MyCity » Ambulanta -> Arhiva Ambulante » Laptop mi je usporio toliko da sam sumnjao na hardwer.

Laptop mi je usporio toliko da sam sumnjao na hardwer.

Napisano na dan: 6.1.2015

Laptop mi je usporio toliko da sam sumnjao na hardwer.
Sledeća strana Pagination

Idi na vrh

Poslao: 06 Jan 2015 20:03
Idi na vrh
offline
  • Pridružio: 04 Nov 2008
  • Poruke: 126

Kao sto sam napisao u naslovu ,laptop mi sporo radi dok sam na netu,sporo radi ,sporo podize sistem.Totatalna katastrofa,pa sam sumnjao da je los hard disk ili ram memorija,pustio sam testove i sve je ispravno.Ako nije neki virus ja neznam sta je,sistem je radjen skorije.


mycity.rs/must-login.png

mycity.rs/must-login.png

Pogledajte dal je virus.


Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-01-2015
Ran by USER (administrator) on USER-PC on 06-01-2015 19:42:21
Running from C:\Users\USER\Desktop
Loaded Profile: USER (Available profiles: USER)
Platform: Windows 7 Enterprise Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Mindspark) C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\aabarsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Pokki) C:\Users\USER\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Pokki) C:\Users\USER\AppData\Local\Pokki\Engine\HostAppService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Mindspark) C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\APPINTEGRATOR.EXE
(Mindspark) C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\AppIntegrator64.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Pokki) C:\Users\USER\AppData\Local\Pokki\Engine\HostAppService.exe
(Pokki) C:\Users\USER\AppData\Local\Pokki\Engine\StartMenuIndexer.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
() C:\Program Files (x86)\Opera\26.0.1656.60\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\26.0.1656.60\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\launcher.exe
() C:\Program Files (x86)\Opera\26.0.1656.60\opera_autoupdate.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\New\instup.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Farbar) C:\Users\USER\Desktop\FRST64 (1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-10-08] (AVAST Software)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Elite Unzip EPM Support] => C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\aamedint.exe [12872 2014-10-30] (Mindspark)
HKLM-x32\...\Run: [Elite Unzip AppIntegrator 32-bit] => C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\AppIntegrator.exe [229960 2014-10-30] (Mindspark)
HKLM-x32\...\Run: [Elite Unzip AppIntegrator 64-bit] => C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\AppIntegrator64.exe [264264 2014-10-30] (Mindspark)
HKLM-x32\...\Run: [Elite Unzip Search Scope Monitor] => "C:\PROGRA~2\ELITEU~1\bar\1.bin\aasrchmn.exe" /m=2 /w /h
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-02-25] ( (Qualcomm®Atheros®))
HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22058080 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\...\Run: [Only-search] => C:\Users\USER\AppData\Local\onlysearch\onlysearch\1.3.15.4\onlysearch.exe
HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)
HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\...\Run: [Pokki] => "%LOCALAPPDATA%\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\...\MountPoints2: {962ddecc-507d-11e4-bb0b-40167e4572fd} - F:\Autorun.exe
HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\...\MountPoints2: {962ddedf-507d-11e4-bb0b-40167e4572fd} - F:\Autorun.exe
Startup: C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\USER\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\Software\Microsoft\Internet Explorer\Main,Start Page = home.tb.ask.com/index.jhtml?n=780CC5E1&p2=^BDG^man000^YYA^&ptb=D277DDBF-CC48-4204-B967-C347F3F3AABB
URLSearchHook: HKU\S-1-5-21-1459580961-3351695927-2122291931-1000 - (No Name) - {8358a5f6-e352-4677-8386-9704aa8ad899} - C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\aaSrcAs.dll (Mindspark)
SearchScopes: HKU\S-1-5-21-1459580961-3351695927-2122291931-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = only-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=A29B54271E4C76E0&affID=129300&tsp=5416
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Search Assistant BHO -> {1af33c13-6c63-488c-9dea-17b0e7829de5} -> C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\aaSrcAs.dll (Mindspark)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll No File
BHO-x32: Toolbar BHO -> {da5d70b2-0a92-4b43-b068-a0dd02898c56} -> C:\PROGRA~2\ELITEU~1\bar\1.bin\aabar.dll No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll No File
Toolbar: HKLM-x32 - Elite Unzip - {ef55cb9f-2729-4bff-afe5-ee59593b16e8} - C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\aabar.dll No File
Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @EliteUnzip_aa.com/Plugin -> C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\NPaaStub.dll No File
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1459580961-3351695927-2122291931-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\USER\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-08]

Chrome:
=======
CHR Profile: C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-08]
CHR Extension: (Google Drive) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-08]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-10-10]
CHR Extension: (YouTube) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-08]
CHR Extension: (Google Search) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-08]
CHR Extension: (Google Sheets) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-10-08]
CHR Extension: (Avast Online Security) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-10-08]
CHR Extension: (Google Wallet) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-08]
CHR Extension: (Gmail) - C:\Users\USER\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-08]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-08]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2014-02-25] (Windows (R) Win 7 DDK provider)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-08] (AVAST Software)
R2 EliteUnzip_aaService; C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\aabarsvc.exe [90696 2014-10-30] (Mindspark)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-10-08] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
S3 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [724992 2006-10-09] (Nero AG) [File not signed]
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-25] (Atheros) [File not signed]
S2 trntv; C:\Users\USER\AppData\Roaming\TornTV.com\TornTVSvc.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-10-08] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-10-08] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-10-08] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-10-08] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-10-08] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-10-08] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-10-08] ()
R3 ATP; C:\Windows\System32\DRIVERS\AsusTP.sys [71952 2014-03-31] (ASUS Corporation)
R3 mouhid; C:\Windows\System32\DRIVERS\mouhid.sys [31232 2009-07-14] (Microsoft Corporation) [File not signed]
R3 TXEIx64; C:\Windows\System32\DRIVERS\TXEIx64.sys [87568 2013-07-02] (Intel Corporation)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnet; system32\DRIVERS\ZTEusbnet.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-06 19:42 - 2015-01-06 19:46 - 00015536 _____ () C:\Users\USER\Desktop\FRST.txt
2015-01-06 19:40 - 2015-01-06 19:42 - 00000000 ____D () C:\FRST
2015-01-06 19:37 - 2015-01-06 19:39 - 02123776 _____ (Farbar) C:\Users\USER\Downloads\FRST64.exe
2015-01-06 19:37 - 2015-01-06 19:38 - 02123776 _____ (Farbar) C:\Users\USER\Desktop\FRST64 (1).exe
2015-01-05 21:30 - 2015-01-05 21:39 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-05 17:26 - 2015-01-05 17:27 - 00583192 _____ () C:\Users\USER\Downloads\Installation.exe
2014-12-31 21:15 - 2014-12-31 21:15 - 00000000 ____D () C:\Windows\system32\Plug-In Settings
2014-12-24 10:24 - 2014-12-24 10:24 - 00003886 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2014-12-21 10:11 - 2014-12-21 10:11 - 00002072 _____ () C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokki Menu.lnk
2014-12-18 10:07 - 2014-12-13 06:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-18 10:07 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-17 16:53 - 2014-12-17 16:53 - 00000000 ____D () C:\Windows\system32\%LOCALAPPDATA%
2014-12-10 17:12 - 2014-11-27 02:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-10 17:12 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-10 17:12 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-10 17:12 - 2014-11-22 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-10 17:12 - 2014-11-22 04:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-10 17:12 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-10 17:12 - 2014-11-22 03:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-10 17:12 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-10 17:12 - 2014-11-22 03:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-10 17:12 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-10 17:12 - 2014-11-22 03:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-10 17:12 - 2014-11-22 03:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-10 17:12 - 2014-11-22 03:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-10 17:12 - 2014-11-22 03:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-10 17:12 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-10 17:12 - 2014-11-22 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-10 17:12 - 2014-11-22 03:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-10 17:12 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-10 17:12 - 2014-11-22 03:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-10 17:12 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-10 17:12 - 2014-11-22 03:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-10 17:12 - 2014-11-22 03:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-10 17:12 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-10 17:12 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-10 17:12 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-10 17:12 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-10 17:12 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-10 17:12 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-10 17:12 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-10 17:12 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-10 17:12 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-10 17:12 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-10 17:12 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-10 17:12 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-10 17:12 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-10 17:12 - 2014-11-22 02:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-10 17:12 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-10 17:12 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-10 17:12 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-10 17:12 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-10 17:12 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-10 17:12 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-10 17:12 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-10 17:12 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-10 17:12 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-10 17:12 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-10 17:12 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-10 17:12 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-10 17:12 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-10 17:12 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-10 17:12 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-10 17:12 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-10 17:12 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-10 17:12 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-10 17:12 - 2014-11-11 04:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-10 17:12 - 2014-11-11 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-10 01:47 - 2014-12-10 01:47 - 03981488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-12-09 02:08 - 2014-12-09 02:08 - 00000000 ____D () C:\Users\USER\AppData\Roaming\.mono
2014-12-09 02:08 - 2014-12-09 02:08 - 00000000 ____D () C:\ProgramData\.mono

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-06 19:47 - 2014-10-08 22:32 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-06 19:46 - 2009-07-14 05:45 - 00021472 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-06 19:46 - 2009-07-14 05:45 - 00021472 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-06 19:35 - 2014-10-08 22:18 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-06 19:32 - 2014-10-08 21:21 - 01895731 _____ () C:\Windows\WindowsUpdate.log
2015-01-06 19:31 - 2014-10-08 22:43 - 00000000 ____D () C:\Users\USER\AppData\Roaming\Skype
2015-01-06 19:28 - 2014-10-08 22:39 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-06 19:28 - 2014-10-08 22:18 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-06 19:27 - 2014-12-06 22:12 - 00004728 _____ () C:\Windows\setupact.log
2015-01-06 19:27 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-06 16:32 - 2014-11-13 15:22 - 00000000 ____D () C:\Users\USER\AppData\Local\Pokki
2015-01-05 21:40 - 2014-10-08 21:24 - 00000000 ____D () C:\Users\USER\AppData\Roaming\BitTorrent
2015-01-05 21:30 - 2014-10-08 23:05 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-01-03 11:44 - 2014-11-13 15:23 - 00002243 _____ () C:\Users\USER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-12-20 14:09 - 2009-07-14 06:13 - 00779266 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-18 03:49 - 2014-10-16 19:13 - 00000000 ____D () C:\Users\USER\AppData\Roaming\vlc
2014-12-17 17:29 - 2014-10-08 22:15 - 00003828 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1412802907
2014-12-17 17:29 - 2014-10-08 22:15 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-12-17 10:12 - 2014-10-10 19:54 - 00000000 ____D () C:\Users\USER\AppData\Local\CrashDumps
2014-12-13 11:42 - 2014-10-08 22:18 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-11 22:32 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-12-11 00:57 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-11 00:40 - 2014-10-08 23:05 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-10 16:55 - 2014-10-08 23:18 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-10 01:47 - 2014-10-08 22:32 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-10 01:47 - 2014-10-08 22:32 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-10 01:47 - 2014-10-08 22:32 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-08 00:51 - 2014-10-10 11:50 - 00000000 ___RD () C:\Users\USER\Desktop\stefan

Some content of TEMP:
====================
C:\Users\USER\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpbt6_nz.dll
C:\Users\USER\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\USER\AppData\Local\Temp\oct163E.tmp.exe
C:\Users\USER\AppData\Local\Temp\octB4DE.tmp.exe
C:\Users\USER\AppData\Local\Temp\octFB48.tmp.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-06 07:42

==================== End Of Log ============================

Poslao: 07 Jan 2015 10:24
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Arrow Korak 1

Idi u Start -> Control Panel -> Programs and Features i deinstaliraj sljedeće programe:

Elite Unzip Internet Explorer Toolbar
Pokki
TornTV




Arrow Korak 2

Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja.

HKLM-x32\...\Run: [Elite Unzip EPM Support] => C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\aamedint.exe [12872 2014-10-30] (Mindspark)
HKLM-x32\...\Run: [Elite Unzip AppIntegrator 32-bit] => C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\AppIntegrator.exe [229960 2014-10-30] (Mindspark)
HKLM-x32\...\Run: [Elite Unzip AppIntegrator 64-bit] => C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\AppIntegrator64.exe [264264 2014-10-30] (Mindspark)
HKLM-x32\...\Run: [Elite Unzip Search Scope Monitor] => "C:\PROGRA~2\ELITEU~1\bar\1.bin\aasrchmn.exe" /m=2 /w /h
HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\...\Run: [Only-search] => C:\Users\USER\AppData\Local\onlysearch\onlysearch\1.3.15.4\onlysearch.exe
HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\...\MountPoints2: {962ddecc-507d-11e4-bb0b-40167e4572fd} - F:\Autorun.exe
HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\...\MountPoints2: {962ddedf-507d-11e4-bb0b-40167e4572fd} - F:\Autorun.exe
HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.tb.ask.com/index.jhtml?n=780CC5E1&p2=^BDG^man000^YYA^&ptb=D277DDBF-CC48-4204-B967-C347F3F3AABB
URLSearchHook: HKU\S-1-5-21-1459580961-3351695927-2122291931-1000 - (No Name) - {8358a5f6-e352-4677-8386-9704aa8ad899} - C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\aaSrcAs.dll (Mindspark)
SearchScopes: HKU\S-1-5-21-1459580961-3351695927-2122291931-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.only-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=A29B54271E4C76E0&affID=129300&tsp=5416
BHO-x32: Search Assistant BHO -> {1af33c13-6c63-488c-9dea-17b0e7829de5} -> C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\aaSrcAs.dll (Mindspark)
BHO-x32: Toolbar BHO -> {da5d70b2-0a92-4b43-b068-a0dd02898c56} -> C:\PROGRA~2\ELITEU~1\bar\1.bin\aabar.dll No File
Toolbar: HKLM-x32 - Elite Unzip - {ef55cb9f-2729-4bff-afe5-ee59593b16e8} - C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\aabar.dll No File
R2 EliteUnzip_aaService; C:\Program Files (x86)\EliteUnzip_aa\bar\1.bin\aabarsvc.exe [90696 2014-10-30] (Mindspark)
S2 trntv; C:\Users\USER\AppData\Roaming\TornTV.com\TornTVSvc.exe [X]
Task: {6D176900-79BB-466C-A0E0-C913D4F4CFD1} - System32\Tasks\EPUpdater => C:\Users\USER\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-12-12] () <==== ATTENTION
HKU\S-1-5-21-1459580961-3351695927-2122291931-1000\...\Run: [Pokki] => "%LOCALAPPDATA%\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON
C:\Program Files (x86)\EliteUnzip_aa
C:\Users\USER\AppData\Local\onlysearch
C:\Users\USER\AppData\Roaming\TornTV.com
C:\Users\USER\AppData\Roaming\BabSolution
C:\Users\USER\AppData\Local\Pokki
EmptyTemp:


U okviru Notepad-a klikni na File --> Save As
Fajl nazovi Fixlist i sačuvaj na Desktop
Dvoklikom ponovo pokreni FRST.exe
Klikni na Fix i sačekaj dok program ne završi.
Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi.
Nakon završetka rada, otvoriće se fixlog.txt, sa sadržajem koji treba da kopiraš u temu.
Takođe, na Desktop-u će se nalaziti (fixlog.txt).




Arrow Korak 3

Preuzmi "Xplode"-ov AdwCleaner i sačuvaj ga na Desktop
Dvoklikom pokreni program.
u EULA prozoru klikni na I agree.
Klikni na dugme Scan i sačekaj da se završi skeniranje.
Klikni na dugme Clean i pričekaj da program završi.
Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu.
Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK
Računar će se restartovati, a potom otvoriti Notepad (C:\AdwCleaner[S0].txt) sa izvještajem.
Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl"
Napomena: Izvještaj ce takođe biti sačuvan na C:\Adwcleaner\AdwCleaner[S0].txt

Poslao: 07 Jan 2015 12:09
Idi na vrh
offline
  • Pridružio: 04 Nov 2008
  • Poruke: 126

Nista od ovoga puko mi sistem,samo se restartuje,moram ponovo radit.

Poslao: 07 Jan 2015 12:54
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

sshare ::Nista od ovoga puko mi sistem,samo se restartuje,moram ponovo radit.

Moguće je da je napajanje odsviralo svoje.

MyCity » Ambulanta -> Arhiva Ambulante » Laptop mi je usporio toliko da sam sumnjao na hardwer.

Ko je trenutno na forumu
 

Ukupno su 1153 korisnika na forumu :: 48 registrovanih, 3 sakrivenih i 1102 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: airsuba, aleksmajstor, bankulen, bojcistv, Bokiboks, Boris BM, CikaKURE, crnitrn, Denaya, djboj, Dovla, drimer, FileFinder, Fog of War, ginjica, gomago, janbo, Kibice, kripo, Kubovac, kuntalo, Luka1998, Marko Marković, mercedesamg, Mercury, Metanoja, milutin134, minmatar34957, moldway, nenad81, nesa1962, nikoli_ca, pacika, Panter, panzerwaffe, Parker, radoznao, Springfield, suton, TheBeastOfMG, Trpe Grozni, Tvrtko I, vathra, vladulns, x9, zlaya011, Zoca, 1107