Avast detektuje infekciju ali ne moze da ukloni

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 14 Feb 2015 21:13

Pre par dana avast je poceo da prijavljuje da je blokirao harmfull page. Uvek je drugi url u pitanju, i drugi proces. Ili je svchost.exe, ili chrome.exe

Pokušao sam boot time scan, ali osim par bezopasnih keygenova, nije nista ocistio.
Internet konekcija je kablovska (vektor)

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-02-2015
Ran by Korisnik (administrator) on KORISNIK-PC on 14-02-2015 21:11:05
Running from C:\Users\Korisnik\Desktop
Loaded Profiles: Korisnik (Available profiles: Korisnik)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\qBittorrent\qbittorrent.exe
(NirSoft) D:\Temp\vmouse\new\volumouse.exe
(Power Software Ltd) C:\Program Files\PowerISO\PWRISOVM.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() D:\Temp\vmouse\new\volumouse32.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Opera Software) C:\Program Files (x86)\Opera beta\28.0.1750.21\opera.exe
() C:\Program Files (x86)\Opera beta\28.0.1750.21\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera beta\28.0.1750.21\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\28.0.1750.21\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\28.0.1750.21\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\28.0.1750.21\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\28.0.1750.21\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\28.0.1750.21\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\28.0.1750.21\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\28.0.1750.21\opera.exe
(Opera Software) C:\Program Files (x86)\Opera beta\28.0.1750.21\opera.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
(Opera Software) C:\Program Files (x86)\Opera beta\28.0.1750.21\opera.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12681320 2011-08-26] (Realtek Semiconductor)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files\PowerISO\PWRISOVM.EXE [408888 2014-10-08] (Power Software Ltd)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-27] (AVAST Software)
HKU\S-1-5-21-318460877-1857370447-3827231252-1001\...\Run: [qBittorrent] => C:\Program Files (x86)\qBittorrent\qbittorrent.exe [15651328 2014-10-22] ()
HKU\S-1-5-21-318460877-1857370447-3827231252-1001\...\Run: [$Volumouse$] => D:\Temp\vmouse\new\volumouse.exe [88576 2011-06-22] (NirSoft) <===== ATTENTION
HKU\S-1-5-21-318460877-1857370447-3827231252-1001\...\MountPoints2: E - E:\setup.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://websearch.thesearchpage.info/?pid=21662&r=2.....H&unqvl=74
SearchScopes: HKLM -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM-x32 -> DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=21662&r=2015/01/14&hid=11446149171400624000&lg=EN&cc=PH&unqvl=74
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=21662&r=2015/01/14&hid=11446149171400624000&lg=EN&cc=PH&unqvl=74
SearchScopes: HKU\S-1-5-21-318460877-1857370447-3827231252-1001 -> DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&ctid=CT33214.....2196953&q={searchTerms}&SSPV=&SSPV=
SearchScopes: HKU\S-1-5-21-318460877-1857370447-3827231252-1001 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&ctid=CT33214.....2196953&q={searchTerms}&SSPV=&SSPV=
SearchScopes: HKU\S-1-5-21-318460877-1857370447-3827231252-1001 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=21662&r=2015/01/14&hid=11446149171400624000&lg=EN&cc=PH&unqvl=74
BHO: JOniCOupoon -> {11068b12-6830-4513-b093-682c9d8fcae3} -> C:\ProgramData\JOniCOupoon\fyi13CoiyH4oJd.x64.dll ()
BHO: RegguulaarDeals -> {409c382d-1d2b-45cb-aa85-ea4eda9c0e05} -> C:\ProgramData\RegguulaarDeals\LrCzbrKHI7ON6Z.x64.dll ()
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: JOniCOupoon -> {11068b12-6830-4513-b093-682c9d8fcae3} -> C:\ProgramData\JOniCOupoon\fyi13CoiyH4oJd.dll ()
BHO-x32: RegguulaarDeals -> {409c382d-1d2b-45cb-aa85-ea4eda9c0e05} -> C:\ProgramData\RegguulaarDeals\LrCzbrKHI7ON6Z.dll ()
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 109.122.98.116 109.122.98.117

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-01-04]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-04]
CHR Extension: (Google Docs) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-04]
CHR Extension: (Google Drive) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-04]
CHR Extension: (YouTube) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-04]
CHR Extension: (Google Search) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-04]
CHR Extension: (Avast SafePrice) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-01-23]
CHR Extension: (Google Sheets) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-04]
CHR Extension: (Avast Online Security) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-01-23]
CHR Extension: (CRX Inspector) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmlpbkpknjcnfabomjkecmkigcphgomk [2015-01-22]
CHR Extension: (Google Wallet) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-04]
CHR Extension: (Gmail) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-04]
CHR Extension: (uniisaLes) - C:\ProgramData\cocbmolaagkahamlngoegjcbpnddodlj\ [2015-01-04]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-01-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-04]

Opera:
=======
StartMenuInternet: (HKLM) Operabeta - C:\Program Files (x86)\Opera beta\Launcher.exe

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-04] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2015-01-04] (Avast Software)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244448 2014-10-28] (Foxit Software Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-12-11] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-01-04] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2015-01-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-01-04] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-01-04] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-01-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-01-04] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-01-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-01-04] ()
S3 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115600 2010-01-29] (EZB Systems, Inc.)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2015-01-04] (Avast Software)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-14 21:11 - 2015-02-14 21:11 - 00015045 _____ () C:\Users\Korisnik\Desktop\FRST.txt
2015-02-14 21:10 - 2015-02-14 21:11 - 00000000 ____D () C:\FRST
2015-02-14 21:10 - 2015-02-14 21:10 - 02134528 _____ (Farbar) C:\Users\Korisnik\Downloads\FRST64 (1).exe
2015-02-14 21:09 - 2015-02-14 21:09 - 02134528 _____ (Farbar) C:\Users\Korisnik\Desktop\FRST64.exe
2015-02-14 21:03 - 2015-02-14 21:03 - 00000197 _____ () C:\Windows\system32\2015-02-14-20-03-46.007-AvastVBoxSVC.exe-3032.log
2015-02-14 10:53 - 2015-02-14 10:53 - 00000197 _____ () C:\Windows\system32\2015-02-14-09-53-58.091-AvastVBoxSVC.exe-3008.log
2015-02-14 07:49 - 2015-02-14 07:49 - 00000197 _____ () C:\Windows\system32\2015-02-14-06-49-02.042-AvastVBoxSVC.exe-3028.log
2015-02-13 21:54 - 2015-02-13 21:54 - 00000197 _____ () C:\Windows\system32\2015-02-13-20-54-40.058-AvastVBoxSVC.exe-2952.log
2015-02-13 10:39 - 2015-02-13 10:39 - 00000197 _____ () C:\Windows\system32\2015-02-13-09-39-45.069-AvastVBoxSVC.exe-2984.log
2015-02-13 07:25 - 2015-02-13 07:25 - 00000197 _____ () C:\Windows\system32\2015-02-13-06-25-01.036-AvastVBoxSVC.exe-2784.log
2015-02-12 13:39 - 2015-02-12 13:39 - 00000197 _____ () C:\Windows\system32\2015-02-12-12-39-15.091-AvastVBoxSVC.exe-2984.log
2015-02-12 09:07 - 2015-02-12 09:08 - 00000197 _____ () C:\Windows\system32\2015-02-12-08-07-23.061-AvastVBoxSVC.exe-3056.log
2015-02-12 07:01 - 2015-02-12 07:01 - 00000197 _____ () C:\Windows\system32\2015-02-12-06-01-11.046-AvastVBoxSVC.exe-3004.log
2015-02-11 19:06 - 2015-02-11 19:07 - 00000197 _____ () C:\Windows\system32\2015-02-11-18-06-59.025-AvastVBoxSVC.exe-2404.log
2015-02-11 16:41 - 2015-02-11 16:41 - 00000000 ____D () C:\ProgramData\Steam
2015-02-11 16:35 - 2015-02-11 16:35 - 00000593 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Saints Row Gat out of Hell.lnk
2015-02-11 10:36 - 2015-02-11 10:36 - 00000197 _____ () C:\Windows\system32\2015-02-11-09-36-20.067-AvastVBoxSVC.exe-2636.log
2015-02-11 08:12 - 2015-02-11 08:13 - 00000197 _____ () C:\Windows\system32\2015-02-11-07-12-58.067-AvastVBoxSVC.exe-2452.log
2015-02-10 19:06 - 2015-02-10 19:07 - 00000197 _____ () C:\Windows\system32\2015-02-10-18-06-29.072-AvastVBoxSVC.exe-2472.log
2015-02-10 12:35 - 2015-02-10 12:35 - 00000197 _____ () C:\Windows\system32\2015-02-10-11-35-10.051-AvastVBoxSVC.exe-2424.log
2015-02-10 07:44 - 2015-02-10 07:44 - 00000197 _____ () C:\Windows\system32\2015-02-10-06-44-44.099-AvastVBoxSVC.exe-2376.log
2015-02-09 19:22 - 2015-02-09 19:23 - 00000197 _____ () C:\Windows\system32\2015-02-09-18-22-25.048-AvastVBoxSVC.exe-2584.log
2015-02-09 19:22 - 2015-02-09 19:22 - 00001322 _____ () C:\Windows\PFRO.log
2015-02-09 15:09 - 2015-02-09 15:09 - 00000000 ____D () C:\ProgramData\3872871776
2015-02-09 14:03 - 2015-02-09 14:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Never Alone
2015-02-09 14:02 - 2015-02-09 14:02 - 00003388 _____ () C:\Windows\System32\Tasks\WINshell Event Notification
2015-02-09 10:55 - 2015-02-09 10:56 - 00000000 ____D () C:\Users\Korisnik\AppData\Local\Sublight
2015-02-09 10:55 - 2015-02-09 10:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sublight
2015-02-09 10:55 - 2015-02-09 10:55 - 00000000 ____D () C:\Program Files\Sublight
2015-02-09 10:36 - 2015-02-09 10:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SubDownloader2
2015-02-09 09:31 - 2015-02-09 09:31 - 00000197 _____ () C:\Windows\system32\2015-02-09-08-31-47.044-AvastVBoxSVC.exe-3228.log
2015-02-09 08:05 - 2015-02-09 08:05 - 00000197 _____ () C:\Windows\system32\2015-02-09-07-05-23.041-AvastVBoxSVC.exe-3416.log
2015-02-08 23:28 - 2015-02-08 23:29 - 00000197 _____ () C:\Windows\system32\2015-02-08-22-28-42.002-AvastVBoxSVC.exe-3344.log
2015-02-08 11:05 - 2015-02-08 11:05 - 00000197 _____ () C:\Windows\system32\2015-02-08-10-05-21.061-AvastVBoxSVC.exe-3248.log
2015-02-07 13:52 - 2015-02-07 13:52 - 401936148 _____ () C:\Windows\MEMORY.DMP
2015-02-07 13:52 - 2015-02-07 13:52 - 00310128 _____ () C:\Windows\Minidump\020715-10467-01.dmp
2015-02-07 13:52 - 2015-02-07 13:52 - 00000197 _____ () C:\Windows\system32\2015-02-07-12-52-21.074-AvastVBoxSVC.exe-3000.log
2015-02-07 13:19 - 2015-02-07 13:19 - 00000197 _____ () C:\Windows\system32\2015-02-07-12-19-11.071-AvastVBoxSVC.exe-3352.log
2015-02-07 10:36 - 2015-02-07 10:36 - 00000000 ____D () C:\Games
2015-02-07 09:36 - 2015-02-07 09:36 - 00000197 _____ () C:\Windows\system32\2015-02-07-08-36-06.048-AvastVBoxSVC.exe-3280.log
2015-02-06 23:03 - 2015-02-06 23:03 - 00000197 _____ () C:\Windows\system32\2015-02-06-22-03-53.097-AvastVBoxSVC.exe-3448.log
2015-02-06 20:12 - 2015-02-06 20:12 - 00000197 _____ () C:\Windows\system32\2015-02-06-19-12-18.047-AvastVBoxSVC.exe-3468.log
2015-02-06 14:25 - 2015-02-06 14:25 - 00000197 _____ () C:\Windows\system32\2015-02-06-13-25-09.057-AvastVBoxSVC.exe-3360.log
2015-02-06 09:33 - 2015-02-06 09:33 - 00000197 _____ () C:\Windows\system32\2015-02-06-08-33-03.036-AvastVBoxSVC.exe-3256.log
2015-02-05 20:47 - 2015-02-05 20:47 - 00000197 _____ () C:\Windows\system32\2015-02-05-19-47-33.025-AvastVBoxSVC.exe-3344.log
2015-02-05 16:14 - 2015-02-05 16:14 - 00000247 _____ () C:\Windows\system32\2015-02-05-15-14-21.030-aswFe.exe-5992.log
2015-02-05 16:12 - 2015-02-05 16:14 - 00000247 _____ () C:\Windows\system32\2015-02-05-15-12-18.008-aswFe.exe-4176.log
2015-02-05 16:12 - 2015-02-05 16:12 - 00000197 _____ () C:\Windows\system32\2015-02-05-15-12-15.089-AvastVBoxSVC.exe-3616.log
2015-02-05 08:19 - 2015-02-05 08:19 - 00000197 _____ () C:\Windows\system32\2015-02-05-07-19-04.081-AvastVBoxSVC.exe-3124.log
2015-02-04 20:45 - 2015-02-04 20:45 - 00000197 _____ () C:\Windows\system32\2015-02-04-19-45-27.023-AvastVBoxSVC.exe-2316.log
2015-02-04 14:47 - 2015-02-04 14:47 - 00000247 _____ () C:\Windows\system32\2015-02-04-13-47-05.062-aswFe.exe-5032.log
2015-02-04 14:45 - 2015-02-04 14:46 - 00000247 _____ () C:\Windows\system32\2015-02-04-13-45-17.003-aswFe.exe-5520.log
2015-02-04 14:45 - 2015-02-04 14:45 - 00000197 _____ () C:\Windows\system32\2015-02-04-13-45-14.032-AvastVBoxSVC.exe-1924.log
2015-02-04 14:38 - 2015-02-14 21:04 - 00004982 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Korisnik-PC-Korisnik Korisnik-PC
2015-02-04 12:59 - 2015-02-04 12:59 - 00065208 _____ () C:\Users\Korisnik\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-04 12:23 - 2015-02-14 21:03 - 00004802 _____ () C:\Windows\setupact.log
2015-02-04 12:23 - 2015-02-04 12:23 - 00000197 _____ () C:\Windows\system32\2015-02-04-11-23-17.096-AvastVBoxSVC.exe-3532.log
2015-02-04 12:23 - 2015-02-04 12:23 - 00000000 _____ () C:\Windows\setuperr.log
2015-02-04 12:22 - 2015-02-04 12:23 - 00304480 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-04 10:23 - 2015-02-04 10:23 - 00002778 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-02-04 10:23 - 2015-02-04 10:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-02-04 10:23 - 2015-02-04 10:23 - 00000000 ____D () C:\Program Files\CCleaner
2015-02-04 09:28 - 2015-02-04 09:28 - 00000197 _____ () C:\Windows\system32\2015-02-04-08-28-01.028-AvastVBoxSVC.exe-3300.log
2015-02-03 20:40 - 2015-02-03 20:40 - 00000197 _____ () C:\Windows\system32\2015-02-03-19-40-20.056-AvastVBoxSVC.exe-3212.log
2015-02-03 16:39 - 2015-02-03 16:39 - 00000197 _____ () C:\Windows\system32\2015-02-03-15-39-53.063-AvastVBoxSVC.exe-3168.log
2015-02-03 09:33 - 2015-02-03 09:33 - 00000197 _____ () C:\Windows\system32\2015-02-03-08-33-26.032-AvastVBoxSVC.exe-3252.log
2015-02-03 08:03 - 2015-02-03 08:03 - 00000197 _____ () C:\Windows\system32\2015-02-03-07-03-21.095-AvastVBoxSVC.exe-3252.log
2015-02-02 20:59 - 2015-02-02 20:59 - 00000197 _____ () C:\Windows\system32\2015-02-02-19-59-27.035-AvastVBoxSVC.exe-3320.log
2015-02-02 18:11 - 2015-02-02 18:11 - 00000197 _____ () C:\Windows\system32\2015-02-02-17-11-10.044-AvastVBoxSVC.exe-3212.log
2015-02-02 10:00 - 2015-02-02 10:01 - 00000197 _____ () C:\Windows\system32\2015-02-02-09-00-31.043-AvastVBoxSVC.exe-3304.log
2015-02-02 08:03 - 2015-02-02 08:03 - 00000197 _____ () C:\Windows\system32\2015-02-02-07-03-43.039-AvastVBoxSVC.exe-3212.log
2015-02-01 20:08 - 2015-02-01 20:09 - 00000197 _____ () C:\Windows\system32\2015-02-01-19-08-49.057-AvastVBoxSVC.exe-3260.log
2015-01-31 19:15 - 2015-01-31 19:15 - 00000247 _____ () C:\Windows\system32\2015-01-31-18-15-31.017-aswFe.exe-1968.log
2015-01-31 19:13 - 2015-01-31 19:15 - 00000247 _____ () C:\Windows\system32\2015-01-31-18-13-53.032-aswFe.exe-2328.log
2015-01-31 19:13 - 2015-01-31 19:13 - 00000197 _____ () C:\Windows\system32\2015-01-31-18-13-50.076-AvastVBoxSVC.exe-3744.log
2015-01-31 08:34 - 2015-01-31 08:34 - 00000197 _____ () C:\Windows\system32\2015-01-31-07-34-10.019-AvastVBoxSVC.exe-3224.log
2015-01-30 10:11 - 2015-01-30 10:11 - 00000197 _____ () C:\Windows\system32\2015-01-30-09-11-51.050-AvastVBoxSVC.exe-3292.log
2015-01-30 08:03 - 2015-01-30 08:03 - 00000197 _____ () C:\Windows\system32\2015-01-30-07-03-07.094-AvastVBoxSVC.exe-3504.log
2015-01-29 18:38 - 2015-01-29 18:38 - 00000197 _____ () C:\Windows\system32\2015-01-29-17-38-54.017-AvastVBoxSVC.exe-3288.log
2015-01-29 12:45 - 2015-01-29 12:45 - 00000197 _____ () C:\Windows\system32\2015-01-29-11-45-04.091-AvastVBoxSVC.exe-3236.log
2015-01-29 10:10 - 2015-01-29 10:10 - 00000197 _____ () C:\Windows\system32\2015-01-29-09-10-40.044-AvastVBoxSVC.exe-3292.log
2015-01-29 07:36 - 2015-01-29 07:36 - 00000247 _____ () C:\Windows\system32\2015-01-29-06-36-55.061-aswFe.exe-1980.log
2015-01-29 07:35 - 2015-01-29 07:36 - 00000247 _____ () C:\Windows\system32\2015-01-29-06-35-21.074-aswFe.exe-716.log
2015-01-29 07:35 - 2015-01-29 07:35 - 00000197 _____ () C:\Windows\system32\2015-01-29-06-35-19.034-AvastVBoxSVC.exe-964.log
2015-01-28 23:57 - 2015-01-28 23:57 - 00000197 _____ () C:\Windows\system32\2015-01-28-22-57-56.045-AvastVBoxSVC.exe-3252.log
2015-01-28 15:50 - 2015-01-28 15:50 - 00000197 _____ () C:\Windows\system32\2015-01-28-14-50-26.075-AvastVBoxSVC.exe-3256.log
2015-01-28 10:57 - 2015-01-28 10:57 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi
2015-01-28 10:57 - 2015-01-28 10:57 - 00000000 ____D () C:\Users\Korisnik\AppData\Local\Vivaldi
2015-01-28 10:34 - 2015-01-28 10:34 - 00000197 _____ () C:\Windows\system32\2015-01-28-09-34-07.028-AvastVBoxSVC.exe-3484.log
2015-01-27 11:38 - 2015-01-27 11:39 - 00000197 _____ () C:\Windows\system32\2015-01-27-10-38-47.010-AvastVBoxSVC.exe-3320.log
2015-01-27 07:33 - 2015-01-27 07:33 - 00000197 _____ () C:\Windows\system32\2015-01-27-06-33-03.092-AvastVBoxSVC.exe-3264.log
2015-01-26 12:21 - 2015-01-26 12:21 - 00000197 _____ () C:\Windows\system32\2015-01-26-11-21-19.038-AvastVBoxSVC.exe-3320.log
2015-01-26 09:18 - 2015-01-26 09:19 - 00000247 _____ () C:\Windows\system32\2015-01-26-08-18-58.004-aswFe.exe-3560.log
2015-01-26 09:16 - 2015-01-26 09:18 - 00000247 _____ () C:\Windows\system32\2015-01-26-08-16-41.061-aswFe.exe-5436.log
2015-01-26 09:16 - 2015-01-26 09:16 - 00000197 _____ () C:\Windows\system32\2015-01-26-08-16-39.028-AvastVBoxSVC.exe-5948.log
2015-01-25 18:02 - 2015-01-25 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D
2015-01-25 18:02 - 2015-01-25 18:02 - 00000000 ____D () C:\Program Files (x86)\Geeks3D
2015-01-25 12:13 - 2015-01-25 12:13 - 00000197 _____ () C:\Windows\system32\2015-01-25-11-13-31.078-AvastVBoxSVC.exe-3180.log
2015-01-25 09:03 - 2015-01-25 09:03 - 00000197 _____ () C:\Windows\system32\2015-01-25-08-03-16.000-AvastVBoxSVC.exe-3248.log
2015-01-24 17:25 - 2015-01-24 17:25 - 00000197 _____ () C:\Windows\system32\2015-01-24-16-25-49.027-AvastVBoxSVC.exe-3200.log
2015-01-24 17:23 - 2015-02-07 13:52 - 00000000 ____D () C:\Windows\Minidump
2015-01-24 14:02 - 2015-01-24 14:02 - 00000197 _____ () C:\Windows\system32\2015-01-24-13-02-51.027-AvastVBoxSVC.exe-3248.log
2015-01-24 13:57 - 2015-01-28 11:23 - 00000000 ____D () C:\Users\Korisnik\VirtualBox VMs
2015-01-24 13:52 - 2015-01-28 12:19 - 00000000 ____D () C:\Users\Korisnik\.VirtualBox
2015-01-24 13:52 - 2015-01-24 13:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2015-01-24 13:52 - 2015-01-24 13:52 - 00000000 ____D () C:\Program Files\Oracle
2015-01-24 13:52 - 2014-11-24 12:07 - 00916024 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2015-01-24 13:52 - 2014-11-24 12:07 - 00128080 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2015-01-24 11:02 - 2015-01-24 11:02 - 00000197 _____ () C:\Windows\system32\2015-01-24-10-02-07.057-AvastVBoxSVC.exe-3440.log
2015-01-24 09:30 - 2015-01-24 09:30 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\Macromedia
2015-01-23 20:58 - 2015-01-23 20:59 - 00000197 _____ () C:\Windows\system32\2015-01-23-19-58-32.068-AvastVBoxSVC.exe-3204.log
2015-01-23 16:29 - 2015-01-23 16:29 - 00000197 _____ () C:\Windows\system32\2015-01-23-15-29-27.031-AvastVBoxSVC.exe-3360.log
2015-01-23 11:13 - 2015-01-23 11:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-01-23 11:13 - 2015-01-09 23:27 - 00621200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-01-23 11:11 - 2015-01-13 05:15 - 01540240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 32102544 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 25459856 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 24765584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 20465296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 17250776 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 13295552 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 13210248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 10774544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 10714488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 10274448 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-01-23 11:11 - 2015-01-10 09:07 - 03607184 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 03298816 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 03245712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434725.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 01556808 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434725.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 00994712 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 00969360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 00942736 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 00929424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 00906384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 00877488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 00353040 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 00305320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 00177624 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-01-23 11:11 - 2015-01-10 09:07 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-01-23 08:51 - 2015-01-23 08:51 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\MPC-HC
2015-01-23 08:48 - 2015-01-23 08:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SVP 3.1
2015-01-23 08:48 - 2015-01-23 08:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow
2015-01-23 08:48 - 2015-01-23 08:48 - 00000000 ____D () C:\Program Files (x86)\ffdshow
2015-01-23 08:48 - 2014-02-09 20:36 - 00112640 _____ () C:\Windows\SysWOW64\ff_vfw.dll
2015-01-23 08:45 - 2015-01-23 08:48 - 00000000 ____D () C:\ProgramData\SVP 3.1
2015-01-23 08:45 - 2015-01-23 08:48 - 00000000 ____D () C:\Program Files (x86)\SVP
2015-01-23 08:45 - 2015-01-23 08:45 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
2015-01-23 08:45 - 2015-01-23 08:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
2015-01-23 08:45 - 2015-01-23 08:45 - 00000000 ____D () C:\Program Files (x86)\AviSynth 2.5
2015-01-23 08:00 - 2015-01-23 08:00 - 00000197 _____ () C:\Windows\system32\2015-01-23-07-00-17.088-AvastVBoxSVC.exe-3304.log
2015-01-23 05:48 - 2015-01-23 05:48 - 00000197 _____ () C:\Windows\system32\2015-01-23-04-48-34.073-AvastVBoxSVC.exe-3284.log
2015-01-22 22:10 - 2015-01-22 22:11 - 00000197 _____ () C:\Windows\system32\2015-01-22-21-10-39.092-AvastVBoxSVC.exe-3568.log
2015-01-22 17:59 - 2015-01-22 17:59 - 00000197 _____ () C:\Windows\system32\2015-01-22-16-59-41.058-AvastVBoxSVC.exe-3360.log
2015-01-22 16:58 - 2015-02-06 12:32 - 00000000 ____D () C:\ProgramData\CoheapMe
2015-01-22 10:34 - 2015-01-22 10:34 - 00000197 _____ () C:\Windows\system32\2015-01-22-09-34-22.019-AvastVBoxSVC.exe-3596.log
2015-01-22 09:25 - 2015-01-22 09:25 - 00000000 ____D () C:\Users\Korisnik\AppData\Local\PictureCode
2015-01-22 09:25 - 2015-01-22 09:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Ninja 1.2.4RC 64 Bit
2015-01-22 09:25 - 2015-01-22 09:25 - 00000000 ____D () C:\Program Files\PictureCode
2015-01-22 08:41 - 2015-01-22 08:41 - 00000000 ____D () C:\ProgramData\null
2015-01-22 08:21 - 2015-01-22 08:21 - 00002037 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eosmsg.lnk
2015-01-22 08:21 - 2015-01-22 08:21 - 00002031 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\eosmsg.lnk
2015-01-22 08:21 - 2015-01-22 08:21 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\eosmsg.com
2015-01-22 08:21 - 2015-01-22 08:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eosmsg V4.5
2015-01-22 08:21 - 2015-01-22 08:21 - 00000000 ____D () C:\ProgramData\Caphyon
2015-01-22 08:21 - 2015-01-22 08:21 - 00000000 ____D () C:\Program Files (x86)\eosmsg.com
2015-01-22 08:03 - 2015-01-22 08:03 - 00000197 _____ () C:\Windows\system32\2015-01-22-07-03-17.036-AvastVBoxSVC.exe-3332.log
2015-01-21 22:32 - 2015-01-21 22:32 - 00000197 _____ () C:\Windows\system32\2015-01-21-21-32-04.093-AvastVBoxSVC.exe-3464.log
2015-01-21 17:30 - 2015-01-21 17:30 - 00000000 ____D () C:\ProgramData\RegguulaarDeals
2015-01-21 17:30 - 2015-01-21 17:30 - 00000000 ____D () C:\ProgramData\JOniCOupoon
2015-01-21 16:51 - 2015-01-21 16:51 - 00000197 _____ () C:\Windows\system32\2015-01-21-15-51-57.070-AvastVBoxSVC.exe-3316.log
2015-01-21 14:43 - 2015-01-21 14:44 - 00000197 _____ () C:\Windows\system32\2015-01-21-13-43-46.038-AvastVBoxSVC.exe-3408.log
2015-01-21 11:05 - 2015-01-21 11:05 - 00000197 _____ () C:\Windows\system32\2015-01-21-10-05-24.050-AvastVBoxSVC.exe-3472.log
2015-01-21 09:59 - 2015-01-21 09:59 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\Google
2015-01-21 09:54 - 2015-01-21 09:54 - 00000000 ____D () C:\Users\Korisnik\AppData\Local\Software
2015-01-21 09:54 - 2015-01-21 09:54 - 00000000 ____D () C:\Users\Korisnik\AppData\Local\NikLicenseFiles
2015-01-21 09:48 - 2015-01-21 09:49 - 00000000 ____D () C:\ProgramData\Google
2015-01-21 09:48 - 2015-01-21 09:48 - 00000000 ____D () C:\Program Files\Google
2015-01-21 08:52 - 2015-01-22 16:59 - 00000000 ____D () C:\ProgramData\fb4c865881b052ec
2015-01-21 08:26 - 2015-01-21 08:26 - 00000000 ____D () C:\Users\Korisnik\Documents\Neat Image Standalone
2015-01-21 08:26 - 2015-01-21 08:26 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\NeatImage SL 64
2015-01-21 08:26 - 2015-01-21 08:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neat Image Standalone
2015-01-21 08:26 - 2015-01-21 08:26 - 00000000 ____D () C:\Program Files\Neat Image Standalone
2015-01-21 08:13 - 2015-01-21 08:14 - 00000197 _____ () C:\Windows\system32\2015-01-21-07-13-34.023-AvastVBoxSVC.exe-3500.log
2015-01-20 16:52 - 2015-01-20 16:52 - 00000197 _____ () C:\Windows\system32\2015-01-20-15-52-05.094-AvastVBoxSVC.exe-3600.log
2015-01-20 12:25 - 2015-01-20 12:26 - 00000197 _____ () C:\Windows\system32\2015-01-20-11-25-37.060-AvastVBoxSVC.exe-3432.log
2015-01-20 07:32 - 2015-01-20 07:32 - 00000197 _____ () C:\Windows\system32\2015-01-20-06-32-10.072-AvastVBoxSVC.exe-3564.log
2015-01-19 21:01 - 2015-01-19 21:01 - 00000197 _____ () C:\Windows\system32\2015-01-19-20-01-14.091-AvastVBoxSVC.exe-3644.log
2015-01-19 18:34 - 2015-01-19 18:34 - 00000197 _____ () C:\Windows\system32\2015-01-19-17-34-10.013-AvastVBoxSVC.exe-3268.log
2015-01-19 08:48 - 2015-01-19 08:48 - 00000197 _____ () C:\Windows\system32\2015-01-19-07-48-15.047-AvastVBoxSVC.exe-3348.log
2015-01-18 21:08 - 2015-01-18 21:09 - 00000197 _____ () C:\Windows\system32\2015-01-18-20-08-24.083-AvastVBoxSVC.exe-3244.log
2015-01-18 10:05 - 2015-01-18 10:05 - 00000197 _____ () C:\Windows\system32\2015-01-18-09-05-48.061-AvastVBoxSVC.exe-3588.log
2015-01-17 10:46 - 2015-01-17 10:46 - 00000247 _____ () C:\Windows\system32\2015-01-17-09-46-21.039-aswFe.exe-4568.log
2015-01-17 10:44 - 2015-01-17 10:46 - 00000247 _____ () C:\Windows\system32\2015-01-17-09-44-04.029-aswFe.exe-3400.log
2015-01-17 10:44 - 2015-01-17 10:44 - 00000197 _____ () C:\Windows\system32\2015-01-17-09-44-02.004-AvastVBoxSVC.exe-5524.log
2015-01-16 21:32 - 2015-02-11 19:48 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\Kodi
2015-01-16 21:24 - 2015-01-16 21:24 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
2015-01-16 21:24 - 2015-01-16 21:24 - 00000000 ____D () C:\Program Files (x86)\Kodi
2015-01-16 21:12 - 2015-01-16 21:12 - 00000197 _____ () C:\Windows\system32\2015-01-16-20-12-17.043-AvastVBoxSVC.exe-3932.log
2015-01-16 08:13 - 2015-01-16 08:14 - 00000197 _____ () C:\Windows\system32\2015-01-16-07-13-22.009-AvastVBoxSVC.exe-3400.log
2015-01-15 17:07 - 2015-01-15 17:07 - 00000197 _____ () C:\Windows\system32\2015-01-15-16-07-55.097-AvastVBoxSVC.exe-3820.log
2015-01-15 15:32 - 2015-01-15 15:32 - 00000197 _____ () C:\Windows\system32\2015-01-15-14-32-45.009-AvastVBoxSVC.exe-3384.log
2015-01-15 14:08 - 2015-01-15 14:08 - 00000197 _____ () C:\Windows\system32\2015-01-15-13-08-20.064-AvastVBoxSVC.exe-3612.log
2015-01-15 08:44 - 2015-01-15 08:45 - 00000197 _____ () C:\Windows\system32\2015-01-15-07-44-53.032-AvastVBoxSVC.exe-3532.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-14 21:10 - 2015-01-04 05:00 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-14 21:08 - 2009-07-14 05:45 - 00026768 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-14 21:08 - 2009-07-14 05:45 - 00026768 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-14 21:07 - 2009-07-14 06:13 - 00781298 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-14 21:06 - 2015-01-04 07:31 - 01170535 _____ () C:\Windows\WindowsUpdate.log
2015-02-14 21:03 - 2015-01-04 07:38 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-02-14 21:03 - 2015-01-04 06:03 - 00003756 _____ () C:\Windows\System32\Tasks\AutoKMS
2015-02-14 21:03 - 2015-01-04 05:00 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-14 21:03 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-14 18:53 - 2015-01-04 06:05 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\Skype
2015-02-14 18:25 - 2015-01-11 20:34 - 00000000 ____D () C:\Users\Korisnik\Documents\ManiaPlanet
2015-02-14 15:08 - 2015-01-11 20:34 - 00000000 ____D () C:\ProgramData\ManiaPlanet
2015-02-14 07:47 - 2009-07-14 06:08 - 00032602 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-02-12 13:42 - 2015-01-04 07:42 - 00003846 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1420353772
2015-02-12 13:42 - 2015-01-04 07:42 - 00000000 ____D () C:\Program Files (x86)\Opera beta
2015-02-11 19:48 - 2015-01-05 01:34 - 00000000 ____D () C:\Users\Korisnik\Desktop\Games
2015-02-11 19:48 - 2015-01-04 05:28 - 00000000 ____D () C:\Users\Korisnik\Desktop\Tools
2015-02-11 16:43 - 2015-01-04 05:06 - 00003836 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1420344382
2015-02-11 16:43 - 2015-01-04 05:06 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-02-11 08:38 - 2015-01-05 07:32 - 00000000 ____D () C:\Users\Korisnik\Desktop\Export
2015-02-07 10:37 - 2015-01-07 08:35 - 00000000 ____D () C:\Users\Korisnik\AppData\Local\SKIDROW
2015-02-04 10:25 - 2015-01-12 20:28 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\AIMP3
2015-02-04 10:25 - 2015-01-05 01:19 - 00000000 ____D () C:\Windows\Panther
2015-02-01 05:55 - 2015-01-04 05:37 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-24 13:57 - 2015-01-04 07:32 - 00000000 ____D () C:\Users\Korisnik
2015-01-23 11:13 - 2015-01-04 07:36 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-21 17:43 - 2015-01-04 05:12 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\Foxit Software
2015-01-21 09:49 - 2015-01-04 05:00 - 00000000 ____D () C:\Users\Korisnik\AppData\Local\Google
2015-01-21 09:48 - 2015-01-07 08:32 - 00000000 ____D () C:\ProgramData\Package Cache
2015-01-21 08:26 - 2015-01-08 07:55 - 00000000 ____D () C:\Users\Korisnik\AppData\Roaming\NVIDIA

Files to move or delete:
====================
D:\Temp\vmouse\new\volumouse.exe


Some content of TEMP:
====================
C:\Users\Korisnik\AppData\Local\Temp\SBCint2.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-14 14:07

==================== End Of Log ============================
https://www.mycity.rs/must-login.png

Dopuna: 15 Feb 2015 8:52

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav.


Deinstaliraj program EZDownloader



Otvori Notepad i iskopiraj sledeći tekst koji se nalazi unutar osenčenog prostora.

closeprocesses:
Emptytemp:
Task: {FF6C41FC-1AD9-41F0-A9CE-A103BC41F8A5} - System32\Tasks\WINshell Event Notification => C:\Users\Korisnik\AppData\Local\Temp\SBCint2.exe [2014-10-03] (Sun Micro Systems Inc.) <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://websearch.thesearchpage.info/?pid=21662&r=2.....H&unqvl=74
SearchScopes: HKLM -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM-x32 -> DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=21662&r=2015/01/14&hid=11446149171400624000&lg=EN&cc=PH&unqvl=74
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=21662&r=2015/01/14&hid=11446149171400624000&lg=EN&cc=PH&unqvl=74
SearchScopes: HKU\S-1-5-21-318460877-1857370447-3827231252-1001 -> DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&ctid=CT33214.....2196953&q={searchTerms}&SSPV=&SSPV=
SearchScopes: HKU\S-1-5-21-318460877-1857370447-3827231252-1001 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&ctid=CT33214.....2196953&q={searchTerms}&SSPV=&SSPV=
SearchScopes: HKU\S-1-5-21-318460877-1857370447-3827231252-1001 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=21662&r=2015/01/14&hid=11446149171400624000&lg=EN&cc=PH&unqvl=74
BHO: JOniCOupoon -> {11068b12-6830-4513-b093-682c9d8fcae3} -> C:\ProgramData\JOniCOupoon\fyi13CoiyH4oJd.x64.dll ()
BHO: RegguulaarDeals -> {409c382d-1d2b-45cb-aa85-ea4eda9c0e05} -> C:\ProgramData\RegguulaarDeals\LrCzbrKHI7ON6Z.x64.dll ()
C:\ProgramData\JOniCOupoon
C:\ProgramData\RegguulaarDeals
HKU\S-1-5-21-318460877-1857370447-3827231252-1001\...\MountPoints2: E - E:\setup.exe
BHO-x32: JOniCOupoon -> {11068b12-6830-4513-b093-682c9d8fcae3} -> C:\ProgramData\JOniCOupoon\fyi13CoiyH4oJd.dll ()
BHO-x32: RegguulaarDeals -> {409c382d-1d2b-45cb-aa85-ea4eda9c0e05} -> C:\ProgramData\RegguulaarDeals\LrCzbrKHI7ON6Z.dll ()
CHR Extension: (uniisaLes) - C:\ProgramData\cocbmolaagkahamlngoegjcbpnddodlj\ [2015-01-04]
C:\ProgramData\cocbmolaagkahamlngoegjcbpnddodlj
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
D:\Temp\vmouse\new\volumouse.exe
HKU\S-1-5-21-318460877-1857370447-3827231252-1001\...\Run: [$Volumouse$] => D:\Temp\vmouse\new\volumouse.exe [88576 2011-06-22] (NirSoft) <===== ATTENTION


U okviru Notepad-a klikni na File --> Save As
Fajl nazovi Fixlist i sačuvaj na Desktop
Dvoklikom ponovo pokreni FRST.exe
Klikni na Fix i sačekaj dok program ne završi.
Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi.
Nakon završetka rada, otvoriće se Notepad, sa sadržajem koji treba da kopiraš u temu.
Takođe, na Desktop-u će se nalaziti (fixlog.txt).

Potrebno je da fixlog.txt kopiras na forum




Imaš instaliranu developer verziju Google Chrome-a. Ako je ti nisi lično instalirao:
Idi u Control Idi u Start -> Control Panel -> Programs and Features i deinstaliraj Google Chrome. Obavezno označni opciju Also delete your browsing data.
Bookmarkse možeš da izvezeš i da ih kasnije opet ubaciš.

Kada ga deinstaliraš, skini ga sa Google sajta, https://www.google.com/chrome/browser/ i instaliraj opet.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uradio sam sve po uputstvu, ali mi se nije otvorio notepad nakon fixa, samo je trazio da se restartuje.
Evo sadrzaj fixlog.txt:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 14-02-2015
Ran by Korisnik at 2015-02-15 11:14:21 Run:1
Running from C:\Users\Korisnik\Desktop
Loaded Profiles: Korisnik (Available profiles: Korisnik)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
closeprocesses:
Emptytemp:
Task: {FF6C41FC-1AD9-41F0-A9CE-A103BC41F8A5} - System32\Tasks\WINshell Event Notification => C:\Users\Korisnik\AppData\Local\Temp\SBCint2.exe [2014-10-03] (Sun Micro Systems Inc.) <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://websearch.thesearchpage.info/?pid=21662&r=2.....H&unqvl=74
SearchScopes: HKLM -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM-x32 -> DefaultScope {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=21662&r=2015/01/14&hid=11446149171400624000&lg=EN&cc=PH&unqvl=74
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=21662&r=2015/01/14&hid=11446149171400624000&lg=EN&cc=PH&unqvl=74
SearchScopes: HKU\S-1-5-21-318460877-1857370447-3827231252-1001 -> DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&ctid=CT33214.....2196953&q={searchTerms}&SSPV=&SSPV=
SearchScopes: HKU\S-1-5-21-318460877-1857370447-3827231252-1001 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&ctid=CT33214.....2196953&q={searchTerms}&SSPV=&SSPV=
SearchScopes: HKU\S-1-5-21-318460877-1857370447-3827231252-1001 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.thesearchpage.info/?l=1&q={searchTerms}&pid=21662&r=2015/01/14&hid=11446149171400624000&lg=EN&cc=PH&unqvl=74
BHO: JOniCOupoon -> {11068b12-6830-4513-b093-682c9d8fcae3} -> C:\ProgramData\JOniCOupoon\fyi13CoiyH4oJd.x64.dll ()
BHO: RegguulaarDeals -> {409c382d-1d2b-45cb-aa85-ea4eda9c0e05} -> C:\ProgramData\RegguulaarDeals\LrCzbrKHI7ON6Z.x64.dll ()
C:\ProgramData\JOniCOupoon
C:\ProgramData\RegguulaarDeals
HKU\S-1-5-21-318460877-1857370447-3827231252-1001\...\MountPoints2: E - E:\setup.exe
BHO-x32: JOniCOupoon -> {11068b12-6830-4513-b093-682c9d8fcae3} -> C:\ProgramData\JOniCOupoon\fyi13CoiyH4oJd.dll ()
BHO-x32: RegguulaarDeals -> {409c382d-1d2b-45cb-aa85-ea4eda9c0e05} -> C:\ProgramData\RegguulaarDeals\LrCzbrKHI7ON6Z.dll ()
CHR Extension: (uniisaLes) - C:\ProgramData\cocbmolaagkahamlngoegjcbpnddodlj\ [2015-01-04]
C:\ProgramData\cocbmolaagkahamlngoegjcbpnddodlj
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
D:\Temp\vmouse\new\volumouse.exe
HKU\S-1-5-21-318460877-1857370447-3827231252-1001\...\Run: [$Volumouse$] => D:\Temp\vmouse\new\volumouse.exe [88576 2011-06-22] (NirSoft) <===== ATTENTION
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FF6C41FC-1AD9-41F0-A9CE-A103BC41F8A5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF6C41FC-1AD9-41F0-A9CE-A103BC41F8A5}" => Key deleted successfully.
C:\Windows\System32\Tasks\WINshell Event Notification => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WINshell Event Notification" => Key deleted successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" => Key deleted successfully.
HKCR\CLSID\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}" => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} => Key not found.
HKU\S-1-5-21-318460877-1857370447-3827231252-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-318460877-1857370447-3827231252-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" => Key deleted successfully.
HKCR\CLSID\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} => Key not found.
"HKU\S-1-5-21-318460877-1857370447-3827231252-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}" => Key deleted successfully.
HKCR\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11068b12-6830-4513-b093-682c9d8fcae3}" => Key deleted successfully.
"HKCR\CLSID\{11068b12-6830-4513-b093-682c9d8fcae3}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{409c382d-1d2b-45cb-aa85-ea4eda9c0e05}" => Key deleted successfully.
"HKCR\CLSID\{409c382d-1d2b-45cb-aa85-ea4eda9c0e05}" => Key deleted successfully.
C:\ProgramData\JOniCOupoon => Moved successfully.
C:\ProgramData\RegguulaarDeals => Moved successfully.
"HKU\S-1-5-21-318460877-1857370447-3827231252-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11068b12-6830-4513-b093-682c9d8fcae3}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{11068b12-6830-4513-b093-682c9d8fcae3}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{409c382d-1d2b-45cb-aa85-ea4eda9c0e05}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{409c382d-1d2b-45cb-aa85-ea4eda9c0e05}" => Key deleted successfully.
C:\ProgramData\cocbmolaagkahamlngoegjcbpnddodlj\ => Moved successfully.
"C:\ProgramData\cocbmolaagkahamlngoegjcbpnddodlj" => File/Directory not found.
VGPU => Service deleted successfully.
D:\Temp\vmouse\new\volumouse.exe => Moved successfully.
HKU\S-1-5-21-318460877-1857370447-3827231252-1001\Software\Microsoft\Windows\CurrentVersion\Run\\$Volumouse$ => value deleted successfully.
EmptyTemp: => Removed 494.7 MB temporary data.


The system needed a reboot.

==== End of Fixlog 11:14:31 ====

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Jesi reinstalirao Chrome?
Kakva je situacija sada?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 15 Feb 2015 11:27

Jesam. Ne znam ni odakle mi, koristim Operu. Verovatno je dosao uz neki google software.

Za sad avast ćuti, mada celo jutro nije nista prijavio.

Dopuna: 15 Feb 2015 11:27

Samo sam ga deinstalirao, sad nemam uopste chrome

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Nece vise ni da se javlja.

Imas neku beta verziju Opere, sta ce ti to.


• Sledeća procedura će implementirati završno čišćenje.



Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop.

Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija;
Remove disinfection tools
Create registry backup
Purge System Restore

Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad.

Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani.
Ukoliko neki alat ili izveštaj nije uklonjen, slobodno ih obriši ručno.


Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt)
- Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix
- DelFix briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

• 1Ovo se svidja korisniku: Zerajic
  
  Registruj se da bi pohvalio/la poruku!

Imam betu i regular, trebaju mi dve opere, a ova regular nije htela da se instalira dva puta u dva foldera. Nije ni bitno, radi sve kako treba

Odradio sam i poslednji korak.

Hvala na pomoći

Biraj koje voliš:

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Crno

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Javi se kad te put nanese u BG