10] (Silicon Integrated Systems Corp.) S5 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81760 2015-07-10] (Silicon Integrated Systems) R5 spaceport; C:\Windows\System32\drivers\spaceport.sys [474464 2015-07-10] (Microsoft Corporation) S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2015-08-19] (DEVGURU Co., LTD.(www.devguru.co.kr)) S5 stexstor; C:\Windows\System32\drivers\stexstor.sys [31072 2015-07-10] (Promise Technology, Inc.) S5 storahci; C:\Windows\System32\drivers\storahci.sys [133984 2015-07-10] (Microsoft Corporation) S5 storflt; C:\Windows\System32\drivers\vmstorfl.sys [45920 2015-07-10] (Microsoft Corporation) S5 stornvme; C:\Windows\System32\drivers\stornvme.sys [78688 2015-07-10] (Microsoft Corporation) R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61952 2015-07-10] (Microsoft Corporation) S5 storufs; C:\Windows\System32\drivers\storufs.sys [40288 2015-07-10] (Microsoft Corporation) S5 storvsc; C:\Windows\System32\drivers\storvsc.sys [36192 2015-07-10] (Microsoft Corporation) R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys [17760 2015-07-10] (Microsoft Corporation) R5 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2430816 2015-07-10] (Microsoft Corporation) S3 tsusbhub; C:\Windows\System32\drivers\tsusbhub.sys [117248 2010-11-21] (Microsoft Corporation) [File not signed] S5 uagp35; C:\Windows\System32\drivers\uagp35.sys [66400 2015-07-10] (Microsoft Corporation) S3 UcmCx0101; C:\Windows\System32\Drivers\UcmCx.sys [61952 2015-07-10] (Microsoft Corporation) S3 UcmUcsi; C:\Windows\System32\drivers\UcmUcsi.sys [46080 2015-07-14] (Microsoft Corporation) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S5 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [66912 2015-07-10] (Microsoft Corporation) R5 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [42848 2015-07-10] (Microsoft Corporation) S5 vmbus; C:\Windows\System32\drivers\vmbus.sys [125792 2015-07-10] (Microsoft Corporation) R5 volmgr; C:\Windows\System32\drivers\volmgr.sys [81248 2015-07-10] (Microsoft Corporation) R5 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [370016 2015-07-10] (Microsoft Corporation) R5 volsnap; C:\Windows\System32\drivers\volsnap.sys [378720 2015-07-10] (Microsoft Corporation) S5 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [166752 2015-07-10] (VIA Technologies Inc.,Ltd) S5 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305504 2015-07-10] (VIA Corporation) S5 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) R5 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [892224 2015-07-10] (Microsoft Corporation) R5 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) R5 WFPLWFS; C:\Windows\System32\drivers\wfplwfs.sys [153440 2015-07-10] (Microsoft Corporation) R5 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [106520 2015-07-10] (Microsoft Corporation) R5 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [17944 2015-07-10] (Microsoft Corporation) S3 WinMad; C:\Windows\System32\drivers\winmad.sys [26976 2015-07-10] (Mellanox) S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59232 2015-07-10] (Mellanox) R5 Wof; C:\Windows\System32\Drivers\Wof.sys [200528 2015-08-06] (Microsoft Corporation) S3 xboxgip; C:\Windows\System32\drivers\xboxgip.sys [222720 2015-07-10] (Microsoft Corporation) S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-07-10] (Microsoft Corporation) U3 idsvc; no ImagePath S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] U3 wpcsvc; no ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation) NETSVC: XboxNetApiSvc -> C:\Windows\system32\XboxNetApiSvc.dll (Microsoft Corporation) NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation) NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation) NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-08-21 18:31 - 2015-08-21 18:33 - 00044836 _____ C:\Users\mirjana\Desktop\FRST.txt 2015-08-21 18:31 - 2015-08-21 18:31 - 00000000 ____D C:\FRST 2015-08-21 18:29 - 2015-08-21 18:30 - 02173952 _____ (Farbar) C:\Users\mirjana\Desktop\FRST64.exe 2015-08-21 18:26 - 2015-08-21 18:31 - 00000000 ____D C:\Users\mirjana\Desktop\New Folder 2015-08-21 18:23 - 2015-08-21 18:23 - 00016950 _____ C:\Users\mirjana\Desktop\The_Sims_4_-_Get_to_Work.rar.torrent 2015-08-21 18:22 - 2015-08-21 18:22 - 00023284 _____ C:\Users\mirjana\Desktop\The_Sims_4.rar.torrent 2015-08-21 18:06 - 2015-08-21 18:06 - 00016148 _____ C:\WINDOWS\system32\MIRJANA-PC_mirjana_HistoryPrediction.bin 2015-08-21 17:08 - 2015-08-21 17:08 - 00016148 _____ C:\WINDOWS\system32\MIRJANA-PC_Nikola_HistoryPrediction.bin 2015-08-20 20:38 - 2015-08-20 20:39 - 00009376 _____ C:\Users\Nikola\Documents\Uninstall Dragon Age Origins.log 2015-08-20 09:07 - 2015-08-20 20:33 - 00001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-08-20 09:07 - 2015-08-20 20:33 - 00001220 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-08-19 23:43 - 2015-08-19 23:43 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\My The Lord of the Rings, The Rise of the Witch-king Files 2015-08-19 23:30 - 2015-08-19 23:30 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\My Battle for Middle-earth(tm) II Files 2015-08-19 22:56 - 2015-08-19 23:00 - 00004314 ____R C:\Users\mirjana\Desktop\LoTRBfmE2.mds 2015-08-19 22:33 - 2015-08-19 22:34 - 00000226 _____ C:\WINDOWS\wininit.ini 2015-08-19 22:17 - 2015-08-19 23:05 - 4080992256 ____R C:\Users\mirjana\Desktop\LoTRBfmE2.mdf 2015-08-19 22:09 - 2015-08-19 22:09 - 00000000 ____D C:\Users\Nikola\AppData\Roaming\Opera Software 2015-08-19 22:08 - 2015-08-19 22:12 - 00001143 _____ C:\Users\Public\Desktop\VLC media player.lnk 2015-08-19 22:08 - 2015-08-19 22:08 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2015-08-19 22:07 - 2015-08-19 22:57 - 00000000 ____D C:\Program Files (x86)\Record Page 2015-08-19 22:07 - 2015-08-19 22:35 - 00000000 ____D C:\ProgramData\87737dd0-ad90-4193-bd48-336966b8d777 2015-08-19 22:07 - 2015-08-19 22:12 - 00003910 _____ C:\WINDOWS\System32\Tasks\UpdateAdmin 2015-08-19 22:07 - 2015-08-19 22:07 - 00000000 ____D C:\Users\mirjana\AppData\Local\UpdateAdmin 2015-08-19 22:07 - 2015-08-19 22:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UpdateAdmin 2015-08-19 21:54 - 2015-08-21 13:56 - 00000374 _____ C:\WINDOWS\Tasks\AmiUpdXp.job 2015-08-19 21:54 - 2015-08-19 22:58 - 00000000 ____D C:\Users\mirjana\AppData\Local\9844 2015-08-19 21:54 - 2015-08-19 21:54 - 00003448 _____ C:\WINDOWS\System32\Tasks\AmiUpdXp 2015-08-19 21:40 - 2015-08-21 15:40 - 00001082 _____ C:\WINDOWS\Tasks\Crossbrowse.job 2015-08-19 21:40 - 2015-08-19 21:40 - 00004204 _____ C:\WINDOWS\System32\Tasks\Crossbrowse 2015-08-19 21:39 - 2015-08-21 17:39 - 00003158 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6.job 2015-08-19 21:39 - 2015-08-21 17:39 - 00003156 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-14.job 2015-08-19 21:39 - 2015-08-21 15:49 - 00001016 _____ C:\WINDOWS\Tasks\Km5z0T1.job 2015-08-19 21:39 - 2015-08-21 15:39 - 00003492 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-13.job 2015-08-19 21:39 - 2015-08-21 15:39 - 00003158 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7.job 2015-08-19 21:39 - 2015-08-21 15:39 - 00002466 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5_user.job 2015-08-19 21:39 - 2015-08-21 15:39 - 00002466 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.job 2015-08-19 21:39 - 2015-08-21 11:04 - 00001018 _____ C:\WINDOWS\Tasks\O9DaMoE9.job 2015-08-19 21:39 - 2015-08-19 21:39 - 00006670 _____ C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-13 2015-08-19 21:39 - 2015-08-19 21:39 - 00006334 _____ C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-14 2015-08-19 21:39 - 2015-08-19 21:39 - 00006278 _____ C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7 2015-08-19 21:39 - 2015-08-19 21:39 - 00006278 _____ C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6 2015-08-19 21:39 - 2015-08-19 21:39 - 00005582 _____ C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5 2015-08-19 21:39 - 2015-08-19 21:39 - 00004142 _____ C:\WINDOWS\System32\Tasks\O9DaMoE9 2015-08-19 21:39 - 2015-08-19 21:39 - 00004134 _____ C:\WINDOWS\System32\Tasks\Km5z0T1 2015-08-19 21:38 - 2015-08-21 17:38 - 00005538 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-6.job 2015-08-19 21:38 - 2015-08-21 17:38 - 00002132 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-10_user.job 2015-08-19 21:38 - 2015-08-21 15:38 - 00005204 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-11.job 2015-08-19 21:38 - 2015-08-21 15:38 - 00005202 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-7.job 2015-08-19 21:38 - 2015-08-21 15:38 - 00004178 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-4.job 2015-08-19 21:38 - 2015-08-21 15:38 - 00004178 _____ C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-3.job 2015-08-19 21:38 - 2015-08-19 21:38 - 00008654 _____ C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-6 2015-08-19 21:38 - 2015-08-19 21:38 - 00008322 _____ C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-11 2015-08-19 21:38 - 2015-08-19 21:38 - 00008318 _____ C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-7 2015-08-19 21:38 - 2015-08-19 21:38 - 00007294 _____ C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-4 2015-08-19 21:38 - 2015-08-19 21:38 - 00007294 _____ C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-3 2015-08-19 21:38 - 2015-08-19 21:38 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7 2015-08-19 21:38 - 2015-08-19 21:38 - 00000000 ____D C:\Users\mirjana\AppData\Local\globalUpdate 2015-08-19 21:38 - 2015-08-19 21:38 - 00000000 ____D C:\Program Files (x86)\5c4ba7b1-e02a-4fb8-b690-68d3dfee477c 2015-08-19 21:32 - 2015-08-19 22:34 - 00000000 ____D C:\Program Files (x86)\Opera 2015-08-19 21:32 - 2015-08-19 21:32 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\Opera Software 2015-08-19 21:32 - 2015-08-19 21:32 - 00000000 ____D C:\Users\mirjana\AppData\Local\Opera Software 2015-08-19 20:57 - 2015-08-19 20:57 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudserd.sys 2015-08-19 20:56 - 2015-08-19 20:56 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys 2015-08-19 20:55 - 2015-08-19 20:55 - 00108800 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys 2015-08-19 20:54 - 2015-08-19 20:54 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2015-08-17 14:30 - 2015-08-17 14:30 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini 2015-08-17 14:30 - 2015-08-17 14:30 - 00000000 ____D C:\Users\DefaultAppPool 2015-08-17 14:30 - 2015-08-16 11:16 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-17 14:30 - 2015-08-13 20:48 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Macromedia 2015-08-17 14:30 - 2015-08-13 20:48 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Google 2015-08-17 14:30 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2015-08-17 14:30 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-08-17 14:30 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-08-17 14:30 - 2015-07-10 13:04 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-08-17 14:30 - 2015-05-27 13:47 - 00069720 _____ C:\Users\DefaultAppPool\AppData\Local\GDIPFONTCACHEV1.DAT 2015-08-16 16:37 - 2015-08-16 16:37 - 00000000 ____D C:\Users\Nikola\AppData\Roaming\My Battle for Middle-earth Files 2015-08-16 15:38 - 2004-12-10 14:36 - 05373952 _____ C:\Users\mirjana\Desktop\LOTRBFME.mdf 2015-08-16 14:21 - 2015-08-16 14:21 - 00000000 ____D C:\Users\mirjana\AppData\Local\MicrosoftEdge 2015-08-16 11:28 - 2015-08-16 11:28 - 00000000 ____D C:\ProgramData\ATI 2015-08-16 11:08 - 2015-08-16 11:08 - 00058661 _____ C:\WINDOWS\SysWOW64\CCCInstall_201508161108422211.log 2015-08-16 11:08 - 2015-08-16 11:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2015-08-16 11:04 - 2015-08-16 11:04 - 00066655 _____ C:\WINDOWS\SysWOW64\CCCInstall_201508161104164184.log 2015-08-16 11:03 - 2015-08-19 20:56 - 00004501 _____ C:\WINDOWS\setupact.log 2015-08-16 11:03 - 2015-08-16 11:03 - 00000000 _____ C:\WINDOWS\setuperr.log 2015-08-16 10:59 - 2015-08-16 11:01 - 227973112 _____ (AMD Inc.) C:\Users\mirjana\Desktop\amd-catalyst-15.7.1-win10-64bit.exe 2015-08-16 00:00 - 2015-08-16 00:00 - 00000000 ____D C:\WINDOWS\Panther 2015-08-15 20:10 - 2015-08-15 20:10 - 00000000 ____D C:\Users\Nikola\AppData\Local\PeerDistRepub 2015-08-15 16:34 - 2015-08-20 20:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-08-15 01:46 - 2015-08-12 10:57 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-08-15 01:46 - 2015-08-12 10:22 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-08-14 21:14 - 2015-08-14 21:14 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2015-08-14 15:10 - 2015-08-14 15:12 - 00000000 ____D C:\Users\mirjana\AppData\Local\Comms 2015-08-14 06:32 - 2015-08-13 20:41 - 00000000 __SHD C:\Recovery 2015-08-14 06:29 - 2015-08-14 06:29 - 00000000 ____D C:\Windows.old 2015-08-14 06:18 - 2015-08-14 06:18 - 00008192 _____ C:\WINDOWS\system32\config\userdiff 2015-08-14 06:16 - 2015-08-14 06:16 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices 2015-08-14 06:16 - 2015-08-14 06:16 - 00000000 ____D C:\WINDOWS\system32\msmq 2015-08-14 06:16 - 2015-08-14 06:16 - 00000000 ____D C:\WINDOWS\system32\BestPractices 2015-08-14 06:16 - 2015-08-14 06:16 - 00000000 ____D C:\Program Files\Reference Assemblies 2015-08-14 06:16 - 2015-08-14 06:16 - 00000000 ____D C:\Program Files\MSBuild 2015-08-14 06:16 - 2015-08-14 06:16 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2015-08-14 06:16 - 2015-08-14 06:16 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-08-14 06:16 - 2015-08-14 06:16 - 00000000 ____D C:\inetpub 2015-08-14 06:15 - 2015-06-18 04:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2015-08-14 06:15 - 2015-06-18 04:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-08-14 06:15 - 2015-06-18 04:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2015-08-14 06:15 - 2015-05-30 07:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2015-08-14 06:15 - 2015-05-30 07:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-08-14 06:15 - 2015-05-30 07:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-08-13 22:10 - 2015-08-13 22:10 - 00000000 ____D C:\Users\mirjana\AppData\Local\PeerDistRepub 2015-08-13 22:06 - 2015-08-08 09:30 - 08020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-08-13 22:06 - 2015-08-08 08:24 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2015-08-13 22:06 - 2015-08-08 08:24 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2015-08-13 22:06 - 2015-08-08 08:00 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2015-08-13 22:06 - 2015-08-06 04:36 - 21874176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-08-13 22:06 - 2015-08-06 04:03 - 18805248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-08-13 22:06 - 2015-08-05 06:49 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2015-08-13 22:06 - 2015-08-05 06:29 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2015-08-13 22:06 - 2015-08-05 06:03 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-08-13 22:06 - 2015-08-05 05:54 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2015-08-13 22:06 - 2015-08-05 05:47 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-08-13 22:06 - 2015-08-05 05:47 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-08-13 22:06 - 2015-08-05 05:43 - 01916416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-08-13 22:06 - 2015-08-04 06:08 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-08-13 22:06 - 2015-08-04 06:06 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2015-08-13 22:06 - 2015-08-04 05:50 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2015-08-13 22:06 - 2015-08-04 05:21 - 16709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-08-13 22:06 - 2015-08-04 05:10 - 13025792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-08-13 22:06 - 2015-08-04 04:59 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll 2015-08-13 22:06 - 2015-08-04 04:47 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll 2015-08-13 22:06 - 2015-08-03 04:18 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2015-08-13 22:06 - 2015-08-03 04:18 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2015-08-13 22:06 - 2015-08-03 04:18 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll 2015-08-13 22:06 - 2015-08-03 04:13 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-08-13 22:06 - 2015-08-03 04:12 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2015-08-13 22:06 - 2015-08-03 03:56 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2015-08-13 22:06 - 2015-08-03 03:50 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-08-13 22:06 - 2015-08-03 03:49 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2015-08-13 22:06 - 2015-08-03 03:31 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2015-08-13 22:06 - 2015-08-03 03:24 - 24592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-08-13 22:06 - 2015-08-03 03:24 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2015-08-13 22:06 - 2015-08-03 03:23 - 02446336 _____ C:\WINDOWS\system32\InputService.dll 2015-08-13 22:06 - 2015-08-03 03:22 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2015-08-13 22:06 - 2015-08-03 03:22 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2015-08-13 22:06 - 2015-08-03 03:18 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-08-13 22:06 - 2015-08-03 03:18 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2015-08-13 22:06 - 2015-08-03 03:15 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2015-08-13 22:06 - 2015-08-03 03:15 - 00988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2015-08-13 22:06 - 2015-08-03 03:15 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2015-08-13 22:06 - 2015-08-03 03:12 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-08-13 22:06 - 2015-08-03 03:12 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2015-08-13 22:06 - 2015-08-03 03:12 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll 2015-08-13 22:06 - 2015-08-03 03:10 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2015-08-13 22:06 - 2015-08-03 03:03 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll 2015-08-13 22:06 - 2015-08-03 03:01 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-08-13 22:06 - 2015-08-03 03:00 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2015-08-13 22:06 - 2015-07-30 08:24 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2015-08-13 22:06 - 2015-07-30 08:21 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2015-08-13 22:06 - 2015-07-30 08:17 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2015-08-13 22:06 - 2015-07-30 08:16 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll 2015-08-13 22:06 - 2015-07-30 08:09 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2015-08-13 22:06 - 2015-07-30 08:06 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2015-08-13 22:06 - 2015-07-30 08:05 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-08-13 22:06 - 2015-07-30 08:04 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-08-13 22:06 - 2015-07-30 08:03 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2015-08-13 22:06 - 2015-07-30 06:26 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll 2015-08-13 22:06 - 2015-07-30 06:26 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2015-08-13 22:06 - 2015-07-30 06:25 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2015-08-13 22:06 - 2015-07-30 06:25 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2015-08-13 22:06 - 2015-07-30 06:24 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-08-13 22:06 - 2015-07-30 06:21 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-08-13 22:06 - 2015-07-30 05:52 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-08-13 22:06 - 2015-07-30 05:49 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2015-08-13 22:06 - 2015-07-30 05:49 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2015-08-13 22:06 - 2015-07-30 05:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2015-08-13 22:06 - 2015-07-30 05:46 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-08-13 22:06 - 2015-07-30 05:44 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2015-08-13 22:06 - 2015-07-30 05:42 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2015-08-13 22:06 - 2015-07-30 05:41 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2015-08-13 22:06 - 2015-07-30 05:40 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2015-08-13 22:06 - 2015-07-30 05:38 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll 2015-08-13 22:06 - 2015-07-30 05:29 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll 2015-08-13 22:06 - 2015-07-30 05:15 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2015-08-13 22:06 - 2015-07-30 05:06 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2015-08-13 22:06 - 2015-07-30 05:04 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2015-08-13 22:06 - 2015-07-30 05:04 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2015-08-13 22:06 - 2015-07-26 07:15 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2015-08-13 22:06 - 2015-07-26 07:14 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2015-08-13 22:06 - 2015-07-26 07:14 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2015-08-13 22:06 - 2015-07-26 07:13 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2015-08-13 22:06 - 2015-07-26 06:28 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2015-08-13 22:06 - 2015-07-26 06:28 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2015-08-13 22:06 - 2015-07-26 05:49 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2015-08-13 22:06 - 2015-07-26 05:40 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2015-08-13 22:06 - 2015-07-26 05:39 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-08-13 22:06 - 2015-07-26 05:38 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2015-08-13 22:06 - 2015-07-24 05:30 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys 2015-08-13 22:06 - 2015-07-24 04:46 - 02224128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-08-13 22:06 - 2015-07-24 04:40 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2015-08-13 22:06 - 2015-07-24 04:39 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2015-08-13 22:06 - 2015-07-24 04:25 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2015-08-13 22:06 - 2015-07-24 04:24 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2015-08-13 22:06 - 2015-07-24 04:24 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2015-08-13 22:06 - 2015-07-22 07:18 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2015-08-13 22:06 - 2015-07-22 07:02 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2015-08-13 22:06 - 2015-07-22 06:00 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-08-13 22:06 - 2015-07-22 05:59 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2015-08-13 22:06 - 2015-07-22 05:55 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2015-08-13 22:06 - 2015-07-22 05:54 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2015-08-13 22:06 - 2015-07-22 05:53 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2015-08-13 22:06 - 2015-07-22 05:48 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-08-13 22:06 - 2015-07-22 05:46 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll 2015-08-13 22:06 - 2015-07-22 05:13 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2015-08-13 22:06 - 2015-07-22 05:13 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2015-08-13 22:06 - 2015-07-22 05:11 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2015-08-13 22:06 - 2015-07-22 05:04 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-08-13 22:06 - 2015-07-19 06:04 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll 2015-08-13 22:06 - 2015-07-19 05:12 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-08-13 22:06 - 2015-07-18 10:48 - 00916800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2015-08-13 22:06 - 2015-07-18 09:29 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll 2015-08-13 22:06 - 2015-07-18 05:59 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll 2015-08-13 22:06 - 2015-07-18 05:52 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll 2015-08-13 22:06 - 2015-07-17 04:31 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-08-13 22:06 - 2015-07-17 04:26 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll 2015-08-13 22:06 - 2015-07-17 04:19 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2015-08-13 22:06 - 2015-07-17 03:46 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2015-08-13 22:06 - 2015-07-16 07:11 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-08-13 22:06 - 2015-07-16 06:55 - 02878000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-08-13 22:06 - 2015-07-16 06:04 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll 2015-08-13 22:06 - 2015-07-16 05:47 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll 2015-08-13 22:06 - 2015-07-16 05:44 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-08-13 22:06 - 2015-07-16 05:43 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-08-13 22:06 - 2015-07-16 05:35 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll 2015-08-13 22:06 - 2015-07-16 05:29 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-08-13 22:06 - 2015-07-16 05:27 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-08-13 22:06 - 2015-07-15 04:41 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2015-08-13 22:06 - 2015-07-15 04:22 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2015-08-13 22:06 - 2015-07-15 03:47 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2015-08-13 22:06 - 2015-07-12 02:25 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe 2015-08-13 22:06 - 2015-07-12 02:18 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll 2015-08-13 22:06 - 2015-07-12 01:46 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll 2015-08-13 22:06 - 2015-07-11 03:17 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll 2015-08-13 22:06 - 2015-07-11 03:07 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll 2015-08-13 22:06 - 2015-07-11 03:04 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2015-08-13 22:06 - 2015-07-11 03:03 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2015-08-13 22:06 - 2015-07-11 02:51 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2015-08-13 22:06 - 2015-07-11 02:41 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2015-08-13 22:06 - 2015-07-11 02:40 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2015-08-13 22:06 - 2015-07-10 17:51 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll 2015-08-13 22:06 - 2015-07-10 17:00 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2015-08-13 22:06 - 2015-07-10 11:53 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2015-08-13 22:06 - 2015-07-10 11:31 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-08-13 22:05 - 2015-08-08 09:29 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2015-08-13 22:05 - 2015-08-08 09:19 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2015-08-13 22:05 - 2015-08-08 09:01 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2015-08-13 22:05 - 2015-08-08 08:48 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-08-13 22:05 - 2015-08-08 08:40 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-08-13 22:05 - 2015-08-08 08:22 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll 2015-08-13 22:05 - 2015-08-08 08:21 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll 2015-08-13 22:05 - 2015-08-08 08:15 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-08-13 22:05 - 2015-08-06 05:18 - 00290768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe 2015-08-13 22:05 - 2015-08-06 05:17 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys 2015-08-13 22:05 - 2015-08-06 05:17 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys 2015-08-13 22:05 - 2015-08-06 04:22 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys 2015-08-13 22:05 - 2015-08-05 06:00 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll 2015-08-13 22:05 - 2015-08-05 05:39 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll 2015-08-13 22:05 - 2015-08-04 06:07 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys 2015-08-13 22:05 - 2015-08-04 06:06 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2015-08-13 22:05 - 2015-08-04 05:23 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll 2015-08-13 22:05 - 2015-08-03 04:32 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll 2015-08-13 22:05 - 2015-08-03 04:28 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll 2015-08-13 22:05 - 2015-08-03 04:19 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2015-08-13 22:05 - 2015-08-03 04:19 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2015-08-13 22:05 - 2015-08-03 04:18 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys 2015-08-13 22:05 - 2015-08-03 04:17 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2015-08-13 22:05 - 2015-08-03 04:17 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys 2015-08-13 22:05 - 2015-08-03 03:30 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll 2015-08-13 22:05 - 2015-08-03 03:24 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll 2015-08-13 22:05 - 2015-08-03 03:24 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll 2015-08-13 22:05 - 2015-08-03 03:23 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll 2015-08-13 22:05 - 2015-08-03 03:22 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll 2015-08-13 22:05 - 2015-08-03 03:22 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll 2015-08-13 22:05 - 2015-08-03 03:21 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll 2015-08-13 22:05 - 2015-08-03 03:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe 2015-08-13 22:05 - 2015-08-03 03:19 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe 2015-08-13 22:05 - 2015-08-03 03:18 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll 2015-08-13 22:05 - 2015-08-03 03:18 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll 2015-08-13 22:05 - 2015-08-03 03:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll 2015-08-13 22:05 - 2015-08-03 03:15 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll 2015-08-13 22:05 - 2015-08-03 03:15 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll 2015-08-13 22:05 - 2015-08-03 03:14 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2015-08-13 22:05 - 2015-08-03 03:14 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll 2015-08-13 22:05 - 2015-08-03 03:12 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll 2015-08-13 22:05 - 2015-08-03 03:12 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll 2015-08-13 22:05 - 2015-08-03 03:11 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll 2015-08-13 22:05 - 2015-08-03 03:11 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll 2015-08-13 22:05 - 2015-08-03 03:06 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe 2015-08-13 22:05 - 2015-08-03 03:02 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll 2015-08-13 22:05 - 2015-08-03 03:02 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2015-08-13 22:05 - 2015-08-03 02:59 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll 2015-08-13 22:05 - 2015-07-30 08:23 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2015-08-13 22:05 - 2015-07-30 08:17 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2015-08-13 22:05 - 2015-07-30 08:15 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2015-08-13 22:05 - 2015-07-30 08:14 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll 2015-08-13 22:05 - 2015-07-30 08:05 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-08-13 22:05 - 2015-07-30 07:24 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll 2015-08-13 22:05 - 2015-07-30 06:42 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2015-08-13 22:05 - 2015-07-30 06:29 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2015-08-13 22:05 - 2015-07-30 06:24 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2015-08-13 22:05 - 2015-07-30 06:24 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-08-13 22:05 - 2015-07-30 06:24 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll 2015-08-13 22:05 - 2015-07-30 06:22 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2015-08-13 22:05 - 2015-07-30 06:22 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2015-08-13 22:05 - 2015-07-30 06:12 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2015-08-13 22:05 - 2015-07-30 06:12 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2015-08-13 22:05 - 2015-07-30 06:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe 2015-08-13 22:05 - 2015-07-30 06:08 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2015-08-13 22:05 - 2015-07-30 06:08 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2015-08-13 22:05 - 2015-07-30 06:08 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2015-08-13 22:05 - 2015-07-30 05:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2015-08-13 22:05 - 2015-07-30 05:52 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2015-08-13 22:05 - 2015-07-30 05:52 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll 2015-08-13 22:05 - 2015-07-30 05:49 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-08-13 22:05 - 2015-07-30 05:46 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll 2015-08-13 22:05 - 2015-07-30 05:46 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-08-13 22:05 - 2015-07-30 05:45 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll 2015-08-13 22:05 - 2015-07-30 05:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys 2015-08-13 22:05 - 2015-07-30 05:44 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2015-08-13 22:05 - 2015-07-30 05:44 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll 2015-08-13 22:05 - 2015-07-30 05:44 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll 2015-08-13 22:05 - 2015-07-30 05:44 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys 2015-08-13 22:05 - 2015-07-30 05:44 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll 2015-08-13 22:05 - 2015-07-30 05:41 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll 2015-08-13 22:05 - 2015-07-30 05:38 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll 2015-08-13 22:05 - 2015-07-30 05:34 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2015-08-13 22:05 - 2015-07-30 05:10 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2015-08-13 22:05 - 2015-07-30 05:10 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-08-13 22:05 - 2015-07-30 05:07 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll 2015-08-13 22:05 - 2015-07-30 05:06 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll 2015-08-13 22:05 - 2015-07-30 05:06 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll 2015-08-13 22:05 - 2015-07-30 05:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll 2015-08-13 22:05 - 2015-07-30 04:59 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2015-08-13 22:05 - 2015-07-30 04:58 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll 2015-08-13 22:05 - 2015-07-26 07:16 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2015-08-13 22:05 - 2015-07-26 07:16 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2015-08-13 22:05 - 2015-07-26 07:06 - 00607008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2015-08-13 22:05 - 2015-07-26 05:49 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll 2015-08-13 22:05 - 2015-07-26 05:47 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll 2015-08-13 22:05 - 2015-07-26 05:40 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll 2015-08-13 22:05 - 2015-07-26 05:39 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll 2015-08-13 22:05 - 2015-07-26 05:35 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll 2015-08-13 22:05 - 2015-07-26 05:34 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll 2015-08-13 22:05 - 2015-07-26 05:30 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2015-08-13 22:05 - 2015-07-26 05:30 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll 2015-08-13 22:05 - 2015-07-26 05:29 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll 2015-08-13 22:05 - 2015-07-24 05:18 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2015-08-13 22:05 - 2015-07-24 05:17 - 00991584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll 2015-08-13 22:05 - 2015-07-24 05:17 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll 2015-08-13 22:05 - 2015-07-24 05:17 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe 2015-08-13 22:05 - 2015-07-24 05:12 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll 2015-08-13 22:05 - 2015-07-24 05:11 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll 2015-08-13 22:05 - 2015-07-24 04:55 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll 2015-08-13 22:05 - 2015-07-24 04:52 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll 2015-08-13 22:05 - 2015-07-24 04:46 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2015-08-13 22:05 - 2015-07-24 04:46 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2015-08-13 22:05 - 2015-07-24 04:44 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll 2015-08-13 22:05 - 2015-07-24 04:34 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2015-08-13 22:05 - 2015-07-24 04:30 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll 2015-08-13 22:05 - 2015-07-24 04:29 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys 2015-08-13 22:05 - 2015-07-24 04:24 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2015-08-13 22:05 - 2015-07-24 04:24 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll 2015-08-13 22:05 - 2015-07-24 04:24 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll 2015-08-13 22:05 - 2015-07-22 07:15 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys 2015-08-13 22:05 - 2015-07-22 06:13 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe 2015-08-13 22:05 - 2015-07-22 06:02 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll 2015-08-13 22:05 - 2015-07-22 06:00 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2015-08-13 22:05 - 2015-07-22 06:00 - 00242264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe 2015-08-13 22:05 - 2015-07-22 06:00 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll 2015-08-13 22:05 - 2015-07-22 05:55 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2015-08-13 22:05 - 2015-07-22 05:21 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe 2015-08-13 22:05 - 2015-07-22 05:10 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2015-08-13 22:05 - 2015-07-22 05:09 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll 2015-08-13 22:05 - 2015-07-22 05:07 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll 2015-08-13 22:05 - 2015-07-22 05:03 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll 2015-08-13 22:05 - 2015-07-22 04:50 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2015-08-13 22:05 - 2015-07-19 05:54 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2015-08-13 22:05 - 2015-07-19 05:23 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll 2015-08-13 22:05 - 2015-07-19 05:18 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll 2015-08-13 22:05 - 2015-07-19 05:02 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll 2015-08-13 22:05 - 2015-07-19 04:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll 2015-08-13 22:05 - 2015-07-18 10:47 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll 2015-08-13 22:05 - 2015-07-18 09:43 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll 2015-08-13 22:05 - 2015-07-18 09:39 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll 2015-08-13 22:05 - 2015-07-18 09:37 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll 2015-08-13 22:05 - 2015-07-18 09:28 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll 2015-08-13 22:05 - 2015-07-18 09:28 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-08-13 22:05 - 2015-07-18 09:26 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll 2015-08-13 22:05 - 2015-07-18 07:18 - 01085776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2015-08-13 22:05 - 2015-07-18 07:17 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll 2015-08-13 22:05 - 2015-07-18 07:02 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe 2015-08-13 22:05 - 2015-07-18 06:06 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll 2015-08-13 22:05 - 2015-07-18 06:01 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll 2015-08-13 22:05 - 2015-07-18 05:59 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll 2015-08-13 22:05 - 2015-07-18 05:50 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll 2015-08-13 22:05 - 2015-07-18 05:50 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-08-13 22:05 - 2015-07-18 05:49 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe 2015-08-13 22:05 - 2015-07-18 05:49 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll 2015-08-13 22:05 - 2015-07-18 05:49 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll 2015-08-13 22:05 - 2015-07-18 05:48 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2015-08-13 22:05 - 2015-07-18 05:48 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe 2015-08-13 22:05 - 2015-07-18 05:47 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll 2015-08-13 22:05 - 2015-07-17 06:23 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys 2015-08-13 22:05 - 2015-07-17 06:13 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2015-08-13 22:05 - 2015-07-17 06:12 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2015-08-13 22:05 - 2015-07-17 06:07 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2015-08-13 22:05 - 2015-07-17 04:39 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2015-08-13 22:05 - 2015-07-17 04:39 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll 2015-08-13 22:05 - 2015-07-17 04:36 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2015-08-13 22:05 - 2015-07-17 04:33 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2015-08-13 22:05 - 2015-07-17 04:33 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe 2015-08-13 22:05 - 2015-07-17 04:32 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2015-08-13 22:05 - 2015-07-17 04:26 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2015-08-13 22:05 - 2015-07-17 04:24 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll 2015-08-13 22:05 - 2015-07-17 04:21 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2015-08-13 22:05 - 2015-07-17 04:19 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2015-08-13 22:05 - 2015-07-17 04:19 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2015-08-13 22:05 - 2015-07-17 04:18 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2015-08-13 22:05 - 2015-07-17 04:16 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2015-08-13 22:05 - 2015-07-17 04:05 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2015-08-13 22:05 - 2015-07-17 04:05 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll 2015-08-13 22:05 - 2015-07-17 03:56 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2015-08-13 22:05 - 2015-07-17 03:53 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll 2015-08-13 22:05 - 2015-07-17 03:51 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2015-08-13 22:05 - 2015-07-17 03:50 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll 2015-08-13 22:05 - 2015-07-17 03:44 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2015-08-13 22:05 - 2015-07-16 07:39 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys 2015-08-13 22:05 - 2015-07-16 06:09 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2015-08-13 22:05 - 2015-07-16 06:03 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll 2015-08-13 22:05 - 2015-07-16 06:01 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll 2015-08-13 22:05 - 2015-07-16 05:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll 2015-08-13 22:05 - 2015-07-16 05:45 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2015-08-13 22:05 - 2015-07-16 05:41 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll 2015-08-13 22:05 - 2015-07-16 05:40 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll 2015-08-13 22:05 - 2015-07-16 05:36 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll 2015-08-13 22:05 - 2015-07-16 05:33 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll 2015-08-13 22:05 - 2015-07-16 05:32 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2015-08-13 22:05 - 2015-07-16 05:19 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll 2015-08-13 22:05 - 2015-07-15 05:21 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2015-08-13 22:05 - 2015-07-15 04:49 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2015-08-13 22:05 - 2015-07-15 04:49 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2015-08-13 22:05 - 2015-07-15 04:16 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll 2015-08-13 22:05 - 2015-07-15 04:04 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll 2015-08-13 22:05 - 2015-07-15 03:59 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll 2015-08-13 22:05 - 2015-07-15 03:57 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll 2015-08-13 22:05 - 2015-07-15 03:41 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll 2015-08-13 22:05 - 2015-07-15 03:37 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll 2015-08-13 22:05 - 2015-07-15 03:35 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll 2015-08-13 22:05 - 2015-07-15 03:27 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll 2015-08-13 22:05 - 2015-07-14 05:00 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2015-08-13 22:05 - 2015-07-14 04:37 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2015-08-13 22:05 - 2015-07-14 04:04 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys 2015-08-13 22:05 - 2015-07-14 03:51 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll 2015-08-13 22:05 - 2015-07-14 03:50 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe 2015-08-13 22:05 - 2015-07-14 03:49 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2015-08-13 22:05 - 2015-07-14 03:38 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll 2015-08-13 22:05 - 2015-07-14 03:31 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe 2015-08-13 22:05 - 2015-07-14 03:20 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll 2015-08-13 22:05 - 2015-07-13 02:01 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2015-08-13 22:05 - 2015-07-13 01:30 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe 2015-08-13 22:05 - 2015-07-12 02:38 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2015-08-13 22:05 - 2015-07-11 03:28 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll 2015-08-13 22:05 - 2015-07-11 03:22 - 00403968 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll 2015-08-13 22:05 - 2015-07-11 03:21 - 00412672 _____ C:\WINDOWS\system32\diagtrack_win.dll 2015-08-13 22:05 - 2015-07-11 03:05 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll 2015-08-13 22:05 - 2015-07-11 03:03 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2015-08-13 22:05 - 2015-07-11 03:03 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe 2015-08-13 22:05 - 2015-07-11 03:02 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll 2015-08-13 22:05 - 2015-07-11 03:01 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-08-13 22:05 - 2015-07-11 02:57 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2015-08-13 22:05 - 2015-07-11 02:43 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll 2015-08-13 22:05 - 2015-07-11 02:42 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll 2015-08-13 22:05 - 2015-07-11 02:41 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2015-08-13 22:05 - 2015-07-11 02:40 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-08-13 22:05 - 2015-07-11 02:40 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe 2015-08-13 22:05 - 2015-07-11 02:34 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2015-08-13 22:05 - 2015-07-10 17:47 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll 2015-08-13 22:05 - 2015-07-10 16:52 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll 2015-08-13 22:05 - 2015-07-10 12:59 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll 2015-08-13 22:05 - 2015-07-10 12:42 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll 2015-08-13 22:05 - 2015-07-10 12:10 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll 2015-08-13 22:05 - 2015-07-10 12:05 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll 2015-08-13 22:05 - 2015-07-10 11:35 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2015-08-13 22:05 - 2015-07-10 11:29 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll 2015-08-13 22:01 - 2015-08-19 22:52 - 00002384 _____ C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-08-13 22:01 - 2015-08-19 22:52 - 00000000 ___RD C:\Users\mirjana\OneDrive 2015-08-13 21:59 - 2015-08-13 21:59 - 00000020 ___SH C:\Users\mirjana\ntuser.ini 2015-08-13 21:59 - 2015-08-13 21:59 - 00000000 ____D C:\Users\mirjana\AppData\Local\TileDataLayer 2015-08-13 21:59 - 2015-08-13 21:59 - 00000000 ____D C:\Users\mirjana\AppData\Local\Publishers 2015-08-13 21:57 - 2015-08-13 21:57 - 00001051 _____ C:\Users\Nikola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk 2015-08-13 21:57 - 2015-07-09 20:37 - 01870848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MLS2.dll 2015-08-13 21:57 - 2015-07-09 20:36 - 07043584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons081a.dll 2015-08-13 21:57 - 2015-07-09 20:36 - 06918144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0c1a.dll 2015-08-13 21:57 - 2015-07-09 20:36 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0c1a.dll 2015-08-13 21:57 - 2015-07-09 20:36 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData081a.dll 2015-08-13 21:57 - 2015-07-09 20:26 - 01909248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MLS2.dll 2015-08-13 21:57 - 2015-07-09 20:25 - 07043584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons081a.dll 2015-08-13 21:57 - 2015-07-09 20:25 - 06918144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0c1a.dll 2015-08-13 21:57 - 2015-07-09 20:25 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0c1a.dll 2015-08-13 21:57 - 2015-07-09 20:25 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData081a.dll 2015-08-13 21:56 - 2015-08-20 08:55 - 00002381 _____ C:\Users\Nikola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-08-13 21:56 - 2015-08-20 08:55 - 00000000 ___RD C:\Users\Nikola\OneDrive 2015-08-13 21:55 - 2015-08-13 21:55 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2015-08-13 21:54 - 2015-08-13 21:54 - 00000000 ____D C:\Users\Nikola\AppData\Local\Publishers 2015-08-13 21:53 - 2015-08-13 22:36 - 00000000 ____D C:\Users\Nikola\AppData\Local\Packages 2015-08-13 21:53 - 2015-08-13 21:53 - 00000020 ___SH C:\Users\Nikola\ntuser.ini 2015-08-13 21:53 - 2015-08-13 21:53 - 00000000 ____D C:\Users\Nikola\AppData\Local\TileDataLayer 2015-08-13 21:03 - 2015-08-13 21:03 - 00022744 _____ C:\WINDOWS\system32\emptyregdb.dat 2015-08-13 20:56 - 2015-08-21 11:21 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-08-13 20:52 - 2015-07-10 12:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2015-08-13 20:48 - 2015-08-13 20:48 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-08-13 20:48 - 2015-08-13 20:48 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia 2015-08-13 20:48 - 2015-08-13 20:48 - 00000000 ____D C:\Users\Default\AppData\Local\Google 2015-08-13 20:48 - 2015-08-13 20:48 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia 2015-08-13 20:48 - 2015-08-13 20:48 - 00000000 ____D C:\Users\Default User\AppData\Local\Google 2015-08-13 20:45 - 2015-08-13 20:45 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines 2015-08-13 20:43 - 2015-08-19 23:50 - 00000000 ____D C:\Users\mirjana 2015-08-13 20:43 - 2015-08-19 22:47 - 00000000 ____D C:\Users\Nikola 2015-08-13 20:43 - 2015-08-13 21:59 - 00000000 ___RD C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-13 20:43 - 2015-08-13 21:53 - 00000000 ___RD C:\Users\Nikola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-13 20:43 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\Nikola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2015-08-13 20:43 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2015-08-13 20:43 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Nikola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-08-13 20:43 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Nikola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-08-13 20:43 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-08-13 20:43 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-08-13 20:43 - 2015-07-10 13:04 - 00000000 ____D C:\Users\Nikola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-08-13 20:43 - 2015-07-10 13:04 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-08-13 20:42 - 2015-08-19 22:54 - 01005534 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-08-13 20:42 - 2015-08-13 20:42 - 02400448 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI 2015-08-13 20:41 - 2015-08-13 20:42 - 00021209 _____ C:\WINDOWS\iis.log 2015-08-13 20:40 - 2015-08-16 11:04 - 00000000 ____D C:\ProgramData\AMD 2015-08-13 20:40 - 2015-08-16 11:04 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2015-08-13 20:40 - 2015-08-13 20:46 - 00000000 ____D C:\ProgramData\Package Cache 2015-08-13 20:39 - 2015-08-16 11:08 - 00000000 ____D C:\Program Files\AMD 2015-08-13 20:39 - 2015-08-14 15:01 - 00008636 _____ C:\WINDOWS\system32\lvcoinst.log 2015-08-13 20:39 - 2015-08-13 20:49 - 00000000 ____D C:\Program Files\Common Files\logishrd 2015-08-13 20:39 - 2015-08-13 20:39 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2015-08-13 20:39 - 2015-08-13 20:39 - 00000000 ____D C:\Program Files\Realtek 2015-08-13 20:39 - 2015-08-13 20:39 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2015-08-13 20:39 - 2015-08-13 20:39 - 00000000 _____ C:\WINDOWS\ativpsrm.bin 2015-08-13 20:34 - 2015-08-19 22:48 - 00051826 _____ C:\WINDOWS\PFRO.log 2015-08-13 20:34 - 2015-08-13 20:35 - 00022598 _____ C:\WINDOWS\system32\NetSetupMig.log 2015-08-13 19:40 - 2015-08-13 21:03 - 00006531 _____ C:\WINDOWS\comsetup.log 2015-08-13 19:36 - 2015-08-13 21:04 - 00014259 _____ C:\WINDOWS\diagerr.xml 2015-08-13 19:36 - 2015-08-13 21:04 - 00013338 _____ C:\WINDOWS\diagwrn.xml 2015-08-13 10:22 - 2015-08-13 10:22 - 00000000 _____ C:\WINDOWS\system32\OCL4F57.tmp 2015-08-11 19:27 - 2015-08-11 19:27 - 00679237 _____ C:\Users\Public\Documents\ADV_Mabra_s4rugset14.rar 2015-08-11 19:24 - 2015-08-11 19:24 - 51918021 _____ C:\Users\Public\Documents\SaudadeSims_Vienna Set_Merged.package 2015-08-11 19:21 - 2015-08-11 19:21 - 03544332 _____ C:\Users\Public\Documents\1307233.zip 2015-08-11 19:20 - 2015-08-11 19:20 - 00749120 _____ C:\Users\Public\Documents\обои КИРПИЧНАЯ СТЕНА_004.rar 2015-08-11 19:20 - 2015-08-11 19:20 - 00684118 _____ C:\Users\Public\Documents\RSS Garance Dore Prints 2.package 2015-08-10 19:13 - 2015-08-10 19:13 - 00000000 _____ C:\WINDOWS\system32\OCL7F2D.tmp 2015-08-09 07:13 - 2015-08-09 07:13 - 09191344 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 08981312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 08867048 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 07575696 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 00471352 _____ C:\WINDOWS\system32\amdmiracast.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 00151968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 00138416 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 00130104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 00119160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 00089560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 00088032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 00081200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll 2015-08-09 07:13 - 2015-08-09 07:13 - 00081200 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 47795720 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 30762496 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 27544600 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 25308696 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 15725592 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 14310936 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 06486032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 05077016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 01256472 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 01196072 _____ C:\WINDOWS\system32\amdocl_as64.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 01070632 _____ C:\WINDOWS\system32\amdocl_ld64.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 01004072 _____ C:\WINDOWS\SysWOW64\amdocl_as32.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 00935448 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00807464 _____ C:\WINDOWS\SysWOW64\amdocl_ld32.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 00681496 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 00451096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00375832 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 00341528 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 00306424 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys 2015-08-09 07:10 - 2015-08-09 07:10 - 00255512 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 00243736 _____ C:\WINDOWS\system32\clinfo.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 00213520 _____ C:\WINDOWS\system32\amdgfxinfo64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00199704 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00198680 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00168984 _____ C:\WINDOWS\system32\atieah64.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 00165400 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00152592 _____ C:\WINDOWS\SysWOW64\atieah32.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 00143376 _____ C:\WINDOWS\system32\amdhdl64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00136216 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00132120 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00122392 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00111640 _____ C:\WINDOWS\system32\hsa-thunk64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00111128 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00102424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00097816 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00096776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00089624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00083992 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00078360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00078360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00073752 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00071192 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00068120 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00064536 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00060952 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00059928 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe 2015-08-09 07:10 - 2015-08-09 07:10 - 00059416 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00057880 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00052248 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00048144 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00038424 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00012824 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll 2015-08-09 07:10 - 2015-08-09 07:10 - 00012816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll 2015-08-08 21:24 - 2015-08-08 21:24 - 00000000 ____D C:\Users\mirjana\AppData\Local\Malfatto Software 2015-08-08 21:18 - 2015-08-08 21:18 - 01096589 _____ C:\Users\Public\Documents\RachelsSimStuff Tiled Walls.package 2015-08-08 21:12 - 2015-08-08 21:12 - 02920149 _____ C:\Users\Public\Documents\RachelsSimStuff Tinhouse Wooden Walls Conversion.package 2015-08-08 21:03 - 2015-08-08 21:04 - 00400259 _____ C:\Users\Public\Documents\DalaiL._Chair4StefforCute.package 2015-08-08 16:05 - 2015-08-08 16:05 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap 2015-08-08 16:05 - 2015-08-08 16:05 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap 2015-08-08 16:05 - 2015-08-08 16:05 - 00660928 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb 2015-08-08 16:05 - 2015-08-08 16:05 - 00660928 _____ C:\WINDOWS\system32\atiapfxx.blb 2015-08-02 11:57 - 2015-08-02 11:57 - 00000000 _____ C:\WINDOWS\system32\OCLEE25.tmp 2015-08-01 14:31 - 2015-08-01 14:31 - 00057134 _____ C:\Users\mirjana\Desktop\172856-the.hobbit.an.unexpected.journey.2012.extended.720p.bluray.x264geckos.zip 2015-07-31 10:40 - 2015-07-31 10:40 - 00000000 _____ C:\WINDOWS\system32\OCL70DB.tmp 2015-07-30 22:35 - 2015-07-30 22:35 - 00058661 _____ C:\WINDOWS\SysWOW64\CCCInstall_201507302235158046.log 2015-07-22 15:00 - 2015-07-22 15:00 - 00000531 _____ C:\Users\Nikola\Desktop\NBA 2K15.lnk 2015-07-22 01:42 - 2015-07-22 01:42 - 00103424 _____ (Advanced Micro Devices) C:\WINDOWS\system32\DelayAPO.dll ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-08-21 18:33 - 2014-03-23 12:42 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\uTorrent 2015-08-21 18:29 - 2015-07-10 14:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log 2015-08-21 18:22 - 2014-03-23 22:28 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\Skype 2015-08-21 18:19 - 2014-03-23 15:30 - 00000898 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-08-21 18:17 - 2015-05-26 18:49 - 00000000 ____D C:\Users\mirjana\Desktop\2015-05 (maj) 2015-08-21 18:17 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-08-21 17:59 - 2014-03-23 14:20 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-08-21 17:48 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru 2015-08-21 17:39 - 2014-03-23 17:11 - 00000000 ___HD C:\ProgramData\Origin 2015-08-21 17:24 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-08-21 11:04 - 2014-11-30 21:59 - 00000000 ____D C:\ProgramData\MCShield 2015-08-21 11:04 - 2014-03-23 15:30 - 00000894 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-08-21 10:55 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-08-21 10:46 - 2015-07-18 13:00 - 00074215 _____ C:\WINDOWS\system32\ScanResults.xml 2015-08-21 10:41 - 2015-07-18 12:55 - 00000464 _____ C:\WINDOWS\system32\ScannerSettings 2015-08-20 20:40 - 2015-02-01 23:37 - 00000000 ____D C:\Program Files (x86)\Electronic Arts 2015-08-20 20:39 - 2015-03-08 19:46 - 00000000 ____D C:\ProgramData\BioWare 2015-08-20 20:38 - 2014-03-27 11:28 - 00000000 ____D C:\Users\Nikola\AppData\Local\VirtualStore 2015-08-20 09:07 - 2014-03-23 12:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-08-19 23:39 - 2014-04-21 10:42 - 00341531 _____ C:\WINDOWS\DirectX.log 2015-08-19 23:23 - 2015-02-01 23:44 - 00000000 ____D C:\Users\mirjana\Desktop\Mods 2015-08-19 22:57 - 2015-07-11 16:31 - 00000000 ____D C:\Users\mirjana\Desktop\IGRE 2015-08-19 22:48 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-08-19 22:48 - 2014-07-23 10:22 - 00000464 __RSH C:\ProgramData\ntuser.pol 2015-08-19 22:47 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2015-08-19 22:33 - 2015-07-19 18:33 - 00000000 ____D C:\Program Files (x86)\Raptr 2015-08-19 22:32 - 2014-03-23 14:54 - 00000000 ____D C:\Program Files\SUPERAntiSpyware 2015-08-19 22:12 - 2014-12-20 20:56 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\vlc 2015-08-19 22:11 - 2014-12-20 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2015-08-19 22:09 - 2009-07-14 05:20 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy 2015-08-19 21:38 - 2014-12-23 20:20 - 00000000 ____D C:\Program Files (x86)\Adobe Media Player 2015-08-19 10:39 - 2014-12-22 11:02 - 00000000 ____D C:\Users\Nikola\AppData\Roaming\Raptr 2015-08-18 10:16 - 2015-02-19 22:34 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\.minecraft 2015-08-16 23:00 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache 2015-08-16 20:08 - 2014-09-14 21:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES 2015-08-16 19:21 - 2015-02-01 23:44 - 00000000 ____D C:\Users\mirjana\Desktop\Tray 2015-08-16 12:00 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2015-08-16 11:22 - 2015-07-10 14:20 - 04772872 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-08-16 11:16 - 2015-07-10 15:11 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN 2015-08-16 11:16 - 2015-07-10 15:11 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr 2015-08-16 11:16 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2015-08-16 11:16 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2015-08-16 11:16 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-16 11:16 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-16 11:16 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\sk-SK 2015-08-16 11:16 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe 2015-08-16 11:16 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2015-08-16 11:16 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-08-16 11:16 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-08-16 11:16 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-08-16 11:16 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning 2015-08-16 11:16 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism 2015-08-16 11:16 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Dism 2015-08-16 11:15 - 2015-07-10 15:14 - 00000000 ____D C:\Program Files\Windows Journal 2015-08-16 11:15 - 2015-07-10 15:11 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm 2015-08-16 11:15 - 2015-07-10 15:11 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2015-08-16 11:15 - 2015-07-10 15:11 - 00000000 ____D C:\WINDOWS\system32\WCN 2015-08-16 11:15 - 2015-07-10 15:11 - 00000000 ____D C:\WINDOWS\system32\slmgr 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\system32\F12 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\MiracastView 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sk-SK 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\migwiz 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\IME 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Help 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows Defender 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\System 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2015-08-16 11:15 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2015-08-16 11:15 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2015-08-16 11:15 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\servicing 2015-08-16 11:14 - 2015-07-10 15:11 - 00000000 ____D C:\WINDOWS\system32\winrm 2015-08-16 11:14 - 2015-07-10 15:11 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2015-08-16 11:14 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\system32\dsc 2015-08-16 11:14 - 2015-07-10 13:04 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs 2015-08-16 11:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Com 2015-08-16 11:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\MUI 2015-08-16 11:14 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\inetsrv 2015-08-16 11:13 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\Com 2015-08-16 11:12 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\ar-SA 2015-08-16 11:12 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\ar-SA 2015-08-16 11:02 - 2014-08-15 16:16 - 00000000 ____D C:\AMD 2015-08-14 09:35 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\appcompat 2015-08-14 06:32 - 2015-07-10 13:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template 2015-08-14 06:16 - 2015-07-10 13:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll 2015-08-14 06:16 - 2015-07-10 13:01 - 00265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll 2015-08-14 06:16 - 2015-07-10 13:01 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll 2015-08-14 06:16 - 2015-07-10 13:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb 2015-08-14 06:16 - 2015-07-10 13:01 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb 2015-08-14 06:16 - 2015-07-10 13:01 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb 2015-08-14 06:16 - 2015-07-10 13:01 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll 2015-08-14 06:16 - 2015-07-10 13:01 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb 2015-08-14 06:16 - 2015-07-10 13:01 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll 2015-08-14 06:16 - 2015-07-10 13:01 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe 2015-08-14 06:16 - 2015-07-10 13:01 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll 2015-08-14 06:16 - 2015-07-10 13:01 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll 2015-08-14 06:16 - 2015-07-10 13:01 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll 2015-08-14 06:16 - 2015-07-10 13:01 - 00009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof 2015-08-14 06:16 - 2015-07-10 13:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll 2015-08-14 06:16 - 2015-07-10 13:00 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll 2015-08-14 06:16 - 2015-07-10 13:00 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys 2015-08-14 06:16 - 2015-07-10 13:00 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll 2015-08-14 06:16 - 2015-07-10 13:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll 2015-08-14 06:16 - 2015-07-10 13:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll 2015-08-14 06:16 - 2015-07-10 13:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe 2015-08-14 06:16 - 2015-07-10 13:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll 2015-08-14 06:16 - 2015-07-10 13:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll 2015-08-14 06:15 - 2015-07-10 13:01 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll 2015-08-14 06:15 - 2015-07-10 13:01 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll 2015-08-14 06:15 - 2015-07-10 13:00 - 01417728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll 2015-08-14 06:15 - 2015-07-10 13:00 - 00813056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll 2015-08-14 06:15 - 2015-07-10 13:00 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll 2015-08-14 06:15 - 2015-07-10 13:00 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll 2015-08-14 06:15 - 2015-07-10 13:00 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb 2015-08-14 06:15 - 2015-07-10 13:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb 2015-08-14 06:15 - 2015-07-10 13:00 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb 2015-08-14 06:15 - 2015-07-10 13:00 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe 2015-08-14 06:15 - 2015-07-10 13:00 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb 2015-08-14 06:15 - 2015-07-10 13:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe 2015-08-14 06:15 - 2015-07-10 13:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll 2015-08-14 06:15 - 2015-07-10 13:00 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof 2015-08-13 22:36 - 2014-07-23 10:22 - 00000000 ____D C:\Users\mirjana\AppData\Local\Packages 2015-08-13 21:53 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PrintDialog 2015-08-13 21:04 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Registration 2015-08-13 21:03 - 2015-07-16 12:09 - 00004392 _____ C:\WINDOWS\System32\Tasks\ReimageUpdater 2015-08-13 21:03 - 2015-07-16 12:09 - 00003556 _____ C:\WINDOWS\System32\Tasks\Reimage Reminder 2015-08-13 21:03 - 2015-07-10 13:04 - 00000000 __RSD C:\WINDOWS\Media 2015-08-13 21:03 - 2015-07-10 13:04 - 00000000 __RHD C:\Users\Public\Libraries 2015-08-13 21:03 - 2015-06-13 18:56 - 00003198 _____ C:\WINDOWS\System32\Tasks\{85C3DC3B-7AF7-430F-868B-7F894B44A32F} 2015-08-13 21:03 - 2015-05-10 12:51 - 00003202 _____ C:\WINDOWS\System32\Tasks\Origin 2015-08-13 21:03 - 2015-02-08 19:17 - 00003322 _____ C:\WINDOWS\System32\Tasks\Minecraft Checksum Validator 2015-08-13 21:03 - 2015-01-28 18:59 - 00003196 _____ C:\WINDOWS\System32\Tasks\{2C837043-B55F-41AF-AE2D-21F585C12C66} 2015-08-13 21:03 - 2014-12-26 21:10 - 00003470 _____ C:\WINDOWS\System32\Tasks\{59ABF1DC-500E-4ED5-A17A-4EE91849FA96} 2015-08-13 21:03 - 2014-12-25 12:08 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2015-08-13 21:03 - 2014-12-23 20:27 - 00003620 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-mirjana-PC-mirjana 2015-08-13 21:03 - 2014-11-24 21:22 - 00003344 _____ C:\WINDOWS\System32\Tasks\{4D76E4ED-542F-4AED-9BC6-A35C983ADF41} 2015-08-13 21:03 - 2014-11-23 14:58 - 00003316 _____ C:\WINDOWS\System32\Tasks\{EFDF3296-EFDD-4879-B57D-4921C43B60C5} 2015-08-13 21:03 - 2014-11-23 14:47 - 00003276 _____ C:\WINDOWS\System32\Tasks\{CE407C24-2FD9-4560-BD04-B72F234D6AE0} 2015-08-13 21:03 - 2014-03-28 08:45 - 00003194 _____ C:\WINDOWS\System32\Tasks\{83351B93-3030-41D9-8587-5E9A5BADD248} 2015-08-13 21:03 - 2014-03-25 01:18 - 00003368 _____ C:\WINDOWS\System32\Tasks\{B31554A4-E4F2-4E28-994D-C9549880BBEF} 2015-08-13 21:03 - 2014-03-23 16:39 - 00003296 _____ C:\WINDOWS\System32\Tasks\{D389F9C3-B230-4D9E-954A-6BF33DF1BE8B} 2015-08-13 21:03 - 2014-03-23 15:30 - 00004004 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-08-13 21:03 - 2014-03-23 15:30 - 00003752 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-08-13 21:03 - 2014-03-23 14:20 - 00003878 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2015-08-13 21:02 - 2014-12-05 00:15 - 00148632 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys 2015-08-13 21:02 - 2014-12-05 00:15 - 00137288 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys 2015-08-13 21:02 - 2014-12-05 00:15 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys 2015-08-13 21:01 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\spool 2015-08-13 20:50 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp 2015-08-13 20:49 - 2015-07-16 12:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair 2015-08-13 20:49 - 2015-07-10 13:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-13 20:49 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM 2015-08-13 20:49 - 2015-05-26 18:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2015-08-13 20:49 - 2015-03-08 19:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-08-13 20:49 - 2015-03-01 13:40 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft 2015-08-13 20:49 - 2015-02-10 16:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 15 2015-08-13 20:49 - 2015-02-08 19:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft (by Team Extreme) 2015-08-13 20:49 - 2015-02-01 23:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\The Sims 4 2015-08-13 20:49 - 2014-12-23 20:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe 2015-08-13 20:49 - 2014-11-30 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCShield 2015-08-13 20:49 - 2014-10-21 15:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-08-13 20:49 - 2014-08-07 16:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-08-13 20:49 - 2014-06-14 17:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player 2015-08-13 20:49 - 2014-03-28 08:18 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2015-08-13 20:49 - 2014-03-28 08:17 - 00000000 ____D C:\Users\Nikola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2015-08-13 20:49 - 2014-03-26 08:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-08-13 20:49 - 2014-03-23 17:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2015-08-13 20:49 - 2014-03-23 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2015-08-13 20:49 - 2014-03-23 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-08-13 20:49 - 2014-03-23 12:57 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-08-13 20:49 - 2014-03-23 12:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-08-13 20:48 - 2015-07-10 13:05 - 00004362 _____ C:\WINDOWS\DtcInstall.log 2015-08-13 20:48 - 2009-07-14 05:20 - 00000000 ____D C:\Users\Default.migrated 2015-08-13 20:47 - 2015-07-10 15:11 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep 2015-08-13 20:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz 2015-08-13 20:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2015-08-13 20:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\IME 2015-08-13 20:47 - 2015-03-08 19:15 - 00000000 ____D C:\WINDOWS\SysWOW64\AGEIA 2015-08-13 20:47 - 2014-11-21 16:58 - 00000000 ____D C:\WINDOWS\SysWOW64\Adobe 2015-08-13 20:46 - 2015-07-16 15:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mr DJ 2015-08-13 20:46 - 2015-07-10 15:19 - 00000000 ____D C:\WINDOWS\DigitalLocker 2015-08-13 20:46 - 2015-07-10 13:06 - 00000000 ____D C:\WINDOWS\Setup 2015-08-13 20:46 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF 2015-08-13 20:46 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\IME 2015-08-13 20:46 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\schemas 2015-08-13 20:46 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Resources 2015-08-13 20:46 - 2015-01-11 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Fellowship of the Ring 2015-08-13 20:46 - 2014-09-20 09:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-08-13 20:46 - 2014-04-09 20:55 - 00000000 ____D C:\WINDOWS\system32\appmgmt 2015-08-13 20:46 - 2014-03-24 12:41 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-08-13 20:46 - 2014-03-23 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE 2015-08-13 20:46 - 2011-04-12 10:28 - 00000000 ___RD C:\Users\Public\Recorded TV 2015-08-13 20:45 - 2015-07-10 13:04 - 00000000 __SHD C:\Program Files\Windows Sidebar 2015-08-13 20:45 - 2015-07-10 13:04 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar 2015-08-13 20:45 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\Recovery 2015-08-13 20:45 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-08-13 20:45 - 2014-03-23 12:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-08-13 20:45 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Microsoft Games 2015-08-13 20:45 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker 2015-08-13 20:44 - 2014-09-01 17:32 - 00000000 ____D C:\Users\mirjana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft 2015-08-13 20:34 - 2015-07-10 11:05 - 00000000 __RHD C:\Users\Default 2015-08-13 19:49 - 2014-03-23 20:12 - 01907571 _____ C:\WINDOWS\WindowsUpdate (1).log 2015-08-13 19:49 - 2009-07-14 06:45 - 00029200 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-08-13 19:49 - 2009-07-14 06:45 - 00029200 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-08-13 19:36 - 2015-07-10 15:39 - 00000000 ___HD C:\$Windows.~BT 2015-08-13 18:48 - 2014-03-23 15:38 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-08-13 18:46 - 2014-03-23 15:29 - 00000000 ____D C:\Program Files (x86)\Google 2015-08-13 11:08 - 2014-03-26 08:17 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2015-08-13 11:08 - 2014-03-26 08:17 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2015-08-13 10:25 - 2014-03-24 12:41 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-08-10 19:21 - 2014-03-30 16:38 - 00000000 ____D C:\Users\mirjana\AppData\Local\CrashDumps 2015-08-10 19:10 - 2014-03-23 22:28 - 00000000 ____D C:\ProgramData\Skype 2015-08-09 07:13 - 2015-07-16 02:12 - 00162272 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll 2015-08-09 07:13 - 2015-07-16 02:12 - 00110352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll 2015-08-09 07:13 - 2015-07-16 02:11 - 12062080 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll 2015-08-09 07:13 - 2015-07-16 02:11 - 10191296 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll 2015-08-09 07:13 - 2015-07-16 02:11 - 08009376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll 2015-08-09 07:13 - 2015-07-16 02:11 - 07484112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll 2015-08-09 07:13 - 2015-07-16 02:11 - 01466744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll 2015-08-09 07:13 - 2015-07-16 02:11 - 01213224 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll 2015-08-09 07:13 - 2015-07-16 02:11 - 00144608 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll 2015-08-09 07:13 - 2015-07-16 02:11 - 00112400 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll 2015-08-09 07:10 - 2015-07-16 02:06 - 21631512 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys 2015-08-09 07:10 - 2015-07-16 02:00 - 39723024 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll 2015-08-09 07:10 - 2015-07-16 01:57 - 22327320 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll 2015-08-09 07:10 - 2015-07-16 01:13 - 00935448 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll 2015-08-09 07:10 - 2015-07-16 01:13 - 00673816 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys 2015-08-09 07:10 - 2015-07-16 01:13 - 00150552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll 2015-08-09 07:10 - 2015-07-16 01:12 - 00874520 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll 2015-08-08 22:24 - 2014-03-23 17:10 - 00000000 ____D C:\Program Files (x86)\Origin 2015-08-08 17:38 - 2015-07-10 13:06 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-08-08 17:38 - 2015-07-10 13:06 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-08-01 14:31 - 2014-02-06 09:48 - 00143117 _____ C:\Users\mirjana\Desktop\The.Hobbit.An.Unexpected.Journey.2012.EXTENDED.720p.BluRay.x264-GECKOS.srt 2015-07-22 01:42 - 2015-05-28 07:00 - 00102912 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\AtihdWT6.sys ==================== Files in the root of some directories ======= 2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Users\mirjana\AppData\Roaming\Km5z0T1 2015-04-20 16:05 - 2015-04-20 16:05 - 1246720 _____ () C:\Users\mirjana\AppData\Roaming\Km5z0T1.exe 2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\mirjana\AppData\Roaming\O9DaMoE9 2015-04-20 16:05 - 2015-04-20 16:05 - 1579520 _____ () C:\Users\mirjana\AppData\Roaming\O9DaMoE9.exe 2014-08-15 17:02 - 2014-08-15 17:37 - 0008783 _____ () C:\Users\mirjana\AppData\Roaming\PStrip.bak 2014-08-15 17:03 - 2014-08-15 17:26 - 0008778 _____ () C:\Users\mirjana\AppData\Roaming\PStrip.bk! 2014-08-15 17:06 - 2014-08-15 17:20 - 0008783 _____ () C:\Users\mirjana\AppData\Roaming\PStrip.bko 2015-02-08 19:12 - 2015-02-08 19:12 - 0000008 _____ () C:\ProgramData\- 2015-05-26 18:23 - 2015-07-11 17:18 - 0001335 _____ () C:\ProgramData\hpzinstall.log Some files in TEMP: ==================== C:\Users\mirjana\AppData\Local\Temp\7033.exe C:\Users\mirjana\AppData\Local\Temp\amt_oursurfing.exe C:\Users\mirjana\AppData\Local\Temp\AutoRun.exe C:\Users\mirjana\AppData\Local\Temp\AutoRunGUI.dll C:\Users\mirjana\AppData\Local\Temp\avgnt.exe C:\Users\mirjana\AppData\Local\Temp\EAInstall.dll C:\Users\mirjana\AppData\Local\Temp\eauninstall.exe C:\Users\mirjana\AppData\Local\Temp\Opera_NI_stable.exe C:\Users\mirjana\AppData\Local\Temp\optprosetup.exe C:\Users\mirjana\AppData\Local\Temp\The Battle for Middle-earth II_uninst.exe C:\Users\mirjana\AppData\Local\Temp\vlc-2.2.1-win32.exe C:\Users\Nikola\AppData\Local\Temp\avgnt.exe C:\Users\Nikola\AppData\Local\Temp\EAInstall.dll C:\Users\Nikola\AppData\Local\Temp\eauninstall.exe C:\Users\Nikola\AppData\Local\Temp\The Lord of the Rings, The Rise of the Witch-king_uninst.exe ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\wininit.exe => File is digitally signed C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\dnsapi.dll => File is digitally signed C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-08-13 20:34 ==================== End of log ============================ [Link mogu videti samo ulogovani korisnici]

Profil

Sass Drake Poslao: 21 Avg 2015 19:37 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Korak 1 Idi u Start -> Control Panel -> Programs and Features i deinstaliraj sljedeće programe. Ako neki odbije deinstalaciju preskoči ga i pređi na sljedeći. eShield Browser Security Record Page Reimage Repair Software Version Updater UpdateAdmin Korak 2 Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja. Start GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://services.freshy.com/general/newhometab.php?hometab=home&partner=11147&guid={A2D43EE7-C241-435D-8105-7D428F7B56BE}&i= HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://safesearch.avira.com/#web/result?source=repair&q= HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://services.freshy.com/general/newhometab.php?hometab=home&partner=11147&guid={A2D43EE7-C241-435D-8105-7D428F7B56BE}&i= HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://services.freshy.com/general/newhometab.php?hometab=home&partner=11147&guid={A2D43EE7-C241-435D-8105-7D428F7B56BE}&i= SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1001 -> DefaultScope {B44D390C-36C7-4F4A-B20A-D00DB37A80C9} URL = hxxp://search.eshield.com/serp?guid={52E40C1F-5B0B-4605-A928-B8413029FA50}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1001 -> {B44D390C-36C7-4F4A-B20A-D00DB37A80C9} URL = hxxp://search.eshield.com/serp?guid={52E40C1F-5B0B-4605-A928-B8413029FA50}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> DefaultScope {2667FCCE-DEB4-41D2-92CA-534E8292675D} URL = hxxp://search.findwide.com/serp?guid={A2D43EE7-C241-435D-8105-7D428F7B56BE}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> {2667FCCE-DEB4-41D2-92CA-534E8292675D} URL = hxxp://search.findwide.com/serp?guid={A2D43EE7-C241-435D-8105-7D428F7B56BE}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> {AD5E7C6E-576F-4A13-8FFA-639A61C76F99} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=tightropetb&type=11147 Toolbar: HKLM - eShield - {DFEAF413-9005-4EDB-9714-0E5A8022B1B4} - C:\Program Files (x86)\TNT2\2.0.0.1983\IEToolbar64.dll No File Toolbar: HKLM-x32 - eShield - {DFEAF413-9005-4EDB-9714-0E5A8022B1B4} - C:\Program Files (x86)\TNT2\2.0.0.1983\ietoolbar.dll No File Toolbar: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> No Name - {6850E5FA-A5BC-4E5D-98BF-2F0105860AEA} - No File FF Homepage: hxxp://www.oursurfing.com/?type=hp&ts=1440012799&z=d4b50829688a37f6f567d96g7z8z6e6e7gco2m3t4t&from=amt&uid=ST2000DM001-1CH164_Z340Q41DXXXXZ340Q41D FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [No File] FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [No File] FF user.js: detected! => C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\user.js [2015-08-19] FF SearchPlugin: C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\searchplugins\ask-search.xml [2014-12-03] FF Extension: CinemaP-1.9cV19.08 - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\AVJYFVOD75109374@HCDE39471360.com [2015-08-19] FF Extension: PriceExpert - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\support@priceexpert.com.xpi [2014-12-03] FF Extension: eShield - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\toolbar11433@eshield.com.xpi [2015-08-19] FF Extension: Record Page - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\{26a46a2e-a565-42b9-a3f1-96dc63b2a3cc}.xpi [2015-08-19] CHR Extension: (AVG Secure Search) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2015-05-01] CHR Extension: (CinemaP-1.9cV19.08) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2015-08-19] CHR HKLM-x32\...\Chrome\Extension: [dkmjljdbbgogihjcapfhgkonfmccbffp] - https://clients2.google.com/service/update2/crx CHR Extension: (Record Page) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\poihgldcgdeiiclapfocpigklbcgjlff [2015-08-19] OPR Extension: (CinemaP-1.9cV19.08) - C:\Users\mirjana\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2015-08-19] OPR Extension: (Record Page) - C:\Users\mirjana\AppData\Roaming\Opera Software\Opera Stable\Extensions\poihgldcgdeiiclapfocpigklbcgjlff [2015-08-19] S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe /medsvc [X] <==== ATTENTION CustomCLSID: HKU\S-1-5-21-1578651779-4044669291-1851725983-1001_Classes\CLSID\{DFEAF413-9005-4EDB-9714-0E5A8022B1B4}\InprocServer32 -> C:\Program Files (x86)\TNT2\2.0.0.1983\IEToolbar64.dll No File Task: {0A1907C5-B743-4A56-8A80-5F4CAA697EDE} - \RocketTab Update Task -> No File <==== ATTENTION Task: {0D25EB64-7E40-4C1B-9A3D-B739F90CFBBF} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-6 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-6.exe <==== ATTENTION Task: {1864D709-84D2-4396-BD29-A36DF79A8C2A} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6.exe <==== ATTENTION Task: {25A5BD20-BDC2-4775-86C0-4CD8F3CF0578} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-3 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-3.exe <==== ATTENTION Task: {29924996-E3BC-4554-91C7-A84CDCAEE366} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-7 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-7.exe <==== ATTENTION Task: {358DF819-B47F-4B57-9956-475F5E2B0044} - System32\Tasks\{CE407C24-2FD9-4560-BD04-B72F234D6AE0} => pcalua.exe -a "C:\Program Files (x86)\YouTube Accelerator\YTAUninstall.exe" Task: {38DD03E1-65BD-470C-8775-97CFB13C3A86} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION Task: {458ABA14-ED25-41C6-AA4A-15CAB8D612C9} - System32\Tasks\Reimage Reminder => C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe [2015-07-12] (Reimage ltd.) <==== ATTENTION Task: {4BCBA2D1-9EE4-444C-A51D-978900129915} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-10_user => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-10.exe <==== ATTENTION Task: {53CFD518-92AF-49D7-9BFC-C16DA802AE44} - System32\Tasks\{4D76E4ED-542F-4AED-9BC6-A35C983ADF41} => pcalua.exe -a "C:\Users\mirjana\Desktop\New Folder (2)\zoek.com" -d "C:\Users\mirjana\Desktop\New Folder (2)" Task: {55CAFB3B-6BF2-498E-A046-03B43F3CB0B6} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-4 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-4.exe <==== ATTENTION Task: {7CD8FFB1-5177-4BB3-BFA9-50301B5FBBBE} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2015-05-19] (Reimage®) <==== ATTENTION Task: {8700C0A6-129F-4FF5-BB84-1AD9E196E79D} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION Task: {8C98C443-C55E-45C8-BED9-259556BB4E15} - System32\Tasks\Origin => C:\ProgramData\Origin\update.vbe [2015-07-19] () <==== ATTENTION Task: {9ECC2A96-8617-4A8B-B667-E54B47083B88} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5_user => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.exe <==== ATTENTION Task: {A16C7041-322D-4C1F-951D-DC9C2E4254CC} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-14 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-14.exe <==== ATTENTION Task: {A1D363EF-E187-4FED-82D7-CD7010BD9EB5} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-13 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-13.exe <==== ATTENTION Task: {A603EC50-A770-4C43-9512-69A27AD9BC6B} - System32\Tasks\Km5z0T1 => C:\Users\mirjana\AppData\Roaming\Km5z0T1.exe [2015-04-20] () <==== ATTENTION Task: {AE39DA57-4120-4560-B6B8-2608324E4253} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-11 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-11.exe <==== ATTENTION Task: {B3F955E0-3F2C-41ED-8171-EDD51CC32285} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7.exe <==== ATTENTION Task: {BD79C056-4E1B-4C41-ABA9-28F349372E6D} - \RocketTab -> No File <==== ATTENTION Task: {BDC09DE9-7EE0-476A-A58F-674A9E79E67D} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.exe <==== ATTENTION Task: {DA6E716B-7B1A-459D-8BFC-C9D8978C1CE5} - System32\Tasks\UpdateAdmin => C:\Users\mirjana\AppData\Local\UpdateAdmin\UpdateAdmin.exe [2015-07-28] (DownloadAdmin) <==== ATTENTION Task: {DD7F9400-1B96-4A71-A920-B344AC3CAC8E} - System32\Tasks\{EFDF3296-EFDD-4879-B57D-4921C43B60C5} => pcalua.exe -a C:\Users\mirjana\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=smt Task: {E1DAA89A-5F55-4215-84AE-E14D9B0BCE0D} - System32\Tasks\AmiUpdXp => C:\Users\mirjana\AppData\Local\9844\Updater.exe <==== ATTENTION Task: {E56BD431-C5C2-4280-B517-40C3FADC93EB} - \Optimizer Pro Schedule -> No File <==== ATTENTION Task: C:\WINDOWS\Tasks\AmiUpdXp.job => 0x000A01001B7CA86B31725D4683DAB6BA2A5CACF146001401000000003C000A0020000000C045E604020007800013040000248021DF070800050015000D003800000021000000300043003A005C00550073006500720073005C006D00690072006A0061006E0061005C0041007000700044006100740061005C004C006F00630061006C005C0039003800340034005C0055007000640061007400650072002E0065007800650000000000000013006D00690072006A0061006E0061002D00500043005C006D00690072006A0061006E0061000000190053006F006600740077006100720065002000560065007200730069006F006E00200055007000640061007400650072000000000008000000000000000000020030000000DC07010001000000000000000D0038000000000000000000000000000700000001000000000000000000000030000100DC07010001000000000000000D003800A0050000640500000000000001000000010000000000000000000000 <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-10_user.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-10.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-11.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-11.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-13.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-13.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-14.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-14.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-3.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-3.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-4.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-4.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5_user.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-6.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-6.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-7.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-7.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\Crossbrowse.job => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\Km5z0T1.job => C:\Users\mirjana\AppData\Roaming\Km5z0T1.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\O9DaMoE9.job => C:\Users\mirjana\AppData\Roaming\O9DaMoE9.exe <==== ATTENTION AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 AlternateDataStreams: C:\ProgramData\TEMP:E9B3D507 C:\Program Files\Reimage C:\Program Files (x86)\TNT2 C:\Program Files (x86)\globalUpdate C:\Users\mirjana\AppData\Local\globalUpdate C:\Program Files (x86)\5c4ba7b1-e02a-4fb8-b690-68d3dfee477c C:\Users\mirjana\AppData\Roaming\Km5z0T1 C:\Users\mirjana\AppData\Roaming\Km5z0T1.exe C:\Users\mirjana\AppData\Roaming\O9DaMoE9 C:\Users\mirjana\AppData\Roaming\O9DaMoE9.exe C:\Users\mirjana\AppData\Roaming\PStrip.bak C:\Users\mirjana\AppData\Roaming\PStrip.bk! C:\Users\mirjana\AppData\Roaming\PStrip.bko C:\ProgramData\- C:\ProgramData\hpzinstall.log C:\Program Files (x86)\CinemaP-1.9cV19.08 C:\Program Files (x86)\YouTube Accelerator C:\Program Files (x86)\Crossbrowse C:\ProgramData\Origin\update.vbe C:\Users\mirjana\AppData\Local\UpdateAdmin C:\Users\mirjana\AppData\Roaming\mystartsearch C:\Users\mirjana\AppData\Local\9844 EmptyTemp: End U okviru Notepad-a klikni na File --> Save As Fajl nazovi Fixlist i sačuvaj na Desktop Dvoklikom ponovo pokreni FRST.exe Klikni na Fix i sačekaj dok program ne završi. Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi. Nakon završetka rada, otvoriće se fixlog.txt, sa sadržajem koji treba da kopiraš u temu. Takođe, na Desktop-u će se nalaziti (fixlog.txt). Korak 3 Preuzmi "Xplode"-ov AdwCleaner i sačuvaj ga na Desktop Dvoklikom pokreni program. u EULA prozoru klikni na I agree. Klikni na dugme Scan i sačekaj da se završi skeniranje. Klikni na dugme Cleaning i pričekaj da program završi. Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu. Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK Računar će se restartovati, a potom otvoriti Notepad (C:\AdwCleaner[S0].txt) sa izvještajem. Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl" Napomena: Izvještaj ce takođe biti sačuvan na C:\Adwcleaner\AdwCleaner[S0].txt

Profil

Mirabe Poslao: 21 Avg 2015 22:27 Idi na vrh
offline Mirabe Građanin Pridružio: 30 Dec 2008 Poruke: 193	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Fix result of Farbar Recovery Scan Tool (x64) Version:21-08-2015 Ran by mirjana (2015-08-21 21:42:58) Run:1 Running from C:\Users\mirjana\Desktop Loaded Profiles: mirjana & Nikola (Available Profiles: mirjana & Nikola) Boot Mode: Normal ============================================== fixlist content: *************** Start GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici]{A2D43EE7-C241-435D-8105-7D428F7B56BE}&i= HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Search Page = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici]{A2D43EE7-C241-435D-8105-7D428F7B56BE}&i= HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici]{A2D43EE7-C241-435D-8105-7D428F7B56BE}&i= SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1001 -> DefaultScope {B44D390C-36C7-4F4A-B20A-D00DB37A80C9} URL = [Link mogu videti samo ulogovani korisnici]{52E40C1F-5B0B-4605-A928-B8413029FA50}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1001 -> {B44D390C-36C7-4F4A-B20A-D00DB37A80C9} URL = [Link mogu videti samo ulogovani korisnici]{52E40C1F-5B0B-4605-A928-B8413029FA50}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> DefaultScope {2667FCCE-DEB4-41D2-92CA-534E8292675D} URL = [Link mogu videti samo ulogovani korisnici]{A2D43EE7-C241-435D-8105-7D428F7B56BE}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> {2667FCCE-DEB4-41D2-92CA-534E8292675D} URL = [Link mogu videti samo ulogovani korisnici]{A2D43EE7-C241-435D-8105-7D428F7B56BE}&action=default_search&k={searchTerms} SearchScopes: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> {AD5E7C6E-576F-4A13-8FFA-639A61C76F99} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&fr=tightropetb&type=11147 Toolbar: HKLM - eShield - {DFEAF413-9005-4EDB-9714-0E5A8022B1B4} - C:\Program Files (x86)\TNT2\2.0.0.1983\IEToolbar64.dll No File Toolbar: HKLM-x32 - eShield - {DFEAF413-9005-4EDB-9714-0E5A8022B1B4} - C:\Program Files (x86)\TNT2\2.0.0.1983\ietoolbar.dll No File Toolbar: HKU\S-1-5-21-1578651779-4044669291-1851725983-1005 -> No Name - {6850E5FA-A5BC-4E5D-98BF-2F0105860AEA} - No File FF Homepage: [Link mogu videti samo ulogovani korisnici] FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [No File] FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [No File] FF user.js: detected! => C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\user.js [2015-08-19] FF SearchPlugin: C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\searchplugins\ask-search.xml [2014-12-03] FF Extension: CinemaP-1.9cV19.08 - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\AVJYFVOD75109374@HCDE39471360.com [2015-08-19] FF Extension: PriceExpert - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\support@priceexpert.com.xpi [2014-12-03] FF Extension: eShield - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\toolbar11433@eshield.com.xpi [2015-08-19] FF Extension: Record Page - C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\{26a46a2e-a565-42b9-a3f1-96dc63b2a3cc}.xpi [2015-08-19] CHR Extension: (AVG Secure Search) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2015-05-01] CHR Extension: (CinemaP-1.9cV19.08) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2015-08-19] CHR HKLM-x32\...\Chrome\Extension: [dkmjljdbbgogihjcapfhgkonfmccbffp] - [Link mogu videti samo ulogovani korisnici] CHR Extension: (Record Page) - C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\poihgldcgdeiiclapfocpigklbcgjlff [2015-08-19] OPR Extension: (CinemaP-1.9cV19.08) - C:\Users\mirjana\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2015-08-19] OPR Extension: (Record Page) - C:\Users\mirjana\AppData\Roaming\Opera Software\Opera Stable\Extensions\poihgldcgdeiiclapfocpigklbcgjlff [2015-08-19] S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe /medsvc [X] <==== ATTENTION CustomCLSID: HKU\S-1-5-21-1578651779-4044669291-1851725983-1001_Classes\CLSID\{DFEAF413-9005-4EDB-9714-0E5A8022B1B4}\InprocServer32 -> C:\Program Files (x86)\TNT2\2.0.0.1983\IEToolbar64.dll No File Task: {0A1907C5-B743-4A56-8A80-5F4CAA697EDE} - \RocketTab Update Task -> No File <==== ATTENTION Task: {0D25EB64-7E40-4C1B-9A3D-B739F90CFBBF} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-6 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-6.exe <==== ATTENTION Task: {1864D709-84D2-4396-BD29-A36DF79A8C2A} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6.exe <==== ATTENTION Task: {25A5BD20-BDC2-4775-86C0-4CD8F3CF0578} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-3 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-3.exe <==== ATTENTION Task: {29924996-E3BC-4554-91C7-A84CDCAEE366} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-7 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-7.exe <==== ATTENTION Task: {358DF819-B47F-4B57-9956-475F5E2B0044} - System32\Tasks\{CE407C24-2FD9-4560-BD04-B72F234D6AE0} => pcalua.exe -a "C:\Program Files (x86)\YouTube Accelerator\YTAUninstall.exe" Task: {38DD03E1-65BD-470C-8775-97CFB13C3A86} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION Task: {458ABA14-ED25-41C6-AA4A-15CAB8D612C9} - System32\Tasks\Reimage Reminder => C:\Program Files\Reimage\Reimage Repair\ReimageReminder.exe [2015-07-12] (Reimage ltd.) <==== ATTENTION Task: {4BCBA2D1-9EE4-444C-A51D-978900129915} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-10_user => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-10.exe <==== ATTENTION Task: {53CFD518-92AF-49D7-9BFC-C16DA802AE44} - System32\Tasks\{4D76E4ED-542F-4AED-9BC6-A35C983ADF41} => pcalua.exe -a "C:\Users\mirjana\Desktop\New Folder (2)\zoek.com" -d "C:\Users\mirjana\Desktop\New Folder (2)" Task: {55CAFB3B-6BF2-498E-A046-03B43F3CB0B6} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-4 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-4.exe <==== ATTENTION Task: {7CD8FFB1-5177-4BB3-BFA9-50301B5FBBBE} - System32\Tasks\ReimageUpdater => C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [2015-05-19] (Reimage®) <==== ATTENTION Task: {8700C0A6-129F-4FF5-BB84-1AD9E196E79D} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION Task: {8C98C443-C55E-45C8-BED9-259556BB4E15} - System32\Tasks\Origin => C:\ProgramData\Origin\update.vbe [2015-07-19] () <==== ATTENTION Task: {9ECC2A96-8617-4A8B-B667-E54B47083B88} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5_user => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.exe <==== ATTENTION Task: {A16C7041-322D-4C1F-951D-DC9C2E4254CC} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-14 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-14.exe <==== ATTENTION Task: {A1D363EF-E187-4FED-82D7-CD7010BD9EB5} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-13 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-13.exe <==== ATTENTION Task: {A603EC50-A770-4C43-9512-69A27AD9BC6B} - System32\Tasks\Km5z0T1 => C:\Users\mirjana\AppData\Roaming\Km5z0T1.exe [2015-04-20] () <==== ATTENTION Task: {AE39DA57-4120-4560-B6B8-2608324E4253} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-11 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-11.exe <==== ATTENTION Task: {B3F955E0-3F2C-41ED-8171-EDD51CC32285} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7.exe <==== ATTENTION Task: {BD79C056-4E1B-4C41-ABA9-28F349372E6D} - \RocketTab -> No File <==== ATTENTION Task: {BDC09DE9-7EE0-476A-A58F-674A9E79E67D} - System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5 => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.exe <==== ATTENTION Task: {DA6E716B-7B1A-459D-8BFC-C9D8978C1CE5} - System32\Tasks\UpdateAdmin => C:\Users\mirjana\AppData\Local\UpdateAdmin\UpdateAdmin.exe [2015-07-28] (DownloadAdmin) <==== ATTENTION Task: {DD7F9400-1B96-4A71-A920-B344AC3CAC8E} - System32\Tasks\{EFDF3296-EFDD-4879-B57D-4921C43B60C5} => pcalua.exe -a C:\Users\mirjana\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=smt Task: {E1DAA89A-5F55-4215-84AE-E14D9B0BCE0D} - System32\Tasks\AmiUpdXp => C:\Users\mirjana\AppData\Local\9844\Updater.exe <==== ATTENTION Task: {E56BD431-C5C2-4280-B517-40C3FADC93EB} - \Optimizer Pro Schedule -> No File <==== ATTENTION Task: C:\WINDOWS\Tasks\AmiUpdXp.job => 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ask: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-10_user.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-10.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-11.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-11.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-13.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-13.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-14.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-14.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-3.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-3.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-4.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-4.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5_user.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-6.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-6.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-7.job => C:\Program Files (x86)\CinemaP-1.9cV19.08\c48cb716-5749-4da9-8a08-3fba94faf6a6-7.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\Crossbrowse.job => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\Km5z0T1.job => C:\Users\mirjana\AppData\Roaming\Km5z0T1.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\O9DaMoE9.job => C:\Users\mirjana\AppData\Roaming\O9DaMoE9.exe <==== ATTENTION AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 AlternateDataStreams: C:\ProgramData\TEMP:E9B3D507 C:\Program Files\Reimage C:\Program Files (x86)\TNT2 C:\Program Files (x86)\globalUpdate C:\Users\mirjana\AppData\Local\globalUpdate C:\Program Files (x86)\5c4ba7b1-e02a-4fb8-b690-68d3dfee477c C:\Users\mirjana\AppData\Roaming\Km5z0T1 C:\Users\mirjana\AppData\Roaming\Km5z0T1.exe C:\Users\mirjana\AppData\Roaming\O9DaMoE9 C:\Users\mirjana\AppData\Roaming\O9DaMoE9.exe C:\Users\mirjana\AppData\Roaming\PStrip.bak C:\Users\mirjana\AppData\Roaming\PStrip.bk! C:\Users\mirjana\AppData\Roaming\PStrip.bko C:\ProgramData\- C:\ProgramData\hpzinstall.log C:\Program Files (x86)\CinemaP-1.9cV19.08 C:\Program Files (x86)\YouTube Accelerator C:\Program Files (x86)\Crossbrowse C:\ProgramData\Origin\update.vbe C:\Users\mirjana\AppData\Local\UpdateAdmin C:\Users\mirjana\AppData\Roaming\mystartsearch C:\Users\mirjana\AppData\Local\9844 EmptyTemp: End ************* C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully "HKLM\SOFTWARE\Policies\Google" => key removed successfully HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\Software\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully "HKU\S-1-5-21-1578651779-4044669291-1851725983-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B44D390C-36C7-4F4A-B20A-D00DB37A80C9}" => key removed successfully HKCR\CLSID\{B44D390C-36C7-4F4A-B20A-D00DB37A80C9} => key not found. HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully "HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2667FCCE-DEB4-41D2-92CA-534E8292675D}" => key removed successfully HKCR\CLSID\{2667FCCE-DEB4-41D2-92CA-534E8292675D} => key not found. "HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AD5E7C6E-576F-4A13-8FFA-639A61C76F99}" => key removed successfully HKCR\CLSID\{AD5E7C6E-576F-4A13-8FFA-639A61C76F99} => key not found. HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{DFEAF413-9005-4EDB-9714-0E5A8022B1B4} => value removed successfully "HKCR\CLSID\{DFEAF413-9005-4EDB-9714-0E5A8022B1B4}" => key removed successfully HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{DFEAF413-9005-4EDB-9714-0E5A8022B1B4} => value removed successfully "HKCR\Wow6432Node\CLSID\{DFEAF413-9005-4EDB-9714-0E5A8022B1B4}" => key removed successfully HKU\S-1-5-21-1578651779-4044669291-1851725983-1005\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{6850E5FA-A5BC-4E5D-98BF-2F0105860AEA} => value removed successfully HKCR\CLSID\{6850E5FA-A5BC-4E5D-98BF-2F0105860AEA} => key not found. Firefox "homepage" removed successfully "HKLM\Software\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10" => key removed successfully "HKLM\Software\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4" => key removed successfully C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\user.js => moved successfully C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\searchplugins\ask-search.xml => moved successfully C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\AVJYFVOD75109374@HCDE39471360.com => moved successfully C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\AVJYFVOD75109374@HCDE39471360.com => path removed successfullyC:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\support@priceexpert.com.xpi => moved successfully C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\toolbar11433@eshield.com.xpi => moved successfully C:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\toolbar11433@eshield.com.xpi => path removed successfullyC:\Users\mirjana\AppData\Roaming\Mozilla\Firefox\Profiles\pki4np0x.default-1411661550016\Extensions\{26a46a2e-a565-42b9-a3f1-96dc63b2a3cc}.xpi => moved successfully C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn => moved successfully C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi => moved successfully "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dkmjljdbbgogihjcapfhgkonfmccbffp" => key removed successfully C:\Users\mirjana\AppData\Local\Google\Chrome\User Data\Default\Extensions\poihgldcgdeiiclapfocpigklbcgjlff => moved successfully C:\Users\mirjana\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi => moved successfully C:\Users\mirjana\AppData\Roaming\Opera Software\Opera Stable\Extensions\poihgldcgdeiiclapfocpigklbcgjlff => moved successfully globalUpdatem => service removed successfully HKU\S-1-5-21-1578651779-4044669291-1851725983-1001_Classes\CLSID\{DFEAF413-9005-4EDB-9714-0E5A8022B1B4} => key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0A1907C5-B743-4A56-8A80-5F4CAA697EDE}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0A1907C5-B743-4A56-8A80-5F4CAA697EDE}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RocketTab Update Task" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0D25EB64-7E40-4C1B-9A3D-B739F90CFBBF}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0D25EB64-7E40-4C1B-9A3D-B739F90CFBBF}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-6 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-6" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1864D709-84D2-4396-BD29-A36DF79A8C2A}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1864D709-84D2-4396-BD29-A36DF79A8C2A}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{25A5BD20-BDC2-4775-86C0-4CD8F3CF0578}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{25A5BD20-BDC2-4775-86C0-4CD8F3CF0578}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-3 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-3" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{29924996-E3BC-4554-91C7-A84CDCAEE366}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{29924996-E3BC-4554-91C7-A84CDCAEE366}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-7 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-7" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{358DF819-B47F-4B57-9956-475F5E2B0044}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{358DF819-B47F-4B57-9956-475F5E2B0044}" => key removed successfully C:\WINDOWS\System32\Tasks\{CE407C24-2FD9-4560-BD04-B72F234D6AE0} => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{CE407C24-2FD9-4560-BD04-B72F234D6AE0}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{38DD03E1-65BD-470C-8775-97CFB13C3A86}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{38DD03E1-65BD-470C-8775-97CFB13C3A86}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{458ABA14-ED25-41C6-AA4A-15CAB8D612C9}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{458ABA14-ED25-41C6-AA4A-15CAB8D612C9}" => key removed successfully C:\WINDOWS\System32\Tasks\Reimage Reminder => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Reimage Reminder" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4BCBA2D1-9EE4-444C-A51D-978900129915}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4BCBA2D1-9EE4-444C-A51D-978900129915}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-10_user => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-10_user" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{53CFD518-92AF-49D7-9BFC-C16DA802AE44}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53CFD518-92AF-49D7-9BFC-C16DA802AE44}" => key removed successfully C:\WINDOWS\System32\Tasks\{4D76E4ED-542F-4AED-9BC6-A35C983ADF41} => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4D76E4ED-542F-4AED-9BC6-A35C983ADF41}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{55CAFB3B-6BF2-498E-A046-03B43F3CB0B6}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{55CAFB3B-6BF2-498E-A046-03B43F3CB0B6}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-4 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-4" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7CD8FFB1-5177-4BB3-BFA9-50301B5FBBBE}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7CD8FFB1-5177-4BB3-BFA9-50301B5FBBBE}" => key removed successfully C:\WINDOWS\System32\Tasks\ReimageUpdater => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ReimageUpdater" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8700C0A6-129F-4FF5-BB84-1AD9E196E79D}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8700C0A6-129F-4FF5-BB84-1AD9E196E79D}" => key removed successfully C:\WINDOWS\System32\Tasks\Crossbrowse => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Crossbrowse" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8C98C443-C55E-45C8-BED9-259556BB4E15}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C98C443-C55E-45C8-BED9-259556BB4E15}" => key removed successfully C:\WINDOWS\System32\Tasks\Origin => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Origin" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9ECC2A96-8617-4A8B-B667-E54B47083B88}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9ECC2A96-8617-4A8B-B667-E54B47083B88}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5_user => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-5_user" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A16C7041-322D-4C1F-951D-DC9C2E4254CC}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A16C7041-322D-4C1F-951D-DC9C2E4254CC}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-14 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-14" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A1D363EF-E187-4FED-82D7-CD7010BD9EB5}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1D363EF-E187-4FED-82D7-CD7010BD9EB5}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-13 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-13" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A603EC50-A770-4C43-9512-69A27AD9BC6B}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A603EC50-A770-4C43-9512-69A27AD9BC6B}" => key removed successfully C:\WINDOWS\System32\Tasks\Km5z0T1 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Km5z0T1" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AE39DA57-4120-4560-B6B8-2608324E4253}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AE39DA57-4120-4560-B6B8-2608324E4253}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-11 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-11" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B3F955E0-3F2C-41ED-8171-EDD51CC32285}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B3F955E0-3F2C-41ED-8171-EDD51CC32285}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BD79C056-4E1B-4C41-ABA9-28F349372E6D}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BD79C056-4E1B-4C41-ABA9-28F349372E6D}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RocketTab" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{BDC09DE9-7EE0-476A-A58F-674A9E79E67D}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BDC09DE9-7EE0-476A-A58F-674A9E79E67D}" => key removed successfully C:\WINDOWS\System32\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5 => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c48cb716-5749-4da9-8a08-3fba94faf6a6-5" => key removed successfully HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DA6E716B-7B1A-459D-8BFC-C9D8978C1CE5} => key not found. C:\WINDOWS\System32\Tasks\UpdateAdmin not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\UpdateAdmin => key not found. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DD7F9400-1B96-4A71-A920-B344AC3CAC8E}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD7F9400-1B96-4A71-A920-B344AC3CAC8E}" => key removed successfully C:\WINDOWS\System32\Tasks\{EFDF3296-EFDD-4879-B57D-4921C43B60C5} => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{EFDF3296-EFDD-4879-B57D-4921C43B60C5}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E1DAA89A-5F55-4215-84AE-E14D9B0BCE0D}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E1DAA89A-5F55-4215-84AE-E14D9B0BCE0D}" => key removed successfully C:\WINDOWS\System32\Tasks\AmiUpdXp => moved successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AmiUpdXp" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E56BD431-C5C2-4280-B517-40C3FADC93EB}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E56BD431-C5C2-4280-B517-40C3FADC93EB}" => key removed successfully "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Optimizer Pro Schedule" => key removed successfully C:\WINDOWS\Tasks\AmiUpdXp.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-6.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-1-7.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-10_user.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-11.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-13.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-14.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-3.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-4.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-5_user.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-6.job => moved successfully C:\WINDOWS\Tasks\c48cb716-5749-4da9-8a08-3fba94faf6a6-7.job => moved successfully C:\WINDOWS\Tasks\Crossbrowse.job => moved successfully C:\WINDOWS\Tasks\Km5z0T1.job => moved successfully C:\WINDOWS\Tasks\O9DaMoE9.job => moved successfully C:\ProgramData\TEMP => ":56E2E879" ADS removed successfully. C:\ProgramData\TEMP => ":E9B3D507" ADS removed successfully. C:\Program Files\Reimage => moved successfully "C:\Program Files (x86)\TNT2" => File/Folder not found. "C:\Program Files (x86)\globalUpdate" => File/Folder not found. C:\Users\mirjana\AppData\Local\globalUpdate => moved successfully C:\Program Files (x86)\5c4ba7b1-e02a-4fb8-b690-68d3dfee477c => moved successfully C:\Users\mirjana\AppData\Roaming\Km5z0T1 => moved successfully C:\Users\mirjana\AppData\Roaming\Km5z0T1.exe => moved successfully C:\Users\mirjana\AppData\Roaming\O9DaMoE9 => moved successfully C:\Users\mirjana\AppData\Roaming\O9DaMoE9.exe => moved successfully C:\Users\mirjana\AppData\Roaming\PStrip.bak => moved successfully C:\Users\mirjana\AppData\Roaming\PStrip.bk! => moved successfully C:\Users\mirjana\AppData\Roaming\PStrip.bko => moved successfully C:\ProgramData\- => moved successfully C:\ProgramData\hpzinstall.log => moved successfully "C:\Program Files (x86)\CinemaP-1.9cV19.08" => File/Folder not found. "C:\Program Files (x86)\YouTube Accelerator" => File/Folder not found. "C:\Program Files (x86)\Crossbrowse" => File/Folder not found. C:\ProgramData\Origin\update.vbe => moved successfully "C:\Users\mirjana\AppData\Local\UpdateAdmin" => File/Folder not found. "C:\Users\mirjana\AppData\Roaming\mystartsearch" => File/Folder not found. C:\Users\mirjana\AppData\Local\9844 => moved successfully EmptyTemp: => 3.7 GB temporary data Removed. The system needed a reboot.. ==== End of Fixlog 21:45:18 ==== [Link mogu videti samo ulogovani korisnici]**

Profil

Sass Drake Poslao: 22 Avg 2015 00:18 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kakvo je sada stanje? Preuzmi instalaciju za Malwarebytes Anti-Malware (MBAM) ver.2.0 i instaliraj aplikaciju. Dvoklik na mbam-setup.exe i prati uputstva za instalaciju. Instalacija je klasicna, "Next > I Agree . . > Next > Install" princip. Po zavrsenoj instalaciji, klikni Finish. Napomena: 14 dana besplatna trail verzija je pre-selektovana. Mozes decekirati ovu opciju ako zelis. - Po prvom pokretanju, MBAM ce zapoceti "Update" u nameri da preuzme najsvezije definicije. Ili ... klik na 'Update Now >>' link ili dugme radi preuzimanja svezih definicija. • Konfigurisati skener; Na 'Settings' tabu, Detection and Protection podesiti sledece opcije: 1. pod-tab Detection Options, cekirati kucicu za 'Scan for rootkits'; 2. pod-tab Non-Malware Protection, za 'PUP detections', prostarati se da je selektovana 'Threat detections as malware' opcija. • Izvrsiti 'Threat Scan'; Klik na Scan tab, zatim na 'Scan Now >>' da bi izvrsio skeniranje. Ukoliko MBAM prijavi da je 'update' dostupan, klik na 'Update Now' a potom nastaviti do skeniranja. Obavestenje: kod nekih teskih infekcija, moguce je dobiti sledecu poruku "Could not load DDA driver". U tom slucaju, klik Yes na tu poruku, dopustiti ucitavanje drajvera po restartu racunara, dozvoliti restart. Potom, nastaviti sa ostatkom instrukcija. • Po zavrsenom skeniranju, klik na Apply Action dugme ukoliko je pretnja detektovana. Sacekati da program zatrazi restart! - Klik na Yes na poruku koja govori da ce se sistem restartovati. • Postaviti izvestaj (export-ovati logfile) na uvid; Ponovo pokrenuti MBAM, klik na History tab > Application Logs. Dvoklik na 'Scan Log' koji pokazuje vreme i datum upravo izvrsenog skeniranja. 1. U novom prozoru klik na 'Export' dugme, pa izabrati 'Text file (*.txt)'; 2. Kada se pojavi Save File dialog, izabrati da se log sacuva na Desktop. U tom istom prozoru, dole pod File name: upisi 'mbam' kao naziv izvestaja i klikni dugme Save. - Po dobijenoj poruci ("Your file has been successfully exported") izvestaj koji si nazvao kao 'mbam' bice sacuvan na Desktop. Okaci mbam.txt uz poruku koristeci opciju Prikači fajl.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Ponovo je kompjuter u problemu

Ko je trenutno na forumu

Ukupno su 962 korisnika na forumu :: 65 registrovanih, 8 sakrivenih i 889 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 100ka, _stipa_, acov34, ALBION101, Areal84, Ba4e, Banovo Brdo, bbrasnjo3, Bivan, brufen, BUDDAR70, Cicumile, cojapop, cole77, colji, Crazzer, cyprus, dacanaldo, dane007, Denaya, Doc, eagle.rs, Fabius, FileFinder, Gogi_avio, goranjovic, ikan, indja, Jerry Drake, Jose, klepesina, kolle.the.kid, Koča, ladro, Lazarus, maCvele, Marko1238, Metanoja, Mi lao shu, milbos, novator, opt1, Orijen, Oscar2, Parker, pceklic, PrincipL, RAKITNICA, rebcooil, redstar72, samo opusteno, shaja1, Sir Budimir, tenkiasta71, tihi-posmatrac, Tribal, troki1971, tvlada, vathra, voja64, volimpivuvolimrakiju, vukajlo71, vuksa72, yrraf, zeka013

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by