MyCity » Ambulanta -> Arhiva Ambulante » Čišćenje

Čišćenje

Napisano na dan: 2.4.2014
1

Čišćenje
Sledeća strana Pagination

Idi na vrh

Poslao: 02 Apr 2014 20:10
Idi na vrh
offline
  • Pridružio: 01 Sep 2007
  • Poruke: 137

Doslo vreme da se dovede u red.
Razlozi:
1 ponekad sporo otvaranje web stranica iako je internet brz
2 u sred surfovanja zna da padne sistem,ne cesto al se desi.pojavi se plavi ispisan ekran i onda restart
3 comp nisam uzeo nov a bilo kakve spijunske viruse ne bih zeleo

Zelim da mi komp bude ČIST.
Vec imam lepa iskustva sa vama tako da saradnja nece bit problem.

Poslao: 02 Apr 2014 20:38
Idi na vrh
offline
  • Pridružio: 09 Avg 2011
  • Poruke: 15879
  • Gde živiš: Beograd

Pozdrav,

Isprati ovu temu i dostavi potrebne izvestaje.

http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

Poslao: 02 Apr 2014 20:51
Idi na vrh
offline
  • Pridružio: 01 Sep 2007
  • Poruke: 137

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: BrowserJavaVersion: 10.45.2
Run by momo at 20:48:39 on 2014-04-02
Microsoft Windows 7 Édition Starter 6.1.7600.0.1252.33.1036.18.1976.861 [GMT 2:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\ProgramData\IePluginService\PluginService.exe
C:\ProgramData\WPM\wprotectmanager.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
C:\Program Files\Uniblue\SpeedUpMyPC\spmonitor.exe
C:\Program Files\Uniblue\SpeedUpMyPC\sump.exe
C:\Program Files\Google\Update\1.3.22.5\GoogleCrashHandler.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\ProgramData\DatacardService\HWDeviceService.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\RelevantKnowledge\rlservice.exe
C:\Program Files\SFR\Gestionnaire de Connexion\SFR.Dashboard.Service.exe
C:\Program Files\Common Files\Umbrella\Umbrella.exe
C:\Program Files\Telenor Internet\BackgroundService\ServiceManager.exe
C:\Program Files\T-Mobile Internet Manager\AssistantServices.exe
C:\Program Files\Wajam\Updater\WajamUpdater.exe
C:\Program Files\Iminent\WinkHandler.exe
C:\Program Files\Iminent\WinkHandler.exe
C:\Windows\system32\taskhost.exe
C:\Users\momo\AppData\Local\freesofttoday_fr_3\upfst_fr_3.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\T-Mobile Internet Manager\UIExec.exe
C:\Program Files\Boxore\BoxoreClient\boxore.exe
C:\Program Files\Boxore\BoxoreClient\boxore.exe
C:\Program Files\freesofttoday_fr_3\freesofttoday_fr_3.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Telenor Internet\BackgroundService\ModemListener.exe
C:\Program Files\Optimizer Pro\OptProReminder.exe
C:\Program Files\MyPC Backup\MyPC Backup.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\notepad.exe
C:\Windows\system32\notepad.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Windows\system32\AUDIODG.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\RelevantKnowledge\rlvknlg.exe
C:\PROGRA~1\RELEVA~1\rlvknlg32.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://start.iminent.com/?appId=846E73D4-B281-4D42-A153-43CB1A9C1CB3
uDefault_Page_URL = hxxp://aartemis.com/?type=hp&ts=1387674401&from=obw&uid=HitachiXHTS543216L9A300_090930FBC200VCH00K5AX
mStart Page = hxxp://aartemis.com/?type=hp&ts=1387674401&from=obw&uid=HitachiXHTS543216L9A300_090930FBC200VCH00K5AX
uURLSearchHooks: {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - <orphaned>
BHO: Vauadix: {0D71C6A2-5171-BF21-3B0E-53E9F35FE766} - c:\program files\vauadix\GJhcNO9QoC.dll
BHO: Plus-HD-1.7: {11111111-1111-1111-1111-110311211154} - c:\program files\plus-hd-1.7\Plus-HD-1.7-bho.dll
BHO: Feven 1.2: {11111111-1111-1111-1111-110311851126} - c:\program files\feven 1.2\Feven 1.2-bho.dll
BHO: LyricsMonkey-1: {11111111-1111-1111-1111-110411151146} - c:\program files\lyricsmonkey-1\LyricsMonkey-1-bho.dll
BHO: OKitSpace: {3543619C-D563-43f7-95EA-4DA7E1CC396A} - c:\users\momo\appdata\roaming\okitspace\ie\OKitSpace.dll
BHO: IETabPage Class: {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - c:\program files\suptab\SupTab.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - <orphaned>
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: SearchNewTab: {9E99FEBA-09C8-1A97-447E-D0DB394399A4} - c:\program files\searchnewtab\yaZDrRDu.dll
BHO: IMinent WebBooster (BHO): {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - c:\program files\iminent\Minibar.InternetExplorer.BHOx86.dll
BHO: Wajam: {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - c:\program files\wajam\ie\priam_bho.dll
BHO: delta Helper Object: {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - c:\program files\delta\delta\1.8.24.6\bh\delta.dll
BHO: MyStart Toolbar: {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - c:\program files\mystarttb\mystartDx.dll
BHO: SaltarSmart: {d99a4ec9-00bd-4fe4-85a5-4db018351265} - c:\program files\saltarsmart\SaltarSmartbho.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: PricePeep: {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - c:\program files\pricepeep\pricepeep.dll
TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: Delta Toolbar: {82E1477C-B154-48D3-9891-33D83C26BCD3} - c:\program files\delta\delta\1.8.24.6\deltaTlbr.dll
TB: MyStart Toolbar: {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - c:\program files\mystarttb\mystartDx.dll
uRun: [DriverScanner] "c:\program files\uniblue\driverscanner\launcher.exe" delay 20000
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\DTLite.exe" -autorun
uRun: [Optimizer Pro] c:\program files\optimizer pro\OptProLauncher.exe
uRun: [se] "c:\users\momo\appdata\roaming\skypemoticons\SE.exe" /minimized
uRun: [Steam] "c:\program files\steam\Steam.exe" -silent
uRun: [Mobile Partner] c:\program files\telenor internet\Telenor Internet
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRun: [UIExec] "c:\program files\t-mobile internet manager\UIExec.exe"
mRun: [Boxore Client] c:\program files\boxore\boxoreclient\boxore.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [freesofttoday_fr_3] "c:\program files\freesofttoday_fr_3\freesofttoday_fr_3.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Search Protection] c:\programdata\search protection\SearchProtection.exe
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [Telenor_Montenegro Imola ModemListener] c:\program files\telenor internet\backgroundservice\ModemListener.exe start
mRunOnce: [upfst_fr_3.exe] c:\users\momo\appdata\local\freesofttoday_fr_3\upfst_fr_3.exe -runonce
mRunOnce: [SPUpdSentinel] "c:\program files\common files\umbrella\Umbrella_bkp.exe" -SERVICEARGS=c
StartupFolder: c:\users\momo\appdata\roaming\micros~1\windows\startm~1\programs\startup\lollipop.lnk -
StartupFolder: c:\users\momo\appdata\roaming\micros~1\windows\startm~1\programs\startup\mypcba~1.lnk - c:\program files\mypc backup\MyPC Backup.exe
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{4E096411-5422-45C7-ACF2-2D55D8BCCBBE} : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{56D39652-78CE-49B0-AEDE-FEFFEC739BC7} : DHCPNameServer = 192.168.1.1 192.168.1.1
TCP: Interfaces\{56D39652-78CE-49B0-AEDE-FEFFEC739BC7}\356425F573738303 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{56D39652-78CE-49B0-AEDE-FEFFEC739BC7}\6427565675966696 : DHCPNameServer = 212.27.40.240 212.27.40.241
TCP: Interfaces\{CA0409F9-ECB5-46DB-BE79-C7595972E25A} : DHCPNameServer = 192.168.1.1 192.168.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
AppInit_DLLs= dword:0
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\33.0.1750.154\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Hosts: 127.0.0.1 genuine.microsoft.com
Hosts: 127.0.0.1 mpa.one.microsoft.com
Hosts: 127.0.0.1 sls.microsoft.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\momo\appdata\roaming\mozilla\firefox\profiles\om3flhal.default\
FF - prefs.js: browser.search.selectedEngine - StartWeb
FF - prefs.js: browser.startup.homepage - google.com
FF - prefs.js: keyword.URL - hxxp://www.mystart.com/results.php?pr=vmn&id=mystarttb&v=5_3&ent=bs____campaignID___&q=
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.22.5\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60310.0\npctrlui.dll
FF - plugin: c:\program files\software\update\1.3.25.0\npSoftwareUpdate3.dll
FF - plugin: c:\users\momo\appdata\locallow\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\users\momo\appdata\roaming\mozilla\plugins\np-mswmp.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_12_0_0_77.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [2013-9-19 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [2013-9-19 175176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2013-9-19 770344]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2013-9-19 369584]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2013-9-30 243128]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2013-9-19 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-9-19 66336]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2014-2-6 46808]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\datacardservice\HWDeviceService.exe [2013-2-6 276048]
R2 IePluginService;IePlugin Service;c:\programdata\iepluginservice\pluginservice.exe -service --> c:\programdata\iepluginservice\PluginService.exe -service [?]
R2 RelevantKnowledge;RelevantKnowledge;c:\program files\relevantknowledge\rlservice.exe [2014-1-9 198424]
R2 SFR.Dashboard.Service;SFR.Dashboard.Service;c:\program files\sfr\gestionnaire de connexion\SFR.Dashboard.Service.exe [2013-10-18 28632]
R2 SProtection;SProtection;c:\program files\common files\umbrella\Umbrella.exe [2014-2-26 2905408]
R2 Telenor_Montenegro Imola Modem Device Helper;Telenor_Montenegro Imola Modem Device Helper;c:\program files\telenor internet\backgroundservice\servicemanager.exe -start --> c:\program files\telenor internet\backgroundservice\ServiceManager.exe -start [?]
R2 UI Assistant Service;UI Assistant Service;c:\program files\t-mobile internet manager\AssistantServices.exe [2014-2-14 245384]
R2 WajamUpdater;WajamUpdater;c:\program files\wajam\updater\WajamUpdater.exe [2013-7-10 109064]
R2 WinkHandler;WinkHandler;c:\program files\iminent\WinkHandler.exe [2013-12-22 425792]
R2 Wpm;Wpm Service;c:\programdata\wpm\wprotectmanager.exe -service --> c:\programdata\wpm\wprotectmanager.exe -service [?]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\drivers\ew_usbenumfilter.sys [2014-3-13 11904]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2014-3-13 77824]
S2 BackupStack;Computer Backup (MyPC Backup);c:\program files\mypc backup\BackupStack.exe [2013-9-20 38440]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-1-8 161536]
S2 Software_update;Usluga Software ažuriranje (Software_update);c:\program files\software\update\SoftwareUpdate.exe [2013-9-28 119408]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2014-3-13 95232]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [2014-3-13 101248]
S3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\drivers\ew_jucdcecm.sys [2014-3-13 70528]
S3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\drivers\ew_juextctrl.sys [2014-3-13 27776]
S3 jrdusbser;Modem Interface Device for Legacy Serial Communication;c:\windows\system32\drivers\jrdusbser.sys [2014-1-30 106112]
S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2014-2-14 9216]
S3 Software_update_m;Usluga Software ažuriranje (Software_update_m);c:\program files\software\update\SoftwareUpdate.exe [2013-9-28 119408]
.
=============== File Associations ===============
.
FileExt: .ini: Applications\WordPad.exe="c:\program files\windows nt\accessories\WORDPAD.EXE" "%1" [UserChoice]
.
=============== Created Last 30 ================
.
2014-03-26 20:57:24 -------- d-----w- c:\programdata\mystarttb
2014-03-25 12:29:00 -------- d-----w- c:\users\momo\appdata\roaming\337Games
2014-03-25 12:28:29 -------- d-----w- c:\users\momo\appdata\roaming\SupTab
2014-03-25 12:28:25 -------- d-----w- c:\programdata\IePluginService
2014-03-25 12:28:24 -------- d-----w- c:\program files\SupTab
2014-03-13 23:38:07 62576 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{3810ea24-3a88-4245-88ee-e5374ff4416b}\offreg.dll
2014-03-12 22:31:12 -------- d-----w- c:\programdata\DatacardService
2014-03-11 09:40:25 7947048 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{3810ea24-3a88-4245-88ee-e5374ff4416b}\mpengine.dll
2014-03-07 22:18:06 -------- d-----w- c:\program files\Boxore
.
==================== Find3M ====================
.
2014-03-12 21:25:17 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-12 21:25:17 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-01-22 14:52:25 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-01-22 14:52:25 49376 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-01-22 14:52:25 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-01-22 14:52:24 61680 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-01-22 14:52:23 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-01-22 14:51:40 41664 ----a-w- c:\windows\avastSS.scr
.
============= FINISH: 20:49:33,85 ===============



mycity.rs/must-login.png

Poslao: 02 Apr 2014 21:35
Idi na vrh
offline
  • Pridružio: 09 Avg 2011
  • Poruke: 15879
  • Gde živiš: Beograd

Preuzmi "Xplode"-ov AdwCleaner () i sacuvaj ga na Desktop

Dvoklikom pokreni program.
Klikni na dugme [Scan] i pricekaj da program zavrsi.
Klikni na dugme [Clean]
Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu.
Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok

Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem.
Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl"
Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S1].txt



***** ZATIM *****



Preuzmi sUBs-ov ComboFix sa sledeće adrese na Desktop:


Bleeping Computer
Klikni desnim tasterom na link i odaberi opciju Save Target As... (Save Link As..., Save Linked Content As... ili sličnu);
Kada se otvori dijalog za izbor lokacije na kojoj treba sačuvati file, odaberi Desktop i klikni Save.



Kada preuzimanje programa bude završeno:
deaktiviraj zaštitni softver (uputstvo);
zatvori pokrenute programe;
dvoklikom pokreni program ComboFix;
u prozoru koji se otvori klikni "I Agree".
U toku rada, ComboFix će:proveriti postoji li novija verzija programa:
klikni Yes ako bude ponuđeno preuzimanje iste.ako Recovery Console nije instalirana, ponuditi instalaciju:
obavezno prihvati klikom na Yes i isprati postupak.postaviti/dati određeni broj upita/obaveštenja:
prihvati klikom na Yes ili OK.po potrebi, restartovati Windows (više puta);
na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Iskopiraj izveštaj koji je ComboFix napravio u temu na forumu:
klikni desnim tasterom miša u prozor Notepad-a i izaberi Select All;
klikni desnim tasterom miša na obeleženi tekst i izaberi Copy;
klikni desnim tasterom miša u polje za pisanje poruke i izaberi Paste.


Napomena:Izveštaj će biti sačuvan pod nazivom ComboFix.txt na sistemskoj particiji (tipična lokacija: C:\ComboFix.txt);
Ukoliko nakon slanja poruke primetiš da izveštaj nije kompletan, iskoristi opciju Prikači fajl za prilaganje file-a C:\ComboFix.txt uz poruku;
Nemoj kliktati u okviru ComboFix prozora dok radi jer to može usporiti rad alata;
Nemoj ponovo pokretati ComboFix na svoju ruku - javi se u temi bilo kakav problem da imaš tokom prvog pokretanja alata;
Ako nakon restarta dobijaš grešku prilikom startovanja pojedinih programa da su označeni za brisanje (Illegal operation attempted on a registry key that has been marked for deletion), onda ponovo restartuj sistem i to ce rešiti problem.

Poslao: 02 Apr 2014 23:08
Idi na vrh
offline
  • Pridružio: 01 Sep 2007
  • Poruke: 137

Napisano: 02 Apr 2014 22:27

mycity.rs/must-login.png

mycity.rs/must-login.png



i prethodno sto si mi dao i ovo kad krenem download izbaci mi avast dal zelim da nastavim.verujem da je ok verovatno neprepoznaje.
ovo sa cleanerom sam odradio kao sto je receno,ali nije se sam restartovao vec sam ga ja i kad se upalio nije sam otvorio doc vec sam ih naso gde je receno.
ovo sve pisem za svaki slucaj,valjda je odradjeno sve kako treba.
sad cu i sa combo om

Dopuna: 02 Apr 2014 23:03

ComboFix 14-03-24.01 - momo 2.04.2014. 22:45:04.1.2 - x86
Microsoft Windows 7 Édition Starter 6.1.7600.0.1252.33.1036.18.1976.1394 [GMT 2:00]
Lancé depuis: c:\users\momo\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Un nouveau point de restauration a été créé
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\rlls.dll
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2014-03-02 au 2014-04-02 ))))))))))))))))))))))))))))))))))))
.
.
2014-04-02 20:52 . 2014-04-02 20:52 -------- d-----w- c:\users\momo\AppData\Local\temp
2014-04-02 20:52 . 2014-04-02 20:52 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-04-02 20:18 . 2014-04-02 20:18 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3810EA24-3A88-4245-88EE-E5374FF4416B}\offreg.dll
2014-04-02 20:08 . 2014-04-02 20:09 -------- d-----w- C:\AdwCleaner
2014-03-25 12:29 . 2014-03-25 12:55 -------- d-----w- c:\users\momo\AppData\Roaming\337Games
2014-03-12 22:31 . 2014-03-12 22:36 -------- d-----w- c:\programdata\DatacardService
2014-03-11 09:40 . 2014-02-06 07:08 7947048 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3810EA24-3A88-4245-88EE-E5374FF4416B}\mpengine.dll
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-12 21:25 . 2013-09-19 13:51 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-12 21:25 . 2013-09-19 13:51 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-01-22 14:52 . 2013-09-19 14:01 369584 ----a-w- c:\windows\system32\drivers\aswSP.sys
2014-01-22 14:52 . 2013-09-19 14:01 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-01-22 14:52 . 2013-09-19 14:01 56080 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2014-01-22 14:52 . 2013-09-19 14:01 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-01-22 14:52 . 2013-09-19 14:01 49376 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-01-22 14:52 . 2013-09-19 14:01 61680 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-01-22 14:52 . 2013-09-19 14:01 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-01-22 14:52 . 2013-09-19 14:01 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2014-01-22 14:51 . 2013-09-19 14:00 41664 ----a-w- c:\windows\avastSS.scr
2014-01-22 14:51 . 2013-09-19 14:01 236840 ----a-w- c:\windows\system32\aswBoot.exe
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2009-07-14 . 8626F0C30D4E3564FFDD25C90F4426F1 . 811520 . . [6.1.7600.16385] . . c:\windows\System32\user32.dll
[7] 2009-07-14 . 34B7E222E81FAFA885F0C5F2CFA56861 . 811520 . . [6.1.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_cd0ec264ceb014a3\user32.dll
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-01-22 14:51 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Mobile Partner"="c:\program files\Telenor Internet\Telenor Internet" [X]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-08-01 3673696]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2014-01-22 4858968]
"UIExec"="c:\program files\T-Mobile Internet Manager\UIExec.exe" [2010-03-02 136328]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2013-11-01 152392]
"Telenor_Montenegro Imola ModemListener"="c:\program files\Telenor Internet\BackgroundService\ModemListener.exe" [2012-03-14 109120]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\DatacardService\HWDeviceService.exe [2013-02-06 276048]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-01-08 161536]
R2 UI Assistant Service;UI Assistant Service;c:\program files\T-Mobile Internet Manager\AssistantServices.exe [2010-03-02 245384]
R2 WinkHandler;WinkHandler;c:\program files\Iminent\WinkHandler.exe [x]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 95232]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 11904]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys [2013-03-04 101248]
R3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\DRIVERS\ew_jucdcecm.sys [2013-03-04 70528]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys [2013-03-04 27776]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]
R3 jrdusbser;Modem Interface Device for Legacy Serial Communication;c:\windows\system32\DRIVERS\jrdusbser.sys [2011-06-20 106112]
R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2009-10-30 9216]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\users\momo\AppData\Local\Temp\Rar$EXa0.961\OpenHardwareMonitor\OpenHardwareMonitor.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-09-30 243128]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-01-22 66336]
S2 SFR.Dashboard.Service;SFR.Dashboard.Service;c:\program files\SFR\Gestionnaire de Connexion\SFR.Dashboard.Service.exe [2012-11-12 28632]
S2 Telenor_Montenegro Imola Modem Device Helper;Telenor_Montenegro Imola Modem Device Helper;c:\program files\Telenor Internet\BackgroundService\ServiceManager.exe [2012-03-14 53312]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2013-03-04 77824]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*Deregistered* - BMLoad
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-15 18:26 1150280 ----a-w- c:\program files\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Contenu du dossier 'Tâches planifiées'
.
2014-04-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-19 21:25]
.
2014-04-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-29 12:23]
.
2014-04-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-09-29 12:23]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://start.iminent.com/?appId=846E73D4-B281-4D42-A153-43CB1A9C1CB3
mStart Page = hxxp://aartemis.com/?type=hp&ts=1387674401&from=obw&uid=HitachiXHTS543216L9A300_090930FBC200VCH00K5AX
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
FF - ProfilePath - c:\users\momo\AppData\Roaming\Mozilla\Firefox\Profiles\om3flhal.default\
FF - prefs.js: browser.search.selectedEngine - StartWeb
FF - prefs.js: browser.startup.homepage - google.com
FF - prefs.js: keyword.URL - hxxp://www.mystart.com/results.php?pr=vmn&id=mystarttb&v=5_3&ent=bs____campaignID___&q=
.
- - - - ORPHELINS SUPPRIMES - - - -
.
URLSearchHooks-{84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
BHO-{0D71C6A2-5171-BF21-3B0E-53E9F35FE766} - c:\program files\Vauadix\GJhcNO9QoC.dll
BHO-{11111111-1111-1111-1111-110311851126} - c:\program files\Feven 1.2\Feven 1.2-bho.dll
BHO-{84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
BHO-{9E99FEBA-09C8-1A97-447E-D0DB394399A4} - c:\program files\SearchNewTab\yaZDrRDu.dll
BHO-{ccb24e92-62c4-4c53-95d2-65f9eed476bc} - c:\program files\mystarttb\mystartDx.dll
Toolbar-{ccb24e92-62c4-4c53-95d2-65f9eed476bc} - c:\program files\mystarttb\mystartDx.dll
HKCU-Run-DriverScanner - c:\program files\Uniblue\DriverScanner\launcher.exe
HKCU-Run-Steam - c:\program files\Steam\Steam.exe
HKLM-Run-Boxore Client - c:\program files\Boxore\BoxoreClient\boxore.exe
HKLM-Run-freesofttoday_fr_3 - c:\program files\freesofttoday_fr_3\freesofttoday_fr_3.exe
HKLM-Run-Search Protection - c:\programdata\Search Protection\SearchProtection.exe
AddRemove-bi_uninstaller - c:\users\momo\Local Settings\Application Data\Bundled software uninstaller\bi_client.exe
AddRemove-delta - c:\program files\Delta\delta\1.8.24.6\GUninstaller.exe
AddRemove-Delta Chrome Toolbar - c:\users\momo\AppData\Roaming\BabSolution\Shared\GUninstaller.exe
AddRemove-Feven 1.2 - c:\program files\Feven 1.2\Uninstall.exe
AddRemove-freesofttoday_fr_3_is1 - c:\program files\freesofttoday_fr_3\unins000.exe
AddRemove-IMBoosterARP - c:\program files\Iminent\inst\Bootstrapper\IminentUninstall.exe
AddRemove-{D940AD90-B8D9-4D15-BAE0-0FEC538E0BAB} - c:\program files\Iminent\inst\Bootstrapper\uninstall.exe
AddRemove-Internet BILO GDJE - c:\program files\Internet BILO GDJE\uninst.exe
AddRemove-LyricsMonkey-1 - c:\program files\LyricsMonkey-1\Uninstall.exe
AddRemove-MyPC Backup - c:\program files\MyPC Backup\uninst.exe
AddRemove-mystarttb - c:\program files\mystarttb\uninstall.exe
AddRemove-okitspace - c:\users\momo\AppData\Roaming\okitspace\uninstall.exe
AddRemove-Optimizer Pro_is1 - c:\program files\Optimizer Pro\unins000.exe
AddRemove-Plus-HD-1.7 - c:\program files\Plus-HD-1.7\Uninstall.exe
AddRemove-PricePeep - c:\program files\PricePeep\uninstall.exe
AddRemove-SaltarSmart - c:\program files\SaltarSmart\SaltarSmartuninstall.exe
AddRemove-SearchProtect - c:\progra~1\SearchProtect\Main\bin\uninstall.exe
AddRemove-SkypEmoticons_is1 - c:\users\momo\AppData\Roaming\SkypEmoticons\unins000.exe
AddRemove-SoftwareUpdater - c:\program files\SoftwareUpdater\uninstall.exe
AddRemove-SP_b0285714 - c:\program files\WebSearch\uninstall.exe
AddRemove-SupTab - c:\program files\SupTab\uninstall.exe
AddRemove-VOPackage - c:\users\momo\AppData\Roaming\VOPackage\uninstall.exe
AddRemove-Wajam - c:\program files\Wajam\uninstall.exe
AddRemove-{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} - c:\programdata\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\uninstall.exe
AddRemove-{681002C6-5019-81A2-7871-A43754F71E56} - c:\programdata\Vauadix\IIlCicl0SSx.exe
AddRemove-{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1 - c:\program files\Uniblue\DriverScanner\unins000.exe
AddRemove-{C670DCAE-E392-AA32-6F42-143C7FC4BDFD} - c:\programdata\SearchNewTab\7AHV6iZId.exe
AddRemove-{d08d9f98-1c78-4704-87e6-368b0023d831} - c:\program files\RelevantKnowledge\rlvknlg.exe
AddRemove-{E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1 - c:\program files\Uniblue\SpeedUpMyPC\unins000.exe
AddRemove-lollipop - c:\users\momo\appdata\local\lollipop\lollipop.bat
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_USERS\S-1-5-21-2198749600-2772488607-3266564224-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\. ‰<bIC° €=\Program Files\VideoLAN\VLC D:Œ<bIFD €VD:CøD:C˜DVery HappyîD:CžD:CªDVery HappyúD:E D:—<bIC¼ €[DVery HappyD:C¶D:CøD:CD:CtD:CzD:C D:š<bIC> €`D:FJD:DîD:CbD:CÚD:CŒD:CÈD:FbD:<bIFP €eD:C\D:CbD:C˜D:CæD:DdD:F\D:C¤D:`<bI
¬ €j  - $ =\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2014-04-02 22:54:47
ComboFix-quarantined-files.txt 2014-04-02 20:54
.
Avant-CF: 60.647.829.504 octets libres
Après-CF: 60.847.456.256 octets libres
.
- - End Of File - - FC361EDE72B0099686CF8D38A80411CF
A36C5E4F47E84449FF07ED3517B43A31

Dopuna: 02 Apr 2014 23:08

da napomenem da se nije restartovao na kraj....


mycity.rs/must-login.png

Poslao: 03 Apr 2014 09:30
Idi na vrh
offline
  • Pridružio: 09 Avg 2011
  • Poruke: 15879
  • Gde živiš: Beograd

Arrow Nisam siguran da je Adwcleaner zavrsio posao kako treba. Pokreni ga po istom postupku jos jednom.



Arrow Avast ti nije aktivan kako valja. Potrebno je da ga obrises i instaliras ponovo. Pogledaj ovo uputstvo

http://www.avast.com/uninstall-utility

Kako uci u Safe Mode --> http://www.mycity.rs/MyCity-Laboratorija/Kako-uci-u-Safe-Mode-2.html



Arrow Kada sve to zavrsis, idemo na jos jednu dodatnu proveru, da bi ocistili sve moguce ostatke. Uzgred mi kazi i kakvo je stanje sada.



Preuzmi smeenk-ov zoek.zip ili zoek.rar () sa ovog ili ovog linka i sačuvaj ga na Desktop.

Raspakuj arhivu u neki folder (uputstvo), a zatim:

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:

createsrpoint;
gpt.ini;z
C:\Windows\System32\GroupPolicy;v
C:\Windows\SysWOW64\GroupPolicy;v
StandardSearch;
emptyfolderscheck;
installer-list;
installedprogs;
uninstall-list;

Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

Poslao: 03 Apr 2014 21:33
Idi na vrh
offline
  • Pridružio: 01 Sep 2007
  • Poruke: 137

Napisano: 03 Apr 2014 16:53

veliko izvinjenje.nikako da nadjem vremena danas pa cu nocas sve to odradit.

Dopuna: 03 Apr 2014 20:55

mycity.rs/must-login.png

ovaj put je bilo sve kao sto si napisao
ps
da napomenem izbrisao sam avast kao sto je receno al sam aviru instalirao.najlakse mi bilo nac.ako vi nesto bolje preporucujete poslusacu.

Dopuna: 03 Apr 2014 21:33

Zoek.exe v5.0.0.0 Updated 07-March-2014
Tool run by momo on cet 03.04.2014. at 21:16:51,04.
Microsoft Windows 7 Édition Starter 6.1.7600 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\momo\Desktop\zoek\zoek.scr [Scan all users] [Script inserted]

==== System Restore Info ======================

3.4.2014. 21:18:03 Zoek.exe System Restore Point Created Succesfully.

==== Windows Installer Info ======================

Adobe Reader XI (11.0.06) - Fran‡ais [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\68AB67CA7DA76301B744BA0000000010]C:\Windows\Installer\5749e.msi
Apple Application Support [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5A440F64B8EC691489E4B56D25E563D1]C:\Windows\Installer\d36fea.msi
Apple Mobile Device Support [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\69FE29508D96B4E4C99C885FE88AF610]C:\Windows\Installer\d36ff5.msi
Apple Software Update [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\46B5A9879DD95AB419A50FCFA0B1B7EF]C:\Windows\Installer\d36ffa.msi
Avira [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7D58925F567EF754C900384D3696F037]C:\Windows\Installer\1367750.msi
Bonjour [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B2F5519759897D9468219D52080EEDB5]C:\Windows\Installer\d36ff0.msi
Boxore Client [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5EE4F6C4F24F88249B07B2F5DAD158DB]C:\Windows\Installer\3921d4df.msi
Google Earth [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0336A2D4B8F23E11C9048BCAF6798BE8]C:\Windows\Installer\41451c2.msi
iTunes [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\80CB791C28D3156488686EC81275A883]C:\Windows\Installer\d36ffe.msi
Java 7 Update 40 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4EA42A62D9304AC4784BF238120704FF]C:\Windows\Installer\f52d2.msi
Java Auto Updater [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F60730A4A66673047777F5728467D401]C:\Windows\Installer\f52d7.msi
Microsoft .NET Framework 4 Client Profile [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\5C1093C35543A0E32A41B090A305076A]C:\Windows\Installer\1cc3f6.msi
Microsoft .NET Framework 4 Client Profile FRA Language Pack [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\28A4B5F0FAD931D3C88BEA2BE5A416E4]C:\Windows\Installer\1cc3fb.msi
Microsoft .NET Framework 4 Extended [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\FCDAC0A0AD874C333A05DC1548B97920]C:\Windows\Installer\43bb65d.msi
Microsoft Silverlight [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D7314F9862C648A4DB8BE2A5B47BE100]c:\Windows\Installer\1572c21a.msi
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\D20352A90C039D93DBF6126ECE614057]c:\Windows\Installer\1572c210.msi
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6E815EB96CCE9A53884E7857C57002F0]c:\Windows\Installer\2456c.msi
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\1D5E3C0FEDA1E123187686FED06E995A]c:\Windows\Installer\136775a.msi
SkypeT 6.1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E7FF67E4ABEA78C47B88DC745E24B5D9]C:\Windows\Installer\574a5.msi
Software Update Helper [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93BAD29AC2E44034A96BCB446EB8552E]C:\Windows\Installer\1572c20b.msi
Steam [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9C8928403D4AB094F99FBA20A329833F]C:\Windows\Installer\a22b9f5.msi

==== Empty Folders Check ======================

C:\Program Files\AVAST Software
C:\PROGRA~2\Oracle
C:\Users\momo\AppData\Roaming\337Games

==== Installed Programs ======================

ćTorrent
Adobe Flash Player 12 ActiveX
Adobe Flash Player 12 Plugin
Adobe Reader XI (11.0.06) - Fran‡ais
Anno 1701
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Avira
Avira Free Antivirus
BitTorrent
Bonjour
Boxore Client
CCleaner
DAEMON Tools Lite
DMUninstaller
Football Manager 2014
GameHouse Super Games AIO©
Gestionnaire de Connexion 3.4
Google Chrome
Google Earth
iTunes
Java 7 Update 45
Java Auto Updater
Mafia
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile FRA Language Pack
Microsoft .NET Framework 4 Extended
Microsoft Silverlight
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Module linguistique Microsoft .NET Framework 4 Client Profile FRA
Mozilla Firefox 28.0 (x86 en-US)
Mozilla Maintenance Service
MP3 Editor for Free v7.8.1
Opera 12.00
PES 2006
SkypeT 6.1
Software Update Helper
SopCast 3.8.3
Steam
T-Mobile Internet Manager
Telenor Internet
Unity Web Player
VLC media player 2.0.6
WinRAR 5.00 (32-bit)
WO Webcam Client
YeahBit PC SpeedUp 2.1.5

==== Running Processes ======================

C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\ProgramData\DatacardService\HWDeviceService.exe
C:\Program Files\SFR\Gestionnaire de Connexion\SFR.Dashboard.Service.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Telenor Internet\BackgroundService\ServiceManager.exe
C:\Program Files\T-Mobile Internet Manager\AssistantServices.exe
C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\T-Mobile Internet Manager\UIExec.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Telenor Internet\BackgroundService\ModemListener.exe
C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\AUDIODG.EXE
C:\Program Files\Avira\AntiVir Desktop\avcenter.exe
C:\program files\avira\antivir desktop\avconfig.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\notepad.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\vssvc.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k swprv

==== Folders Found ======================


==== Files Found ======================


==== System Specs ======================

Windows: Windows 7 Starter Edition (Build 7600)
Memory (RAM): 1977 MB
CPU Info: Intel(R) Core(TM)2 Duo CPU P8600 @ 2.40GHz
CPU Speed: 2438,5 MHz
Sound Card: Haut-parleurs (Périphérique Hig |
Display Adapters: Famille de jeu de puces Express Mobile Intel(R) 45 (Microsoft Corporation - WDDM 1.1) | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver
Monitors: 1x; Moniteur Plug-and-Play générique |
Screen Resolution: 1280 X 800 - 32 bit
Network: Network Present
Network Adapters: HUAWEI Mobile Connect - Network Card | Périphérique Bluetooth (réseau personnel) | Carte réseau Broadcom 802.11g | Broadcom NetLink Gigabit Ethernet
CD / DVD Drives: 3x (D: | E: | F: | ) D: hp CDDVDW TS-L633M | E: DTSOFT BDROM | F: HUAWEI Mass Storage
Ports: COM1 | COM3 | COM5 | COM4 | COM7 LPT1
Mouse: 2 Button Mouse Present
Hard Disks: C: 149,0GB
Hard Disks - Free: C: 57,6GB
Manufacturer *: Hewlett-Packard
BIOS Info: AT/AT COMPATIBLE | 06/10/09 | HPQOEM - f
Time Zone: Paris, Madrid
Motherboard *: Hewlett-Packard 30DD
Country: Croatie
Language: HRV

==== System Specs (Software) ======================

Anti-Virus: Avira Desktop On-access scanning disabled (Outdated)
Anti-Spyware: Avira Desktop disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Internet Explorer version: 8.0.7600.16385
Mozilla Firefox version: 28.0 (x86 en-US)
Google Chrome version: 33.0.1750.154
Adobe Reader version: 11.0.06.70
Sun Java version: 1.7.0_45 (32-bit)
Flash Player version: 12.0.0.77

==== Files Recently Created / Modified ======================

====== C:\Windows ====
2014-04-02 20:42:57 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe
2014-04-02 20:42:57 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe
2014-04-02 20:42:57 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe
2014-04-02 20:42:57 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe
2014-04-02 20:42:57 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe
====== C:\Users\momo\AppData\Local\Temp ====
2014-04-03 18:17:48 0040C3F649824CEF8559AB5BDDF6BCB8 49744 ----a-w- C:\Users\momo\AppData\Local\temp\avgnt.exe\Avira.OE.ExtApi.dll
====== Java Cache =====
====== C:\Windows\system32 =====
====== C:\Windows\system32\drivers =====
2014-04-03 18:16:09 A36EE93698802CD899F98BFD553D8185 28520 ----a-w- C:\Windows\System32\drivers\ssmdrv.sys
2014-04-03 18:16:08 D8C712305F73CD34D1B344810E522728 37352 ----a-w- C:\Windows\System32\drivers\avkmgr.sys
2014-04-03 18:16:08 B8C10FF9369394EB84993F331810CF29 90400 ----a-w- C:\Windows\System32\drivers\avgntflt.sys
2014-04-03 18:16:08 4189E5AB2CAD6F395D87DAAE73EB090F 135648 ----a-w- C:\Windows\System32\drivers\avipbb.sys
2014-03-23 20:20:21 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-03-12 22:36:27 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2014-03-12 22:36:25 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_Kernel_ew_juextctrl_01007.Wdf
2014-03-12 22:36:21 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf
2014-03-12 22:33:09 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2014-03-12 22:32:58 E5950BF1A7156DB9599B4D3CC59005BD 208384 ----a-w- C:\Windows\System32\drivers\ew_juwwanecm.sys
2014-03-12 22:32:58 81D9BCCEB78795CD0315B24960F2D130 1112288 ----a-w- C:\Windows\System32\drivers\WdfCoInstaller01007.dll
2014-03-12 22:32:58 61BE99E6D1EA098CA00144D624EEF871 27776 ----a-w- C:\Windows\System32\drivers\ew_juextctrl.sys
2014-03-12 22:32:58 2148D4F231408223DC33BD2F0B6A785C 70528 ----a-w- C:\Windows\System32\drivers\ew_jucdcecm.sys
2014-03-12 22:32:57 F5F91FA6FE7E4AF269873CAA5F5B370E 861696 ----a-w- C:\Windows\System32\drivers\mod7700.sys
2014-03-12 22:32:57 DC63053744A3086BE6E473A93D48EE39 77824 ----a-w- C:\Windows\System32\drivers\ew_jubusenum.sys
2014-03-12 22:32:57 ABD9692AC0C6891DC02BC7DE559F967E 19200 ----a-w- C:\Windows\System32\drivers\ew_hwupgrade.sys
2014-03-12 22:32:57 ABCE437DEFDBD5A9718166DB99B53C32 381952 ----a-w- C:\Windows\System32\drivers\ewusbwwan.sys
2014-03-12 22:32:57 A744D66BCD4CABDD4B111D9E220B4D57 95232 ----a-w- C:\Windows\System32\drivers\ew_hwusbdev.sys
2014-03-12 22:32:57 6B4AC26C62F55AF324E3809EE2AD9F0C 11904 ----a-w- C:\Windows\System32\drivers\ew_usbenumfilter.sys
2014-03-12 22:32:57 616A53FCE073763DDB010A6CEC75FD56 101248 ----a-w- C:\Windows\System32\drivers\ew_jucdcacm.sys
2014-03-12 22:32:57 31309017CA0EB3DF78AA8BD01DA12241 199168 ----a-w- C:\Windows\System32\drivers\ewusbmdm.sys
2014-03-12 22:32:57 21B9BACDD4418B59B546C42B4C5A084A 25856 ----a-w- C:\Windows\System32\drivers\ewdcsc.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-04-03 18:08:43 -------- d-----w- C:\Program Files\Avira
======= C: =====
====== C:\Users\momo\AppData\Roaming ======
2014-04-03 18:22:51 -------- d-----w- C:\Users\momo\AppData\Roaming\Avira
2014-04-03 18:17:55 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\Avira
2014-04-02 20:54:49 -------- d-----w- C:\Users\Public\AppData\Local\temp
2014-04-02 20:54:49 -------- d-----w- C:\Users\momo\AppData\Local\temp
2014-04-02 20:54:49 -------- d-----w- C:\Users\Default\AppData\Local\temp
2014-04-02 20:54:49 -------- d-----w- C:\Users\Default User\AppData\Local\temp
2014-03-25 12:29:00 -------- d-----w- C:\Users\momo\AppData\Roaming\337Games
====== C:\Users\momo ======
2014-04-03 18:08:44 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-04-03 18:08:42 -------- d-----w- C:\ProgramData\Avira
2014-04-03 18:08:37 -------- d-----w- C:\ProgramData\Package Cache
2014-04-03 18:08:20 54DAB724262F6CBB38AEE1C33AD2F2C8 4413904 ----a-w- C:\Users\momo\Downloads\avira_en_av___ws.exe
2014-04-02 20:54:49 -------- d-----w- C:\Users\Public\AppData
2014-04-02 20:07:10 04B47DEEB298AE90A0C42DEAED71F8BA 1426178 ----a-w- C:\Users\momo\Desktop\adwcleaner.exe
2014-04-02 18:46:51 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\momo\Desktop\dds.com
2014-03-12 22:31:12 -------- d-----w- C:\ProgramData\DatacardService

====== C: exe-files ==
2014-04-03 18:16:10 DE29479601E85DBCBE5CD04847AB805E 399416 ----a-w- C:\Program Files\Avira\AntiVir Desktop\updrgui.exe
2014-04-03 18:16:10 16A2A080EFD3E717D933EB8B2FA4974B 646224 ----a-w- C:\Program Files\Avira\AntiVir Desktop\wsctool.exe
2014-04-03 18:16:09 F9B22D89F4E96512867114CF821A7D5E 997968 ----a-w- C:\Program Files\Avira\AntiVir Desktop\update.exe
2014-04-03 18:16:09 8B22F755ECFD98BEACDF8993A7EC8CBC 1398352 ----a-w- C:\Program Files\Avira\AntiVir Desktop\setup.exe
2014-04-03 18:16:09 6A7EF6E064545AAF4B1F756DA2ABC936 458296 ----a-w- C:\Program Files\Avira\AntiVir Desktop\licmgr.exe
2014-04-03 18:16:09 4D282B9C5BB05DF92C9F3977DFB9F916 440400 ----a-w- C:\Program Files\Avira\AntiVir Desktop\sched.exe
2014-04-03 18:16:09 2C268A7EFE01F7D6292CA29E68803D8E 473144 ----a-w- C:\Program Files\Avira\AntiVir Desktop\guardgui.exe
2014-04-03 18:16:09 1305B94364F8F8F80DCD0E22E64E267A 467000 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ipmgui.exe
2014-04-03 18:16:09 1106B8D42E6614240C03AB76224DAF02 422456 ----a-w- C:\Program Files\Avira\AntiVir Desktop\setuppending.exe
2014-04-03 18:16:08 F88A5D699B6F6AD080ECD58548EF4D7F 511544 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avrestart.exe
2014-04-03 18:16:08 F143483EF1FD85495AF9EAD190C55983 441400 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avadmin.exe
2014-04-03 18:16:08 DAB48CB546A895C3FC6219F298CC6DD7 1017424 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe
2014-04-03 18:16:08 D62E8594939A1AF1A5C446D8387D6CAC 781904 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avconfig.exe
2014-04-03 18:16:08 B1625BA4BB3667C3219F2E2EB34AE0E7 411704 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avupgsvc.exe
2014-04-03 18:16:08 94EB3C201D90447F1996971E54E2C9EA 1058384 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avscan.exe
2014-04-03 18:16:08 849D6BD0357DD1E39B01FFF40659B5ED 401976 ----a-w- C:\Program Files\Avira\AntiVir Desktop\checkt.exe
2014-04-03 18:16:08 6F1E9AB820B3DD8BD38C0190A206205D 431672 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
2014-04-03 18:16:08 65AF41A7A2C5B6693E1B4164E7632C3E 440400 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
2014-04-03 18:16:08 5B090360C5F906A94725322E80B7DA7F 566352 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwebloader.exe
2014-04-03 18:16:08 552DF4A9DD8F4A500E3F8FC9C512D47A 474704 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccuac.exe
2014-04-03 18:16:08 4E41301AB03814EABE37FCF194B728A6 1326512 ----a-w- C:\Program Files\Avira\AntiVir Desktop\offercast_avirav7_.exe
2014-04-03 18:16:08 4C334EE76FC42470A3429D11B6FC2BFA 765008 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avnotify.exe
2014-04-03 18:16:08 3D15C6EDBF84D792ACEBD2289546DBAF 1017424 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
2014-04-03 18:16:08 336AA9F2DD6FE4AF08666E820BB08EBD 669776 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avcenter.exe
2014-04-03 18:16:08 2F74C555E34FBE437BA09A8CFCC2F04B 796752 ----a-w- C:\Program Files\Avira\AntiVir Desktop\fact.exe
2014-04-03 18:16:08 292C00C33786517F2AE57CDF990A0D56 864944 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwsc.exe
2014-04-03 18:16:08 241B07FF7F5943B9C1BF3235F49AC1E1 689744 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
2014-04-03 18:09:09 51F43A1E630C7F5961FDA3243B368A85 138647760 ----a-w- C:\ProgramData\Avira\My Avira\Temp\antivirus.exe
2014-04-03 18:08:37 B116C7C1BCA5B445081CCF63F591C459 679208 ------w- C:\ProgramData\Package Cache\{8f29d204-f85e-4d8d-87b0-7ba66bffc1aa}\Avira.OE.Setup.Bundle.AntiVirus.En-us.exe
2014-04-03 18:08:20 54DAB724262F6CBB38AEE1C33AD2F2C8 4413904 ----a-w- C:\Users\momo\Downloads\avira_en_av___ws.exe
2014-04-03 18:07:26 E093151047BBFFC0CD78D52F36490206 51080 ----atw- C:\Program Files\Google\Update\1.3.23.9\GoogleUpdateOnDemand.exe
2014-04-03 18:07:26 398F40FAE5ADA9521544393F1F67A17E 51080 ----atw- C:\Program Files\Google\Update\1.3.23.9\GoogleUpdateBroker.exe
2014-04-03 18:07:26 039DE3F65C7992994F788EAC8E79BF4F 884504 ----a-w- C:\Program Files\Google\Update\1.3.23.9\GoogleUpdateSetup.exe
2014-04-03 18:07:21 6EFC5F64258FE0D9DA3CCFA7FF4D84BD 114568 ----atw- C:\Program Files\Google\Update\1.3.23.9\GoogleUpdateComRegisterShell64.exe
2014-04-03 18:07:21 0D5CE0E5AEC3ACC7930AB955334B8533 281480 ----atw- C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler64.exe
2014-04-03 18:07:20 7E6B107120108B3A15BFECE0DE3201DB 228744 ----atw- C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler.exe
2014-04-03 18:07:20 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files\Google\Update\1.3.23.9\GoogleUpdate.exe
2014-04-03 18:07:16 039DE3F65C7992994F788EAC8E79BF4F 884504 ----a-w- C:\Program Files\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.23.9\GoogleUpdateSetup.exe
2014-04-02 20:42:57 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe
2014-04-02 20:42:57 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe
2014-04-02 20:42:57 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe
2014-04-02 20:42:57 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe
2014-04-02 20:42:57 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe
2014-04-02 20:07:10 04B47DEEB298AE90A0C42DEAED71F8BA 1426178 ----a-w- C:\Users\momo\Desktop\adwcleaner.exe
=== C: other files ==
2014-04-03 18:16:09 A36EE93698802CD899F98BFD553D8185 28520 ----a-w- C:\Windows\System32\drivers\ssmdrv.sys
2014-04-03 18:16:09 43552F707825F03E84C0FA217DBA3868 42088 ----a-w- C:\Program Files\Avira\AntiVir Desktop\sweb.zip
2014-04-03 18:16:08 D8C712305F73CD34D1B344810E522728 37352 ----a-w- C:\Windows\System32\drivers\avkmgr.sys
2014-04-03 18:16:08 D8C712305F73CD34D1B344810E522728 37352 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avkmgr.sys
2014-04-03 18:16:08 B8C10FF9369394EB84993F331810CF29 90400 ----a-w- C:\Windows\System32\drivers\avgntflt.sys
2014-04-03 18:16:08 B8C10FF9369394EB84993F331810CF29 90400 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avgntflt.sys
2014-04-03 18:16:08 444E1CF85DD54019DC6CBB73C0875728 69240 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avnetflt.sys
2014-04-03 18:16:08 4189E5AB2CAD6F395D87DAAE73EB090F 135648 ----a-w- C:\Windows\System32\drivers\avipbb.sys
2014-04-03 18:16:08 4189E5AB2CAD6F395D87DAAE73EB090F 135648 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avipbb.sys
2014-04-02 18:46:51 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\momo\Desktop\dds.com
2014-04-02 13:08:51 6718C34CBF70B5A8197E9DA08D37E36A 1735757 ----a-w- C:\Users\momo\Downloads\SmartRAM3.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-2198749600-2772488607-3266564224-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"UIExec"="C:\Program Files\T-Mobile Internet Manager\UIExec.exe"
"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"Telenor_Montenegro Imola ModemListener"="C:\Program Files\Telenor Internet\BackgroundService\ModemListener.exe start"
"Avira Systray"="C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe"
"avgnt"="C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\DTLite.exe -autorun"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [12.03.2014. 23:25]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [29.09.2013. 14:23]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [29.09.2013. 14:23]

==== Other Scheduled Tasks ======================

"C:\Windows\system32\tasks\Adobe Flash Player Updater" [C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\system32\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files\Google\Update\GoogleUpdate.exe]
"C:\Windows\system32\tasks\{242225A7-E228-48FD-9E2E-A66220869BF8}" ["c:\program files\google\chrome\application\chrome.exe"]
"C:\Windows\system32\tasks\{E132DC9D-BDA7-4A6E-AAD2-88E1C7AC4D1D}" [E:\(zabranjeno)\pes6-keygen.exe]
"C:\Windows\system32\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files\Apple Software Update\SoftwareUpdate.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"ff-bmboc@bytemobile.com"="C:\Program Files\T-Mobile Internet Manager\addon" [14.02.2014. 20:25]

==== Firefox Extensions ======================

ProfilePath: C:\Users\momo\AppData\Roaming\Mozilla\Firefox\Profiles\om3flhal.default
- SaveFrom.net asistan - %ProfilePath%\extensions\helper@savefrom.net.xpi

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\momo\AppData\Roaming\Mozilla\Firefox\Profiles\om3flhal.default
E83B541C71965CFA1DEFF846CD6E9ECD - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll - Google Update
95812430959AE88CDD0301AB3A71913B - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll - Shockwave Flash
AC987EE8037531807C5D7E6217A23501 - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
EB41064BC07017F5694CF16B4DEF6B10 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat
6768C724599214E4F9ADD9F8FF5097EB - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U45
F1CD6E22E5AE5CEEB7712E546A5FC853 - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.450.18
5B92CB0A3EEE50F6B9AE036B4F9B0F0C - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll - Google Earth Plugin
9D4A0B314CB9CF134CA27E1E0217E51E - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector
3E0EB8CC0526CF152C80628A7EBAD7C3 - C:\Users\momo\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
D40B9183C149CE2CBBE93AC1A275BDA9 - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin
8E151A2A185DAF9852322028ABE55534 - c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll - Silverlight Plug-In
99F97C9FE748C37528C338A423577FCB - C:\Users\momo\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin
8B93EF56BEF58F2EB6B6D92B57715131 - c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrlui.dll - Microsoft (R) Silverlight


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dghncoeocefmhkhiphdgikkamjeglbfh - C:\Program Files\mystarttb\chrome-newtab-search.crx[]
dopemniaeocfenlpnoannaefnhfcjcgi - C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\searchswitch.crx[20.03.2014. 11:15]
ogfjmhfnldnajmfaofeiaepghjenbgjo - C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ep.crx[04.03.2014. 12:40]

New Tab Search - momo\AppData\Local\Chromium\User Data\Default\Extensions\dghncoeocefmhkhiphdgikkamjeglbfh
Delta Toolbar - momo\AppData\Local\Chromium\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Select City - momo\AppData\Local\Chromium\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Wajam - momo\AppData\Local\Chromium\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Poppit - momo\AppData\Local\Chromium\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi
OKitSpace - momo\AppData\Local\Chromium\User Data\Default\Extensions\mggiecmcgkpfmegnobeimepgndgdhbjm
RelevantKnowledge - momo\AppData\Local\Chromium\User Data\Default\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle
SearchNewTab - momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbdlgnfgidpdlgnohhpjajjgldmlegln
New Tab Search - momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dghncoeocefmhkhiphdgikkamjeglbfh
message Download YouTube RapidShare VK.com and 40 sites in one click. - momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdpljndcmbeikfnlflcggaipgnhiedbl
Google Wallet - momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
undetermined - momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ep.crx
undetermined - momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx
undetermined - momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\searchswitch.crx

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.google.com"
"bProtectTabs"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Uninstall List x86 ======================

ćTorrent [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent]
Adobe Flash Player 12 ActiveX [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Flash Player ActiveX]
Adobe Flash Player 12 Plugin [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Flash Player Plugin]
Adobe Reader XI (11.0.06) - Fran‡ais [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-1036-7B44-AB0000000001}]
Anno 1701 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A2433A63-5F5D-40E5-B529-9123C2B3E734}]
Apple Application Support [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{46F044A5-CE8B-4196-984E-5BD6525E361D}]
Apple Mobile Device Support [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}]
Apple Software Update [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}]
Avira [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8f29d204-f85e-4d8d-87b0-7ba66bffc1aa}]
Avira [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F52985D7-E765-457F-9C00-83D463690F73}]
Avira Free Antivirus [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Avira AntiVir Desktop]
BitTorrent [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrent]
Bonjour [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79155F2B-9895-49D7-8612-D92580E0DE5B}]
Boxore Client [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4C6F4EE5-F42F-4288-B970-2B5FAD1D85BD}]
CCleaner [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\CCleaner]
DAEMON Tools Lite [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\DAEMON Tools Lite]
DMUninstaller [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DMUninstaller]
Football Manager 2014 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Rm9vdGJhbGxNYW5hZ2VyMjAxNA==_is1]
GameHouse Super Games AIO© [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79208609-FD44-4865-AE2B-784FDF31212C}_is1]
Gestionnaire de Connexion 3.4 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FC48747D-095F-4CF6-B54E-37D4F4738A15}_is1]
Google Chrome [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
Google Earth [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}]
iTunes [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C197BC08-3D82-4651-8886-E68C21578A38}]
Java 7 Update 45 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83217040FF}]
Java Auto Updater [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10}]
Mafia [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Mafia]
Microsoft .NET Framework 4 Client Profile [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3C3901C5-3455-3E0A-A214-0B093A5070A6}]
Microsoft .NET Framework 4 Client Profile FRA Language Pack [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0F5B4A82-9DAF-3D13-8CB8-AEB25E4A614E}]
Microsoft .NET Framework 4 Extended [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0A0CADCF-78DA-33C4-A350-CD51849B9702}]
Microsoft Silverlight [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{9A25302D-30C0-39D9-BD6F-21E6EC160475}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{9BE518E6-ECC6-35A9-88E4-87755C07200F}]
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}]
Mozilla Firefox 28.0 (x86 en-US) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Mozilla Firefox 28.0 (x86 en-US)]
Mozilla Maintenance Service [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\MozillaMaintenanceService]
MP3 Editor for Free v7.8.1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\MP3 Editor for Free_is1]
Opera 12.00 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Opera 12.00.1467]
PES 2006 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\PES 2006]
SkypeT 6.1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}]
Software Update Helper [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}]
SopCast 3.8.3 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SopCast]
Steam [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{048298C9-A4D3-490B-9FF9-AB023A9238F3}]
T-Mobile Internet Manager [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}]
Telenor Internet [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Telenor Internet]
Telenor Internet [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Telenor_Montenegro Imola Telenor Internet_is1]
Unity Web Player [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\UnityWebPlayer]
VLC media player 2.0.6 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\VLC media player]
WinRAR 5.00 (32-bit) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\WinRAR archiver]
WO Webcam Client [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\WOWebcam]
YeahBit PC SpeedUp 2.1.5 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{45B9D501-B7CD-4CD9-B41D-71F095231919}_is1]

==== HijackThis Entries ======================

O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [UIExec] "C:\Program Files\T-Mobile Internet Manager\UIExec.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Telenor_Montenegro Imola ModemListener] C:\Program Files\Telenor Internet\BackgroundService\ModemListener.exe start
O4 - HKLM\..\Run: [Avira Systray] C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Mobile Partner] C:\Program Files\Telenor Internet\Telenor Internet
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Avira Service Host (Avira.OE.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Usluga Google ažuriranje (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Usluga Google ažuriranje (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: SFR.Dashboard.Service - SFR - C:\Program Files\SFR\Gestionnaire de Connexion\SFR.Dashboard.Service.exe
O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Telenor_Montenegro Imola Modem Device Helper - Unknown owner - C:\Program Files\Telenor Internet\BackgroundService\ServiceManager.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: UI Assistant Service - Unknown owner - C:\Program Files\T-Mobile Internet Manager\AssistantServices.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: WinkHandler - Unknown owner - C:\Program Files\Iminent\WinkHandler.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on cet 03.04.2014. at 21:23:04,32 ======================

Poslao: 03 Apr 2014 22:34
Idi na vrh
offline
  • Pridružio: 09 Avg 2011
  • Poruke: 15879
  • Gde živiš: Beograd

Ponovo pokreni zoek ;


zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;


U beli okvir prozora iskopiraj sledeći tekst:

C:\Users\momo\AppData\Roaming\337Games
emptyfolderscheck;delete
dghncoeocefmhkhiphdgikkamjeglbfh;chr
dopemniaeocfenlpnoannaefnhfcjcgi;chr
ogfjmhfnldnajmfaofeiaepghjenbgjo;chr
dghncoeocefmhkhiphdgikkamjeglbfh;chr
eooncjejnppfjjklapaamhcdmjbilmde;chr
ifohbjbgfchkkfhphahclmkpgejiplfo;chr
mggiecmcgkpfmegnobeimepgndgdhbjm;chr
mkndcbhcgphcfkkddanakjiepeknbgle;chr
mdpljndcmbeikfnlflcggaipgnhiedbl;chr
undetermined;chr
undetermined;chr
undetermined;chr
autoclean;
emptyalltemp;
emptyclsid;
ipconfig /flushdns;b



Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

Poslao: 03 Apr 2014 22:55
Idi na vrh
offline
  • Pridružio: 01 Sep 2007
  • Poruke: 137

Zoek.exe v5.0.0.0 Updated 07-March-2014
Tool run by momo on cet 03.04.2014. at 22:37:38,93.
Microsoft Windows 7 Édition Starter 6.1.7600 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\momo\Desktop\zoek\zoek.scr [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2014-04-03-192304.log 53904 bytes

==== Empty Folders Check ======================

C:\Program Files\AVAST Software deleted successfully
C:\PROGRA~2\Oracle deleted successfully
C:\Users\momo\AppData\Roaming\337Games deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\OKitSpace@Vittalia.es deleted successfully
HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{C7AE725D-FA5C-4027-BB4C-787EF9F8248A} deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\momo\AppData\Roaming\Mozilla\Firefox\Profiles\om3flhal.default

user.js not found
---- Lines a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526 removed from prefs.js ----
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.InstallationThankYouPage", false);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.InstallationTime", 1387721288);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.a183e80e2aadc4735b752524bfc0a20008be0bc77499e477
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.a183e80e2aadc4735b752524bfc0a20008be0bc77499e477
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.active", true);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.addressbar", "NA");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.addressbarenhanced", "");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.asyncdb.was_copied", "true");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.asyncdb_dbWasSet", true);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.asyncdb_dbWasSet_FF25_FIX", true);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.asyncinternaldb.was_copied", "true");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.asyncinternaldb_dbWasSet", true);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.asyncinternaldb_dbWasSet_FF25_FIX", true);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.backgroundver", 1);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.certdomaininstaller", "");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.changeprevious", false);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.cookie.InstallationTime.expiration", "Fri Feb 01
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.cookie.InstallationTime.value", "%221387721288%2
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.cookie.InstallerParams.expiration", "Fri Feb 01
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.cookie._GPL_aoi.value", "%221389819928%22");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.cookie._GPL_parent_zoneid.expiration", "Fri Feb
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.cookie._GPL_parent_zoneid.value", "%22467651%22"
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.cookie.jw_token.expiration", "Fri Feb 01 2030 00
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.cookie.jw_token.value", "%22b93e4070-7c63-7be7-d
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.description", "Feven Shopping Companion");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.domain", "");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.enablesearch", false);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.homepage", "");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.iframe", false);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.InstallerIdentifiers.expiration", "Fr
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.InstallerIdentifiers.value", "%7B%22i
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.InstallerParams.expiration", "Fri Feb
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.InstallerParams.value", "%7B%22source
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.InstallerParamsCache.expiration", "Fr
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.InstallerParamsCache.value", "%7B%22s
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.InstallerUserIdentifiersCache.expirat
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.InstallerUserIdentifiersCache.value",
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_appVer.expiration", "Fri Fe
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_appVer.value", "106");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_lastVersion.expiration", "F
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_lastVersion.value", "1");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_meta.expiration", "Fri Feb
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_meta.value", "%7B%7D");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_nextCheck.expiration", "Thu
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_nextCheck.value", "true");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_queue.expiration", "Fri Feb
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_queue.value", "%7B%7D");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_remote_resources.expiration
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.Resources_remote_resources.value", "%
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.installer.expiration", "Fri Feb 01 20
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.installer.value", "%7B%22InstallerIde
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.monetization_plugin_bundledUrls.expir
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.monetization_plugin_bundledUrls.value
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.monetization_plugin_bundledWithHash.e
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.monetization_plugin_bundledWithHash.v
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.monetization_plugin_notBundledArr_.ex
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.internaldb.monetization_plugin_notBundledArr_.va
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.lastDailyReport", "1396458401394");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.lastUpdate", "1396458562003");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.manifesturl", "");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.name", "Feven 1.2");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.newtab", "");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.opensearch", "");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.pluginsurl", "https://w9u6a2p6.ssl.hwcdn.net/plu
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.pluginsversion", 102);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.publisher", "Feven");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.searchstatus", 0);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.setnewtab", false);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.thankyou", "");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.updateinterval", 360);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.38526.ver", 106);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.FilesValidatorDueTime", "1396458460193");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.apps", "38526");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.bic", "14324a63392975d85a50c4b45e808b80");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.cid", 38526);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.firstrun", false);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.hadappinstalled", true);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.installationdate", 1387889309);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.modetype", "production");
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.reportInstall", true);
user_pref("extensions.a183e80e2aadc4735b752524bfc0a20008be0bc77499e47758a8caaf7a94d52fccom38526.statsDailyCounter", 131);
---- FireFox user.js and prefs.js backups ----

prefs_03.04.2014._2246_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"bProtectTabs"=-

==== Batch Command(s) Run By Tool======================


==== Deleting Files \ Folders ======================

C:\Users\momo\AppData\LocalLow\{0D71C6A2-5171-BF21-3B0E-53E9F35FE766} deleted
C:\Users\momo\AppData\LocalLow\{9E99FEBA-09C8-1A97-447E-D0DB394399A4} deleted
C:\Users\momo\daemonprocess.txt deleted
C:\Users\momo\.android deleted
C:\Program Files\SopCast deleted
C:\Program Files\Uninstaller deleted
C:\Users\momo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\SpeedUpMyPC.lnk deleted
C:\Users\momo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DriverScanner.lnk deleted
C:\PROGRA~2\InstallMate deleted
C:\PROGRA~2\Package Cache deleted
C:\Users\momo\AppData\Local\avgchrome deleted
C:\Users\momo\AppData\Local\Software deleted
C:\Users\momo\AppData\Local\cache deleted
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ep.crx deleted
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx deleted
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\searchswitch.crx deleted
C:\Users\momo\Downloads\SopCast.zip deleted
C:\Users\momo\AppData\LocalLow\store-pp.jbs deleted
C:\Windows\System32\searchplugins deleted
C:\Windows\System32\Extensions deleted
C:\Users\momo\PES 06.exe deleted
C:\Users\momo\Downloads\Download (3).exe deleted
"C:\PROGRA~2\e24ac696d9c6378f\{681002C6-5019-81A2-7871-A43754F71E56}" deleted
"C:\PROGRA~2\e24ac696d9c6378f\{681002C6-5019-81A2-7871-A43754F71E56}.old" deleted
"C:\PROGRA~2\e24ac696d9c6378f\{C670DCAE-E392-AA32-6F42-143C7FC4BDFD}" deleted
"C:\PROGRA~2\e24ac696d9c6378f" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"ff-bmboc@bytemobile.com"="C:\Program Files\T-Mobile Internet Manager\addon" [14.02.2014. 20:25]

==== Firefox Extensions ======================

ProfilePath: C:\Users\momo\AppData\Roaming\Mozilla\Firefox\Profiles\om3flhal.default
- SaveFrom.net asistan - %ProfilePath%\extensions\helper@savefrom.net.xpi

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\momo\AppData\Roaming\Mozilla\Firefox\Profiles\om3flhal.default
E83B541C71965CFA1DEFF846CD6E9ECD - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll - Google Update
95812430959AE88CDD0301AB3A71913B - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll - Shockwave Flash
AC987EE8037531807C5D7E6217A23501 - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
EB41064BC07017F5694CF16B4DEF6B10 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat
6768C724599214E4F9ADD9F8FF5097EB - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U45
F1CD6E22E5AE5CEEB7712E546A5FC853 - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.450.18
5B92CB0A3EEE50F6B9AE036B4F9B0F0C - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll - Google Earth Plugin
9D4A0B314CB9CF134CA27E1E0217E51E - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector
3E0EB8CC0526CF152C80628A7EBAD7C3 - C:\Users\momo\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
D40B9183C149CE2CBBE93AC1A275BDA9 - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin
8E151A2A185DAF9852322028ABE55534 - c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll - Silverlight Plug-In
99F97C9FE748C37528C338A423577FCB - C:\Users\momo\AppData\Roaming\Mozilla\plugins\np-mswmp.dll - Microsoft® Windows Media Player Firefox Plugin
8B93EF56BEF58F2EB6B6D92B57715131 - c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrlui.dll - Microsoft (R) Silverlight


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
dghncoeocefmhkhiphdgikkamjeglbfh - C:\Program Files\mystarttb\chrome-newtab-search.crx[]
dopemniaeocfenlpnoannaefnhfcjcgi - C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\searchswitch.crx[]
ogfjmhfnldnajmfaofeiaepghjenbgjo - C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ep.crx[]

New Tab Search - momo\AppData\Local\Chromium\User Data\Default\Extensions\dghncoeocefmhkhiphdgikkamjeglbfh
Delta Toolbar - momo\AppData\Local\Chromium\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Select City - momo\AppData\Local\Chromium\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Wajam - momo\AppData\Local\Chromium\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Poppit - momo\AppData\Local\Chromium\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi
OKitSpace - momo\AppData\Local\Chromium\User Data\Default\Extensions\mggiecmcgkpfmegnobeimepgndgdhbjm
RelevantKnowledge - momo\AppData\Local\Chromium\User Data\Default\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle
SearchNewTab - momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbdlgnfgidpdlgnohhpjajjgldmlegln
New Tab Search - momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dghncoeocefmhkhiphdgikkamjeglbfh
message Download YouTube RapidShare VK.com and 40 sites in one click. - momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdpljndcmbeikfnlflcggaipgnhiedbl
Google Wallet - momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Chrome Fix ======================

C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.22find.com_0.localstorage deleted successfully
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.22find.com_0.localstorage-journal deleted successfully
C:\Users\momo\AppData\Local\Chromium\User Data\Default\Extensions\dghncoeocefmhkhiphdgikkamjeglbfh deleted successfully
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\dghncoeocefmhkhiphdgikkamjeglbfh deleted successfully
C:\Users\momo\AppData\Local\Chromium\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde deleted successfully
C:\Users\momo\AppData\Local\Chromium\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo deleted successfully
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ifohbjbgfchkkfhphahclmkpgejiplfo_0.localstorage-journal deleted successfully
C:\Users\momo\AppData\Local\Chromium\User Data\Default\Extensions\mggiecmcgkpfmegnobeimepgndgdhbjm deleted successfully
C:\Users\momo\AppData\Local\Chromium\User Data\Default\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle deleted successfully
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdpljndcmbeikfnlflcggaipgnhiedbl deleted successfully
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mdpljndcmbeikfnlflcggaipgnhiedbl_0.localstorage deleted successfully
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mdpljndcmbeikfnlflcggaipgnhiedbl_0.localstorage-journal deleted successfully
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbdlgnfgidpdlgnohhpjajjgldmlegln deleted successfully
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bbdlgnfgidpdlgnohhpjajjgldmlegln_0.localstorage deleted successfully
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bbdlgnfgidpdlgnohhpjajjgldmlegln deleted successfully
C:\Users\momo\AppData\Local\Chromium\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp deleted successfully
C:\Users\momo\AppData\Local\Chromium\User Data\Default\Local Storage\chrome-extension_jpmbfleldcgkldadpdinhjjopdfpjfjp_0.localstorage deleted successfully
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jpmbfleldcgkldadpdinhjjopdfpjfjp_0.localstorage deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{FAE09BE8-40BD-4984-20BA-C51A627A746A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\dghncoeocefmhkhiphdgikkamjeglbfh deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\dopemniaeocfenlpnoannaefnhfcjcgi deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ogfjmhfnldnajmfaofeiaepghjenbgjo deleted successfully

==== Empty IE Cache ======================

C:\Users\momo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5 emptied successfully
C:\Users\momo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\momo\AppData\Local\Mozilla\Firefox\Profiles\om3flhal.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\momo\AppData\Local\Chromium\User Data\Default\Cache emptied successfully
C:\Users\momo\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=559 folders=129 504032978 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\temp emptied successfully
C:\Users\Default User\AppData\Local\temp emptied successfully
C:\Users\momo\AppData\Local\temp will be emptied at reboot
C:\Users\Public\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\momo\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\momo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

==== EOF on cet 03.04.2014. at 22:52:52,80 ======================

Poslao: 03 Apr 2014 22:57
Idi na vrh
offline
  • Pridružio: 09 Avg 2011
  • Poruke: 15879
  • Gde živiš: Beograd

U redu, stigosmo do kraja. Kazi mi kakvo je sada stanje?

MyCity » Ambulanta -> Arhiva Ambulante » Čišćenje

Ko je trenutno na forumu
 

Ukupno su 1123 korisnika na forumu :: 50 registrovanih, 10 sakrivenih i 1063 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _Rade, A.R.Chafee.Jr., AC-DC, armor, bankulen, bladesu, Bluper, bojcistv, BORUTUS, BRATORIII, cavatina, ccoogg123, dekan.m, Denaya, djboj, goxin, ikan, Istman, jaeger, Krvava Devetka, Kubovac, KUZMAR, laki_bb, Lucije Kvint, madza, mean_machine, milenko crazy north, milutin134, mnn2, mrav pesadinac, panzerwaffe, pedjolino76, Petarvu, RJ, SR-3m, Srki94, Srle993, stalja, Tas011, Torpedo964, Trpe Grozni, tubular, vasa.93, Volkhov-M, vukovi, W123, wizzardone, wolf431, Zoca, šumar bk2