Laptop mi je usporio

1

Laptop mi je usporio

offline
  • Pridružio: 18 Feb 2016
  • Poruke: 10

Pozdrav, primetio sam pre mesec-dva kako mi je laptop usporio, naime procesor mi radi konstantno na 50-70% a nije nista pokrenuto dakle cim se upali, takodje ista stvar i sa ram memorijom 90%. Da li je to mozda zbog antivirusa posto sam cuo da nakon izvesnog vremena uspori sistem ili je virus? Antivirusni program koji koristim je Avast. Hvala Very Happy

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10445
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Pozdrav gordon993 i dobrodošao u Ambulantu. Potrebno je da ispratiš uputstvo za otvaranje teme i psotaviš tražene izvještaje:

http://www.mycity.rs/Ambulanta/Kako-otvoriti-temu-u-Ambulanti.html

offline
  • Pridružio: 18 Feb 2016
  • Poruke: 10

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:17-02-2016
Ran by Korisnik (administrator) on KORISNIK-PC (18-02-2016 01:34:08)
Running from C:\Users\Korisnik\Downloads
Loaded Profiles: Korisnik (Available Profiles: Korisnik)
Platform: Windows 7 Ultimate (X64) Language: engleski (SAD)
Internet Explorer Version 9 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Sony Ericsson Mobile Communications AB) C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
(BitTorrent Inc.) C:\Users\Korisnik\AppData\Roaming\uTorrent\uTorrent.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(BitTorrent Inc.) C:\Users\Korisnik\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe
(BitTorrent Inc.) C:\Users\Korisnik\AppData\Roaming\uTorrent\updates\3.4.5_41712\utorrentie.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Autodesk Inc.) C:\Users\Korisnik\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Google Inc.) C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2281256 2013-01-15] (Synaptics Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7509096 2011-10-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-10-17] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139768 2016-02-15] (AVAST Software)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [522784 2015-11-17] (Autodesk Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1085656 2015-12-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [213536 2016-02-01] (Geek Software GmbH)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2008-06-09] (Hewlett-Packard Company)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [Google Update] => C:\Users\Korisnik\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-10-15] (Google Inc.)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [Sony Ericsson PC Companion] => C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [774144 2009-12-08] (Sony Ericsson Mobile Communications AB)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [Facebook Update] => C:\Users\Korisnik\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-04-15] (Facebook Inc.)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [ccleaner] => C:\Program Files\CCleaner\CCleaner64.exe [6070040 2013-04-23] (Piriform Ltd)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [uTorrent] => C:\Users\Korisnik\AppData\Roaming\uTorrent\uTorrent.exe [2065944 2016-02-09] (BitTorrent Inc.)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088 2015-01-27] (Autodesk, Inc.)
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Policies\Explorer: []
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\MountPoints2: F - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\MountPoints2: {0cf26dfc-0697-11e4-bdeb-78acc040e9c3} - F:\SecureDrive.exe
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\MountPoints2: {6d79e5c3-0efd-11e2-8487-78acc040e9c3} - G:\Startme.exe
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\MountPoints2: {ebcb9f88-8ed0-11e5-9e6b-a925bf124a16} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088 2015-01-27] (Autodesk, Inc.)
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\Datamngr\x64\mgrldr.dll => No File
AppInit_DLLs-x32: c:\progra~3\videop~1\261339~1.144\{16cdf~1\videom~1.dll => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-02-09] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\SysWOW64\AcSignIcon.dll [2006-03-05] (Autodesk)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutoCAD Startup Accelerator.lnk [2013-04-25]
ShortcutTarget: AutoCAD Startup Accelerator.lnk -> C:\Program Files (x86)\Common Files\Autodesk Shared\acstart17.exe (Autodesk, Inc)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2014-12-23]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe (No File)
Startup: C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NHL® 09 Registration.lnk [2014-06-11]
ShortcutTarget: NHL® 09 Registration.lnk -> C:\Program Files (x86)\EA Sports\NHL 09\Support\EAregister.exe (No File)
Startup: C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2013-04-22]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0D20BC5C-763D-46DB-849B-30662411C497}: [DhcpNameServer] 194.28.108.10 194.28.108.70
Tcpip\..\Interfaces\{FEE185C4-6E96-44F7-B48F-A5F906D87BDF}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.msn.com/?ocid=EIE9HP&PC=UP50
URLSearchHook: HKLM-x32 - (No Name) - {96f454ea-9d38-474f-b504-56193e00c1a5} - No File
URLSearchHook: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 - (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - No File
URLSearchHook: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 - (No Name) - {D8278076-BC68-4484-9233-6E7F1628B56C} - No File
URLSearchHook: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 - (No Name) - {96f454ea-9d38-474f-b504-56193e00c1a5} - No File
SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=1452&systemid=1&apn_uid=0143515112434043&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=1452&systemid=1&apn_uid=0143515112434043&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {656E6E9C-D178-48FF-9432-8687B517F785} URL =
SearchScopes: HKLM-x32 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=1452&systemid=1&apn_uid=0143515112434043&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> {0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} URL =
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> 968CBF979990426497B654B1A71B66CE URL = hxxp://www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=0C8318F46AB878CA&affID=119776&tsp=5001
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> {3569FC1B-9441-47C5-8BA5-7A7C8D700299} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=SGT&o=APN10374&src=kw&q={searchTerms}&locale=en_US&apn_ptnrs=^AHO&apn_dtid=^YYYYYY^YY^BA&apn_uid=100B573B-CD98-45EC-845D-48101B4D3FA4&apn_sauid=31554984-0667-4A22-8CB3-EBEDAA7C5621
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> {656E6E9C-D178-48FF-9432-8687B517F785} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3289075&CUI=UN23195060884273240&UM=1
SearchScopes: HKU\S-1-5-21-3207635917-3077674048-3272829710-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=1452&systemid=1&apn_uid=0143515112434043&apn_dtid=IME001&o=APN10653&apn_ptnrs=AGE&q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-09] (AVAST Software)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-09] (AVAST Software)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM-x32 - No Name - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
Toolbar: HKLM-x32 - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKLM-x32 - No Name - {96f454ea-9d38-474f-b504-56193e00c1a5} - No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1211151.dll [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-12-17] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3207635917-3077674048-3272829710-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Korisnik\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-3207635917-3077674048-3272829710-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Korisnik\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-3207635917-3077674048-3272829710-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Korisnik\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-02-11]
FF HKLM-x32\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com
FF Extension: Speed Analysis 2 - C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2014-04-22] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-02-11]
FF HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com

Chrome:
=======
CHR Profile: C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Media Hint) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\akipcefbjlmpbcejgdaopmmidpnjlhnb [2016-01-20]
CHR Extension: (Skype) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-18]
CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-16]
CHR HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Korisnik\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx <not found>
CHR HKU\S-1-5-21-3207635917-3077674048-3272829710-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Korisnik\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [cflheckfmhopnialghigdlggahiomebp] - C:\Users\Korisnik\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [dgjkhjdcljddbedokogakmmdjgnbeanf] - C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2\speedanalysis.crx [2013-04-17]
CHR HKLM-x32\...\Chrome\Extension: [dnllcmllkjofnojidnaknldfehfhehoo] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Korisnik\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-02-09]
CHR HKLM-x32\...\Chrome\Extension: [kiplfnciaokpcennlkldkdaeaaomamof] - C:\Users\Korisnik\AppData\Local\Torch\Plugins\TorchPlugin.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-01-08]
StartMenuInternet: Google Chrome.GCNNNHLSEZM2FVFXROEBALFAY4 - C:\Users\Korisnik\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1139744 2015-11-17] (Autodesk Inc.)
S2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc.)
S3 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [77944 2013-01-12] (Autodesk)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-02-09] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2008-06-09] (Hewlett-Packard Company) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
S2 avast! Firewall; "C:\Program Files\AVAST Software\Avast\afwServ.exe" [X]
U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-02-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-02-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-02-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-02-09] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1065720 2016-02-09] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-02-09] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-02-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-02-11] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-11-11] (DT Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 s1039bus; C:\Windows\System32\DRIVERS\s1039bus.sys [127600 2009-11-19] (MCCI Corporation)
S3 s1039mdfl; C:\Windows\System32\DRIVERS\s1039mdfl.sys [19568 2009-11-19] (MCCI Corporation)
S3 s1039mdm; C:\Windows\System32\DRIVERS\s1039mdm.sys [161904 2009-11-19] (MCCI Corporation)
S3 s1039mgmt; C:\Windows\System32\DRIVERS\s1039mgmt.sys [141424 2009-11-19] (MCCI Corporation)
S3 s1039nd5; C:\Windows\System32\DRIVERS\s1039nd5.sys [34416 2009-11-19] (MCCI Corporation)
S3 s1039obex; C:\Windows\System32\DRIVERS\s1039obex.sys [137328 2009-11-19] (MCCI Corporation)
S3 s1039unic; C:\Windows\System32\DRIVERS\s1039unic.sys [158320 2009-11-19] (MCCI Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-11-11] (Duplex Secure Ltd.)
R1 {2635ac50-5488-40bf-9bfd-accb158f8f3f}w64; C:\Windows\System32\drivers\{2635ac50-5488-40bf-9bfd-accb158f8f3f}w64.sys [61120 2014-06-09] (StdLib)
U3 alzcp95p; C:\Windows\System32\Drivers\alzcp95p.sys [0 ] (Intel Corporation) <==== ATTENTION (zero byte File/Folder)
S1 aswKbd; \??\C:\Windows\system32\drivers\aswKbd.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-18 01:34 - 2016-02-18 01:35 - 00023573 _____ C:\Users\Korisnik\Downloads\FRST.txt
2016-02-18 01:33 - 2016-02-18 01:34 - 00000000 ____D C:\FRST
2016-02-18 01:31 - 2016-02-18 01:32 - 02371072 _____ (Farbar) C:\Users\Korisnik\Downloads\FRST64.exe
2016-02-16 18:04 - 2016-02-16 18:04 - 00000000 ____D C:\Users\Korisnik\Documents\ArmA 2 Other Profiles
2016-02-16 18:03 - 2016-02-16 18:03 - 00000000 ____D C:\Users\Korisnik\Documents\SKIDROW
2016-02-16 17:58 - 2016-02-16 17:59 - 00000000 ____D C:\Users\Korisnik\Documents\ArmA 2
2016-02-16 17:57 - 2016-02-16 17:57 - 00001370 _____ C:\Users\Korisnik\Desktop\Launch ARMA 2 REINFORCEMENTS.lnk
2016-02-16 17:09 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-02-16 17:09 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-02-16 17:09 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-02-16 17:09 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-02-16 17:09 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-02-16 17:09 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-02-16 17:09 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-02-16 17:09 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-02-16 17:09 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-02-16 17:09 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-02-16 17:09 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-02-16 17:08 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2016-02-16 17:08 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-02-16 17:08 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-02-16 17:08 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-02-16 17:08 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-02-16 17:08 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-02-16 17:08 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-02-16 17:08 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-02-16 17:08 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-02-16 17:08 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-02-16 17:08 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-02-16 17:08 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-02-16 17:08 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-02-16 17:08 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-02-16 17:08 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-02-16 17:08 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-02-16 17:08 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-02-16 17:08 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-02-16 17:08 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-02-16 17:08 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-02-16 17:08 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-02-16 17:08 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-02-16 17:06 - 2016-02-16 17:07 - 00000000 ____D C:\Users\Korisnik\AppData\Local\ArmA 2 REINFORCEMENTS
2016-02-16 17:03 - 2016-02-16 17:43 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2016-02-16 17:03 - 2016-02-16 17:18 - 00000000 ____D C:\Program Files (x86)\Bohemia Interactive
2016-02-16 17:03 - 2016-02-16 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2016-02-14 17:58 - 2016-02-15 23:52 - 02063428 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-5.pdf
2016-02-14 17:58 - 2016-02-15 19:41 - 01083443 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-7.pdf
2016-02-14 17:58 - 2016-02-15 19:32 - 00639678 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-6.pdf
2016-02-14 17:58 - 2016-02-15 19:12 - 00639584 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-ST-3.pdf
2016-02-14 17:58 - 2016-02-15 18:50 - 01865764 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-2.pdf
2016-02-14 17:58 - 2016-02-15 18:25 - 00810768 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-1.pdf
2016-02-14 17:58 - 2016-02-14 17:58 - 03123200 _____ C:\Users\Korisnik\Downloads\PREDAVANJE-4.ppt
2016-02-09 19:42 - 2016-02-09 19:41 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-02-09 19:41 - 2016-02-09 19:41 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-02-09 17:07 - 2016-02-17 11:03 - 00000000 ____D C:\Users\Korisnik\AppData\LocalLow\uTorrent
2016-02-08 12:59 - 2016-02-08 12:59 - 00000000 ____D C:\Users\Korisnik\AppData\Local\PDF24
2016-02-08 12:56 - 2016-02-08 12:57 - 00000000 ____D C:\Program Files (x86)\PDF24
2016-02-08 12:56 - 2016-02-08 12:56 - 00001088 _____ C:\Users\Public\Desktop\PDF24.lnk
2016-02-08 12:56 - 2016-02-08 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2016-01-31 17:22 - 2016-02-01 10:28 - 00000000 ____D C:\Users\Korisnik\Downloads\Safe.2012.720p.BRRip.XviD.AC3-VoXHD
2016-01-31 16:52 - 2016-01-31 16:53 - 06393072 _____ C:\Users\Korisnik\Downloads\4_predavanje i vjezbe_Osnovni faktori BS_01.12.2015.pdf
2016-01-31 16:49 - 2016-01-31 16:52 - 12522714 _____ C:\Users\Korisnik\Downloads\6_predavanje i vjezbe_Saobracajno obrazovanje.ppt_29.12.2015.pdf
2016-01-31 16:47 - 2016-01-31 16:48 - 15723469 _____ C:\Users\Korisnik\Downloads\7_predavanje i vjezbe_Edukacija za saobracaj_Djeca ostecenog sluha_22.12.2015.pdf
2016-01-31 16:44 - 2016-01-31 16:45 - 01491374 _____ C:\Users\Korisnik\Downloads\8_predavanje i vjezbe_kampanje_EDUS_1.pdf
2016-01-31 16:44 - 2016-01-31 16:45 - 00772637 _____ C:\Users\Korisnik\Downloads\9_predavanje i vjezbe_kampanje_EDUS_2.pdf
2016-01-30 20:32 - 2016-01-30 22:27 - 00000000 ____D C:\Program Files (x86)\RAR Password Unlocker
2016-01-30 20:32 - 2016-01-30 20:32 - 00001167 _____ C:\Users\Public\Desktop\RAR Password Unlocker.lnk
2016-01-30 20:32 - 2016-01-30 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAR Password Unlocker
2016-01-26 23:56 - 2016-01-26 23:57 - 02140688 _____ C:\Users\Korisnik\Downloads\puškice-edukacija-II-kol.pdf
2016-01-19 00:52 - 2016-01-19 00:52 - 00131961 _____ C:\Users\Korisnik\Downloads\812007D-HSPG13-OlderDriverSafety.pdf
2016-01-19 00:15 - 2016-01-19 00:16 - 00643714 _____ C:\Users\Korisnik\Downloads\TeenDriverETAS-1 (2).pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-18 01:35 - 2013-06-06 21:35 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\uTorrent
2016-02-18 01:25 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2016-02-18 01:23 - 2012-09-21 15:20 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-18 01:20 - 2012-08-14 07:08 - 00003956 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{A12C2FA9-E231-4548-937E-0369C0552DAC}
2016-02-18 01:12 - 2012-08-14 07:01 - 00000920 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000UA.job
2016-02-18 00:23 - 2012-09-21 15:20 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-18 00:15 - 2013-04-15 11:10 - 00000940 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000UA.job
2016-02-18 00:00 - 2012-12-28 22:30 - 00000400 _____ C:\Windows\Tasks\NeroLiveEpgUpdate-Korisnik-PC_Korisnik.job
2016-02-17 18:20 - 2012-08-14 07:01 - 00000868 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000Core.job
2016-02-17 12:15 - 2013-04-15 11:10 - 00000918 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000Core.job
2016-02-17 11:13 - 2015-11-03 14:04 - 00003204 _____ C:\Windows\System32\Tasks\HPCeeScheduleForKorisnik
2016-02-17 11:13 - 2015-10-21 17:44 - 00000344 _____ C:\Windows\Tasks\HPCeeScheduleForKorisnik.job
2016-02-17 11:10 - 2009-07-14 05:45 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-02-17 11:10 - 2009-07-14 05:45 - 00017168 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-02-17 11:07 - 2013-11-11 20:05 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\DAEMON Tools Lite
2016-02-17 11:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-02-17 11:01 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-16 23:01 - 2009-07-14 06:13 - 00781298 _____ C:\Windows\system32\PerfStringBackup.INI
2016-02-16 11:06 - 2012-09-21 13:53 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-02-14 19:59 - 2013-04-03 21:25 - 02129408 ___SH C:\Users\Korisnik\Downloads\Thumbs.db
2016-02-11 01:26 - 2012-08-14 07:02 - 00002413 _____ C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-11 01:25 - 2012-08-14 07:02 - 00002388 _____ C:\Users\Korisnik\Desktop\Google Chrome.lnk
2016-02-11 00:29 - 2013-04-03 19:03 - 00287016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-02-09 21:24 - 2012-08-22 18:44 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\Skype
2016-02-09 19:41 - 2014-05-06 12:03 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-02-09 19:41 - 2013-12-19 19:47 - 00165344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-02-09 19:41 - 2013-04-03 19:03 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-02-09 19:41 - 2012-09-21 13:53 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-02-09 19:41 - 2012-08-22 18:50 - 00463744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-02-09 19:41 - 2012-08-22 18:50 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-02-09 19:40 - 2012-08-22 18:50 - 01065720 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-02-09 18:06 - 2012-10-17 22:13 - 00000000 ____D C:\Users\Korisnik\Desktop\faks
2016-02-08 12:24 - 2013-01-21 20:43 - 02533376 ___SH C:\Users\Korisnik\Desktop\Thumbs.db
2016-02-06 14:59 - 2013-03-12 18:23 - 00000000 ____D C:\Users\Korisnik\Documents\Filmovi
2016-02-03 00:18 - 2012-09-21 15:20 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-03 00:18 - 2012-09-21 15:20 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-02 18:07 - 2012-08-14 07:01 - 00003896 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000UA
2016-02-02 18:07 - 2012-08-14 07:01 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3207635917-3077674048-3272829710-1000Core
2016-02-01 10:48 - 2012-08-07 19:55 - 00000000 ____D C:\Users\Korisnik\AppData\Local\VirtualStore
2016-01-30 12:45 - 2012-09-21 09:06 - 00000000 ____D C:\Users\Korisnik\Documents\Championship manager
2016-01-29 16:22 - 2012-08-09 12:09 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-01-23 17:45 - 2014-06-13 17:56 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-01-23 11:24 - 2012-09-19 18:53 - 00000000 ____D C:\Windows\System32\Tasks\Games
2016-01-20 17:06 - 2012-11-07 17:08 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-01-20 17:05 - 2015-03-02 13:51 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

==================== Files in the root of some directories =======

2012-08-14 07:03 - 2014-04-12 16:27 - 0000197 _____ () C:\Users\Korisnik\AppData\Roaming\default.rss
2014-04-02 16:19 - 2014-04-02 16:19 - 0000000 _____ () C:\Users\Korisnik\AppData\Roaming\downloads.m3u
2013-04-21 10:20 - 2013-04-21 10:18 - 0030894 _____ () C:\Users\Korisnik\AppData\Roaming\speedanalysis.ico
2013-09-21 23:28 - 2014-12-08 12:18 - 0026531 _____ () C:\Users\Korisnik\AppData\Roaming\UserTile.png
2012-11-19 10:33 - 2013-09-21 23:01 - 0005632 _____ () C:\Users\Korisnik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-23 22:14 - 2015-02-06 23:17 - 0000173 _____ () C:\Users\Korisnik\AppData\Local\msmathematics.qat.Korisnik
2013-07-15 22:00 - 2013-07-15 22:00 - 0007597 _____ () C:\Users\Korisnik\AppData\Local\Resmon.ResmonCfg
2015-12-06 16:28 - 2015-12-06 16:28 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-02-04 15:49

==================== End of FRST.txt ============================
mycity.rs/must-login.png

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6061

Pozdrav,

Prvo je potrebno pokusati rucno deinstalirati sledece programe;


VideoPerformer
YTD Video Downloader 4.1





Zatim,



Preuzmi smeenk-ov zoek.zip ili zoek.rar () sa ovog linka i sačuvaj ga na Desktop.

Raspakuj arhivu u neki folder (uputstvo), a zatim:

zatvori browser i ostale pokrenute programe;
privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ;
dvoklikom pokreni zoek na ikonicu programa ;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sledeći tekst:

ipconfig /flushdns >> %temp%\log.txt;b
netsh int ip reset >> %temp%\log.txt;b
ResetIEProxy;
{96f454ea-9d38-474f-b504-56193e00c1a5};c
{00000000-6E41-4FD3-8538-502F5495E5FC};c
{D8278076-BC68-4484-9233-6E7F1628B56C};c
{96f454ea-9d38-474f-b504-56193e00c1a5};c
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F};c
{98889811-442D-49dd-99D7-DC866BE87DBC};c
{D4027C7F-154A-4066-A1AD-4243D8127440};c
{96f454ea-9d38-474f-b504-56193e00c1a5};c
IEDefaults;
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r
"AppInit_DLLs"=-;r
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows];r64
"AppInit_DLLs"=-;r64
CHRDefaults;
cflheckfmhopnialghigdlggahiomebp;chr
giolhomkcooifelkdfpejhidfidaahlc;chr
cflheckfmhopnialghigdlggahiomebp;chr
dgjkhjdcljddbedokogakmmdjgnbeanf;chr
dnllcmllkjofnojidnaknldfehfhehoo;chr
giolhomkcooifelkdfpejhidfidaahlc;chr
kiplfnciaokpcennlkldkdaeaaomamof;chr
EmptyFoldersCheck;Delete
C:\PROGRA~2\SEARCH~1;fs
c:\progra~3\videop~1;fs
C:\Users\Korisnik\AppData\Local\Torch;fs
C:\Windows\System32\Tasks\GoforFilesUpdate;f
C:\Program Files (x86)\GoforFiles;fs
ChromeLook;
Uninstall-List;
EmptyAllTemp;
Reboot;


Klikni na dugme i pričekaj da se skeniranje završi.


zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju.

Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadrzaj tog loga u poruku.

offline
  • Pridružio: 18 Feb 2016
  • Poruke: 10

Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Korisnik on Thu 02/18/2016 at 14:33:36.79.
Microsoft Windows 7 Ultimate 6.1.7600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Korisnik\AppData\Local\Temp\Rar$EXa0.996\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

2/18/2016 2:35:59 PM Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\Conduit deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\Program Files\SSA 2016 deleted successfully
C:\PROGRA~3\Babylon deleted successfully
C:\PROGRA~3\Oracle deleted successfully
C:\Users\Korisnik\AppData\Roaming\File Scout deleted successfully
C:\Users\Korisnik\AppData\Roaming\Media Player Classic deleted successfully
C:\Users\Korisnik\AppData\Roaming\PerformerSoft deleted successfully
C:\Users\Korisnik\AppData\Roaming\Systweak deleted successfully
C:\Users\Korisnik\AppData\Local\Conduit deleted successfully
C:\Users\Korisnik\AppData\Local\MigWiz deleted successfully
C:\Users\Korisnik\AppData\Local\NativeMessaging deleted successfully
C:\Users\Korisnik\AppData\Local\PackageAware deleted successfully
C:\Users\Korisnik\AppData\Local\Unity deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extension Compatibility\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{96f454ea-9d38-474f-b504-56193e00c1a5} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{00000000-6E41-4FD3-8538-502F5495E5FC} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\{D8278076-BC68-4484-9233-6E7F1628B56C} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{96f454ea-9d38-474f-b504-56193e00c1a5} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=-

==== Registry Fix Code x64 ======================

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=-

==== Batch Command(s) Run By Tool======================


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.
Reseting Global, OK!
Reseting Interface, OK!
Restart the computer to complete this action.


==== Deleting Files \ Folders ======================

C:\PROGRA~2\SEARCH~1 not found
c:\progra~3\videop~1 not found
C:\Users\Korisnik\AppData\Local\Torch not found
C:\Program Files (x86)\GoforFiles not found
"C:\windows\SysNative\Tasks\GoforFilesUpdate" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [02/11/2016 12:20 AM]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [02/11/2016 12:20 AM]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"speedanalysis02@SpeedAnalysis.com"="C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com" [04/22/2014 12:09 PM]

==== Firefox Extensions ======================

ExtDir: C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\extensions
- HDvid Codec 3 - %ExtDir%\hdvc3@hdvidcodec.com.xpi

ExtDir: C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions
- Speed Analysis 2 - %ExtDir%\speedanalysis02@SpeedAnalysis.com

==== Firefox Plugins ======================


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
cflheckfmhopnialghigdlggahiomebp - C:\Users\Korisnik\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx[]
dgjkhjdcljddbedokogakmmdjgnbeanf - C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2\speedanalysis.crx[04/17/2013 09:18 PM]
dnllcmllkjofnojidnaknldfehfhehoo - No path found[]
giolhomkcooifelkdfpejhidfidaahlc - C:\Users\Korisnik\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx[]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[02/09/2016 07:40 PM]
kiplfnciaokpcennlkldkdaeaaomamof - C:\Users\Korisnik\AppData\Local\Torch\Plugins\TorchPlugin.crx[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[01/08/2016 10:47 AM]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
cflheckfmhopnialghigdlggahiomebp - C:\Users\Korisnik\AppData\Local\CRE\cflheckfmhopnialghigdlggahiomebp.crx[]
giolhomkcooifelkdfpejhidfidaahlc - C:\Users\Korisnik\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx[]

Media Hint - Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\akipcefbjlmpbcejgdaopmmidpnjlhnb
Skype - Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Chrome Web Store Payments - Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

==== Chromium Fix ======================

C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2\speedanalysis.crx deleted successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/?pc=UP97&ocid=UP97DHP"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="res://ieframe.dll/tabswelcome.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]
"Tabs"="about:newtab"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} - dts.search-results.com/sr?src=ieb&gct=ds&ap.....nrs=AGE&q={searchTerms}
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{656E6E9C-D178-48FF-9432-8687B517F785}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} - dts.search-results.com/sr?src=ieb&gct=ds&ap.....nrs=AGE&q={searchTerms}
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\968CBF979990426497B654B1A71B66CE - www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=0C8318F46AB878CA&affID=119776&tsp=5001
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
HKCU\SearchScopes\{3569FC1B-9441-47C5-8BA5-7A7C8D700299} - websearch.ask.com/redirect?client=ie&tb=SGT&o=APN10374&src=kw&q={searchTerms}&locale=en_US&apn_ptnrs=^AHO&apn_dtid=^YYYYYY^YY^BA&apn_uid=100B573B-CD98-45EC-845D-48101B4D3FA4&apn_sauid=31554984-0667-4A22-8CB3-EBEDAA7C5621
HKCU\SearchScopes\{656E6E9C-D178-48FF-9432-8687B517F785} - search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3289075&CUI=UN23195060884273240&UM=1
HKCU\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} - dts.search-results.com/sr?src=ieb&gct=ds&ap.....nrs=AGE&q={searchTerms}

==== Reset Google Chrome ======================

C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Preferences.bad was reset successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Web Data.protect was reset successfully

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Uninstall List x64 ======================

"Nero SoundTrax Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B96C2601-52F5-4D5D-816A-63469EA311EF}]
ćTorrent [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent]
7-Zip 15.12 (x64) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\7-Zip]
A360 Desktop [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B209E611-5511-4AD6-B4B3-9D36F93DBCD4}]
ACA & MEP 2016 Object Enabler [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F004-0000-5102-0060B0CE6BBA}]
Adobe Reader XI (11.0.14) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-1033-7B44-AB0000000001}]
Adobe Refresh Manager [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AC76BA86-0804-1033-1959-001824166751}]
Adobe Shockwave Player 12.0 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Shockwave Player]
Advertising Center [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}]
ARMA 2 REINFORCEMENTS Uninstall [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ARMA 2 REINFORCEMENTS]
AutoCAD 2007 - English [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-5001-0409-0002-0060B0CE6BBA}]
AutoCAD 2016 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F001-0000-0102-0060B0CE6BBA}]
AutoCAD 2016 Language Pack - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F001-0409-1102-0060B0CE6BBA}]
AutoCAD Architecture 2016 Language Shared - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F004-0409-4102-0060B0CE6BBA}]
AutoCAD Architecture 2016 Shared [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F004-0000-4102-0060B0CE6BBA}]
AutoCAD Civil 3D Matterhorn Private Pack [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F000-0000-3102-0060B0CE6BBA}]
Autodesk App Manager 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}]
Autodesk Application Manager [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk Application Manager]
Autodesk AutoCAD Civil 3D 2016 - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F000-0409-2102-0060B0CE6BBA}]
Autodesk AutoCAD Civil 3D 2016 - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk AutoCAD Civil 3D 2016 - English]
Autodesk AutoCAD Civil 3D 2016 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F000-0000-0102-0060B0CE6BBA}]
Autodesk AutoCAD Civil 3D 2016 32 Bit Object Enabler on Autodesk Storm and Sanitary Analysis 2016 - Language Neutral [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2AD0DEC9-BC97-4A5A-B1AB-B4F4273DFC55}]
Autodesk AutoCAD Civil 3D 2016 Language Pack - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F000-0409-1102-0060B0CE6BBA}]
Autodesk AutoCAD Map 3D 2016 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F002-0000-0102-0060B0CE6BBA}]
Autodesk AutoCAD Map 3D 2016 Language Pack - English [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F002-0409-1102-0060B0CE6BBA}]
Autodesk AutoCAD Performance Feedback Tool 1.2.4 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}]
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4BEE127E-95C4-434D-ABAC-65155192BB24}]
Autodesk Content Service [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F}]
Autodesk Content Service [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk Content Service]
Autodesk Content Service Language Pack [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A37CDB58-AAE8-0001-8C13-E0F7BACB0D5F}]
Autodesk DWF Viewer [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk DWF Viewer]
Autodesk Featured Apps 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}]
Autodesk Material Library 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}]
Autodesk Material Library Base Resolution Image Library 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}]
Autodesk ReCap 2016 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{F6FD1651-0000-1033-0102-387BAF9B3B0A}]
Autodesk ReCap 2016 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk ReCap 2016]
Autodesk Storm and Sanitary Analysis 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5681035C-291C-4BE3-B20E-0F0472834883}]
Autodesk Storm and Sanitary Analysis 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Autodesk Storm and Sanitary Analysis 2016]
Autodesk Storm and Sanitary Analysis 2016 x64 Plug-in [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A225C652-5B4B-433D-8E22-AC0F77C2842E}]
Autodesk Subassembly Composer on Autodesk AutoCAD Civil 3D 2016 - English - English (United States) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D6D5FA3C-7099-430C-BE42-7F8FA62E30AC}]
Avast Free Antivirus [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\avast]
BattlEye for OA Uninstall [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BattlEye for OA]
CCleaner [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\CCleaner]
DAEMON Tools Lite [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DAEMON Tools Lite]
DolbyFiles [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{56BE5CC9-95E6-4128-ABEA-968414CA9C80}]
eDrawings 2003 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1E66149C-A319-46B4-9F38-9D13554EE7D2}]
Facebook Video Calling 3.1.0.521 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2091F234-EB58-4B80-8C96-8EB78C808CF7}]
FARO LS 1.1.502.0 (64bit) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{66D83FE0-D798-4B38-86FE-FB48151E5AEF}]
Football Manager 2013 version 13.3.3 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{04BDADD5-B981-49DB-90F0-DE11F19C50B4}_is1]
Google Chrome [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Google Chrome]
Google Update Helper [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}]
Google Update Helper [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}]
Hewlett-Packard ACLM.NET v1.2.1.1 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6F340107-F9AA-47C6-B54C-C3A19F11553F}]
HP Customer Experience Enhancements [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{07FA4960-B038-49EB-891B-9F95930AA544}]
HP Software Framework [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{97174E88-52F9-445A-A28E-704A45332D19}]
HP Support Assistant [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}]
ImagXpress [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}]
Intel(R) Management Engine Components [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}]
Intel(R) Rapid Storage Technology [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}]
Intel(R) Turbo Boost Technology Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}]
K-Lite Codec Pack 6.6.0 (Standard) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\KLiteCodecPack_is1]
LightScribe System Software 1.14.17.1 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0E7DBD52-B097-4F2B-A7C7-F105B0D20FDB}]
Macromedia Flash Player 8 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ShockwaveFlash]
Menu Templates - Starter Kit [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C99C89A3-119A-45E6-B26E-DD5643CAA0C5}]
Microsoft .NET Framework 4.5 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}]
Microsoft .NET Framework 4.5 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033]
Microsoft Mathematics (64-bit) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E57B7E0A-8BE5-42E2-BE60-C07ED680A063}]
Microsoft Office Enterprise 2007 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ENTERPRISE]
Microsoft SQL Server Compact 4.0 SP1 x64 ENU [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{78909610-D229-459C-A936-25D92283D3FD}]
Microsoft Visual Basic PowerPacks 10.0 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}]
Microsoft Visual C++ 2005 Redistributable (x64) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}]
Microsoft Visual C++ 2005 Redistributable [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8220EEFE-38CD-377E-8595-13398D740ACE}]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}]
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}]
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9BE518E6-ECC6-35A9-88E4-87755C07200F}]
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}]
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}]
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}]
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{95716cce-fc71-413f-8ad5-56c2892d4b3a}]
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}]
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{37B8F9C7-03FB-3253-8781-2517C99D7C00}]
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}]
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B175520C-86A2-35A7-8619-86DC379688B9}]
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}]
Microsoft_VC80_CRT_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}]
Microsoft_VC90_CRT_x86 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{08D2E121-7F6A-43EB-97FD-629B44903403}]
Movie Templates - Starter Kit [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{BCD82AB5-670D-4242-90FA-1F97103C16CD}]
MSXML 4.0 SP2 (KB954430) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}]
MSXML 4.0 SP2 (KB973688) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}]
Nero 9 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{caef12a9-62d6-46b3-8a98-96fe3506360a}]
Nero BurningROM [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{11A84FCA-C3C7-4AFD-A797-111DB8569DBC}]
Nero BurnRights [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{12345674-DE9A-677A-CCEE-666356D89777}]
Nero BurnRights [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA9FFE54-D8B1-11DC-92EF-E98356D81493}]
Nero ControlCenter [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}]
Nero ControlCenter [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}]
Nero CoverDesigner [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A8399F58-234A-48C6-BA55-30C15738BF3C}]
Nero CoverDesigner Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4D42353B-533F-4306-AD0B-7FEF292ADE04}]
Nero Disc Copy Gadget [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E4A8DD87-A746-4443-BF25-CAF99CED6767}]
Nero Disc Copy Gadget Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3F30CC51-0788-487B-AA83-7214A239C0C0}]
Nero DiscSpeed [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{78523651-D8B1-11DC-CCEE-741589645873}]
Nero DiscSpeed [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AABBCC54-D8B1-11DC-92EF-E98356D81493}]
Nero DriveSpeed [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{75321954-2589-11DC-DDCC-E98356D81493}]
Nero DriveSpeed [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{753973C4-B961-43BF-B2D4-3C8C92F7216E}]
Nero Express [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{943CC0C0-2253-4FE0-9493-DD386F7857FD}]
Nero InfoTool [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1122AAC4-AAAA-43BF-B2D4-3C8C12378952}]
Nero InfoTool [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{AAA12554-2589-11DC-92EF-E98356D81493}]
Nero Installer [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{961D53EA-40DC-4156-AD74-25684CE05F81}]
Nero Live [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5C9BB0B3-E830-4814-BBA4-D93535E1C7B9}]
Nero Live Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5A62A775-A29A-4CE1-BBC2-4A9CD0B211EF}]
Nero PhotoSnap [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{548F99E0-14CC-4D53-A7D6-4A62A5F2C748}]
Nero PhotoSnap Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5C42EAB8-54F9-423A-948C-1CBEF25F8DB4}]
Nero Recode [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{07FF7593-9DEA-40B5-9F87-F557E65BBF60}]
Nero Recode Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0711500B-9912-4D60-9A49-C577B4503D42}]
Nero Rescue Agent [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CD1826A5-CFCC-4C6E-9F9D-E181876162EA}]
Nero RescueAgent Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5C2E8A0F-80E2-4C68-8CC0-D8D16E7196BF}]
Nero ShowTime [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8C654BD0-1949-43DE-84F2-EC2A1ABB0CB4}]
Nero ShowTime [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{948FFAAE-C57F-447B-9B07-3721E950BFDC}]
Nero StartSmart [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2D3455A8-3B15-41A8-99F8-0D4215746463}]
Nero StartSmart Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D7C206B6-1A63-4389-A8B1-8F607D0BFF1F}]
Nero Vision [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5AE12194-3EAA-40DF-B2BF-FE1D6B78BBF4}]
Nero Vision [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F53F6769-AC46-49E3-ABE3-2C8AFD39D0DD}]
Nero WaveEditor [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B2C12C8D-65DC-40BD-B309-5ADB0C6C8D8F}]
Nero WaveEditor Help [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E86156E5-9859-440D-8876-26CED1349802}]
NeroBurningROM [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1B040683-C390-4711-ABC7-DA8D85E470E7}]
NeroExpress [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A73BEC3C-40A0-480E-87EF-EFCD33629088}]
neroxml [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{56C049BE-79E9-4502-BEA7-9754A3E60F9B}]
Netflix in Windows Media Center [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0CA72D12-F6C6-4D43-A2A0-41F5AA17E2B6}]
PDF Report Writer (novaPDF 6.4 printer) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\PDF Report Writer_is1]
PDF24 Creator 7.6.2 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1]
Pro Evolution Soccer 2010 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}]
Ralink RT5390 802.11b/g/n WiFi Adapter [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}]
RAR Password Unlocker 4.2.0.0 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B789FA51-6A71-408F-92DE-EDE4A517B8F9}_is1]
Realtek High Definition Audio Driver [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}]
Realtek USB 2.0 Card Reader [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{96AE7E41-E34E-47D0-AC07-1091A8127911}]
SketchUp Import 2016 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}]
Skype Click to Call [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}]
SkypeT 6.16 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}]
SolidWorks 2003 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{606D713B-B60C-11D6-A47A-00B0D03E4223}]
Sony Ericsson PC Companion 1.60.13 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}]
SoundTrax [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{3097B151-1F61-4211-A4CC-D70127B226AE}]
swMSM [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{612C34C7-5E90-47D8-9B5C-0F717DD82726}]
Synaptics Pointing Device Driver [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\SynTPDeinstKey]
TeamViewer 6 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\TeamViewer 6]
VBA (2720) [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{41844F24-9CA6-11D4-A74E-00D0B76FE248}]
Winamp [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Winamp]
Winamp Detector Plug-in [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Winamp Detect]
WinRAR [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinRAR]
WinRAR 4.20 (64-bit) [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\WinRAR archiver]

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\giolhomkcooifelkdfpejhidfidaahlc deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\giolhomkcooifelkdfpejhidfidaahlc deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\dnllcmllkjofnojidnaknldfehfhehoo deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=4 folders=0 86873 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Korisnik\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Korisnik\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on Thu 02/18/2016 at 14:43:25.30 ======================

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6061

Dobro, idemo dalje...


Ponovo pokreni Zoek, na isti nacin kao sto si to malopre uradio, ali ovaj put iskopiraj ovaj script;


C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2;fs
C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com;f
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions];r
"speedanalysis02@SpeedAnalysis.com"=-;r
hdvc3@hdvidcodec.com.xpi;ff
speedanalysis02@SpeedAnalysis.com;ff
C:\Users\Korisnik\AppData\Local\Torch;fs
{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001};c
968CBF979990426497B654B1A71B66CE;c
{3569FC1B-9441-47C5-8BA5-7A7C8D700299};c
{656E6E9C-D178-48FF-9432-8687B517F785};c
{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001};c
AutoClean;
Reboot;



Izvrsi ga na RunScript i kada alat zavrsi rad (restartovace sistem) postavi mi sveze formiran zoek izvestaj na uvid.

offline
  • Pridružio: 18 Feb 2016
  • Poruke: 10

Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Korisnik on Thu 02/18/2016 at 19:47:10.30.
Microsoft Windows 7 Ultimate 6.1.7600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Korisnik\AppData\Local\Temp\Rar$DIa0.872\zoek.com [Scan all users] [Script inserted]

==== Older Logs ======================

C:\zoek-results2016-02-18-134325.log 36540 bytes

==== Empty Folders Check ======================

C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2 deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\SearchScopes\968CBF979990426497B654B1A71B66CE deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\SearchScopes\{3569FC1B-9441-47C5-8BA5-7A7C8D700299} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\SearchScopes\{656E6E9C-D178-48FF-9432-8687B517F785} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2F8A54F6-BFD7-41B6-8A8A-41D5F6ED38B1} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8ADD498D-A947-4E6C-82CC-BFC6F03B93FD} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E75D3AA-F4D6-4C6E-8132-A3CF8CFB9E77} deleted successfully
HKEY_USERS\S-1-5-21-3207635917-3077674048-3272829710-1000\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F739D019-D913-4F75-88C9-9AF518391F5A} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

ProfilePath: C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

---- FireFox user.js and prefs.js backups ----

user_20160218_0812_.backup
prefs_20160218_0812_.backup

==== Registry Fix Code ======================

Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"speedanalysis02@SpeedAnalysis.com"=-

==== Deleting Files \ Folders ======================

C:\Users\Korisnik\AppData\Roaming\SpeedAnalysis2 not found
C:\Users\Korisnik\AppData\Local\Torch not found
C:\Users\Korisnik\AppData\LocalLow\uTorrentControl_v6 deleted
C:\PROGRA~2\Driver-Soft deleted
C:\PROGRA~2\globalUpdate deleted
C:\Users\Korisnik\AppData\Roaming\speedanalysis.ico deleted
C:\Users\Korisnik\AppData\Roaming\GoforFiles deleted
C:\Users\Korisnik\AppData\Roaming\Babylon deleted
C:\Users\Korisnik\AppData\Roaming\SearchProtect deleted
C:\PROGRA~3\Ask deleted
C:\PROGRA~3\APN deleted
C:\PROGRA~3\DSearchLink deleted
C:\PROGRA~3\IBUpdaterService deleted
C:\PROGRA~3\InstallMate deleted
C:\PROGRA~3\Tarma Installer deleted
C:\PROGRA~3\DriverGenius deleted
C:\PROGRA~3\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF} deleted
C:\PROGRA~3\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} deleted
C:\PROGRA~3\Package Cache deleted
C:\PROGRA~3\Trymedia deleted
C:\Users\Korisnik\AppData\Local\WhiteListing deleted
C:\Users\Korisnik\AppData\Local\globalUpdate deleted
C:\Windows\SysNative\roboot64.exe deleted
C:\Users\Korisnik\AppData\LocalLow\BabylonToolbar deleted
C:\Users\Korisnik\AppData\LocalLow\Unity deleted
C:\Users\Korisnik\AppData\LocalLow\searchresultstb deleted
C:\Users\Korisnik\AppData\LocalLow\Conduit deleted
C:\windows\SysNative\drivers\{2635ac50-5488-40bf-9bfd-accb158f8f3f}w64.sys deleted
C:\Windows\Syswow64\tmp897E.tmp deleted
C:\Windows\Syswow64\tmp89CD.tmp deleted
C:\Windows\Syswow64\tmpA62E.tmp deleted
C:\Windows\Syswow64\tmpA66D.tmp deleted
C:\Windows\Syswow64\tmpBE6F.tmp deleted
C:\Windows\SysWow64\searchplugins deleted
C:\Windows\SysWow64\Extensions deleted
C:\Users\Korisnik\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com deleted
"C:\Windows\Installer\157926c.msi" deleted
"C:\Windows\Installer\1579301.msi" deleted
"C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\hdvc3@hdvidcodec.com.xpi" deleted
"C:\Users\Korisnik\AppData\Roaming\OpenCandy" deleted
"C:\Users\Korisnik\AppData\Local\APN" deleted
"C:\Users\Korisnik\AppData\Local\CrashRpt" deleted

==== Orphaned Tasks deleted from Registry ======================

avast Emergency Update deleted
GoforFilesUpdate deleted
Software Removal Tool post reboot run deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [02/11/2016 12:20 AM]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [02/11/2016 12:20 AM]

==== Firefox Extensions ======================

==== Firefox Plugins ======================


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[02/09/2016 07:40 PM]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[01/08/2016 10:47 AM]

Avast Online Security - Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Skype - Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{656E6E9C-D178-48FF-9432-8687B517F785}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
HKCU\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\speedanalysis02@SpeedAnalysis.com deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\7D2F3875400F0000152000060BECB6AB deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\9CED0DA279CBA5A41BBA4B4F72D3CF55 deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5783F2D7-F004-0000-5102-0060B0CE6BBA} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2AD0DEC9-BC97-4A5A-B1AB-B4F4273DFC55} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\7D2F3875400F0000152000060BECB6AB deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\9CED0DA279CBA5A41BBA4B4F72D3CF55 deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Korisnik\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0IXGC7BS will be deleted at reboot
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\31DSUKT3 will be deleted at reboot
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GWNETBIG will be deleted at reboot
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z3LWDAK1 will be deleted at reboot
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=237 folders=77 368173423 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Korisnik\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Korisnik\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found
"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\index.dat" not found
"C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted
"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0IXGC7BS" not found
"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\31DSUKT3" not found
"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\GWNETBIG" not found
"C:\Users\Korisnik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z3LWDAK1" not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on Thu 02/18/2016 at 20:25:08.45 ======================

offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6061

Ovo sada izgleda mnogo bolje. Idemo na jos jednu proveru, da potucemo ostatke ako ih bude bilo pa da i zavrsavamo ako bude sve u redu ...




Preuzmi ZHPDiag3 sa ovog linka i sacuvaj installer na Desktop:
klik na plavo "Download" dugme zapocinje preuzimanje programa

Dvoklikom na ZHPDiag3, potom klikni na I Agree i aplikacija ce biti pokrenuta;
Klikni na Scanner dugme i alat zapocinje analizu i skeniranje sistema. Pricekati dok alat ne zavrsi;
Kada alat zavrsi, formirace ZHPDiag.txt izvestaj na Desktop-u koji je potrebno prikaciti uz poruku koristeci Prikači fajl;

offline
  • Pridružio: 18 Feb 2016
  • Poruke: 10

Postovani, nakon skeniranja mi izbaci gresku tako da ne mogu da sacuvam fajl i da ga okacim u poruci.


offline
  • magna86  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 21 Jun 2008
  • Poruke: 6061

Da, hvala na prijavi. Prosledicu gresku autoru programa, u pitanju je greska u kodu.


Nista onda, postavi mi ponovo svez FRST.txt izvestaj. Ponovo pokreni FRST alat, lupi Scan dugme i kada zavrsi, iskopiraj mi sveze formiraj izvestaj na uvid.

Ko je trenutno na forumu
 

Ukupno su 1180 korisnika na forumu :: 35 registrovanih, 5 sakrivenih i 1140 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 1798 - dana 19 Sep 2019 18:42

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: A.R.Chafee.Jr., amaterSRB, Bane san, blake, Buzdovan, calvi, celik, cole77, d bos, darcaud, Dorcolac, Eyes Wide Shut, Futurama, Georgius, ILGromovnik, knell, Koca Popovic, Kubovac, luka1978, Marko Marković, Mercury2, Milan A. Nikolic, Nebo_M, NenadG, radoznao2, SsssssNOVI, stug, suton2, Toni, versus2, VJ, Vlada78, vukdra, xandar, YU-UKI