Reklame

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Pridružujem se problemu, ukoliko je istog karaktera, a mislim da jeste. Pojavljuju mi se reklame bukvalno samim klikom miša bila gde na određenim sajtovima. Otvori mi se novi prozor i non-stop moram da ih zatvaram, što mi oduzima neverovatno puno vremena. Uradio sam po uputstvu "magna86" i kačim svoj fajl u nadi da ćete mi nekako pomoći.
[Link mogu videti samo ulogovani korisnici]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav State_of_the_mind,

Naravno da cemo ti pomoci ali moras imati svoju zasebnu temu.

Ti si pratio uputstvo za pokretanje FRST alata i to je u redu, no postavio si nam samo njegov dodatni Addition.txt izvestaj. Potrebno je da nam postavis i primarni FRST.txt izvestaj. Izvestaj je snimljen na istoj lokaciji gde si sacuvao i FRST alat, tacnije u tvom slucaju to je C:\Users\Borislav\Downloads folder.

Pregledaj da li je FRST.txt izvestaj tamo i okaci ga uz poruku na uvid.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Hvala na odgovoru. U prilogu vam šaljem dokument koji ste tražili. Nadam se da je to to
[Link mogu videti samo ulogovani korisnici]




Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-04-2014
Ran by Borislav (administrator) on BORISLAV-PC on 11-04-2014 23:46:35
Running from C:\Users\Borislav\Downloads
Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: [Link mogu videti samo ulogovani korisnici]
Download link for 64-Bit Version: [Link mogu videti samo ulogovani korisnici]
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: [Link mogu videti samo ulogovani korisnici]

==================== Processes (Whitelisted) =================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\adminservice.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files\Bluetooth Suite\AthBtTray.exe
() C:\Program Files\Vip Internet\BackgroundService\ModemListener.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Virage Logic Corporation / Sonic Focus) C:\Program Files\ASUS\Sonic Focus\SonicFocusTray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Prolific Technology Inc.) C:\Windows\system32\IoctlSvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
() C:\Program Files\SecretSauce\updateSecretSauce.exe
() C:\Program Files\SecretSauce\bin\utilSecretSauce.exe
() C:\Program Files\Vip Internet\BackgroundService\ServiceManager.exe
(Atheros) C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe
(Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
(MyPCBackup.com) C:\Program Files\MyPC Backup\MyPC Backup.exe
() C:\Program Files\Vip Internet\ModemApplication.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AB Team) C:\Program Files\Webteh\BSPlayer\bsplayer.exe
() C:\Users\Borislav\AppData\Local\Viber\Viber.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AtherosBtStack] - C:\Program Files\Bluetooth Suite\BtvStack.exe [844448 2011-09-30] (Atheros Commnucations)
HKLM\...\Run: [AthBtTray] - C:\Program Files\Bluetooth Suite\AthBtTray.exe [694432 2011-09-30] (Atheros Commnucations)
HKLM\...\Run: [VIP_Serbia Lighter ModemListener] - C:\Program Files\Vip Internet\BackgroundService\ModemListener.exe [102400 2011-06-20] ()
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10025576 2011-01-26] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1530472 2011-01-18] (Realtek Semiconductor)
HKLM\...\Run: [SonicMasterTray] - C:\Program Files\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-09] (Virage Logic Corporation / Sonic Focus)
HKLM\...\Run: [avast!] - C:\Program Files\Alwil Software\Avast4\ashDisp.exe [81000 2009-09-15] (ALWIL Software)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [mobilegeni daemon] - C:\Program Files\Mobogenie\DaemonProcess.exe
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [NBKeyScan] - C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-06-08] (Nero AG)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-04-07] (AVAST Software)
HKU\S-1-5-21-1771529292-3248353540-2154226005-1000\...\Run: [Akamai NetSession Interface] - "C:\Users\Borislav\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-1771529292-3248353540-2154226005-1000\...\Run: [Viber] - C:\Users\Borislav\AppData\Local\Viber\Viber.exe [936456 2013-12-02] ()
HKU\S-1-5-21-1771529292-3248353540-2154226005-1000\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [20728480 2014-01-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1771529292-3248353540-2154226005-1000\...\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [1840424 2008-06-24] (Nero AG)
HKU\S-1-5-21-1771529292-3248353540-2154226005-1000\...\MountPoints2: {0bfde69e-84db-11e3-9487-fb204836bd3c} - G:\AutoRun.exe
HKU\S-1-5-21-1771529292-3248353540-2154226005-1000\...\MountPoints2: {0bfde6a2-84db-11e3-9487-fb204836bd3c} - G:\AutoRun.exe
HKU\S-1-5-21-1771529292-3248353540-2154226005-1000\...\MountPoints2: {3556fdc3-82ed-11e3-8451-8ed8e3fe4501} - G:\autorun.exe
HKU\S-1-5-21-1771529292-3248353540-2154226005-1000\...\MountPoints2: {7664afb5-b411-11e3-9f33-e405bb842d34} - G:\AutoRun.exe
HKU\S-1-5-21-1771529292-3248353540-2154226005-1000\...\MountPoints2: {7664afba-b411-11e3-9f33-e405bb842d34} - G:\AutoRun.exe
Startup: C:\Users\Borislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici]
SearchScopes: HKLM - DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&pid=1617&r=2014/01/26&hid=15799373690694720020&lg=EN&cc=RS&unqvl=46
SearchScopes: HKLM - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&pid=1617&r=2014/01/26&hid=15799373690694720020&lg=EN&cc=RS&unqvl=46
SearchScopes: HKCU - DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&pid=1617&r=2014/01/26&hid=15799373690694720020&lg=EN&cc=RS&unqvl=46
SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&pid=1617&r=2014/01/26&hid=15799373690694720020&lg=EN&cc=RS&unqvl=46
BHO: HDvid Codec V6.0 - {11111111-1111-1111-1111-110411591171} - C:\Program Files\HDvid Codec V6.0\HDvid Codec V6.0-bho.dll (installdaddy)
BHO: Vaudix - {4CF0B034-7DC8-4D9F-0C17-0B5E9FB57576} - C:\Program Files\Vaudix\BQsPwXu.dll ()
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: SNT - {8EE50DC6-976E-9062-45FB-56EBA82D96C2} - C:\Program Files\SNT\gLUPDbXJg.dll ()
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 89.216.1.30 89.216.1.50

FireFox:
========
FF ProfilePath: C:\Users\Borislav\AppData\Roaming\Mozilla\Firefox\Profiles\27iudxb4.default
FF user.js: detected! => C:\Users\Borislav\AppData\Roaming\Mozilla\Firefox\Profiles\27iudxb4.default\user.js
FF DefaultSearchEngine: WebSearch
FF SearchEngineOrder.1: WebSearch
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "WebSearch");: user_pref("browser.search.order.1,S", "WebSearch");
FF SelectedSearchEngine: WebSearch
FF Homepage: [Link mogu videti samo ulogovani korisnici]
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\Borislav\AppData\Roaming\Mozilla\Firefox\Profiles\27iudxb4.default\searchplugins\WebSearch.xml
FF Extension: HDvid Codec V6.0 - C:\Users\Borislav\AppData\Roaming\Mozilla\Firefox\Profiles\27iudxb4.default\Extensions\34f57b0c-8cdb-4914-818c-928df47c6c4f@3a243122-a6fc-40c9-a1e6-ba11e930da09.com [2014-03-26]
FF Extension: SNT - C:\Users\Borislav\AppData\Roaming\Mozilla\Firefox\Profiles\27iudxb4.default\Extensions\dr6gqp@oe-ldkoay.org [2014-01-30]
FF Extension: Vaaudix - C:\Users\Borislav\AppData\Roaming\Mozilla\Firefox\Profiles\27iudxb4.default\Extensions\euuavlofo@rtdii-.co.uk [2014-01-30]
FF Extension: GoPhotoIt - C:\Users\Borislav\AppData\Roaming\Mozilla\Firefox\Profiles\27iudxb4.default\Extensions\gophoto@gophoto.it.xpi [2013-08-08]
FF Extension: SmileysWeLove: Smileys for use with Facebook, GMail, and more - C:\Users\Borislav\AppData\Roaming\Mozilla\Firefox\Profiles\27iudxb4.default\Extensions\jid1-vW9nopuIAJiRHw@jetpack.xpi [2014-03-02]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-01-30]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-01-30]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-07]

Chrome:
=======
CHR HomePage: [Link mogu videti samo ulogovani korisnici]
CHR Extension: (Google документи) - C:\Users\Borislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-10]
CHR Extension: (Google диск) - C:\Users\Borislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-10]
CHR Extension: (YouTube) - C:\Users\Borislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-10]
CHR Extension: (Google претрага) - C:\Users\Borislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-10]
CHR Extension: (Free Smileys & Emoticons) - C:\Users\Borislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjbbjfdilbioabojmcplalojlmdngbjl [2014-04-10]
CHR Extension: (avast! Online Security) - C:\Users\Borislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-04-10]
CHR Extension: (Skype Click to Call) - C:\Users\Borislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-04-10]
CHR Extension: (Google новчаник) - C:\Users\Borislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-10]
CHR Extension: (GoPhoto.it) - C:\Users\Borislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk [2014-04-10]
CHR Extension: (Gmail) - C:\Users\Borislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-10]
CHR Extension: (HDvid Codec V6.0) - C:\Users\Borislav\AppData\Local\Google\Chrome\User Data\Default\Extensions\plnkhmnoajbfccclonaeepohggeolcih [2014-04-11]
CHR HKLM\...\Chrome\Extension: [fjbbjfdilbioabojmcplalojlmdngbjl] - C:\Users\Borislav\AppData\Local\Temp\swlfiles\smileyswelovetoolbar.crx [2014-02-04]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-04-07]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]
CHR HKLM\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files\Gophoto.it\gophotoit16.crx [2013-08-08]

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-07] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109048 2014-04-07] (AVAST Software)
S2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [36392 2014-02-18] (Just Develop It)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
R2 Update SecretSauce; C:\Program Files\SecretSauce\updateSecretSauce.exe [350496 2014-04-09] ()
R2 Util SecretSauce; C:\Program Files\SecretSauce\bin\utilSecretSauce.exe [350496 2014-04-09] ()
R2 VIP_Serbia Lighter Modem Device Helper; C:\Program Files\Vip Internet\BackgroundService\ServiceManager.exe [49752 2011-06-20] ()
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files\Bluetooth Suite\Ath_CoexAgent.exe [158880 2011-09-30] (Atheros)

==================== Drivers (Whitelisted) ====================

S3 AlcatelOTnet; C:\Windows\System32\DRIVERS\AlcatelOTUsbnet.sys [118272 2011-06-20] (TCT International Mobile Ltd)
R3 asmthub3; C:\Windows\System32\DRIVERS\asmthub3.sys [102376 2011-10-03] (ASMedia Technology Inc)
R3 asmtxhci; C:\Windows\System32\DRIVERS\asmtxhci.sys [312808 2011-10-03] (ASMedia Technology Inc)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [26136 2014-04-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [53328 2009-09-15] (ALWIL Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [269728 2014-04-07] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-04-07] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-04-07] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [776976 2014-04-07] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [114768 2009-09-15] (ALWIL Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [67264 2014-04-07] (AVAST Software)
R1 aswTdi; C:\Windows\system32\Drivers\aswTdi.sys [52368 2009-09-15] (ALWIL Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180760 2014-04-07] ()
R3 AthBTPort; C:\Windows\System32\DRIVERS\btath_flt.sys [35488 2011-09-30] (Atheros)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [3174912 2013-05-24] (Qualcomm Atheros Communications, Inc.)
R3 BTATH_A2DP; C:\Windows\System32\drivers\btath_a2dp.sys [290976 2011-09-30] (Atheros)
R3 btath_avdt; C:\Windows\System32\drivers\btath_avdt.sys [97440 2011-09-30] (Atheros)
R3 BTATH_BUS; C:\Windows\System32\DRIVERS\btath_bus.sys [25248 2011-09-30] (Atheros)
R3 BTATH_HCRP; C:\Windows\System32\DRIVERS\btath_hcrp.sys [147616 2011-09-30] (Atheros)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [60064 2011-09-30] (Atheros)
R3 BTATH_RCP; C:\Windows\System32\DRIVERS\btath_rcp.sys [263968 2011-09-30] (Atheros)
R3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [442528 2011-09-30] (Atheros)
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [106112 2011-06-20] (TCT International Mobile Ltd)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-03-02] (Duplex Secure Ltd.)
R1 tnetfilter2; C:\Windows\System32\drivers\tnetfilter2.sys [55360 2014-01-17] (NetFilterSDK.com)
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [X]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_cdcecm; system32\DRIVERS\ew_jucdcecm.sys [X]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X]
S3 huawei_ext_ctrl; system32\DRIVERS\ew_juextctrl.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-11 23:46 - 2014-04-11 23:47 - 00018359 _____ () C:\Users\Borislav\Downloads\FRST.txt
2014-04-11 23:46 - 2014-04-11 23:46 - 00000000 ____D () C:\FRST
2014-04-11 23:45 - 2014-04-11 23:45 - 01145856 _____ (Farbar) C:\Users\Borislav\Downloads\FRST.exe
2014-04-11 23:24 - 2014-04-11 23:24 - 02157056 _____ (Farbar) C:\Users\Borislav\Downloads\FRST64.exe
2014-04-11 10:33 - 2014-04-11 10:33 - 01338880 _____ (VideoPerformer) C:\Users\Borislav\Downloads\VideoPerformerSetup.exe
2014-04-11 01:09 - 2014-04-11 01:09 - 00205824 _____ () C:\Users\Borislav\Downloads\5.Javnost-kao-politicki-subjekt.ppt
2014-04-11 01:09 - 2014-04-11 01:09 - 00189440 _____ () C:\Users\Borislav\Downloads\3.-Javna-sfera-kritike-koncepta.ppt
2014-04-11 01:09 - 2014-04-11 01:09 - 00187904 _____ () C:\Users\Borislav\Downloads\4.-Javna-sfera-i-mediji.ppt
2014-04-11 01:06 - 2014-04-11 01:07 - 00192512 _____ () C:\Users\Borislav\Downloads\2.Javna-sfera-zona-napetosti.ppt
2014-04-11 00:38 - 2014-04-11 00:38 - 00187904 _____ () C:\Users\Borislav\Downloads\1.Dve-tradicije-u-istrazivanju-JM2.ppt
2014-04-11 00:29 - 2014-04-11 00:29 - 00000000 ___RD () C:\Users\Borislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-04-10 20:59 - 2014-04-10 20:59 - 00002167 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-10 20:57 - 2014-04-11 23:02 - 00000924 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-10 20:57 - 2014-04-11 21:02 - 00000920 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-10 20:56 - 2014-04-10 20:56 - 00884712 _____ (Google Inc.) C:\Users\Borislav\Downloads\ChromeSetup.exe
2014-04-09 20:22 - 2014-04-09 20:23 - 157054137 _____ () C:\Users\Borislav\Downloads\Bonobo - Nicolas Jaar - Chet Faker 1-51 hour Set.mp4
2014-04-07 22:51 - 2014-04-07 22:51 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\AVAST Software
2014-04-07 22:46 - 2014-04-07 22:46 - 00002129 _____ () C:\Users\Public\Desktop\avast! SafeZone.lnk
2014-04-07 22:46 - 2014-04-07 22:46 - 00002069 _____ () C:\Users\Public\Desktop\avast! Premier.lnk
2014-04-07 22:45 - 2014-04-07 22:45 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00269728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00180760 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00067264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-07 22:45 - 2014-04-07 22:45 - 00026136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2014-04-07 22:43 - 2014-04-07 22:43 - 00000000 ____D () C:\Program Files\AVAST Software
2014-04-07 22:41 - 2014-04-07 22:41 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-06 13:46 - 2014-04-06 14:01 - 422844394 _____ () C:\Users\Borislav\Downloads\Sweet Dreams Bonobo Mix.mp4
2014-04-05 18:11 - 2014-04-06 15:23 - 00000000 ____D () C:\Program Files\VideoLAN
2014-04-03 04:03 - 2014-04-07 14:00 - 00000000 ____D () C:\Users\Borislav\Desktop\New folder
2014-04-01 02:18 - 2014-04-07 20:07 - 00000000 ____D () C:\Users\Borislav\Desktop\NBA Serbia
2014-03-30 13:02 - 2014-03-30 13:14 - 312926475 _____ () C:\Users\Borislav\Downloads\Best of Gramatik HD.mp4
2014-03-20 10:25 - 2014-04-10 05:13 - 00000000 ____D () C:\Users\Borislav\AppData\Local\Microsoft Games
2014-03-12 01:02 - 2014-03-12 01:08 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\ImgBurn
2014-03-12 00:52 - 2014-03-12 00:52 - 00001815 _____ () C:\Users\Public\Desktop\ImgBurn.lnk
2014-03-12 00:52 - 2014-03-12 00:52 - 00000000 ____D () C:\Program Files\ImgBurn
2014-03-12 00:50 - 2014-03-12 00:50 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\rmi

==================== One Month Modified Files and Folders =======

2014-04-11 23:47 - 2014-04-11 23:46 - 00018359 _____ () C:\Users\Borislav\Downloads\FRST.txt
2014-04-11 23:46 - 2014-04-11 23:46 - 00000000 ____D () C:\FRST
2014-04-11 23:45 - 2014-04-11 23:45 - 01145856 _____ (Farbar) C:\Users\Borislav\Downloads\FRST.exe
2014-04-11 23:38 - 2014-01-30 18:32 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\Skype
2014-04-11 23:37 - 2014-03-01 03:37 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-11 23:24 - 2014-04-11 23:24 - 02157056 _____ (Farbar) C:\Users\Borislav\Downloads\FRST64.exe
2014-04-11 23:02 - 2014-04-10 20:57 - 00000924 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-11 21:02 - 2014-04-10 20:57 - 00000920 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-11 20:00 - 2014-01-25 02:55 - 00002192 _____ () C:\Windows\Tasks\HDvid Codec V6.0-chromeinstaller.job
2014-04-11 19:56 - 2014-01-25 02:56 - 00002408 _____ () C:\Windows\Tasks\HDvid Codec V6.0-firefoxinstaller.job
2014-04-11 19:56 - 2014-01-25 02:56 - 00001538 _____ () C:\Windows\Tasks\HDvid Codec V6.0-updater.job
2014-04-11 19:56 - 2014-01-25 02:56 - 00001478 _____ () C:\Windows\Tasks\HDvid Codec V6.0-codedownloader.job
2014-04-11 19:56 - 2014-01-25 02:56 - 00001366 _____ () C:\Windows\Tasks\HDvid Codec V6.0-enabler.job
2014-04-11 17:14 - 2014-01-22 02:42 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\ViberPC
2014-04-11 17:13 - 2014-01-22 02:40 - 00000000 ____D () C:\Users\Borislav\AppData\Local\Viber
2014-04-11 15:36 - 2014-01-22 00:40 - 00601793 _____ () C:\Windows\WindowsUpdate.log
2014-04-11 10:33 - 2014-04-11 10:33 - 01338880 _____ (VideoPerformer) C:\Users\Borislav\Downloads\VideoPerformerSetup.exe
2014-04-11 09:59 - 2009-07-14 06:39 - 00052375 _____ () C:\Windows\setupact.log
2014-04-11 01:09 - 2014-04-11 01:09 - 00205824 _____ () C:\Users\Borislav\Downloads\5.Javnost-kao-politicki-subjekt.ppt
2014-04-11 01:09 - 2014-04-11 01:09 - 00189440 _____ () C:\Users\Borislav\Downloads\3.-Javna-sfera-kritike-koncepta.ppt
2014-04-11 01:09 - 2014-04-11 01:09 - 00187904 _____ () C:\Users\Borislav\Downloads\4.-Javna-sfera-i-mediji.ppt
2014-04-11 01:07 - 2014-04-11 01:06 - 00192512 _____ () C:\Users\Borislav\Downloads\2.Javna-sfera-zona-napetosti.ppt
2014-04-11 00:39 - 2010-11-20 23:01 - 00713888 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-11 00:38 - 2014-04-11 00:38 - 00187904 _____ () C:\Users\Borislav\Downloads\1.Dve-tradicije-u-istrazivanju-JM2.ppt
2014-04-11 00:29 - 2014-04-11 00:29 - 00000000 ___RD () C:\Users\Borislav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-04-11 00:29 - 2010-11-20 23:48 - 00022066 _____ () C:\Windows\PFRO.log
2014-04-11 00:29 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-10 20:59 - 2014-04-10 20:59 - 00002167 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-10 20:58 - 2014-01-22 02:14 - 00000000 ____D () C:\Program Files\Google
2014-04-10 20:56 - 2014-04-10 20:56 - 00884712 _____ (Google Inc.) C:\Users\Borislav\Downloads\ChromeSetup.exe
2014-04-10 19:35 - 2014-01-23 00:07 - 00000000 ____D () C:\Users\Borislav\Desktop\Sličice
2014-04-10 05:13 - 2014-03-20 10:25 - 00000000 ____D () C:\Users\Borislav\AppData\Local\Microsoft Games
2014-04-09 20:23 - 2014-04-09 20:22 - 157054137 _____ () C:\Users\Borislav\Downloads\Bonobo - Nicolas Jaar - Chet Faker 1-51 hour Set.mp4
2014-04-07 23:41 - 2014-02-21 00:35 - 00000000 ____D () C:\Users\Borislav\AppData\Local\Facebook
2014-04-07 22:53 - 2014-01-25 02:59 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\newnext.me
2014-04-07 22:51 - 2014-04-07 22:51 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\AVAST Software
2014-04-07 22:46 - 2014-04-07 22:46 - 00002129 _____ () C:\Users\Public\Desktop\avast! SafeZone.lnk
2014-04-07 22:46 - 2014-04-07 22:46 - 00002069 _____ () C:\Users\Public\Desktop\avast! Premier.lnk
2014-04-07 22:45 - 2014-04-07 22:45 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00269728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00180760 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00067264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-07 22:45 - 2014-04-07 22:45 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-07 22:45 - 2014-04-07 22:45 - 00026136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2014-04-07 22:43 - 2014-04-07 22:43 - 00000000 ____D () C:\Program Files\AVAST Software
2014-04-07 22:41 - 2014-04-07 22:41 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-07 22:37 - 2014-01-25 01:48 - 00000000 ____D () C:\ProgramData\DatacardService
2014-04-07 22:36 - 2014-01-31 03:03 - 00000000 ____D () C:\Program Files\Quake Live
2014-04-07 20:07 - 2014-04-01 02:18 - 00000000 ____D () C:\Users\Borislav\Desktop\NBA Serbia
2014-04-07 14:00 - 2014-04-03 04:03 - 00000000 ____D () C:\Users\Borislav\Desktop\New folder
2014-04-06 15:23 - 2014-04-05 18:11 - 00000000 ____D () C:\Program Files\VideoLAN
2014-04-06 14:01 - 2014-04-06 13:46 - 422844394 _____ () C:\Users\Borislav\Downloads\Sweet Dreams Bonobo Mix.mp4
2014-04-02 23:23 - 2014-03-01 03:34 - 00000000 ____D () C:\Users\Borislav\AppData\Local\Adobe
2014-04-02 23:18 - 2014-03-01 03:35 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-04-02 23:18 - 2014-03-01 03:35 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-04-02 12:57 - 2014-01-22 00:50 - 00000000 ____D () C:\Users\Borislav\Documents\Bluetooth Folder
2014-04-02 11:24 - 2014-01-22 00:50 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\Atheros
2014-03-30 13:14 - 2014-03-30 13:02 - 312926475 _____ () C:\Users\Borislav\Downloads\Best of Gramatik HD.mp4
2014-03-27 02:51 - 2014-01-30 03:39 - 00005120 _____ () C:\Users\Borislav\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-23 18:30 - 2014-01-22 19:16 - 00000000 ____D () C:\Users\Borislav\AppData\Local\Microsoft Help
2014-03-18 16:38 - 2014-02-19 05:00 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\uTorrent
2014-03-13 19:27 - 2014-02-25 23:05 - 00000000 ____D () C:\Users\Borislav\Downloads\KiD CuDi presents SATELLITE FLIGHT_ The Journey to Mother Moon
2014-03-13 19:01 - 2014-03-02 01:15 - 00000000 ____D () C:\Users\Borislav\AppData\Local\Popajar
2014-03-13 18:57 - 2014-02-17 16:50 - 00000000 ___RD () C:\Users\Borislav\Dropbox
2014-03-13 10:45 - 2014-01-25 02:56 - 00000000 ____D () C:\Program Files\SecretSauce
2014-03-13 10:45 - 2014-01-25 02:55 - 00000000 ____D () C:\Program Files\HDvid Codec V6.0
2014-03-12 01:08 - 2014-03-12 01:02 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\ImgBurn
2014-03-12 00:52 - 2014-03-12 00:52 - 00001815 _____ () C:\Users\Public\Desktop\ImgBurn.lnk
2014-03-12 00:52 - 2014-03-12 00:52 - 00000000 ____D () C:\Program Files\ImgBurn
2014-03-12 00:50 - 2014-03-12 00:50 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\rmi
2014-03-12 00:50 - 2014-02-27 21:16 - 00000000 ____D () C:\Users\Borislav\AppData\Roaming\OpenCandy

Some content of TEMP:
====================
C:\Users\Borislav\AppData\Local\Temp\6_Offer_3.exe
C:\Users\Borislav\AppData\Local\Temp\AxSFADownloader.exe
C:\Users\Borislav\AppData\Local\Temp\BackupSetup.exe
C:\Users\Borislav\AppData\Local\Temp\Checkupdate.exe
C:\Users\Borislav\AppData\Local\Temp\down.2852.browsecoupon_setup.exe
C:\Users\Borislav\AppData\Local\Temp\down.4644.ytab_setup.exe
C:\Users\Borislav\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpohnhlm.dll
C:\Users\Borislav\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\Borislav\AppData\Local\Temp\gcapi_dll.dll
C:\Users\Borislav\AppData\Local\Temp\gtapi_signed.dll
C:\Users\Borislav\AppData\Local\Temp\ICReinstall_Alcohol120_trial_2-0-2-5830.exe
C:\Users\Borislav\AppData\Local\Temp\instruct.exe
C:\Users\Borislav\AppData\Local\Temp\setupA9_.exe
C:\Users\Borislav\AppData\Local\Temp\setup__6272.exe
C:\Users\Borislav\AppData\Local\Temp\Tsu6A24E921.dll
C:\Users\Borislav\AppData\Local\Temp\TsuE7E71464.dll
C:\Users\Borislav\AppData\Local\Temp\vcredist_x86.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-09 15:18

==================== End Of Log ============================

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav.



Korak 1.



Preuzmi "Xplode"-ov AdwCleaner () i sacuvaj ga na Desktop

Dvoklikom pokreni program.
Klikni na dugme [Scan] i pricekaj da program zavrsi.
Klikni na dugme [Clean]
Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu.
Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok

Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem.
Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl"
Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S0].txt








Korak 2.



Preuzmi smeenk-ov zoek.zip ili zoek.rar () sa ovog ili ovog linka i sačuvaj ga na Desktop.

Raspakuj arhivu u neki folder (uputstvo), a zatim:

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:


filesrcm;
startupall;
skipfix-iedefaults;
firefoxlook;
chromelook;


Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Kopiraj sadrzaj tog loga u poruku.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Pozdrav,

Korak 1 sam uspešno odradio i u prilogu kačim traženi fajl. Međutim, kada sam prešao na korak 2 i pokušao da otpakujem zoek.rar, nisam uspeo, jer mi izbacuje da je fajl oštećen. Drugi link za skidanje ne funkcioniše. Iako nisam odradio korak 2, kada se kompjuter restartovao, problem je otklonjen i više mi ne izbacuje reklame kao pre. Recite mi da li je potrebno da uradim i korak 2?

Hvala na pomoći.
[Link mogu videti samo ulogovani korisnici]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

U principu AdwCleaner je pobrisao sve sporno, ukoliko nisi u stanju da odradis korak 2, a kazes da je sve u redu, onda nema potrebe da se zadrzavamo vise.

Pokreni AdwCleaner i klikni Uninstall.

Pozdrav.