Pisem vezano za ovu temu
Mislim da sam navukao neki virus.

Koristim win8 pro, 20 mbs internet.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-01-2015 01
Ran by Dasha (administrator) on DASHA-SRCE on 18-01-2015 21:57:46
Running from C:\Users\Dasha\Desktop
Loaded Profiles: Dasha (Available profiles: Dasha)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\D-Link\GO-USB-N150\RtlService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Realtek Semiconductor Corp.) C:\Program Files (x86)\D-Link\GO-USB-N150\RtWlan.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Akamai Technologies, Inc.) C:\Users\Dasha\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Dasha\AppData\Local\Akamai\netsession_win.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Windows\System32\mspaint.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-08] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-19] (AVAST Software)
HKU\S-1-5-21-1089642716-3300277505-45028169-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-1089642716-3300277505-45028169-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Dasha\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-30] (Akamai Technologies, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1089642716-3300277505-45028169-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Link mogu videti samo ulogovani korisnici]
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer]

FF ProfilePath: C:\Users\Dasha\AppData\Roaming\Mozilla\Firefox\Profiles\z346leo3.default
FF DefaultSearchEngine: Google
FF Plugin: -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin:,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32:,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32:,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32:,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32:,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll (Nexon)
FF Plugin-x32: -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF HKLM-x32\...\Firefox\Extensions: [] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-01-19]

CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-19]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-19] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2015-01-19] (Avast Software)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation)
R2 RtlService; C:\Program Files (x86)\D-Link\GO-USB-N150\RtlService.exe [36864 2012-05-10] (Realtek Semiconductor Corp.) [File not signed]
S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [977088 2014-03-03] () [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-01-19] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [87912 2015-01-19] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-01-19] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-01-19] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-01-19] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-01-19] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-01-19] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-01-19] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 RtlWlanu; C:\Windows\system32\DRIVERS\rtwlanu.sys [1578128 2012-12-05] (Realtek Semiconductor Corporation )
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2015-01-19] (Avast Software)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 05:55 - 2015-01-19 05:55 - 00000000 ____D () C:\ProgramData\Nexon
2015-01-19 05:50 - 2015-01-19 05:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2015-01-19 05:49 - 2015-01-19 05:55 - 00000000 ____D () C:\ProgramData\NexonEU
2015-01-19 05:46 - 2015-01-19 05:46 - 00000247 _____ () C:\Windows\system32\2015-01-19-04-46-33.017-aswFe.exe-2592.log
2015-01-19 05:43 - 2015-01-19 05:46 - 00000247 _____ () C:\Windows\system32\2015-01-19-04-43-47.017-aswFe.exe-3584.log
2015-01-19 05:43 - 2015-01-19 05:43 - 00000197 _____ () C:\Windows\system32\2015-01-19-04-43-44.038-AvastVBoxSVC.exe-4444.log
2015-01-19 05:38 - 2015-01-19 05:39 - 00000000 ____D () C:\Windows\SysWOW64\vbox
2015-01-19 05:38 - 2015-01-19 05:39 - 00000000 ____D () C:\Windows\system32\vbox
2015-01-19 05:38 - 2015-01-19 05:38 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-01-19 05:38 - 2015-01-19 05:38 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-01-19 05:38 - 2015-01-19 05:38 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-01-19 05:38 - 2015-01-19 05:38 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-01-19 05:38 - 2015-01-19 05:38 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-01-19 05:38 - 2015-01-19 05:38 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-01-19 05:38 - 2015-01-19 05:38 - 00087912 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2015-01-19 05:38 - 2015-01-19 05:38 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-01-19 05:38 - 2015-01-19 05:38 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-01-19 05:38 - 2015-01-19 05:38 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-01-19 05:38 - 2015-01-19 05:38 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-19 05:38 - 2015-01-19 05:38 - 00000000 ____D () C:\Users\Dasha\AppData\Roaming\AVAST Software
2015-01-19 05:38 - 2015-01-19 05:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-01-19 05:35 - 2015-01-19 05:35 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-01-19 05:35 - 2015-01-19 05:35 - 00000000 ____D () C:\Program Files\AVAST Software
2015-01-19 05:34 - 2015-01-19 05:34 - 00000424 _____ () C:\Users\Dasha\Desktop\This PC.lnk
2015-01-19 05:33 - 2015-01-19 05:48 - 2119785631 _____ (Nexon) C:\Users\Dasha\Documents\Combatarms_eu.exe
2015-01-19 05:32 - 2015-01-19 05:33 - 00000000 ____D () C:\Users\Dasha\AppData\Local\Akamai
2015-01-19 05:31 - 2015-01-19 05:31 - 00000000 ____D () C:\Users\Dasha\AppData\Local\Macromedia
2015-01-19 05:30 - 2015-01-19 05:30 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-01-19 05:29 - 2015-01-19 05:29 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-01-19 05:29 - 2015-01-19 05:29 - 00000000 ____D () C:\ProgramData\Sun
2015-01-19 05:29 - 2015-01-19 05:29 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-19 05:29 - 2015-01-19 05:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-01-19 05:29 - 2015-01-19 05:29 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-19 05:27 - 2015-01-19 05:27 - 00003682 _____ () C:\Windows\System32\Tasks\klcp_update
2015-01-19 05:27 - 2015-01-19 05:27 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-01-19 05:27 - 2015-01-19 05:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-01-19 05:27 - 2015-01-19 05:27 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2015-01-19 05:27 - 2015-01-13 19:00 - 00112640 _____ () C:\Windows\SysWOW64\ff_vfw.dll
2015-01-19 05:27 - 2014-12-21 14:58 - 03570688 _____ (x264vfw project) C:\Windows\system32\x264vfw64.dll
2015-01-19 05:27 - 2014-12-21 14:57 - 03588608 _____ (x264vfw project) C:\Windows\SysWOW64\x264vfw.dll
2015-01-19 05:27 - 2014-12-04 23:56 - 00729088 _____ () C:\Windows\system32\xvidcore.dll
2015-01-19 05:27 - 2014-12-04 23:55 - 00655872 _____ () C:\Windows\SysWOW64\xvidcore.dll
2015-01-19 05:27 - 2014-12-02 15:10 - 00260184 _____ () C:\Windows\system32\unrar64.dll
2015-01-19 05:27 - 2014-12-02 15:10 - 00218712 _____ () C:\Windows\SysWOW64\unrar.dll
2015-01-19 05:27 - 2014-11-14 15:12 - 00254976 _____ () C:\Windows\system32\xvidvfw.dll
2015-01-19 05:27 - 2014-11-14 15:11 - 00240128 _____ () C:\Windows\SysWOW64\xvidvfw.dll
2015-01-19 05:27 - 2012-07-21 12:55 - 00180736 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2015-01-19 05:27 - 2012-07-21 12:54 - 00122880 _____ (fccHandler) C:\Windows\SysWOW64\ac3acm.acm
2015-01-19 05:27 - 2011-12-07 19:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll
2015-01-19 05:27 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2015-01-19 05:26 - 2015-01-19 05:26 - 00003718 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-19 05:26 - 2015-01-18 21:42 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-19 05:25 - 2015-01-19 05:26 - 00000000 ____D () C:\Users\Dasha\AppData\Local\Adobe
2015-01-19 05:23 - 2015-01-19 05:23 - 00000000 ____D () C:\Users\Dasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-19 05:23 - 2015-01-19 05:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-19 05:23 - 2015-01-19 05:23 - 00000000 ____D () C:\Program Files\WinRAR
2015-01-19 05:22 - 2015-01-19 05:22 - 00000859 _____ () C:\Users\Dasha\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2015-01-19 05:22 - 2015-01-19 05:22 - 00000000 ____D () C:\ProgramData\APN
2015-01-19 05:22 - 2015-01-18 21:42 - 00000000 ____D () C:\Users\Dasha\AppData\Roaming\BitTorrent
2015-01-19 05:19 - 2015-01-19 05:20 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-01-19 05:19 - 2015-01-19 05:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-01-19 05:19 - 2015-01-19 05:19 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-19 05:18 - 2015-01-19 05:18 - 05317104 _____ (Piriform Ltd) C:\Users\Dasha\Downloads\ccsetup501.exe
2015-01-19 05:10 - 2015-01-19 05:10 - 00001171 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-01-19 05:10 - 2015-01-19 05:10 - 00000000 ____D () C:\Users\Dasha\AppData\Roaming\Mozilla
2015-01-19 05:10 - 2015-01-19 05:10 - 00000000 ____D () C:\Users\Dasha\AppData\Local\Mozilla
2015-01-19 05:10 - 2015-01-19 05:10 - 00000000 ____D () C:\ProgramData\Mozilla
2015-01-19 05:10 - 2015-01-19 05:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2015-01-19 05:10 - 2015-01-19 05:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-01-19 05:10 - 2015-01-19 05:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-19 05:10 - 2015-01-19 05:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-19 05:09 - 2015-01-19 05:09 - 00000000 ____D () C:\Windows\PCHEALTH
2015-01-19 05:09 - 2015-01-19 05:09 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2015-01-19 05:09 - 2015-01-19 05:09 - 00000000 ____D () C:\Program Files (x86)\Microsoft Sync Framework
2015-01-19 05:08 - 2015-01-19 05:10 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-01-19 05:08 - 2015-01-19 05:09 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-01-19 05:08 - 2015-01-19 05:08 - 00003934 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{475642C4-D1C2-450E-ADF3-4ADDFB5E93E1}
2015-01-19 05:08 - 2015-01-19 05:08 - 00000000 __SHD () C:\Users\Dasha\AppData\Local\EmieUserList
2015-01-19 05:08 - 2015-01-19 05:08 - 00000000 __SHD () C:\Users\Dasha\AppData\Local\EmieSiteList
2015-01-19 05:08 - 2015-01-19 05:08 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2015-01-19 05:08 - 2015-01-19 05:08 - 00000000 ____D () C:\Users\Dasha\AppData\Roaming\Macromedia
2015-01-19 05:08 - 2015-01-19 05:08 - 00000000 ____D () C:\Users\Dasha\AppData\Local\Microsoft Help
2015-01-19 05:08 - 2015-01-19 05:08 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-01-19 05:08 - 2015-01-19 05:08 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2015-01-19 05:08 - 2015-01-19 05:08 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2015-01-19 04:59 - 2015-01-19 04:59 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-19 04:59 - 2015-01-19 04:59 - 00000000 ____D () C:\Program Files (x86)\D-Link
2015-01-19 04:59 - 2013-01-25 02:32 - 00430080 _____ (Realtek) C:\Windows\SwUSB.exe
2015-01-19 04:59 - 2012-12-15 00:54 - 00036864 _____ () C:\Windows\runSW.exe
2015-01-19 04:59 - 2012-12-05 14:57 - 01578128 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\RTWlanU.sys
2015-01-19 04:59 - 2012-02-15 04:37 - 00594432 _____ (Realtek Semiconductor Corp. ) C:\Windows\system32\Rtlihvs.dll
2015-01-19 04:59 - 2010-12-01 18:31 - 00451072 _____ () C:\Windows\SysWOW64\ISSRemoveSP.exe
2015-01-19 04:59 - 2009-03-31 23:31 - 00380928 _____ (Realtek) C:\Windows\RtlUI2.exe
2015-01-19 04:59 - 2009-01-06 05:31 - 00000901 _____ () C:\Windows\RtlUI2.exe.manifest
2015-01-19 04:59 - 2008-07-01 21:31 - 00614400 _____ (Realtek Semiconductor Corp. ) C:\Windows\SysWOW64\Rtlihvs.dll
2015-01-19 04:59 - 2007-04-26 23:05 - 00100000 _____ () C:\Windows\SysWOW64\EAPPkt9x.VXD
2015-01-19 04:59 - 2001-09-26 20:03 - 00012981 _____ () C:\Windows\SysWOW64\REALPKT.VXD
2015-01-19 04:57 - 2015-01-19 04:57 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-01-19 04:57 - 2015-01-19 04:57 - 00377856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2015-01-19 04:57 - 2015-01-19 04:57 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll
2015-01-19 04:57 - 2015-01-19 04:57 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2015-01-19 04:57 - 2015-01-19 04:57 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2015-01-19 04:57 - 2015-01-19 04:57 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll
2015-01-19 04:57 - 2015-01-19 04:57 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2015-01-19 04:57 - 2015-01-19 04:57 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2015-01-19 04:57 - 2015-01-19 04:57 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe
2015-01-19 04:57 - 2015-01-19 04:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll
2015-01-19 04:57 - 2015-01-19 04:57 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2015-01-19 04:57 - 2015-01-19 04:57 - 00009216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2015-01-19 04:57 - 2015-01-19 04:57 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2015-01-19 04:57 - 2015-01-19 04:57 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2015-01-19 04:51 - 2015-01-19 05:14 - 00000000 ____D () C:\Users\Dasha\AppData\Local\NVIDIA Corporation
2015-01-19 04:50 - 2015-01-19 05:54 - 00000000 ____D () C:\Users\Dasha\Desktop\Precice
2015-01-19 04:50 - 2015-01-19 05:14 - 00000000 ____D () C:\Users\Dasha\AppData\Local\NVIDIA
2015-01-19 04:50 - 2015-01-19 04:51 - 00001908 _____ () C:\Windows\diagwrn.xml
2015-01-19 04:50 - 2015-01-19 04:51 - 00001908 _____ () C:\Windows\diagerr.xml
2015-01-19 04:50 - 2015-01-19 04:50 - 00000000 ___HD () C:\$WINDOWS.~BT
2015-01-19 04:47 - 2015-01-19 04:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-01-19 04:47 - 2014-12-13 01:11 - 02824504 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-01-19 04:47 - 2014-12-13 01:11 - 02210040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-01-19 04:47 - 2014-12-13 01:11 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-01-19 04:47 - 2014-12-13 01:11 - 01291464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-01-19 04:47 - 2010-05-26 20:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-01-19 04:47 - 2010-05-26 20:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-01-19 04:47 - 2010-05-26 20:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-01-19 04:47 - 2010-05-26 20:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-01-19 04:47 - 2010-05-26 20:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-01-19 04:47 - 2010-05-26 20:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-01-19 04:46 - 2015-01-19 04:46 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2015-01-19 04:46 - 2015-01-18 21:41 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-19 04:46 - 2015-01-18 20:59 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1089642716-3300277505-45028169-1001
2015-01-19 04:46 - 2014-12-13 11:08 - 00074056 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-01-19 04:46 - 2014-12-13 11:08 - 00060560 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-01-19 04:46 - 2014-12-13 09:03 - 06859408 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-01-19 04:46 - 2014-12-13 09:03 - 03513488 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-01-19 04:46 - 2014-12-13 09:03 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-01-19 04:46 - 2014-12-13 09:03 - 00935240 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-01-19 04:46 - 2014-12-13 09:03 - 00386368 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-01-19 04:46 - 2014-12-13 09:03 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-01-19 04:46 - 2014-12-13 01:47 - 00620176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-01-19 04:46 - 2014-12-13 00:11 - 04151176 _____ () C:\Windows\system32\nvcoproc.bin
2015-01-19 04:45 - 2015-01-19 04:51 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-01-19 04:45 - 2015-01-19 04:47 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-01-19 04:45 - 2014-12-13 11:08 - 32099472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 25460552 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 24764232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 20465808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 18594432 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 17264312 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 16040184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 14128496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 13288360 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 13202520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 10770120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 10710160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 10345280 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-01-19 04:45 - 2014-12-13 11:08 - 03610440 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 03293136 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 03248968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 02897824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 01895056 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434709.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 01556624 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434709.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 00994384 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 00968336 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 00942400 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 00928072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 00906560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 00876976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 00353224 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 00306328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 00178632 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 00165760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-01-19 04:45 - 2014-12-13 11:08 - 00027983 _____ () C:\Windows\system32\nvinfo.pb
2015-01-19 04:45 - 2014-11-22 11:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-01-19 04:45 - 2014-11-22 11:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-01-19 04:45 - 2014-11-22 11:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-01-19 04:45 - 2014-10-09 18:02 - 00195728 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-01-19 04:45 - 2014-10-09 18:02 - 00030536 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-01-19 04:45 - 2014-10-09 08:17 - 01540240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll
2015-01-19 04:44 - 2015-01-19 04:47 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-19 04:41 - 2015-01-19 04:41 - 00001442 _____ () C:\Users\Dasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-19 04:41 - 2015-01-19 04:41 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-01-19 04:41 - 2015-01-19 04:41 - 00000000 ____D () C:\Users\Dasha\AppData\Roaming\Adobe
2015-01-19 04:41 - 2015-01-19 04:41 - 00000000 ____D () C:\Users\Dasha\AppData\Local\VirtualStore
2015-01-19 04:40 - 2015-01-19 04:41 - 00000000 ____D () C:\Users\Dasha\AppData\Local\Packages
2015-01-19 04:40 - 2015-01-19 04:40 - 00000020 ___SH () C:\Users\Dasha\ntuser.ini
2015-01-19 04:40 - 2015-01-18 21:27 - 00000000 ____D () C:\Users\Dasha
2015-01-19 04:40 - 2014-03-18 11:35 - 00000000 ___RD () C:\Users\Dasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-01-19 04:40 - 2014-03-18 11:35 - 00000000 ___RD () C:\Users\Dasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-01-19 04:40 - 2014-03-18 11:15 - 00000369 _____ () C:\Users\Dasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-01-19 04:40 - 2014-03-18 11:15 - 00000369 _____ () C:\Users\Dasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-01-19 04:40 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Dasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-01-19 04:40 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Dasha\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-01-19 04:38 - 2015-01-19 04:38 - 00000000 ____D () C:\Windows\CSC
2015-01-19 04:37 - 2015-01-19 05:20 - 00003708 _____ () C:\Windows\System32\Tasks\AutoPico Daily Restart
2015-01-19 04:37 - 2015-01-19 04:37 - 00004608 _____ () C:\Windows\SECOH-QAD.exe
2015-01-19 04:37 - 2015-01-19 04:37 - 00003584 _____ () C:\Windows\SECOH-QAD.dll
2015-01-19 04:37 - 2015-01-19 04:37 - 00000000 ____D () C:\Program Files\KMSpico
2015-01-19 04:27 - 2015-01-19 05:19 - 00000000 ____D () C:\Windows\Panther
2015-01-19 04:20 - 2015-01-19 04:20 - 00000000 ____D () C:\Windows.old.000
2015-01-18 21:57 - 2015-01-18 21:58 - 00010278 _____ () C:\Users\Dasha\Desktop\FRST.txt
2015-01-18 21:57 - 2015-01-18 21:57 - 02126848 _____ (Farbar) C:\Users\Dasha\Desktop\FRST64.exe
2015-01-18 21:43 - 2015-01-18 21:43 - 00000197 _____ () C:\Windows\system32\2015-01-18-20-43-46.000-AvastVBoxSVC.exe-2744.log
2015-01-18 21:29 - 2015-01-18 21:29 - 00000197 _____ () C:\Windows\system32\2015-01-18-20-29-17.010-AvastVBoxSVC.exe-2808.log
2015-01-18 21:01 - 2015-01-18 21:01 - 00000197 _____ () C:\Windows\system32\2015-01-18-20-01-34.007-AvastVBoxSVC.exe-2796.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 05:58 - 2013-08-22 15:44 - 00473392 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-19 05:58 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-01-19 05:49 - 2014-05-30 11:31 - 00000000 ____D () C:\Nexon
2015-01-19 05:09 - 2014-03-18 10:46 - 00000000 ____D () C:\Windows\ShellNew
2015-01-19 05:08 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-01-19 05:08 - 2013-08-22 14:25 - 00000167 _____ () C:\Windows\win.ini
2015-01-19 05:02 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2015-01-19 04:57 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-01-19 04:47 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\restore
2015-01-19 04:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\Help
2015-01-19 04:46 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-01-19 04:41 - 2013-08-22 15:45 - 00000000 ____D () C:\Windows\Setup
2015-01-19 04:36 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\rescache
2015-01-19 04:29 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\Recovery
2015-01-19 04:29 - 2013-08-22 00:06 - 00000000 __SHD () C:\Recovery
2015-01-19 04:27 - 2013-08-22 16:36 - 00262144 _____ () C:\Windows\system32\config\BCD-Template
2015-01-19 04:27 - 2013-08-22 10:04 - 00008192 __RSH () C:\BOOTSECT.BAK
2015-01-18 21:57 - 2014-08-06 08:24 - 00000000 ____D () C:\FRST
2015-01-18 21:47 - 2014-03-18 11:04 - 00818732 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-18 21:41 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

Some content of TEMP:

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-01-19 04:28

==================== End Of Log ============================
Računar ti je čist što se malwarea tiče.


Sledeća procedura će implementirati završno čišćenje.

Arrow Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop.
Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija;

Remove disinfection tools
Create registry backup
Purge System Restore

Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad.
Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani.
Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt)

Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix
Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.


Što se tvog problema tiče, potrebno je isključiti skeniranje HTTPS saobraćaja u Avastovim podešavanjima. Uputstvo na engleskom jeziku imaš na sljedećem linku.
Napisano: 18 Jan 2015 23:27

Hvala puno.

Dopuna: 18 Jan 2015 23:32

Iskljucio i sad radi bravo majstore, hvala i Neci Smile

