lap top sporo ucitava stranice

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Imam lap top hp na kome sam pre par nedelja reinstalirao win7,64 bit.Internet veza je telekomov ADSL modem ,paket 10.Ono sto primecujem je da preko google chrome jako tesko otvara stranice.To ponekad bas potraje.Cak i obicne falove sa particije ume da zaglupi i vrti par minuta dok ih otvori.Proveravao sam drajvere ,kaze svi su u redu.Internet na telefonu mi je besprekoran,cak i speed test pokazuje dobre rezultate.Probao i preko Opere,nista bolje.Sta uraditi da se stvar poboljsa.Bolje mi je radio pre reinstalacije.




Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:06-05-2016 03
Ran by Mica P (administrator) on MICAP-PC (06-05-2016 21:25:49)
Running from C:\Users\Mica P\Desktop
Loaded Profiles: Mica P (Available Profiles: Mica P)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 10 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Viber Media S.à r.l.) C:\Users\Mica P\AppData\Local\Viber\Viber.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-04-05] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-825308952-3171291000-3931976322-1001\...\Run: [Viber] => C:\Users\Mica P\AppData\Local\Viber\Viber.exe [69268048 2016-04-13] (Viber Media S.à r.l.)
HKU\S-1-5-21-825308952-3171291000-3931976322-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8698584 2016-04-15] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-04-05] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{418C1A44-2AF8-4338-AACA-DCF909845138}: [DhcpNameServer] 192.168.1.1 0.0.0.0

Internet Explorer:
==================
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-24] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-05] (AVAST Software)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-24] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-05] (AVAST Software)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-10-09] (Skype Technologies S.A.)

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-24] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2014-04-15] (Foxit Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-20] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-04-05]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-04-05]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/ig?rls=ig&hl=sr&source=iglk
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.oursurfing.com/?type=hp&ts=1444475701&z=7513ebe44ecd2b09e7b64ecgez4z0z3zcm1wem0e2g&from=amt&uid=hgstxhts545050a7e380_te85134ngdlt9rgdlt9rx","hxxp://www.yoursearching.com/?type=hp&ts=1448577997&z=1c3094fe187df53b9cbd8fagezczdb2wam1m8t6tcm&from=icp&uid=HGSTXHTS545050A7E380_TE85134NGDLT9RGDLT9RX"
CHR Profile: C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google преводилац) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-03-20]
CHR Extension: (Google документи) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-03-20]
CHR Extension: (Google диск) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-20]
CHR Extension: (YouTube) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-20]
CHR Extension: (Viber) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafalpmmoljglecaoelijmbkhpdoobmm [2016-03-27]
CHR Extension: (Facebook Customizer (by Adblock Plus)) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\deoeenbkoccjaefmmhpmlegngdjohdcm [2016-03-20]
CHR Extension: (Mini Radio Player) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffeaebedjghkdbccfenjbiilalegknlj [2016-03-20]
CHR Extension: (Avast Online Security) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-04-08]
CHR Extension: (CloudConvert) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfpmbfgodkfcebpgheiedaddoikmljkk [2016-03-20]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2016-04-19]
CHR Extension: (Google провера поште) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2016-03-20]
CHR Extension: (LocalChromecast Player) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmladpigjlinmngadjgfogblnmddndcp [2016-03-20]
CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Auto-Translate) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\obgoiaeapddkeekbocomnjlckbbfapmk [2016-03-20]
CHR Extension: (Audio Converter) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojfphighcpfimfhblaigjckljcoeipga [2016-03-20]
CHR Extension: (Gmail) - C:\Users\Mica P\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-20]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2016-04-05]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-05]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]

Opera:
=======
OPR Extension: (Translate Web Page) - C:\Users\Mica P\AppData\Roaming\Opera Software\Opera Stable\Extensions\jggobmlojchhlngdhmmdghgganciigof [2016-04-29]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-04-05] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [119128 2016-04-05] (AVAST Software)
S2 Service KMSELDI; D:\Programi\KMSpico\Service_KMS.exe [1069248 2014-02-06] () [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-08-16] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [31744 2014-05-27] (Google Inc)
S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus64.sys [20992 2014-05-27] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2014-07-07] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2014-07-07] (LG Electronics Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-04-05] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-04-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-04-05] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [478128 2016-04-05] (AVAST Software)
S1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [552880 2016-04-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-04-05] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-04-05] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-04-05] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-04-05] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-04-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-04-05] (AVAST Software)
S3 b06diag; C:\Windows\system32\drivers\bxdiaga.sys [88104 2012-03-08] (Broadcom Corporation)
S3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2012-02-22] (Bigfoot Networks, Inc.)
S3 bxfcoe; C:\Windows\system32\drivers\bxfcoe.sys [178216 2012-02-22] (Broadcom Corporation)
S3 bxois; C:\Windows\system32\drivers\bxois.sys [539176 2012-02-22] (Broadcom Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3341904 2012-03-26] (Broadcom Corporation)
S3 EtronSTOR; C:\Windows\System32\Drivers\EtronSTOR.sys [32512 2012-07-24] (Etron Technology Inc)
R3 gMouUsb; C:\Windows\System32\DRIVERS\gMouUsb.sys [14336 2016-04-27] ()
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [180264 2016-04-27] (Intel Corporation)
S3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [273040 2013-02-01] (Realtek Semiconductor Corp.)
S3 cpuz139; \??\C:\Users\MICAP~1\AppData\Local\Temp\cpuz139\cpuz139_x64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-06 21:25 - 2016-05-06 21:29 - 00014743 _____ C:\Users\Mica P\Desktop\FRST.txt
2016-05-06 21:24 - 2016-05-06 21:25 - 00000000 ____D C:\FRST
2016-05-06 21:22 - 2016-05-06 21:23 - 02379264 _____ (Farbar) C:\Users\Mica P\Desktop\FRST64.exe
2016-05-06 20:59 - 2016-05-06 21:00 - 09907167 _____ C:\Users\Mica P\Desktop\Call recorder.zip
2016-05-06 20:42 - 2016-05-06 20:43 - 22069336 _____ C:\Users\Mica P\Downloads\20160506_155319.mp4
2016-05-06 16:55 - 2016-05-06 17:05 - 00042630 _____ C:\Users\Mica P\Downloads\Litraza Mart.xlsx
2016-05-04 21:03 - 2016-05-04 21:03 - 00022076 _____ C:\Users\Mica P\Downloads\Ispitivanje sirovog mleka za maj. (1).xlsx
2016-05-04 21:01 - 2016-05-04 21:01 - 00231839 _____ C:\Users\Mica P\Downloads\Pregled kolicina i kvaliteta sirovog mleka na rampi mlekare Beograd April 2016.xlsx
2016-05-04 20:54 - 2016-05-04 20:54 - 00017565 _____ C:\Users\Mica P\Downloads\Pregled kolicina i kvaliteta sirovog mleka na rampi mlekare Beograd Maj 2016 - .xlsx
2016-05-03 19:44 - 2016-05-03 19:44 - 00018507 _____ C:\Users\Mica P\Downloads\Ispitivanje sirovog mleka za maj..xlsx
2016-05-03 12:26 - 2016-05-03 12:26 - 01056256 _____ C:\Users\Mica P\Downloads\dnevne kolicine mleka 2008-2016 (1).xls
2016-04-30 19:39 - 2016-04-30 19:39 - 01050112 _____ C:\Users\Mica P\Downloads\dnevne kolicine mleka 2008-2016.xls
2016-04-30 19:37 - 2016-04-30 19:37 - 00113425 _____ C:\Users\Mica P\Downloads\ISPITIVANJE SIROVOG MLEKA APRIL2016.xlsx
2016-04-30 14:17 - 2016-04-30 14:17 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_lgandnetadb_01005.Wdf
2016-04-30 14:15 - 2014-07-07 11:06 - 00036352 _____ (LG Electronics Inc.) C:\Windows\system32\Drivers\lgandnetmodem64.sys
2016-04-30 14:15 - 2014-07-07 11:06 - 00029184 _____ (LG Electronics Inc.) C:\Windows\system32\Drivers\lgandnetdiag64.sys
2016-04-30 14:15 - 2014-05-27 06:40 - 00031744 _____ (Google Inc) C:\Windows\system32\Drivers\lgandnetadb.sys
2016-04-30 14:15 - 2014-05-27 06:36 - 00020992 _____ (LG Electronics Inc.) C:\Windows\system32\Drivers\lgandnetbus64.sys
2016-04-30 14:15 - 2011-07-18 02:33 - 01919968 _____ (Microsoft Corporation) C:\Windows\system32\wdfcoinstaller01005.dll
2016-04-30 14:14 - 2016-04-30 14:14 - 11454688 _____ (LG Electronics) C:\Users\Mica P\Downloads\LGUnitedMobileDriver_S51MAN312AP22_ML_WHQL_Ver_3.12.3.exe
2016-04-29 09:43 - 2016-05-04 20:42 - 00003864 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1461915798
2016-04-29 09:43 - 2016-04-29 09:43 - 00001135 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-04-29 09:43 - 2016-04-29 09:43 - 00000000 ____D C:\Users\Mica P\AppData\Roaming\Opera Software
2016-04-29 09:43 - 2016-04-29 09:43 - 00000000 ____D C:\Users\Mica P\AppData\Local\Opera Software
2016-04-29 09:41 - 2016-05-04 20:42 - 00000000 ____D C:\Program Files (x86)\Opera
2016-04-29 09:41 - 2016-04-29 09:41 - 00725424 _____ (Opera Software) C:\Users\Mica P\Downloads\OperaSetup.exe
2016-04-28 20:08 - 2016-04-28 20:08 - 00039266 _____ C:\Users\Mica P\Documents\cc_20160428_200820.reg
2016-04-28 20:03 - 2016-04-28 20:03 - 00002792 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-04-28 20:02 - 2016-04-28 20:02 - 00000000 ____D C:\Program Files\CCleaner
2016-04-28 19:59 - 2016-04-28 20:00 - 06882192 _____ (Piriform Ltd) C:\Users\Mica P\Downloads\ccsetup517.exe
2016-04-27 21:58 - 2016-04-27 21:58 - 00014336 _____ C:\Windows\system32\Drivers\gMouUsb.sys
2016-04-27 21:57 - 2016-04-27 21:57 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ICCWDT_01009.Wdf
2016-04-27 21:53 - 2016-04-27 21:54 - 01730304 _____ (Microsoft Corporation) C:\Windows\system32\wdfcoinstaller01009.dll
2016-04-27 21:53 - 2016-04-27 21:53 - 00038680 _____ (Intel Corporation) C:\Windows\system32\Drivers\ICCWDT.sys
2016-04-27 21:51 - 2016-04-27 21:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2016-04-27 21:46 - 2016-04-27 21:47 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-04-27 21:45 - 2016-04-27 21:46 - 00180264 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2016-04-27 21:36 - 2016-04-27 21:36 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-04-27 21:35 - 2016-04-27 21:36 - 01027840 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2016-04-27 21:29 - 2016-04-27 21:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2016-04-27 21:23 - 2016-04-27 22:06 - 00000380 _____ C:\Windows\Tasks\Driver Easy Scheduled Scan.job
2016-04-27 21:23 - 2016-04-27 21:23 - 00003788 _____ C:\Windows\System32\Tasks\Driver Easy Scheduled Scan
2016-04-27 21:16 - 2016-04-29 16:53 - 00000000 ____D C:\Users\Mica P\AppData\LocalLow\uTorrent
2016-04-27 21:16 - 2016-04-27 21:17 - 00000000 ____D C:\Users\Mica P\Downloads\Driver Easy 5.0.0.18255 + Keygen (2016.04.01) [kgpian]
2016-04-27 21:09 - 2016-04-27 21:10 - 04172536 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys
2016-04-24 22:35 - 2016-04-24 22:37 - 00000000 ____D C:\adb
2016-04-24 22:34 - 2016-04-24 22:35 - 00494325 _____ C:\Users\Mica P\Downloads\adb_fastboot.zip
2016-04-24 21:08 - 2016-04-24 22:15 - 00000448 _____ C:\Users\Mica
2016-04-24 21:03 - 2016-04-24 21:03 - 09614711 _____ (Snoop05) C:\Users\Mica P\Downloads\adb-setup-1.4.3.exe
2016-04-24 20:44 - 2016-04-24 20:44 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-24 16:52 - 2016-04-24 16:52 - 00006656 _____ C:\Users\Mica P\Downloads\MegaLock.dll
2016-04-24 16:51 - 2016-04-24 16:52 - 09745556 _____ C:\Users\Mica P\Downloads\Setup_LGFlashTool_1.8.1.1023.exe
2016-04-24 14:11 - 2016-04-30 14:41 - 00000000 ____D C:\ProgramData\LGMOBILEAX
2016-04-24 14:11 - 2016-04-30 14:40 - 00000065 _____ C:\Windows\SysWOW64\lgAxconfig.ini
2016-04-23 16:53 - 2016-05-06 20:44 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-23 16:53 - 2016-05-06 16:46 - 00800448 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-04-23 16:53 - 2016-05-06 16:46 - 00143040 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-23 16:53 - 2016-05-06 16:46 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-04-23 16:53 - 2016-04-23 16:53 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-04-23 16:51 - 2016-04-23 16:51 - 00000000 ____D C:\Windows\system32\Macromed
2016-04-23 16:47 - 2016-04-23 16:48 - 20390080 _____ (Adobe Systems Incorporated) C:\Users\Mica P\Downloads\install_flash_player_ppapi.exe
2016-04-21 19:07 - 2016-04-21 19:07 - 00000000 ____D C:\ProgramData\SP_FT_Logs
2016-04-20 20:28 - 2016-04-20 20:28 - 00000957 _____ C:\Users\Mica P\AppData\Roaming\Microsoft\Windows\Start Menu\Viber.lnk
2016-04-20 20:28 - 2016-04-20 20:28 - 00000000 ____D C:\Users\Mica P\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber
2016-04-20 20:06 - 2016-04-20 20:10 - 06141821 _____ C:\Users\Mica P\Downloads\ES_File_Explorer_Pro-Pro_1.0.5 49d45.apk
2016-04-20 20:05 - 2016-04-20 20:05 - 00002646 _____ C:\Users\Mica P\Desktop\µTorrent.lnk
2016-04-20 19:16 - 2016-04-20 19:16 - 09690035 _____ C:\Users\Mica P\Desktop\zelena-kuharica.pdf
2016-04-18 20:14 - 2016-04-18 21:55 - 00000000 ____D C:\Users\Mica P\Desktop\Sergej april 2016
2016-04-13 15:52 - 2016-04-13 15:52 - 00756544 _____ C:\Users\Mica P\Downloads\mar16.pdf
2016-04-12 21:14 - 2016-04-29 10:27 - 00000000 ____D C:\Users\Mica P\AppData\Local\Vivaldi
2016-04-11 19:39 - 2016-04-11 19:39 - 00147295 _____ C:\Users\Mica P\Downloads\Petkovi_ Miodrag (809201)-Nalaz %5bd 4485309%5d_11.04.2016_180213.pdf
2016-04-11 19:39 - 2016-04-11 19:39 - 00147295 _____ C:\Users\Mica P\Downloads\Petkovi_ Miodrag (809201)-Nalaz %5bd 4485309%5d_11.04.2016_180213 (1).pdf
2016-04-10 20:25 - 2016-04-10 20:25 - 00923118 _____ C:\Users\Mica P\Downloads\recovery.7z
2016-04-08 20:15 - 2016-04-24 12:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-08 20:15 - 2016-04-24 12:43 - 00000000 ____D C:\Users\Mica P\.oracle_jre_usage
2016-04-08 20:15 - 2016-04-24 12:41 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-04-08 20:15 - 2016-04-08 20:15 - 00000000 ____D C:\Users\Mica P\AppData\Roaming\Sun
2016-04-08 20:15 - 2016-04-08 20:15 - 00000000 ____D C:\Users\Mica P\AppData\LocalLow\Sun
2016-04-08 20:14 - 2016-04-24 12:49 - 00000000 ____D C:\ProgramData\Oracle
2016-04-08 20:14 - 2016-04-24 12:48 - 00000000 ____D C:\Program Files\Java
2016-04-08 20:14 - 2016-04-08 20:14 - 00000000 ____D C:\Users\Mica P\AppData\LocalLow\Oracle
2016-04-08 18:46 - 2016-04-20 20:00 - 00000000 ____D C:\Users\Mica P\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WebTorrent
2016-04-08 18:45 - 2016-04-08 18:58 - 00000000 ____D C:\Users\Mica P\AppData\Local\SquirrelTemp

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-06 21:34 - 2016-03-20 17:28 - 00000932 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-06 21:29 - 2009-07-14 06:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-05-06 21:29 - 2009-07-14 06:45 - 00026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-05-06 21:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-05-06 20:03 - 2016-03-20 17:27 - 00000928 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-06 20:02 - 2016-03-20 18:05 - 00000000 ____D C:\Users\Mica P\AppData\Roaming\ViberPC
2016-05-06 20:02 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-06 16:31 - 2016-03-20 15:27 - 00000000 ____D C:\Users\Mica P\Documents\ViberDownloads
2016-05-06 16:24 - 2016-03-20 17:51 - 00000000 ____D C:\Users\Mica P\AppData\Roaming\uTorrent
2016-05-04 16:04 - 2016-03-20 18:10 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-05-03 13:41 - 2016-03-20 17:29 - 00002197 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-30 21:34 - 2016-03-20 15:27 - 00000000 ____D C:\Users\Mica P\Documents\Outlook Files
2016-04-30 17:00 - 2016-04-02 20:03 - 00000000 ____D C:\Users\Mica P\AppData\Roaming\Foxit Software
2016-04-30 16:55 - 2016-03-20 16:12 - 00000000 ____D C:\TEMP
2016-04-30 14:15 - 2016-03-20 20:55 - 00000000 ____D C:\Program Files (x86)\LG Electronics
2016-04-30 14:06 - 2016-03-20 15:56 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-04-30 13:25 - 2016-04-05 20:09 - 00003048 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1459879749
2016-04-29 17:09 - 2016-03-22 18:29 - 00000000 ____D C:\Users\Mica P\AppData\Roaming\vlc
2016-04-29 17:01 - 2016-03-20 17:16 - 00089088 ___SH C:\Users\Mica P\Thumbs.db
2016-04-29 10:27 - 2009-07-14 07:13 - 00785302 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-28 20:05 - 2016-03-21 00:38 - 00000000 ____D C:\Windows\Panther
2016-04-27 23:14 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-04-27 21:37 - 2013-03-14 15:42 - 00116304 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2016-04-24 20:45 - 2016-03-20 16:19 - 00000000 ____D C:\Program Files\Intel
2016-04-23 19:40 - 2016-03-20 15:53 - 00000000 ____D C:\Users\Mica P\Sifre
2016-04-20 20:28 - 2016-03-20 18:05 - 00000000 ____D C:\Users\Mica P\AppData\Local\Viber
2016-04-20 20:28 - 2016-03-20 18:04 - 00000000 ____D C:\Users\Mica P\AppData\Local\Package Cache
2016-04-20 20:05 - 2016-03-20 17:52 - 00002646 _____ C:\Users\Mica P\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-04-18 21:56 - 2016-03-30 21:32 - 00000000 ____D C:\Users\Mica P\AppData\Roaming\XnView
2016-04-09 12:21 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-04-08 20:15 - 2016-03-20 15:51 - 00000000 ____D C:\Users\Mica P
2016-04-08 19:04 - 2009-07-14 06:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-03-20 23:39

==================== End of FRST.txt ============================
mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav,

Nema aktivne infekcije ali ima jedan PUP program. Deinstaliraj YTD Video Downloader 5.2 sa racunara. Progam je okarakterisan kao agresivno-reklamni softver a i nepotreban je.
(imas mnogo cloud based softvera koji rade isti posao, jedan od mnogih je npr. Yout .com Samo obrises 'ube' od 'youtube' sa zeljenog URL linka i to je to...).

Dalje, ukloni malicioznu URL stranicu sa Google Chrome Home Page stranice. Preko tarabe pristupi podesavanjima (settings) i klik na SetPages pod 'Oper specific page or set of pages' i ukloni oursurfing klikom na X.

Iskoristi instalirani CCleaner da ispraznis $Temp direktorijume.

Kada to uradis, zavrsili smo ovde, a pomoc mozes da potrazis u Windows forumu jer problem nije malware related.

• 1Ovo se svidja korisniku: magna86
  
  Registruj se da bi pohvalio/la poruku!

Hvala lepo.