Poslao: 21 Dec 2014 23:08
|
offline
- Pridružio: 05 Maj 2006
- Poruke: 86
|
dobro vece
zadnjih dana imam problema sa nepotrebnim reklamama na internetu samo nesto izlece.
instalirao sam Chrome ponovo, skenireo komp raznim programima ali ne pomaze. inace je sve ok ali te me reklame mnogo nerviraju prilozicu neophodne stvari ovde pa nek neko pogleda ako moze.
hvala unapred
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-12-2014 01
Ran by veljko (administrator) on VELJKO-HP on 21-12-2014 22:56:37
Running from C:\Users\veljko\Downloads
Loaded Profile: veljko (Available profiles: veljko)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Norsk, bokmål (Norge)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Internet Speed Checker\54041154-bea7-402b-8bf0-8c7df484b2c4.exe
(SlimWare Utilities, Inc.) C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
() C:\Users\veljko\AppData\Roaming\TornTV.com\TornTVSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPConnectionManager.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1702912 2000-01-01] (IDT, Inc.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-09-27] (Intel Corporation)
HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-07-27] (Intel(R) Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2773232 2013-10-17] (Synaptics Incorporated)
HKLM-x32\...\Run: [HPConnectionManager] => C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [94264 2011-02-15] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40336 2014-12-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-10-01] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2014-12-14] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-16] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\...\Run: [Facebook Update] => C:\Users\veljko\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-04-30] (Facebook Inc.)
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\...\Run: [TornTv Downloader] => C:\Users\veljko\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\...\RunOnce: [Adobe Speed Launcher] => 1419198189
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = mystartsearch.com/?type=hp&ts=14173.....J9FD500191
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = mystartsearch.com/?type=hp&ts=14173.....J9FD500191
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\Software\Microsoft\Internet Explorer\Main,Start Page = google.com/?trackid=sp-006
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\Software\Microsoft\Internet Explorer\Main,Search Page = google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = google.com/?trackid=sp-006
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe mystartsearch.com/?type=sc&ts=14173.....J9FD500191
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKLM -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
SearchScopes: HKLM -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = no.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = no.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM -> {DB280FF9-2F5C-4F65-A70D-8C8AC84A64FF} URL = amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF.....-keywords={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
SearchScopes: HKLM-x32 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = no.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = no.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM-x32 -> {DB280FF9-2F5C-4F65-A70D-8C8AC84A64FF} URL = amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF.....-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = trovi.com/Results.aspx?gd=&ctid=CT3.....28D&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = no.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = no.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {DB280FF9-2F5C-4F65-A70D-8C8AC84A64FF} URL = amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF.....-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = google.com/search?trackid=sp-006&q={searchTerms}
BHO: No Name -> {11111111-1111-1111-1111-110611171152} -> No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: No Name -> {11111111-1111-1111-1111-110611171152} -> No File
BHO-x32: No Name -> {15a4ce1e-d288-4d04-85bf-907170010a7a} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1210150.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1402403010-2532102720-3201830455-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\veljko\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-05-14]
Chrome:
=======
CHR StartupUrls: Default -> "https://www.google.com/"
CHR Profile: C:\Users\veljko\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-21]
CHR Extension: (Google Docs) - C:\Users\veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-12-21]
CHR Extension: (Google Drive) - C:\Users\veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-21]
CHR Extension: (YouTube) - C:\Users\veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-21]
CHR Extension: (Google Search) - C:\Users\veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-21]
CHR Extension: (Google Sheets) - C:\Users\veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-21]
CHR Extension: (Avast Online Security) - C:\Users\veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-12-21]
CHR Extension: (Google Wallet) - C:\Users\veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-21]
CHR Extension: (Gmail) - C:\Users\veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-21]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-17]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-17] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-11-17] (Avast Software)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-09-27] (Intel Corporation)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2000-01-01] (Realsil Microelectronics Inc.) [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-07-27] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2000-01-01] (IDT, Inc.) [File not signed]
R2 trntv; C:\Users\veljko\AppData\Roaming\TornTV.com\TornTVSvc.exe [10240 2014-08-19] () [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-17] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-17] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-17] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-17] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-22] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-17] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-17] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-17] ()
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-09-27] (Intel Corporation)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-12-21] ()
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-11-17] (Avast Software)
R1 {bfe54fc4-dd3e-45f5-91e1-0a6a7adcbc7e}w64; C:\Windows\System32\drivers\{bfe54fc4-dd3e-45f5-91e1-0a6a7adcbc7e}w64.sys [48840 2014-11-29] (StdLib)
S3 SmbDrvI; system32\DRIVERS\Smb_driver_Intel.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-21 22:56 - 2014-12-21 22:57 - 00025025 _____ () C:\Users\veljko\Downloads\FRST.txt
2014-12-21 22:56 - 2014-12-21 22:56 - 00000000 ____D () C:\FRST
2014-12-21 22:55 - 2014-12-21 22:55 - 02122240 _____ (Farbar) C:\Users\veljko\Downloads\FRST64.exe
2014-12-21 22:46 - 2014-12-21 22:46 - 00000000 ____D () C:\ProgramData\McAfee
2014-12-21 22:44 - 2014-12-21 22:44 - 00000197 _____ () C:\Windows\system32\2014-12-21-21-44-39.068-AvastVBoxSVC.exe-4396.log
2014-12-21 22:41 - 2014-12-21 22:41 - 00002260 _____ () C:\Windows\PFRO.log
2014-12-21 22:41 - 2014-12-21 22:41 - 00000056 _____ () C:\Windows\setupact.log
2014-12-21 22:41 - 2014-12-21 22:41 - 00000000 _____ () C:\Windows\setuperr.log
2014-12-21 22:00 - 2014-12-21 22:00 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-12-21 21:59 - 2014-12-21 21:59 - 05317104 _____ (Piriform Ltd) C:\Users\veljko\Downloads\ccsetup501.exe
2014-12-21 21:59 - 2014-12-21 21:59 - 00000000 ____D () C:\Program Files\CCleaner
2014-12-21 21:52 - 2014-12-21 22:57 - 00000992 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-21 21:52 - 2014-12-21 22:42 - 00000988 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-21 21:52 - 2014-12-21 21:54 - 00002311 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-21 21:52 - 2014-12-21 21:52 - 00003988 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-12-21 21:52 - 2014-12-21 21:52 - 00003736 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-12-21 21:52 - 2014-12-21 21:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-12-18 17:55 - 2014-12-18 17:55 - 00000000 __SHD () C:\Users\veljko\AppData\Local\EmieBrowserModeList
2014-12-18 01:17 - 2014-12-13 06:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-18 01:17 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-14 07:13 - 2014-12-14 07:14 - 00000197 _____ () C:\Windows\system32\2014-12-14-06-13-59.014-AvastVBoxSVC.exe-3976.log
2014-12-11 12:53 - 2014-12-11 12:53 - 00000197 _____ () C:\Windows\system32\2014-12-11-11-53-13.077-AvastVBoxSVC.exe-3824.log
2014-12-11 12:50 - 2014-12-11 12:50 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-11 12:28 - 2014-10-18 03:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-11 12:28 - 2014-10-18 02:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-11 02:32 - 2014-12-04 03:50 - 00830976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2014-12-11 02:32 - 2014-12-04 03:50 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2014-12-11 02:32 - 2014-12-04 03:50 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-12-11 02:32 - 2014-12-04 03:50 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-12-11 02:32 - 2014-12-04 03:50 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-12-11 02:32 - 2014-12-04 03:50 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-12-11 02:32 - 2014-12-04 03:44 - 01083392 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-12-11 02:32 - 2014-12-02 00:28 - 01232040 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2014-12-11 02:32 - 2014-11-27 02:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-11 02:32 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-11 02:32 - 2014-11-22 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-11 02:32 - 2014-11-22 04:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-11 02:32 - 2014-11-22 03:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-11 02:32 - 2014-11-22 03:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-11 02:32 - 2014-11-22 03:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-11 02:32 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-11 02:32 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-11 02:32 - 2014-11-22 03:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-11 02:32 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-11 02:32 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-11 02:32 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-11 02:32 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-11 02:32 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-11 02:32 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-11 02:32 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-11 02:32 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-11 02:32 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-11 02:32 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-11 02:32 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-11 02:32 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-11 02:32 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-11 02:32 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-11 02:32 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-11 02:32 - 2014-11-11 04:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-11 02:32 - 2014-11-11 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-11 02:32 - 2014-11-11 02:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-11 02:31 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-11 02:31 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-11 02:31 - 2014-11-22 03:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-11 02:31 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-11 02:31 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-11 02:31 - 2014-11-22 03:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-11 02:31 - 2014-11-22 03:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-11 02:31 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-11 02:31 - 2014-11-22 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-11 02:31 - 2014-11-22 03:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-11 02:31 - 2014-11-22 03:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-11 02:31 - 2014-11-22 03:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-11 02:31 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-11 02:31 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-11 02:31 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-11 02:31 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-11 02:31 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-11 02:31 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-11 02:31 - 2014-11-22 02:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-11 02:31 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-11 02:31 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-11 02:31 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-11 02:31 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-11 02:31 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-11 02:31 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-11 02:31 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-11 02:31 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-11 02:31 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-11 02:31 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-11 02:31 - 2014-11-08 04:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-11 02:31 - 2014-11-08 03:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-12-11 02:31 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-11 02:31 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2014-12-11 02:31 - 2014-10-03 03:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-11 02:31 - 2014-10-03 03:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-11 02:31 - 2014-10-03 03:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-11 02:31 - 2014-10-03 03:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-11 02:31 - 2014-10-03 03:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-11 02:31 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-12-11 02:31 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-11 02:31 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-11 02:31 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-12-11 02:31 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-06 11:45 - 2014-12-06 11:45 - 00000197 _____ () C:\Windows\system32\2014-12-06-10-45-00.080-AvastVBoxSVC.exe-4324.log
2014-12-06 11:34 - 2014-12-06 11:34 - 00000197 _____ () C:\Windows\system32\2014-12-06-10-34-00.074-AvastVBoxSVC.exe-4184.log
2014-12-06 11:31 - 2014-12-06 11:45 - 00000000 ____D () C:\ProgramData\Synaptics
2014-12-06 11:25 - 2014-12-06 11:25 - 00000197 _____ () C:\Windows\system32\2014-12-06-10-25-17.089-AvastVBoxSVC.exe-4104.log
2014-12-06 10:35 - 2014-12-06 10:36 - 00000197 _____ () C:\Windows\system32\2014-12-06-09-35-57.035-AvastVBoxSVC.exe-4560.log
2014-11-30 21:02 - 2014-11-30 21:02 - 00000197 _____ () C:\Windows\system32\2014-11-30-20-02-13.057-AvastVBoxSVC.exe-4444.log
2014-11-30 20:57 - 2014-11-30 20:57 - 00000000 ____D () C:\Users\veljko\Downloads\WinWDF
2014-11-30 20:57 - 2013-10-17 22:46 - 00550640 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2014-11-30 20:57 - 2013-10-17 22:46 - 00482032 ____N (Synaptics Incorporated) C:\Users\veljko\Downloads\Setup.exe
2014-11-30 20:57 - 2013-10-17 22:46 - 00422640 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo19.dll
2014-11-30 20:57 - 2013-10-17 22:46 - 00403696 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll
2014-11-30 20:57 - 2013-10-17 22:46 - 00252144 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2014-11-30 20:57 - 2013-10-17 22:46 - 00172272 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCom.dll
2014-11-30 20:57 - 2013-10-17 22:44 - 00038224 ____N () C:\Users\veljko\Downloads\ReleaseNotes.html
2014-11-30 20:57 - 2013-06-27 16:33 - 00000043 ____N () C:\Users\veljko\Downloads\Release.txt
2014-11-30 20:57 - 2013-04-16 17:33 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2014-11-30 20:52 - 2014-11-30 20:54 - 123787854 _____ () C:\Users\veljko\Downloads\Synaptics_v17_0_19_C_XP32_Vista32_Win7-32_XP64_Vista64_Win7-64_Acme_Inc.zip
2014-11-30 03:00 - 2014-11-30 03:00 - 00000197 _____ () C:\Windows\system32\2014-11-30-02-00-45.020-AvastVBoxSVC.exe-3956.log
2014-11-30 02:26 - 2014-11-30 02:26 - 00000197 _____ () C:\Windows\system32\2014-11-30-01-26-15.048-AvastVBoxSVC.exe-896.log
2014-11-30 02:17 - 2014-11-29 10:29 - 00048840 _____ (StdLib) C:\Windows\system32\Drivers\{bfe54fc4-dd3e-45f5-91e1-0a6a7adcbc7e}w64.sys
2014-11-30 02:16 - 2014-12-21 22:42 - 00002450 _____ () C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5_user.job
2014-11-30 02:15 - 2014-12-21 22:42 - 00004498 _____ () C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4.job
2014-11-30 02:15 - 2014-12-21 22:42 - 00003472 _____ () C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1.job
2014-11-30 02:15 - 2014-12-21 22:42 - 00002450 _____ () C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.job
2014-11-30 02:15 - 2014-12-21 22:42 - 00002114 _____ () C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2.job
2014-11-30 02:15 - 2014-12-21 22:42 - 00001476 _____ () C:\Windows\Tasks\bbdba034-3069-4359-916e-ea3b2591353e.job
2014-11-30 02:15 - 2014-11-30 02:16 - 00005480 _____ () C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5
2014-11-30 02:15 - 2014-11-30 02:15 - 00007528 _____ () C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4
2014-11-30 02:15 - 2014-11-30 02:15 - 00006502 _____ () C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1
2014-11-30 02:15 - 2014-11-30 02:15 - 00005144 _____ () C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2
2014-11-30 02:15 - 2014-11-30 02:15 - 00004506 _____ () C:\Windows\System32\Tasks\bbdba034-3069-4359-916e-ea3b2591353e
2014-11-30 02:14 - 2014-12-21 22:42 - 00005522 _____ () C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6.job
2014-11-30 02:14 - 2014-12-21 22:42 - 00005188 _____ () C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11.job
2014-11-30 02:14 - 2014-12-21 22:42 - 00005186 _____ () C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7.job
2014-11-30 02:14 - 2014-12-21 22:42 - 00000654 _____ () C:\Windows\Tasks\54041154-bea7-402b-8bf0-8c7df484b2c4.job
2014-11-30 02:14 - 2014-12-13 16:27 - 00000000 ____D () C:\Program Files (x86)\Internet Speed Checker
2014-11-30 02:14 - 2014-11-30 02:15 - 00008550 _____ () C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6
2014-11-30 02:14 - 2014-11-30 02:15 - 00000000 ____D () C:\Program Files (x86)\e4ab3aea-2af1-452a-8e35-6b0bf42f2c54
2014-11-30 02:14 - 2014-11-30 02:14 - 00008218 _____ () C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11
2014-11-30 02:14 - 2014-11-30 02:14 - 00008216 _____ () C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7
2014-11-30 02:14 - 2014-11-30 02:14 - 00003684 _____ () C:\Windows\System32\Tasks\54041154-bea7-402b-8bf0-8c7df484b2c4
2014-11-30 02:11 - 2014-11-30 02:27 - 00000000 ____D () C:\Program Files (x86)\Dolphin Deals
2014-11-30 02:09 - 2014-12-01 00:00 - 00000000 ____D () C:\Users\veljko\AppData\Roaming\mystartsearch
2014-11-30 02:09 - 2014-12-01 00:00 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect
2014-11-30 02:09 - 2014-11-30 02:10 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-11-21 03:20 - 2014-11-21 03:20 - 00000197 _____ () C:\Windows\system32\2014-11-21-02-20-30.028-AvastVBoxSVC.exe-3624.log
2014-11-21 01:44 - 2014-11-21 01:45 - 00000197 _____ () C:\Windows\system32\2014-11-21-00-44-50.028-AvastVBoxSVC.exe-4120.log
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-21 22:49 - 2009-07-14 05:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-21 22:49 - 2009-07-14 05:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-21 22:48 - 2011-08-30 04:59 - 00495966 _____ () C:\Windows\system32\perfh014.dat
2014-12-21 22:48 - 2011-08-30 04:59 - 00096124 _____ () C:\Windows\system32\perfc014.dat
2014-12-21 22:48 - 2009-07-14 06:13 - 01365720 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-21 22:47 - 2012-03-20 14:06 - 01982585 _____ () C:\Windows\WindowsUpdate.log
2014-12-21 22:46 - 2014-05-14 22:29 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-21 22:46 - 2014-05-14 22:29 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-21 22:46 - 2014-05-14 22:29 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-21 22:46 - 2014-05-14 22:29 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-21 22:46 - 2014-04-27 21:47 - 00000000 ____D () C:\Users\veljko\AppData\Local\Adobe
2014-12-21 22:45 - 2014-04-30 21:04 - 00000000 ____D () C:\Users\veljko\AppData\Roaming\Skype
2014-12-21 22:42 - 2014-03-15 21:53 - 00016152 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
2014-12-21 22:42 - 2014-03-15 21:53 - 00002840 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup
2014-12-21 22:42 - 2014-03-15 21:53 - 00000412 _____ () C:\Windows\Tasks\SlimDrivers Startup.job
2014-12-21 22:42 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-21 22:39 - 2014-04-27 21:58 - 00000000 ____D () C:\Users\veljko\AppData\Roaming\SoftGrid Client
2014-12-21 22:06 - 2014-04-30 21:01 - 00000932 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1402403010-2532102720-3201830455-1000UA.job
2014-12-21 22:06 - 2014-04-30 21:01 - 00000910 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1402403010-2532102720-3201830455-1000Core.job
2014-12-21 22:00 - 2014-04-06 12:09 - 00000000 ____D () C:\Users\veljko\AppData\Local\CrashDumps
2014-12-21 22:00 - 2014-03-22 22:30 - 00000000 ____D () C:\Windows\Minidump
2014-12-21 22:00 - 2007-01-02 02:25 - 00000000 ____D () C:\Windows\Panther
2014-12-21 21:58 - 2014-03-16 11:56 - 00000000 ____D () C:\Users\veljko\Desktop\provera
2014-12-21 21:52 - 2014-03-15 18:10 - 00000000 ____D () C:\Users\veljko\AppData\Local\Google
2014-12-21 21:52 - 2014-03-15 18:10 - 00000000 ____D () C:\Program Files (x86)\Google
2014-12-21 21:51 - 2014-03-15 18:10 - 00000000 ____D () C:\Users\veljko\AppData\Local\Deployment
2014-12-21 18:04 - 2014-03-15 18:07 - 00003936 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{18D3A9C8-4194-43EF-B7EC-F84C96C5C5C1}
2014-12-21 16:04 - 2014-05-14 22:17 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-12-21 01:14 - 2014-03-15 16:39 - 00003192 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForveljko
2014-12-21 01:14 - 2014-03-15 16:39 - 00000336 _____ () C:\Windows\Tasks\HPCeeScheduleForveljko.job
2014-12-18 16:57 - 2014-03-20 20:52 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-12-18 16:56 - 2014-04-03 00:43 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-12-15 23:21 - 2014-03-15 21:09 - 00000408 _____ () C:\Windows\Tasks\DriverEasy Scheduled Scan.job
2014-12-13 00:13 - 2014-04-28 22:11 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk
2014-12-13 00:13 - 2011-08-30 05:59 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2014-12-11 18:33 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-12-11 12:50 - 2014-05-07 21:19 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-11 12:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-11 12:50 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-12-11 12:33 - 2014-03-15 17:24 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-11 12:30 - 2014-03-15 17:24 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-06 10:32 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-12-01 00:00 - 2014-03-15 18:07 - 00001417 _____ () C:\Users\veljko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-11-30 02:24 - 2009-07-14 03:34 - 00000505 _____ () C:\Windows\win.ini
2014-11-30 02:15 - 2014-03-15 22:01 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-11-30 02:14 - 2014-08-28 23:51 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-11-24 14:04 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-11-22 01:41 - 2014-05-14 22:17 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-18 01:04
==================== End Of Log ============================
mycity.rs/must-login.png
|
|
|
|
Poslao: 21 Dec 2014 23:59
|
offline
- Sass Drake
- Anti Malware Fighter
Rank 2
- Pridružio: 26 Avg 2010
- Poruke: 10622
- Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building
|
Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja.
R1 {bfe54fc4-dd3e-45f5-91e1-0a6a7adcbc7e}w64; C:\Windows\System32\drivers\{bfe54fc4-dd3e-45f5-91e1-0a6a7adcbc7e}w64.sys [48840 2014-11-29] (StdLib)
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\...\Run: [TornTv Downloader] => C:\Users\veljko\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&ts=14173.....J9FD500191
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&ts=14173.....J9FD500191
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.mystartsearch.com/?type=sc&ts=14173.....J9FD500191
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
SearchScopes: HKLM -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
SearchScopes: HKLM-x32 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&ctid=CT3.....28D&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = http://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
BHO: No Name -> {11111111-1111-1111-1111-110611171152} -> No File
BHO-x32: No Name -> {11111111-1111-1111-1111-110611171152} -> No File
BHO-x32: No Name -> {15a4ce1e-d288-4d04-85bf-907170010a7a} -> No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
R2 trntv; C:\Users\veljko\AppData\Roaming\TornTV.com\TornTVSvc.exe [10240 2014-08-19] () [File not signed]
Task: {25EA67DB-D49F-4796-8D9E-EAF44D5A0412} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {2685856F-A925-4AE0-BD28-6155D6557521} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {3290DC86-39D8-492C-A82E-BA4DE0F39EF0} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {7B6819B4-39B9-4C5C-894E-622D3FBBFC07} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2013-09-24] (SlimWare Utilities, Inc.)
Task: {7FB4F2A6-9EBC-4CB8-BC34-287ACD6FA670} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4.exe <==== ATTENTION
Task: {8A3A81AB-1DA8-40DA-8FDD-BF9C29656832} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: {8C856300-DE95-41B0-83BD-A4B909E903BA} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5_user => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {8CA7C91C-0FED-4942-9E48-3643F705FA66} - System32\Tasks\54041154-bea7-402b-8bf0-8c7df484b2c4 => C:\Program Files (x86)\Internet Speed Checker\54041154-bea7-402b-8bf0-8c7df484b2c4.exe [2014-11-30] () <==== ATTENTION
Task: {A3E09E04-54FE-4A63-BE27-778138FC7BB2} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1 => C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-codedownloader.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {ADC6DF9F-4EE7-4211-9B71-B06A06E2AC34} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {DD3AB292-00B1-44E2-BF7B-C31C6553F76A} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6.exe <==== ATTENTION
Task: {F4556EC4-59B0-4169-BF56-614E94B15516} - System32\Tasks\bbdba034-3069-4359-916e-ea3b2591353e => C:\Program Files (x86)\Internet Speed Checker\bbdba034-3069-4359-916e-ea3b2591353e.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1.job => C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-codedownloader.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5_user.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\54041154-bea7-402b-8bf0-8c7df484b2c4.job => C:\Program Files (x86)\Internet Speed Checker\54041154-bea7-402b-8bf0-8c7df484b2c4.exe <==== ATTENTION
Task: C:\Windows\Tasks\bbdba034-3069-4359-916e-ea3b2591353e.job => C:\Program Files (x86)\Internet Speed Checker\bbdba034-3069-4359-916e-ea3b2591353e.exe <==== ATTENTION
Task: C:\Windows\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
C:\Users\veljko\AppData\Roaming\TornTV.com
C:\Program Files (x86)\globalUpdate
C:\Windows\System32\drivers\{bfe54fc4-dd3e-45f5-91e1-0a6a7adcbc7e}w64.sys
C:\Program Files (x86)\Internet Speed Checker
EmptyTemp:
U okviru Notepad-a klikni na File --> Save As
Fajl nazovi Fixlist i sačuvaj na Desktop
Dvoklikom ponovo pokreni FRST.exe
Klikni na Fix i sačekaj dok program ne završi.
Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi.
Nakon završetka rada, otvoriće se fixlog.txt, sa sadržajem koji treba da kopiraš u temu.
Takođe, na Desktop-u će se nalaziti (fixlog.txt).
|
|
|
|
Poslao: 23 Dec 2014 18:03
|
offline
- Pridružio: 05 Maj 2006
- Poruke: 86
|
evo ga nastavak, hvala na pomoci:
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-12-2014
Ran by veljko at 2014-12-23 17:55:01 Run:2
Running from C:\Users\veljko\Desktop
Loaded Profile: veljko (Available profiles: veljko)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
R1 {bfe54fc4-dd3e-45f5-91e1-0a6a7adcbc7e}w64; C:\Windows\System32\drivers\{bfe54fc4-dd3e-45f5-91e1-0a6a7adcbc7e}w64.sys [48840 2014-11-29] (StdLib)
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\...\Run: [TornTv Downloader] => C:\Users\veljko\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = mystartsearch.com/?type=hp&ts=14173.....J9FD500191
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = mystartsearch.com/?type=hp&ts=14173.....J9FD500191
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe mystartsearch.com/?type=sc&ts=14173.....J9FD500191
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
SearchScopes: HKLM -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
SearchScopes: HKLM-x32 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = trovi.com/Results.aspx?gd=&ctid=CT3.....28D&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {2fa28606-de77-4029-af96-b231e3b8f827} URL = eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKU\S-1-5-21-1402403010-2532102720-3201830455-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = mystartsearch.com/web/?type=ds&ts=1.....191&q={searchTerms}
BHO: No Name -> {11111111-1111-1111-1111-110611171152} -> No File
BHO-x32: No Name -> {11111111-1111-1111-1111-110611171152} -> No File
BHO-x32: No Name -> {15a4ce1e-d288-4d04-85bf-907170010a7a} -> No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
R2 trntv; C:\Users\veljko\AppData\Roaming\TornTV.com\TornTVSvc.exe [10240 2014-08-19] () [File not signed]
Task: {25EA67DB-D49F-4796-8D9E-EAF44D5A0412} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {2685856F-A925-4AE0-BD28-6155D6557521} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {3290DC86-39D8-492C-A82E-BA4DE0F39EF0} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {7B6819B4-39B9-4C5C-894E-622D3FBBFC07} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2013-09-24] (SlimWare Utilities, Inc.)
Task: {7FB4F2A6-9EBC-4CB8-BC34-287ACD6FA670} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4.exe <==== ATTENTION
Task: {8A3A81AB-1DA8-40DA-8FDD-BF9C29656832} - System32\Tasks\DriverEasy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
Task: {8C856300-DE95-41B0-83BD-A4B909E903BA} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5_user => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {8CA7C91C-0FED-4942-9E48-3643F705FA66} - System32\Tasks\54041154-bea7-402b-8bf0-8c7df484b2c4 => C:\Program Files (x86)\Internet Speed Checker\54041154-bea7-402b-8bf0-8c7df484b2c4.exe [2014-11-30] () <==== ATTENTION
Task: {A3E09E04-54FE-4A63-BE27-778138FC7BB2} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1 => C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-codedownloader.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {ADC6DF9F-4EE7-4211-9B71-B06A06E2AC34} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7.exe [2014-11-30] (Speedchecker) <==== ATTENTION
Task: {DD3AB292-00B1-44E2-BF7B-C31C6553F76A} - System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6 => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6.exe <==== ATTENTION
Task: {F4556EC4-59B0-4169-BF56-614E94B15516} - System32\Tasks\bbdba034-3069-4359-916e-ea3b2591353e => C:\Program Files (x86)\Internet Speed Checker\bbdba034-3069-4359-916e-ea3b2591353e.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1.job => C:\Program Files (x86)\Internet Speed Checker\Internet Speed Checker-codedownloader.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5_user.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7.job => C:\Program Files (x86)\Internet Speed Checker\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\54041154-bea7-402b-8bf0-8c7df484b2c4.job => C:\Program Files (x86)\Internet Speed Checker\54041154-bea7-402b-8bf0-8c7df484b2c4.exe <==== ATTENTION
Task: C:\Windows\Tasks\bbdba034-3069-4359-916e-ea3b2591353e.job => C:\Program Files (x86)\Internet Speed Checker\bbdba034-3069-4359-916e-ea3b2591353e.exe <==== ATTENTION
Task: C:\Windows\Tasks\DriverEasy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe
C:\Users\veljko\AppData\Roaming\TornTV.com
C:\Program Files (x86)\globalUpdate
C:\Windows\System32\drivers\{bfe54fc4-dd3e-45f5-91e1-0a6a7adcbc7e}w64.sys
C:\Program Files (x86)\Internet Speed Checker
EmptyTemp:
*****************
{bfe54fc4-dd3e-45f5-91e1-0a6a7adcbc7e}w64 => Service not found.
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\Software\Microsoft\Windows\CurrentVersion\Run\\TornTv Downloader => Value not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\\Default => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} => Key not found.
HKCR\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} => Key not found.
HKCR\Wow6432Node\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found.
HKCR\Wow6432Node\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found.
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} => Key not found.
HKCR\CLSID\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} => Key not found.
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} => Key not found.
HKCR\CLSID\{2fa28606-de77-4029-af96-b231e3b8f827} => Key not found.
HKU\S-1-5-21-1402403010-2532102720-3201830455-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => Key not found.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152} => Key not found.
HKCR\CLSID\{11111111-1111-1111-1111-110611171152} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110611171152} => Key not found.
HKCR\Wow6432Node\CLSID\{11111111-1111-1111-1111-110611171152} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{15a4ce1e-d288-4d04-85bf-907170010a7a} => Key not found.
HKCR\Wow6432Node\CLSID\{15a4ce1e-d288-4d04-85bf-907170010a7a} => Key not found.
HKLM\Software\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10 => Key not found.
HKLM\Software\Wow6432Node\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4 => Key not found.
trntv => Service not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{25EA67DB-D49F-4796-8D9E-EAF44D5A0412} => Key not found.
C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11 not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11 => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2685856F-A925-4AE0-BD28-6155D6557521} => Key not found.
C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2 not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2 => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3290DC86-39D8-492C-A82E-BA4DE0F39EF0} => Key not found.
C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5 not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5 => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7B6819B4-39B9-4C5C-894E-622D3FBBFC07} => Key not found.
C:\Windows\System32\Tasks\SlimDrivers Startup not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SlimDrivers Startup => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FB4F2A6-9EBC-4CB8-BC34-287ACD6FA670} => Key not found.
C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4 not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4 => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8A3A81AB-1DA8-40DA-8FDD-BF9C29656832} => Key not found.
C:\Windows\System32\Tasks\DriverEasy Scheduled Scan not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DriverEasy Scheduled Scan => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8C856300-DE95-41B0-83BD-A4B909E903BA} => Key not found.
C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5_user not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5_user => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8CA7C91C-0FED-4942-9E48-3643F705FA66} => Key not found.
C:\Windows\System32\Tasks\54041154-bea7-402b-8bf0-8c7df484b2c4 not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\54041154-bea7-402b-8bf0-8c7df484b2c4 => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3E09E04-54FE-4A63-BE27-778138FC7BB2} => Key not found.
C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1 not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1 => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ADC6DF9F-4EE7-4211-9B71-B06A06E2AC34} => Key not found.
C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7 not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7 => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD3AB292-00B1-44E2-BF7B-C31C6553F76A} => Key not found.
C:\Windows\System32\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6 not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6 => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F4556EC4-59B0-4169-BF56-614E94B15516} => Key not found.
C:\Windows\System32\Tasks\bbdba034-3069-4359-916e-ea3b2591353e not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\bbdba034-3069-4359-916e-ea3b2591353e => Key not found.
C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-1.job not found.
C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-11.job not found.
C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-2.job not found.
C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-4.job not found.
C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5.job not found.
C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-5_user.job not found.
C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-6.job not found.
C:\Windows\Tasks\07a6b602-a9fc-4d8b-a38f-c41ed3ccb259-7.job not found.
C:\Windows\Tasks\54041154-bea7-402b-8bf0-8c7df484b2c4.job not found.
C:\Windows\Tasks\bbdba034-3069-4359-916e-ea3b2591353e.job not found.
C:\Windows\Tasks\DriverEasy Scheduled Scan.job not found.
"C:\Users\veljko\AppData\Roaming\TornTV.com" => File/Directory not found.
"C:\Program Files (x86)\globalUpdate" => File/Directory not found.
"C:\Windows\System32\drivers\{bfe54fc4-dd3e-45f5-91e1-0a6a7adcbc7e}w64.sys" => File/Directory not found.
"C:\Program Files (x86)\Internet Speed Checker" => File/Directory not found.
EmptyTemp: => Removed 15.8 MB temporary data.
The system needed a reboot.
==== End of Fixlog 17:55:10 ====
|
|
|
|
Poslao: 23 Dec 2014 18:48
|
offline
- Sass Drake
- Anti Malware Fighter
Rank 2
- Pridružio: 26 Avg 2010
- Poruke: 10622
- Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building
|
Preuzmi "Xplode"-ov AdwCleaner i sačuvaj ga na Desktop
Dvoklikom pokreni program.
u EULA prozoru klikni na I agree.
Klikni na dugme Scan i sačekaj da se završi skeniranje.
Klikni na dugme Clean i pričekaj da program završi.
Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu.
Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK
Računar će se restartovati, a potom otvoriti Notepad (C:\AdwCleaner[S0].txt) sa izvještajem.
Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl"
Napomena: Izvještaj ce takođe biti sačuvan na C:\Adwcleaner\AdwCleaner[S0].txt
|
|
|
|
|
|
Poslao: 24 Dec 2014 00:54
|
offline
- Pridružio: 05 Maj 2006
- Poruke: 86
|
sadrzaj loga je sledeci:
Zoek.exe v5.0.0.0 Updated 23-12-2014
Tool run by veljko on 24.12.2014 at 0:44:06,22.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\veljko\Desktop\zoek.exe [Scan all users] [Script inserted]
==== System Restore Info ======================
24.12.2014 00:44:54 Zoek.exe System Restore Point Created Succesfully.
==== Running Processes ======================
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Windows\SysWOW64\ezSharedSvcHost.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files (x86)\Popcorn Time\Updater.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Users\veljko\Desktop\zoek.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
==== Services(whitelist) ======================
Powered by E Dev
R2 - [AdobeARMservice] - Adobe Acrobat Update Service - c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe
R2 - [AESTFilters] - Andrea ST Filters Service - c:\program files\idt\wdm\aestsr64.exe
R2 - [AMD External Events Utility] - AMD External Events Utility - c:\windows\system32\atiesrxx.exe
R2 - [Apple Mobile Device] - Apple Mobile Device - c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe
R2 - [Bonjour Service] - Bonjour-tjeneste - c:\program files\bonjour\mdnsresponder.exe
R2 - [cvhsvc] - Client Virtualization Handler - c:\program files (x86)\common files\microsoft shared\virtualization handler\cvhsvc.exe
R2 - [EvtEng] - Intel(R) PROSet/Wireless Event Log - c:\program files\intel\wifi\bin\evteng.exe
R2 - [ezSharedSvc] - Easybits Services for Windows - c:\windows\system32\ezsharedsvchost.exe [x]
R2 - [HP Support Assistant Service] - HP Support Assistant Service - c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe
R2 - [HPClientSvc] - HP Client Services - c:\program files\hewlett-packard\hp client services\hpclientservices.exe
R2 - [hpsrv] - HP Service - c:\windows\system32\hpservice.exe
R2 - [IAStorDataMgrSvc] - Intel(R) Rapid Storage Technology - c:\program files\intel\intel(r) rapid storage technology\iastordatamgrsvc.exe
R2 - [IconMan_R] - IconMan_R - c:\program files (x86)\realtek\realtek pcie card reader\riconman.exe
R2 - [LMS] - Intel(R) Management and Security Application Local Management Service - c:\program files (x86)\intel\intel(r) management engine components\lms\lms.exe
R2 - [RegSrvc] - Intel(R) PROSet/Wireless Registry Service - c:\program files\common files\intel\wirelesscommon\regsrvc.exe
R2 - [SeaPort] - SeaPort - c:\program files (x86)\microsoft\bingbar\seaport.exe
R2 - [sftlist] - Application Virtualization Client - c:\program files (x86)\microsoft application virtualization client\sftlist.exe
R2 - [STacSV] - Audio Service - c:\program files\idt\wdm\stacsv64.exe
R2 - [UNS] - Intel(R) Management and Security Application User Notification Service - c:\program files (x86)\intel\intel(r) management engine components\uns\uns.exe
R2 - [Update service] - Update service - c:\program files (x86)\popcorn time\updater.exe
R2 - [wlidsvc] - Windows Live ID Sign-in Assistant - c:\program files\common files\microsoft shared\windows live\wlidsvc.exe
R2 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - c:\program files\windows media player\wmpnetwk.exe
R2 - [WSearch] - Windows Search - c:\windows\system32\searchindexer.exe
R3 - [AvastVBoxSvc] - AvastVBox COM Service - c:\program files\avast software\avast\ng\vbox\avastvboxsvc.exe
R3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe
R3 - [hpCMSrv] - HP Connection Manager 4.0 Service - c:\program files (x86)\hewlett-packard\hp connection manager\hpcmsrv.exe
R3 - [hpqwmiex] - HP Software Framework Service - c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe
R3 - [iPod Service] - iPod-tjeneste - c:\program files\ipod\bin\ipodservice.exe
R3 - [sftvsa] - Application Virtualization Service Agent - c:\program files (x86)\microsoft application virtualization client\sftvsa.exe
R3 - [VSS] - Volume Shadow Copy - c:\windows\system32\vssvc.exe
S2 - [clr_optimization_v4.0.30319_32] - Microsoft .NET Framework NGEN v4.0.30319_X86 - c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe
S2 - [clr_optimization_v4.0.30319_64] - Microsoft .NET Framework NGEN v4.0.30319_X64 - c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe
S2 - [gupdate] - Google-oppdatering-tjenesten (gupdate) - c:\program files (x86)\google\update\googleupdate.exe
S2 - [sppsvc] - Programvarebeskyttelse - c:\windows\system32\sppsvc.exe
S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe
S3 - [ALG] - Application Layer Gateway Service - c:\windows\system32\alg.exe
S3 - [BBSvc] - Bing Bar Update Service - c:\program files (x86)\microsoft\bingbar\bbsvc.exe
S3 - [COMSysApp] - COM+ System Application - c:\windows\system32\dllhost.exe
S3 - [cphs] - Intel(R) Content Protection HECI Service - c:\windows\syswow64\intelcphecisvc.exe
S3 - [ehRecvr] - Windows Media Center Receiver Service - c:\windows\ehome\ehrecvr.exe
S3 - [ehSched] - Windows Media Center Scheduler Service - c:\windows\ehome\ehsched.exe
S3 - [Fax] - Faks - c:\windows\system32\fxssvc.exe
S3 - [GamesAppService] - GamesAppService - c:\program files (x86)\wildtangent games\app\gamesappservice.exe
S3 - [gupdatem] - Google-oppdatering-tjenesten (gupdatem) - c:\program files (x86)\google\update\googleupdate.exe
S3 - [ICCS] - Intel(R) Integrated Clock Controller Service - Intel(R) ICCS - c:\program files (x86)\intel\intel(r) integrated clock controller service\iccproxy.exe
S3 - [IEEtwCollectorService] - Internet Explorer ETW Collector Service - c:\windows\system32\ieetwcollector.exe
S3 - [MSDTC] - Distributed Transaction Coordinator - c:\windows\system32\msdtc.exe
S3 - [msiserver] - Windows Installer - c:\windows\system32\msiexec.exe
S3 - [MyWiFiDHCPDNS] - Wireless PAN DHCP Server - c:\program files\intel\wifi\bin\pandhcpdns.exe
S3 - [ose] - Office Source Engine - c:\program files (x86)\common files\microsoft shared\source engine\ose.exe
S3 - [osppsvc] - Office Software Protection Platform - c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe
S3 - [PerfHost] - Performance Counter DLL Host - c:\windows\syswow64\perfhost.exe
S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - c:\windows\system32\locator.exe
S3 - [SNMPTRAP] - SNMP Trap - c:\windows\system32\snmptrap.exe
S3 - [TrustedInstaller] - Windows Modules Installer - c:\windows\servicing\trustedinstaller.exe
S3 - [vds] - Virtual Disk - c:\windows\system32\vds.exe
S3 - [WatAdminSvc] - Windows Activation Technologies Service - c:\windows\system32\wat\watadminsvc.exe
S3 - [wbengine] - Block Level Backup Engine Service - c:\windows\system32\wbengine.exe
S3 - [wmiApSrv] - WMI Performance Adapter - c:\windows\system32\wbem\wmiapsrv.exe
S4 - [aspnet_state] - ASP.NET State Service - c:\windows\microsoft.net\framework64\v4.0.30319\aspnet_state.exe
S4 - [clr_optimization_v2.0.50727_32] - Microsoft .NET Framework NGEN v2.0.50727_X86 - c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe
S4 - [clr_optimization_v2.0.50727_64] - Microsoft .NET Framework NGEN v2.0.50727_X64 - c:\windows\microsoft.net\framework64\v2.0.50727\mscorsvw.exe
S4 - [wlcrasvc] - Windows Live Mesh remote connections service - c:\program files\windows live\mesh\wlcrasvc.exe
==== Drivers(whitelist) ======================
Powered by E Dev
R0 - [FileInfo] - File Information FS MiniFilter - C:\Windows\system32\Drivers\FileInfo.sys
R0 - [FltMgr] - FltMgr - C:\Windows\system32\Drivers\FltMgr.sys
R0 - [Mup] - Mup - C:\Windows\system32\Drivers\Mup.sys
R1 - [NetBIOS] - NetBIOS Interface - C:\Windows\system32\Drivers\NetBIOS.sys
R3 - [srv] - Driver for Server SMB 1.xxx - C:\Windows\system32\Drivers\srv.sys
R3 - [srv2] - Driver for Server SMB 2.xxx - C:\Windows\system32\Drivers\srv2.sys
R0 - [ACPI] - Microsoft ACPI Driver - C:\Windows\system32\Drivers\ACPI.sys
R0 - [amdxata] - amdxata - C:\Windows\system32\Drivers\amdxata.sys
R0 - [aswRvrt] - avast! Revert - C:\Windows\system32\Drivers\aswRvrt.sys
R0 - [aswVmm] - avast! VM Monitor - C:\Windows\system32\Drivers\aswVmm.sys
R0 - [atapi] - IDE-kanal - C:\Windows\system32\Drivers\atapi.sys
R0 - [CLFS] - Common Log (CLFS) - C:\Windows\system32\Drivers\CLFS.sys [x]
R0 - [CNG] - CNG - C:\Windows\system32\Drivers\CNG.sys
R0 - [Compbatt] - Microsoft Composite Battery Driver - C:\Windows\system32\Drivers\Compbatt.sys
R0 - [Disk] - Diskdriver - C:\Windows\system32\Drivers\Disk.sys
R0 - [fvevol] - Filterdriver for BitLocker-stasjonskryptering - C:\Windows\system32\Drivers\fvevol.sys
R0 - [hpdskflt] - HP Filter - C:\Windows\system32\Drivers\hpdskflt.sys
R0 - [hwpolicy] - Hardware Policy Driver - C:\Windows\system32\Drivers\hwpolicy.sys
R0 - [iaStor] - Intel AHCI Controller - C:\Windows\system32\Drivers\iaStor.sys
R0 - [iaStorA] - iaStorA - C:\Windows\system32\Drivers\iaStorA.sys
R0 - [iaStorF] - iaStorF - C:\Windows\system32\Drivers\iaStorF.sys
R0 - [KSecDD] - KSecDD - C:\Windows\system32\Drivers\KSecDD.sys
R0 - [KSecPkg] - KSecPkg - C:\Windows\system32\Drivers\KSecPkg.sys
R0 - [mountmgr] - Behandling av monteringspunkt - C:\Windows\system32\Drivers\mountmgr.sys
R0 - [msahci] - msahci - C:\Windows\system32\Drivers\msahci.sys
R0 - [msisadrv] - msisadrv - C:\Windows\system32\Drivers\msisadrv.sys
R0 - [NDIS] - NDIS-systemdriver - C:\Windows\system32\Drivers\NDIS.sys
R0 - [partmgr] - Partisjonsbehandling - C:\Windows\system32\Drivers\partmgr.sys
R0 - [pci] - PCI Bus Driver - C:\Windows\system32\Drivers\pci.sys
R0 - [pcw] - Performance Counters for Windows Driver - C:\Windows\system32\Drivers\pcw.sys
R0 - [rdyboost] - ReadyBoost - C:\Windows\system32\Drivers\rdyboost.sys
R0 - [spldr] - Security Processor Loader Driver - C:\Windows\system32\Drivers\spldr.sys
R0 - [Tcpip] - Driver for TCP/IP-protokoll - C:\Windows\system32\Drivers\Tcpip.sys
R0 - [vdrvroot] - Microsoft Virtual Drive Enumerator Driver - C:\Windows\system32\Drivers\vdrvroot.sys
R0 - [volmgr] - Volume Manager Driver - C:\Windows\system32\Drivers\volmgr.sys
R0 - [volmgrx] - Dynamisk volumbehandling - C:\Windows\system32\Drivers\volmgrx.sys
R0 - [volsnap] - Lagringsvolumer - C:\Windows\system32\Drivers\volsnap.sys
R0 - [Wdf01000] - Kernel Mode Driver Frameworks service - C:\Windows\system32\Drivers\Wdf01000.sys
R1 - [AFD] - Ancillary Function Driver for Winsock - C:\Windows\system32\Drivers\AFD.sys
R1 - [Beep] - Beep - C:\Windows\system32\Drivers\Beep.sys
R1 - [tdx] - TDI-støttedriver for eldre NetIO - C:\Windows\system32\Drivers\tdx.sys
R2 - [tcpipreg] - TCP/IP Registry Compatibility - C:\Windows\system32\Drivers\tcpipreg.sys
==== Files Recently Created / Modified ======================
====== C:\Windows ====
====== C:\Users\veljko\AppData\Local\Temp ====
====== Java Cache =====
====== C:\Windows\SysWOW64 =====
2014-12-18 00:17:31 0481346D0EF668C0D4FF69A7BBEFA846 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2014-12-11 11:28:55 FF0A6E76FAE624AC74780AB008752F98 3209728 ----a-w- C:\Windows\SysWOW64\mf.dll
2014-12-11 01:32:17 E1456E7396022EBE4E5434188D1AC8B0 1230336 ----a-w- C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-11 01:32:06 BB25F69463AD8E7E51B5D9D158B5F8DF 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll
2014-12-11 01:32:06 2EADED07BDA52C1FC5A6D4E1CC5858F0 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-11 01:32:05 F98B3860BB47089EA8C1504F043E90E9 342200 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
2014-12-11 01:32:05 F34F6DC38A21FCDBB50CDD1EE97B1EA3 1307136 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2014-12-11 01:32:05 F25284C763E728E4DAC248C211D1FC5B 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2014-12-11 01:32:05 2ABC5587D582ACCEA30B4CF968C2A4A5 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-11 01:32:04 DEB9476A3CD1A5819DD4504BB7C6BA66 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2014-12-11 01:32:04 D7A98A4CEA2E89F544065A00BF37FC10 688640 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2014-12-11 01:32:04 69AC6FD5B0B4DC963723E1EBDEE10A2C 285696 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
2014-12-11 01:32:04 220505B0B3E96C857DD01729AF0CD369 19749376 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2014-12-11 01:32:03 F0BCBD8FCDA145EED53ED66C45CC378B 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll
2014-12-11 01:32:03 EC5A3E4E21079B9D423AA0760828D678 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll
2014-12-11 01:32:03 543ADCEA31CF9C2B4EEB900D4AAFD0F9 2052096 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2014-12-11 01:32:03 41AFA61E061E98E97272AC02184C8C2C 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
2014-12-11 01:32:03 01777AB557997E98691E322225314E57 2277888 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2014-12-11 01:32:00 759E2FAD5371512C6679FA346719493E 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2014-12-11 01:31:59 CF9D05678B02B44FBC8D8AD8C9F30D58 478208 ----a-w- C:\Windows\SysWOW64\ieui.dll
2014-12-11 01:31:59 B59E370277EDB6643083B62297175628 12836864 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2014-12-11 01:31:59 35BD045804B67E78F4CAB72CB820AF7F 418304 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
2014-12-11 01:31:55 F728E7E9937117E0F32F39840EB6D737 4299264 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2014-12-11 01:31:55 2E9E105037AC1274656C3D1125323352 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-11 01:31:54 930F63D6BC43D4BCD937DFCECDA95F82 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll
2014-12-11 01:31:54 5E4E0E43E0A5BF9F089696DFA7A3D677 1888256 ----a-w- C:\Windows\SysWOW64\wininet.dll
2014-12-11 01:31:54 37F078B5B435AFC6BF316F2AD14B469A 501248 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2014-12-11 01:31:54 29CED1A4777A43526A4ED8A7B6936883 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-11 01:31:13 9EA3783672D21817B9DF1061B54C3B3C 155136 ----a-w- C:\Windows\SysWOW64\charmap.exe
2014-12-11 01:31:11 1DE9BD23AFA36150586C732D876D9B74 1177088 ----a-w- C:\Windows\SysWOW64\WsmSvc.dll
2014-12-11 01:31:10 B975C202F590BBC5AA63225FBD148791 198656 ----a-w- C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-11 01:31:10 B6AC69FFBAA159DD5CEED814245A286D 214016 ----a-w- C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-11 01:31:10 5D9A1A3E5824CECE65871C60E5A08A1A 145920 ----a-w- C:\Windows\SysWOW64\WsmAuto.dll
2014-12-11 01:31:10 2C28FEC61C4AC68480A99CB7AA197FA9 248832 ----a-w- C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-11 01:31:03 50C73E54062BA252350F3F29580E28DA 2048 ----a-w- C:\Windows\SysWOW64\tzres.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-12-18 00:17:30 5564883BFB523D5078A5B1FE3128FD63 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2014-12-11 11:28:54 6E1DDE0E72FB8268F42F6777CE4C5036 4121600 ----a-w- C:\Windows\Sysnative\mf.dll
2014-12-11 01:32:27 F0356290BA3940F31AFF5566501495F7 192000 ----a-w- C:\Windows\Sysnative\aepic.dll
2014-12-11 01:32:27 E00981CF227CEEBE7B5A8D99C76D1116 741376 ----a-w- C:\Windows\Sysnative\invagent.dll
2014-12-11 01:32:27 D257AF48934D2167BE15AA4008176381 1083392 ----a-w- C:\Windows\Sysnative\aeinv.dll
2014-12-11 01:32:27 985558125FEEC89AB4AD142158B066D7 830976 ----a-w- C:\Windows\Sysnative\appraiser.dll
2014-12-11 01:32:27 8E64BB62AB3810D3C29ED50C405AD3BD 1232040 ----a-w- C:\Windows\Sysnative\aitstatic.exe
2014-12-11 01:32:26 DAF13A81A5FC895D68B1D9A72F65F4CB 413184 ----a-w- C:\Windows\Sysnative\generaltel.dll
2014-12-11 01:32:26 5CD6E919CE938A98AB25A2EA2C8C4EDA 227328 ----a-w- C:\Windows\Sysnative\aepdu.dll
2014-12-11 01:32:26 4253086737D81D7C9C160FDE6C037F44 396800 ----a-w- C:\Windows\Sysnative\devinv.dll
2014-12-11 01:32:17 A9A0BFD706B3A24C403EEFEB0790D011 1424384 ----a-w- C:\Windows\Sysnative\WindowsCodecs.dll
2014-12-11 01:32:05 F987718A5CA053DC23E94A531F1754A4 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll
2014-12-11 01:32:05 D471F7A428C21DB04D810445D12D68E0 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll
2014-12-11 01:32:05 9F07E8FC75C5F98A783ABFD3005EFC22 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
2014-12-11 01:32:05 39B512C643812FC2D4843C0D4206C759 718848 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
2014-12-11 01:32:05 0FABE2AB8CA2D5CC7C95798533B4D057 114688 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe
2014-12-11 01:32:05 077AEB068A51B396F25BBCAB0944FC3A 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2014-12-11 01:32:03 E7A2061ADF0F4D430FECDA1E8D6B7BA6 1548288 ----a-w- C:\Windows\Sysnative\urlmon.dll
2014-12-11 01:32:03 B4E481E9498CE22113628C4E9EA24427 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll
2014-12-11 01:32:03 5BF0BAA1E5EF724287565E97C9219254 389296 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
2014-12-11 01:31:59 EBC8C9F61F4C148B8C6A28EDE80C51E4 968704 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe
2014-12-11 01:31:59 14BA910E7731FC84EB85328BD0F1EE81 800768 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2014-12-11 01:31:59 0AF0AEF0BA9EF6169E61C78504DCAE55 316928 ----a-w- C:\Windows\Sysnative\dxtrans.dll
2014-12-11 01:31:58 EFBA893429814EA3244C87C2D1256618 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
2014-12-11 01:31:58 23AE7A3B44D5C550B81347288CE3230E 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll
2014-12-11 01:31:56 982B871A25B5078093FAD82D0AB0E3FC 2885120 ----a-w- C:\Windows\Sysnative\iertutil.dll
2014-12-11 01:31:56 3FE71E2A5BD3EC652E64FC8BCEFEDD2C 2125312 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2014-12-11 01:31:54 DFECAE6D925FBC9078870E16F98C471F 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2014-12-11 01:31:53 F7CCA58B973FB5EAED8D1F12DD3E51F6 490496 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
2014-12-11 01:31:53 DB10D681314714E0D4623E4C0CF6654A 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2014-12-11 01:31:53 8EF01E2EF21D41A23FF70B28179F9ABE 633856 ----a-w- C:\Windows\Sysnative\ieui.dll
2014-12-11 01:31:53 556D271F4243B273EDA353512BF3608A 14412800 ----a-w- C:\Windows\Sysnative\ieframe.dll
2014-12-11 01:31:52 8D64466AD12CA5677CD0099C43C58569 6039552 ----a-w- C:\Windows\Sysnative\jscript9.dll
2014-12-11 01:31:52 7AC115968B8856004920057B2271224C 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll
2014-12-11 01:31:52 021DFF3CB0ADCD19B3AAA00A650FDEE2 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll
2014-12-11 01:31:51 89296EF4A3729A049DA25B7D67A04078 199680 ----a-w- C:\Windows\Sysnative\msrating.dll
2014-12-11 01:31:51 4AF089160FE082E5EA5C4AA72782DCA2 2358272 ----a-w- C:\Windows\Sysnative\wininet.dll
2014-12-11 01:31:51 1D294810D3A8A8F722E86AA001F54DCC 580096 ----a-w- C:\Windows\Sysnative\vbscript.dll
2014-12-11 01:31:51 17A157A4225CF562202AC71DB8103177 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll
2014-12-11 01:31:50 D478A4CF07FB8ADF72FB16B88E8030B8 25059840 ----a-w- C:\Windows\Sysnative\mshtml.dll
2014-12-11 01:31:13 36E5E9D0400475230A7F57F274B88321 165888 ----a-w- C:\Windows\Sysnative\charmap.exe
2014-12-11 01:31:11 D929ABD465A2DED963DA8B30946A8D5C 2020352 ----a-w- C:\Windows\Sysnative\WsmSvc.dll
2014-12-11 01:31:11 5C642B7B0365305451D579F3EFAD57D4 310272 ----a-w- C:\Windows\Sysnative\WsmWmiPl.dll
2014-12-11 01:31:11 41457C1909F6D1100C0F9B9CFF7960FC 266240 ----a-w- C:\Windows\Sysnative\WSManHTTPConfig.exe
2014-12-11 01:31:10 FDEB5EE2E4DB9DE9251DDAF6A5BCA070 346624 ----a-w- C:\Windows\Sysnative\WSManMigrationPlugin.dll
2014-12-11 01:31:10 9B44CABE3536D0E3BF627176318AAFC9 181248 ----a-w- C:\Windows\Sysnative\WsmAuto.dll
2014-12-11 01:31:03 A026998E927FD2095505154CBD72F35B 2048 ----a-w- C:\Windows\Sysnative\tzres.dll
====== C:\Windows\Sysnative\drivers =====
2014-12-11 01:32:11 70988118145F5F10EF24720B97F35F65 119296 ----a-w- C:\Windows\Sysnative\drivers\tdx.sys
2014-11-30 19:57:32 B60E34DF2F11A7067521FEA2472D1C42 550640 ----a-w- C:\Windows\Sysnative\drivers\SynTP.sys
====== C:\Windows\Tasks ======
2014-12-21 20:52:03 8F239079D888A60ADCD95D66B8401478 992 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-21 20:52:03 2D4B7D20368EBB93D9CFEB524F72498E 3988 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineUA
2014-12-21 20:52:02 FD39A85C49EAED8D7FD11475B5ACC9C6 3736 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskMachineCore
2014-12-21 20:52:02 7938A1EF8BE2C6027ECDD4FD3756342B 988 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\PROGRA~2 =====
2014-12-21 23:05:37 -------- d-----w- C:\PROGRA~2\Popcorn Time
2014-11-30 01:14:50 -------- d-----w- C:\PROGRA~2\e4ab3aea-2af1-452a-8e35-6b0bf42f2c54
======= C: =====
====== C:\Users\veljko\AppData\Roaming ======
2014-12-21 23:06:41 -------- d-----w- C:\Users\veljko\AppData\Local\PopcornTimeDesktop
2014-12-18 16:55:50 -------- d-sh--w- C:\Users\veljko\AppData\Local\EmieBrowserModeList
====== C:\Users\veljko ======
2014-12-23 21:09:48 9208E5A0A844FCCB39B5252C07B4E860 2173952 ----a-w- C:\Users\veljko\Downloads\AdwCleaner.exe
2014-12-23 16:51:42 1D95696ACA4220073974322CEA672218 2122240 ----a-w- C:\Users\veljko\Desktop\FRST64 (1).exe
2014-12-21 23:05:57 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time
2014-12-21 23:04:54 AA07BA6763E0753B9B35A310E18ABA0D 51360085 ----a-w- C:\Users\veljko\Downloads\PopcornTime-latest.exe
2014-12-21 20:59:05 E45823AE0D754FC0206F14C1FC43EB74 5317104 ----a-w- C:\Users\veljko\Downloads\ccsetup501.exe
2014-12-21 20:52:39 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-12-06 10:31:12 -------- d-----w- C:\ProgramData\Synaptics
====== C: exe-files ==
2014-12-23 21:09:48 9208E5A0A844FCCB39B5252C07B4E860 2173952 ----a-w- C:\Users\veljko\Downloads\AdwCleaner.exe
2014-12-23 16:51:42 1D95696ACA4220073974322CEA672218 2122240 ----a-w- C:\Users\veljko\Desktop\FRST64 (1).exe
2014-12-21 23:05:57 6B0DCBB804645F5F96B59468DFF14BF1 335360 ----a-w- C:\Program Files (x86)\Popcorn Time\Updater.exe
2014-12-21 23:05:43 9985A09C2AD157ACD295254E86B605FF 5790432 ----a-w- C:\Program Files (x86)\Popcorn Time\chromecast\node.exe
2014-12-21 23:05:41 D02000D2FAC133C029FBD94655E68A12 3594752 ----a-w- C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe
2014-12-21 23:05:37 6AD94E1D77A60C26D0020FED92F317F9 1353741 ----a-w- C:\Program Files (x86)\Popcorn Time\unins000.exe
2014-12-21 23:04:54 AA07BA6763E0753B9B35A310E18ABA0D 51360085 ----a-w- C:\Users\veljko\Downloads\PopcornTime-latest.exe
2014-12-21 20:59:05 E45823AE0D754FC0206F14C1FC43EB74 5317104 ----a-w- C:\Users\veljko\Downloads\ccsetup501.exe
2014-12-21 20:52:25 205E775B4B2C165922203A390B115523 40747600 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\39.0.2171.95\39.0.2171.95_chrome_installer.exe
2014-12-21 20:51:58 F172AD4E906D97ED8F071896FC6789DC 107912 ----atw- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2014-12-21 20:51:58 F172AD4E906D97ED8F071896FC6789DC 107912 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdate.exe
2014-12-21 20:51:58 EDD3E562684CB4C50704B471BEAB1F86 114568 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateComRegisterShell64.exe
2014-12-21 20:51:58 CB8C1CC4F46FBAC78150754D77460C73 230792 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
2014-12-21 20:51:58 87EB5AFD21E52CB08883E04605B55829 880784 ----a-w- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateSetup.exe
2014-12-21 20:51:58 7161E8E31B7FD3B1CE083C2CA5FD5F44 285064 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
2014-12-21 20:51:58 5B4ED5734945619EE3BCDB9825D2F526 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe
2014-12-21 20:51:58 06036279056145E0F08FC095CB789E6A 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleUpdateBroker.exe
2014-12-21 20:51:46 87EB5AFD21E52CB08883E04605B55829 880784 ----a-w- C:\Users\veljko\AppData\Local\Apps\2.0\1N43CDD6.CPA\OO4MMGXD.ZZL\inst...app_4fe91ede9f9bdca3_0001.0003_2277c5a629f63613\GoogleUpdateSetup.exe
2014-12-21 20:51:46 87EB5AFD21E52CB08883E04605B55829 880784 ----a-w- C:\Users\veljko\AppData\Local\Apps\2.0\1N43CDD6.CPA\OO4MMGXD.ZZL\clic...exe_4fe91ede9f9bdca3_0001.0003_none_b1328e123920ace1\GoogleUpdateSetup.exe
2014-12-21 20:51:46 0C03930EAEB2C336A067451192677F28 10120 ------w- C:\Users\veljko\AppData\Local\Apps\2.0\1N43CDD6.CPA\OO4MMGXD.ZZL\inst...app_4fe91ede9f9bdca3_0001.0003_2277c5a629f63613\clickonce_bootstrap.exe
2014-12-18 00:17:31 0481346D0EF668C0D4FF69A7BBEFA846 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2014-12-18 00:17:30 5564883BFB523D5078A5B1FE3128FD63 144384 ----a-w- C:\Windows\System32\ieUnatt.exe
=== C: other files ==
2014-12-21 23:05:44 9653E1D2EED12AE0BF637523EDB2BC70 3773 ----a-w- C:\Program Files (x86)\Popcorn Time\chromecast\node_modules\castv2-client\node_modules\castv2\node_modules\protobuf\protobuf\vsprojects\extract_includes.bat
==== Startup Registry Enabled ======================
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"
[HKEY_USERS\S-1-5-21-1402403010-2532102720-3201830455-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"="C:\Users\veljko\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"
[HKEY_USERS\S-1-5-21-1402403010-2532102720-3201830455-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPConnectionManager"="C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe"
"Adobe Reader Speed Launcher"="C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Easybits Recovery"="C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe"
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"HPOSD"="C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe"
"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"="C:\Users\veljko\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver"
"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
==== Startup Registry Enabled x64 ======================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"BTMTrayAgent"="rundll32.exe C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll,TrayApp"
"IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 60"
"IntelPAN"="C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe /tf Intel PAN Tray"
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"="C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe Update"
==== Task Scheduler Jobs ======================
C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [21.12.2014 22:46]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1402403010-2532102720-3201830455-1000Core.job --a------ C:\Users\veljko\AppData\Local\Facebook\Update\FacebookUpdate.exe [30.04.2014 21:01]
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1402403010-2532102720-3201830455-1000UA.job --a------ C:\Users\veljko\AppData\Local\Facebook\Update\FacebookUpdate.exe [30.04.2014 21:01]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21.12.2014 21:51]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [21.12.2014 21:51]
C:\Windows\tasks\HPCeeScheduleForveljko.job --a------ C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [14.09.2010 06:15]
C:\Windows\tasks\SlimDrivers Startup.job --a------ C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [24.09.2013 12:49]
==== Other Scheduled Tasks ======================
"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1402403010-2532102720-3201830455-1000Core" [C:\Users\veljko\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-1402403010-2532102720-3201830455-1000UA" [C:\Users\veljko\AppData\Local\Facebook\Update\FacebookUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForveljko" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe]
"C:\Windows\SysNative\tasks\ServicePlan" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]
"C:\Windows\SysNative\tasks\User_Feed_Synchronization-{18D3A9C8-4194-43EF-B7EC-F84C96C5C5C1}" [C:\Windows\system32\msfeedssync.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Assistant\HPSA Upgrade" [C:\ProgramData\Hewlett-Packard\HPSAUpgrade3\HpSAUpgrade.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask" [C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]
==== Firefox Extensions Registry ======================
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [17.11.2014 20:32]
==== Chromium Look ======================
Google Chrome Version: 39.0.2171.95 (Up to date, latest Stable version: 39.0.2171.95)
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[17.11.2014 20:31]
Google Slides - veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Avast Online Security - veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Google Wallet - veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - veljko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
==== IE Start and Search Settings ======================
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.com/?trackid=sp-006"
"Search Page"="https://www.google.com/search?trackid=sp-006&q={searchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.com/?trackid=sp-006"
"Search Page"="https://www.google.com/search?trackid=sp-006&q={searchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.google.com/?trackid=sp-006"
"Search Page"="https://www.google.com/search?trackid=sp-006&q={searchTerms}"
"Search Bar"="https://www.google.com/?trackid=sp-006"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
==== All HKCU SearchScopes ======================
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{DB280FF9-2F5C-4F65-A70D-8C8AC84A64FF} Amazon (UK) Search Suggestions Url="http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}"
{E9410C70-B6AE-41FF-AB71-32F4B279EA5F} Google Url="https://www.google.com/search?trackid=sp-006&q={searchTerms}"
==== C:\zoek_backup content ======================
C:\zoek_backup (files=0 folders=0 0 bytes)
==== EOF on 24.12.2014 at 0:50:18,21 ======================
|
|
|
|
Poslao: 24 Dec 2014 01:23
|
offline
- Sass Drake
- Anti Malware Fighter
Rank 2
- Pridružio: 26 Avg 2010
- Poruke: 10622
- Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building
|
Kakvo je sada stanje?
|
|
|
|
Poslao: 24 Dec 2014 15:50
|
offline
- Pridružio: 05 Maj 2006
- Poruke: 86
|
cini mi se da je mnogo bolje, malo sam ga testirao sad id nisam primetio one probleme. hvala na pomoci javicu se ponovo ako nesto bude:)
hvala jos jednom i zivi bili:)
|
|
|
|
Poslao: 24 Dec 2014 17:33
|
offline
- Sass Drake
- Anti Malware Fighter
Rank 2
- Pridružio: 26 Avg 2010
- Poruke: 10622
- Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building
|
sajmon ::cini mi se da je mnogo bolje, malo sam ga testirao sad id nisam primetio one probleme. hvala na pomoci javicu se ponovo ako nesto bude:)
hvala jos jednom i zivi bili:)
Imamo još jednu provjeru da obavimo prije nego što završimo.
Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop.
Dvoklikom pokreni MBAR () na ikonicu programa:
- Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u;
- mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.;
- U uvodnom prozoru klikni dugme Next ukoliko si saglasan;
• Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next;
• Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan;
Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka:
- 'Could not load protection driver' => u tom slucaju klikni OK.
- 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta.
>> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje.
>> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje.
- Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja.
Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe:
- Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ...
- Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem.
Sledeci izvestaji ce biti formirani u mbar folderu.
1. mbar-log-year-month-day (hour-minute-second).txt
2. system-log.txt
Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.
|
|
|
|