Imam problem sa otvaranjem fajlova nece da se otvore

1

Imam problem sa otvaranjem fajlova nece da se otvore

offline
  • Pridružio: 17 Dec 2015
  • Poruke: 7

Kao sto sam naveo gore, desilo se danas pre mozda manje od 2-3 sata bilo je sve okej i usao sam u folder u counteru na steamu trebao mi je neki anti-cheat ucp se zove probao sam da ga pokrenem nije hteo da se upali vrv jer je sjeban ili sta vec hteo sam da skinem novu verziju ali pre nego sto sam krenuo uopste sta dalje da radim primetio sam da mi stoji otvoren folder cstrike dole u start menu a da mi prozor gde mogu da vidim ostale fajlove nece da se podigne probao sam odma da skeniram sa malwareom restartovao sam probao sam o5 nesto preko interneta da uradim nsita nije pomoglo usao sam u safe mode radi sve okey, pokusao sam kao da popravim ali po internetu sve oni problemi koji su ostali ljudi imali tj njihova resenja nisu meni pomogla, tako da dosao sam ovde ako mozete pomozite ljudi kako umete uradio sam ovaj vas scen i evo fajlova dostavljam.



Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:17-12-2015
Ran by Rakan (administrator) on RAKAN-PC (17-12-2015 15:58:54)
Running from C:\Users\Rakan\Downloads
Loaded Profiles: Rakan (Available Profiles: Rakan)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.1.362.0\BBSvc.EXE
(Apple Inc.) C:\Program Files\Xamarin\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Valve Corporation) D:\Program Files\Steam\Steam.exe
(Popcorn Time) C:\Program Files\Popcorn Time\Updater.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Valve Corporation) D:\Program Files\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2655520 2015-10-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12336856 2015-06-18] (Realtek Semiconductor)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKU\S-1-5-21-2236756319-1544765110-1097552595-1000\...\Run: [Steam] => D:\Program Files\Steam\steam.exe [3013712 2015-12-14] (Valve Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 212.200.191.166 212.200.190.166
Tcpip\..\Interfaces\{9F0F3ECA-AE35-4276-B8DB-534F138F0D51}: [NameServer] 4.2.2.2,8.8.8.8
Tcpip\..\Interfaces\{9F0F3ECA-AE35-4276-B8DB-534F138F0D51}: [DhcpNameServer] 212.200.191.166 212.200.190.166

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = google.com
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-11-05] (Oracle Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-05] (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Rakan\AppData\Roaming\Mozilla\Firefox\Profiles\c1i6e3t7.default
FF Homepage: hxxps://www.malwarebytes.org/restorebrowser//?type=hp&ts=1448143468&z=dcdb73c1ea9ddcb48e29c3ag7z1zcb4gbz8ccz9q6b&from=amt&uid=hitachixhds721032cla362_jpf470hf2b6l8r2b6l8rx
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-05] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-03] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-03] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Rakan\AppData\Roaming\Mozilla\Firefox\Profiles\c1i6e3t7.default\user.js [2015-11-21]
FF Extension: Discover Treasure - C:\Users\Rakan\AppData\Roaming\Mozilla\Firefox\Profiles\c1i6e3t7.default\Extensions\{f2946686-f9e9-480e-a42e-fa7351bd720c}.xpi [2015-11-21] [not signed]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\!B21CC49277FB91D20F68345E7F19FA83B21C.js [2015-11-21] <==== ATTENTION
FF ExtraCheck: C:\Program Files\mozilla firefox\B21CC49277FB91D20F68345E7F19FA83B21C [2015-11-21] <==== ATTENTION

Chrome:
=======
CHR HomePage: Default -> hxxp://search.conduit.com/?gd=&ctid=CT3321459&octid=EB_ORIGINAL_CTID&ISID=MCE65613C-D126-4FE2-AA3E-9B7EE70F076B&SearchSource=55&CUI=&UM=5&UP=SP51882DFD-EE0E-4909-B7F6-7AA149FE7F6E&SSPV=
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?gd=&ctid=CT3321459&octid=EB_ORIGINAL_CTID&ISID=MCE65613C-D126-4FE2-AA3E-9B7EE70F076B&SearchSource=55&CUI=&UM=5&UP=SP51882DFD-EE0E-4909-B7F6-7AA149FE7F6E&SSPV=","hxxp://search.babylon.com/?affID=116775&tt=4612_2&babsrc=HP_ss_pr&mntrId=9c7fda5d000000000000d48564b324b5","hxxp://websearch.simplespeedy.info/","hxxp://search.babylon.com/?affID=116775&tt=4612_2&babsrc=HP_ss_pr_pr&mntrId=9c7fda5d000000000000d48564b324b5","hxxp://search.babylon.com/?affID=116775&tt=4612_2&babsrc=HP_ss_pr_pr_pr&mntrId=9c7fda5d000000000000d48564b324b5","hxxp://search.conduit.com/?gd=&ctid=CT3321459&octid=EB_ORIGINAL_CTID&ISID=MCE65613C-D126-4FE2-AA3E-9B7EE70F076B&SearchSource=55&CUI=&UM=5&UP=SP51882DFD-EE0E-4909-B7F6-7AA149FE7F6E&SSPV=","hxxp://websearch.searchfix.info/?pid=724&r=2015/01/01&hid=7990151508668064348&lg=EN&cc=RS","hxxp://www.istartsurf.com/?type=hp&ts=1446750290&z=0f1d305ed9c8e27ac0147ffg9zfzbq7mbwde8e4weg&from=bpr&uid=HitachiXHDS721032CLA362_JPF470HF2B6L8R2B6L8RX","hxxp://www.oursurfing.com/?type=hp&ts=1448143468&z=dcdb73c1ea9ddcb48e29c3ag7z1zcb4gbz8ccz9q6b&from=amt&uid=hitachixhds721032cla362_jpf470hf2b6l8r2b6l8rx"
CHR DefaultSearchURL: Default -> hxxp://www.istartsurf.com/web/?type=ds&ts=1446750290&z=0f1d305ed9c8e27ac0147ffg9zfzbq7mbwde8e4weg&from=bpr&uid=HitachiXHDS721032CLA362_JPF470HF2B6L8R2B6L8RX&q={searchTerms}
CHR DefaultSearchKeyword: Default -> istartsurf
CHR Profile: C:\Users\Rakan\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Rakan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-05]
CHR Extension: (Google Docs) - C:\Users\Rakan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-05]
CHR Extension: (Google Drive) - C:\Users\Rakan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-05]
CHR Extension: (YouTube) - C:\Users\Rakan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-05]
CHR Extension: (Google Search) - C:\Users\Rakan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-05]
CHR Extension: (Google Sheets) - C:\Users\Rakan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-05]
CHR Extension: (Google Docs Offline) - C:\Users\Rakan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-16]
CHR Extension: (Black carbon + silver metal) - C:\Users\Rakan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lodhggoaglindpoejnjldimdlikkphph [2015-11-05]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Rakan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-11-05]
CHR Extension: (Gmail) - C:\Users\Rakan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-05]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Bonjour Service; C:\Program Files\Xamarin\Bonjour\mDNSResponder.exe [384512 2015-10-27] (Apple Inc.) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [922400 2015-10-12] (NVIDIA Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 npggsvc; C:\Windows\system32\GameMon.des [3685968 2015-07-22] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1873696 2015-10-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4325664 2015-10-12] (NVIDIA Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [255192 2015-05-22] (Realtek Semiconductor)
S3 Te.Service; C:\Program Files\Windows Kits\10\Testing\Runtimes\TAEF\Wex.Services.exe [101888 2015-07-09] (Microsoft Corporation) [File not signed]
R2 Update service; C:\Program Files\Popcorn Time\Updater.exe [339968 2015-10-19] (Popcorn Time) [File not signed]
S3 VSStandardCollectorService140; C:\Program Files\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [45800 2015-07-07] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2015-10-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [44840 2015-08-11] (NVIDIA Corporation)
S4 NVHDA; system32\drivers\nvhda32v.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-17 15:58 - 2015-12-17 15:59 - 00012757 _____ C:\Users\Rakan\Downloads\FRST.txt
2015-12-17 15:58 - 2015-12-17 15:58 - 01721344 _____ (Farbar) C:\Users\Rakan\Downloads\FRST.exe
2015-12-17 15:58 - 2015-12-17 15:58 - 00000000 ____D C:\FRST
2015-12-17 13:30 - 2015-12-17 13:30 - 01620480 _____ (Cyber Shark) C:\Users\Rakan\AppData\Roaming\Gather.RS.exe.upd
2015-12-17 13:30 - 2015-12-17 13:30 - 00005632 _____ C:\Users\Rakan\AppData\Roaming\_update.exe
2015-12-17 13:30 - 2015-12-17 13:30 - 00000000 _____ C:\Users\Rakan\AppData\Roaming\_updated_
2015-12-16 13:21 - 2015-12-16 13:21 - 00000000 ____D C:\Users\Rakan\AppData\Roaming\TeamViewer
2015-12-16 13:19 - 2015-12-16 13:20 - 11161128 _____ (TeamViewer GmbH) C:\Users\Rakan\Downloads\TeamViewer_Setup-ioh.exe
2015-12-15 22:54 - 2015-12-16 22:07 - 01620480 _____ (Cyber Shark) C:\ProgramGather.RS.exe
2015-12-15 22:54 - 2015-12-15 22:54 - 01018675 _____ (Gather.RS ) C:\Users\Rakan\Downloads\gather_RC2 (3).exe
2015-12-15 22:52 - 2015-12-15 22:52 - 01018675 _____ (Gather.RS ) C:\Users\Rakan\Downloads\gather_RC2 (2).exe
2015-12-15 22:40 - 2015-12-15 22:40 - 01018675 _____ (Gather.RS ) C:\Users\Rakan\Downloads\gather_RC2 (1).exe
2015-12-15 22:39 - 2015-12-15 22:39 - 01018675 _____ (Gather.RS ) C:\Users\Rakan\Downloads\gather_RC2.exe
2015-12-13 18:05 - 2015-12-15 22:57 - 00000981 _____ C:\Users\Public\Desktop\Gather.RS.lnk
2015-12-13 18:05 - 2015-12-15 22:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gather.RS
2015-12-13 18:05 - 2015-12-15 22:57 - 00000000 ____D C:\Program Files\Gather.RS
2015-12-13 15:27 - 2015-12-17 15:30 - 00000000 ____D C:\Users\Rakan\AppData\Roaming\TS3Client
2015-12-13 15:03 - 2015-11-24 23:48 - 37882488 _____ C:\Windows\system32\nvcompiler.dll
2015-12-13 15:03 - 2015-11-24 23:48 - 18363512 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
2015-12-13 15:03 - 2015-11-24 23:48 - 13527248 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-12-13 15:03 - 2015-11-24 23:48 - 12034440 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-12-13 15:03 - 2015-11-24 23:48 - 09384240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-12-13 15:03 - 2015-11-24 23:48 - 02490488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-12-13 15:03 - 2015-11-24 23:48 - 01053488 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3235906.dll
2015-12-13 15:03 - 2015-11-24 23:48 - 00916784 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3235906.dll
2015-12-13 15:03 - 2015-11-24 23:48 - 00689272 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC.dll
2015-12-13 15:03 - 2015-11-24 23:48 - 00673912 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR.dll
2015-12-13 15:03 - 2015-11-24 23:48 - 00388208 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshim.dll
2015-12-13 15:03 - 2015-11-24 23:48 - 00155792 _____ (NVIDIA Corporation) C:\Windows\system32\nvinit.dll
2015-12-13 15:03 - 2015-11-24 23:48 - 00128696 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim32.dll
2015-12-13 14:49 - 2015-12-13 15:21 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2015-12-13 14:49 - 2015-12-13 14:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-12-12 23:35 - 2015-12-12 23:35 - 00000000 ____D C:\Users\Rakan\AppData\Roaming\NVIDIA
2015-12-07 18:32 - 2015-12-07 19:38 - 00000000 ____D C:\Users\Rakan\Desktop\Mini sajt
2015-12-07 17:59 - 2015-12-17 15:59 - 00000000 ____D C:\new temp file
2015-12-06 16:40 - 2015-12-06 16:40 - 00001303 _____ C:\Users\Rakan\Desktop\Hellscream-WoW Launcher - Shortcut.lnk
2015-12-01 18:15 - 2015-12-09 17:23 - 00000972 _____ C:\Users\Rakan\Desktop\tabela.html
2015-11-28 12:58 - 2015-11-28 12:58 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2015-11-28 02:51 - 2015-11-28 02:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2015-11-27 14:40 - 2015-11-27 14:40 - 00000000 ____D C:\Users\Rakan\AppData\LocalLow\Adobe
2015-11-27 14:39 - 2015-11-27 14:56 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-27 14:39 - 2015-11-27 14:39 - 00002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2015-11-27 14:39 - 2015-11-27 14:39 - 00000000 ____D C:\ProgramData\McAfee
2015-11-27 14:38 - 2015-11-27 14:41 - 00000000 ____D C:\ProgramData\Adobe
2015-11-27 14:38 - 2015-11-27 14:39 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-11-27 14:38 - 2015-11-27 14:38 - 00000000 ____D C:\Program Files\Adobe
2015-11-25 19:18 - 2015-11-25 19:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firestorm Launcher
2015-11-25 18:23 - 2015-12-13 15:10 - 00000000 ____D C:\Temp
2015-11-24 23:50 - 2015-11-24 23:50 - 00000000 ____H C:\Users\Rakan\Documents\Default.rdp
2015-11-24 22:18 - 2015-11-24 22:18 - 00000000 ____D C:\Users\Rakan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-11-24 12:51 - 2015-11-24 12:51 - 00000000 ____D C:\Users\Rakan\Documents\BnS
2015-11-24 12:51 - 2015-11-24 12:51 - 00000000 ____D C:\Users\Rakan\AppData\Roaming\Awesomium
2015-11-24 12:51 - 2015-07-22 14:01 - 03685968 _____ (INCA Internet Co., Ltd.) C:\Windows\system32\GameMon.des
2015-11-24 12:50 - 2015-11-24 12:50 - 00000000 ____D C:\Program Files\Common Files\INCA Shared
2015-11-24 12:50 - 2005-01-03 07:43 - 00004682 _____ (INCA Internet Co., Ltd.) C:\Windows\system32\npptNT2.sys
2015-11-24 12:50 - 2003-07-18 22:17 - 00005174 _____ C:\Windows\system32\nppt9x.vxd
2015-11-24 01:14 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-11-24 01:14 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-11-24 01:14 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-11-24 01:14 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-11-24 01:14 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-11-24 01:14 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-11-24 01:14 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-11-24 01:14 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-11-24 01:14 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-11-24 01:14 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-11-24 01:14 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-11-24 01:14 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-11-24 01:14 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-11-24 01:14 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-11-24 01:14 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-11-24 01:14 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-11-24 01:14 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-11-24 01:14 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-11-24 01:14 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-11-24 01:14 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-11-24 01:14 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-11-24 01:14 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-11-24 01:14 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-11-24 01:14 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-11-24 01:14 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-11-24 01:14 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-11-24 01:14 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-11-24 01:14 - 2008-10-10 04:52 - 04379984 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-11-24 01:14 - 2008-10-10 04:52 - 02036576 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-11-24 01:14 - 2008-10-10 04:52 - 00452440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-11-24 01:14 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-11-24 01:14 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-11-24 01:14 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-11-24 01:14 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-11-24 01:14 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-11-24 01:14 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-11-24 01:14 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-11-24 01:14 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-11-24 01:14 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-11-24 01:14 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-11-24 01:14 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-11-24 01:14 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-11-24 01:14 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-11-24 01:14 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-11-24 01:14 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-11-24 01:14 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-11-24 01:14 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-11-24 01:14 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-11-24 01:14 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-11-24 01:14 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-11-24 01:14 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-11-24 01:14 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-11-24 01:14 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-11-24 01:14 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-11-24 01:14 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-11-24 01:14 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-11-24 01:14 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-11-24 01:14 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-11-24 01:14 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-11-24 01:14 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-11-24 01:14 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-11-24 01:14 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-11-24 01:14 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-11-24 01:14 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-11-24 01:14 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-11-24 01:14 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-11-24 01:14 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-11-24 01:14 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-11-24 01:14 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-11-24 01:14 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-11-24 01:14 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-11-24 01:14 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-11-24 01:14 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-11-24 01:14 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-11-24 01:14 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-11-24 01:14 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-11-24 01:14 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-11-24 01:14 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-11-24 01:14 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-11-24 01:14 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-11-24 01:14 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-11-24 01:14 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-11-24 01:14 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-11-24 01:10 - 2015-11-24 01:14 - 00000000 ____D C:\Windows\system32\directx
2015-11-24 01:10 - 2015-11-24 01:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCWest
2015-11-24 01:10 - 2015-11-24 01:10 - 00000000 ____D C:\Program Files\NCWest
2015-11-22 00:45 - 2015-11-22 00:45 - 00002639 _____ C:\Users\Rakan\Desktop\µTorrent.lnk
2015-11-22 00:45 - 2015-11-22 00:45 - 00002639 _____ C:\Users\Rakan\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2015-11-22 00:44 - 2015-11-28 02:10 - 00000000 ____D C:\Users\Rakan\AppData\Roaming\uTorrent
2015-11-21 23:05 - 2015-11-21 23:05 - 00000000 ____D C:\Users\Rakan\AppData\Roaming\Opera Software
2015-11-21 23:04 - 2015-11-21 23:07 - 00000000 ____D C:\Program Files\Opera
2015-11-21 22:53 - 2015-11-21 22:58 - 00000000 ____D C:\Program Files\Popcorn Time
2015-11-17 19:41 - 2015-11-17 19:43 - 00000000 ____D C:\StudioLine3 Data
2015-11-17 19:39 - 2015-11-21 23:47 - 00001922 _____ C:\Users\Public\Desktop\StudioLine Photo Basic.lnk
2015-11-17 19:39 - 2015-11-17 19:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StudioLine Photo Basic
2015-11-17 19:39 - 2015-11-17 19:39 - 00000000 ____D C:\ProgramData\H&M System Software
2015-11-17 19:39 - 2015-11-17 19:39 - 00000000 ____D C:\Program Files\StudioLine Photo Basic
2015-11-17 14:04 - 2015-12-09 17:45 - 00000000 ____D C:\Users\Rakan\Desktop\GG

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-17 15:58 - 2009-07-14 03:37 - 00000000 ____D C:\Windows
2015-12-17 15:56 - 2009-07-14 05:34 - 00023712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-17 15:56 - 2009-07-14 05:34 - 00023712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-17 15:55 - 2015-11-05 19:44 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-17 15:51 - 2015-11-06 00:20 - 01400082 _____ C:\Windows\ntbtlog.txt
2015-12-17 15:50 - 2015-11-05 19:44 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-17 15:49 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-17 15:03 - 2015-11-05 21:28 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-12-17 14:43 - 2015-11-05 20:34 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-14 16:37 - 2015-11-06 19:31 - 00000000 ____D C:\Users\Rakan\Documents\Visual Studio 2015
2015-12-13 15:09 - 2015-11-05 21:21 - 00000000 ____D C:\ProgramData\NVIDIA
2015-12-13 15:09 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2015-12-13 15:03 - 2015-11-05 20:29 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-11-28 12:04 - 2010-11-20 22:01 - 00773536 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-27 14:40 - 2015-11-05 21:17 - 00000000 ____D C:\Users\Rakan\AppData\Roaming\Adobe
2015-11-24 23:48 - 2015-11-05 21:21 - 00105080 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-11-24 23:48 - 2015-11-05 21:20 - 15122296 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2um.dll
2015-11-24 23:48 - 2015-11-05 21:20 - 00028854 _____ C:\Windows\system32\nvinfo.pb
2015-11-24 23:48 - 2015-11-05 21:19 - 12770752 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dum.dll
2015-11-24 23:48 - 2015-11-05 21:19 - 03159248 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi.dll
2015-11-24 22:34 - 2015-11-06 01:42 - 00000000 ____D C:\ProgramData\Package Cache
2015-11-24 21:25 - 2015-11-05 22:51 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-11-24 19:41 - 2015-11-05 21:21 - 03936888 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-11-24 19:41 - 2015-11-05 21:21 - 02580272 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2015-11-24 19:41 - 2015-11-05 21:21 - 02554488 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-11-24 19:41 - 2015-11-05 21:21 - 00671352 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-11-24 19:41 - 2015-11-05 21:21 - 00374904 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-11-24 19:41 - 2015-11-05 21:21 - 00061560 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-11-24 01:19 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-23 21:18 - 2015-11-05 21:21 - 06049858 _____ C:\Windows\system32\nvcoproc.bin
2015-11-22 12:26 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Vss
2015-11-21 23:47 - 2015-11-06 18:17 - 00001480 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2015.lnk
2015-11-21 23:47 - 2015-11-06 18:09 - 00001481 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015.lnk
2015-11-21 23:47 - 2015-11-06 04:37 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-11-21 23:47 - 2015-11-06 04:37 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-11-21 23:47 - 2015-11-06 00:14 - 00000963 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-11-21 23:47 - 2015-11-05 22:11 - 00000650 _____ C:\Users\Public\Desktop\Steam.lnk
2015-11-21 23:47 - 2015-11-05 21:12 - 00001333 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2015-11-21 23:47 - 2015-11-05 20:36 - 00001058 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-11-21 23:47 - 2015-11-05 20:34 - 00001021 _____ C:\Users\Public\Desktop\Notepad++.lnk
2015-11-21 23:47 - 2015-11-05 20:34 - 00000973 _____ C:\Users\Public\Desktop\WinRAR.lnk
2015-11-21 23:47 - 2015-11-05 20:31 - 00001109 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-11-21 23:47 - 2015-11-05 19:53 - 00000355 _____ C:\Users\Rakan\Desktop\Computer - Shortcut.lnk
2015-11-21 23:47 - 2015-11-05 19:42 - 00001393 _____ C:\Users\Rakan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-11-21 23:47 - 2009-07-14 05:46 - 00001479 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-11-21 23:47 - 2009-07-14 05:46 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2015-11-21 23:47 - 2009-07-14 05:42 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2015-11-21 23:47 - 2009-07-14 05:42 - 00001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2015-11-21 23:47 - 2009-07-14 05:42 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2015-11-21 23:47 - 2009-07-14 05:37 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2015-11-21 23:12 - 2015-11-05 20:34 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-11-21 23:12 - 2015-11-05 20:34 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-11-21 23:03 - 2015-11-05 20:31 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-11-18 17:17 - 2015-11-05 20:33 - 00000000 ____D C:\ef278a7327a54fa7e8e3366c7a3c57c2
2015-11-17 19:33 - 2011-04-12 03:24 - 00000000 ___RD C:\Users\Public\Recorded TV
2015-11-17 14:05 - 2015-11-05 20:34 - 00000000 ____D C:\Users\Rakan\AppData\Roaming\Notepad++

==================== Files in the root of some directories =======

2015-12-17 13:30 - 2015-12-17 13:30 - 1620480 _____ (Cyber Shark) C:\Users\Rakan\AppData\Roaming\Gather.RS.exe.upd
2015-12-17 13:30 - 2015-12-17 13:30 - 0005632 _____ () C:\Users\Rakan\AppData\Roaming\_update.exe
2015-12-17 13:30 - 2015-12-17 13:30 - 0000000 _____ () C:\Users\Rakan\AppData\Roaming\_updated_
2015-11-05 23:54 - 2015-11-06 21:29 - 0007599 _____ () C:\Users\Rakan\AppData\Local\Resmon.ResmonCfg
2015-11-05 20:05 - 2015-11-05 20:05 - 0000098 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Files to move or delete:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-12-12 01:39

==================== End of FRST.txt ============================



mycity.rs/must-login.png





[edit by magna86: izvestaje je potrebno iskopirati i direktno prikaciti uz poruku, ne koristiti arhivu]

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8617
  • Gde živiš: Novi Beograd

Zdravo,

1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:

CreateRestorePoint:
Task: {03BFEA7C-2F0E-4EF4-A2F6-67D5A5F6E709} - \amiupdaterExi -> No File <==== ATTENTION
Task: {1E888C15-CD53-4C46-A528-8DAD2CD6DD20} - \amiupdaterExd -> No File <==== ATTENTION
Task: {A1B79C45-D7B0-463E-B97A-334E1ABE79AD} - \LuckyBrowse -> No File <==== ATTENTION
Task: {A1F86CF2-767B-44A8-BDDB-D071ABEF7352} - \ASP -> No File <==== ATTENTION
Task: {EC7DC524-0051-4F11-A1BD-5AF35101F84A} - System32\Tasks\Builder Pool => Rundll32.exe "C:\Users\Rakan\AppData\Local\Builder Pool\zBin\BuilderPool.dll",#3 <==== ATTENTION
FF Homepage: hxxps://www.malwarebytes.org/restorebrowser//?type=hp&ts=1448143468&z=dcdb73c1ea9ddcb48e29c3ag7z1zcb4gbz8ccz9q6b&from=amt&uid=hitachixhds721032cla362_jpf470hf2b6l8r2b6l8rx
FF user.js: detected! => C:\Users\Rakan\AppData\Roaming\Mozilla\Firefox\Profiles\c1i6e3t7.default\user.js [2015-11-21]
FF Extension: Discover Treasure - C:\Users\Rakan\AppData\Roaming\Mozilla\Firefox\Profiles\c1i6e3t7.default\Extensions\{f2946686-f9e9-480e-a42e-fa7351bd720c}.xpi [2015-11-21] [not signed]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\!B21CC49277FB91D20F68345E7F19FA83B21C.js [2015-11-21] <==== ATTENTION
FF ExtraCheck: C:\Program Files\mozilla firefox\B21CC49277FB91D20F68345E7F19FA83B21C [2015-11-21] <==== ATTENTION
CHR HomePage: Default -> hxxp://search.conduit.com/?gd=&ctid=CT3321459&octid=EB_ORIGINAL_CTID&ISID=MCE65613C-D126-4FE2-AA3E-9B7EE70F076B&SearchSource=55&CUI=&UM=5&UP=SP51882DFD-EE0E-4909-B7F6-7AA149FE7F6E&SSPV=
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?gd=&ctid=CT3321459&octid=EB_ORIGINAL_CTID&ISID=MCE65613C-D126-4FE2-AA3E-9B7EE70F076B&SearchSource=55&CUI=&UM=5&UP=SP51882DFD-EE0E-4909-B7F6-7AA149FE7F6E&SSPV=","hxxp://search.babylon.com/?affID=116775&tt=4612_2&babsrc=HP_ss_pr&mntrId=9c7fda5d000000000000d48564b324b5","hxxp://websearch.simplespeedy.info/","hxxp://search.babylon.com/?affID=116775&tt=4612_2&babsrc=HP_ss_pr_pr&mntrId=9c7fda5d000000000000d48564b324b5","hxxp://search.babylon.com/?affID=116775&tt=4612_2&babsrc=HP_ss_pr_pr_pr&mntrId=9c7fda5d000000000000d48564b324b5","hxxp://search.conduit.com/?gd=&ctid=CT3321459&octid=EB_ORIGINAL_CTID&ISID=MCE65613C-D126-4FE2-AA3E-9B7EE70F076B&SearchSource=55&CUI=&UM=5&UP=SP51882DFD-EE0E-4909-B7F6-7AA149FE7F6E&SSPV=","hxxp://websearch.searchfix.info/?pid=724&r=2015/01/01&hid=7990151508668064348&lg=EN&cc=RS","hxxp://www.istartsurf.com/?type=hp&ts=1446750290&z=0f1d305ed9c8e27ac0147ffg9zfzbq7mbwde8e4weg&from=bpr&uid=HitachiXHDS721032CLA362_JPF470HF2B6L8R2B6L8RX","hxxp://www.oursurfing.com/?type=hp&ts=1448143468&z=dcdb73c1ea9ddcb48e29c3ag7z1zcb4gbz8ccz9q6b&from=amt&uid=hitachixhds721032cla362_jpf470hf2b6l8r2b6l8rx"
CHR DefaultSearchURL: Default -> hxxp://www.istartsurf.com/web/?type=ds&ts=1446750290&z=0f1d305ed9c8e27ac0147ffg9zfzbq7mbwde8e4weg&from=bpr&uid=HitachiXHDS721032CLA362_JPF470HF2B6L8R2B6L8RX&q={searchTerms}
CHR DefaultSearchKeyword: Default -> istartsurf
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
EmptyTemp:


2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.

3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.



Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

offline
  • Pridružio: 17 Dec 2015
  • Poruke: 7

Nista mi nije pomoglo

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8617
  • Gde živiš: Novi Beograd

Postavi log, ako ga imas.

offline
  • Pridružio: 17 Dec 2015
  • Poruke: 7

Ja mislim da nisam nista dobio, sad cu proveriti u safe modu edit cu post ako ima i ako nema

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8617
  • Gde živiš: Novi Beograd

Zato sto nisi sacuvao FRST na desktop i tako sve dalje ide kad se ne prate uputstva.

offline
  • Pridružio: 17 Dec 2015
  • Poruke: 7

mycity.rs/must-login.png

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8617
  • Gde živiš: Novi Beograd

Zasto si pokretao iz Safe Moda, kad vidim da si uspeo da skeniras u Normal modu?

offline
  • Pridružio: 17 Dec 2015
  • Poruke: 7

Zato sto nije htelo da pokrene iz normal moda jer su svi faljovi tamo u download folderu a ja nemogu da otvorim foldere, znaci tu sam pogresio da odradim ponovo fix sad u normal modu prebacio sam sve na destop ?

offline
  • helen1  Male
  • Anti Malware Fighter
    Rank 2
  • Master učitelj
  • Pridružio: 27 Avg 2005
  • Poruke: 8617
  • Gde živiš: Novi Beograd

Nemoj.

Odradjen je posao.

Hajde jos malo da cistimo pa cemo videti sta ce biti. Probaj u Normal modu da odradis.

Preuzmi "Xplode"-ov AdwCleaner () i sacuvaj ga na Desktop

Dvoklikom pokreni program.
Klikni na dugme [Scan] i pricekaj da program zavrsi.
Klikni na dugme [Clean]
Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu.
Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok


Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem.
Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl"

Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S0].txt
-----

Preuzmi Junkware Removal Tool ( JRT ) i sacuvaj ga na desktop.

zatvori browser i ostale pokrenute programe;

Privremeno deaktiviraj zastitni softver (Uputstvo);

dvoklikom na ikonicu pokreni program JRT;

Kod obavestenja "press any key" pritisnuti bilo koji taster i alat ce zapoceti skeniranje.
Napomena: u zavisnosti od sistemske specifikacije vreme skeniranja u nekim slucajevima moze da potraje.

Kada zavrsi otvorice se log sa izvestajem koji ce biti sacuvan na desktopu pod nazivom JRT.txt


Arrow Kopiraj sadrzaj tog loga u temu.

Ko je trenutno na forumu
 

Ukupno su 861 korisnika na forumu :: 43 registrovanih, 8 sakrivenih i 810 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: 357magnum, aleksmajstor, Apok, bladesu, Cassius Clay, cenejac111, cvrle312, dankisha, Dimitrije Paunovic, DPera, dragoljub11987, drimer, Duh sa sekirom, ekser222, FileFinder, FOX, havoc995, ivan1973, ivica976, Karla, kolle.the.kid, ladro, laurusri, Leonov, lord sir giga, MB120mm, mercedesamg, Mi lao shu, mrvica78, Nikolaa11, PAGZLY, radoznao, raptorsi, ruger357, sap, ser.hill, slonic_tonic, suton, vaso1, VJ, VP6919, zillbg, zixmix