Lap top otkazuje poslušnost ???

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 29 Jun 2014 12:21

Nisam ni sama sigurna šta se dešava, ali pokušaću da objasnim. Već mesec dana se dešavaju neki sitni problemi, samo ih ja i sin uvek nekako prevaziđemo. Pre neki dan mi je pisalo da opera ne funkcioniše i da je treba izbrisati i instalirati ponovo. Dobro, izbrisala sam je i išla preko eksplorera na internet (ADSL). Onda mi je i on prestao funkcionisati, kao i Mozila. Ostala sam na Chromu. Stalno mi se izbacuje Visual C i traži neki ključ da ga ukucam i da zatvorim programe jer se ne odazivaju i da tražim rešenje na mreži. Sad najnovije piše ( i ne mogu da sklonim prozorčić) GreenerWeb.BrowserAdapter je prestao sa radom, pa onda SFAupdater.exe-Ordinal Not Faund. I tako stalno, nešto, što ne zam šta je. Sin je pitao prijatelja šta bi to moglo biti i rečeno mu je da je otišao desktop i da se ponovo mora reinstalirati windows u šta ja mogu ali ne moram da poverujem. A i nemamo nikakav CD za instalaciju. Imam windows 7, 64 bita na laptopu.
Vama sam se obraćala više puta i uvek ste mi rešavali sve probleme, pa sad da pokušamo ponovo.
Skinula sam i FRST32 I FRST64 bit. ali ne mogu da otvorim nijedan. Piše FIRST64 ( ili onaj drugi od 32) is not faunda a valid Win64 application

Dopuna: 29 Jun 2014 12:24

Isključila sam i avast i sve što sam mislila da će smetati ( Iobit Malware fighter). Šta dalje?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

[Link mogu videti samo ulogovani korisnici]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Preuzmi odavde i raspakuj ga na desktop pa pokusaj da ga pokrenes.

[Link mogu videti samo ulogovani korisnici]

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Greška kompromitovanih zipovanih) fascikli
Windows ne nože da otvori fasciklu
109451_922312456_FRST64zip je nevažeća

Ne ide mi otvaranje nikako. Restartovala sam računar, isključila opet avast , ali ne mogu ništa da otvorim.

• 1Ovo se svidja korisniku: magna86
  
  Registruj se da bi pohvalio/la poruku!

Preuzmi FRST64 i sacuvaj ga na flash drive ( USB memorijski uredjaj )
Ubaci flash drive u inficiran racunar.

Potrebno je pokrenuti racunar iz recovery okruzenja ( System Recovery Options )



Restartuj racunar i pritiskaj dugme F8 dok se ne pojavi Advanced Options Menu ili Advanced Boot Options.

Izaberi Repair your computer.
Izaberi jezik (Language) a zatim klikni na Next
Unesi sifru (password) ukoliko je to potrebno i klikni na OK,
i trebao bi da se pojavi prozor kao na slici ...




Izaberi Command Prompt
Novi (crn) prozor ce se otvoriti.

Ukucaj notepad a potom pritisni Enter.
Otvorice se Notepad

Klikni File potom Open a zatimklikni na Computer.
Zapisi ili upamti slovo koje je dodeljeno tvom flash drive uredjaju.
Obicno je to slovo "e:" ali to nije uvek slucaj.
Zatvori Notepad.
Vrati se na Command Prompt (crn prozor)....

Upisi e:/frst64.exe i pritisni Enter (gde ces slovo e: zameniti sa onim slovom koje je dodeljeno tvom flash drive uredjaju.

Ukoliko je dodeljeno slovo "e" to bi izgledalo ovako:
e:\frst64.exe

FRST ce se pokrenuti.
Kada se alat pokrene, klikni Yes na pop-up prozor.
Pritisni Scan dugme.

Kada alat zavrsi skeniranje, napravice log FRST.txt i sacuvace ga na tvom flesh drive uredjaju..

Potom:

Ukucaj services.exe u polje Search: i potom klikni na Search File(s)
Kada FRST zavrsi, napravice na tvom flesh uredjaju novi log pod nazivom Search.txt
Zatvori Command Prompt ( crn prozor )
Podigni sistem u normal mode.

Okaci uz poruku FRST.txt i Search.txt koristeci opciju Prikaci fajl

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 29 Jun 2014 15:48

FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-06-2014 02
Ran by SYSTEM on MININT-M00SHC1 on 29-06-2014 15:32:36
Running from g:\
Platform: Windows 7 Professional (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.


The only official download link for FRST:
Download link for 32-Bit version: [Link mogu videti samo ulogovani korisnici]
Download link for 64-Bit Version: [Link mogu videti samo ulogovani korisnici]
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: [Link mogu videti samo ulogovani korisnici]

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10372368 2011-03-30] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2785064 2011-10-04] (Synaptics Incorporated)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [97064 2011-10-04] (Synaptics Incorporated)
HKLM\...\Run: [AthBtTray] => c:\program files (x86)\bluetooth suite\athbttray.exe [658080 2011-01-28] (Atheros Commnucations)
HKLM\...\Run: [AtherosBtStack] => c:\program files (x86)\bluetooth suite\btvstack.exe [789152 2011-01-28] (Atheros Commnucations)
HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12489360 2013-12-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1177232 2013-12-24] (Realtek Semiconductor)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [SSBkgdUpdate] => C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [OpwareSE4] => C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe [79400 2007-02-04] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DATAMNGR] => C:\PROGRA~2\Search Results Toolbar\Datamngr\datamngrUI.exe
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-20] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-18] (AVAST Software)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [295512 2013-12-16] (RealNetworks, Inc.)
HKLM-x32\...\Run: [Smart File Advisor] => C:\Program Files (x86)\Smart File Advisor\sfa.exe [283712 2013-10-29] (Filefacts.net)
HKLM-x32\...\Run: [SFAUpdater] => C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe [655936 2013-10-28] (Filefacts.net)
HKLM-x32\...\Run: [QuickTime Task] => "D:\wendy-D\Downloads\QTTask.exe" -atboottime
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-01] (Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SearchSettings] => C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [1404736 2014-05-26] (Spigot, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\Guest\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3192056 2013-11-14] (Disc Soft Ltd)
HKU\Guest\...\Run: [Google Update] => C:\Users\Guest\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-11-13] (Google Inc.)
HKU\Guest\...\Run: [GoogleChromeAutoLaunch_A947EBE730F005502320B355C64F93AC] => C:\Users\Guest\AppData\Local\Google\Chrome\Application\chrome.exe [863184 2013-11-14] (Google Inc.)
HKU\Vanda\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6564120 2014-06-14] (SUPERAntiSpyware)
HKU\Vanda\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => c:\program files (x86)\common files\ahead\lib\nmbgmonitor.exe [152872 2007-06-27] (Nero AG)
HKU\Vanda\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3192056 2013-11-14] (Disc Soft Ltd)
HKU\Vanda\...\Run: [Akamai NetSession Interface] => C:\Users\Vanda\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\Vanda\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
HKU\Vanda\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\Vanda\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-07] (Skype Technologies S.A.)
HKU\Vanda\...\Run: [Facebook Update] => C:\Users\Vanda\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-04-20] (Facebook Inc.)
HKU\Vanda\...\Policies\Explorer: [NoInstrumentation] 1
AppInit_DLLs: C:\PROGRA~3\Wincert\win64cert.dll => C:\ProgramData\Wincert\win64cert.dll [8704 2013-02-07] ()
AppInit_DLLs: C:\PROGRA~2\Search Results Toolbar\Datamngr\x64\datamngr.dll => C:\Program Files (x86)\Search Results Toolbar\Datamngr\x64\datamngr.dll [2018680 2013-02-14] (Bandoo Media Inc)
AppInit_DLLs: C:\PROGRA~2\Search Results Toolbar\Datamngr\x64\IEBHO.dll => C:\Program Files (x86)\Search Results Toolbar\Datamngr\x64\IEBHO.dll [1531256 2013-02-14] (Bandoo Media Inc)
Startup: C:\Users\Vanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers-x32: EnhancedStorageShell -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => No File
ShellIconOverlayIdentifiers-x32: SharingPrivate -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => No File

Dopuna: 29 Jun 2014 15:48

Search.txt
Farbar Recovery Scan Tool (x64) Version: 28-06-2014 02
Ran by SYSTEM at 2014-06-29 15:33:03
Running from g:\
Boot Mode: Recovery

================== Search Files: "services.exe
" =============

C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
[2009-07-13 15:19][2009-07-13 17:39] 0328704 ____A (Microsoft Corporation) 24ACB7E5BE595468E3B9AA488B9B4FCB

C:\Windows\System32\services.exe
[2009-07-13 15:19][2009-07-13 17:39] 0328704 ____A (Microsoft Corporation) 24ACB7E5BE595468E3B9AA488B9B4FCB

X:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
[2009-07-13 15:19][2009-07-13 17:39] 0328704 ____A (Microsoft Corporation) 24ACB7E5BE595468E3B9AA488B9B4FCB

X:\Windows\System32\services.exe
[2009-07-13 15:19][2009-07-13 17:39] 0328704 ____A (Microsoft Corporation) 24ACB7E5BE595468E3B9AA488B9B4FCB

====== End Of Search ======

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Nije kompletan FRST.txt log, pogledaj ponovo na fleski pa ga iskopiraj ponovo.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Moja greska..
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-06-2014 02
Ran by SYSTEM on MININT-M00SHC1 on 29-06-2014 15:32:36
Running from g:\
Platform: Windows 7 Professional (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.


The only official download link for FRST:
Download link for 32-Bit version: [Link mogu videti samo ulogovani korisnici]
Download link for 64-Bit Version: [Link mogu videti samo ulogovani korisnici]
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: [Link mogu videti samo ulogovani korisnici]

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10372368 2011-03-30] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2785064 2011-10-04] (Synaptics Incorporated)
HKLM\...\Run: [SynAsusAcpi] => C:\Program Files\Synaptics\SynTP\SynAsusAcpi.exe [97064 2011-10-04] (Synaptics Incorporated)
HKLM\...\Run: [AthBtTray] => c:\program files (x86)\bluetooth suite\athbttray.exe [658080 2011-01-28] (Atheros Commnucations)
HKLM\...\Run: [AtherosBtStack] => c:\program files (x86)\bluetooth suite\btvstack.exe [789152 2011-01-28] (Atheros Commnucations)
HKLM\...\Run: [PAC7302_Monitor] => C:\Windows\PixArt\PAC7302\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12489360 2013-12-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1177232 2013-12-24] (Realtek Semiconductor)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [SSBkgdUpdate] => C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [OpwareSE4] => C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe [79400 2007-02-04] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DATAMNGR] => C:\PROGRA~2\Search Results Toolbar\Datamngr\datamngrUI.exe
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-20] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-18] (AVAST Software)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [295512 2013-12-16] (RealNetworks, Inc.)
HKLM-x32\...\Run: [Smart File Advisor] => C:\Program Files (x86)\Smart File Advisor\sfa.exe [283712 2013-10-29] (Filefacts.net)
HKLM-x32\...\Run: [SFAUpdater] => C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe [655936 2013-10-28] (Filefacts.net)
HKLM-x32\...\Run: [QuickTime Task] => "D:\wendy-D\Downloads\QTTask.exe" -atboottime
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-01] (Oracle Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SearchSettings] => C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [1404736 2014-05-26] (Spigot, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\Guest\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3192056 2013-11-14] (Disc Soft Ltd)
HKU\Guest\...\Run: [Google Update] => C:\Users\Guest\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-11-13] (Google Inc.)
HKU\Guest\...\Run: [GoogleChromeAutoLaunch_A947EBE730F005502320B355C64F93AC] => C:\Users\Guest\AppData\Local\Google\Chrome\Application\chrome.exe [863184 2013-11-14] (Google Inc.)
HKU\Vanda\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6564120 2014-06-14] (SUPERAntiSpyware)
HKU\Vanda\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => c:\program files (x86)\common files\ahead\lib\nmbgmonitor.exe [152872 2007-06-27] (Nero AG)
HKU\Vanda\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe [3192056 2013-11-14] (Disc Soft Ltd)
HKU\Vanda\...\Run: [Akamai NetSession Interface] => C:\Users\Vanda\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\Vanda\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
HKU\Vanda\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\Vanda\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-07] (Skype Technologies S.A.)
HKU\Vanda\...\Run: [Facebook Update] => C:\Users\Vanda\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-04-20] (Facebook Inc.)
HKU\Vanda\...\Policies\Explorer: [NoInstrumentation] 1
AppInit_DLLs: C:\PROGRA~3\Wincert\win64cert.dll => C:\ProgramData\Wincert\win64cert.dll [8704 2013-02-07] ()
AppInit_DLLs: C:\PROGRA~2\Search Results Toolbar\Datamngr\x64\datamngr.dll => C:\Program Files (x86)\Search Results Toolbar\Datamngr\x64\datamngr.dll [2018680 2013-02-14] (Bandoo Media Inc)
AppInit_DLLs: C:\PROGRA~2\Search Results Toolbar\Datamngr\x64\IEBHO.dll => C:\Program Files (x86)\Search Results Toolbar\Datamngr\x64\IEBHO.dll [1531256 2013-02-14] (Bandoo Media Inc)
Startup: C:\Users\Vanda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers-x32: EnhancedStorageShell -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => No File
ShellIconOverlayIdentifiers-x32: SharingPrivate -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => No File

==================== Services (Whitelisted) =================

S2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [140672 2012-09-07] (SUPERAntiSpyware.com)
S2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [881952 2014-01-14] (IObit)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-18] (AVAST Software)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
S2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
S2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
S3 Disc Soft Bus Service; C:\Program Files (x86)\DAEMON Tools Ultra\DiscSoftBusService.exe [723192 2013-11-14] (Disc Soft Ltd)
S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
S2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [342336 2014-01-24] (IObit)
S3 ioloSystemService; C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe [1072664 2013-05-29] (iolo technologies, LLC)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit)
S2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [58345832 2011-09-22] (Microsoft Corporation)
S2 mts mobilni internet. RunOuc; C:\Program Files (x86)\mts mobilni internet\UpdateDog\ouc.exe [239968 2014-04-23] ()
S2 NitroReaderDriverReadSpool2; C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [343032 2012-02-08] (Nitro PDF Software)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
S2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [431464 2011-09-22] (Microsoft Corporation)
S2 Telenor Internet. RunOuc; C:\Program Files (x86)\Telenor Internet\UpdateDog\ouc.exe [655712 2011-12-23] ()
S2 Update Greener Web; C:\Program Files (x86)\Greener Web\updateGreenerWeb.exe [318752 2014-06-28] ()
S2 Util Greener Web; C:\Program Files (x86)\Greener Web\bin\utilGreenerWeb.exe [318752 2014-06-28] ()

==================== Drivers (Whitelisted) ====================

S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2013-12-18] (AVAST Software)
S1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-07] (AVAST Software)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-07] ()
S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2013-12-18] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2013-12-18] (AVAST Software)
S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2013-12-20] (AVAST Software)
S0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-18] ()
S3 dtscsibus; C:\Windows\System32\DRIVERS\dtscsibus.sys [29696 2013-12-30] (Disc Soft Ltd)
S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-02-23] (Disc Soft Ltd)
S1 ElRawDisk; C:\Windows\system32\drivers\ElRawDsk.sys [30752 2012-10-18] (EldoS Corporation)
S4 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2013-03-23] (IObit)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [212992 2014-04-23] (Huawei Technologies Co., Ltd.)
S2 lirsgt; C:\Windows\SysWOW64\DRIVERS\lirsgt.sys [18048 2011-12-21] ()
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [527360 2007-10-29] (PixArt Imaging Inc.)
S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2013-11-19] (IObit.com)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [11376 2003-02-04] ()
S0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [32496 2013-12-24] (Synaptics Incorporated)
S0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-02-23] (Duplex Secure Ltd.)
S3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2013-11-19] (IObit.com)
S1 {a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64; C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys [61120 2014-06-19] (StdLib)
S3 Andbus; system32\DRIVERS\lgandbus64.sys [X]
S3 AndDiag; system32\DRIVERS\lganddiag64.sys [X]
S3 AndGps; system32\DRIVERS\lgandgps64.sys [X]
S3 ANDModem; system32\DRIVERS\lgandmodem64.sys [X]
S3 androidusb; System32\Drivers\lgandadb.sys [X]
S3 clwvd; system32\DRIVERS\clwvd.sys [X]
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X]
S3 LgBttPort; system32\DRIVERS\lgbtpt64.sys [X]
S3 lgbusenum; system32\DRIVERS\lgbtbs64.sys [X]
S3 LGVMODEM; system32\DRIVERS\lgvmdm64.sys [X]
S3 SNP2UVC; system32\DRIVERS\snp2uvc.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-29 15:30 - 2014-06-29 15:32 - 00000000 ____D () C:\FRST
2014-06-29 04:22 - 2014-06-29 05:21 - 00003340 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-4085335947-2511170766-3262566581-1000
2014-06-29 04:22 - 2014-06-29 05:21 - 00003206 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-4085335947-2511170766-3262566581-1000
2014-06-29 04:15 - 2014-06-29 04:15 - 01584742 _____ () C:\Users\Vanda\Desktop\109451_922312456_FRST64.zip
2014-06-29 01:59 - 2014-06-29 01:59 - 01072264 _____ () C:\Users\Vanda\Desktop\FRST34.exe
2014-06-29 01:58 - 2014-06-29 01:58 - 02081928 _____ () C:\Users\Vanda\Desktop\FRST64.exe
2014-06-26 10:35 - 2014-05-30 01:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2014-06-25 11:44 - 2014-06-25 11:44 - 00000000 __SHD () C:\Users\Vanda\AppData\Local\EmieUserList
2014-06-25 11:44 - 2014-06-25 11:44 - 00000000 __SHD () C:\Users\Vanda\AppData\Local\EmieSiteList
2014-06-25 11:03 - 2014-06-25 11:03 - 00000000 _____ () C:\asc_rdflag
2014-06-25 10:05 - 2014-06-25 10:05 - 02768384 ____N (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 02266112 ____N (Microsoft Corporation) C:\Windows\System32\wininet.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 02179072 ____N (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 01790976 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 01398272 ____N (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 01143296 ____N (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 00147968 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2014-06-25 09:58 - 2014-06-28 00:30 - 00000000 ____D () C:\Program Files (x86)\NetCrawl
2014-06-25 09:34 - 2014-06-28 00:30 - 00000000 ____D () C:\Program Files (x86)\GUM51E.tmp
2014-06-25 09:34 - 2014-06-25 09:34 - 06010880 _____ () C:\Program Files (x86)\GUT51F.tmp
2014-06-19 23:45 - 2014-06-19 05:27 - 00061120 _____ (StdLib) C:\Windows\System32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys
2014-06-19 22:56 - 2014-06-20 21:01 - 00003362 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-4085335947-2511170766-3262566581-1000
2014-06-19 22:56 - 2014-06-20 21:01 - 00003228 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-4085335947-2511170766-3262566581-1000
2014-06-19 22:54 - 2014-06-29 05:20 - 00000784 _____ () C:\Windows\setupact.log
2014-06-19 22:54 - 2014-06-28 02:38 - 00006370 _____ () C:\Windows\PFRO.log
2014-06-19 22:54 - 2014-06-19 22:54 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-19 22:53 - 2014-06-19 22:53 - 00003164 _____ () C:\Windows\System32\Tasks\SmartDefrag3_Update
2014-06-19 22:53 - 2014-06-19 22:53 - 00002856 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Vanda)
2014-06-19 22:52 - 2014-06-19 22:52 - 00001142 _____ () C:\Users\Public\Desktop\Smart Defrag 3.lnk
2014-06-19 22:52 - 2014-06-19 22:52 - 00001142 _____ () C:\Users\Public\Desktop\Driver Booster.lnk
2014-06-19 22:52 - 2014-06-19 22:52 - 00001142 _____ () C:\Users\Public\Desktop\Driver Booster(2093).lnk
2014-06-19 22:41 - 2014-06-19 22:41 - 00001117 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-19 22:40 - 2014-06-28 00:31 - 00000000 ____D () C:\Program Files (x86)\Greener Web
2014-06-19 22:40 - 2014-06-19 22:40 - 29836648 _____ (Mozilla) C:\Users\Vanda\Downloads\Firefox Setup 30.0_310578f044482a93caa0703841c3339e.exe
2014-06-19 22:32 - 2014-06-29 05:22 - 00000376 _____ () C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Vanda.job
2014-06-19 22:32 - 2014-06-28 22:34 - 00002960 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateXML_Vanda
2014-06-19 22:32 - 2014-06-28 22:34 - 00000366 _____ () C:\Windows\Tasks\ReclaimerUpdateXML_Vanda.job
2014-06-19 22:32 - 2014-06-19 22:55 - 00000370 _____ () C:\Windows\Tasks\ReclaimerUpdateFiles_Vanda.job
2014-06-19 22:32 - 2014-06-19 22:55 - 00000370 _____ () C:\Windows\Tasks\ReclaimerUpdateFiles_Vanda(2113).job
2014-06-19 22:32 - 2014-06-19 22:32 - 00003612 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperResumePrompt_Vanda
2014-06-19 22:32 - 2014-06-19 22:32 - 00002964 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Vanda
2014-06-19 22:32 - 2014-06-19 22:32 - 00002668 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Vanda
2014-06-11 02:21 - 2014-06-08 01:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\System32\aepdu.dll
2014-06-11 02:21 - 2014-06-08 01:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2014-06-11 02:21 - 2014-05-23 18:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2014-06-11 02:21 - 2014-05-23 18:47 - 01366016 _____ (Microsoft Corporation) C:\Windows\System32\urlmon(2105).dll
2014-06-11 02:21 - 2014-05-23 18:46 - 02650112 _____ (Microsoft Corporation) C:\Windows\System32\iertutil(2102).dll
2014-06-11 02:21 - 2014-05-23 18:46 - 00603136 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2014-06-11 02:21 - 2014-05-23 18:46 - 00197120 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2014-06-11 02:21 - 2014-05-23 18:46 - 00053760 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2014-06-11 02:21 - 2014-05-23 18:45 - 01508864 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2014-06-11 02:21 - 2014-05-23 18:45 - 00452096 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2014-06-11 02:21 - 2014-05-23 18:45 - 00281600 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2014-06-11 02:21 - 2014-05-23 17:26 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet(2112).dll
2014-06-11 02:21 - 2014-05-23 17:26 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon(2111).dll
2014-06-11 02:21 - 2014-05-23 17:26 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-11 02:21 - 2014-05-23 17:26 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-11 02:21 - 2014-05-23 17:25 - 13731328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-11 02:21 - 2014-05-23 17:25 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil(2110).dll
2014-06-11 02:21 - 2014-05-23 17:25 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-11 02:21 - 2014-05-23 17:25 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-11 02:21 - 2014-05-23 17:25 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-11 02:21 - 2014-05-23 17:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-11 02:21 - 2014-05-23 17:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-11 02:21 - 2014-05-23 17:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-11 02:21 - 2014-05-23 17:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2014-06-11 02:21 - 2014-05-23 17:03 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-11 02:21 - 2014-05-08 01:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\System32\rdpcorets.dll
2014-06-11 02:21 - 2014-05-08 01:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\System32\RdpGroupPolicyExtension.dll
2014-06-11 02:21 - 2014-04-24 18:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\System32\usp10.dll
2014-06-11 02:21 - 2014-04-24 18:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-11 02:21 - 2014-04-04 18:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2014-06-11 02:21 - 2014-04-04 18:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2014-06-11 02:21 - 2014-03-26 06:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\System32\msxml6.dll
2014-06-11 02:21 - 2014-03-26 06:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\System32\msxml3.dll
2014-06-11 02:21 - 2014-03-26 06:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\msxml6r.dll
2014-06-11 02:21 - 2014-03-26 06:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\System32\msxml3r.dll
2014-06-11 02:21 - 2014-03-26 06:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-11 02:21 - 2014-03-26 06:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 02:21 - 2014-03-26 06:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-11 02:21 - 2014-03-26 06:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-11 02:20 - 2014-05-23 18:47 - 02239488 _____ (Microsoft Corporation) C:\Windows\System32\wininet(2108).dll
2014-06-11 02:20 - 2014-05-23 18:46 - 19290112 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2014-06-11 02:20 - 2014-05-23 18:46 - 15368704 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2014-06-11 02:20 - 2014-05-23 18:46 - 03958784 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2014-06-11 02:20 - 2014-05-23 18:46 - 00855552 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2014-06-11 02:20 - 2014-05-23 18:46 - 00526336 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2014-06-11 02:20 - 2014-05-23 18:46 - 00136704 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2014-06-11 02:20 - 2014-05-23 18:46 - 00097792 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2014-06-11 02:20 - 2014-05-23 18:46 - 00067072 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2014-06-11 02:20 - 2014-05-23 18:46 - 00039936 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2014-06-11 02:20 - 2014-05-23 17:26 - 14365696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-11 02:20 - 2014-05-23 17:26 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-11 02:20 - 2014-05-23 17:25 - 02862080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-11 02:20 - 2014-05-23 17:25 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-11 02:20 - 2014-05-23 17:25 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-11 02:20 - 2014-05-23 17:25 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-11 02:20 - 2014-05-23 16:13 - 00089600 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2014-06-11 02:20 - 2014-05-23 16:06 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-06-07 03:51 - 2014-06-07 04:33 - 00000000 ____D () C:\Users\Vanda\Documents\FIFA 14
2014-06-07 03:50 - 2014-06-07 03:50 - 00000924 _____ () C:\Users\Vanda\Desktop\Play FIFA 14.lnk
2014-06-06 04:36 - 2014-06-18 04:37 - 00003846 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1389458101
2014-06-02 21:39 - 2014-06-02 21:39 - 00000000 ____D () C:\Program Files (x86)\IObit Apps Toolbar
2014-06-02 21:39 - 2014-06-02 21:39 - 00000000 ____D () C:\Program Files (x86)\Application Updater
2014-06-01 10:07 - 2014-06-01 10:07 - 00000680 _____ () C:\Users\Public\Desktop\The Godfather™ The Game.lnk
2014-06-01 09:07 - 2014-06-01 10:19 - 00000000 ____D () C:\Users\Vanda\Documents\GF
2014-06-01 09:07 - 2005-06-24 06:24 - 00438272 ____R (EA.com/On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2014-06-01 09:07 - 2004-12-09 23:06 - 00327680 _____ (On2.com Inc.) C:\Windows\SysWOW64\vp6dec.ax
2014-05-30 11:39 - 2014-06-28 00:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2014-06-29 15:32 - 2014-06-29 15:30 - 00000000 ____D () C:\FRST
2014-06-29 05:27 - 2014-01-12 23:30 - 01496861 _____ () C:\Windows\WindowsUpdate.log
2014-06-29 05:27 - 2013-12-20 10:10 - 00196608 _____ () C:\Windows\System32\Ikeext.etl
2014-06-29 05:27 - 2009-07-13 20:45 - 00014416 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-29 05:27 - 2009-07-13 20:45 - 00014416 ____H () C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-29 05:23 - 2013-02-17 11:37 - 00000272 _____ () C:\Windows\win.ini
2014-06-29 05:23 - 2011-10-05 10:12 - 00000000 ____D () C:\Users\Vanda\AppData\Roaming\Skype
2014-06-29 05:22 - 2014-06-19 22:32 - 00000376 _____ () C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Vanda.job
2014-06-29 05:22 - 2013-12-07 11:26 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-29 05:21 - 2014-06-29 04:22 - 00003340 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-4085335947-2511170766-3262566581-1000
2014-06-29 05:21 - 2014-06-29 04:22 - 00003206 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-4085335947-2511170766-3262566581-1000
2014-06-29 05:21 - 2011-12-25 13:52 - 00000035 _____ () C:\ProgramData\AtherosServiceConfig.ini
2014-06-29 05:21 - 2011-10-05 19:24 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-29 05:20 - 2014-06-19 22:54 - 00000784 _____ () C:\Windows\setupact.log
2014-06-29 05:20 - 2009-07-13 21:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-29 05:10 - 2009-07-13 21:13 - 00880170 _____ () C:\Windows\System32\PerfStringBackup.INI
2014-06-29 05:08 - 2011-10-08 15:05 - 00000000 ____D () C:\Users\Vanda\AppData\Roaming\Nitro PDF
2014-06-29 05:01 - 2011-12-25 13:53 - 00000000 ____D () C:\Users\Vanda\AppData\Local\CrashDumps
2014-06-29 04:57 - 2011-10-09 05:47 - 00003926 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{39C419FF-9009-44A0-8FF3-468E5FD87E8B}
2014-06-29 04:52 - 2012-04-03 10:59 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-29 04:47 - 2014-04-20 13:42 - 00000928 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4085335947-2511170766-3262566581-1000UA.job
2014-06-29 04:39 - 2014-02-05 09:39 - 00000300 _____ () C:\Windows\Tasks\Funmoods.job
2014-06-29 04:38 - 2011-10-05 19:24 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-29 04:15 - 2014-06-29 04:15 - 01584742 _____ () C:\Users\Vanda\Desktop\109451_922312456_FRST64.zip
2014-06-29 01:59 - 2014-06-29 01:59 - 01072264 _____ () C:\Users\Vanda\Desktop\FRST34.exe
2014-06-29 01:58 - 2014-06-29 01:58 - 02081928 _____ () C:\Users\Vanda\Desktop\FRST64.exe
2014-06-28 23:47 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\tracing
2014-06-28 22:34 - 2014-06-19 22:32 - 00002960 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateXML_Vanda
2014-06-28 22:34 - 2014-06-19 22:32 - 00000366 _____ () C:\Windows\Tasks\ReclaimerUpdateXML_Vanda.job
2014-06-28 02:38 - 2014-06-19 22:54 - 00006370 _____ () C:\Windows\PFRO.log
2014-06-28 00:41 - 2013-12-07 10:37 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-06-28 00:32 - 2011-10-03 14:13 - 00000000 ____D () C:\users\Vanda
2014-06-28 00:31 - 2014-06-19 22:40 - 00000000 ____D () C:\Program Files (x86)\Greener Web
2014-06-28 00:31 - 2014-05-30 11:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-28 00:31 - 2014-01-27 09:38 - 00000000 ____D () C:\Users\Vanda\AppData\Local\Akamai
2014-06-28 00:31 - 2013-12-19 10:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-28 00:31 - 2013-12-07 10:43 - 00000000 ____D () C:\ProgramData\ProductData
2014-06-28 00:31 - 2013-11-15 11:16 - 00000000 ____D () C:\Users\Vanda\Desktop\SRKI
2014-06-28 00:31 - 2013-10-08 02:01 - 00000000 ____D () C:\users\Guest
2014-06-28 00:31 - 2012-08-11 03:09 - 00000000 ____D () C:\ProgramData\IObit
2014-06-28 00:31 - 2012-07-01 12:41 - 00000000 ___RD () C:\Users\Vanda\Google диск
2014-06-28 00:31 - 2011-10-05 10:15 - 00000000 ____D () C:\Windows\SysWOW64\sr-Cyrl-CS
2014-06-28 00:31 - 2011-10-05 10:15 - 00000000 ____D () C:\Windows\System32\sr-Cyrl-CS
2014-06-28 00:31 - 2011-10-05 07:49 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-06-28 00:31 - 2011-10-04 07:41 - 00000000 ____D () C:\Users\Vanda\AppData\Roaming\GHISLER
2014-06-28 00:31 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\rescache
2014-06-28 00:31 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-06-28 00:30 - 2014-06-25 09:58 - 00000000 ____D () C:\Program Files (x86)\NetCrawl
2014-06-28 00:30 - 2014-06-25 09:34 - 00000000 ____D () C:\Program Files (x86)\GUM51E.tmp
2014-06-28 00:30 - 2012-08-11 03:09 - 00000000 ____D () C:\Users\Vanda\AppData\Roaming\IObit
2014-06-28 00:30 - 2012-01-09 13:08 - 00000000 ____D () C:\ProgramData\Real
2014-06-28 00:30 - 2009-07-13 19:20 - 00000000 ____D () C:\Windows\registration
2014-06-28 00:30 - 2009-07-13 19:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-06-28 00:29 - 2014-01-02 10:35 - 00000000 ____D () C:\Users\Vanda\Desktop\Cipele, ednik, rogovi,sto
2014-06-28 00:29 - 2012-08-21 10:40 - 00000000 ____D () C:\Users\Vanda\AppData\Roaming\Mozilla
2014-06-28 00:28 - 2013-12-19 10:18 - 00000000 ____D () C:\Users\Vanda\AppData\Local\Mozilla
2014-06-28 00:27 - 2012-11-28 12:24 - 00000000 ____D () C:\Program Files\Java
2014-06-28 00:17 - 2011-10-03 14:57 - 00000000 ____D () C:\Windows\Panther
2014-06-27 10:34 - 2011-10-07 20:01 - 00000000 ____D () C:\Windows\Minidump
2014-06-25 12:28 - 2012-05-25 10:00 - 00000000 ____D () C:\Users\Vanda\Desktop\smajli
2014-06-25 11:53 - 2012-11-11 11:12 - 01427968 ___SH () C:\Users\Vanda\Desktop\Thumbs.db
2014-06-25 11:44 - 2014-06-25 11:44 - 00000000 __SHD () C:\Users\Vanda\AppData\Local\EmieUserList
2014-06-25 11:44 - 2014-06-25 11:44 - 00000000 __SHD () C:\Users\Vanda\AppData\Local\EmieSiteList
2014-06-25 11:03 - 2014-06-25 11:03 - 00000000 _____ () C:\asc_rdflag
2014-06-25 11:03 - 2014-03-14 17:38 - 50958336 _____ () C:\Windows\System32\config\components.iodefrag.bak
2014-06-25 11:03 - 2014-01-09 03:51 - 109113344 _____ () C:\Windows\System32\config\software.iodefrag.bak
2014-06-25 11:03 - 2014-01-09 03:51 - 04354048 _____ () C:\Windows\System32\config\default.iodefrag.bak
2014-06-25 11:03 - 2014-01-09 03:51 - 00069632 _____ () C:\Windows\System32\config\sam.iodefrag.bak
2014-06-25 11:03 - 2014-01-09 03:51 - 00036864 _____ () C:\Windows\System32\config\security.iodefrag.bak
2014-06-25 10:05 - 2014-06-25 10:05 - 02768384 ____N (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 02266112 ____N (Microsoft Corporation) C:\Windows\System32\wininet.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 02179072 ____N (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 01790976 ____N (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 01398272 ____N (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 01143296 ____N (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-25 10:05 - 2014-06-25 10:05 - 00147968 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2014-06-25 09:34 - 2014-06-25 09:34 - 06010880 _____ () C:\Program Files (x86)\GUT51F.tmp
2014-06-24 03:55 - 2009-07-13 21:08 - 00032638 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-06-23 14:00 - 2014-04-20 13:42 - 00000906 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4085335947-2511170766-3262566581-1000Core.job
2014-06-23 08:07 - 2012-10-03 11:18 - 00000000 ____D () C:\Program Files (x86)\The KMPlayer
2014-06-23 02:32 - 2013-03-05 02:47 - 00000000 ____D () C:\ProgramData\Wincert
2014-06-20 21:01 - 2014-06-19 22:56 - 00003362 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-4085335947-2511170766-3262566581-1000
2014-06-20 21:01 - 2014-06-19 22:56 - 00003228 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-4085335947-2511170766-3262566581-1000
2014-06-19 22:55 - 2014-06-19 22:32 - 00000370 _____ () C:\Windows\Tasks\ReclaimerUpdateFiles_Vanda.job
2014-06-19 22:55 - 2014-06-19 22:32 - 00000370 _____ () C:\Windows\Tasks\ReclaimerUpdateFiles_Vanda(2113).job
2014-06-19 22:54 - 2014-06-19 22:54 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-19 22:53 - 2014-06-19 22:53 - 00003164 _____ () C:\Windows\System32\Tasks\SmartDefrag3_Update
2014-06-19 22:53 - 2014-06-19 22:53 - 00002856 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Vanda)
2014-06-19 22:53 - 2013-10-13 11:08 - 00003214 _____ () C:\Windows\System32\Tasks\Driver Booster Scan
2014-06-19 22:53 - 2013-10-13 11:08 - 00003158 _____ () C:\Windows\System32\Tasks\Driver Booster Update
2014-06-19 22:52 - 2014-06-19 22:52 - 00001142 _____ () C:\Users\Public\Desktop\Smart Defrag 3.lnk
2014-06-19 22:52 - 2014-06-19 22:52 - 00001142 _____ () C:\Users\Public\Desktop\Driver Booster.lnk
2014-06-19 22:52 - 2014-06-19 22:52 - 00001142 _____ () C:\Users\Public\Desktop\Driver Booster(2093).lnk
2014-06-19 22:48 - 2013-06-17 01:02 - 00000000 ___RD () C:\Users\Vanda\Desktop\ČIŠĆENJE
2014-06-19 22:41 - 2014-06-19 22:41 - 00001117 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-19 22:40 - 2014-06-19 22:40 - 29836648 _____ (Mozilla) C:\Users\Vanda\Downloads\Firefox Setup 30.0_310578f044482a93caa0703841c3339e.exe
2014-06-19 22:32 - 2014-06-19 22:32 - 00003612 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperResumePrompt_Vanda
2014-06-19 22:32 - 2014-06-19 22:32 - 00002964 _____ () C:\Windows\System32\Tasks\ReclaimerUpdateFiles_Vanda
2014-06-19 22:32 - 2014-06-19 22:32 - 00002668 _____ () C:\Windows\System32\Tasks\RNUpgradeHelperLogonPrompt_Vanda
2014-06-19 05:27 - 2014-06-19 23:45 - 00061120 _____ (StdLib) C:\Windows\System32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys
2014-06-18 04:37 - 2014-06-06 04:36 - 00003846 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1389458101
2014-06-16 21:33 - 2011-10-05 19:24 - 00003892 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-16 21:33 - 2011-10-05 19:24 - 00003640 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-14 10:16 - 2012-01-16 11:27 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-06-12 08:50 - 2014-05-06 11:09 - 00000000 ___SD () C:\Windows\System32\CompatTel
2014-06-11 11:06 - 2013-07-13 10:59 - 00000000 ____D () C:\Windows\System32\MRT
2014-06-11 11:01 - 2011-10-03 21:47 - 95414520 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2014-06-08 08:37 - 2013-02-16 09:32 - 00000000 ____D () C:\Users\Vanda\AppData\Roaming\BitTorrent
2014-06-08 01:13 - 2014-06-11 02:21 - 00506368 _____ (Microsoft Corporation) C:\Windows\System32\aepdu.dll
2014-06-08 01:08 - 2014-06-11 02:21 - 00424448 _____ (Microsoft Corporation) C:\Windows\System32\aeinv.dll
2014-06-07 04:33 - 2014-06-07 03:51 - 00000000 ____D () C:\Users\Vanda\Documents\FIFA 14
2014-06-07 03:50 - 2014-06-07 03:50 - 00000924 _____ () C:\Users\Vanda\Desktop\Play FIFA 14.lnk
2014-06-04 22:21 - 2011-12-21 03:49 - 00000000 ____D () C:\Users\Vanda\AppData\Roaming\DAEMON Tools Lite
2014-06-02 21:39 - 2014-06-02 21:39 - 00000000 ____D () C:\Program Files (x86)\IObit Apps Toolbar
2014-06-02 21:39 - 2014-06-02 21:39 - 00000000 ____D () C:\Program Files (x86)\Application Updater
2014-06-01 10:19 - 2014-06-01 09:07 - 00000000 ____D () C:\Users\Vanda\Documents\GF
2014-06-01 10:07 - 2014-06-01 10:07 - 00000680 _____ () C:\Users\Public\Desktop\The Godfather™ The Game.lnk
2014-06-01 10:07 - 2011-10-24 01:23 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-30 01:11 - 2014-06-26 10:35 - 00940032 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe

Some content of TEMP:
====================
C:\Users\Guest\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Vanda\AppData\Local\Temp\EBUF96D.EXE
C:\Users\Vanda\AppData\Local\Temp\EBUFCF5.DLL
C:\Users\Vanda\AppData\Local\Temp\Firefox Setup 30.0.exe
C:\Users\Vanda\AppData\Local\Temp\loygame-pro.exe
C:\Users\Vanda\AppData\Local\Temp\updatepackasc.exe


==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE Association (whitelisted) =============


==================== Restore Points =========================

Restore point made on: 2014-06-26 10:36:35
Restore point made on: 2014-06-26 12:31:05
Restore point made on: 2014-06-27 10:27:59
Restore point made on: 2014-06-27 10:42:39
Restore point made on: 2014-06-27 11:21:51
Restore point made on: 2014-06-27 11:31:17
Restore point made on: 2014-06-27 13:14:14
Restore point made on: 2014-06-27 23:59:35
Restore point made on: 2014-06-28 00:09:49
Restore point made on: 2014-06-28 00:19:20
Restore point made on: 2014-06-28 00:23:21
Restore point made on: 2014-06-28 00:38:17
Restore point made on: 2014-06-29 02:18:34

==================== Memory info ===========================

Percentage of memory in use: 17%
Total physical RAM: 3874.23 MB
Available physical RAM: 3215.06 MB
Total Pagefile: 3872.38 MB
Available Pagefile: 3204.55 MB
Total Virtual: 8192 MB
Available Virtual: 8191.88 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:156.15 GB) (Free:75.05 GB) NTFS
Drive e: () (Fixed) (Total:309.51 GB) (Free:176.43 GB) NTFS
Drive g: () (Removable) (Total:7.52 GB) (Free:6.54 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 346F6110)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=156 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=310 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 8 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=8 GB) - (Type=0B)


LastRegBack: 2014-06-28 03:08

==================== End Of Log ============================

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Udji u Control Panel i deinstaliraj sve sto ima veze sa IObit programima.
Advanced SystemCare
IObit Malware Fighter


Zatim:



Otvoriti Notepad i iskopirati sledeci tekst:

start
HKLM-x32\...\Run: [DATAMNGR] => C:\PROGRA~2\Search Results Toolbar\Datamngr\datamngrUI.exe
C:\PROGRA~2\Search Results Toolbar\Datamngr\datamngrUI.exe
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SearchSettings] => C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [1404736 2014-05-26] (Spigot, Inc.)
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
AppInit_DLLs: C:\PROGRA~2\Search Results Toolbar\Datamngr\x64\datamngr.dll => C:\Program Files (x86)\Search Results Toolbar\Datamngr\x64\datamngr.dll [2018680 2013-02-14] (Bandoo Media Inc)
C:\PROGRA~2\Search Results Toolbar\Datamngr\x64\datamngr.dll
C:\Program Files (x86)\Search Results Toolbar\Datamngr\x64\datamngr.dll
AppInit_DLLs: C:\PROGRA~2\Search Results Toolbar\Datamngr\x64\IEBHO.dll => C:\Program Files (x86)\Search Results Toolbar\Datamngr\x64\IEBHO.dll [1531256 2013-02-14] (Bandoo Media Inc)
C:\PROGRA~2\Search Results Toolbar\Datamngr\x64\IEBHO.dll
C:\Program Files (x86)\Search Results Toolbar\Datamngr\x64\IEBHO.dll
ShellIconOverlayIdentifiers-x32: EnhancedStorageShell -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => No File
ShellIconOverlayIdentifiers-x32: SharingPrivate -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => No File
S2 Update Greener Web; C:\Program Files (x86)\Greener Web\updateGreenerWeb.exe [318752 2014-06-28] ()
S2 Util Greener Web; C:\Program Files (x86)\Greener Web\bin\utilGreenerWeb.exe [318752 2014-06-28] ()
C:\Program Files (x86)\Greener Web\updateGreenerWeb.exe
C:\Program Files (x86)\Greener Web\bin\utilGreenerWeb.exe
S1 {a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64; C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys [61120 2014-06-19] (StdLib)
C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw64.sys
C:\Users\Guest\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Vanda\AppData\Local\Temp\EBUF96D.EXE
C:\Users\Vanda\AppData\Local\Temp\EBUFCF5.DLL
C:\Users\Vanda\AppData\Local\Temp\Firefox Setup 30.0.exe
C:\Users\Vanda\AppData\Local\Temp\loygame-pro.exe
C:\Users\Vanda\AppData\Local\Temp\updatepackasc.exe
end

Sacuvaj fajl na flash drive kao fixlist.txt

Ponovo startuj System Recovery Options prateci isti postupak bas kao i prosli put.
Pokreni FRST i klikni na dugme Fix i pricekaj da program zavrsi.
Alat ce kreirati log na flash drive memorijskom uredjaju pod nazivom Fixlog.txt.
Restartuj racunar.
Kopiraj sadrzaj tog loga uz poruku.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Nece da pokrene deinstalaciju iz control panela,a nece da pokrene ni dirketno kada odem na uninstall,izbaci The ordinal 572 could not be located in the dynamic link library iertutil.dll.