usporen racunar

1

usporen racunar

offline
  • Pridružio: 05 Maj 2006
  • Poruke: 86

Napisano: 11 Okt 2013 23:06

dobro vece

u zadje vreme imam porblema sa racunarom. dosta je spor i ne mogu da nadjem problem.. sve radi usporeno, i internet i druge stvari..
postavljam log ispod pa ako bi neko mogao da pogleda jel ima nekig gresaka bio bi zahvalan:)

inace neka opdatiranja windows nece da instalira do kraja.. moguce da mi fali nesto od drivera ali ne mogu naci nikakvo resenje

hvala

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16514 BrowserJavaVersion: 10.40.2
Run by Bruker at 23:01:08 on 2013-10-11
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.47.1044.18.6092.2267 [GMT 2:00]
.
AV: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG2014\avgrsa.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\IDT\WDM\AESTSr64.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Windows\SysWOW64\ezSharedSvcHost.exe
C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Users\Bruker\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
C:\Program Files (x86)\AVG\AVG2014\avgui.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=62F9AC7289C117AF&affID=119357&tsp=4979
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -
uRun: [uTorrent] "C:\Users\Bruker\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
mRun: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
mRun: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
mRun: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-Explorer: EnableShellExecuteHooks = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{C6601591-258C-47A5-9E09-D7EE2AAEC796} : DHCPNameServer = 10.0.0.1
TCP: Interfaces\{C6956117-AC21-4390-966B-43B91584824F} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{C6956117-AC21-4390-966B-43B91584824F}\D4573796B6B63616665656E6 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{EBAFFA98-1E02-4971-AB74-E3DFCFEFEB50} : DHCPNameServer = 10.47.150.15 10.47.150.22
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
x64-DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2013-9-2 192824]
R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2013-9-2 294712]
R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2013-8-20 123704]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2013-9-8 31544]
R1 Avgdiska;AVG Disk Driver;C:\Windows\System32\drivers\avgdiska.sys [2013-9-25 148792]
R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2013-9-2 241464]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2013-9-2 212280]
R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2013-8-1 251192]
R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2013-7-30 89600]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2011-9-30 204288]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-1-9 659968]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2013-10-3 3538480]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2013-9-25 301152]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-1-17 135952]
R2 ezSharedSvc;Easybits Services for Windows;C:\Windows\System32\ezSharedSvcHost.exe --> C:\Windows\System32\ezSharedSvcHost.exe [?]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-9-27 86528]
R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-5-21 103992]
R2 hpsrv;HP Service;C:\Windows\System32\hpservice.exe [2012-4-25 31000]
R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-3-5 35200]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-3-20 13592]
R2 IconMan_R;IconMan_R;C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2013-7-30 2413056]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2013-9-23 2099512]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-3-20 2656280]
R2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2012-2-26 2669840]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed Virtual Adapter;C:\Windows\System32\drivers\AmpPal.sys [2012-1-9 195584]
R3 hpCMSrv;HP Connection Manager 4 Service;C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-6-14 1098296]
R3 IntcDAud;Intel(R) Skjermlyd;C:\Windows\System32\drivers\IntcDAud.sys [2012-3-20 317440]
R3 intelkmd;intelkmd;C:\Windows\System32\drivers\igdpmd64.sys [2011-8-9 12289472]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\System32\drivers\RtsPStor.sys [2012-3-20 338536]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2012-3-20 428136]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2013-9-18 14112]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protocol;C:\Windows\System32\drivers\AmpPal.sys [2012-1-9 195584]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-3-1 183560]
S3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\System32\drivers\clwvd.sys [2010-7-28 31088]
S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2012-2-26 273168]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2012-8-7 96768]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2012-8-7 213504]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-3-5 19456]
S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-14 292864]
S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-14 1485312]
S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-14 740864]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-3-5 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-3-5 30208]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-3-21 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184]
.
=============== Created Last 30 ================
.
2013-10-10 21:42:22 -------- d-----w- C:\ProgramData\Oracle
2013-10-10 21:42:09 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-10-10 17:02:56 633856 ----a-w- C:\Windows\System32\comctl32.dll
2013-10-08 22:24:31 40248 ----a-w- C:\Windows\System32\TURegOpt.exe
2013-10-08 22:24:30 29496 ----a-w- C:\Windows\System32\authuitu.dll
2013-10-08 22:24:30 25400 ----a-w- C:\Windows\SysWow64\authuitu.dll
2013-10-08 22:12:23 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-08 22:12:23 -------- d-----w- C:\Program Files\iTunes
2013-10-08 22:12:23 -------- d-----w- C:\Program Files\iPod
2013-10-08 22:12:23 -------- d-----w- C:\Program Files (x86)\iTunes
2013-10-08 22:11:17 -------- d-sh--w- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-09-25 19:07:30 148792 ----a-w- C:\Windows\System32\drivers\avgdiska.sys
2013-09-24 15:42:41 -------- d-----w- C:\Program Files\CCleaner
.
==================== Find3M ====================
.
2013-10-10 21:42:05 868264 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-10-10 21:42:05 790440 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-10-08 22:38:20 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-10-08 22:38:20 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-09-22 14:42:33 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2013-09-22 14:33:53 1392128 ----a-w- C:\Windows\System32\wininet.dll
2013-09-22 14:33:06 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-09-22 14:23:30 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-09-22 14:21:21 599040 ----a-w- C:\Windows\System32\vbscript.dll
2013-09-22 14:15:47 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2013-09-22 10:22:59 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-09-22 10:14:39 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-09-22 10:13:22 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-09-22 10:08:41 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2013-09-22 10:06:58 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2013-09-22 10:03:18 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-09-14 01:10:19 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-09-08 20:11:42 31544 ----a-w- C:\Windows\System32\drivers\avgrkx64.sys
2013-09-08 02:30:37 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-09-08 02:27:14 327168 ----a-w- C:\Windows\System32\mswsock.dll
2013-09-08 02:03:58 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2013-09-02 08:59:14 212280 ----a-w- C:\Windows\System32\drivers\avgldx64.sys
2013-09-02 08:29:18 294712 ----a-w- C:\Windows\System32\drivers\avgloga.sys
2013-09-02 08:26:50 192824 ----a-w- C:\Windows\System32\drivers\avgidsha.sys
2013-09-02 08:26:42 241464 ----a-w- C:\Windows\System32\drivers\avgidsdrivera.sys
2013-08-29 02:17:48 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-08-29 02:16:35 1732032 ----a-w- C:\Windows\System32\ntdll.dll
2013-08-29 02:16:28 243712 ----a-w- C:\Windows\System32\wow64.dll
2013-08-29 02:16:14 859648 ----a-w- C:\Windows\System32\tdh.dll
2013-08-29 02:13:28 878080 ----a-w- C:\Windows\System32\advapi32.dll
2013-08-29 01:51:45 3969472 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-08-29 01:51:45 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-08-29 01:50:31 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-08-29 01:50:30 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
2013-08-29 01:50:16 619520 ----a-w- C:\Windows\SysWow64\tdh.dll
2013-08-29 01:48:17 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll
2013-08-29 01:48:15 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-08-29 00:49:53 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-08-29 00:49:52 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-08-29 00:49:52 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-08-29 00:49:49 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-08-28 01:12:33 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2013-08-20 20:53:58 123704 ----a-w- C:\Windows\System32\drivers\avgmfx64.sys
2013-08-07 02:22:02 278800 ------w- C:\Windows\System32\MpSigStub.exe
2013-08-05 02:25:45 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2013-08-02 02:14:57 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-08-02 02:13:34 424448 ----a-w- C:\Windows\System32\KernelBase.dll
2013-08-02 01:50:42 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2013-08-02 01:09:17 338432 ----a-w- C:\Windows\System32\conhost.exe
2013-08-02 00:59:09 112640 ----a-w- C:\Windows\System32\smss.exe
2013-08-02 00:43:05 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2013-08-02 00:43:05 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-02 00:43:05 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-02 00:43:05 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2013-08-01 14:07:06 251192 ----a-w- C:\Windows\System32\drivers\avgtdia.sys
2013-08-01 12:09:36 983488 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2013-07-30 16:17:58 9888360 ----a-w- C:\Windows\SysWow64\RtsPStorIcon.dll
2013-07-30 16:17:58 338536 ----a-w- C:\Windows\System32\drivers\RtsPStor.sys
2013-07-25 09:25:54 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-07-25 08:57:27 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2013-07-22 14:07:44 20312 ----a-w- C:\Windows\System32\roboot64.exe
2013-07-20 10:33:12 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-07-20 10:33:08 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-07-19 01:58:42 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-07-19 01:41:01 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
.
============= FINISH: 23:01:36,79 ===============

mycity.rs/must-login.png

Dopuna: 12 Okt 2013 0:34

da dodam isto da kada sam na nekoj internet stranici kao na primer ovoj ili na neke novine kad citam, podize mi celu stranicu na vrh strane svaki cas...i dugme za vracanje u nazad ili nece da vrati ili mora po 2-3 puta da se pritisne da vi vratilo unazad..

pomagaj te Smile)

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Pozdrav.


Preuzmi "Xplode"-ov AdwCleaner () i sacuvaj ga na Desktop

Dvoklikom pokreni program.
Klikni na dugme [Scan] i pricekaj da program zavrsi.
Klikni na dugme [Clean]
Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu.
Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok


Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem.
Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl"

Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S1].txt





------------ Sledece ----------






Preuzmite program GMER sa donjeg linka na Desktop:


GMER download
Kliknite dati link;
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberite Desktop i kliknite Save.



Dvoklikom pokrenite GMER.
Sačekajte da se završi uvodno skeniranje - ukoliko se pojavi bilo kakav upit, kliknite No;

kliknite Scan i sačekajte da skeniranje bude završeno;

kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer1);

kliknite desnim tasterom u prozor programa Gmer i odaberite Options > 3rd party - kliknite Scan;

po završetku skeniranja kliknite Save ... - izveštaj sačuvajte na Desktop (pod nazivom Gmer2);

kliknite taster >>> i odaberite Autostart karticu;

po završetku kratkotrajnog skeniranja, kliknite Copy;

otvorite Notepad i u njega postavite kopirani tekst - izveštaj sačuvajte na Desktop (pod nazivom Gmer3);


Slikoviti prikaz postupka

Priložite sva tri izveštaja uz poruku korišćenjem opcije Prikači fajl.

offline
  • Pridružio: 05 Maj 2006
  • Poruke: 86

Napisano: 12 Okt 2013 12:36

# AdwCleaner v3.007 - Report created 12/10/2013 at 12:28:45
# Updated 09/10/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Bruker - BRUKER-HP
# Running from : C:\Users\Bruker\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\Users\Bruker\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Bruker\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Bruker\AppData\Roaming\BitLord
Folder Deleted : C:\Users\Bruker\AppData\Roaming\Systweak
Folder Deleted : C:\Users\Bruker\Documents\BitLord
Folder Deleted : C:\Users\Bruker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflheckfmhopnialghigdlggahiomebp
File Deleted : C:\Windows\System32\roboot64.exe

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKCU\Software\BabSolution
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\smartbar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16514

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v30.0.1599.69

[ File : C:\Users\Bruker\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : icon_url
Deleted : search_url
Deleted : keyword

*************************

AdwCleaner[R0].txt - [4229 octets] - [12/10/2013 12:27:05]
AdwCleaner[S0].txt - [3516 octets] - [12/10/2013 12:28:45]


ima jedan file koji se zavrsava sa "S0" i jedan sto se zavsava sa "R0" ...postavio sam oba...


########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3576 octets] ##########



mycity.rs/must-login.png

Dopuna: 12 Okt 2013 12:37

vidi da se ovaj drugi "S0" nije postavio pa ga postavljam ovde
mycity.rs/must-login.png

Dopuna: 12 Okt 2013 12:44

dok sam radio skeniranje sa "gmer" javlja mi se greska na kojoj stoji:
"C/windows/system 32/config/system gde stoji da proces ne moze da dobije konekciju sa navedenim fajlom jel je u upotrebi"

Dopuna: 12 Okt 2013 12:53

ova greska mi se pojavljivala vise puta po zavrsetku skeniranja... ispod kaci sva tri fajla:


mycity.rs/must-login.png

Dopuna: 12 Okt 2013 12:54

evo drugog:

mycity.rs/must-login.png

Dopuna: 12 Okt 2013 12:54

evo treceg:
mycity.rs/must-login.png


hvala na za sad na pomaganju:))

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Preuzmi FRST - (Farbar Recovery Scan Tool) i sacuvaj ga na Desktop

Napomena: Potrebno je preuzeti onu verziju koja je kompatibilna sa tvojim sistemom.


Dvoklikom pokreni FRST;
Kada se alat startuje, klikni Yes na disclaimer.
Klikni na dugme Scan;
Alat ce kreirati izvestaj (FRST.txt) u isti direktorijum gde je i FRST.exe sacuvan.
Iskopiraj sadrzaj tog loga u poruku.
Alat bi takodje pri prvom pokretanju trebao da kreira i dodatni izvestaj (Addition.txt). Taj izvestaj okaci u poruku koristeci opciju "Prikaci file".

offline
  • Pridružio: 05 Maj 2006
  • Poruke: 86

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by Bruker (administrator) on BRUKER-HP on 13-10-2013 18:13:48
Running from C:\Users\Bruker\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Norwegian Bokmal
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~2\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Hewlett-Packard Company) C:\Windows\system32\Hpservice.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(BitTorrent Inc.) C:\Users\Bruker\AppData\Roaming\uTorrent\uTorrent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
(Microsoft Corporation) \\?\C:\Windows\system32\wbem\WMIADAP.EXE
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1425408 2013-07-30] (IDT, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKCU\...\Run: [uTorrent] - C:\Users\Bruker\AppData\Roaming\uTorrent\uTorrent.exe [1129552 2013-07-23] (BitTorrent Inc.)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-05-20] (Intel Corporation)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-03-16] (EasyBits Software AS)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-10-01] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HPConnectionManager] - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [103992 2011-06-14] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [HPOSD] - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4908592 2013-10-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = g.uk.msn.com/HPCON/9
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = g.uk.msn.com/HPCON/9
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = g.uk.msn.com/HPCON/9
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = g.uk.msn.com/HPCON/9
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = g.uk.msn.com/HPCON/9
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKLM - {DB280FF9-2F5C-4F65-A70D-8C8AC84A64FF} URL = amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF.....-keywords={searchTerms}
SearchScopes: HKLM-x32 - {DB280FF9-2F5C-4F65-A70D-8C8AC84A64FF} URL = amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF.....-keywords={searchTerms}
SearchScopes: HKCU - {DB280FF9-2F5C-4F65-A70D-8C8AC84A64FF} URL = amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF.....-keywords={searchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWow64\EZUPBH~1.DLL [52920 2011-08-30] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchURL: (Delta Search) - www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=62F9AC7289C117AF&affID=119357&tsp=4979
CHR DefaultSuggestURL: (Delta Search) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll No File
CHR Extension: (Google Docs) - C:\Users\Bruker\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Bruker\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Bruker\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\Users\Bruker\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6_0
CHR Extension: (Google Search) - C:\Users\Bruker\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Bruker\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Bruker\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3538480 2013-10-03] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [301152 2013-09-25] (AVG Technologies CZ, s.r.o.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2012-02-26] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2099512 2013-09-23] (AVG)
S2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2669840 2012-02-26] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [148792 2013-09-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [241464 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [192824 2013-09-02] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-08-20] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-08] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2013-09-18] (TuneUp Software)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-13 18:13 - 2013-10-13 18:13 - 01954124 _____ (Farbar) C:\Users\Bruker\Downloads\FRST64.exe
2013-10-13 18:13 - 2013-10-13 18:13 - 00000000 ____D C:\FRST
2013-10-13 18:09 - 2013-10-13 18:09 - 629266364 _____ C:\Windows\MEMORY.DMP
2013-10-13 18:09 - 2013-10-13 18:09 - 00262144 _____ C:\Windows\Minidump\101313-42978-01.dmp
2013-10-12 12:51 - 2013-10-12 12:51 - 00006663 _____ C:\Users\Bruker\Desktop\Gmer3.txt
2013-10-12 12:49 - 2013-10-12 12:49 - 00088401 _____ C:\Users\Bruker\Desktop\gmer2.log
2013-10-12 12:44 - 2013-10-12 12:44 - 00001764 _____ C:\Users\Bruker\Desktop\Gmer1.log
2013-10-12 12:37 - 2013-10-12 12:37 - 00377856 _____ C:\Users\Bruker\Downloads\7dr7wvbe.exe
2013-10-12 12:36 - 2013-10-12 12:36 - 00004229 _____ C:\Users\Bruker\Downloads\35362_1156073222_AdwCleaner[R0].txt
2013-10-12 12:27 - 2013-10-12 12:28 - 00000000 ____D C:\AdwCleaner
2013-10-12 12:26 - 2013-10-12 12:26 - 01048960 _____ C:\Users\Bruker\Downloads\AdwCleaner.exe
2013-10-11 23:06 - 2013-10-11 23:06 - 00007259 _____ C:\Users\Bruker\Downloads\35362_707392640_attach.txt
2013-10-11 23:01 - 2013-10-11 23:01 - 00022005 _____ C:\Users\Bruker\Desktop\dds.txt
2013-10-11 23:01 - 2013-10-11 23:01 - 00007259 _____ C:\Users\Bruker\Desktop\attach.txt
2013-10-11 23:00 - 2013-10-11 23:01 - 00688992 ____R (Swearware) C:\Users\Bruker\Downloads\dds.scr
2013-10-10 23:42 - 2013-10-10 23:42 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-10 23:42 - 2013-10-10 23:42 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-10 23:42 - 2013-10-10 23:42 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-10 23:42 - 2013-10-10 23:42 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-10 23:42 - 2013-10-10 23:42 - 00000000 ____D C:\ProgramData\Oracle
2013-10-10 23:42 - 2013-10-10 23:42 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-10 20:53 - 2013-10-10 20:53 - 00000000 ____D C:\7ebce1b386d88f9d752c29a7ac73ae
2013-10-10 20:53 - 2013-09-22 17:43 - 17833984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-10 20:53 - 2013-09-22 17:01 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-10 20:53 - 2013-09-22 16:42 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-10 20:53 - 2013-09-22 16:36 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-10 20:53 - 2013-09-22 16:33 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-10 20:53 - 2013-09-22 16:33 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-10 20:53 - 2013-09-22 16:30 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-10 20:53 - 2013-09-22 16:27 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-10 20:53 - 2013-09-22 16:23 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-10 20:53 - 2013-09-22 16:22 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-10 20:53 - 2013-09-22 16:21 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-10 20:53 - 2013-09-22 16:19 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-10 20:53 - 2013-09-22 16:19 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-10 20:53 - 2013-09-22 16:16 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-10 20:53 - 2013-09-22 16:15 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-10 20:53 - 2013-09-22 16:07 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-10 20:53 - 2013-09-22 12:29 - 12336128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 20:53 - 2013-09-22 12:22 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-10 20:53 - 2013-09-22 12:22 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-10 20:53 - 2013-09-22 12:14 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-10 20:53 - 2013-09-22 12:13 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-10 20:53 - 2013-09-22 12:13 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-10 20:53 - 2013-09-22 12:12 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-10 20:53 - 2013-09-22 12:09 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-10 20:53 - 2013-09-22 12:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-10 20:53 - 2013-09-22 12:07 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-10 20:53 - 2013-09-22 12:06 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-10 20:53 - 2013-09-22 12:05 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-10 20:53 - 2013-09-22 12:03 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-10 20:53 - 2013-09-22 12:03 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-10 20:53 - 2013-09-22 12:03 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-10 20:53 - 2013-09-22 11:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-10 19:02 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 19:02 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 19:02 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 19:02 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 19:02 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 19:02 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 19:02 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 19:02 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 19:02 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 19:02 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 19:02 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 19:02 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 19:02 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 19:02 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 19:02 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 19:02 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 19:02 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 19:02 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 19:02 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 19:02 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 19:02 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 19:02 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 19:02 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 19:02 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 19:02 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 19:02 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 19:02 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 19:02 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 19:02 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 19:02 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 19:02 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 19:02 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 19:02 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 19:02 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 19:02 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 19:02 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 19:02 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 19:02 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 19:02 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 19:02 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 19:02 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 19:02 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 19:02 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 19:02 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 19:02 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 00:58 - 2013-10-10 00:58 - 00002762 _____ C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2013-10-09 21:53 - 2013-10-09 21:53 - 00058016 _____ C:\Users\Bruker\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-09 21:52 - 2013-10-13 18:09 - 00000336 _____ C:\Windows\setupact.log
2013-10-09 21:52 - 2013-10-11 00:01 - 00277120 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-09 21:52 - 2013-10-09 21:52 - 00007254 _____ C:\Windows\PFRO.log
2013-10-09 21:52 - 2013-10-09 21:52 - 00000000 _____ C:\Windows\setuperr.log
2013-10-09 00:24 - 2013-10-09 00:24 - 00002229 _____ C:\Users\Public\Desktop\AVG 1-Click Maintenance.lnk
2013-10-09 00:24 - 2013-10-09 00:24 - 00002203 _____ C:\Users\Public\Desktop\AVG PC TuneUp 2014.lnk
2013-10-09 00:24 - 2013-09-23 11:10 - 00040248 _____ (AVG) C:\Windows\system32\TURegOpt.exe
2013-10-09 00:24 - 2013-09-23 11:10 - 00029496 _____ (AVG) C:\Windows\system32\authuitu.dll
2013-10-09 00:24 - 2013-09-23 11:10 - 00025400 _____ (AVG) C:\Windows\SysWOW64\authuitu.dll
2013-10-09 00:12 - 2013-10-09 00:12 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-09 00:12 - 2013-10-09 00:12 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-09 00:12 - 2013-10-09 00:12 - 00000000 ____D C:\Program Files\iTunes
2013-10-09 00:12 - 2013-10-09 00:12 - 00000000 ____D C:\Program Files\iPod
2013-10-09 00:12 - 2013-10-09 00:12 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-09 00:11 - 2013-10-09 18:29 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-10-09 00:08 - 2013-10-09 00:10 - 78411688 _____ (AVG) C:\Users\Bruker\Downloads\avg_tuh_stf_all_2014_174_24c28.exe
2013-10-03 00:06 - 2013-10-03 00:06 - 00056517 _____ C:\Users\Bruker\Downloads\[YuWa]Burn After Reading 2008.720p.BrRip.x264.YIFY.torrent
2013-10-03 00:05 - 2013-10-03 00:05 - 00060570 _____ C:\Users\Bruker\Downloads\[YuWa]Gone Baby Gone 2007.720p.BrRip.x264.BOKUTOX.YIFY.torrent
2013-10-03 00:02 - 2013-10-03 00:02 - 00015951 _____ C:\Users\Bruker\Downloads\[YuWa]Dont.Be.a.Menace.1996.720p.BRRip.x264.torrent
2013-10-02 23:58 - 2013-10-02 23:58 - 00092078 _____ C:\Users\Bruker\Downloads\[YuWa]Prisoners 2013.hdcam.torrent
2013-10-01 22:40 - 2013-10-01 22:40 - 00055834 _____ C:\Users\Bruker\Downloads\[YuWa]Riddick 2013.hdcam.torrent
2013-10-01 18:34 - 2013-10-01 18:34 - 00098591 _____ C:\Users\Bruker\Downloads\[kickass.to]breaking.bad.s05e16.720p.hdtv.x264.immerse.rartv.torrent
2013-09-30 00:43 - 2013-09-30 00:43 - 00025634 _____ C:\Users\Bruker\Downloads\Breaking-Bad-S05E15-HDTV-x264-2HD[ettv].torrent
2013-09-25 21:07 - 2013-09-25 21:07 - 00148792 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgdiska.sys
2013-09-24 17:42 - 2013-09-24 17:42 - 00002774 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-09-24 17:42 - 2013-09-24 17:42 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-09-24 17:42 - 2013-09-24 17:42 - 00000000 ____D C:\Program Files\CCleaner

==================== One Month Modified Files and Folders =======

2013-10-13 18:15 - 2013-07-26 22:40 - 00000000 ____D C:\ProgramData\MFAData
2013-10-13 18:15 - 2013-07-22 21:35 - 00000000 ____D C:\Users\Bruker\AppData\Roaming\uTorrent
2013-10-13 18:14 - 2012-03-20 15:06 - 01179248 _____ C:\Windows\WindowsUpdate.log
2013-10-13 18:13 - 2013-10-13 18:13 - 01954124 _____ (Farbar) C:\Users\Bruker\Downloads\FRST64.exe
2013-10-13 18:13 - 2013-10-13 18:13 - 00000000 ____D C:\FRST
2013-10-13 18:10 - 2013-07-23 22:43 - 00003192 _____ C:\Windows\System32\Tasks\HPCeeScheduleForBruker
2013-10-13 18:10 - 2013-07-23 22:43 - 00000336 _____ C:\Windows\Tasks\HPCeeScheduleForBruker.job
2013-10-13 18:09 - 2013-10-13 18:09 - 629266364 _____ C:\Windows\MEMORY.DMP
2013-10-13 18:09 - 2013-10-13 18:09 - 00262144 _____ C:\Windows\Minidump\101313-42978-01.dmp
2013-10-13 18:09 - 2013-10-09 21:52 - 00000336 _____ C:\Windows\setupact.log
2013-10-13 18:09 - 2013-09-08 22:11 - 00000000 ____D C:\Windows\Minidump
2013-10-13 18:09 - 2013-07-22 21:14 - 00000988 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-13 18:09 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-12 13:38 - 2013-07-23 22:52 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-12 13:19 - 2013-07-22 21:14 - 00000992 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-12 12:51 - 2013-10-12 12:51 - 00006663 _____ C:\Users\Bruker\Desktop\Gmer3.txt
2013-10-12 12:49 - 2013-10-12 12:49 - 00088401 _____ C:\Users\Bruker\Desktop\gmer2.log
2013-10-12 12:44 - 2013-10-12 12:44 - 00001764 _____ C:\Users\Bruker\Desktop\Gmer1.log
2013-10-12 12:38 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-12 12:38 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-12 12:37 - 2013-10-12 12:37 - 00377856 _____ C:\Users\Bruker\Downloads\7dr7wvbe.exe
2013-10-12 12:36 - 2013-10-12 12:36 - 00004229 _____ C:\Users\Bruker\Downloads\35362_1156073222_AdwCleaner[R0].txt
2013-10-12 12:36 - 2011-08-30 05:59 - 00973804 _____ C:\Windows\system32\perfh014.dat
2013-10-12 12:36 - 2011-08-30 05:59 - 00256930 _____ C:\Windows\system32\perfc014.dat
2013-10-12 12:36 - 2009-07-14 07:13 - 00005194 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-12 12:28 - 2013-10-12 12:27 - 00000000 ____D C:\AdwCleaner
2013-10-12 12:26 - 2013-10-12 12:26 - 01048960 _____ C:\Users\Bruker\Downloads\AdwCleaner.exe
2013-10-12 12:12 - 2013-07-22 21:31 - 00000000 ____D C:\Users\Bruker\AppData\Roaming\vlc
2013-10-11 23:06 - 2013-10-11 23:06 - 00007259 _____ C:\Users\Bruker\Downloads\35362_707392640_attach.txt
2013-10-11 23:01 - 2013-10-11 23:01 - 00022005 _____ C:\Users\Bruker\Desktop\dds.txt
2013-10-11 23:01 - 2013-10-11 23:01 - 00007259 _____ C:\Users\Bruker\Desktop\attach.txt
2013-10-11 23:01 - 2013-10-11 23:00 - 00688992 ____R (Swearware) C:\Users\Bruker\Downloads\dds.scr
2013-10-11 01:25 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 00:01 - 2013-10-09 21:52 - 00277120 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 00:00 - 2013-07-28 01:43 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-10 23:42 - 2013-10-10 23:42 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-10 23:42 - 2013-10-10 23:42 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-10 23:42 - 2013-10-10 23:42 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-10 23:42 - 2013-10-10 23:42 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-10 23:42 - 2013-10-10 23:42 - 00000000 ____D C:\ProgramData\Oracle
2013-10-10 23:42 - 2013-10-10 23:42 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-10 23:42 - 2013-07-22 21:18 - 00868264 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-10-10 23:42 - 2011-08-30 07:02 - 00790440 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-10-10 23:38 - 2013-07-28 01:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-10 20:53 - 2013-10-10 20:53 - 00000000 ____D C:\7ebce1b386d88f9d752c29a7ac73ae
2013-10-10 18:52 - 2013-09-08 16:16 - 00000965 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-10-10 00:58 - 2013-10-10 00:58 - 00002762 _____ C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2013-10-10 00:20 - 2013-07-22 21:15 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-09 21:53 - 2013-10-09 21:53 - 00058016 _____ C:\Users\Bruker\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-09 21:52 - 2013-10-09 21:52 - 00007254 _____ C:\Windows\PFRO.log
2013-10-09 21:52 - 2013-10-09 21:52 - 00000000 _____ C:\Windows\setuperr.log
2013-10-09 18:47 - 2013-07-22 18:25 - 00000000 __SHD C:\found.000
2013-10-09 18:47 - 2007-01-02 03:25 - 00000000 ____D C:\Windows\Panther
2013-10-09 18:29 - 2013-10-09 00:11 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-10-09 18:29 - 2013-08-24 16:57 - 00000000 __SHD C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2013-10-09 18:29 - 2013-07-23 22:40 - 00000000 ____D C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
2013-10-09 18:29 - 2012-03-20 16:39 - 00000000 ____D C:\Users\Bruker\AppData\Roaming\hpqLog
2013-10-09 18:28 - 2013-08-24 16:57 - 00000000 ____D C:\ProgramData\AVG
2013-10-09 09:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2013-10-09 09:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2013-10-09 01:17 - 2012-03-20 16:27 - 00000000 ____D C:\Users\Bruker\AppData\Local\VirtualStore
2013-10-09 00:38 - 2013-07-23 22:52 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-09 00:38 - 2013-07-23 22:52 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-09 00:38 - 2013-07-23 22:52 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-09 00:24 - 2013-10-09 00:24 - 00002229 _____ C:\Users\Public\Desktop\AVG 1-Click Maintenance.lnk
2013-10-09 00:24 - 2013-10-09 00:24 - 00002203 _____ C:\Users\Public\Desktop\AVG PC TuneUp 2014.lnk
2013-10-09 00:24 - 2013-09-03 20:51 - 00000000 ____D C:\Program Files (x86)\AVG
2013-10-09 00:24 - 2013-08-24 16:58 - 00000000 ____D C:\Users\Bruker\AppData\Roaming\AVG
2013-10-09 00:12 - 2013-10-09 00:12 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-09 00:12 - 2013-10-09 00:12 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-09 00:12 - 2013-10-09 00:12 - 00000000 ____D C:\Program Files\iTunes
2013-10-09 00:12 - 2013-10-09 00:12 - 00000000 ____D C:\Program Files\iPod
2013-10-09 00:12 - 2013-10-09 00:12 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-09 00:10 - 2013-10-09 00:08 - 78411688 _____ (AVG) C:\Users\Bruker\Downloads\avg_tuh_stf_all_2014_174_24c28.exe
2013-10-09 00:09 - 2013-07-30 18:00 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-10-09 00:09 - 2013-07-23 22:06 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-10-08 23:57 - 2012-03-20 16:26 - 00000000 ____D C:\Users\Bruker
2013-10-03 00:06 - 2013-10-03 00:06 - 00056517 _____ C:\Users\Bruker\Downloads\[YuWa]Burn After Reading 2008.720p.BrRip.x264.YIFY.torrent
2013-10-03 00:05 - 2013-10-03 00:05 - 00060570 _____ C:\Users\Bruker\Downloads\[YuWa]Gone Baby Gone 2007.720p.BrRip.x264.BOKUTOX.YIFY.torrent
2013-10-03 00:02 - 2013-10-03 00:02 - 00015951 _____ C:\Users\Bruker\Downloads\[YuWa]Dont.Be.a.Menace.1996.720p.BRRip.x264.torrent
2013-10-02 23:58 - 2013-10-02 23:58 - 00092078 _____ C:\Users\Bruker\Downloads\[YuWa]Prisoners 2013.hdcam.torrent
2013-10-01 22:40 - 2013-10-01 22:40 - 00055834 _____ C:\Users\Bruker\Downloads\[YuWa]Riddick 2013.hdcam.torrent
2013-10-01 18:34 - 2013-10-01 18:34 - 00098591 _____ C:\Users\Bruker\Downloads\[kickass.to]breaking.bad.s05e16.720p.hdtv.x264.immerse.rartv.torrent
2013-09-30 00:43 - 2013-09-30 00:43 - 00025634 _____ C:\Users\Bruker\Downloads\Breaking-Bad-S05E15-HDTV-x264-2HD[ettv].torrent
2013-09-25 21:07 - 2013-09-25 21:07 - 00148792 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgdiska.sys
2013-09-24 17:47 - 2013-07-22 21:23 - 00000000 ____D C:\Users\Bruker\AppData\Local\CrashDumps
2013-09-24 17:42 - 2013-09-24 17:42 - 00002774 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-09-24 17:42 - 2013-09-24 17:42 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-09-24 17:42 - 2013-09-24 17:42 - 00000000 ____D C:\Program Files\CCleaner
2013-09-23 11:10 - 2013-10-09 00:24 - 00040248 _____ (AVG) C:\Windows\system32\TURegOpt.exe
2013-09-23 11:10 - 2013-10-09 00:24 - 00029496 _____ (AVG) C:\Windows\system32\authuitu.dll
2013-09-23 11:10 - 2013-10-09 00:24 - 00025400 _____ (AVG) C:\Windows\SysWOW64\authuitu.dll
2013-09-22 17:43 - 2013-10-10 20:53 - 17833984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-22 17:01 - 2013-10-10 20:53 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-22 16:42 - 2013-10-10 20:53 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-22 16:36 - 2013-10-10 20:53 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-22 16:33 - 2013-10-10 20:53 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-22 16:33 - 2013-10-10 20:53 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-22 16:30 - 2013-10-10 20:53 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-22 16:27 - 2013-10-10 20:53 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-22 16:23 - 2013-10-10 20:53 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-22 16:22 - 2013-10-10 20:53 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-22 16:21 - 2013-10-10 20:53 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-22 16:19 - 2013-10-10 20:53 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-22 16:19 - 2013-10-10 20:53 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-22 16:16 - 2013-10-10 20:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-22 16:15 - 2013-10-10 20:53 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-22 16:07 - 2013-10-10 20:53 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-22 12:29 - 2013-10-10 20:53 - 12336128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-22 12:22 - 2013-10-10 20:53 - 09739264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-22 12:22 - 2013-10-10 20:53 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-22 12:14 - 2013-10-10 20:53 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-22 12:13 - 2013-10-10 20:53 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-22 12:13 - 2013-10-10 20:53 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-22 12:12 - 2013-10-10 20:53 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-22 12:09 - 2013-10-10 20:53 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-22 12:08 - 2013-10-10 20:53 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-22 12:07 - 2013-10-10 20:53 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-22 12:06 - 2013-10-10 20:53 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-22 12:05 - 2013-10-10 20:53 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-22 12:03 - 2013-10-10 20:53 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-22 12:03 - 2013-10-10 20:53 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-22 12:03 - 2013-10-10 20:53 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-22 11:59 - 2013-10-10 20:53 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-15 23:19 - 2012-03-20 16:39 - 00000000 ___RD C:\Users\Bruker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-15 23:19 - 2012-03-20 16:39 - 00000000 ___RD C:\Users\Bruker\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-15 23:00 - 2013-08-17 03:02 - 00000000 ____D C:\Windows\system32\MRT
2013-09-15 22:58 - 2012-03-21 10:31 - 79143768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-14 03:10 - 2013-10-10 19:02 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys

Some content of TEMP:
====================
C:\Users\Bruker\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-11 01:17

==================== End Of Log ============================
mycity.rs/must-login.png


evo su obe stvari..Smile

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Deinstaliraj TuneUp.


1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:
Start
CHR DefaultSearchURL: (Delta Search) - http://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=62F9AC7289C117AF&affID=119357&tsp=4979
CHR DefaultSuggestURL: (Delta Search) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
C:\Users\Bruker\AppData\Local\Temp\Quarantine.exe
End

2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.

3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.



Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

offline
  • Pridružio: 05 Maj 2006
  • Poruke: 86

Napisano: 13 Okt 2013 20:24

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-10-2013
Ran by Bruker at 2013-10-13 20:21:55 Run:1
Running from C:\Users\Bruker\Downloads
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CHR DefaultSearchURL: (Delta Search) - www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=62F9AC7289C117AF&affID=119357&tsp=4979
CHR DefaultSuggestURL: (Delta Search) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
C:\Users\Bruker\AppData\Local\Temp\Quarantine.exe
End
*****************

CHR DefaultSearchURL: (Delta Search) - www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=62F9AC7289C117AF&affID=119357&tsp=4979 ==> The Chrome "Settings" can be used to fix the entry.
CHR DefaultSuggestURL: (Delta Search) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} ==> The Chrome "Settings" can be used to fix the entry.
"C:\Users\Bruker\AppData\Local\Temp\Quarantine.exe " => File/Directory not found.

==== End of Fixlog ====

ovo mi se otvorilo u Notepad-u kada se zavrsilo skeniranje. nisam bas siguran da sam ovo zadnje odbro odradio, ali mislim da jeste..

izbrisao sam tuneUp (AVG TuneUp, mislim da si na to mislio)

Dopuna: 13 Okt 2013 20:26

jos uvek mi kada na internetu pritisnem dugme za vracanje nazad nece da vrati na predhotno stranicu, moram da otvaram sve ponovo... ne znam zasto je to tako??

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Preuzmi smeenk-ov zoek.zip ili zoek.rar () sa ovog ili ovog linka i sačuvaj ga na Desktop.

Raspakuj arhivu u neki folder (uputstvo), a zatim:

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:


filesrcm;
startupall;
skipfix-iedefaults;
firefoxlook;
chromelook;


Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

offline
  • Pridružio: 05 Maj 2006
  • Poruke: 86

evo novog log-a druze.. hvala na brzim odgovorima:)

Zoek.exe Version 4.0.0.5 Updated 13-October-2013
Tool run by Bruker on 13.10.2013 at 21:11:48,34.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Bruker\Desktop\zoek\zoek.exe [Script inserted]

==== System Restore Info ======================

13.10.2013 21:12:37 Zoek.exe System Restore Point Created Succesfully.

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2013-10-13 16:09:05 7C358F8A278F8A8F9045C6F09C6545FC 629266364 ----a-w- C:\Windows\MEMORY.DMP
====== C:\Users\Bruker\AppData\Local\Temp ====
2013-10-13 17:50:44 6C98B2D8397DF93393A2677FA7F7DE78 120120 ----a-w- C:\Users\Bruker\AppData\Local\Temp\TUUUninstallHelper.exe
====== Java Cache =====
2013-10-10 21:42:56 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Users\Bruker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\3ca5ef13-706ac016
2013-10-10 21:42:44 581BE739266C1901E6AE268C34DBA438 6180 ----a-w- C:\Users\Bruker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\22e17456-2aacfaab
2013-10-10 21:42:44 7F5135B0644F36A9791B615B0993C6EC 651 ----a-w- C:\Users\Bruker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\41c97319-43402e70
2013-10-09 19:54:52 89FD6FD1F8DD89879A4B473D373557FA 8535 ----a-w- C:\Users\Bruker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\18af21a7-74dfa287
2013-10-09 19:55:07 B90479FF310040B57AF0FDBFDBD9D662 21840 ----a-w- C:\Users\Bruker\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\6017afa-43a4abc4-5.4.3.0-
2013-10-12 10:35:46 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Bruker\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-7b7d8fee
====== C:\Windows\SysWOW64 =====
2013-10-10 21:42:12 ACA17F8E1F9E8891DE15E2527D8D74D0 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe
2013-10-10 21:42:09 EC94122E6DCB6E731D8513A89AC9CF12 175016 ----a-w- C:\Windows\SysWOW64\javaw.exe
2013-10-10 21:42:09 EC2A0F271C0FD4AD57B137845577F539 175016 ----a-w- C:\Windows\SysWOW64\java.exe
2013-10-10 21:42:09 6BEE003DB3FEF04151F614303EBB1E7B 96168 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-10 18:53:16 D9F8C3F763EF4CCEA8A6DD2540760817 2382848 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2013-10-10 18:53:16 327FE5AB6905642AB9FC34F912B6C264 73216 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2013-10-10 18:53:15 FF3E0BA38DB8561CB97B0FBF6C3B3F9E 176640 ----a-w- C:\Windows\SysWOW64\ieui.dll
2013-10-10 18:53:15 C8ADAA6948993D839D14524847EA5B75 1129472 ----a-w- C:\Windows\SysWOW64\wininet.dll
2013-10-10 18:53:15 4F97C454AF1718AE51696D9AD6A2F9AB 420864 ----a-w- C:\Windows\SysWOW64\vbscript.dll
2013-10-10 18:53:15 3B2EFBBC78DA786391B5A49614DF56C0 142848 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2013-10-10 18:53:14 DE4C23B8F2F277ECF9692428DC9B5A22 607744 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
2013-10-10 18:53:14 AF0FEB5AEFE8440F78DDCFDAA742EE63 231936 ----a-w- C:\Windows\SysWOW64\url.dll
2013-10-10 18:53:13 EB311F8C0DBE714A4A6E63AD22245A28 1427968 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
2013-10-10 18:53:13 D71C425BBC059CBFEE99328AF6D4D340 1800704 ----a-w- C:\Windows\SysWOW64\jscript9.dll
2013-10-10 18:53:13 D2A365FCB3492C01F7A6273F747BDD0A 1796096 ----a-w- C:\Windows\SysWOW64\iertutil.dll
2013-10-10 18:53:13 9CE9B5DDE7017DF600DC29EFC3E832A7 717824 ----a-w- C:\Windows\SysWOW64\jscript.dll
2013-10-10 18:53:13 8CDB5EC48867F571455B1C6875E033D3 1104896 ----a-w- C:\Windows\SysWOW64\urlmon.dll
2013-10-10 18:53:12 3B0B665ECDC46A32395FF2F430B8680E 65024 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
2013-10-10 18:53:11 F46A58EC9183CB2B24326A41CDDE1FAE 12336128 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2013-10-10 18:53:08 9C5CC7677B63F939D980D16953438B45 9739264 ----a-w- C:\Windows\SysWOW64\ieframe.dll
2013-10-10 17:02:56 75F5E1FE8D55CF8E577E0EC5F2290D3F 530432 ----a-w- C:\Windows\SysWOW64\comctl32.dll
2013-10-10 17:02:55 CC23295DA8F7B5C53F93804D2F5D30EB 25600 ----a-w- C:\Windows\SysWOW64\lpk.dll
2013-10-10 17:02:55 8CC4638FA7B5B921B9080CF962582C0B 70656 ----a-w- C:\Windows\SysWOW64\fontsub.dll
2013-10-10 17:02:55 7D27E63B54DB093BB0D9E95F81094D75 34304 ----a-w- C:\Windows\SysWOW64\atmlib.dll
2013-10-10 17:02:55 5C6B44F9CAAC475B7B9EBBC29CB7F065 295424 ----a-w- C:\Windows\SysWOW64\atmfd.dll
2013-10-10 17:02:55 2342EC9254F4C60CA98441BD65C89E12 10240 ----a-w- C:\Windows\SysWOW64\dciman32.dll
2013-10-10 17:02:49 EAF4712B706936C0B10D3B5319B37E81 81920 ----a-w- C:\Windows\SysWOW64\davclnt.dll
2013-10-10 17:02:49 75E8EBD7040CE238684333F97014762A 205824 ----a-w- C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 17:02:47 E94C583CDE2348950155F2AF2876F34D 231424 ----a-w- C:\Windows\SysWOW64\mswsock.dll
2013-10-10 17:02:44 482C8CD985C727C7C78A5E9B320947F0 3969472 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 17:02:43 DEE3A05EB88EAFE9C5FF9643676ECC60 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 17:02:43 DA1340AC8B22D0719F47222C8D508393 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe
2013-10-10 17:02:43 D67472125471784DE7147946EDA25FEB 640512 ----a-w- C:\Windows\SysWOW64\advapi32.dll
2013-10-10 17:02:43 A2B0924D50F4435FD389499047CE553A 1292192 ----a-w- C:\Windows\SysWOW64\ntdll.dll
2013-10-10 17:02:43 813A7F5A2D6D366EB3FFB643B851BCE5 3914176 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 17:02:43 401D25136E26B237D77DA1BF1198B3BD 619520 ----a-w- C:\Windows\SysWOW64\tdh.dll
2013-10-10 17:02:42 D37B27C1F5FE8CFFCCA80FFD4F91149B 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll
2013-10-10 17:02:42 8C3D064E7B7C0F3685A441A37A93C5D1 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe
2013-10-10 17:02:42 5244D544B022E70881794563D657B5EF 2048 ----a-w- C:\Windows\SysWOW64\user.exe
2013-10-10 17:02:40 2A01B40C8334A8124001CFAC256FCA83 102608 ----a-w- C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2013-10-10 18:53:16 D4372C2CFEF849676ECE9747EEE92A32 2382848 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2013-10-10 18:53:16 4CC24784CB8D1BD9DBB35E4C055BD052 96768 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2013-10-10 18:53:15 B73439C148710919E18321C487E4C885 173056 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
2013-10-10 18:53:15 67926CE246B1C4080AD8DE7626965059 248320 ----a-w- C:\Windows\Sysnative\ieui.dll
2013-10-10 18:53:15 3CD6F07E6416ED6E18A1965CD2B9144A 1392128 ----a-w- C:\Windows\Sysnative\wininet.dll
2013-10-10 18:53:14 A9B0F7A6C9839F931829CD0FF34D82F8 85504 ----a-w- C:\Windows\Sysnative\jsproxy.dll
2013-10-10 18:53:14 6431F1042CEE8BD0197200EDCDF10B4F 237056 ----a-w- C:\Windows\Sysnative\url.dll
2013-10-10 18:53:14 61DB16986A5561DE7929C1BEE64BFF11 729088 ----a-w- C:\Windows\Sysnative\msfeeds.dll
2013-10-10 18:53:13 FB20289B5331AE4D36EB39F3762C6527 599040 ----a-w- C:\Windows\Sysnative\vbscript.dll
2013-10-10 18:53:13 F45A1C24BC50B41659F6318C4F7C4533 2312704 ----a-w- C:\Windows\Sysnative\jscript9.dll
2013-10-10 18:53:13 BA4EAF171692FEC3F22DC8ED588C125E 816640 ----a-w- C:\Windows\Sysnative\jscript.dll
2013-10-10 18:53:13 83A99C79BA5980FB187CCE825C5AECDE 1346560 ----a-w- C:\Windows\Sysnative\urlmon.dll
2013-10-10 18:53:13 26FCE63F15EADEFCB0E1D37A6CD6939B 1494528 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
2013-10-10 18:53:13 224FF6EA2D15F6D808AE25D869DED005 2147840 ----a-w- C:\Windows\Sysnative\iertutil.dll
2013-10-10 18:53:10 88664D38A94CDBD372ABB617E2928C37 17833984 ----a-w- C:\Windows\Sysnative\mshtml.dll
2013-10-10 18:53:09 F210546A7E54361B4E26B07A1959DBD1 10926080 ----a-w- C:\Windows\Sysnative\ieframe.dll
2013-10-10 17:02:56 9028D1621C43DF8DFBD1C76860412A11 633856 ----a-w- C:\Windows\Sysnative\comctl32.dll
2013-10-10 17:02:55 E1BB958681BE311E7CFF06CFEC5F1F2B 368128 ----a-w- C:\Windows\Sysnative\atmfd.dll
2013-10-10 17:02:55 D6BAE9B4B210D71CDDADC224CEFCDB5F 100864 ----a-w- C:\Windows\Sysnative\fontsub.dll
2013-10-10 17:02:55 A5ED9421B8D09ED4F57CDA386307713E 14336 ----a-w- C:\Windows\Sysnative\dciman32.dll
2013-10-10 17:02:55 796B47A4B82EF1C39F13435B88834C48 41472 ----a-w- C:\Windows\Sysnative\lpk.dll
2013-10-10 17:02:55 142671F462619CB64BA74F5B70136CB4 46080 ----a-w- C:\Windows\Sysnative\atmlib.dll
2013-10-10 17:02:49 B32AB94A432289AC2DF77A3DCAD32EED 102400 ----a-w- C:\Windows\Sysnative\davclnt.dll
2013-10-10 17:02:49 0EB0E5D22B1760F2DBCE632F2DD7A54D 259584 ----a-w- C:\Windows\Sysnative\WebClnt.dll
2013-10-10 17:02:47 9A9F9F1A77D6A80EE28B57664F00013E 327168 ----a-w- C:\Windows\Sysnative\mswsock.dll
2013-10-10 17:02:44 5B9A6A310326D9C438F2C19FBBE97C97 5549504 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe
2013-10-10 17:02:43 CAAAC014C5C56A69F710B5F1B836DE22 1732032 ----a-w- C:\Windows\Sysnative\ntdll.dll
2013-10-10 17:02:43 A3FCC4F97551087D65F8FEE879FEF736 859648 ----a-w- C:\Windows\Sysnative\tdh.dll
2013-10-10 17:02:43 70833F5A59F65908698093889C34BCA2 243712 ----a-w- C:\Windows\Sysnative\wow64.dll
2013-10-10 17:02:43 63A580C88CFAF72A92550940054569EF 878080 ----a-w- C:\Windows\Sysnative\advapi32.dll
2013-10-10 17:02:40 764DF431D13537A575752009E7740F18 124112 ----a-w- C:\Windows\Sysnative\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 17:02:39 56661BB55AE4633677F846FFCD080ECA 461312 ----a-w- C:\Windows\Sysnative\scavengeui.dll
2013-10-09 19:52:31 8AAAC636CD28B988B90FA11028902A73 277120 ----a-w- C:\Windows\Sysnative\FNTCACHE.DAT
====== C:\Windows\Sysnative\drivers =====
2013-10-10 17:02:55 E2C933EDBC389386EBE6D2BA953F43D8 785624 ----a-w- C:\Windows\Sysnative\drivers\Wdf01000.sys
2013-10-10 17:02:55 856E76B3641746ABBC2946BED1372098 32896 ----a-w- C:\Windows\Sysnative\drivers\hidparse.sys
2013-10-10 17:02:55 80B0F7D5CCF86CEB5D402EAAF61FEC31 100864 ----a-w- C:\Windows\Sysnative\drivers\usbcir.sys
2013-10-10 17:02:55 597C3699384E53CC59587ED50CCE5CA2 76800 ----a-w- C:\Windows\Sysnative\drivers\hidclass.sys
2013-10-10 17:02:55 1F775DA4CF1A3A1834207E975A72E9D7 185344 ----a-w- C:\Windows\Sysnative\drivers\usbvideo.sys
2013-10-10 17:02:49 1A4F75E63C9FB84B85DFFC6B63FD5404 140800 ----a-w- C:\Windows\Sysnative\drivers\mrxdav.sys
2013-10-10 17:02:47 40AF23633D197905F03AB5628C558C51 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2013-10-10 17:02:47 314C17917AC8523EC77A710215012A65 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys
2013-10-10 17:02:39 88612F1CE3BF42256913BF6E61C70D52 983488 ----a-w- C:\Windows\Sysnative\drivers\dxgkrnl.sys
2013-09-25 19:07:30 0D75C5C4EBF3D8197448189A2F153116 148792 ----a-w- C:\Windows\Sysnative\drivers\avgdiska.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2013-10-08 22:12:23 -------- d-----w- C:\Program Files\iTunes
2013-10-08 22:12:23 -------- d-----w- C:\Program Files\iPod
======= C:\Program Files (x86) =====
2013-10-10 21:42:17 -------- d-----w- C:\Program Files (x86)\Common Files\Java
2013-10-10 21:42:04 -------- d-----w- C:\Program Files (x86)\Java
2013-10-08 22:12:23 -------- d-----w- C:\Program Files (x86)\iTunes
======= C: =====
====== C:\Users\Bruker\AppData\Roaming ======
2013-10-09 19:53:09 4370E68F612BD9512B216CE0AC50100D 58016 ----a-w- C:\Users\Bruker\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-09 18:12:47 0FC9F8E0E93D20E3193BB5B895C65AA7 1115080 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat
2013-10-08 23:09:50 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\AVG
====== C:\Users\Bruker ======
2013-10-13 18:18:56 D1526222FC4394CA4AD5A78327627D1B 1954124 ----a-w- C:\Users\Bruker\Downloads\FRST64 (1).exe
2013-10-13 16:13:14 D1526222FC4394CA4AD5A78327627D1B 1954124 ----a-w- C:\Users\Bruker\Downloads\FRST64.exe
2013-10-12 10:37:36 60BF4AE8CC40B0E3E28613657ED2EED8 377856 ----a-w- C:\Users\Bruker\Downloads\7dr7wvbe.exe
2013-10-12 10:26:42 31E39E9FF261030F71C0209C016580F4 1048960 ----a-w- C:\Users\Bruker\Downloads\AdwCleaner.exe
2013-10-10 21:42:22 -------- d-----w- C:\ProgramData\Oracle
2013-10-10 21:42:09 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2013-10-10 16:52:35 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2013-10-08 22:12:56 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2013-10-08 22:12:23 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-08 22:11:17 -------- d-sh--w- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}

====== C: exe-files ==
2013-10-13 18:18:56 D1526222FC4394CA4AD5A78327627D1B 1954124 ----a-w- C:\Users\Bruker\Downloads\FRST64 (1).exe
2013-10-13 17:50:44 6C98B2D8397DF93393A2677FA7F7DE78 120120 ----a-w- C:\Users\Bruker\AppData\Local\Temp\TUUUninstallHelper.exe
2013-10-13 16:13:14 D1526222FC4394CA4AD5A78327627D1B 1954124 ----a-w- C:\Users\Bruker\Downloads\FRST64.exe
2013-10-12 10:37:36 60BF4AE8CC40B0E3E28613657ED2EED8 377856 ----a-w- C:\Users\Bruker\Downloads\7dr7wvbe.exe
2013-10-12 10:26:42 31E39E9FF261030F71C0209C016580F4 1048960 ----a-w- C:\Users\Bruker\Downloads\AdwCleaner.exe
2013-10-10 21:42:12 ACA17F8E1F9E8891DE15E2527D8D74D0 264616 ----a-w- C:\Windows\SysWOW64\javaws.exe
2013-10-10 21:42:09 EC94122E6DCB6E731D8513A89AC9CF12 175016 ----a-w- C:\Windows\SysWOW64\javaw.exe
2013-10-10 21:42:09 EC2A0F271C0FD4AD57B137845577F539 175016 ----a-w- C:\Windows\SysWOW64\java.exe
2013-10-10 21:42:05 FE62A080B6B3846FB18F04B488BF686F 66984 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javacpl.exe
2013-10-10 21:42:05 FB81754A3C79379C3882128875C8C948 48552 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jabswitch.exe
2013-10-10 21:42:05 F744671F237351A00580DEBDA7B13C58 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\servertool.exe
2013-10-10 21:42:05 F07B981F68160C8932BD7E2A056E3542 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\kinit.exe
2013-10-10 21:42:05 ED2542D50B46FACB647E9ACE15376F71 52648 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe
2013-10-10 21:42:05 EC94122E6DCB6E731D8513A89AC9CF12 175016 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaw.exe
2013-10-10 21:42:05 EC2A0F271C0FD4AD57B137845577F539 175016 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java.exe
2013-10-10 21:42:05 DE16D31DDE767A35C4727D4F5C4F5165 49064 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ssvagent.exe
2013-10-10 21:42:05 ACA17F8E1F9E8891DE15E2527D8D74D0 264616 ----a-w- C:\Program Files (x86)\Java\jre7\bin\javaws.exe
2013-10-10 21:42:05 A5937B2A94424CF1B13A4AD503AF6B2E 182696 ----a-w- C:\Program Files (x86)\Java\jre7\bin\jqs.exe
2013-10-10 21:42:05 8BAE06DA395B81D5BB9D335719B4C71F 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\keytool.exe
2013-10-10 21:42:05 8B060210811F4C88280BB1FE097C8D18 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\policytool.exe
2013-10-10 21:42:05 879FBD4327A0411AD856CD256E05ACC8 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\pack200.exe
2013-10-10 21:42:05 85369335B06BA3EF80DBB2463BD75FC6 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmid.exe
2013-10-10 21:42:05 79E6E98DD340052FB62E85FC5C0F40B9 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\rmiregistry.exe
2013-10-10 21:42:05 46D4A740A9CD31274B372AB31FDAB767 16296 ----a-w- C:\Program Files (x86)\Java\jre7\bin\orbd.exe
2013-10-10 21:42:05 3F17C8C96551E1DFADAD909282D7A53B 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\ktab.exe
2013-10-10 21:42:05 33329EE40961C9F75753135EEFEE5215 16296 ----a-w- C:\Program Files (x86)\Java\jre7\bin\tnameserv.exe
2013-10-10 21:42:05 20238A6FE9CA82DB6AA17CB08F4906CF 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\java-rmi.exe
2013-10-10 21:42:05 20121F1F03EA62AE7DBE20A5C065E62B 146344 ----a-w- C:\Program Files (x86)\Java\jre7\bin\unpack200.exe
2013-10-10 21:42:05 14478E73336D593E396FEE603118DF73 15784 ----a-w- C:\Program Files (x86)\Java\jre7\bin\klist.exe
2013-10-10 18:53:15 B73439C148710919E18321C487E4C885 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-10-10 18:53:15 3B2EFBBC78DA786391B5A49614DF56C0 142848 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
2013-10-10 18:53:14 F980F2E95E0434C8E0559B6504FE1D10 763544 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2013-10-10 18:53:14 45BDA923BE52906D1460BCB13AC2AB7A 757400 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2013-10-10 18:35:22 016B718797FB091D462A170649B1C0B9 5970992 ----a-w- C:\Program Files (x86)\AVG\AVG2014\avgcrema.exe
2013-10-10 17:02:44 5B9A6A310326D9C438F2C19FBBE97C97 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-10-10 17:02:44 482C8CD985C727C7C78A5E9B320947F0 3969472 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 17:02:43 DA1340AC8B22D0719F47222C8D508393 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe
2013-10-10 17:02:43 813A7F5A2D6D366EB3FFB643B851BCE5 3914176 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 17:02:42 8C3D064E7B7C0F3685A441A37A93C5D1 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe
2013-10-10 17:02:42 5244D544B022E70881794563D657B5EF 2048 ----a-w- C:\Windows\SysWOW64\user.exe
2013-10-10 16:50:54 A5027445F15DBA980764D6F7909C0E94 5914640 ----a-w- C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe
2013-10-10 16:50:54 890DB30F2F61113B9CD993DC942FA020 5911568 ----a-w- C:\Windows\System32\config\systemprofile\AppData\Local\Avg2014\update\backup\avgmfapx.exe
2013-10-09 22:19:50 F0CC0EAE72B46044AFBB96515A7DF841 34558816 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\30.0.1599.69\30.0.1599.69_chrome_installer.exe
2013-10-09 16:27:54 046447A4F4455DEC05A234831DC1457D 1123680 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\30.0.1599.69\30.0.1599.69_30.0.1599.66_chrome_updater.exe
2013-10-07 17:54:20 38392CC7CDCA0C2C247B0B279EC2FCE3 4908592 ----a-w- C:\Program Files (x86)\AVG\AVG2014\avgui.exe
=== C: other files ==
2013-10-10 21:42:05 8C636C988365FC3E61F1B5C5ACECCB55 18675 ----a-w- C:\Program Files (x86)\Java\jre7\lib\deploy\ffjcext.zip
2013-10-10 17:02:55 E2C933EDBC389386EBE6D2BA953F43D8 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2013-10-10 17:02:55 856E76B3641746ABBC2946BED1372098 32896 ----a-w- C:\Windows\System32\drivers\hidparse.sys
2013-10-10 17:02:55 80B0F7D5CCF86CEB5D402EAAF61FEC31 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2013-10-10 17:02:55 597C3699384E53CC59587ED50CCE5CA2 76800 ----a-w- C:\Windows\System32\drivers\hidclass.sys
2013-10-10 17:02:55 1F775DA4CF1A3A1834207E975A72E9D7 185344 ----a-w- C:\Windows\System32\drivers\usbvideo.sys
2013-10-10 17:02:49 1A4F75E63C9FB84B85DFFC6B63FD5404 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2013-10-10 17:02:47 40AF23633D197905F03AB5628C558C51 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-10-10 17:02:47 314C17917AC8523EC77A710215012A65 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-10-10 17:02:39 88612F1CE3BF42256913BF6E61C70D52 983488 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-1402403010-2532102720-3201830455-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="C:\Users\Bruker\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
"Easybits Recovery"="C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe"
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"HPConnectionManager"="C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe"
"HPOSD"="C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe"
"AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="C:\Users\Bruker\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="C:\Windows\system32\igfxtray.exe"
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"
"Persistence"="C:\Windows\system32\igfxpers.exe"
"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "
"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]
"SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""
"iTunesHelper"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""


==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [09.10.2013 00:38]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [22.07.2013 21:14]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [22.07.2013 21:14]
C:\Windows\tasks\HPCeeScheduleForBruker.job --a------ C:\Program Files (x86)\Hewlett-PaC:kard\HP C:eement\HPC:EE.exe []

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\Windows\System32\browserchoice.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\HPCeeScheduleForBruker" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
"C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe]
"C:\Windows\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe]
"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask" [C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
"C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Update Check" [C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe]

==== Chrome Look ======================

Google Docs - Bruker - Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Bruker - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Bruker - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Last updated at time on date - Bruker - Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Google Search - Bruker - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Chrome In-App Payments service - Bruker - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Bruker - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox"
{DB280FF9-2F5C-4F65-A70D-8C8AC84A64FF} Amazon (UK) Search Suggestions Url="http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}"

==== EOF on 13.10.2013 at 21:15:33,36 ======================

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Ponovo pokreni zoek ;


zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;


U beli okvir prozora iskopiraj sledeći tekst:


C:\Windows\MEMORY.DMP;f
C:\Users\Bruker\AppData\Local\Temp\TUUUninstallHelper.exe;f
chrdefaults;
iedefaults;
emptyalltemp;
autoclean;
emptyclsid;




Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

Ko je trenutno na forumu
 

Ukupno su 1038 korisnika na forumu :: 18 registrovanih, 4 sakrivenih i 1016 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, A.R.Chafee.Jr., Arsenije, Boris BM, cuculo, esx66, Jeremiah, Mercury, Milan A. Nikolic, MILO-VAN, MiroslavD, nikoladim, oldtimer, ozzy, Sirius, Skywhaler, vathra, virked