MyCity » Ambulanta -> Arhiva Ambulante » problem sa windows explorer-om

problem sa windows explorer-om

Napisano na dan: 3.1.2017

problem sa windows explorer-om

Sledeća strana

Pagination

Odgovori

Mladen Planojević Poslao: 03 Jan 2017 21:29 Idi na vrh
offline Mladen Planojević Građanin Pridružio: 04 Apr 2013 Poruke: 93 Gde živiš: Kako kad	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pozdrav, od večeras imam problem sa windows explorerom. Čini mi se da sam skinuvši neku fleš igru pokupio i neki virus, pa vam se obraćam ako možete da mi pomognete u rješavanju problema. Naime, dok sam instalirao igru naporedo su se instalirala i tri-četiri neka, meni nepoznata, programa. Tada sam pokušao da otvorim Control Panel ali explorer nije reagovao pa sam nekako, okolo, uspio da otvorim Programs and Features i da deinstaliram ove programe, ali od ne mogu nikako da otvorim windows explorer klikom na ikonicu, kao što sam to i do sada radio, nego se samo otvori klikom npr. na downloads ikonicu. Skenirao sam računar avast-ovim antivirusom ali nisam uspio da pronađem i uklonim prijetnju, pa se s toga obraćam vama da mi pomognete. Unaprijed hvala. mycity.rs/must-login.png mycity.rs/must-login.png Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-01-2017 Ran by PLANOJEVIC (administrator) on WINCTRL-F1BHGQR (02-01-2017 23:37:16) Running from C:\Users\PLANOJEVIC\Desktop Loaded Profiles: PLANOJEVIC (Available Profiles: PLANOJEVIC) Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 8 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\StikyNot.exe () C:\Users\PLANOJEVIC\AppData\Roaming\Crazy.Frog.Racer\upd.exe (Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ==================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [455304 2016-10-02] (Power Software Ltd) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2017-01-02] (AVAST Software) HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1 HKU\S-1-5-21-3364972714-2600955407-4062753720-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation) HKU\S-1-5-21-3364972714-2600955407-4062753720-1000\...\Run: [Crazy.Frog.Racer] => C:\Users\PLANOJEVIC\AppData\Roaming\Crazy.Frog.Racer\upd.exe [9728 2012-03-16] () HKU\S-1-5-21-3364972714-2600955407-4062753720-1000\...\Run: [osmsg] => C:\ProgramData\WindowsMsg\chrome.exe [7204864 2016-12-06] () HKU\S-1-5-21-3364972714-2600955407-4062753720-1000\...\MountPoints2: F - F:\Launcher.exe HKU\S-1-5-21-3364972714-2600955407-4062753720-1000\...\MountPoints2: G - G:\setup.exe HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-06-20] (Microsoft Corporation) ShellExecuteHooks: No Name - {5F51FFFE-7463-4220-B711-E5B9ACB8EDFE} - C:\ProgramData\igfxDH.dll [965120 2016-12-26] () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-01-02] (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{EEF6715D-5967-44ED-9489-2257CEE67AFA}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-3364972714-2600955407-4062753720-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3364972714-2600955407-4062753720-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-12-21] (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-01-02] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-21] (Oracle Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-21] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-01-02] (AVAST Software) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-21] (Oracle Corporation) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: 2262kgy3.default FF ProfilePath: C:\Users\PLANOJEVIC\AppData\Roaming\Mozilla\Firefox\Profiles\2262kgy3.default [2017-01-02] FF Extension: (Fast search) - C:\Users\PLANOJEVIC\AppData\Roaming\Mozilla\Firefox\Profiles\2262kgy3.default\Extensions\amcontextmenu@loucypher [2017-01-02] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2017-01-02] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2017-01-02] FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-13] () FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-21] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-21] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-13] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2013-12-05] (Adobe Systems, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-21] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-21] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.) Chrome: ======= CHR HomePage: Default -> hxxp://www.delta-search.com/?affID=119816&babsrc=HP_ss&mntrId=bca5782000000000000000123f9c3b1d CHR StartupUrls: Default -> "hxxp://www.google.com/","" CHR Plugin: (Widevine Content Decryption Module) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\WidevineCdm\1.4.8.893\_platform_specific\win_x64\widevinecdmadapter.dll => No File CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.28\PepperFlash\pepflashplayer.dll => No File CHR Profile: C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default [2017-01-02] CHR Extension: (Google Slides) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-06-07] CHR Extension: (Google Docs) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-07] CHR Extension: (Google Drive) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-07] CHR Extension: (YouTube) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-07] CHR Extension: (Free Smileys & Emoticons) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eadohofilecbkoopckifdpenihdpdbfm [2016-06-07] CHR Extension: (Google Sheets) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-06-07] CHR Extension: (Google Docs Offline) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-06-07] CHR Extension: (Chrome Web Store Payments) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-07] CHR Extension: (My Chrome Theme) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2016-06-07] CHR Extension: (Click&Clean App) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2016-12-25] CHR Extension: (Gmail) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-07] CHR Extension: (Chrome Media Router) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-13] CHR Extension: (Audio Cutter) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\Default\Extensions\plimnkafgoiilijmlbnfoafihjjijbfp [2016-06-14] ==================== Services (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2017-01-02] (AVAST Software) S4 GoogleChromeUpService; C:\ProgramData\service.exe [1620992 2017-01-02] () [File not signed] <==== ATTENTION S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation) S2 Windows; C:\Windows\svchost.exe [177152 2017-01-02] () [File not signed] <==== ATTENTION ===================== Drivers (Whitelisted) ====================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2017-01-02] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2017-01-02] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2017-01-02] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2017-01-02] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2017-01-02] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2017-01-02] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2017-01-02] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2017-01-02] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2017-01-02] (AVAST Software) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-01-02] (REALiX(tm)) R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] () S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] () S3 aswHdsKe; \??\C:\Windows\system32\drivers\aswHdsKe.sys [X] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X] S3 tsusbhub; system32\drivers\tsusbhub.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-01-02 23:38 - 2017-01-02 23:38 - 00001777 _____ C:\Users\PLANOJEVIC\Desktop\farcry3 - Shortcut.lnk 2017-01-02 23:37 - 2017-01-02 23:37 - 00015688 _____ C:\Users\PLANOJEVIC\Desktop\FRST.txt 2017-01-02 23:36 - 2017-01-02 23:37 - 00000000 ____D C:\FRST 2017-01-02 23:34 - 2017-01-02 23:35 - 02418176 _____ (Farbar) C:\Users\PLANOJEVIC\Desktop\FRST64.exe 2017-01-02 23:31 - 2017-01-02 23:31 - 00250912 _____ C:\Windows\SysWOW64\kz.exe 2017-01-02 23:25 - 2017-01-02 23:27 - 00003904 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1483395903 2017-01-02 23:25 - 2017-01-02 23:25 - 00001043 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk 2017-01-02 23:25 - 2017-01-02 23:25 - 00001043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2017-01-02 23:24 - 2017-01-02 23:24 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2017-01-02 23:21 - 2017-01-02 23:21 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\AVAST Software 2017-01-02 23:20 - 2017-01-02 23:20 - 00001922 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2017-01-02 23:20 - 2017-01-02 23:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2017-01-02 23:18 - 2017-01-02 23:19 - 00969184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys 2017-01-02 23:18 - 2017-01-02 23:19 - 00513632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys 2017-01-02 23:18 - 2017-01-02 23:19 - 00293352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys 2017-01-02 23:18 - 2017-01-02 23:18 - 00003922 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2017-01-02 23:18 - 2017-01-02 23:18 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software 2017-01-02 23:18 - 2017-01-02 23:17 - 00163416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2017-01-02 23:18 - 2017-01-02 23:17 - 00108816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2017-01-02 23:18 - 2017-01-02 23:17 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2017-01-02 23:18 - 2017-01-02 23:17 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2017-01-02 23:18 - 2017-01-02 23:17 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2017-01-02 23:17 - 2017-01-02 23:48 - 00000000 ____D C:\Users\PLANOJEVIC\Desktop\j 2017-01-02 23:17 - 2017-01-02 23:18 - 32757351 _____ C:\Users\PLANOJEVIC\Downloads\com.viber.voip-5.2.1.26-APK4Fun.com.apk 2017-01-02 23:17 - 2017-01-02 23:17 - 00992960 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2017-01-02 23:17 - 2017-01-02 23:17 - 00921280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2017-01-02 23:17 - 2017-01-02 23:17 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2017-01-02 23:17 - 2017-01-02 23:17 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr 2017-01-02 23:15 - 2017-01-02 23:24 - 00000000 ____D C:\Program Files\AVAST Software 2017-01-02 23:14 - 2017-01-02 23:24 - 00000000 ____D C:\ProgramData\AVAST Software 2017-01-02 23:13 - 2017-01-02 23:13 - 00001523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk 2017-01-02 23:13 - 2017-01-02 23:13 - 00001357 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk 2017-01-02 23:13 - 2017-01-02 23:13 - 00000000 ____D C:\Program Files (x86)\Adobe 2017-01-02 23:12 - 2017-01-02 23:12 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Local\ElevatedDiagnostics 2017-01-02 23:11 - 2017-01-02 23:11 - 06334872 _____ (AVAST Software) C:\Users\PLANOJEVIC\Downloads\avast_free_antivirus_setup_online.exe 2017-01-02 23:11 - 2017-01-02 23:11 - 00002940 _____ C:\Windows\System32\Tasks\osTip 2017-01-02 23:11 - 2017-01-02 23:11 - 00000376 _____ C:\Windows\ODBC.INI 2017-01-02 23:11 - 2017-01-02 23:11 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Local\Chromium 2017-01-02 23:11 - 2017-01-02 23:11 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Local\CEF 2017-01-02 23:10 - 2017-01-02 23:15 - 00000000 ____D C:\Program Files\Common Files\Adobe 2017-01-02 23:10 - 2017-01-02 23:11 - 00000000 __SHD C:\ProgramData\WindowsMsg 2017-01-02 23:10 - 2017-01-02 23:10 - 00000000 ____D C:\Program Files (x86)\Microsoft ActiveSync 2017-01-02 23:09 - 2017-01-02 23:09 - 00000000 ____D C:\Program Files (x86)\UCBrowser 2017-01-02 23:08 - 2017-01-02 23:55 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\KuaiZip 2017-01-02 23:08 - 2017-01-02 23:11 - 00000000 ____D C:\ProgramData\ProductData 2017-01-02 23:08 - 2017-01-02 23:08 - 00003122 _____ C:\Windows\System32\Tasks\{42C4F445-7AE7-4B36-A795-E8226CC6CE67} 2017-01-02 23:07 - 2017-01-02 23:53 - 00000000 __SHD C:\Users\PLANOJEVIC\AppData\Local\svchost 2017-01-02 23:07 - 2017-01-02 23:09 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\LocalLow\IObit 2017-01-02 23:07 - 2017-01-02 23:08 - 00027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS 2017-01-02 23:07 - 2017-01-02 23:07 - 00002910 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (PLANOJEVIC) 2017-01-02 23:07 - 2017-01-02 23:07 - 00000000 ____D C:\Windows\IObit 2017-01-02 23:07 - 2017-01-02 23:07 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\Softlink 2017-01-02 23:07 - 2017-01-02 23:07 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\IObit 2017-01-02 23:07 - 2017-01-02 23:07 - 00000000 ____D C:\ProgramData\IObit 2017-01-02 23:07 - 2016-12-26 15:58 - 00965120 ___SH C:\ProgramData\igfxDH.dll 2017-01-02 23:07 - 2016-10-23 21:32 - 38254850 ____N C:\Users\PLANOJEVIC\Downloads\com.viber.voip-5.6.0.2415-APK4Fun.com.apk 2017-01-02 23:06 - 2017-01-02 23:31 - 01620992 _____ C:\ProgramData\service.exe 2017-01-02 23:06 - 2017-01-02 23:08 - 00177152 _____ C:\Windows\svchost.exe 2017-01-02 23:06 - 2017-01-02 23:06 - 00608117 _____ C:\Windows\libcurl-4.dll 2017-01-02 23:06 - 2017-01-02 23:06 - 00000000 ____D C:\Windows\Azart 2017-01-02 23:06 - 2017-01-02 23:06 - 00000000 ____D C:\Users\Public\Thunder Network 2017-01-02 23:06 - 2017-01-02 23:06 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk 2017-01-02 23:06 - 2017-01-02 23:06 - 00000000 ____D C:\ProgramData\Thunder Network 2017-01-02 23:05 - 2017-01-02 23:37 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\LocalLow\uTorrent 2017-01-02 23:05 - 2017-01-02 23:05 - 01625824 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\libeay32.dll 2017-01-02 23:05 - 2017-01-02 23:05 - 00073216 _____ C:\Windows\taskmgr.exe 2017-01-02 23:05 - 2017-01-02 23:05 - 00071233 _____ C:\Users\PLANOJEVIC\Downloads\[limetorrents.cc]BATTLEFIELD.1.-.FULL.GAME.torrent 2017-01-02 23:05 - 2017-01-02 23:05 - 00054784 _____ (MingW-W64 Project. All rights reserved.) C:\Windows\libwinpthread-1.dll 2016-12-28 23:17 - 2016-12-28 23:17 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\LocalLow\Red Dot Games 2016-12-28 23:16 - 2016-12-28 23:16 - 00002097 _____ C:\Users\PLANOJEVIC\Desktop\Car Mechanic Simulator 2014.lnk 2016-12-28 23:16 - 2016-12-28 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Steamgames 2016-12-28 23:14 - 2016-12-28 23:16 - 00000000 ____D C:\Program Files (x86)\Car Mechanic Simulator 2014 2016-12-28 23:11 - 2017-01-02 23:15 - 00000000 ____D C:\ProgramData\Adobe 2016-12-28 23:11 - 2016-12-28 23:11 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\Macromedia 2016-12-28 22:49 - 2016-12-28 22:49 - 00356864 _____ C:\Users\PLANOJEVIC\Downloads\sablon_za_maturski_rad_0.doc 2016-12-28 22:49 - 2016-12-28 22:49 - 00000000 ____D C:\ProgramData\Orbit 2016-12-28 22:48 - 2016-12-28 22:48 - 00000000 ____D C:\Users\PLANOJEVIC\Documents\My Games 2016-12-28 22:48 - 2016-12-28 22:48 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\Far Cry 3 2016-12-28 22:48 - 2016-12-28 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics 2016-12-28 22:47 - 2016-12-28 22:47 - 00377344 _____ C:\Users\PLANOJEVIC\Downloads\Sablon_za_maturski_rad.doc 2016-12-28 22:30 - 2016-12-28 22:30 - 00036352 _____ C:\Users\PLANOJEVIC\Downloads\1-d0b1d180d0bed198d0b5d0b2d0b8-d0b4d0be-1000.doc 2016-12-28 22:29 - 2016-12-28 22:29 - 00702642 _____ C:\Users\PLANOJEVIC\Downloads\121358478-Satira-kao-društvena-kritika-kod-Radoja-Domanovića.pdf 2016-12-28 22:28 - 2016-12-28 22:28 - 02981334 _____ C:\Users\PLANOJEVIC\Downloads\Dragana Mirkovic - Dve Sudbine.mp3 2016-12-28 22:25 - 2016-12-28 22:25 - 00450190 _____ C:\Users\PLANOJEVIC\Downloads\ca4148e6aeba457a6abd3f07e265215e.jpg 2016-12-28 22:23 - 2016-12-28 22:23 - 00076336 _____ C:\Users\PLANOJEVIC\Downloads\AdobePhotoshopCS6FullVersionEnglish(zabranjeno) - ThePirateBay.TO.torrent 2016-12-25 20:59 - 2016-12-25 20:07 - 167472385 _____ C:\Users\PLANOJEVIC\Downloads\Dragana Mirkovic - 30 godina sa vama - (Koncert Kombank Arena 2014).mp3 2016-12-25 20:55 - 2016-12-25 20:55 - 00000000 ____D C:\Users\PLANOJEVIC\Documents\GameShadow 2016-12-25 20:55 - 2016-12-25 20:55 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GameShadow 2016-12-25 20:51 - 2016-12-25 20:51 - 00000000 ____D C:\Windows\Downloaded Installations 2016-12-25 20:31 - 2016-12-25 20:31 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\fp 2016-12-25 20:26 - 2016-12-25 20:11 - 00000000 ____D C:\Users\PLANOJEVIC\Desktop\informatika 2016-12-25 20:16 - 2016-12-25 20:16 - 00110091 _____ C:\Users\PLANOJEVIC\Documents\zoka.docx 2016-12-25 20:15 - 2016-12-25 20:15 - 00001738 _____ C:\Users\PLANOJEVIC\Desktop\Free Pascal IDE.lnk 2016-12-25 20:15 - 2016-12-25 20:15 - 00000000 ____D C:\Windows\system32\appmgmt 2016-12-25 20:15 - 2016-12-25 20:15 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Local\FreePascal 2016-12-25 20:15 - 2016-12-25 20:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Pascal 2016-12-25 20:10 - 2016-12-25 20:10 - 00002106 _____ C:\Users\PLANOJEVIC\Desktop\Crazy Frog Racer 2.lnk 2016-12-25 20:10 - 2016-12-25 20:10 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Turtle Games 2016-12-25 20:10 - 2016-12-25 20:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Turtle Games 2016-12-25 20:09 - 2017-01-02 23:55 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\Crazy.Frog.Racer 2016-12-25 20:09 - 2016-12-25 20:09 - 00000000 ____D C:\Program Files (x86)\Turtle Games 2016-12-25 20:08 - 2016-12-25 20:08 - 00146889 _____ C:\Users\PLANOJEVIC\Downloads\pesmarica.pdf 2016-12-25 20:07 - 2016-12-25 20:14 - 00000000 ____D C:\FPC 2016-12-25 20:02 - 2016-12-25 20:02 - 00144180 _____ C:\Users\PLANOJEVIC\Downloads\Joseph-Stalin.docx 2016-12-25 20:01 - 2016-12-25 20:32 - 00000000 ____D C:\Users\PLANOJEVIC\Desktop\Kika 2016-12-21 19:56 - 2016-12-21 19:56 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\Sun 2016-12-21 19:55 - 2016-12-21 19:59 - 00000000 ____D C:\ProgramData\Oracle 2016-12-21 19:51 - 2016-12-21 19:51 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\LocalLow\Oracle 2016-12-13 21:58 - 2016-12-28 22:44 - 00000732 _____ C:\Windows\DirectX.log 2016-12-13 21:51 - 2016-12-13 21:51 - 00014631 _____ C:\Users\PLANOJEVIC\Documents\Roman.docx 2016-12-13 21:39 - 2016-12-19 19:59 - 00000000 ____D C:\Users\PLANOJEVIC\Desktop\note 2016-12-13 21:36 - 2016-12-28 22:24 - 00000000 ____D C:\Program Files (x86)\R.G. Mechanics 2016-12-13 21:35 - 2017-01-02 23:02 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Local\Adobe 2016-12-13 21:34 - 2016-12-13 21:34 - 00000000 ____D C:\ProgramData\FLEXnet 2016-12-13 21:31 - 2016-12-13 21:31 - 00000000 ____D C:\Windows\SysWOW64\spool 2016-12-13 21:30 - 2016-12-13 21:30 - 00000000 ____D C:\Users\PLANOJEVIC\Downloads\DOCs 2016-12-13 21:29 - 2016-12-13 21:30 - 00000000 ____D C:\Users\PLANOJEVIC\Downloads\PDFs 2016-12-13 21:18 - 2016-12-13 21:18 - 00021377 _____ C:\Users\PLANOJEVIC\Documents\Untitled6.jpg 2016-12-13 21:14 - 2016-12-28 23:10 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\bizarre creations 2016-12-13 21:14 - 2016-12-19 20:54 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Local\Microsoft Games 2016-12-13 21:14 - 2016-12-13 21:14 - 00000000 ____D C:\Windows\System32\Tasks\Games 2016-12-13 21:11 - 2016-12-25 20:15 - 00000000 ____D C:\Program Files\paint.net 2016-12-13 21:10 - 2016-12-19 20:08 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Local\paint.net 2016-12-04 21:26 - 2016-12-04 21:00 - 00000000 ____D C:\Program Files\AMD 2016-12-04 21:25 - 2016-12-04 21:35 - 00000000 ____D C:\AMD 2016-12-04 21:16 - 2016-12-04 21:16 - 02920818 _____ C:\Users\PLANOJEVIC\Desktop\prijemni2016.pdf 2016-12-04 21:14 - 2016-12-04 21:14 - 01289382 _____ C:\Users\PLANOJEVIC\Desktop\zbirka6.pdf 2016-12-04 21:09 - 2016-12-04 21:09 - 00000000 ____D C:\4542023134243bd35b4b26fd4416 2016-12-04 21:05 - 2016-12-25 20:13 - 00000000 ____D C:\Program Files (x86)\Raptr Inc 2016-12-04 21:05 - 2016-12-04 21:05 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\library_dir 2016-12-04 21:03 - 2016-12-04 21:03 - 00053615 _____ C:\Windows\SysWOW64\CCCInstall_201612042103171601.log 2016-12-04 21:02 - 2016-12-04 21:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center 2016-12-04 21:02 - 2016-12-04 21:02 - 00000000 ____D C:\Program Files (x86)\AMD 2016-12-04 20:57 - 2017-01-02 23:55 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\Adobe 2016-12-04 20:54 - 2016-12-04 20:54 - 00000000 ____D C:\ProgramData\ATI ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2017-01-02 23:58 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-01-02 23:50 - 2010-12-26 20:18 - 00750278 _____ C:\Windows\system32\perfh010.dat 2017-01-02 23:50 - 2010-12-26 20:18 - 00151832 _____ C:\Windows\system32\perfc010.dat 2017-01-02 23:50 - 2010-12-26 19:33 - 00733730 _____ C:\Windows\system32\perfh019.dat 2017-01-02 23:50 - 2010-12-26 19:33 - 00155594 _____ C:\Windows\system32\perfc019.dat 2017-01-02 23:50 - 2009-07-14 06:13 - 02570908 _____ C:\Windows\system32\PerfStringBackup.INI 2017-01-02 23:50 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2017-01-02 23:42 - 2016-11-26 22:37 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2017-01-02 23:25 - 2016-06-07 20:37 - 00002268 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-01-02 23:18 - 2016-10-07 21:22 - 00000000 ____D C:\Program Files\Common Files\AV 2017-01-02 23:18 - 2016-06-07 20:37 - 00002399 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-01-02 23:18 - 2016-06-07 20:22 - 00001197 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2017-01-02 23:18 - 2016-06-07 20:22 - 00001185 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2017-01-02 23:18 - 2016-06-07 20:21 - 00001481 _____ C:\Users\PLANOJEVIC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2017-01-02 23:18 - 2016-06-07 20:21 - 00001447 _____ C:\Users\PLANOJEVIC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2017-01-02 23:10 - 2016-06-07 20:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2017-01-02 23:10 - 2016-06-07 20:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2017-01-02 23:10 - 2009-07-14 08:46 - 00000000 ____D C:\Windows\ShellNew 2017-01-02 23:08 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system 2017-01-02 23:07 - 2016-06-07 20:31 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\uTorrent 2017-01-02 23:06 - 2009-07-14 05:45 - 00016624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-01-02 23:06 - 2009-07-14 05:45 - 00016624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-01-02 23:04 - 2016-06-07 20:27 - 00110160 _____ C:\Users\PLANOJEVIC\AppData\Local\GDIPFONTCACHEV1.DAT 2017-01-02 23:01 - 2009-07-14 05:45 - 03138320 _____ C:\Windows\system32\FNTCACHE.DAT 2016-12-28 23:10 - 2016-11-26 22:03 - 00000000 ____D C:\Program Files (x86)\Spintires 2016-12-28 23:09 - 2009-07-14 04:20 - 00000000 ___RD C:\Users\Public\Documents 2016-12-28 22:56 - 2009-07-14 05:54 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{016888b9-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms 2016-12-28 22:48 - 2016-11-26 22:25 - 00000000 ____D C:\ProgramData\Package Cache 2016-12-28 22:48 - 2016-06-07 20:20 - 00000000 ___RD C:\Users\PLANOJEVIC\Documents 2016-12-25 20:55 - 2016-06-07 20:20 - 00000000 ___SD C:\Users\PLANOJEVIC\AppData\Roaming\Microsoft 2016-12-25 20:19 - 2016-06-14 18:46 - 00000000 ____D C:\Users\PLANOJEVIC\Downloads\Muzika 2016-12-25 20:15 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Microsoft.NET 2016-12-25 20:14 - 2016-10-23 13:32 - 00000000 ____D C:\ProgramData\PDFescape Desktop 2016-12-25 20:10 - 2016-06-07 20:20 - 00000000 ___RD C:\Users\PLANOJEVIC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-12-21 19:59 - 2016-11-26 22:23 - 00000000 ____D C:\Program Files (x86)\Java 2016-12-21 19:58 - 2016-11-26 22:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-12-21 19:58 - 2016-11-26 22:23 - 00000000 ____D C:\Program Files\Java 2016-12-21 19:57 - 2016-11-26 22:23 - 00318528 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2016-12-21 19:57 - 2016-11-26 22:23 - 00206912 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2016-12-21 19:57 - 2016-11-26 22:23 - 00206912 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2016-12-21 19:57 - 2016-11-26 22:23 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2016-12-21 19:55 - 2016-11-26 22:23 - 00269888 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2016-12-21 19:55 - 2016-11-26 22:23 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2016-12-21 19:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF 2016-12-21 19:53 - 2016-10-07 21:20 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2016-12-21 19:52 - 2016-10-07 21:19 - 00005120 ___SH C:\Users\Public\ntuser.dat.LOG1 2016-12-21 19:52 - 2016-10-07 21:19 - 00005120 ___SH C:\ProgramData\ntuser.dat.LOG1 2016-12-21 19:52 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\DriverStore 2016-12-21 19:52 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\catroot2 2016-12-21 19:52 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\catroot 2016-12-21 19:52 - 2009-07-14 03:34 - 00189440 ____H C:\Users\Default\NTUSER.DAT.LOG1 2016-12-21 19:48 - 2016-11-26 22:13 - 00000000 ____D C:\Program Files (x86)\Construction Simulator 2015 2016-12-19 20:01 - 2016-06-07 20:20 - 00000000 ___RD C:\Users\PLANOJEVIC\Saved Games 2016-12-19 19:56 - 2016-06-07 20:33 - 00003330 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2016-12-19 19:56 - 2016-06-07 20:33 - 00003202 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2016-12-19 19:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Tasks 2016-12-13 22:03 - 2016-11-26 22:29 - 02541330 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2016-12-13 21:42 - 2016-11-26 22:37 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-12-13 21:42 - 2016-11-26 22:37 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-12-13 21:42 - 2016-11-26 22:37 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-12-13 21:42 - 2016-11-26 22:37 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2016-12-13 21:42 - 2016-11-26 22:37 - 00000000 ____D C:\Windows\system32\Macromed 2016-12-13 21:33 - 2016-06-07 20:21 - 00000000 ___RD C:\Users\PLANOJEVIC\Searches 2016-12-13 21:31 - 2016-11-26 22:19 - 00160524 _____ C:\Users\PLANOJEVIC\Documents\Untitled.jpg 2016-12-13 21:13 - 2016-06-07 21:12 - 00000000 ____D C:\Users\PLANOJEVIC\Desktop\DOKUMENTI 2016-12-13 21:05 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\wdi 2016-12-04 21:21 - 2016-06-07 20:20 - 00000000 ___RD C:\Users\PLANOJEVIC\Pictures 2016-12-04 21:01 - 2016-06-07 20:31 - 00000000 ____D C:\Program Files\ATI Technologies ==================== Files in the root of some directories ======= 2017-01-02 23:07 - 2016-12-26 15:58 - 0965120 ___SH () C:\ProgramData\igfxDH.dll 2017-01-02 23:06 - 2017-01-02 23:31 - 1620992 _____ () C:\ProgramData\service.exe C:\Windows\svchost.exe ATTENTION ====> Check for partition/boot infection. Files to move or delete: ==================== C:\ProgramData\igfxDH.dll C:\ProgramData\service.exe Some files in TEMP: ==================== C:\Users\PLANOJEVIC\AppData\Local\Temp\0Uninst.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\1Uninst.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\2Uninst.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\3Uninst.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\77A3.tmp.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\amd-catalyst-15.7.1-with-dotnet45-win7-64bit.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\avgnt.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\jre-8u111-windows-au.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\load.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\playstv_patch.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\raptrpatch.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\raptr_stub.exe C:\Users\PLANOJEVIC\AppData\Local\Temp\setup.exe ==================== Bamital & volsnap ====================== (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-10-07 21:27 ==================== End of FRST.txt ============================

Profil

TwinHeadedEagle Poslao: 03 Jan 2017 22:10 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav, Preuzmi Zemana AntiMalware i sacuvaj ga na Deskop. Kada preuzimanje bude zavrseno: Dvoklikom pokreni instalaciju i prati uputstva. Instalacija je standardna bez ikakvih dodatnih opcija. Nakon instalacije, program ce se automatski pokrenuti i sada je potrebno klikniti na Scan. Kada se skeniranje zavrsi, klikni Next kako bi uklonio sve pronadjene stavke. Ako ti zatrazi da restartujes racunar, klikni na Reboot. Ukoliko je racunar ozbiljno inficiran, nakon restarta ce uslediti jos jedno skeniranje. Nakon toga, potrebno je da dostavis izvestaj/e: Na tastaturi pritisni + R u isto vreme. Kopiraj sledecu komandu i potvrdi sa OK: `%USERPROFILE%\AppData\Local\Zemana\Zemana AntiMalware\reports` Najnovji izvestaj/e kopiraj na Deskop, a zatim ga prikaci u sledecoj poruci.

Profil

Mladen Planojević Poslao: 03 Jan 2017 22:49 Idi na vrh
offline Mladen Planojević Građanin Pridružio: 04 Apr 2013 Poruke: 93 Gde živiš: Kako kad	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Hvala na brzom odgovoru! Uradio sam kako ste napisali i evo izvještaja: mycity.rs/must-login.png mycity.rs/must-login.png

Profil

TwinHeadedEagle Poslao: 03 Jan 2017 23:46 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kakva je sada situacija? Ponovo pokreni FRST i samo prikaci oba izvestaja.

Profil

Mladen Planojević Poslao: 03 Jan 2017 23:54 Idi na vrh
offline Mladen Planojević Građanin Pridružio: 04 Apr 2013 Poruke: 93 Gde živiš: Kako kad	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Izgleda da sada sve normalno funkcioniše. Hvala još jednom. mycity.rs/must-login.png mycity.rs/must-login.png

Profil

TwinHeadedEagle Poslao: 04 Jan 2017 00:45 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Da pocistimo jos neke ostatke: 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: createrestorepoint: closeprocesses: emptytemp: cmd: ipconfig /flushdns HKU\S-1-5-21-3364972714-2600955407-4062753720-1000\...\MountPoints2: F - F:\Launcher.exe HKU\S-1-5-21-3364972714-2600955407-4062753720-1000\...\MountPoints2: G - G:\setup.exe HKU\S-1-5-21-3364972714-2600955407-4062753720-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3364972714-2600955407-4062753720-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = CHR StartupUrls: Default -> "hxxp://www.google.com/","" CHR Plugin: (Widevine Content Decryption Module) - C:\Users\PLANOJEVIC\AppData\Local\Google\Chrome\User Data\WidevineCdm\1.4.8.893\_platform_specific\win_x64\widevinecdmadapter.dll => No File CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.28\PepperFlash\pepflashplayer.dll => No File S3 aswHdsKe; \??\C:\Windows\system32\drivers\aswHdsKe.sys [X] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X] S3 tsusbhub; system32\drivers\tsusbhub.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] 2017-01-02 23:07 - 2017-01-02 23:09 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\LocalLow\IObit 2017-01-02 23:07 - 2017-01-02 23:07 - 00000000 ____D C:\Windows\IObit 2017-01-02 23:07 - 2017-01-02 23:07 - 00000000 ____D C:\Users\PLANOJEVIC\AppData\Roaming\IObit 2017-01-02 23:07 - 2017-01-02 23:07 - 00000000 ____D C:\ProgramData\IObit HKU\S-1-5-21-3364972714-2600955407-4062753720-1000\...\Run: [Crazy.Frog.Racer] => C:\Users\PLANOJEVIC\AppData\Roaming\Crazy.Frog.Racer\upd.exe [9728 2012-03-16] () C:\Users\PLANOJEVIC\AppData\Roaming\Crazy.Frog.Racer Task: {FD27EEC9-BE7C-4BAF-896B-3C580770DC67} - System32\Tasks\osTip => Chrome.exe <==== ATTENTION Task: {0B2A0493-B863-4DB2-B5BD-65D1708B7F04} - System32\Tasks\Driver Booster SkipUAC (PLANOJEVIC) => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe Task: {10A15DC9-FADA-41B4-B766-D9BA33CFF454} - System32\Tasks\{42C4F445-7AE7-4B36-A795-E8226CC6CE67} => pcalua.exe -a "C:\Program Files (x86)\Maoha\MaohaAP\Uninstall.exe" HKU\S-1-5-21-3364972714-2600955407-4062753720-1000\...\Run: [osmsg] => C:\ProgramData\WindowsMsg\chrome.exe /AUTORUN C:\Program Files (x86)\IObit 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a. Skeniranje sa AdwCleaner Preuzmi AdwCleaner i sacuvaj ga na Desktop. Pokreni alat i sacekaj da se izvrši ažuriranje. Prihvati Terms of use tako što ceš kliknuti na I Agree. Klikni Scan i sacekaj da se skeniranje završi. Kada je gotovo, klikni Clean. Pojavice se poruka da ce svi programi biti zaustavljeni nakon što klikneš OK, tako da ako imaš nešto da sacuvaš, sada je vreme da to uradiš. Pojaviše se još dve poruke gde je potrebno kliknuti OK. Racunar ce se restartovati. Nakon restarta, otvorice se izveštaj, ciji sadržaj možeš kopirati u sledecu poruku. Napomena: Izveštaji ce biti sacuvani na tvoju sistemsku particiju, obicno je to folder C:\AdwCleaner

Profil

Mladen Planojević Poslao: 09 Jan 2017 18:54 Idi na vrh
offline Mladen Planojević Građanin Pridružio: 04 Apr 2013 Poruke: 93 Gde živiš: Kako kad	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Hvala na pomoći, još jednom. mycity.rs/must-login.png mycity.rs/must-login.png

Profil

TwinHeadedEagle Poslao: 10 Jan 2017 00:02 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	1Ovo se svidja korisniku: Mladen Planojević Registruj se da bi pohvalio/la poruku! To je to onda Preuzmi "Xplode"-ov DelFix i sačuvaj ga na Desktop Dvoklikom pokreni program. Štikliraj sledeće opcije: Remove disinfection tools Purge System Restore Reset system settings Klikni na dugme "Run" i pričekaj da program završi rad. Alat ce ukloniti sve koriscene alate u ovoj temi... Kada alat završi, otvoriće izvestaj u notepadu. Napomena: Izvestaj ce takodje biti sacuvan na C:\DelFix.txt Nije potrebno dostavljati izvestaj.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » problem sa windows explorer-om

Ko je trenutno na forumu

Ukupno su 765 korisnika na forumu :: 28 registrovanih, 4 sakrivenih i 733 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: _Rade, anbeast, bankulen, Bubimir, DPera, flash12, gmlale, goxin, havoc995, ILGromovnik, Karla, kjkszpj, Kriglord, kripo, Kubovac, kybonacci, M1los, mikki jons, milenko crazy north, milos.cbr, Mixelotti, novator, r77adder, sabros, slonic_tonic, SR-3m, StepskiVuk, tubular

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by