Kompjuter i pretrazivaci usporeni

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 21 Maj 2015 15:24

Pozdrav , moze pomoc ? ... evo logovi:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-05-2015
Ran by Mr.X (administrator) on A-1CB567876E694 on 21-05-2015 15:16:13
Running from C:\Documents and Settings\Mr.X\My Documents\Преузимања
Loaded Profiles: Mr.X & UpdatusUser (Available profiles: Mr.X & UpdatusUser)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Desktop.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2013-01-31] ()
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20143176 2013-04-02] (Realtek Semiconductor Corp.)
HKU\S-1-5-21-583907252-1060284298-1801674531-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [31280256 2015-04-17] (Skype Technologies S.A.)
HKU\S-1-5-21-583907252-1060284298-1801674531-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\ccleaner.exe [6278424 2015-04-23] (Piriform Ltd)
SecurityProviders: msapsspc.dll, schannel.dll, credssp.dll, digest.dll, msnsspc.dll
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Mr.X\Application Data\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Mr.X\Application Data\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Mr.X\Application Data\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Mr.X\Application Data\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-19\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-20\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-583907252-1060284298-1801674531-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-583907252-1060284298-1801674531-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-583907252-1060284298-1801674531-1003\Software\Microsoft\Internet Explorer\Main,Start Page = msn.com/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-583907252-1060284298-1801674531-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?ocid=iehp
URLSearchHook: [S-1-5-21-583907252-1060284298-1801674531-1004] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-02-16] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-16] (Oracle Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2012-06-13] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2012-06-13] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Mr.X\Application Data\Mozilla\Firefox\Profiles\m6mxdzlj.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-20] ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-16] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-16] (Oracle Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin HKU\S-1-5-21-583907252-1060284298-1801674531-1003: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Documents and Settings\Mr.X\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-583907252-1060284298-1801674531-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\Mr.X\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll [2015-05-11] (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\pogodakyu.xml [2015-05-14]
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\vokabular.xml [2015-05-14]

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.rs/"
CHR Profile: C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-15]
CHR Extension: (Google Drive) - C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-15]
CHR Extension: (YouTube) - C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-15]
CHR Extension: (Adblock Plus) - C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-05-15]
CHR Extension: (Google Search) - C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-15]
CHR Extension: (Google Sheets) - C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-15]
CHR Extension: (Bookmark Manager) - C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-15]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-15]
CHR Extension: (Gmail) - C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-15]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5448976 2015-04-17] (TeamViewer GmbH)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
S3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1714176 2010-01-05] (Atheros Communications, Inc.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R3 ltmodem5; C:\WINDOWS\System32\DRIVERS\ltmdmnt.sys [606684 2008-04-13] (LT)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-04-14] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [119512 2015-05-21] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R0 mv61xxmm; C:\WINDOWS\system32\Drivers\mv61xxmm.sys [13616 2012-06-13] (Marvell Semiconductor Inc.)
R0 mv64xxmm; C:\WINDOWS\system32\Drivers\mv64xxmm.sys [5632 2012-06-13] (Marvell Semiconductor Inc.) [File not signed]
R0 mvxxmm; C:\WINDOWS\system32\Drivers\mvxxmm.sys [13616 2012-06-13] (Marvell Semiconductor Inc.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R0 sfdrv01; C:\WINDOWS\System32\drivers\sfdrv01.sys [50688 2005-08-10] (Protection Technology) [File not signed]
R0 sfhlp02; C:\WINDOWS\System32\drivers\sfhlp02.sys [6656 2005-05-16] (Protection Technology) [File not signed]
R0 sfsync02; C:\WINDOWS\System32\drivers\sfsync02.sys [19968 2005-08-10] (Protection Technology) [File not signed]
R0 sfvfs02; C:\WINDOWS\System32\drivers\sfvfs02.sys [66048 2005-09-29] (Protection Technology) [File not signed]
S4 IntelIde; No ImagePath
S3 SPLITCAM; system32\DRIVERS\splitcam.sys [X]
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-21 15:16 - 2015-05-21 15:16 - 00000000 ____D () C:\FRST
2015-05-16 16:49 - 2015-05-16 16:49 - 00000000 ____D () C:\Documents and Settings\Mr.X\Application Data\Unity
2015-05-16 16:48 - 2015-05-16 16:48 - 00000000 ____D () C:\Documents and Settings\Mr.X\Local Settings\Application Data\Unity
2015-05-16 16:47 - 2015-05-21 15:16 - 00000000 ____D () C:\Documents and Settings\Mr.X\My Documents\Преузимања
2015-05-16 16:42 - 2015-05-16 16:42 - 00000730 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
2015-05-16 16:42 - 2015-05-16 16:42 - 00000724 _____ () C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
2015-05-16 16:42 - 2015-05-16 16:42 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-05-16 16:42 - 2015-05-16 16:42 - 00000000 ____D () C:\Documents and Settings\Mr.X\Application Data\Mozilla
2015-05-15 23:40 - 2015-05-15 23:40 - 00001114 _____ () C:\DelFix.txt
2015-05-15 23:40 - 2015-05-15 23:40 - 00000000 ____D () C:\WINDOWS\ERUNT
2015-05-15 23:13 - 2015-05-15 23:13 - 00000777 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-15 23:13 - 2015-05-15 23:13 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-05-15 23:13 - 2015-05-15 23:13 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2015-05-15 23:13 - 2015-04-14 09:37 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-05-15 23:07 - 2015-05-15 23:07 - 00001592 _____ () C:\Documents and Settings\Mr.X\Desktop\Counter-Strike WaRzOnE.lnk
2015-05-15 23:07 - 2015-05-15 23:07 - 00000688 _____ () C:\Documents and Settings\Mr.X\Desktop\Half-Life WaRzOnE.lnk
2015-05-15 23:07 - 2015-05-15 23:07 - 00000000 ____D () C:\Documents and Settings\Mr.X\Start Menu\Programs\HLDS
2015-05-15 23:07 - 2015-05-15 23:07 - 00000000 ____D () C:\Documents and Settings\Mr.X\Start Menu\Programs\Half-Life
2015-05-15 23:07 - 2015-05-15 23:07 - 00000000 ____D () C:\Documents and Settings\Mr.X\Start Menu\Programs\Counter-Strike
2015-05-15 23:02 - 2015-05-15 23:02 - 00000000 ____D () C:\Games
2015-05-15 22:51 - 2015-05-15 23:13 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2015-05-15 22:50 - 2015-05-21 15:10 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-05-15 22:50 - 2015-05-15 23:12 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable)
2015-05-15 22:49 - 2015-04-14 09:37 - 00120024 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-05-15 22:44 - 2015-05-15 22:44 - 00001815 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2015-05-15 22:44 - 2015-05-15 22:44 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Google Chrome
2015-05-15 22:42 - 2015-05-21 14:55 - 00000920 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-15 22:42 - 2015-05-21 13:53 - 00000916 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-15 22:42 - 2015-05-15 22:43 - 00000000 ____D () C:\Program Files\Google
2015-05-15 22:15 - 2015-05-15 22:15 - 00000000 ____D () C:\WINDOWS\pss
2015-05-15 22:11 - 2015-05-15 22:11 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
2015-05-15 22:11 - 2015-05-15 22:11 - 00000000 ____D () C:\Program Files\CCleaner
2015-05-15 22:11 - 2015-05-15 22:11 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner
2015-05-15 21:52 - 2015-05-15 21:52 - 00000000 ____D () C:\RegBackup
2015-05-15 21:30 - 2015-05-15 21:30 - 00000706 _____ () C:\Documents and Settings\All Users\Desktop\TeamViewer 10.lnk
2015-05-15 21:30 - 2015-05-15 21:30 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\TeamViewer 10
2015-05-15 21:29 - 2015-05-15 21:30 - 00000000 ____D () C:\Program Files\TeamViewer
2015-05-14 21:33 - 2015-05-14 21:33 - 00000825 _____ () C:\Documents and Settings\Mr.X\Start Menu\µTorrent.lnk
2015-05-14 21:33 - 2015-05-14 21:33 - 00000825 _____ () C:\Documents and Settings\Mr.X\Desktop\µTorrent.lnk
2015-05-01 12:37 - 2015-05-01 12:38 - 00000000 ____D () C:\Documents and Settings\Mr.X\Application Data\ViberPC
2015-04-30 16:15 - 2015-05-21 13:53 - 00002267 _____ () C:\Documents and Settings\All Users\Desktop\Skype.lnk
2015-04-30 16:15 - 2015-04-30 16:15 - 00000000 ___RD () C:\Program Files\Skype
2015-04-30 16:15 - 2015-04-30 16:15 - 00000000 ____D () C:\Program Files\Common Files\Skype
2015-04-30 16:15 - 2015-04-30 16:15 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Skype

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-21 15:17 - 2013-11-19 17:30 - 00000000 ____D () C:\Documents and Settings\Mr.X\Application Data\Skype
2015-05-21 15:17 - 2013-11-19 16:18 - 00000000 ____D () C:\Documents and Settings\Mr.X\Local Settings\Temp
2015-05-21 15:06 - 2014-10-19 00:01 - 00000994 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-583907252-1060284298-1801674531-1003UA.job
2015-05-21 14:37 - 2013-11-19 17:46 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-05-21 13:54 - 2013-11-19 16:08 - 01913209 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-21 13:53 - 2013-11-19 17:00 - 00000157 _____ () C:\WINDOWS\wiadebug.log
2015-05-21 13:53 - 2013-11-19 17:00 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-05-21 13:53 - 2013-11-19 16:15 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-21 13:49 - 2008-04-14 14:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-05-21 00:06 - 2014-10-19 00:01 - 00000972 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-583907252-1060284298-1801674531-1003Core.job
2015-05-20 15:37 - 2013-11-19 16:15 - 00032546 _____ () C:\WINDOWS\SchedLgU.Txt
2015-05-20 14:10 - 2013-11-19 16:18 - 00000000 ____D () C:\Documents and Settings\Mr.X
2015-05-19 13:18 - 2013-11-19 16:18 - 00000178 ___SH () C:\Documents and Settings\Mr.X\ntuser.ini
2015-05-17 17:01 - 2013-11-19 16:19 - 00068352 _____ () C:\Documents and Settings\Mr.X\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2015-05-16 16:42 - 2014-05-26 10:40 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-05-15 23:34 - 2013-11-19 16:51 - 00000000 ____D () C:\WINDOWS\system
2015-05-15 23:01 - 2013-11-19 17:24 - 00000000 ____D () C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google
2015-05-15 22:40 - 2013-11-19 16:18 - 00000803 _____ () C:\Documents and Settings\Mr.X\Start Menu\Programs\Internet Explorer.lnk
2015-05-15 22:36 - 2013-11-19 16:35 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVAST Software
2015-05-15 22:12 - 2014-06-11 15:40 - 00000000 ____D () C:\WINDOWS\Minidump
2015-05-15 22:12 - 2013-12-11 12:18 - 00000000 ____D () C:\Documents and Settings\Mr.X\Application Data\uTorrent
2015-05-15 21:54 - 2013-11-19 17:07 - 00000178 ___SH () C:\Documents and Settings\UpdatusUser\ntuser.ini
2015-05-15 21:46 - 2013-11-19 16:54 - 00263024 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-13 14:14 - 2013-11-19 16:58 - 00359090 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-05 10:00 - 2013-11-19 16:07 - 00000000 ____D () C:\WINDOWS\system32\Restore
2015-05-01 15:13 - 2014-02-07 19:18 - 00000000 ___RD () C:\Documents and Settings\Mr.X\Desktop\Ivanče
2015-04-30 16:16 - 2013-11-19 17:29 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

Dopuna: 21 Maj 2015 15:24

mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Zdravo,

1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-19\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-20\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-583907252-1060284298-1801674531-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-583907252-1060284298-1801674531-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
URLSearchHook: [S-1-5-21-583907252-1060284298-1801674531-1004] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =



2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.

3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.



Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 19-05-2015
Ran by Mr.X at 2015-05-22 16:29:26 Run:1
Running from C:\Documents and Settings\Mr.X\Desktop
Loaded Profiles: Mr.X & UpdatusUser (Available profiles: Mr.X & UpdatusUser)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-19\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-20\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-583907252-1060284298-1801674531-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-583907252-1060284298-1801674531-1004\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
URLSearchHook: [S-1-5-21-583907252-1060284298-1801674531-1004] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
*****************

"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => Key deleted successfully.
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => Key not found.
"HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-19\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-20\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-583907252-1060284298-1801674531-1003\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-583907252-1060284298-1801674531-1004\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
Error setting Default URLSearchHook.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.

==== End of Fixlog 16:29:26 ====

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Da li ima nekih problema i kakvih?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pa pretrazivaci su mi i dalje sporiji , moze li se tu sta uraditi ?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Preuzmi smeenk-ov zoek.zip ili zoek.rar () sa ovog ili ovog linka i sačuvaj ga na Desktop.

Raspakuj arhivu u neki folder (uputstvo), a zatim:

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:

 
emptyclsid;
emptyfolderscheck;delete
emptyalltemp;
autoclean;


Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Kopiraj sadrzaj tog loga u poruku.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by Mr.X on sub 23.05.2015 at 20:43:06,89.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Mr.X\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

23.5.2015 20:43:54 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\Program Files\Ubisoft deleted successfully
C:\Program Files\Common Files\Blizzard Entertainment deleted successfully
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes' Anti-Malware (portable) deleted successfully
C:\Documents and Settings\Mr.X\Local Settings\Application Data\cache deleted successfully
C:\Documents and Settings\Mr.X\Local Settings\Application Data\GHISLER deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Program Files\Ubisoft not found
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes' Anti-Malware (portable) not found
C:\Program Files\ComPlus Applications deleted
C:\Program Files\WindowsUpdate deleted
C:\Documents and Settings\Mr.X\.android deleted
C:\Documents and Settings\Mr.X\Local Settings\Application Data\CrashRpt deleted
C:\WINDOWS\system32\sasnative32.exe deleted
C:\WINDOWS\system32\GroupPolicy\Machine deleted
C:\WINDOWS\system32\GroupPolicy\User deleted
C:\WINDOWS\system32\GroupPolicy\gpt.ini deleted
"C:\WINDOWS\Installer\2a88b.msi" deleted
"C:\Documents and Settings\Mr.X\Application Data\ViberPC\config.db" deleted
"C:\Documents and Settings\Mr.X\Application Data\ViberPC\info.db" deleted
"C:\Documents and Settings\Mr.X\Application Data\ViberPC" deleted

==== Firefox Extensions ======================

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Documents and Settings\Mr.X\Application Data\Mozilla\Firefox\Profiles\m6mxdzlj.default
28000D7EEB2FD95A36E1A7539F599C3B - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM
5D41BCD19A3D90E4EBB58A6BFB79E4F7 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
8B6884E3E1E5F8ABA5FA0C6A2B13181D - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM
08ACECEB47FAF053C468D8AFE44709AD - C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll - Google Update
225D76851EFC6144B4BAD941B3E8989D - C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll - Java(TM) Platform SE 8 U31
B66B4D28D7D0C6322FF235C782CD6B76 - C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 8.0.310.13
653FECD9DFDB918F496A2B86B9D9DE36 - C:\Documents and Settings\Mr.X\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
3CD19649B2C3023D65E67C056457A2BC - C:\Documents and Settings\Mr.X\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin
9AE02005247DA91AB1743F5208DBEF76 - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll - Shockwave Flash


==== Fake Chromium Profiles Check ======================

Fake profile C:\Documents and Settings\LocalService\Local Settings\Application Data\Google\Chrome deleted

==== Chromium Look ======================

Google Chrome Version: 43.0.2357.65


Bookmark Manager - Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik
Bookmark Manager - Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik

==== Chromium Startpages ======================

C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
m:443":{"fullscreen":1},"https://www.youtube.com:443,https://www.youtube.com:443":{"fullscreen":1}},"pref_version":1},"exit_type":"Normal","exited_cleanly":true,"icon_version":3,"managed_user_id":"","migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"Први корисник","per_host_zoom_levels":{}},"protection":{"macs":{}},"savefile":{},"selectfile":{"last_directory":"C:\\Documents and Settings\\Mr.X\\Desktop"},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13076196246769375"},"sync_promo":{"startup_count":10},"translate_accepted_count":{"en":0},"translate_blocked_languages":["sr"],"translate_denied_count":{"en":2},"translate_last_denied_time":1.431723e+12,"translate_site_blacklist":["www.cswarzone.com"],"translate_too_often_denied":true,"translate_whitelists":{}}
AA05FBE8E3C17EF9265F190","prefs":{"preference_reset_time":"D4971809875AE72C8A422B5679BC940FA0BA3C5CCA250D98834300E3627EA7CE"},"profile":{"reset_prompt_memento":"A45307B4DC191F9473341EE5E1CB37FAFAA0B5799C6E09A9FA76E7C7A87429EF"},"safebrowsing":{"incidents_sent":"ACDB37352C4B9FCDE1F619223FCD2C049138DF9117A9F68DD821DE36208BC38D"},"search_provider_overrides":"6B5352A9F528A993A61065A4DB610A0F22D82A3BF0BE3BA5519CB5EEDEB9B107","session":{"restore_on_startup":"3DB75EC016DBD32D317D1A5A6EAA94EA4FF3FF3E901EF50DC1DCAF7359C5A17F","startup_urls":"698FA73D9AC683B0FE6B48C320E11176914BF272E8476271EFD0EE5E61328917"},"software_reporter":{"prompt_reason":"300A35946F8BB98DC0DE69B387D9F7F6A15BC9EC2123B4EBF324698964DA25D9","prompt_seed":"9A65E429A9823F9F7C9B589749A0ECD1AFA2D1F132422B200E60CDEA83F879BA","prompt_version":"16FA81A2D4191862263529960477C7D16C30114091E3DD87654F138D0FDDCD48"},"sync":{"remaining_rollback_tries":"6732BEC004842BFC8620B2873BEBAC794501C4CF4487FFDDC265D811374F3F63"}},"super_mac":"409309C50E3F5E3956F342A04FCA0C957FC33FE7E0B4C747BEB45449B7E18B73"},"session":{"restore_on_startup":4,"startup_urls":["http://www.google.rs/"]}}

C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
m:443":{"fullscreen":1},"https://www.youtube.com:443,https://www.youtube.com:443":{"fullscreen":1}},"pref_version":1},"exit_type":"Normal","exited_cleanly":true,"icon_version":3,"managed_user_id":"","migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"Први корисник","per_host_zoom_levels":{}},"protection":{"macs":{}},"savefile":{},"selectfile":{"last_directory":"C:\\Documents and Settings\\Mr.X\\Desktop"},"session":{"restore_on_startup_migrated":true,"startup_urls_migration_time":"13076196246769375"},"sync_promo":{"startup_count":10},"translate_accepted_count":{"en":0},"translate_blocked_languages":["sr"],"translate_denied_count":{"en":2},"translate_last_denied_time":1.431723e+12,"translate_site_blacklist":["www.cswarzone.com"],"translate_too_often_denied":true,"translate_whitelists":{}}
AA05FBE8E3C17EF9265F190","prefs":{"preference_reset_time":"D4971809875AE72C8A422B5679BC940FA0BA3C5CCA250D98834300E3627EA7CE"},"profile":{"reset_prompt_memento":"A45307B4DC191F9473341EE5E1CB37FAFAA0B5799C6E09A9FA76E7C7A87429EF"},"safebrowsing":{"incidents_sent":"ACDB37352C4B9FCDE1F619223FCD2C049138DF9117A9F68DD821DE36208BC38D"},"search_provider_overrides":"6B5352A9F528A993A61065A4DB610A0F22D82A3BF0BE3BA5519CB5EEDEB9B107","session":{"restore_on_startup":"3DB75EC016DBD32D317D1A5A6EAA94EA4FF3FF3E901EF50DC1DCAF7359C5A17F","startup_urls":"698FA73D9AC683B0FE6B48C320E11176914BF272E8476271EFD0EE5E61328917"},"software_reporter":{"prompt_reason":"300A35946F8BB98DC0DE69B387D9F7F6A15BC9EC2123B4EBF324698964DA25D9","prompt_seed":"9A65E429A9823F9F7C9B589749A0ECD1AFA2D1F132422B200E60CDEA83F879BA","prompt_version":"16FA81A2D4191862263529960477C7D16C30114091E3DD87654F138D0FDDCD48"},"sync":{"remaining_rollback_tries":"6732BEC004842BFC8620B2873BEBAC794501C4CF4487FFDDC265D811374F3F63"}},"super_mac":"409309C50E3F5E3956F342A04FCA0C957FC33FE7E0B4C747BEB45449B7E18B73"},"session":{"restore_on_startup":4,"startup_urls":["http://www.google.rs/"]}}


==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/?pc=UP97&ocid=UP97DHP"
"Secondary Start Pages"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/?pc=UP97&ocid=UP97DHP"
"Secondary Start Pages"="http://www.msn.com/?pc=UP97&ocid=UP97DHP"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D2A425F405350054677A7A857BC0C110 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5350-4500-76A7-A758B70C1C01} deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update deleted successfully

==== Empty IE Cache ======================

C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully
C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\35OT0DY0 will be deleted at reboot
C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\TOIVZY09 will be deleted at reboot
C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\YW7C3PDU will be deleted at reboot
C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\35OT0DY0 will be deleted at reboot
C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\TOIVZY09 will be deleted at reboot
C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\YW7C3PDU will be deleted at reboot
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Documents and Settings\Mr.X\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=9 folders=9 528498 bytes)

==== Empty Temp Folders ======================

C:\Documents and Settings\Default User\Local Settings\Temp emptied successfully
C:\Documents and Settings\LocalService\Local Settings\Temp emptied successfully
C:\Documents and Settings\Mr.X\Local Settings\Temp will be emptied at reboot
C:\Documents and Settings\NetworkService\Local Settings\Temp emptied successfully
C:\Documents and Settings\UpdatusUser\Local Settings\Temp emptied successfully
C:\Documents and Settings\Mr.X\Local Settings\Temp will be emptied at reboot
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\DOCUME~1\Mr.X\LOCALS~1\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\RECYCLER successfully emptied

==== Deleting Files / Folders ======================

"C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\35OT0DY0" not found
"C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\TOIVZY09" not found
"C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\YW7C3PDU" not found
"C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\35OT0DY0" not found
"C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\TOIVZY09" not found
"C:\Documents and Settings\Mr.X\Local Settings\Temporary Internet Files\Content.IE5\YW7C3PDU" not found

==== EOF on sub 23.05.2015 at 21:18:28,25 ======================

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Masina izgleda cisto, nema malwera. U podforumu Windows mozes pitati u vezi brzine rada, objasniti kako to sporije rada, u odnosu na koji period...

Ukoliko nema nekih konkretnijih problema:

• Sledeća procedura će implementirati završno čišćenje.



Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop.

Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija;
Remove disinfection tools
Create registry backup
Purge System Restore

Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad.

Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani.
Ukoliko neki alat ili izveštaj nije uklonjen, slobodno ih obriši ručno.


Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt)
- Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix
- DelFix briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.