Laptop mi je usporio

1

Laptop mi je usporio

offline
  • Pridružio: 18 Feb 2016
  • Poruke: 10

Pozdrav, primetio sam pre mesec-dva kako mi je laptop usporio, naime procesor mi radi konstantno na 50-70% a nije nista pokrenuto dakle cim se upali, takodje ista stvar i sa ram memorijom 90%. Da li je to mozda zbog antivirusa posto sam cuo da nakon izvesnog vremena uspori sistem ili je virus? Antivirusni program koji koristim je Avast. Hvala Very Happy

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10481
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Pozdrav gordon993 i dobrodošao u Ambulantu. Potrebno je da ispratiš uputstvo za otvaranje teme i psotaviš tražene izvještaje:

http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

offline
  • Pridružio: 18 Feb 2016
  • Poruke: 10

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:17-02-2016
Ran by Korisnik (administrator) on KORISNIK-PC (18-02-2016 01:34:08)
Running from C:\Users\Korisnik\Downloads
Loaded Profiles: Korisnik (Available Profiles: Korisnik)
Platform: Windows 7 Ultimate (X64) Language: engleski (SAD)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Sony Ericsson Mobile Communications AB) C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
(BitTorrent Inc.) C:\Users\Korisnik\AppData\Roaming\uTorrent\uTorrent.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(BitTorrent Inc.) C:\Users\Korisnik\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe
(BitTorrent Inc.) C:\Users\Korisnik\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Autodesk Inc.) C:\Users\Korisnik\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2281256 2013-01-15] (Synaptics Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7509096 2011-10-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-10-17] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139768 2016-02-15] (AVAST Software)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [522784 2015-11-17] (Autodesk Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1085656 2015-12-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [213536 2016-02-01] (Geek Software GmbH)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2008-06-09] (Hewlett-Packard Company)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [Google Update] => C:\Users\Korisnik\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-10-15] (Google Inc.)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [Sony Ericsson PC Companion] => C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [774144 2009-12-08] (Sony Ericsson Mobile Communications AB)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [Facebook Update] => C:\Users\Korisnik\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-04-15] (Facebook Inc.)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [ccleaner] => C:\Program Files\CCleaner\CCleaner64.exe [6070040 2013-04-23] (Piriform Ltd)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [uTorrent] => C:\Users\Korisnik\AppData\Roaming\uTorrent\uTorrent.exe [2065944 2016-02-09] (BitTorrent Inc.)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088 2015-01-27] (Autodesk, Inc.)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\MountPoints2: F - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\MountPoints2: {0cf26dfc-0697-11e4-bdeb-78acc040e9c3} - F:\SecureDrive.exe
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\MountPoints2: {6d79e5c3-0efd-11e2-8487-78acc040e9c3} - G:\Startme.exe
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\MountPoints2: {ebcb9f88-8ed0-11e5-9e6b-a925bf124a16} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088 2015-01-27] (Autodesk, Inc.)
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\Datamngr\x64\mgrldr.dll => No File
AppInit_DLLs-x32: c:\progra~3\videop~1\261339~1.144\{16cdf~1\videom~1.dll => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-02-09] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\SysWOW64\AcSignIcon.dll [2006-03-05] (Autodesk)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutoCAD Startup Accelerator.lnk [2013-04-25]
ShortcutTarget: AutoCAD Startup Accelerator.lnk -> C:\Program Files (x86)\Common Files\Autodesk Shared\acstart17.exe (Autodesk, Inc)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2014-12-23]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe (No File)
Startup: C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NHL® 09 Registration.lnk [2014-06-11]
ShortcutTarget: NHL® 09 Registration.lnk -> C:\Program Files (x86)\EA Sports\NHL 09\Support\EAregister.exe (No File)
Startup: C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2013-04-22]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0D20BC5C-763D-46DB-849B-30662411C497}: [DhcpNameServer] 194.28.108.10 194.28.108.70
Tcpip\..\Interfaces\{FEE185C4-6E96-44F7-B48F-A5F906D87BDF}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?ocid=EIE9HP&PC=UP50
URLSearchHook: HKLM-x32 - (No Name) - {96f454ea-9d38-474f-b504-56193e00c1a5} - No File
URLSearchHook: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 - (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - No File
URLSearchHook: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 - (No Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} - No File
URLSearchHook: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 - (No Name) - {96f454ea-9d38-474f-b504-56193e00c1a5} - No File
SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=1452&systemid=1&apn_uid=0143515112434043&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=1452&systemid=1&apn_uid=0143515112434043&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {656E6E9C-D178-48FF-9432-8687B517F785} URL =
SearchScopes: HKLM-x32 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=1452&systemid=1&apn_uid=0143515112434043&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> {0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} URL =
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> 968CBF979990426497B654B1A71B66CE URL = hxxp://www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=0C8318F46AB878CA&affID=119776&tsp=5001
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> {3569FC1B-9441-47C5-8BA5-7A7C8D700299} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=SGT&o=APN10374&src=kw&q={searchTerms}&locale=en_US&apn_ptnrs=^AHO&apn_dtid=^YYYYYY^YY^BA&apn_uid=100B573B-CD98-45EC-845D-48101B4D3FA4&apn_sauid=31554984-0667-4A22-8CB3-EBEDAA7C5621
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> {656E6E9C-D178-48FF-9432-8687B517F785} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3289075&CUI=UN23195060884273240&UM=1
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=1452&systemid=1&apn_uid=0143515112434043&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-09] (AVAST Software)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-09] (AVAST Software)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM-x32 - No Name - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
Toolbar: HKLM-x32 - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKLM-x32 - No Name - {96f454ea-9d38-474f-b504-56193e00c1a5} - No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1211151.dll [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-12-17] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3207635917-3077674048-3272829710-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Korisnik\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-3207635917-3077674048-3272829710-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Korisnik\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-3207635917-3077674048-3272829710-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Korisnik\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-02-11]
FF HKLM-x32\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com
FF Extension: Speed Analysis 2 - C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2014-04-22] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-02-11]
FF HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com

Chrome:
=======
CHR Profile: C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Media Hint) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\akipcefbjlmpbcejgdaopmmidpnjlhnb [2016-01-20]
CHR Extension: (Skype) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-18]
CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-16]
CHR HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Korisnik\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx <not found>
CHR HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Korisnik\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Korisnik\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [dgjkhjdcljddbedokogakmmdjgnbeanf] - C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2\speedanalysis.crx [2013-04-17]
CHR HKLM-x32\...\Chrome\Extension: [dnllcmllkjofnojidnaknldfehfhehoo] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Korisnik\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-02-09]
CHR HKLM-x32\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\Korisnik\AppData\Local\Torch\Plugins\TorchPlugin.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]
StartMenuInternet: Google Chrome.GCNNNHLSEZM2FVFXROEBALFAY4 - C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1139744 2015-11-17] (Autodesk Inc.)
S2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc.)
S3 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [77944 2013-01-12] (Autodesk)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-02-09] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2008-06-09] (Hewlett-Packard Company) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S2 avast! Firewall; "C:\Program Files\AVAST Software\Avast\afwServ.exe" [X]
U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-02-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-02-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-02-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-02-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1065720 2016-02-09] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-02-09] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-02-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-02-11] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-11-11] (DT Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 s1039bus; C:\Windows\System32\DRIVERS\s1039bus.sys [127600 2009-11-19] (MCCI Corporation)
S3 s1039mdfl; C:\Windows\System32\DRIVERS\s1039mdfl.sys [19568 2009-11-19] (MCCI Corporation)
S3 s1039mdm; C:\Windows\System32\DRIVERS\s1039mdm.sys [161904 2009-11-19] (MCCI Corporation)
S3 s1039mgmt; C:\Windows\System32\DRIVERS\s1039mgmt.sys [141424 2009-11-19] (MCCI Corporation)
S3 s1039nd5; C:\Windows\System32\DRIVERS\s1039nd5.sys [34416 2009-11-19] (MCCI Corporation)
S3 s1039obex; C:\Windows\System32\DRIVERS\s1039obex.sys [137328 2009-11-19] (MCCI Corporation)
S3 s1039unic; C:\Windows\System32\DRIVERS\s1039unic.sys [158320 2009-11-19] (MCCI Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-11-11] (Duplex Secure Ltd.)
R1 {2635ac50-5488-40bf-9bfd-accb158f8f3f}w64; C:\Windows\System32\drivers\{2635ac50-5488-40bf-9bfd-accb158f8f3f}w64.sys [61120 2014-06-09] (StdLib)
U3 alzcp95p; C:\Windows\System32\Drivers\alzcp95p.sys [0 ] (Intel Corporation) <==== ATTENTION (zero byte File/Folder)
S1 aswKbd; \??\C:\Windows\system32\drivers\aswKbd.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-18 01:34 - 2016-02-18 01:35 - 00023573 _____ C:\Users\Korisnik\Downloads\FRST.txt
2016-02-18 01:33 - 2016-02-18 01:34 - 00000000 ____D C:\FRST
2016-02-18 01:31 - 2016-02-18 01:32 - 02371072 _____ (Farbar) C:\Users\Korisnik\Downloads\FRST64.exe
2016-02-16 18:04 - 2016-02-16 18:04 - 00000000 ____D C:\Users\Korisnik\Documents\ArmA 2 Other Profiles
2016-02-16 18:03 - 2016-02-16 18:03 - 00000000 ____D C:\Users\Korisnik\Documents\SKIDROW
2016-02-16 17:58 - 2016-02-16 17:59 - 00000000 ____D C:\Users\Korisnik\Documents\ArmA 2
2016-02-16 17:57 - 2016-02-16 17:57 - 00001370 _____ C:\Users\Korisnik\Desktop\Launch ARMA 2 REINFORCEMENTS.lnk
2016-02-16 17:09 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-02-16 17:09 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-02-16 17:09 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-02-16 17:09 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-02-16 17:09 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-02-16 17:09 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-02-16 17:09 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-02-16 17:09 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-02-16 17:09 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-02-16 17:08 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2016-02-16 17:08 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-02-16 17:08 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-02-16 17:08 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-02-16 17:08 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-02-16 17:08 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-02-16 17:08 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-02-16 17:08 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-02-16 17:08 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-02-16 17:08 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-02-16 17:08 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-02-16 17:08 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-02-16 17:08 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-02-16 17:08 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-02-16 17:08 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-02-16 17:08 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-02-16 17:08 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-02-16 17:08 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-02-16 17:08 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-02-16 17:08 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-02-16 17:06 - 2016-02-16 17:07 - 00000000 ____D C:\Users\Korisnik\AppData\Local\ArmA 2 REINFORCEMENTS
2016-02-16 17:03 - 2016-02-16 17:43 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2016-02-16 17:03 - 2016-02-16 17:18 - 00000000 ____D C:\Program Files (x86)\Bohemia Interactive
2016-02-16 17:03 - 2016-02-16 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2016-02-14 17:58 - 2016-02-15 23:52 - 02063428 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-5.pdf
2016-02-14 17:58 - 2016-02-15 19:41 - 01083443 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-7.pdf
2016-02-14 17:58 - 2016-02-15 19:32 - 00639678 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-6.pdf
2016-02-14 17:58 - 2016-02-15 19:12 - 00639584 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-ST-3.pdf
2016-02-14 17:58 - 2016-02-15 18:50 - 01865764 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-2.pdf
2016-02-14 17:58 - 2016-02-15 18:25 - 00810768 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-1.pdf
2016-02-14 17:58 - 2016-02-14 17:58 - 03123200 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-4.ppt
2016-02-09 19:42 - 2016-02-09 19:41 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-02-09 19:41 - 2016-02-09 19:41 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-02-09 17:07 - 2016-02-17 11:03 - 00000000 ____D C:\Users\Korisnik\AppData\LocalLow\uTorrent
2016-02-08 12:59 - 2016-02-08 12:59 - 00000000 ____D C:\Users\Korisnik\AppData\Local\PDF24
2016-02-08 12:56 - 2016-02-08 12:57 - 00000000 ____D C:\Program Files (x86)\PDF24
2016-02-08 12:56 - 2016-02-08 12:56 - 00001088 _____ C:\Users\Public\Desktop\PDF24.lnk
2016-02-08 12:56 - 2016-02-08 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2016-01-31 17:22 - 2016-02-01 10:28 - 00000000 ____D C:\Users\Korisnik\Downloads\Safe.2012.720p.BRRip.XviD.AC3-VoXHD
2016-01-31 16:52 - 2016-01-31 16:53 - 06393072 _____ C:\Users\Korisnik\Downloads\4_predavanje i vjezbe_Osnovni faktori BS_01.12.2015.pdf
2016-01-31 16:49 - 2016-01-31 16:52 - 12522714 _____ C:\Users\Korisnik\Downloads\6_predavanje i vjezbe_Saobracajno obrazovanje.ppt_29.12.2015.pdf
2016-01-31 16:47 - 2016-01-31 16:48 - 15723469 _____ C:\Users\Korisnik\Downloads\7_predavanje i vjezbe_Edukacija za saobracaj_Djeca ostecenog sluha_22.12.2015.pdf
2016-01-31 16:44 - 2016-01-31 16:45 - 01491374 _____ C:\Users\Korisnik\Downloads\8_predavanje i vjezbe_kampanje_EDUS_1.pdf
2016-01-31 16:44 - 2016-01-31 16:45 - 00772637 _____ C:\Users\Korisnik\Downloads\9_predavanje i vjezbe_kampanje_EDUS_2.pdf
2016-01-30 20:32 - 2016-01-30 22:27 - 00000000 ____D C:\Program Files (x86)\RAR Password Unlocker
2016-01-30 20:32 - 2016-01-30 20:32 - 00001167 _____ C:\Users\Public\Desktop\RAR Password Unlocker.lnk
2016-01-30 20:32 - 2016-01-30 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR Password Unlocker
2016-01-26 23:56 - 2016-01-26 23:57 - 02140688 _____ C:\Users\Korisnik\Downloads\puškice-edukacija-II-kol.pdf
2016-01-19 00:52 - 2016-01-19 00:52 - 00131961 _____ C:\Users\Korisnik\Downloads\812007D-HSPG13-OlderDriverSafety.pdf
2016-01-19 00:15 - 2016-01-19 00:16 - 00643714 _____ C:\Users\Korisnik\Downloads\TeenDriverETAS-1 (2).pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-18 01:35 - 2013-06-06 21:35 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\uTorrent
2016-02-18 01:25 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2016-02-18 01:23 - 2012-09-21 15:20 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-18 01:20 - 2012-08-14 07:08 - 00003956 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{A12C2FA9-E231-4548-937E-0369C0552DAC}
2016-02-18 01:12 - 2012-08-14 07:01 - 00000920 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000UA.job
2016-02-18 00:23 - 2012-09-21 15:20 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-18 00:15 - 2013-04-15 11:10 - 00000940 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000UA.job
2016-02-18 00:00 - 2012-12-28 22:30 - 00000400 _____ C:\Windows\Tasks\NeroLiveEpgUpdate-Korisnik-PC_Korisnik.job
2016-02-17 18:20 - 2012-08-14 07:01 - 00000868 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000Core.job
2016-02-17 12:15 - 2013-04-15 11:10 - 00000918 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000Core.job
2016-02-17 11:13 - 2015-11-03 14:04 - 00003204 _____ C:\Windows\System32\Tasks\HPCeeScheduleForKorisnik
2016-02-17 11:13 - 2015-10-21 17:44 - 00000344 _____ C:\Windows\Tasks\HPCeeScheduleForKorisnik.job
2016-02-17 11:10 - 2009-07-14 05:45 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-02-17 11:10 - 2009-07-14 05:45 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-02-17 11:07 - 2013-11-11 20:05 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\DAEMON Tools Lite
2016-02-17 11:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-02-17 11:01 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-16 23:01 - 2009-07-14 06:13 - 00781298 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-16 11:06 - 2012-09-21 13:53 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-02-14 19:59 - 2013-04-03 21:25 - 02129408 ___SH C:\Users\Korisnik\Downloads\Thumbs.db
2016-02-11 01:26 - 2012-08-14 07:02 - 00002413 _____ C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-11 01:25 - 2012-08-14 07:02 - 00002388 _____ C:\Users\Korisnik\Desktop\Google Chrome.lnk
2016-02-11 00:29 - 2013-04-03 19:03 - 00287016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-02-09 21:24 - 2012-08-22 18:44 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\Skype
2016-02-09 19:41 - 2014-05-06 12:03 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-02-09 19:41 - 2013-12-19 19:47 - 00165344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-02-09 19:41 - 2013-04-03 19:03 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-02-09 19:41 - 2012-09-21 13:53 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-02-09 19:41 - 2012-08-22 18:50 - 00463744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-02-09 19:41 - 2012-08-22 18:50 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-02-09 19:40 - 2012-08-22 18:50 - 01065720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-02-09 18:06 - 2012-10-17 22:13 - 00000000 ____D C:\Users\Korisnik\Desktop\faks
2016-02-08 12:24 - 2013-01-21 20:43 - 02533376 ___SH C:\Users\Korisnik\Desktop\Thumbs.db
2016-02-06 14:59 - 2013-03-12 18:23 - 00000000 ____D C:\Users\Korisnik\Documents\Filmovi
2016-02-03 00:18 - 2012-09-21 15:20 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-03 00:18 - 2012-09-21 15:20 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-02 18:07 - 2012-08-14 07:01 - 00003896 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000UA
2016-02-02 18:07 - 2012-08-14 07:01 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000Core
2016-02-01 10:48 - 2012-08-07 19:55 - 00000000 ____D C:\Users\Korisnik\AppData\Local\VirtualStore
2016-01-30 12:45 - 2012-09-21 09:06 - 00000000 ____D C:\Users\Korisnik\Documents\Championship manager
2016-01-29 16:22 - 2012-08-09 12:09 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-23 17:45 - 2014-06-13 17:56 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-01-23 11:24 - 2012-09-19 18:53 - 00000000 ____D C:\Windows\System32\Tasks\Games
2016-01-20 17:06 - 2012-11-07 17:08 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-01-20 17:05 - 2015-03-02 13:51 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

==================== Files in the root of some directories =======

2012-08-14 07:03 - 2014-04-12 16:27 - 0000197 _____ () C:\Users\Korisnik\AppData\Roaming\default.rss
2014-04-02 16:19 - 2014-04-02 16:19 - 0000000 _____ () C:\Users\Korisnik\AppData\Roaming\downloads.m3u
2013-04-21 10:20 - 2013-04-21 10:18 - 0030894 _____ () C:\Users\Korisnik\AppData\Roaming\speedanalysis.ico
2013-09-21 23:28 - 2014-12-08 12:18 - 0026531 _____ () C:\Users\Korisnik\AppData\Roaming\UserTile.png
2012-11-19 10:33 - 2013-09-21 23:01 - 0005632 _____ () C:\Users\Korisnik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-23 22:14 - 2015-02-06 23:17 - 0000173 _____ () C:\Users\Korisnik\AppData\Local\msmathematics.qat.Korisnik
2013-07-15 22:00 - 2013-07-15 22:00 - 0007597 _____ () C:\Users\Korisnik\AppData\Local\Resmon.ResmonCfg
2015-12-06 16:28 - 2015-12-06 16:28 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-02-04 15:49

==================== End of FRST.txt ============================
mycity.rs/must-login.png

online
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6070

Pozdrav,

Prvo je potrebno pokusati rucno deinstalirati sledece programe;


VideoPerformer
YTD Video Downloader 4.1





Zatim,



Preuzmi smeenk-ov zoek.zip ili zoek.rar () sa ovog linka i sačuvaj ga na Desktop.

Raspakuj arhivu u neki folder (uputstvo), a zatim:

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:

ipconfig /flushdns >> %temp%\log.txt;b
netsh int ip reset >> %temp%\log.txt;b
ResetIEProxy;
{96f454ea-9d38-474f-b504-56193e00c1a5};c
{00000000-6E41-4FD3-8538-502F5495E5FC};c
{D8278076-BC68-4484-9233-6E7F1628B56C};c
{96f454ea-9d38-474f-b504-56193e00c1a5};c
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F};c
{98889811-442D-49dd-99D7-DC866BE87DBC};c
{D4027C7F-154A-4066-A1AD-4243D8127440};c
{96f454ea-9d38-474f-b504-56193e00c1a5};c
IEDefaults;
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r
"AppInit_DLLs"=-;r
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
"AppInit_DLLs"=-;r64
CHRDefaults;
cflheckfmhopnialghigdlggahiomebp;chr
giolhomkcooifelkdfpejhidfidaahlc;chr
cflheckfmhopnialghigdlggahiomebp;chr
dgjkhjdcljddbedokogakmmdjgnbeanf;chr
dnllcmllkjofnojidnaknldfehfhehoo;chr
giolhomkcooifelkdfpejhidfidaahlc;chr
kiplfnciaokpcennlkldkdaeaaomamof;chr
EmptyFoldersCheck;Delete
C:\PROGRA~2\SEARCH~1;fs
c:\progra~3\videop~1;fs
C:\Users\Korisnik\AppData\Local\Torch;fs
C:\Windows\System32\Tasks\GoforFilesUpdate;f
C:\Program Files (x86)\GoforFiles;fs
ChromeLook;
Uninstall-List;
EmptyAllTemp;
Reboot;


Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

offline
  • Pridružio: 18 Feb 2016
  • Poruke: 10

Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Korisnik on Thu 02/18/2016 at 14:33:36.79.
Microsoft Windows 7 Ultimate 6.1.7600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Korisnik\AppData\Local\Temp\Rar$EXa0.996\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

2/18/2016 2:35:59 PM Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Conduit deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\Program Files\SSA 2016 deleted successfully
C:\PROGRA~3\Babylon deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\Users\Korisnik\AppData\Roaming\File Scout deleted successfully
C:\Users\Korisnik\AppData\Roaming\Media Player Classic deleted successfully
C:\Users\Korisnik\AppData\Roaming\PerformerSoft deleted successfully
C:\Users\Korisnik\AppData\Roaming\Systweak deleted successfully
C:\Users\Korisnik\AppData\Local\Conduit deleted successfully
C:\Users\Korisnik\AppData\Local\MigWiz deleted successfully
C:\Users\Korisnik\AppData\Local\NativeMessaging deleted successfully
C:\Users\Korisnik\AppData\Local\PackageAware deleted successfully
C:\Users\Korisnik\AppData\Local\Unity deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{96f454ea-9d38-474f-b504-56193e00c1a5} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{00000000-6E41-4FD3-8538-502F5495E5FC} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{D8278076-BC68-4484-9233-6E7F1628B56C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{96f454ea-9d38-474f-b504-56193e00c1a5} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=-

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=-

==== Batch Command(s) Run By Tool======================


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.
Reseting Global, OK!
Reseting Interface, OK!
Restart the computer to complete this action.


==== Deleting Files \ Folders ======================

C:\PROGRA~2\SEARCH~1 not found
c:\progra~3\videop~1 not found
C:\Users\Korisnik\AppData\Local\Torch not found
C:\Program Files (x86)\GoforFiles not found
"C:\windows\SysNative\Tasks\GoforFilesUpdate" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [02/11/2016 12:20 AM]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [02/11/2016 12:20 AM]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"speedanalysis02@SpeedAnalysis.com"="C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com" [04/22/2014 12:09 PM]

==== Firefox Extensions ======================

ExtDir: C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\extensions
- HDvid Codec 3 - %ExtDir%\hdvc3@hdvidcodec.com.xpi

ExtDir: C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions
- Speed Analysis 2 - %ExtDir%\speedanalysis02@SpeedAnalysis.com

==== Firefox Plugins ======================


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
cflheckfmhopnialghigdlggahiomebp - C:\Users\Korisnik\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx[]
dgjkhjdcljddbedokogakmmdjgnbeanf - C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2\speedanalysis.crx[04/17/2013 09:18 PM]
dnllcmllkjofnojidnaknldfehfhehoo - No path found[]
giolhomkcooifelkdfpejhidfidaahlc - C:\Users\Korisnik\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx[]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[02/09/2016 07:40 PM]
kiplfnciaokpcennlkldkdaeaaomamof - C:\Users\Korisnik\AppData\Local\Torch\Plugins\TorchPlugin.crx[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[01/08/2016 10:47 AM]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
cflheckfmhopnialghigdlggahiomebp - C:\Users\Korisnik\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx[]
giolhomkcooifelkdfpejhidfidaahlc - C:\Users\Korisnik\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx[]

Media Hint - Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\akipcefbjlmpbcejgdaopmmidpnjlhnb
Skype - Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Chrome Web Store Payments - Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Chromium Fix ======================

C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2\speedanalysis.crx deleted successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/?pc=UP97&ocid=UP97DHP"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} - dts.search-results.com/sr?src=ieb&gct=ds&ap.....nrs=AGE&q={searchTerms}
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{656E6E9C-D178-48FF-9432-8687B517F785}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} - dts.search-results.com/sr?src=ieb&gct=ds&ap.....nrs=AGE&q={searchTerms}
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\968CBF979990426497B654B1A71B66CE - www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=0C8318F46AB878CA&affID=119776&tsp=5001
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
HKCU\SearchScopes\{3569FC1B-9441-47C5-8BA5-7A7C8D700299} - websearch.ask.com/redirect?client=ie&tb=SGT&o=APN10374&src=kw&q={searchTerms}&locale=en_US&apn_ptnrs=^AHO&apn_dtid=^YYYYYY^YY^BA&apn_uid=100B573B-CD98-45EC-845D-48101B4D3FA4&apn_sauid=31554984-0667-4A22-8CB3-EBEDAA7C5621
HKCU\SearchScopes\{656E6E9C-D178-48FF-9432-8687B517F785} - search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3289075&CUI=UN23195060884273240&UM=1
HKCU\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} - dts.search-results.com/sr?src=ieb&gct=ds&ap.....nrs=AGE&q={searchTerms}

==== Reset Google Chrome ======================

C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Preferences.bad was reset successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Web Data.protect was reset successfully

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Uninstall List x64 ======================

"Nero SoundTrax Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B96C2601-52F5-4D5D-816A-63469EA311EF}]
ćTorrent [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent]
7-Zip 15.12 (x64) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\7-Zip]
A360 Desktop [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}]
ACA & MEP 2016 Object Enabler [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F004-0000-5102-0060B0CE6BBA}]
Adobe Reader XI (11.0.14) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-1033-7B44-AB0000000001}]
Adobe Refresh Manager [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-0804-1033-1959-001824166751}]
Adobe Shockwave Player 12.0 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Shockwave Player]
Advertising Center [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}]
ARMA 2 REINFORCEMENTS Uninstall [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ARMA 2 REINFORCEMENTS]
AutoCAD 2007 - English [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-5001-0409-0002-0060B0CE6BBA}]
AutoCAD 2016 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F001-0000-0102-0060B0CE6BBA}]
AutoCAD 2016 Language Pack - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F001-0409-1102-0060B0CE6BBA}]
AutoCAD Architecture 2016 Language Shared - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F004-0409-4102-0060B0CE6BBA}]
AutoCAD Architecture 2016 Shared [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F004-0000-4102-0060B0CE6BBA}]
AutoCAD Civil 3D Matterhorn Private Pack [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F000-0000-3102-0060B0CE6BBA}]
Autodesk App Manager 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}]
Autodesk Application Manager [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk Application Manager]
Autodesk AutoCAD Civil 3D 2016 - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F000-0409-2102-0060B0CE6BBA}]
Autodesk AutoCAD Civil 3D 2016 - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk AutoCAD Civil 3D 2016 - English]
Autodesk AutoCAD Civil 3D 2016 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F000-0000-0102-0060B0CE6BBA}]
Autodesk AutoCAD Civil 3D 2016 32 Bit Object Enabler on Autodesk Storm and Sanitary Analysis 2016 - Language Neutral [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2AD0DEC9-BC97-4A5A-B1AB-B4F4273DFC55}]
Autodesk AutoCAD Civil 3D 2016 Language Pack - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F000-0409-1102-0060B0CE6BBA}]
Autodesk AutoCAD Map 3D 2016 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F002-0000-0102-0060B0CE6BBA}]
Autodesk AutoCAD Map 3D 2016 Language Pack - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F002-0409-1102-0060B0CE6BBA}]
Autodesk AutoCAD Performance Feedback Tool 1.2.4 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}]
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4BEE127E-95C4-434D-ABAC-65155192BB24}]
Autodesk Content Service [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F}]
Autodesk Content Service [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk Content Service]
Autodesk Content Service Language Pack [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F}]
Autodesk DWF Viewer [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk DWF Viewer]
Autodesk Featured Apps 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}]
Autodesk Material Library 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}]
Autodesk Material Library Base Resolution Image Library 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}]
Autodesk ReCap 2016 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F6FD1651-0000-1033-0102-387BAF9B3B0A}]
Autodesk ReCap 2016 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk ReCap 2016]
Autodesk Storm and Sanitary Analysis 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5681035C-291C-4BE3-B20E-0F0472834883}]
Autodesk Storm and Sanitary Analysis 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk Storm and Sanitary Analysis 2016]
Autodesk Storm and Sanitary Analysis 2016 x64 Plug-in [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A225C652-5B4B-433D-8E22-AC0F77C2842E}]
Autodesk Subassembly Composer on Autodesk AutoCAD Civil 3D 2016 - English - English (United States) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D6D5FA3C-7099-430C-BE42-7F8FA62E30AC}]
Avast Free Antivirus [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\avast]
BattlEye for OA Uninstall [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BattlEye for OA]
CCleaner [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\CCleaner]
DAEMON Tools Lite [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DAEMON Tools Lite]
DolbyFiles [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{56BE5CC9-95E6-4128-ABEA-968414CA9C80}]
eDrawings 2003 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1E66149C-A319-46B4-9F38-9D13554EE7D2}]
Facebook Video Calling 3.1.0.521 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2091F234-EB58-4B80-8C96-8EB78C808CF7}]
FARO LS 1.1.502.0 (64bit) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}]
Football Manager 2013 version 13.3.3 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{04BDADD5-B981-49DB-90F0-DE11F19C50B4}_is1]
Google Chrome [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
Google Update Helper [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}]
Google Update Helper [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}]
Hewlett-Packard ACLM.NET v1.2.1.1 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6F340107-F9AA-47C6-B54C-C3A19F11553F}]
HP Customer Experience Enhancements [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{07FA4960-B038-49EB-891B-9F95930AA544}]
HP Software Framework [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{97174E88-52F9-445A-A28E-704A45332D19}]
HP Support Assistant [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}]
ImagXpress [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}]
Intel(R) Management Engine Components [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}]
Intel(R) Rapid Storage Technology [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}]
Intel(R) Turbo Boost Technology Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}]
K-Lite Codec Pack 6.6.0 (Standard) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\KLiteCodecPack_is1]
LightScribe System Software 1.14.17.1 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}]
Macromedia Flash Player 8 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ShockwaveFlash]
Menu Templates - Starter Kit [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}]
Microsoft .NET Framework 4.5 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}]
Microsoft .NET Framework 4.5 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033]
Microsoft Mathematics (64-bit) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E57B7E0A-8BE5-42E2-BE60-C07ED680A063}]
Microsoft Office Enterprise 2007 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ENTERPRISE]
Microsoft SQL Server Compact 4.0 SP1 x64 ENU [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{78909610-D229-459C-A936-25D92283D3FD}]
Microsoft Visual Basic PowerPacks 10.0 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}]
Microsoft Visual C++ 2005 Redistributable (x64) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}]
Microsoft Visual C++ 2005 Redistributable [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8220EEFE-38CD-377E-8595-13398D740ACE}]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9BE518E6-ECC6-35A9-88E4-87755C07200F}]
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}]
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}]
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}]
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{95716cce-fc71-413f-8ad5-56c2892d4b3a}]
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}]
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{37B8F9C7-03FB-3253-8781-2517C99D7C00}]
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}]
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B175520C-86A2-35A7-8619-86DC379688B9}]
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}]
Microsoft_VC80_CRT_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}]
Microsoft_VC90_CRT_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{08D2E121-7F6A-43EB-97FD-629B44903403}]
Movie Templates - Starter Kit [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BCD82AB5-670D-4242-90FA-1F97103C16CD}]
MSXML 4.0 SP2 (KB954430) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}]
MSXML 4.0 SP2 (KB973688) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}]
Nero 9 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{caef12a9-62d6-46b3-8a98-96fe3506360a}]
Nero BurningROM [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}]
Nero BurnRights [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{12345674-DE9A-677A-CCEE-666356D89777}]
Nero BurnRights [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA9FFE54-D8B1-11DC-92EF-E98356D81493}]
Nero ControlCenter [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}]
Nero ControlCenter [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}]
Nero CoverDesigner [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A8399F58-234A-48C6-BA55-30C15738BF3C}]
Nero CoverDesigner Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4D42353B-533F-4306-AD0B-7FEF292ADE04}]
Nero Disc Copy Gadget [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E4A8DD87-A746-4443-BF25-CAF99CED6767}]
Nero Disc Copy Gadget Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3F30CC51-0788-487B-AA83-7214A239C0C0}]
Nero DiscSpeed [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{78523651-D8B1-11DC-CCEE-741589645873}]
Nero DiscSpeed [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AABBCC54-D8B1-11DC-92EF-E98356D81493}]
Nero DriveSpeed [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{75321954-2589-11DC-DDCC-E98356D81493}]
Nero DriveSpeed [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{753973C4-B961-43BF-B2D4-3C8C92F7216E}]
Nero Express [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{943CC0C0-2253-4FE0-9493-DD386F7857FD}]
Nero InfoTool [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}]
Nero InfoTool [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AAA12554-2589-11DC-92EF-E98356D81493}]
Nero Installer [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{961D53EA-40DC-4156-AD74-25684CE05F81}]
Nero Live [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5C9BB0B3-E830-4814-BBA4-D93535E1C7B9}]
Nero Live Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5A62A775-A29A-4CE1-BBC2-4A9CD0B211EF}]
Nero PhotoSnap [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{548F99E0-14CC-4D53-A7D6-4A62A5F2C748}]
Nero PhotoSnap Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5C42EAB8-54F9-423A-948C-1CBEF25F8DB4}]
Nero Recode [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{07FF7593-9DEA-40B5-9F87-F557E65BBF60}]
Nero Recode Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0711500B-9912-4D60-9A49-C577B4503D42}]
Nero Rescue Agent [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CD1826A5-CFCC-4C6E-9F9D-E181876162EA}]
Nero RescueAgent Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5C2E8A0F-80E2-4C68-8CC0-D8D16E7196BF}]
Nero ShowTime [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8C654BD0-1949-43DE-84F2-EC2A1ABB0CB4}]
Nero ShowTime [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{948FFAAE-C57F-447B-9B07-3721E950BFDC}]
Nero StartSmart [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2D3455A8-3B15-41A8-99F8-0D4215746463}]
Nero StartSmart Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D7C206B6-1A63-4389-A8B1-8F607D0BFF1F}]
Nero Vision [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}]
Nero Vision [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}]
Nero WaveEditor [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}]
Nero WaveEditor Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E86156E5-9859-440D-8876-26CED1349802}]
NeroBurningROM [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1B040683-C390-4711-ABC7-DA8D85E470E7}]
NeroExpress [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A73BEC3C-40A0-480E-87EF-EFCD33629088}]
neroxml [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{56C049BE-79E9-4502-BEA7-9754A3E60F9B}]
Netflix in Windows Media Center [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0CA72D12-F6C6-4D43-A2A0-41F5AA17E2B6}]
PDF Report Writer (novaPDF 6.4 printer) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\PDF Report Writer_is1]
PDF24 Creator 7.6.2 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1]
Pro Evolution Soccer 2010 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}]
Ralink RT5390 802.11b/g/n WiFi Adapter [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}]
RAR Password Unlocker 4.2.0.0 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B789FA51-6A71-408F-92DE-EDE4A517B8F9}_is1]
Realtek High Definition Audio Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}]
Realtek USB 2.0 Card Reader [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{96AE7E41-E34E-47D0-AC07-1091A8127911}]
SketchUp Import 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}]
Skype Click to Call [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}]
SkypeT 6.16 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}]
SolidWorks 2003 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{606D713B-B60C-11D6-A47A-00B0D03E4223}]
Sony Ericsson PC Companion 1.60.13 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}]
SoundTrax [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3097B151-1F61-4211-A4CC-D70127B226AE}]
swMSM [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{612C34C7-5E90-47D8-9B5C-0F717DD82726}]
Synaptics Pointing Device Driver [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SynTPDeinstKey]
TeamViewer 6 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\TeamViewer 6]
VBA (2720) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{41844F24-9CA6-11D4-A74E-00D0B76FE248}]
Winamp [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Winamp]
Winamp Detector Plug-in [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Winamp Detect]
WinRAR [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinRAR]
WinRAR 4.20 (64-bit) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\WinRAR archiver]

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\giolhomkcooifelkdfpejhidfidaahlc deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\giolhomkcooifelkdfpejhidfidaahlc deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\dnllcmllkjofnojidnaknldfehfhehoo deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=4 folders=0 86873 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Korisnik\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Korisnik\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on Thu 02/18/2016 at 14:43:25.30 ======================

online
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6070

Dobro, idemo dalje...


Ponovo pokreni Zoek, na isti nacin kao sto si to malopre uradio, ali ovaj put iskopiraj ovaj script;


C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2;fs
C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com;f
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions];r
"speedanalysis02@SpeedAnalysis.com"=-;r
hdvc3@hdvidcodec.com.xpi;ff
speedanalysis02@SpeedAnalysis.com;ff
C:\Users\Korisnik\AppData\Local\Torch;fs
{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001};c
968CBF979990426497B654B1A71B66CE;c
{3569FC1B-9441-47C5-8BA5-7A7C8D700299};c
{656E6E9C-D178-48FF-9432-8687B517F785};c
{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001};c
AutoClean;
Reboot;



Izvrsi ga na RunScript i kada alat zavrsi rad (restartovace sistem) postavi mi sveze formiran zoek izvestaj na uvid.

offline
  • Pridružio: 18 Feb 2016
  • Poruke: 10

Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Korisnik on Thu 02/18/2016 at 19:47:10.30.
Microsoft Windows 7 Ultimate 6.1.7600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Korisnik\AppData\Local\Temp\Rar$DIa0.872\zoek.com [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2016-02-18-134325.log 36540 bytes

==== Empty Folders Check ======================

C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2 deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\SearchScopes\968CBF979990426497B654B1A71B66CE deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\SearchScopes\{3569FC1B-9441-47C5-8BA5-7A7C8D700299} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\SearchScopes\{656E6E9C-D178-48FF-9432-8687B517F785} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2F8A54F6-BFD7-41B6-8A8A-41D5F6ED38B1} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8ADD498D-A947-4E6C-82CC-BFC6F03B93FD} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E75D3AA-F4D6-4C6E-8132-A3CF8CFB9E77} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F739D019-D913-4F75-88C9-9AF518391F5A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

---- FireFox user.js and prefs.js backups ----

user_20160218_0812_.backup
prefs_20160218_0812_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"speedanalysis02@SpeedAnalysis.com"=-

==== Deleting Files \ Folders ======================

C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2 not found
C:\Users\Korisnik\AppData\Local\Torch not found
C:\Users\Korisnik\AppData\LocalLow\uTorrentControl_v6 deleted
C:\PROGRA~2\Driver-Soft deleted
C:\PROGRA~2\globalUpdate deleted
C:\Users\Korisnik\AppData\Roaming\speedanalysis.ico deleted
C:\Users\Korisnik\AppData\Roaming\GoforFiles deleted
C:\Users\Korisnik\AppData\Roaming\Babylon deleted
C:\Users\Korisnik\AppData\Roaming\SearchProtect deleted
C:\PROGRA~3\Ask deleted
C:\PROGRA~3\APN deleted
C:\PROGRA~3\DSearchLink deleted
C:\PROGRA~3\IBUpdaterService deleted
C:\PROGRA~3\InstallMate deleted
C:\PROGRA~3\Tarma Installer deleted
C:\PROGRA~3\DriverGenius deleted
C:\PROGRA~3\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF} deleted
C:\PROGRA~3\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} deleted
C:\PROGRA~3\Package Cache deleted
C:\PROGRA~3\Trymedia deleted
C:\Users\Korisnik\AppData\Local\WhiteListing deleted
C:\Users\Korisnik\AppData\Local\globalUpdate deleted
C:\Windows\SysNative\roboot64.exe deleted
C:\Users\Korisnik\AppData\LocalLow\BabylonToolbar deleted
C:\Users\Korisnik\AppData\LocalLow\Unity deleted
C:\Users\Korisnik\AppData\LocalLow\searchresultstb deleted
C:\Users\Korisnik\AppData\LocalLow\Conduit deleted
C:\windows\SysNative\drivers\{2635ac50-5488-40bf-9bfd-accb158f8f3f}w64.sys deleted
C:\Windows\Syswow64\tmp897E.tmp deleted
C:\Windows\Syswow64\tmp89CD.tmp deleted
C:\Windows\Syswow64\tmpA62E.tmp deleted
C:\Windows\Syswow64\tmpA66D.tmp deleted
C:\Windows\Syswow64\tmpBE6F.tmp deleted
C:\Windows\SysWow64\searchplugins deleted
C:\Windows\SysWow64\Extensions deleted
C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com deleted
"C:\Windows\Installer\157926c.msi" deleted
"C:\Windows\Installer\1579301.msi" deleted
"C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\hdvc3@hdvidcodec.com.xpi" deleted
"C:\Users\Korisnik\AppData\Roaming\OpenCandy" deleted
"C:\Users\Korisnik\AppData\Local\APN" deleted
"C:\Users\Korisnik\AppData\Local\CrashRpt" deleted

==== Orphaned Tasks deleted from Registry ======================

avast Emergency Update deleted
GoforFilesUpdate deleted
Software Removal Tool post reboot run deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [02/11/2016 12:20 AM]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [02/11/2016 12:20 AM]

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[02/09/2016 07:40 PM]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[01/08/2016 10:47 AM]

Avast Online Security - Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Skype - Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{656E6E9C-D178-48FF-9432-8687B517F785}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\speedanalysis02@SpeedAnalysis.com deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7D2F3875400F0000152000060BECB6AB deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9CED0DA279CBA5A41BBA4B4F72D3CF55 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F004-0000-5102-0060B0CE6BBA} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2AD0DEC9-BC97-4A5A-B1AB-B4F4273DFC55} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\7D2F3875400F0000152000060BECB6AB deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\9CED0DA279CBA5A41BBA4B4F72D3CF55 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Korisnik\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0IXGC7BS will be deleted at reboot
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\31DSUKT3 will be deleted at reboot
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GWNETBIG will be deleted at reboot
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z3LWDAK1 will be deleted at reboot
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=237 folders=77 368173423 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Korisnik\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Korisnik\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat" not found
"C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0IXGC7BS" not found
"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\31DSUKT3" not found
"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GWNETBIG" not found
"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z3LWDAK1" not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on Thu 02/18/2016 at 20:25:08.45 ======================

online
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6070

Ovo sada izgleda mnogo bolje. Idemo na jos jednu proveru, da potucemo ostatke ako ih bude bilo pa da i zavrsavamo ako bude sve u redu ...




Preuzmi ZHPDiag3 sa ovog linka i sacuvaj installer na Desktop:
klik na plavo "Download" dugme zapocinje preuzimanje programa

Dvoklikom na ZHPDiag3, potom klikni na I Agree i aplikacija ce biti pokrenuta;
Klikni na Scanner dugme i alat zapocinje analizu i skeniranje sistema. Pricekati dok alat ne zavrsi;
Kada alat zavrsi, formirace ZHPDiag.txt izvestaj na Desktop-u koji je potrebno prikaciti uz poruku koristeci Prikači fajl;

offline
  • Pridružio: 18 Feb 2016
  • Poruke: 10

Postovani, nakon skeniranja mi izbaci gresku tako da ne mogu da sacuvam fajl i da ga okacim u poruci.


online
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6070

Da, hvala na prijavi. Prosledicu gresku autoru programa, u pitanju je greska u kodu.


Nista onda, postavi mi ponovo svez FRST.txt izvestaj. Ponovo pokreni FRST alat, lupi Scan dugme i kada zavrsi, iskopiraj mi sveze formiraj izvestaj na uvid.

Ko je trenutno na forumu
 

Ukupno su 681 korisnika na forumu :: 38 registrovanih, 5 sakrivenih i 638 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3028 - dana 22 Nov 2019 07:47

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., aleksandar_tatic, aleksmajstor, aramis s, axa, Boris902, bulltony, crnitrn, Cufo, darkangel2, Doca, duskovuk63, flash12, FOX, Georgius2, goxin, ikan, Kubovac, magna86, mandicdamir245, Marko Marković, Maschinekalibar, Mercury2, Milan Kosić, miljannis, pavlo2, Pavlov A.A., Recce, Regrut Boskica, rodoljub, sale755, Sall, Snorks, srbi, theNedjeljko, vobo, voja64, vuk.994ns