Nemoze da se izbrise

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Napisano: 01 Feb 2016 17:10

Neznam kako je dospeo u racunar i neznam ni sta je ali nemogu da ga uklonim. Nemogu nigde da ga nadjem da bi ga uklonio. Nema ga ni u program fajlsu ni u kontrol panelu ni u revo instaleru. Problem se pojavio juce posto sam reinstalirao sistem i najverovatnije prilikom instalacije programa sa ninite sajta. Sistem mi je WIN7 32 bita , a internet konekcija Telekom. Evo kako izgleda uljez


Dopuna: 01 Feb 2016 17:19

tacija ::Neznam kako je dospeo u racunar i neznam ni sta je ali nemogu da ga uklonim. Nemogu nigde da ga nadjem da bi ga uklonio. Nema ga ni u program fajlsu ni u kontrol panelu ni u revo instaleru. Problem se pojavio juce posto sam reinstalirao sistem i najverovatnije prilikom instalacije programa sa ninite sajta. Sistem mi je WIN7 32 bita , a internet konekcija Telekom. Evo kako izgleda uljez




Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:27-01-2016
Ran by miroslav (administrator) on MIROSLAV-PC (01-02-2016 17:13:32)
Running from C:\Users\miroslav\Desktop
Loaded Profiles: miroslav (Available Profiles: miroslav)
Platform: Microsoft Windows 7 Ultimate (X86) Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Tencent) C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQPCRTP.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(RaMMicHaeL) C:\Program Files\Unchecky\bin\unchecky_svc.exe
(RaMMicHaeL) C:\Program Files\Unchecky\bin\unchecky_bg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Leadtek Research Inc.) C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Logitech Inc.) C:\Program Files\Logitech\Logitech Vid\Vid.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(MyCity) C:\Program Files\MCShield\MCShieldRTM.exe
(Leadtek Research Inc.) C:\Program Files\WinFast\WFDTV\WFWIZ.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files\RocketDock\RocketDock.exe
() C:\Program Files\Common Files\logishrd\LQCVFX\COCIManager.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10996368 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [ QQPCTray] => C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQPCTRAY.EXE [355296 2016-01-31] (Tencent)
HKLM\...\Run: [WinFastDTV] => C:\Program Files\WinFast\WFDTV\DTVSchdl.exe [101888 2012-04-05] (Leadtek Research Inc.)
HKLM\...\Run: [ArcSoft Connection Service] => C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207360 2010-03-18] (ArcSoft Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKU\S-1-5-21-1981283564-2037280381-1702048796-1000\...\Run: [Logitech Vid] => C:\Program Files\Logitech\Logitech Vid\vid.exe [5458704 2009-07-16] (Logitech Inc.)
HKU\S-1-5-21-1981283564-2037280381-1702048796-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [50615936 2016-01-18] (Skype Technologies S.A.)
HKU\S-1-5-21-1981283564-2037280381-1702048796-1000\...\Run: [MCShield Monitor] => C:\Program Files\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity)
HKU\S-1-5-21-1981283564-2037280381-1702048796-1000\...\Run: [WinFast Schedule] => C:\Program Files\WinFast\WFDTV\WFWIZ.exe [2920448 2012-03-02] (Leadtek Research Inc.)
HKU\S-1-5-21-1981283564-2037280381-1702048796-1000\...\Run: [RocketDock] => C:\Program Files\RocketDock\RocketDock.exe [495616 2007-09-02] ()
Startup: C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk [2016-01-31]
ShortcutTarget: Logitech . Product Registration.lnk -> C:\Program Files\Logitech\Logitech WebCam Software\eReg.exe (Leader Technologies/Logitech)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BA71F0F3-684F-4933-AC36-9D962FAA543E}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================

FireFox:
========
FF ProfilePath: C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default
FF Homepage: hxxp://www.google.com/
FF Session Restore: -> is enabled.
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-12-19] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-12-19] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2016-01-31] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2016-01-31] (Google Inc.)
FF Extension: RightToClick - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\extensions\{cd617375-6743-4ee8-bac4-fbf10f35729e}.xpi [2016-01-31]
FF Extension: WOT - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2016-01-31]
FF Extension: X-notifier - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2016-01-31]
FF Extension: FlashGot - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-01-31]
FF Extension: S3.Google Translator - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\extensions\s3google@translator.xpi [2016-01-31]
FF Extension: ProxMate - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\Extensions\jid1-QpHD8URtZWJC2A@jetpack.xpi [2016-01-31]
FF Extension: Adblock Plus - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-31]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.claro-search.com/?affID=117452&tt=4812_7&babsrc=HP_ss&mntrId=9c787c4a000000000000001fd05f9e25","hxxp://isearch.avg.com/?cid={29BC7CDB-729D-4483-B773-73CA6F4BD511}&mid=c994f77a538f47d0bf44d145283988b0-b602d594afd2b0b327e07a06f36ca6a7e42546d0&lang=en&ds=AVG&pr=fr&d=2013-01-31 12:31:18&v=14.0.0.14&pid=avg&sg=&sap=hp","hxxp://websearch.webisgreat.info/?pid=1091&r=2014/02/17&hid=2250913263268509384&lg=EN&cc=RS&unqvl=48","hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=2D6018F6F4FA8F14A0A6FEC1F9FF1FAC&v=20160121&ts=AHEpB38kBX8rCE.."
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-31]
CHR Extension: (Google Docs) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-31]
CHR Extension: (Google Drive) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-31]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2016-01-31]
CHR Extension: (YouTube) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-31]
CHR Extension: (Google Search) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-31]
CHR Extension: (Gmail Offline) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2016-01-31]
CHR Extension: (Google Sheets) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-31]
CHR Extension: (Google Docs Offline) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-01-31]
CHR Extension: (Onlive Clock) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\moddbcckaikhdnigidfcmaeelcobchpm [2016-01-31]
CHR Extension: (Chrome Web Store Payments) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-01-31]
CHR Extension: (电脑管家上网防护) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooebklgpfnbcnpokahmdidgbmlcdepkm [2016-01-31]
CHR Extension: (Gmail) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-31]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14658848 2013-12-10] (NVIDIA Corporation)
R2 QQPCRTP; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQPCRTP.exe [301728 2016-01-31] (Tencent)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH)
R2 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2004-12-13] (Ulead Systems, Inc.) [File not signed]
R2 Unchecky; C:\Program Files\Unchecky\bin\Unchecky_svc.exe [160208 2016-01-31] (RaMMicHaeL) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)
S2 ueoatj; C:\Users\miroslav\AppData\Local\Transfase.exe mrodmct ueoatj [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [49152 2004-10-18] (DeviceGuys, Inc.) [File not signed]
S3 DSDrv4; C:\Program Files\DScaler\DSDrv4.sys [20128 2012-04-02] ()
R3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2Mon.sys [25752 2009-10-07] ()
R3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2013-12-05] (NVIDIA Corporation)
R3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
R3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
R1 QMIEProtect; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QMIEProtect.sys [50488 2016-01-12] ()
R1 QMUdisk; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QMUdisk.sys [62392 2016-01-31] (Tencent)
R2 QQSysMon; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQSysMon.sys [108984 2016-01-31] (电脑管家)
R3 TAOAccelerator; C:\Windows\system32\Drivers\TAOAccelerator.sys [82008 2016-01-31] (Tencent)
R1 TAOKernelDriver; C:\Windows\System32\Drivers\TAOKernel.sys [138552 2016-01-31] (Tencent Technology(Shenzhen) Company Limited)
R1 TFsFlt; C:\Windows\System32\Drivers\TFsFlt.sys [150072 2016-01-31] (电脑管家)
R3 TS888; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TS888.sys [30392 2016-02-01] (Tencent)
R1 TSDefenseBt; C:\Windows\System32\DRIVERS\TSDefenseBt.sys [14008 2016-01-31] (Tencent)
R0 TsFltMgr; C:\Windows\System32\drivers\TsFltMgr.sys [128280 2016-01-14] (电脑管家)
R1 TSKSP; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TSKsp.sys [210072 2016-01-31] (电脑管家)
R1 TSSysKit; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TSSysKit.sys [101560 2016-01-31] (电脑管家)
R3 ULCDRHlp; C:\Windows\System32\Drivers\ULCDRHlp.sys [27392 2004-12-23] (Ulead Systems, Inc.) [File not signed]
R3 USB28xxBGA; C:\Windows\System32\DRIVERS\emBDA.sys [561920 2008-11-19] (eMPIA Technology, Inc.)
R3 USB28xxOEM; C:\Windows\System32\DRIVERS\emOEM.sys [455168 2008-11-19] (eMPIA Technology, Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-01 17:13 - 2016-02-01 17:14 - 00014558 _____ C:\Users\miroslav\Desktop\FRST.txt
2016-02-01 17:13 - 2016-02-01 17:13 - 00000000 ____D C:\FRST
2016-02-01 17:11 - 2016-02-01 17:11 - 00000000 ____D C:\Program Files\SearchesToYesbnd
2016-02-01 17:02 - 2016-02-01 17:03 - 01721856 _____ (Farbar) C:\Users\miroslav\Desktop\FRST.exe
2016-02-01 16:58 - 2016-02-01 16:58 - 00030392 _____ (Tencent) C:\Windows\system32\Drivers\TS888.sys
2016-02-01 16:55 - 2016-02-01 16:55 - 00011498 _____ C:\Users\miroslav\Desktop\mb.txt
2016-02-01 16:11 - 2016-02-01 16:11 - 00002601 _____ C:\Users\miroslav\Desktop\WakeNet Pixel Manager.lnk
2016-02-01 16:08 - 2016-02-01 16:08 - 00001064 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-02-01 12:14 - 2016-02-01 12:14 - 00000000 ____D C:\Users\miroslav\AppData\Local\ArcSoft
2016-02-01 11:55 - 2016-02-01 11:57 - 00000000 ____D C:\Users\miroslav\Documents\Fax
2016-02-01 11:55 - 2016-02-01 11:55 - 00000000 ___RD C:\Users\miroslav\Documents\Scanned Documents
2016-02-01 11:46 - 2016-02-01 12:03 - 00000000 ____D C:\Users\miroslav\Documents\FinePrint files
2016-02-01 11:46 - 2016-02-01 11:46 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FinePrint
2016-02-01 11:46 - 2014-08-28 16:10 - 00492248 ____N (FinePrint Software, LLC) C:\Windows\system32\fpres832.dll
2016-02-01 11:46 - 2014-08-28 16:10 - 00453336 ____N (FinePrint Software, LLC) C:\Windows\system32\fpmon8.dll
2016-02-01 11:41 - 2016-02-01 11:41 - 01267506 ____N C:\Users\miroslav\Documents\Full page photo.tif
2016-02-01 10:43 - 2016-02-01 10:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-02-01 10:42 - 2016-02-01 11:18 - 00000000 ____D C:\Users\miroslav\AppData\Local\NVIDIA
2016-02-01 10:42 - 2016-02-01 10:42 - 00000000 ____D C:\Program Files\AGEIA Technologies
2016-02-01 10:40 - 2016-02-01 16:57 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-01 10:40 - 2013-12-19 19:37 - 04317984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-02-01 10:40 - 2013-12-19 19:37 - 03036960 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2016-02-01 10:40 - 2013-12-19 19:37 - 00664352 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-02-01 10:40 - 2013-12-19 19:37 - 00376096 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-02-01 10:40 - 2013-12-19 19:37 - 00062752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-02-01 10:39 - 2016-02-01 11:18 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-02-01 10:39 - 2013-12-19 21:26 - 00053024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-02-01 10:32 - 2009-11-25 20:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2016-02-01 10:32 - 2009-11-25 20:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2016-02-01 10:32 - 2009-11-25 20:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2016-02-01 10:32 - 2009-11-25 20:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2016-02-01 10:32 - 2009-11-25 20:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2016-02-01 10:30 - 2013-12-05 09:42 - 00034080 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad32v.sys
2016-02-01 10:30 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap32v.dll
2016-02-01 10:29 - 2016-02-01 10:43 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-02-01 10:29 - 2013-12-19 21:26 - 22960416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 17560352 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 10471712 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-02-01 10:29 - 2013-12-19 21:26 - 09700224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 09657464 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 02947872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 02747680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 02698272 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 01049888 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3233221.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 00893728 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3233221.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 00852768 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 00847648 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 00018439 _____ C:\Windows\system32\nvinfo.pb
2016-02-01 10:28 - 2016-02-01 10:28 - 00000000 ____D C:\NVIDIA
2016-02-01 09:41 - 2016-02-01 09:47 - 00000000 ____D C:\Windows\system32\MRT
2016-02-01 09:41 - 2016-02-01 09:41 - 141317472 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-01 09:36 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-02-01 09:34 - 2016-02-01 14:26 - 00000000 ___RD C:\Users\miroslav\Desktop\Gluposti sa fejsa
2016-01-31 19:54 - 2016-01-31 03:19 - 00138552 _____ (Tencent Technology(Shenzhen) Company Limited) C:\Windows\system32\Drivers\TAOKernel.sys
2016-01-31 19:53 - 2016-01-31 19:54 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Tencent
2016-01-31 19:53 - 2016-01-31 19:53 - 00000000 ____D C:\Program Files\Common Files\Tencent
2016-01-31 19:53 - 2016-01-31 03:19 - 00082008 _____ (Tencent) C:\Windows\system32\Drivers\TAOAccelerator.sys
2016-01-31 19:50 - 2016-01-31 19:50 - 00000000 ____D C:\ProgramData\TXQMPC
2016-01-31 18:49 - 2016-01-31 18:49 - 00000000 ____D C:\Users\miroslav\Impostazioni locali
2016-01-31 17:55 - 2016-01-31 19:33 - 00000000 ___RD C:\Users\miroslav\Desktop\video
2016-01-31 17:40 - 2016-01-31 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
2016-01-31 17:40 - 2016-01-31 17:40 - 00000000 ____D C:\Program Files\RocketDock
2016-01-31 17:01 - 2016-01-31 17:01 - 00000000 ____D C:\Users\miroslav\AppData\Local\Stardock
2016-01-31 16:52 - 2016-01-31 19:43 - 00000000 ____D C:\Users\miroslav\AppData\Local\HWiNFOMonitor
2016-01-31 16:51 - 2016-01-31 16:58 - 00000000 ____D C:\Users\miroslav\AppData\Local\Mozilla
2016-01-31 16:51 - 2016-01-31 16:52 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Mozilla
2016-01-31 16:51 - 2016-01-31 16:51 - 00001121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-01-31 16:50 - 2016-01-31 16:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-01-31 16:50 - 2016-01-31 16:51 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-01-31 14:33 - 2016-01-31 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
2016-01-31 14:30 - 2016-01-31 14:30 - 00000000 ____D C:\Users\miroslav\Documents\WFRCConfig
2016-01-31 14:30 - 2004-12-23 17:27 - 00027392 _____ (Ulead Systems, Inc.) C:\Windows\system32\Drivers\ULCDRHlp.sys
2016-01-31 14:29 - 2016-01-31 14:30 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinFast PVR2
2016-01-31 14:29 - 2016-01-31 14:29 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\InstallShield Installation Information
2016-01-31 13:25 - 2016-01-31 13:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
2016-01-31 13:25 - 2016-01-31 13:25 - 00000000 ____D C:\Program Files\Your Uninstaller! 7
2016-01-31 13:21 - 2016-01-31 13:21 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-01-31 13:11 - 2016-02-01 10:27 - 00000000 ____D C:\ProgramData\TEMP
2016-01-31 13:11 - 2016-01-31 13:11 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\URSoft
2016-01-31 12:48 - 2016-01-31 12:48 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Opera Software
2016-01-31 12:48 - 2016-01-31 12:48 - 00000000 ____D C:\Users\miroslav\AppData\Local\Opera Software
2016-01-31 12:46 - 2016-01-31 13:17 - 00000000 ____D C:\Users\miroslav\AppData\Local\CleanBrowserApp
2016-01-31 12:42 - 2016-01-31 12:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DScaler
2016-01-31 12:42 - 2016-01-31 12:42 - 00000000 ____D C:\Program Files\DScaler
2016-01-31 12:25 - 2016-01-31 14:18 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\DScaler4
2016-01-31 12:09 - 2016-02-01 12:14 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\ArcSoft
2016-01-31 12:08 - 2016-01-31 12:09 - 00000000 ____D C:\ProgramData\ArcSoft
2016-01-31 12:08 - 2016-01-31 12:08 - 00000000 ____D C:\Program Files\Common Files\Ulead Systems
2016-01-31 12:08 - 2016-01-31 12:08 - 00000000 ____D C:\Program Files\Common Files\ArcSoft
2016-01-31 12:08 - 2005-07-16 02:35 - 00245408 _____ (Microsoft Corporation) C:\Windows\system32\unicows.dll
2016-01-31 12:07 - 2016-01-31 14:30 - 00000000 ____D C:\Program Files\WinFast
2016-01-31 12:07 - 2016-01-31 12:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinFast PVR2
2016-01-31 12:06 - 2016-01-31 12:07 - 00000000 ____D C:\Windows\system32\WinFast
2016-01-31 12:06 - 2008-11-19 07:59 - 00561920 _____ (eMPIA Technology, Inc.) C:\Windows\system32\Drivers\emBDA.sys
2016-01-31 12:06 - 2008-11-19 07:59 - 00455168 _____ (eMPIA Technology, Inc.) C:\Windows\system32\Drivers\emOEM.sys
2016-01-31 12:06 - 2008-11-19 07:59 - 00126464 _____ (eMPIA Technology, Inc.) C:\Windows\system32\emPRP.ax
2016-01-31 12:06 - 2007-11-08 02:07 - 00065536 _____ (eMPIA Technology, Inc.) C:\Windows\emMON.exe
2016-01-31 12:06 - 2006-11-09 21:50 - 00016382 _____ C:\Windows\system32\Drivers\merlinC.rom
2016-01-31 12:04 - 2016-01-31 12:04 - 00000376 _____ C:\Windows\ODBC.INI
2016-01-31 12:03 - 2016-01-31 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-01-31 12:03 - 2007-04-09 13:23 - 00028040 _____ (Microsoft Corporation) C:\Windows\system32\mdimon.dll
2016-01-31 12:02 - 2016-01-31 12:02 - 00000000 ____D C:\Windows\PCHEALTH
2016-01-31 12:02 - 2016-01-31 12:02 - 00000000 ____D C:\Program Files\Microsoft Office
2016-01-31 12:02 - 2016-01-31 12:02 - 00000000 ____D C:\Program Files\Microsoft ActiveSync
2016-01-31 12:02 - 2016-01-31 12:02 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-01-31 11:29 - 2016-01-31 11:29 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\TeraCopy
2016-01-31 11:28 - 2016-01-31 11:28 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\WinRAR
2016-01-31 10:49 - 2016-01-31 10:49 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-01-31 10:49 - 2016-01-31 10:49 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-01-31 10:45 - 2016-01-31 12:48 - 00157184 ____H C:\Windows\system32\mlfcache.dat
2016-01-31 10:44 - 2016-01-31 01:57 - 00000000 ____D C:\Windows\Panther
2016-01-31 10:44 - 2015-12-28 16:38 - 00074040 ____N (电脑管家) C:\Windows\system32\TSSK.sys
2016-01-31 10:43 - 2016-01-31 03:19 - 00014008 ____N (Tencent) C:\Windows\system32\Drivers\TSDefenseBt.sys
2016-01-31 03:19 - 2016-01-31 03:19 - 00150072 ____N (电脑管家) C:\Windows\system32\Drivers\TFsFlt.sys
2016-01-31 03:19 - 2016-01-14 10:47 - 00128280 ____N (电脑管家) C:\Windows\system32\Drivers\TsFltMgr.sys
2016-01-31 03:18 - 2016-01-31 19:51 - 00000000 ____D C:\ProgramData\Tencent
2016-01-31 03:18 - 2016-01-31 03:18 - 00000000 ____D C:\Program Files\Tencent
2016-01-31 03:16 - 2016-02-01 16:09 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-01-31 03:16 - 2016-02-01 16:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-01-31 03:16 - 2016-01-31 03:13 - 00002136 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-01-31 03:15 - 2016-02-01 16:08 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-01-31 03:15 - 2016-01-31 03:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-01-31 03:15 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-01-31 03:15 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-01-31 03:15 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-01-31 03:14 - 2016-01-31 03:14 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SevenZip 9.20
2016-01-31 03:14 - 2016-01-31 03:14 - 00000000 ____D C:\Program Files\SevenZip
2016-01-31 03:11 - 2016-01-31 03:12 - 00000000 ____D C:\Users\miroslav\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-01-31 03:11 - 2016-01-31 03:11 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-01-31 03:11 - 2016-01-31 03:11 - 00000000 ____D C:\Program Files\WinTaske
2016-01-31 03:09 - 2016-01-31 03:09 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portable Programs
2016-01-31 03:09 - 2016-01-31 03:09 - 00000000 ____D C:\Users\miroslav\AppData\Local\VS Revo Group
2016-01-31 03:09 - 2016-01-31 03:09 - 00000000 ____D C:\Program Files\Portable
2016-01-31 03:08 - 2016-02-01 16:59 - 00000000 ____D C:\ProgramData\MCShield
2016-01-31 03:08 - 2016-01-31 03:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCShield
2016-01-31 03:08 - 2016-01-31 03:08 - 00000000 ____D C:\Program Files\MCShield
2016-01-31 03:06 - 2016-02-01 16:12 - 00000000 ____D C:\ProgramData\Unchecky
2016-01-31 03:06 - 2016-01-31 03:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unchecky
2016-01-31 03:06 - 2016-01-31 03:06 - 00000000 ____D C:\Program Files\Unchecky
2016-01-31 03:02 - 2016-01-31 03:02 - 00000000 ____D C:\Program Files\Microsoft CAPICOM 2.1.0.2
2016-01-31 02:51 - 2016-01-31 02:52 - 00000000 ___HD C:\Program Files\Temp
2016-01-31 02:51 - 2016-01-31 02:51 - 00000000 ____D C:\Windows\system32\RTCOM
2016-01-31 02:51 - 2016-01-31 02:51 - 00000000 ____D C:\Program Files\Realtek
2016-01-31 02:51 - 2012-06-19 16:54 - 03240400 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2016-01-31 02:51 - 2012-06-19 13:30 - 00293889 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-01-31 02:51 - 2012-06-08 16:23 - 00071808 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp32.dll
2016-01-31 02:51 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO32.dll
2016-01-31 02:51 - 2012-06-08 16:18 - 03173008 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2016-01-31 02:51 - 2012-06-06 10:44 - 00645776 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2016-01-31 02:51 - 2012-06-01 09:37 - 02417808 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2016-01-31 02:51 - 2012-05-31 18:08 - 00087696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2016-01-31 02:51 - 2012-05-25 18:06 - 01706640 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-01-31 02:51 - 2012-04-10 14:40 - 02193472 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2016-01-31 02:51 - 2012-04-03 18:41 - 00709976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2016-01-31 02:51 - 2012-03-08 11:47 - 00176736 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2016-01-31 02:51 - 2012-03-08 11:47 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2016-01-31 02:51 - 2011-12-18 17:57 - 01836376 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2016-01-31 02:51 - 2011-12-16 14:57 - 00054360 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld32.dll
2016-01-31 02:51 - 2011-12-13 16:58 - 01497704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2016-01-31 02:51 - 2011-11-22 16:28 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2016-01-31 02:51 - 2010-09-27 09:34 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-01-31 02:51 - 2009-12-04 15:43 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2016-01-31 02:51 - 2009-11-24 09:55 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2016-01-31 02:51 - 2009-11-24 09:55 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2016-01-31 02:51 - 2009-11-24 09:55 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2016-01-31 02:51 - 2009-11-24 09:55 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2016-01-31 02:51 - 2009-11-18 18:42 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2016-01-31 02:51 - 2009-11-18 07:13 - 00050776 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn32.dll
2016-01-31 02:49 - 2016-02-01 12:51 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-01-31 02:49 - 2004-10-18 15:02 - 00049152 _____ (DeviceGuys, Inc.) C:\Windows\system32\Drivers\DgiVecp.sys
2016-01-31 02:36 - 2016-01-31 02:36 - 00000000 ____D C:\Users\miroslav\Tracing
2016-01-31 02:35 - 2016-02-01 17:00 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Skype
2016-01-31 02:33 - 2016-02-01 10:24 - 00087400 _____ C:\Users\miroslav\AppData\Local\GDIPFONTCACHEV1.DAT
2016-01-31 02:33 - 2016-01-31 02:33 - 00000000 ____D C:\ProgramData\GRETECH
2016-01-31 02:27 - 2016-01-31 02:27 - 00002154 _____ C:\Windows\epplauncher.mif
2016-01-31 02:26 - 2016-01-31 02:26 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2016-01-31 02:26 - 2016-01-31 02:26 - 00000000 ____D C:\Program Files\Microsoft Security Client
2016-01-31 02:26 - 2010-04-09 08:24 - 01285000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-01-31 02:26 - 2010-04-09 08:24 - 00240008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-01-31 02:25 - 2016-01-31 02:25 - 00001183 _____ C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ___RD C:\Program Files\Skype
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\GRETECH
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\ProgramData\Skype
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\Program Files\GRETECH
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\Program Files\Common Files\Skype
2016-01-31 02:24 - 2016-01-31 11:26 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\AIMP
2016-01-31 02:24 - 2016-01-31 02:25 - 00000000 ____D C:\Program Files\TeamViewer
2016-01-31 02:24 - 2016-01-31 02:24 - 00001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\Program Files\WinRAR
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\Program Files\TeraCopy
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\Program Files\FastStone Image Viewer
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\Program Files\AIMP3
2016-01-31 02:19 - 2016-01-31 11:01 - 00002030 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-01-31 02:18 - 2016-02-01 16:57 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-31 02:18 - 2016-02-01 16:23 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-31 02:18 - 2016-01-31 11:25 - 00000000 ____D C:\Users\miroslav\AppData\Local\Google
2016-01-31 02:18 - 2016-01-31 02:18 - 00000000 ____D C:\Program Files\Google
2016-01-31 02:11 - 2016-02-01 10:55 - 00000000 ____D C:\Users\miroslav\Desktop\Precice
2016-01-31 02:11 - 2016-02-01 10:52 - 00000000 ____D C:\ProgramData\LogiShrd
2016-01-31 02:11 - 2016-01-31 02:11 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Leadertech
2016-01-31 02:11 - 2016-01-31 02:11 - 00000000 ____D C:\Users\miroslav\AppData\Local\LogiShrd
2016-01-31 02:11 - 2016-01-31 02:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2016-01-31 02:11 - 2016-01-31 02:11 - 00000000 ____D C:\Program Files\Logitech
2016-01-31 02:11 - 2015-03-19 03:57 - 03963320 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-01-31 02:11 - 2015-03-19 03:57 - 03908024 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-31 02:11 - 2014-09-15 01:42 - 02377216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-31 02:11 - 2013-03-19 05:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-31 02:11 - 2013-03-19 03:50 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-31 02:11 - 2010-12-18 06:29 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-31 02:10 - 2015-12-09 04:39 - 00247976 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-01-31 02:08 - 2016-01-31 02:11 - 00000000 ____D C:\Program Files\Common Files\logishrd
2016-01-31 02:06 - 2012-06-02 23:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-01-31 02:06 - 2012-06-02 23:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-01-31 02:06 - 2012-06-02 23:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-01-31 02:06 - 2012-06-02 23:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-01-31 02:06 - 2012-06-02 23:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-01-31 02:06 - 2012-06-02 23:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-01-31 02:06 - 2012-06-02 23:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-01-31 02:06 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-01-31 02:06 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-01-31 02:00 - 2016-02-01 17:02 - 00778150 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-31 01:57 - 2016-01-31 18:49 - 00000000 ____D C:\Users\miroslav
2016-01-31 01:57 - 2016-01-31 13:15 - 00001417 _____ C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-01-31 01:57 - 2016-01-31 11:14 - 00000000 ____D C:\Users\miroslav\AppData\Local\VirtualStore
2016-01-31 01:57 - 2016-01-31 01:57 - 00000020 ___SH C:\Users\miroslav\ntuser.ini
2016-01-31 01:57 - 2016-01-31 01:57 - 00000000 _SHDL C:\Users\miroslav\My Documents
2016-01-31 01:57 - 2016-01-31 01:57 - 00000000 _SHDL C:\Users\miroslav\Documents\My Videos
2016-01-31 01:57 - 2016-01-31 01:57 - 00000000 _SHDL C:\Users\miroslav\Documents\My Pictures
2016-01-31 01:57 - 2016-01-31 01:57 - 00000000 _SHDL C:\Users\miroslav\Documents\My Music
2016-01-31 01:57 - 2009-07-14 08:48 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Media Center Programs

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-01 17:02 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2016-02-01 16:57 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-01 16:57 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\PLA
2016-02-01 16:53 - 2009-07-14 05:34 - 00009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-02-01 16:53 - 2009-07-14 05:34 - 00009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-02-01 12:01 - 2009-07-14 05:52 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-02-01 10:49 - 2009-07-14 05:33 - 00355928 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-01 10:40 - 2011-08-27 10:04 - 00000000 ____D C:\Temp
2016-02-01 10:40 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Help
2016-02-01 09:48 - 2009-07-14 03:04 - 00000601 _____ C:\Windows\win.ini
2016-02-01 09:39 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-31 19:47 - 2014-11-27 16:24 - 00000000 ____D C:\AdwCleaner
2016-01-31 18:41 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2016-01-31 12:02 - 2009-07-14 08:49 - 00000000 ____D C:\Windows\ShellNew
2016-01-31 12:02 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\System
2016-01-31 12:00 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system
2016-01-31 10:49 - 2009-07-14 05:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-01-31 10:48 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\sysprep
2016-01-31 10:46 - 2009-07-14 08:49 - 00000000 ____D C:\Windows\CSC
2016-01-31 10:44 - 2013-01-26 01:01 - 00008192 __RSH C:\BOOTSECT.BAK
2016-01-31 10:44 - 2009-07-14 05:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template

Some files in TEMP:
====================
C:\Users\miroslav\AppData\Local\Temp\2.exe
C:\Users\miroslav\AppData\Local\Temp\ClientToMobilePlatform.exe
C:\Users\miroslav\AppData\Local\Temp\nsy75EB.exe
C:\Users\miroslav\AppData\Local\Temp\qc_a402013b_7656_4f6f_b57f_5a8ef69f5fc4_32.exe
C:\Users\miroslav\AppData\Local\Temp\QQPCMgr_Setup.exe
C:\Users\miroslav\AppData\Local\Temp\qqpcmgr_v10.11.16588.235_72621_Silence.exe
C:\Users\miroslav\AppData\Local\Temp\set.exe
C:\Users\miroslav\AppData\Local\Temp\sqlite3.dll
C:\Users\miroslav\AppData\Local\Temp\_is8E3C.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-01-31 11:54

==================== End of FRST.txt ============================





https://www.mycity.rs/must-login.png

https://www.mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Pozdrav,

1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:

CreateRestorePoint:
AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51
C:\Program Files\Tencent\
C:\Users\miroslav\AppData\Roaming\Tencent
HKLM\...\Run: [ QQPCTray] => C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQPCTRAY.EXE [355296 2016-01-31] (Tencent)
CHR StartupUrls: Default -> "hxxp://www.claro-search.com/?affID=117452&tt=4812_7&babsrc=HP_ss&mntrId=9c787c4a000000000000001fd05f9e25","hxxp://isearch.avg.com/?cid={29BC7CDB-729D-4483-B773-73CA6F4BD511}&mid=c994f77a538f47d0bf44d145283988b0-b602d594afd2b0b327e07a06f36ca6a7e42546d0&lang=en&ds=AVG&pr=fr&d=2013-01-31 12:31:18&v=14.0.0.14&pid=avg&sg=&sap=hp","hxxp://websearch.webisgreat.info/?pid=1091&r=2014/02/17&hid=2250913263268509384&lg=EN&cc=RS&unqvl=48","hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=2D6018F6F4FA8F14A0A6FEC1F9FF1FAC&v=20160121&ts=AHEpB38kBX8rCE.."
CHR Extension: (电脑管家上网防护) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooebklgpfnbcnpokahmdidgbmlcdepkm [2016-01-31]
C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooebklgpfnbcnpokahmdidgbmlcdepkm
R2 QQPCRTP; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQPCRTP.exe [301728 2016-01-31] (Tencent)
S2 ueoatj; C:\Users\miroslav\AppData\Local\Transfase.exe mrodmct ueoatj [X]
R1 QMIEProtect; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QMIEProtect.sys [50488 2016-01-12] ()
R1 QMUdisk; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QMUdisk.sys [62392 2016-01-31] (Tencent)
R2 QQSysMon; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQSysMon.sys [108984 2016-01-31] (电脑管家)
R3 TAOAccelerator; C:\Windows\system32\Drivers\TAOAccelerator.sys [82008 2016-01-31] (Tencent)
R1 TAOKernelDriver; C:\Windows\System32\Drivers\TAOKernel.sys [138552 2016-01-31] (Tencent Technology(Shenzhen) Company Limited)
R1 TFsFlt; C:\Windows\System32\Drivers\TFsFlt.sys [150072 2016-01-31] (电脑管家)
R3 TS888; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TS888.sys [30392 2016-02-01] (Tencent)
R1 TSDefenseBt; C:\Windows\System32\DRIVERS\TSDefenseBt.sys [14008 2016-01-31] (Tencent)
R0 TsFltMgr; C:\Windows\System32\drivers\TsFltMgr.sys [128280 2016-01-14] (电脑管家)
R1 TSKSP; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TSKsp.sys [210072 2016-01-31] (电脑管家)
R1 TSSysKit; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TSSysKit.sys [101560 2016-01-31] (电脑管家)
C:\Program Files\Common Files\Tencent
C:\Windows\System32\drivers\TsFltMgr.sys
C:\Windows\System32\DRIVERS\TSDefenseBt.sys
C:\Windows\System32\Drivers\TFsFlt.sys
C:\Windows\System32\Drivers\TAOKernel.sys
C:\Windows\system32\Drivers\TAOAccelerator.sys
C:\Windows\system32\Drivers\TS888.sys
C:\ProgramData\Tencent
EmptyTemp:


2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.

3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.



Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Napisano: 01 Feb 2016 20:59

Fix result of Farbar Recovery Scan Tool (x86) Version:27-01-2016
Ran by miroslav (2016-02-01 20:58:14) Run:1
Running from C:\Users\miroslav\Desktop
Loaded Profiles: miroslav (Available Profiles: miroslav)
Boot Mode: Normal

==============================================

fixlist content:
*****************
CreateRestorePoint:
AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51
C:\Program Files\Tencent\
C:\Users\miroslav\AppData\Roaming\Tencent
HKLM\...\Run: [ QQPCTray] => C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQPCTRAY.EXE [355296 2016-01-31] (Tencent)
CHR StartupUrls: Default -> "hxxp://www.claro-search.com/?affID=117452&tt=4812_7&babsrc=HP_ss&mntrId=9c787c4a000000000000001fd05f9e25","hxxp://isearch.avg.com/?cid={29BC7CDB-729D-4483-B773-73CA6F4BD511}&mid=c994f77a538f47d0bf44d145283988b0-b602d594afd2b0b327e07a06f36ca6a7e42546d0&lang=en&ds=AVG&pr=fr&d=2013-01-31 12:31:18&v=14.0.0.14&pid=avg&sg=&sap=hp","hxxp://websearch.webisgreat.info/?pid=1091&r=2014/02/17&hid=2250913263268509384&lg=EN&cc=RS&unqvl=48","hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=2D6018F6F4FA8F14A0A6FEC1F9FF1FAC&v=20160121&ts=AHEpB38kBX8rCE.."
CHR Extension: (????????) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooebklgpfnbcnpokahmdidgbmlcdepkm [2016-01-31]
C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooebklgpfnbcnpokahmdidgbmlcdepkm
R2 QQPCRTP; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQPCRTP.exe [301728 2016-01-31] (Tencent)
S2 ueoatj; C:\Users\miroslav\AppData\Local\Transfase.exe mrodmct ueoatj [X]
R1 QMIEProtect; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QMIEProtect.sys [50488 2016-01-12] ()
R1 QMUdisk; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QMUdisk.sys [62392 2016-01-31] (Tencent)
R2 QQSysMon; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQSysMon.sys [108984 2016-01-31] (????)
R3 TAOAccelerator; C:\Windows\system32\Drivers\TAOAccelerator.sys [82008 2016-01-31] (Tencent)
R1 TAOKernelDriver; C:\Windows\System32\Drivers\TAOKernel.sys [138552 2016-01-31] (Tencent Technology(Shenzhen) Company Limited)
R1 TFsFlt; C:\Windows\System32\Drivers\TFsFlt.sys [150072 2016-01-31] (????)
R3 TS888; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TS888.sys [30392 2016-02-01] (Tencent)
R1 TSDefenseBt; C:\Windows\System32\DRIVERS\TSDefenseBt.sys [14008 2016-01-31] (Tencent)
R0 TsFltMgr; C:\Windows\System32\drivers\TsFltMgr.sys [128280 2016-01-14] (????)
R1 TSKSP; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TSKsp.sys [210072 2016-01-31] (????)
R1 TSSysKit; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TSSysKit.sys [101560 2016-01-31] (????)
C:\Program Files\Common Files\Tencent
C:\Windows\System32\drivers\TsFltMgr.sys
C:\Windows\System32\DRIVERS\TSDefenseBt.sys
C:\Windows\System32\Drivers\TFsFlt.sys
C:\Windows\System32\Drivers\TAOKernel.sys
C:\Windows\system32\Drivers\TAOAccelerator.sys
C:\Windows\system32\Drivers\TS888.sys
C:\ProgramData\Tencent
EmptyTemp:
*****************

Restore point was successfully created.
C:\ProgramData\TEMP => ":1CE11B51" ADS removed successfully..

"C:\Program Files\Tencent" folder move:

Dopuna: 01 Feb 2016 21:10

Izvinjavam se ovo je rezultat:

Fix result of Farbar Recovery Scan Tool (x86) Version:27-01-2016
Ran by miroslav (2016-02-01 20:58:14) Run:1
Running from C:\Users\miroslav\Desktop
Loaded Profiles: miroslav (Available Profiles: miroslav)
Boot Mode: Normal

==============================================

fixlist content:
*****************
CreateRestorePoint:
AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51
C:\Program Files\Tencent\
C:\Users\miroslav\AppData\Roaming\Tencent
HKLM\...\Run: [ QQPCTray] => C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQPCTRAY.EXE [355296 2016-01-31] (Tencent)
CHR StartupUrls: Default -> "hxxp://www.claro-search.com/?affID=117452&tt=4812_7&babsrc=HP_ss&mntrId=9c787c4a000000000000001fd05f9e25","hxxp://isearch.avg.com/?cid={29BC7CDB-729D-4483-B773-73CA6F4BD511}&mid=c994f77a538f47d0bf44d145283988b0-b602d594afd2b0b327e07a06f36ca6a7e42546d0&lang=en&ds=AVG&pr=fr&d=2013-01-31 12:31:18&v=14.0.0.14&pid=avg&sg=&sap=hp","hxxp://websearch.webisgreat.info/?pid=1091&r=2014/02/17&hid=2250913263268509384&lg=EN&cc=RS&unqvl=48","hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=2D6018F6F4FA8F14A0A6FEC1F9FF1FAC&v=20160121&ts=AHEpB38kBX8rCE.."
CHR Extension: (????????) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooebklgpfnbcnpokahmdidgbmlcdepkm [2016-01-31]
C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooebklgpfnbcnpokahmdidgbmlcdepkm
R2 QQPCRTP; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQPCRTP.exe [301728 2016-01-31] (Tencent)
S2 ueoatj; C:\Users\miroslav\AppData\Local\Transfase.exe mrodmct ueoatj [X]
R1 QMIEProtect; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QMIEProtect.sys [50488 2016-01-12] ()
R1 QMUdisk; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QMUdisk.sys [62392 2016-01-31] (Tencent)
R2 QQSysMon; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQSysMon.sys [108984 2016-01-31] (????)
R3 TAOAccelerator; C:\Windows\system32\Drivers\TAOAccelerator.sys [82008 2016-01-31] (Tencent)
R1 TAOKernelDriver; C:\Windows\System32\Drivers\TAOKernel.sys [138552 2016-01-31] (Tencent Technology(Shenzhen) Company Limited)
R1 TFsFlt; C:\Windows\System32\Drivers\TFsFlt.sys [150072 2016-01-31] (????)
R3 TS888; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TS888.sys [30392 2016-02-01] (Tencent)
R1 TSDefenseBt; C:\Windows\System32\DRIVERS\TSDefenseBt.sys [14008 2016-01-31] (Tencent)
R0 TsFltMgr; C:\Windows\System32\drivers\TsFltMgr.sys [128280 2016-01-14] (????)
R1 TSKSP; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TSKsp.sys [210072 2016-01-31] (????)
R1 TSSysKit; C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\TSSysKit.sys [101560 2016-01-31] (????)
C:\Program Files\Common Files\Tencent
C:\Windows\System32\drivers\TsFltMgr.sys
C:\Windows\System32\DRIVERS\TSDefenseBt.sys
C:\Windows\System32\Drivers\TFsFlt.sys
C:\Windows\System32\Drivers\TAOKernel.sys
C:\Windows\system32\Drivers\TAOAccelerator.sys
C:\Windows\system32\Drivers\TS888.sys
C:\ProgramData\Tencent
EmptyTemp:
*****************

Restore point was successfully created.
C:\ProgramData\TEMP => ":1CE11B51" ADS removed successfully..

"C:\Program Files\Tencent" folder move:

Could not move "C:\Program Files\Tencent" => Scheduled to move on reboot.

C:\Users\miroslav\AppData\Roaming\Tencent => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ QQPCTray => value could not remove.
Chrome StartupUrls => removed successfully.
C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooebklgpfnbcnpokahmdidgbmlcdepkm => not found.
"C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ooebklgpfnbcnpokahmdidgbmlcdepkm" => not found.
QQPCRTP => Unable to stop service.
QQPCRTP => service could not remove
ueoatj => service removed successfully.
QMIEProtect => Service stopped successfully.
QMIEProtect => service removed successfully.
QMUdisk => Unable to stop service.
QMUdisk => service removed successfully.
QQSysMon => Unable to stop service.
QQSysMon => service could not remove
TAOAccelerator => Service stopped successfully.
TAOAccelerator => service removed successfully.
TAOKernelDriver => Unable to stop service.
TAOKernelDriver => service removed successfully.
TFsFlt => Unable to stop service.
TFsFlt => service could not remove
TS888 => Service stopped successfully.
TS888 => service removed successfully.
TSDefenseBt => Service stopped successfully.
TSDefenseBt => service could not remove
TsFltMgr => Unable to stop service.
TsFltMgr => service could not remove
TSKSP => Unable to stop service.
TSKSP => service could not remove
TSSysKit => Unable to stop service.
TSSysKit => service could not remove

"C:\Program Files\Common Files\Tencent" folder move:

Could not move "C:\Program Files\Common Files\Tencent" => Scheduled to move on reboot.

Could not move "C:\Windows\System32\drivers\TsFltMgr.sys" => Scheduled to move on reboot.
Could not move "C:\Windows\System32\DRIVERS\TSDefenseBt.sys" => Scheduled to move on reboot.
Could not move "C:\Windows\System32\Drivers\TFsFlt.sys" => Scheduled to move on reboot.
C:\Windows\System32\Drivers\TAOKernel.sys => moved successfully
C:\Windows\system32\Drivers\TAOAccelerator.sys => moved successfully
C:\Windows\system32\Drivers\TS888.sys => moved successfully

"C:\ProgramData\Tencent" folder move:

Could not move "C:\ProgramData\Tencent" => Scheduled to move on reboot.

EmptyTemp: => 857.9 MB temporary data Removed.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2016-02-01 21:04:10)

C:\Program Files\Tencent => is moved successfully
C:\Program Files\Common Files\Tencent => is moved successfully
C:\Windows\System32\drivers\TsFltMgr.sys => moved successfully
C:\Windows\System32\DRIVERS\TSDefenseBt.sys => moved successfully
C:\Windows\System32\Drivers\TFsFlt.sys => moved successfully
C:\ProgramData\Tencent => is moved successfully

==== End of Fixlog 21:04:10 ====

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Kakvo je sad stanje?

------

Preuzmi "Xplode"-ov AdwCleaner () i sacuvaj ga na Desktop

Dvoklikom pokreni program.
Klikni na dugme [Scan] i pricekaj da program zavrsi.
Klikni na dugme [Clean]
Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu.
Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok

Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem.
Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl"
Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S0].txt

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

https://www.mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Stanje?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Sada je u redu vise neizlazi u taskbaru samo na desktopu ima neka precica koja neznam odkuda se pojavila. Nisam pokusavao da je otvaram i dali da je brisem?

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Postavi mi novi FRST log i Addition.

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

Uloguj se preko Facebooka da bi skinuo fajl:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:27-01-2016
Ran by miroslav (administrator) on MIROSLAV-PC (02-02-2016 15:50:50)
Running from C:\Users\miroslav\Desktop
Loaded Profiles: miroslav (Available Profiles: miroslav)
Platform: Microsoft Windows 7 Ultimate (X86) Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(RaMMicHaeL) C:\Program Files\Unchecky\bin\unchecky_svc.exe
(RaMMicHaeL) C:\Program Files\Unchecky\bin\unchecky_bg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Leadtek Research Inc.) C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
(Logitech Inc.) C:\Program Files\Logitech\Logitech Vid\Vid.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(MyCity) C:\Program Files\MCShield\MCShieldRTM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Leadtek Research Inc.) C:\Program Files\WinFast\WFDTV\WFWIZ.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files\RocketDock\RocketDock.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
() C:\Program Files\Common Files\logishrd\LQCVFX\COCIManager.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10996368 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [ QQPCTray] => "C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQPCTRAY.EXE" /regrun /qqrepair
HKLM\...\Run: [WinFastDTV] => C:\Program Files\WinFast\WFDTV\DTVSchdl.exe [101888 2012-04-05] (Leadtek Research Inc.)
HKLM\...\Run: [ArcSoft Connection Service] => C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424 2010-10-27] (ArcSoft Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKU\S-1-5-21-1981283564-2037280381-1702048796-1000\...\Run: [Logitech Vid] => C:\Program Files\Logitech\Logitech Vid\vid.exe [5458704 2009-07-16] (Logitech Inc.)
HKU\S-1-5-21-1981283564-2037280381-1702048796-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [50615936 2016-01-18] (Skype Technologies S.A.)
HKU\S-1-5-21-1981283564-2037280381-1702048796-1000\...\Run: [MCShield Monitor] => C:\Program Files\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity)
HKU\S-1-5-21-1981283564-2037280381-1702048796-1000\...\Run: [WinFast Schedule] => C:\Program Files\WinFast\WFDTV\WFWIZ.exe [2920448 2012-03-02] (Leadtek Research Inc.)
HKU\S-1-5-21-1981283564-2037280381-1702048796-1000\...\Run: [RocketDock] => C:\Program Files\RocketDock\RocketDock.exe [495616 2007-09-02] ()
Startup: C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk [2016-02-02]
ShortcutTarget: Logitech . Product Registration.lnk -> C:\Program Files\Logitech\Logitech WebCam Software\eReg.exe (Leader Technologies/Logitech)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BA71F0F3-684F-4933-AC36-9D962FAA543E}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

FireFox:
========
FF ProfilePath: C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default
FF Homepage: hxxp://www.google.com/
FF Session Restore: -> is enabled.
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-12-19] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-12-19] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2016-01-31] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2016-01-31] (Google Inc.)
FF Extension: RightToClick - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\extensions\{cd617375-6743-4ee8-bac4-fbf10f35729e}.xpi [2016-01-31]
FF Extension: WOT - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2016-01-31]
FF Extension: X-notifier - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2016-01-31]
FF Extension: FlashGot - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2016-01-31]
FF Extension: S3.Google Translator - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\extensions\s3google@translator.xpi [2016-01-31]
FF Extension: ProxMate - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\Extensions\jid1-QpHD8URtZWJC2A@jetpack.xpi [2016-02-01]
FF Extension: Adblock Plus - C:\Users\miroslav\AppData\Roaming\Mozilla\Firefox\Profiles\25t62zym.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-31]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-31]
CHR Extension: (Google Docs) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-31]
CHR Extension: (Google disk) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-31]
CHR Extension: (WOT: Web of Trust, Website Reputation Ratings) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2016-01-31]
CHR Extension: (YouTube) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-31]
CHR Extension: (Google pretraživanje) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-31]
CHR Extension: (Izvanmrežni Gmail) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2016-01-31]
CHR Extension: (Google Sheets) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-31]
CHR Extension: (Google dokumenti izvanmrežno) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-01-31]
CHR Extension: (Nemoze da se izbrise) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\mflobcdhgnlibbiegemmoenkeaplpoid [2016-02-01]
CHR Extension: (Onlive Clock) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\moddbcckaikhdnigidfcmaeelcobchpm [2016-01-31]
CHR Extension: (Plaćanja u web-trgovini Chrome) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-01-31]
CHR Extension: (Gmail) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-31]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14658848 2013-12-10] (NVIDIA Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH)
R2 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2004-12-13] (Ulead Systems, Inc.) [File not signed]
R2 Unchecky; C:\Program Files\Unchecky\bin\Unchecky_svc.exe [160208 2016-01-31] (RaMMicHaeL) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [49152 2004-10-18] (DeviceGuys, Inc.) [File not signed]
S3 DSDrv4; C:\Program Files\DScaler\DSDrv4.sys [20128 2012-04-02] ()
R3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2Mon.sys [25752 2009-10-07] ()
R3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2008-07-26] (Logitech Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2013-12-05] (NVIDIA Corporation)
R3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13848 2008-07-26] (Logitech Inc.)
R3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2570520 2008-07-26] (Logitech Inc.)
R3 ULCDRHlp; C:\Windows\System32\Drivers\ULCDRHlp.sys [27392 2004-12-23] (Ulead Systems, Inc.) [File not signed]
R3 USB28xxBGA; C:\Windows\System32\DRIVERS\emBDA.sys [561920 2008-11-19] (eMPIA Technology, Inc.)
R3 USB28xxOEM; C:\Windows\System32\DRIVERS\emOEM.sys [455168 2008-11-19] (eMPIA Technology, Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-02 15:50 - 2016-02-02 15:51 - 00013285 _____ C:\Users\miroslav\Desktop\FRST.txt
2016-02-02 15:27 - 2016-02-02 15:27 - 00000000 ____D C:\Program Files\SearchesToYesbnd
2016-02-02 00:51 - 2016-02-02 00:51 - 01508352 _____ C:\Users\miroslav\Desktop\AdwCleaner.exe
2016-02-01 20:05 - 2016-02-01 20:05 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\NVIDIA
2016-02-01 19:44 - 2016-02-01 19:52 - 00000000 ____D C:\Program Files\PDF24
2016-02-01 19:44 - 2016-02-01 19:44 - 00000000 ____D C:\Users\miroslav\AppData\Local\PDF24
2016-02-01 19:35 - 2016-02-01 19:48 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-01 19:30 - 2016-02-01 19:43 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Foxit Software
2016-02-01 19:30 - 2016-02-01 19:42 - 00000000 ____D C:\Users\Public\Foxit Software
2016-02-01 19:29 - 2016-02-01 19:40 - 00000000 ____D C:\Program Files\Foxit Software
2016-02-01 19:29 - 2016-02-01 19:29 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Foxit AgentInformation
2016-02-01 19:02 - 2016-02-01 19:02 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
2016-02-01 17:13 - 2016-02-02 15:50 - 00000000 ____D C:\FRST
2016-02-01 17:02 - 2016-02-01 17:03 - 01721856 _____ (Farbar) C:\Users\miroslav\Desktop\FRST.exe
2016-02-01 12:14 - 2016-02-01 12:14 - 00000000 ____D C:\Users\miroslav\AppData\Local\ArcSoft
2016-02-01 11:55 - 2016-02-01 11:57 - 00000000 ____D C:\Users\miroslav\Documents\Fax
2016-02-01 11:55 - 2016-02-01 11:55 - 00000000 ___RD C:\Users\miroslav\Documents\Scanned Documents
2016-02-01 11:46 - 2016-02-01 12:03 - 00000000 ____D C:\Users\miroslav\Documents\FinePrint files
2016-02-01 11:46 - 2016-02-01 11:46 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FinePrint
2016-02-01 11:46 - 2014-08-28 16:10 - 00492248 ____N (FinePrint Software, LLC) C:\Windows\system32\fpres832.dll
2016-02-01 11:46 - 2014-08-28 16:10 - 00453336 ____N (FinePrint Software, LLC) C:\Windows\system32\fpmon8.dll
2016-02-01 11:41 - 2016-02-01 11:41 - 01267506 ____N C:\Users\miroslav\Documents\Full page photo.tif
2016-02-01 10:43 - 2016-02-01 10:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-02-01 10:42 - 2016-02-01 11:18 - 00000000 ____D C:\Users\miroslav\AppData\Local\NVIDIA
2016-02-01 10:42 - 2016-02-01 10:42 - 00000000 ____D C:\Program Files\AGEIA Technologies
2016-02-01 10:40 - 2016-02-02 15:17 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-01 10:40 - 2013-12-19 19:37 - 04317984 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-02-01 10:40 - 2013-12-19 19:37 - 03036960 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2016-02-01 10:40 - 2013-12-19 19:37 - 00664352 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-02-01 10:40 - 2013-12-19 19:37 - 00376096 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-02-01 10:40 - 2013-12-19 19:37 - 00062752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-02-01 10:39 - 2016-02-01 11:18 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-02-01 10:39 - 2013-12-19 21:26 - 00053024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-02-01 10:32 - 2009-11-25 20:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2016-02-01 10:32 - 2009-11-25 20:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2016-02-01 10:32 - 2009-11-25 20:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2016-02-01 10:32 - 2009-11-25 20:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2016-02-01 10:32 - 2009-11-25 20:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2016-02-01 10:30 - 2013-12-05 09:42 - 00034080 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad32v.sys
2016-02-01 10:30 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap32v.dll
2016-02-01 10:29 - 2016-02-01 10:43 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-02-01 10:29 - 2013-12-19 21:26 - 22960416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 17560352 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 10471712 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-02-01 10:29 - 2013-12-19 21:26 - 09700224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 09657464 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 02947872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 02747680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 02698272 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 01049888 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3233221.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 00893728 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3233221.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 00852768 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 00847648 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC.dll
2016-02-01 10:29 - 2013-12-19 21:26 - 00018439 _____ C:\Windows\system32\nvinfo.pb
2016-02-01 10:28 - 2016-02-01 10:28 - 00000000 ____D C:\NVIDIA
2016-02-01 09:41 - 2016-02-01 09:47 - 00000000 ____D C:\Windows\system32\MRT
2016-02-01 09:41 - 2016-02-01 09:41 - 141317472 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-02-01 09:36 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-02-01 09:34 - 2016-02-01 22:53 - 00000000 ___RD C:\Users\miroslav\Desktop\Gluposti sa fejsa
2016-01-31 18:49 - 2016-01-31 18:49 - 00000000 ____D C:\Users\miroslav\Impostazioni locali
2016-01-31 17:55 - 2016-01-31 19:33 - 00000000 ___RD C:\Users\miroslav\Desktop\video
2016-01-31 17:40 - 2016-01-31 17:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
2016-01-31 17:40 - 2016-01-31 17:40 - 00000000 ____D C:\Program Files\RocketDock
2016-01-31 17:01 - 2016-01-31 17:01 - 00000000 ____D C:\Users\miroslav\AppData\Local\Stardock
2016-01-31 16:52 - 2016-01-31 19:43 - 00000000 ____D C:\Users\miroslav\AppData\Local\HWiNFOMonitor
2016-01-31 16:51 - 2016-01-31 16:58 - 00000000 ____D C:\Users\miroslav\AppData\Local\Mozilla
2016-01-31 16:51 - 2016-01-31 16:52 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Mozilla
2016-01-31 16:51 - 2016-01-31 16:51 - 00001121 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-01-31 16:50 - 2016-01-31 16:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-01-31 16:50 - 2016-01-31 16:51 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-01-31 14:33 - 2016-01-31 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Connect
2016-01-31 14:30 - 2016-01-31 14:30 - 00000000 ____D C:\Users\miroslav\Documents\WFRCConfig
2016-01-31 14:30 - 2004-12-23 17:27 - 00027392 _____ (Ulead Systems, Inc.) C:\Windows\system32\Drivers\ULCDRHlp.sys
2016-01-31 14:29 - 2016-01-31 14:30 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinFast PVR2
2016-01-31 14:29 - 2016-01-31 14:29 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\InstallShield Installation Information
2016-01-31 13:25 - 2016-01-31 13:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
2016-01-31 13:25 - 2016-01-31 13:25 - 00000000 ____D C:\Program Files\Your Uninstaller! 7
2016-01-31 13:21 - 2016-01-31 13:21 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-01-31 13:11 - 2016-02-01 19:53 - 00000000 ____D C:\ProgramData\TEMP
2016-01-31 13:11 - 2016-01-31 13:11 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\URSoft
2016-01-31 12:48 - 2016-01-31 12:48 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Opera Software
2016-01-31 12:48 - 2016-01-31 12:48 - 00000000 ____D C:\Users\miroslav\AppData\Local\Opera Software
2016-01-31 12:46 - 2016-01-31 13:17 - 00000000 ____D C:\Users\miroslav\AppData\Local\CleanBrowserApp
2016-01-31 12:42 - 2016-01-31 12:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DScaler
2016-01-31 12:42 - 2016-01-31 12:42 - 00000000 ____D C:\Program Files\DScaler
2016-01-31 12:25 - 2016-01-31 14:18 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\DScaler4
2016-01-31 12:09 - 2016-02-01 12:14 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\ArcSoft
2016-01-31 12:08 - 2016-02-02 15:19 - 00000000 ____D C:\ProgramData\ArcSoft
2016-01-31 12:08 - 2016-01-31 12:08 - 00000000 ____D C:\Program Files\Common Files\Ulead Systems
2016-01-31 12:08 - 2016-01-31 12:08 - 00000000 ____D C:\Program Files\Common Files\ArcSoft
2016-01-31 12:08 - 2005-07-16 02:35 - 00245408 _____ (Microsoft Corporation) C:\Windows\system32\unicows.dll
2016-01-31 12:07 - 2016-01-31 14:30 - 00000000 ____D C:\Program Files\WinFast
2016-01-31 12:07 - 2016-01-31 12:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinFast PVR2
2016-01-31 12:06 - 2016-01-31 12:07 - 00000000 ____D C:\Windows\system32\WinFast
2016-01-31 12:06 - 2008-11-19 07:59 - 00561920 _____ (eMPIA Technology, Inc.) C:\Windows\system32\Drivers\emBDA.sys
2016-01-31 12:06 - 2008-11-19 07:59 - 00455168 _____ (eMPIA Technology, Inc.) C:\Windows\system32\Drivers\emOEM.sys
2016-01-31 12:06 - 2008-11-19 07:59 - 00126464 _____ (eMPIA Technology, Inc.) C:\Windows\system32\emPRP.ax
2016-01-31 12:06 - 2007-11-08 02:07 - 00065536 _____ (eMPIA Technology, Inc.) C:\Windows\emMON.exe
2016-01-31 12:06 - 2006-11-09 21:50 - 00016382 _____ C:\Windows\system32\Drivers\merlinC.rom
2016-01-31 12:04 - 2016-01-31 12:04 - 00000376 _____ C:\Windows\ODBC.INI
2016-01-31 12:03 - 2016-01-31 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-01-31 12:03 - 2007-04-09 13:23 - 00028040 _____ (Microsoft Corporation) C:\Windows\system32\mdimon.dll
2016-01-31 12:02 - 2016-01-31 12:02 - 00000000 ____D C:\Windows\PCHEALTH
2016-01-31 12:02 - 2016-01-31 12:02 - 00000000 ____D C:\Program Files\Microsoft Office
2016-01-31 12:02 - 2016-01-31 12:02 - 00000000 ____D C:\Program Files\Microsoft ActiveSync
2016-01-31 12:02 - 2016-01-31 12:02 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-01-31 11:29 - 2016-01-31 11:29 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\TeraCopy
2016-01-31 11:28 - 2016-01-31 11:28 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\WinRAR
2016-01-31 10:49 - 2016-01-31 10:49 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-01-31 10:49 - 2016-01-31 10:49 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-01-31 10:45 - 2016-01-31 12:48 - 00157184 ____H C:\Windows\system32\mlfcache.dat
2016-01-31 10:44 - 2016-01-31 01:57 - 00000000 ____D C:\Windows\Panther
2016-01-31 03:16 - 2016-02-01 16:09 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-01-31 03:16 - 2016-02-01 16:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-01-31 03:16 - 2016-01-31 03:13 - 00002136 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-01-31 03:15 - 2016-02-01 16:08 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-01-31 03:15 - 2016-01-31 03:15 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-01-31 03:15 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-01-31 03:15 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-01-31 03:15 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-01-31 03:14 - 2016-01-31 03:14 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SevenZip 9.20
2016-01-31 03:14 - 2016-01-31 03:14 - 00000000 ____D C:\Program Files\SevenZip
2016-01-31 03:11 - 2016-01-31 03:12 - 00000000 ____D C:\Users\miroslav\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-01-31 03:11 - 2016-01-31 03:11 - 00000000 ____D C:\Users\Public\Documents\dmp
2016-01-31 03:11 - 2016-01-31 03:11 - 00000000 ____D C:\Program Files\WinTaske
2016-01-31 03:09 - 2016-01-31 03:09 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Portable Programs
2016-01-31 03:09 - 2016-01-31 03:09 - 00000000 ____D C:\Users\miroslav\AppData\Local\VS Revo Group
2016-01-31 03:09 - 2016-01-31 03:09 - 00000000 ____D C:\Program Files\Portable
2016-01-31 03:08 - 2016-02-02 15:18 - 00000000 ____D C:\ProgramData\MCShield
2016-01-31 03:08 - 2016-01-31 03:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCShield
2016-01-31 03:08 - 2016-01-31 03:08 - 00000000 ____D C:\Program Files\MCShield
2016-01-31 03:06 - 2016-02-01 16:12 - 00000000 ____D C:\ProgramData\Unchecky
2016-01-31 03:06 - 2016-01-31 03:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unchecky
2016-01-31 03:06 - 2016-01-31 03:06 - 00000000 ____D C:\Program Files\Unchecky
2016-01-31 03:02 - 2016-01-31 03:02 - 00000000 ____D C:\Program Files\Microsoft CAPICOM 2.1.0.2
2016-01-31 02:51 - 2016-01-31 02:52 - 00000000 ___HD C:\Program Files\Temp
2016-01-31 02:51 - 2016-01-31 02:51 - 00000000 ____D C:\Windows\system32\RTCOM
2016-01-31 02:51 - 2016-01-31 02:51 - 00000000 ____D C:\Program Files\Realtek
2016-01-31 02:51 - 2012-06-19 16:54 - 03240400 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2016-01-31 02:51 - 2012-06-19 13:30 - 00293889 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2016-01-31 02:51 - 2012-06-08 16:23 - 00071808 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp32.dll
2016-01-31 02:51 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO32.dll
2016-01-31 02:51 - 2012-06-08 16:18 - 03173008 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2016-01-31 02:51 - 2012-06-06 10:44 - 00645776 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2016-01-31 02:51 - 2012-06-01 09:37 - 02417808 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2016-01-31 02:51 - 2012-05-31 18:08 - 00087696 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2016-01-31 02:51 - 2012-05-25 18:06 - 01706640 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2016-01-31 02:51 - 2012-04-10 14:40 - 02193472 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2016-01-31 02:51 - 2012-04-03 18:41 - 00709976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell.dll
2016-01-31 02:51 - 2012-03-08 11:47 - 00176736 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2016-01-31 02:51 - 2012-03-08 11:47 - 00095840 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2016-01-31 02:51 - 2011-12-18 17:57 - 01836376 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2016-01-31 02:51 - 2011-12-16 14:57 - 00054360 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld32.dll
2016-01-31 02:51 - 2011-12-13 16:58 - 01497704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2016-01-31 02:51 - 2011-11-22 16:28 - 00013416 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2016-01-31 02:51 - 2010-11-08 07:31 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2016-01-31 02:51 - 2010-09-27 09:34 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2016-01-31 02:51 - 2009-12-04 15:43 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll
2016-01-31 02:51 - 2009-11-24 09:55 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2016-01-31 02:51 - 2009-11-24 09:55 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll
2016-01-31 02:51 - 2009-11-24 09:55 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll
2016-01-31 02:51 - 2009-11-24 09:55 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2016-01-31 02:51 - 2009-11-18 18:42 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll
2016-01-31 02:51 - 2009-11-18 07:13 - 00050776 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn32.dll
2016-01-31 02:49 - 2016-02-02 15:19 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-01-31 02:49 - 2004-10-18 15:02 - 00049152 _____ (DeviceGuys, Inc.) C:\Windows\system32\Drivers\DgiVecp.sys
2016-01-31 02:36 - 2016-01-31 02:36 - 00000000 ____D C:\Users\miroslav\Tracing
2016-01-31 02:35 - 2016-02-02 15:18 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Skype
2016-01-31 02:33 - 2016-02-01 10:24 - 00087400 _____ C:\Users\miroslav\AppData\Local\GDIPFONTCACHEV1.DAT
2016-01-31 02:33 - 2016-01-31 02:33 - 00000000 ____D C:\ProgramData\GRETECH
2016-01-31 02:27 - 2016-01-31 02:27 - 00002154 _____ C:\Windows\epplauncher.mif
2016-01-31 02:26 - 2016-01-31 02:26 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2016-01-31 02:26 - 2016-01-31 02:26 - 00000000 ____D C:\Program Files\Microsoft Security Client
2016-01-31 02:26 - 2010-04-09 08:24 - 01285000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-01-31 02:26 - 2010-04-09 08:24 - 00240008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-01-31 02:25 - 2016-01-31 02:25 - 00001183 _____ C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ___RD C:\Program Files\Skype
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\GRETECH
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\ProgramData\Skype
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\Program Files\GRETECH
2016-01-31 02:25 - 2016-01-31 02:25 - 00000000 ____D C:\Program Files\Common Files\Skype
2016-01-31 02:24 - 2016-01-31 11:26 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\AIMP
2016-01-31 02:24 - 2016-01-31 02:25 - 00000000 ____D C:\Program Files\TeamViewer
2016-01-31 02:24 - 2016-01-31 02:24 - 00001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\Program Files\WinRAR
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\Program Files\TeraCopy
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\Program Files\FastStone Image Viewer
2016-01-31 02:24 - 2016-01-31 02:24 - 00000000 ____D C:\Program Files\AIMP3
2016-01-31 02:19 - 2016-01-31 11:01 - 00002030 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-01-31 02:18 - 2016-02-02 15:23 - 00000890 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-31 02:18 - 2016-02-02 15:17 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-31 02:18 - 2016-01-31 11:25 - 00000000 ____D C:\Users\miroslav\AppData\Local\Google
2016-01-31 02:18 - 2016-01-31 02:18 - 00000000 ____D C:\Program Files\Google
2016-01-31 02:11 - 2016-02-01 18:06 - 00000000 ____D C:\Users\miroslav\Desktop\Precice
2016-01-31 02:11 - 2016-02-01 10:52 - 00000000 ____D C:\ProgramData\LogiShrd
2016-01-31 02:11 - 2016-01-31 02:11 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Leadertech
2016-01-31 02:11 - 2016-01-31 02:11 - 00000000 ____D C:\Users\miroslav\AppData\Local\LogiShrd
2016-01-31 02:11 - 2016-01-31 02:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2016-01-31 02:11 - 2016-01-31 02:11 - 00000000 ____D C:\Program Files\Logitech
2016-01-31 02:11 - 2015-03-19 03:57 - 03963320 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-01-31 02:11 - 2015-03-19 03:57 - 03908024 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-01-31 02:11 - 2014-09-15 01:42 - 02377216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-31 02:11 - 2013-03-19 05:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-01-31 02:11 - 2013-03-19 03:50 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-01-31 02:11 - 2010-12-18 06:29 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-01-31 02:10 - 2015-12-09 04:39 - 00247976 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-01-31 02:08 - 2016-01-31 02:11 - 00000000 ____D C:\Program Files\Common Files\logishrd
2016-01-31 02:06 - 2012-06-02 23:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-01-31 02:06 - 2012-06-02 23:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-01-31 02:06 - 2012-06-02 23:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-01-31 02:06 - 2012-06-02 23:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-01-31 02:06 - 2012-06-02 23:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-01-31 02:06 - 2012-06-02 23:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-01-31 02:06 - 2012-06-02 23:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-01-31 02:06 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-01-31 02:06 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-01-31 02:00 - 2016-02-02 15:21 - 00778150 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-31 01:57 - 2016-01-31 18:49 - 00000000 ____D C:\Users\miroslav
2016-01-31 01:57 - 2016-01-31 13:15 - 00001417 _____ C:\Users\miroslav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-01-31 01:57 - 2016-01-31 11:14 - 00000000 ____D C:\Users\miroslav\AppData\Local\VirtualStore
2016-01-31 01:57 - 2016-01-31 01:57 - 00000020 ___SH C:\Users\miroslav\ntuser.ini
2016-01-31 01:57 - 2016-01-31 01:57 - 00000000 _SHDL C:\Users\miroslav\My Documents
2016-01-31 01:57 - 2016-01-31 01:57 - 00000000 _SHDL C:\Users\miroslav\Documents\My Videos
2016-01-31 01:57 - 2016-01-31 01:57 - 00000000 _SHDL C:\Users\miroslav\Documents\My Pictures
2016-01-31 01:57 - 2016-01-31 01:57 - 00000000 _SHDL C:\Users\miroslav\Documents\My Music
2016-01-31 01:57 - 2009-07-14 08:48 - 00000000 ____D C:\Users\miroslav\AppData\Roaming\Media Center Programs

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-02-02 15:21 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2016-02-02 15:17 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-02-02 00:59 - 2009-07-14 05:34 - 00009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-02-02 00:59 - 2009-07-14 05:34 - 00009584 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-02-02 00:53 - 2014-11-27 16:24 - 00000000 ____D C:\AdwCleaner
2016-02-01 19:44 - 2009-07-14 05:52 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-02-01 16:57 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\PLA
2016-02-01 10:49 - 2009-07-14 05:33 - 00355928 _____ C:\Windows\system32\FNTCACHE.DAT
2016-02-01 10:40 - 2011-08-27 10:04 - 00000000 ____D C:\Temp
2016-02-01 10:40 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Help
2016-02-01 09:48 - 2009-07-14 03:04 - 00000601 _____ C:\Windows\win.ini
2016-02-01 09:39 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-31 18:41 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2016-01-31 12:02 - 2009-07-14 08:49 - 00000000 ____D C:\Windows\ShellNew
2016-01-31 12:02 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\System
2016-01-31 12:00 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system
2016-01-31 10:49 - 2009-07-14 05:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-01-31 10:48 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\sysprep
2016-01-31 10:46 - 2009-07-14 08:49 - 00000000 ____D C:\Windows\CSC
2016-01-31 10:44 - 2013-01-26 01:01 - 00008192 __RSH C:\BOOTSECT.BAK
2016-01-31 10:44 - 2009-07-14 05:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template

Some files in TEMP:
====================
C:\Users\miroslav\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-01-31 11:54

==================== End of FRST.txt ============================
https://www.mycity.rs/must-login.png

• 0Niko još nije pohvalio poruku.
  Registruj se da bi pohvalio/la poruku!

1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod:

CreateRestorePoint:
HKLM\...\Run: [ QQPCTray] => "C:\Program Files\Tencent\QQPCMgr\10.11.16588.235\QQPCTRAY.EXE" /regrun /qqrepair
C:\Program Files\Tencent
C:\Program Files\SearchesToYesbnd
Task: {DCD550A3-1D7D-4DF0-8B11-5B75CFCCEF5D} - System32\Tasks\WinTaske => C:\Program Files\WinTaske\WinTaske\WinTaske.exe [2016-01-25] ()
C:\Program Files\WinTaske
CHR Extension: (Nemoze da se izbrise) - C:\Users\miroslav\AppData\Local\Google\Chrome\User Data\Default\Extensions\mflobcdhgnlibbiegemmoenkeaplpoid [2016-02-01]
C:\WINDOWS\System32\Tasks\WinTaske
EmptyTemp:

2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt
To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt
Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi.

3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj.
Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema.



Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku.
Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.