Sistem mi otezano radi

1

Sistem mi otezano radi

offline
  • Dalibor
  • Pridružio: 03 Feb 2011
  • Poruke: 439
  • Gde živiš: Berlin

Poslednjih par dana mi sistem otezano radi,koci i secka stranice.


DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.51.2
Run by Milana at 9:23:26 on 2014-01-26
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.355 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\WINDOWS\Domino.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Real\RealPlayer\update\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MCShield\mcshieldrtm.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Opera\18.0.1284.68\opera.exe
C:\Program Files\Opera\18.0.1284.68\opera_crashreporter.exe
C:\Program Files\Opera\18.0.1284.68\opera.exe
C:\Program Files\Opera\18.0.1284.68\opera.exe
C:\Program Files\Opera\18.0.1284.68\opera.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uWindow Title = Internet Explorer, optimized for Bing and MSN
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = hxxp://www.pandasecurity.com/redirector/?app=Welcome&prod=3753&lang=eng
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - c:\program files\mcafee security scan\3.8.130\McAfeeMSS_IE.dll
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\ie\rndlbrowserrecordplugin.dll
BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [MCShield Monitor] c:\program files\mcshield\mcshieldrtm.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [StartCCC] c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe
mRun: [Domino] c:\windows\Domino.EXE
mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe"
mRun: [LanguageShortcut] "c:\program files\cyberlink\powerdvd\language\Language.exe"
mRun: [avast5] c:\progra~1\alwils~1\avast5\avastUI.exe /nogui
mRun: [AvastUI.exe] "c:\program files\alwil software\avast5\AvastUI.exe" /nogui
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\milana\startm~1\programs\startup\yahoo!~1.lnk - c:\program files\yahoo!\widgets\YahooWidgets.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{DCCDEBB0-9A55-49BA-BF7A-7DA0BDF3657B} : DHCPNameServer = 192.168.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: AtiExtEvent - Ati2evxx.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\milana\application data\mozilla\firefox\profiles\z4ann2xm.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/firefox
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlchromebrowserrecordext.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlhtml5videoshim.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlpepperflashvideoshim.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\npdlplugin.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\mcafee security scan\3.8.130\npMcAfeeMSS.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_12_0_0_43.dll
FF - ExtSQL: 2013-12-08 23:28; {DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}; c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\firefox\Ext
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2013-6-14 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2013-6-14 178304]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2013-6-14 774392]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2013-6-14 403440]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2013-6-14 35656]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-6-14 70384]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2013-6-14 50344]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\realnetworks\realdownloader\rndlresolversvc.exe [2013-8-14 39056]
R2 TeamViewer9;TeamViewer 9;c:\program files\teamviewer\version9\TeamViewer_Service.exe [2014-1-4 5341536]
R3 vmfilter303;vmfilter303;c:\windows\system32\drivers\vmfilter303.sys [2013-11-5 428160]
RUnknown SASKUTIL;SASKUTIL; [x]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-9-5 171680]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys --> c:\windows\system32\drivers\ew_hwusbdev.sys [?]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys --> c:\windows\system32\drivers\ew_jucdcacm.sys [?]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys --> c:\windows\system32\drivers\ew_jubusenum.sys [?]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.8.130\McCHSvc.exe [2013-9-6 235216]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\e:\ntglm7x.sys --> e:\NTGLM7X.sys [?]
.
=============== Created Last 30 ================
.
2014-01-25 12:07:26 -------- d-sh--w- c:\documents and settings\milana\IECompatCache
2014-01-25 09:31:45 106557 ----a-w- c:\windows\system32\btw_ci.dll
2014-01-19 21:11:17 -------- d-----w- c:\documents and settings\milana\local settings\application data\fTalk
2014-01-19 14:46:03 145408 ----a-w- c:\windows\system32\javacpl.cpl
2014-01-19 14:45:58 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-01-14 20:10:52 -------- d-----w- c:\documents and settings\all users\application data\mts mobilni internet
2014-01-14 20:10:17 14640 ------w- c:\windows\system32\spmsgXP_2k3.dll
2014-01-14 20:10:08 28672 ----a-w- c:\windows\system32\drivers\usbccid.sys
2014-01-14 20:10:08 1112288 ----a-w- c:\windows\system32\wdfcoinstaller01007.dll
2014-01-14 20:10:08 1112288 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll
2014-01-14 20:09:43 -------- d-----w- c:\program files\mts mobilni internet
2014-01-14 20:09:16 -------- d-----w- c:\documents and settings\all users\application data\DatacardService
2014-01-14 20:08:55 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2014-01-14 20:08:55 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-01-06 19:23:36 4558848 ----a-w- c:\windows\system32\GPhotos.scr
2014-01-04 11:55:35 -------- d-----w- c:\program files\TeamViewer
2014-01-01 16:42:03 -------- d-----w- c:\documents and settings\milana\local settings\application data\uTorrentControl_v6
2014-01-01 16:42:00 -------- d-----w- c:\program files\uTorrentControl_v6
2014-01-01 16:39:12 -------- d-----w- c:\documents and settings\milana\.android
2014-01-01 16:39:08 -------- d-----w- c:\documents and settings\milana\local settings\application data\cache
2014-01-01 16:39:05 -------- d-----w- c:\documents and settings\milana\local settings\application data\Mobogenie
2014-01-01 16:39:05 -------- d-----w- c:\documents and settings\milana\local settings\application data\genienext
2014-01-01 16:38:19 -------- d-----w- c:\program files\Mobogenie
.
==================== Find3M ====================
.
2014-01-25 07:44:02 23624 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2014-01-21 05:56:58 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-01-21 05:56:58 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-12-23 18:55:40 922112 ------w- c:\windows\system32\imapi2fs.dll
2013-12-23 18:55:40 426496 ------w- c:\windows\system32\imapi2.dll
2013-12-08 22:27:56 499712 ----a-w- c:\windows\system32\msvcp71.dll
2013-12-08 22:27:56 348160 ----a-w- c:\windows\system32\msvcr71.dll
2013-11-05 20:55:25 315392 ----a-w- c:\windows\HideWin.exe
.
============= FINISH: 9:23:43.79 ===============

https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Arrow Korak 1

Idi u Start -> Control Panel -> Add or Remove Programs i deinstaliraj sljedeće programe ako ti nisu potrebni:

McAfee Security Scan Plus




Arrow Korak 2

Preuzmi Junkware Removal Tool (JRT) i sačuvaj ga na Desktop.

Zatvori browser i ostale pokrenute programe

Privremeno deaktiviraj zaštitni softver (Uputstvo);

Dvoklikom na ikonicu () pokreni program JRT;

Kod obavještenja "Press any key" pritisnuti bilo koji taster i alat ce započeti skeniranje.
Napomena: u ovisnosti od hardvera račuanra vreme skeniranja u nekim slučajevima moze da potraje.

Kada završi otvorice se Notepad sa izvještajem koji ce biti sačuvan na Desktopu pod nazivom JRT.txt


Arrow Kopiraj sadržaj tog loga u temu.

offline
  • Dalibor
  • Pridružio: 03 Feb 2011
  • Poruke: 439
  • Gde živiš: Berlin

Arrow McAfee Security Scan Plus sam deinstalirao .


Arrow ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Microsoft Windows XP x86
Ran by Milana on Sun 01/26/2014 at 18:07:20.75
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Chrome

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 01/26/2014 at 18:11:53.21
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Arrow

Preuzmi zoek.exe sa ovog ili ovog linka i sačuvaj ga na Desktop.


Zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;
dvoklikom pokreni zoek.exe;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sljedeći tekst:

startupall;
skipfix-iedefaults;
firefoxlook;
chromelook;
filesrcm;


Klikni na dugme i pričekaj da se skeniranje završi.


Zoek će po potrebi restartovati Windows, a na kraju rada otvoriti Notepad sa izvještajem o skeniranju.

Napomena: Izvještaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadržaj tog loga u poruku.

offline
  • Dalibor
  • Pridružio: 03 Feb 2011
  • Poruke: 439
  • Gde živiš: Berlin

Zoek.exe v5.0.0.0 Updated 25-January-2014
Tool run by Milana on Sun 01/26/2014 at 21:14:08.42.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Milana\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

1/26/2014 9:15:05 PM Zoek.exe System Restore Point Created Succesfully.

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\DOCUME~1\Milana\LOCALS~1\Temp ====
2014-01-26 17:00:59 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\erunt\ERUNT.EXE
2014-01-26 16:59:52 EA77325B4FAF6EBC8ACEB42011747DA1 571472 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerStartup.dll
2014-01-26 16:59:52 919160525DA7A3D5D09E0DD5A6B16454 264008 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerRes.dll
2014-01-26 16:59:52 8D15BBCBA2B1A6096C0D15E3D1893B5F 153280 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerRes_LD.dll
2014-01-26 16:59:52 74557BFD04530E512DBB9C151C4DA110 499384 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McUICnt.exe
2014-01-26 16:59:52 206A83BDC11D09FB1B3740236ED5E9EE 418568 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\mcbrwsr2.dll
====== Java Cache =====
2014-01-07 12:26:14 E5C101FE381DE7A2C0549D632E64C6D7 87 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\13\567603cd-6.0.lap
2014-01-07 12:26:15 A5BCD7370FE25039D9118CEA286954A8 17556 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\20\2ea66e94-23b07207
2014-01-07 12:25:42 550D98C3FED4E15451FD8D5C43E0FD65 17193 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\50\4467a472-1e9fe84d
2014-01-07 12:25:41 8E5E7BA449123FEA14197C8E8124CACC 79 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\58\184bc73a-6.0.lap
====== C:\WINDOWS\system32 =====
2014-01-26 12:32:29 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\WINDOWS\System32\javaws.exe
2014-01-26 12:32:23 FD80D0AE205EC54D1A204DDBD6B766DA 94632 ----a-w- C:\WINDOWS\System32\WindowsAccessBridge.dll
2014-01-26 12:06:48 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\WINDOWS\System32\javaw.exe
2014-01-26 12:06:47 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\WINDOWS\System32\java.exe
2014-01-25 09:31:45 0F14B4CC389894A89D3BA1F5B427FCF0 106557 ----a-w- C:\WINDOWS\System32\btw_ci.dll
2014-01-19 14:46:03 C94EC0201AD94C0A25461F1073F60493 145408 ----a-w- C:\WINDOWS\System32\javacpl.cpl
2014-01-14 20:10:17 066F7FCCA265D01A5B7EAF41ADE789B1 14640 ------w- C:\WINDOWS\System32\spmsgXP_2k3.dll
2014-01-14 20:10:08 81D9BCCEB78795CD0315B24960F2D130 1112288 ----a-w- C:\WINDOWS\System32\wdfcoinstaller01007.dll
====== C:\WINDOWS\system32\drivers =====
2014-01-14 20:12:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2014-01-14 20:10:23 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2014-01-14 20:10:22 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2014-01-14 20:10:08 81D9BCCEB78795CD0315B24960F2D130 1112288 ----a-w- C:\WINDOWS\System32\drivers\WdfCoInstaller01007.dll
2014-01-14 20:10:08 6B5E4D5E6E5ECD6ACD14AED59768CE5C 28672 ----a-w- C:\WINDOWS\System32\drivers\usbccid.sys
2014-01-14 20:08:55 173F317CE0DB8E21322E71B7E60A27E8 32128 ----a-w- C:\WINDOWS\System32\drivers\usbccgp.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-01-26 11:44:18 -------- d-----w- C:\Program Files\VideoLAN
2014-01-14 20:09:43 -------- d-----w- C:\Program Files\mts mobilni internet
2014-01-07 12:34:55 -------- d-----w- C:\Program Files\Common Files\Java
2014-01-07 12:34:30 -------- d-----w- C:\Program Files\Java
2014-01-04 11:55:35 -------- d-----w- C:\Program Files\TeamViewer
2014-01-01 16:42:00 -------- d-----w- C:\Program Files\uTorrentControl_v6
2014-01-01 16:38:19 -------- d-----w- C:\Program Files\Mobogenie
======= C: =====
====== C:\Documents and Settings\Milana\Application Data ======
2014-01-26 11:46:30 -------- d-----w- C:\Documents and Settings\Milana\Application Data\vlc
2014-01-01 16:42:03 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\uTorrentControl_v6
2014-01-01 16:39:08 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\cache
2014-01-01 16:39:05 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\Mobogenie
2014-01-01 16:39:05 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\genienext
====== C:\Documents and Settings\Milana ======
2014-01-26 17:00:35 EE386D5ACB945089BCD91766697224BB 1037068 ----a-w- C:\Documents and Settings\Milana\Desktop\JRT.exe
2014-01-26 08:20:05 -------- d--h--r- C:\Documents and Settings\Milana\Recent
2014-01-25 12:07:26 -------- d-sh--w- C:\Documents and Settings\Milana\IECompatCache
2014-01-01 16:39:12 -------- d-----w- C:\Documents and Settings\Milana\.android
2014-01-01 16:39:07 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Documents and Settings\Milana\daemonprocess.txt

====== C: exe-files ==
2014-01-26 17:00:59 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\erunt\ERUNT.EXE
2014-01-26 17:00:35 EE386D5ACB945089BCD91766697224BB 1037068 ----a-w- C:\Documents and Settings\Milana\Desktop\JRT.exe
2014-01-26 16:59:52 74557BFD04530E512DBB9C151C4DA110 499384 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McUICnt.exe
2014-01-26 12:32:29 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\WINDOWS\system32\javaws.exe
2014-01-26 12:32:15 EBAB810C999D8C31F0D5D8B28B3EEDD1 15784 ----a-w- C:\Program Files\Java\jre7\bin\servertool.exe
2014-01-26 12:32:15 C422AF851B98378A39B51D99FE707E64 146344 ----a-w- C:\Program Files\Java\jre7\bin\unpack200.exe
2014-01-26 12:32:15 ACA236A716C2291E40ED069F2CBB3D35 49064 ----a-w- C:\Program Files\Java\jre7\bin\ssvagent.exe
2014-01-26 12:32:15 6E2BECF6E17FF8DC850C058A38A50C4F 15784 ----a-w- C:\Program Files\Java\jre7\bin\rmiregistry.exe
2014-01-26 12:32:15 6E1B0EEBF3D1CC7ECF4104E1473900FF 15784 ----a-w- C:\Program Files\Java\jre7\bin\rmid.exe
2014-01-26 12:32:15 397A6EA17BB97800939DE44D7BFEEC04 15784 ----a-w- C:\Program Files\Java\jre7\bin\policytool.exe
2014-01-26 12:32:15 0E37C7C174521E16CEA0A6BC46F03BCD 16296 ----a-w- C:\Program Files\Java\jre7\bin\tnameserv.exe
2014-01-26 12:32:14 F4BA3A5D5FDE0A321CD7C4A74749CE5B 15784 ----a-w- C:\Program Files\Java\jre7\bin\pack200.exe
2014-01-26 12:32:14 ED1F5F1906F8D963612A4831CDB331D6 15784 ----a-w- C:\Program Files\Java\jre7\bin\ktab.exe
2014-01-26 12:32:14 B9436A665A8621073A12338B16D7BFD4 182696 ----a-w- C:\Program Files\Java\jre7\bin\jqs.exe
2014-01-26 12:32:14 A8F2A6D5782AA0166D8367FF674DDF77 52648 ----a-w- C:\Program Files\Java\jre7\bin\jp2launcher.exe
2014-01-26 12:32:14 762E372DCFDAE32FAE52C1A50A0029C2 15784 ----a-w- C:\Program Files\Java\jre7\bin\klist.exe
2014-01-26 12:32:14 6EEAD2C8A5CAC1F0F2066ABD77BA9092 15784 ----a-w- C:\Program Files\Java\jre7\bin\keytool.exe
2014-01-26 12:32:14 49A5F3169A23C00F9F2023DFE04D7AF6 15784 ----a-w- C:\Program Files\Java\jre7\bin\kinit.exe
2014-01-26 12:32:14 18BC25C50200C3DD4E67611D2467DAA2 15784 ----a-w- C:\Program Files\Java\jre7\bin\orbd.exe
2014-01-26 12:32:13 E9BFEA5B2F3F7598DA990F9728768790 66984 ----a-w- C:\Program Files\Java\jre7\bin\javacpl.exe
2014-01-26 12:32:13 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Program Files\Java\jre7\bin\javaw.exe
2014-01-26 12:32:13 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Program Files\Java\jre7\bin\javaws.exe
2014-01-26 12:32:12 FBC27FD8E76C53E6E8066944BBE2BF73 48040 ----a-w- C:\Program Files\Java\jre7\bin\jabswitch.exe
2014-01-26 12:32:12 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Program Files\Java\jre7\bin\java.exe
2014-01-26 12:32:12 5877E6618DA03EE8E7A869F57EE6ACE5 15784 ----a-w- C:\Program Files\Java\jre7\bin\java-rmi.exe
2014-01-26 12:22:53 D6A3D61864E8F9565550548865D7522C 921000 ----a-w- C:\Documents and Settings\Milana\My Documents\??????????\jxpiinstall.exe
2014-01-26 12:06:48 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\WINDOWS\system32\javaw.exe
2014-01-26 12:06:47 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\WINDOWS\system32\java.exe
2014-01-26 12:06:33 F17349E5E24A10FA017D7AD5A6DA0D54 144784 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\unpack200.exe
2014-01-26 12:06:33 C037D947F886667B2E04284A5C146764 43408 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\ssvagent.exe
2014-01-26 12:06:33 B01BDA7E43668CA945D49B56CB6F3989 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\tnameserv.exe
2014-01-26 12:06:32 E3438CF30CFE24D757F9CB9BAC10EA91 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\policytool.exe
2014-01-26 12:06:32 DFF4A42A4DA78EB8E06CF279408D9E5E 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\rmiregistry.exe
2014-01-26 12:06:32 D9831E49DC06AA9878514B3B0CAC37A5 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\ktab.exe
2014-01-26 12:06:32 BAAE51A01F10B76531450E9D345BC559 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\klist.exe
2014-01-26 12:06:32 9F1AC23FF27ADFF75CF4767ED87199AF 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\keytool.exe
2014-01-26 12:06:32 99FA37C59597924994E3CC5A3809A9D6 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\orbd.exe
2014-01-26 12:06:32 945025FDDB38E2176DBE1A47C69D7A51 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\pack200.exe
2014-01-26 12:06:32 72683B25954BCAB6D832E911E16B2660 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\kinit.exe
2014-01-26 12:06:32 6421FB60DDB334AA84EB09B260B70DF9 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\servertool.exe
2014-01-26 12:06:32 19329749C7A1B2E224F5DAED2A91EB52 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\rmid.exe
2014-01-26 12:06:31 BDD6664E0D9D9A5550038F33637265EA 173960 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javaw.exe
2014-01-26 12:06:31 B9AAFEA1DD9F168CA61E8397958FD070 61832 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javacpl.exe
2014-01-26 12:06:31 A25F44BEE54FFA7FC3005B6CB0F68FD5 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\java-rmi.exe
2014-01-26 12:06:31 973DB7AC74C554C546F8B0B7B98FB855 161664 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jqs.exe
2014-01-26 12:06:31 81CB82C6E1D75051D8C43F11C309D96E 32144 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jp2launcher.exe
2014-01-26 12:06:31 61E86929127BA5BC4F8D29E4E60D36B2 87432 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jbroker.exe
2014-01-26 12:06:31 3201F63F840D1609141EF3D903EBE30E 223112 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javaws.exe
2014-01-26 12:06:31 078C041AC65593A812F5B2A10F53C4E8 173960 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\java.exe
2014-01-26 11:45:11 F7047D04ABD0CC36A3914A74AC8B4362 195777 ----a-w- C:\Program Files\VideoLAN\VLC\uninstall.exe
2014-01-24 18:53:58 FD9CDDA845016FD1AB5224608AFF8B40 486088 ----a-w- C:\Program Files\MCShield\MCS-Uninstall.exe
2014-01-21 19:53:45 EC4801027AFC2DAF40F8B62B3821044D 1392480 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera_crashreporter.exe
2014-01-21 19:53:45 6AC06D82C55BC114A884B9027013A6E6 2457952 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera_autoupdate.exe
2014-01-21 19:53:45 0AFA29EDDD1998207DD29FD42757304A 1598304 ----a-w- C:\Program Files\Opera\launcher.exe
2014-01-21 19:53:43 BF2AD1BD9EBE59FC82639DBF959A3DB8 73568 ----a-w- C:\Program Files\Opera\18.0.1284.68\wow_helper.exe
2014-01-21 19:53:43 0D7A1BBAFFC9A0FFA16D94E16BF141FB 43706208 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera.exe
2014-01-20 21:24:18 035FED3620FA7F14D443375200FDE08C 721472 ----a-w- C:\Program Files\MCShield\Tools\Translator.exe
=== C: other files ==
2014-01-26 17:00:58 CC6C23C02BE66014AD87F2678BBB3A1D 8117 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\modules.bat
2014-01-26 17:00:58 C4A5476A9D54B400F1623A2EE7DDA5C5 13955 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\chrome.bat
2014-01-26 17:00:58 BAD6C67C870CC81C48DBA53089929884 153331 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\firefox.bat
2014-01-26 17:00:58 B964B792D3692699CD7D4FDB63EE470E 1239 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\FWPolicy.bat
2014-01-26 17:00:58 B7D46D5BC21F69EFEEFFC15060E423AC 154167 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\misc.bat
2014-01-26 17:00:58 B45931E5313CB14CAA0F2BC3DA30E6FC 29648 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\ask.bat
2014-01-26 17:00:58 80D02380F1AC33E459324B088392A1EC 732 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\ev_clear.bat
2014-01-26 17:00:58 75C9C20DD9839BF287B43B0E179822DC 31414 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\iexplore.bat
2014-01-26 17:00:58 7178963AEE641F3E47E1CE22416F8A3A 9295 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\runvalues.bat
2014-01-26 17:00:58 654E9FE74B930A454EE5BDE165794B65 85 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\delorphans.bat
2014-01-26 17:00:58 5AE8F4442CA6D69FE9A6738E8DB411F2 10261 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\JRT.bat
2014-01-26 17:00:58 58605DA3492FB918D3D40B1FB88046AE 39471 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\prelim.bat
2014-01-26 17:00:58 55D97CE5B1A61AD51F887E46550029F6 16063 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\get.bat
2014-01-26 17:00:58 372EA6F783198102CF5779072EE78C79 24751 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\searchlnk.bat
2014-01-26 17:00:58 1FBF882AA934A741530741FC134872A3 1243 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\TDL4.bat
2014-01-26 17:00:58 14D6EE8B672684E2232FB430D8C4A928 18668 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\medfos.bat
2014-01-26 17:00:58 0768E560CCD86C18F35FAD29DCEA7B80 1820 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\delfolders.bat
2014-01-26 12:32:16 863EB6802B1C3B7630290871599BE0BD 18636 ----a-w- C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip
2014-01-26 12:06:56 81051BCC2CF1BEDF378224B0A93E2877 2 ----a-w- C:\Program Files\Java\jre1.7.0_02\TempWmicBatchFile.bat
2014-01-26 12:06:33 891CB00E6C55477F69A624A831D76659 18505 ----a-w- C:\Program Files\Java\jre1.7.0_02\lib\deploy\ffjcext.zip

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Nisi kopirao kompletan izvještaj.

offline
  • Dalibor
  • Pridružio: 03 Feb 2011
  • Poruke: 439
  • Gde živiš: Berlin

Zoek.exe v5.0.0.0 Updated 25-January-2014
Tool run by Milana on Sun 01/26/2014 at 21:14:08.42.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Milana\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

1/26/2014 9:15:05 PM Zoek.exe System Restore Point Created Succesfully.

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\DOCUME~1\Milana\LOCALS~1\Temp ====
2014-01-26 17:00:59 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\erunt\ERUNT.EXE
2014-01-26 16:59:52 EA77325B4FAF6EBC8ACEB42011747DA1 571472 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerStartup.dll
2014-01-26 16:59:52 919160525DA7A3D5D09E0DD5A6B16454 264008 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerRes.dll
2014-01-26 16:59:52 8D15BBCBA2B1A6096C0D15E3D1893B5F 153280 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerRes_LD.dll
2014-01-26 16:59:52 74557BFD04530E512DBB9C151C4DA110 499384 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McUICnt.exe
2014-01-26 16:59:52 206A83BDC11D09FB1B3740236ED5E9EE 418568 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\mcbrwsr2.dll
====== Java Cache =====
2014-01-07 12:26:14 E5C101FE381DE7A2C0549D632E64C6D7 87 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\13\567603cd-6.0.lap
2014-01-07 12:26:15 A5BCD7370FE25039D9118CEA286954A8 17556 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\20\2ea66e94-23b07207
2014-01-07 12:25:42 550D98C3FED4E15451FD8D5C43E0FD65 17193 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\50\4467a472-1e9fe84d
2014-01-07 12:25:41 8E5E7BA449123FEA14197C8E8124CACC 79 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\58\184bc73a-6.0.lap
====== C:\WINDOWS\system32 =====
2014-01-26 12:32:29 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\WINDOWS\System32\javaws.exe
2014-01-26 12:32:23 FD80D0AE205EC54D1A204DDBD6B766DA 94632 ----a-w- C:\WINDOWS\System32\WindowsAccessBridge.dll
2014-01-26 12:06:48 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\WINDOWS\System32\javaw.exe
2014-01-26 12:06:47 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\WINDOWS\System32\java.exe
2014-01-25 09:31:45 0F14B4CC389894A89D3BA1F5B427FCF0 106557 ----a-w- C:\WINDOWS\System32\btw_ci.dll
2014-01-19 14:46:03 C94EC0201AD94C0A25461F1073F60493 145408 ----a-w- C:\WINDOWS\System32\javacpl.cpl
2014-01-14 20:10:17 066F7FCCA265D01A5B7EAF41ADE789B1 14640 ------w- C:\WINDOWS\System32\spmsgXP_2k3.dll
2014-01-14 20:10:08 81D9BCCEB78795CD0315B24960F2D130 1112288 ----a-w- C:\WINDOWS\System32\wdfcoinstaller01007.dll
====== C:\WINDOWS\system32\drivers =====
2014-01-14 20:12:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2014-01-14 20:10:23 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2014-01-14 20:10:22 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2014-01-14 20:10:08 81D9BCCEB78795CD0315B24960F2D130 1112288 ----a-w- C:\WINDOWS\System32\drivers\WdfCoInstaller01007.dll
2014-01-14 20:10:08 6B5E4D5E6E5ECD6ACD14AED59768CE5C 28672 ----a-w- C:\WINDOWS\System32\drivers\usbccid.sys
2014-01-14 20:08:55 173F317CE0DB8E21322E71B7E60A27E8 32128 ----a-w- C:\WINDOWS\System32\drivers\usbccgp.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-01-26 11:44:18 -------- d-----w- C:\Program Files\VideoLAN
2014-01-14 20:09:43 -------- d-----w- C:\Program Files\mts mobilni internet
2014-01-07 12:34:55 -------- d-----w- C:\Program Files\Common Files\Java
2014-01-07 12:34:30 -------- d-----w- C:\Program Files\Java
2014-01-04 11:55:35 -------- d-----w- C:\Program Files\TeamViewer
2014-01-01 16:42:00 -------- d-----w- C:\Program Files\uTorrentControl_v6
2014-01-01 16:38:19 -------- d-----w- C:\Program Files\Mobogenie
======= C: =====
====== C:\Documents and Settings\Milana\Application Data ======
2014-01-26 11:46:30 -------- d-----w- C:\Documents and Settings\Milana\Application Data\vlc
2014-01-01 16:42:03 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\uTorrentControl_v6
2014-01-01 16:39:08 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\cache
2014-01-01 16:39:05 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\Mobogenie
2014-01-01 16:39:05 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\genienext
====== C:\Documents and Settings\Milana ======
2014-01-26 17:00:35 EE386D5ACB945089BCD91766697224BB 1037068 ----a-w- C:\Documents and Settings\Milana\Desktop\JRT.exe
2014-01-26 08:20:05 -------- d--h--r- C:\Documents and Settings\Milana\Recent
2014-01-25 12:07:26 -------- d-sh--w- C:\Documents and Settings\Milana\IECompatCache
2014-01-01 16:39:12 -------- d-----w- C:\Documents and Settings\Milana\.android
2014-01-01 16:39:07 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Documents and Settings\Milana\daemonprocess.txt

====== C: exe-files ==
2014-01-26 17:00:59 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\erunt\ERUNT.EXE
2014-01-26 17:00:35 EE386D5ACB945089BCD91766697224BB 1037068 ----a-w- C:\Documents and Settings\Milana\Desktop\JRT.exe
2014-01-26 16:59:52 74557BFD04530E512DBB9C151C4DA110 499384 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McUICnt.exe
2014-01-26 12:32:29 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\WINDOWS\system32\javaws.exe
2014-01-26 12:32:15 EBAB810C999D8C31F0D5D8B28B3EEDD1 15784 ----a-w- C:\Program Files\Java\jre7\bin\servertool.exe
2014-01-26 12:32:15 C422AF851B98378A39B51D99FE707E64 146344 ----a-w- C:\Program Files\Java\jre7\bin\unpack200.exe
2014-01-26 12:32:15 ACA236A716C2291E40ED069F2CBB3D35 49064 ----a-w- C:\Program Files\Java\jre7\bin\ssvagent.exe
2014-01-26 12:32:15 6E2BECF6E17FF8DC850C058A38A50C4F 15784 ----a-w- C:\Program Files\Java\jre7\bin\rmiregistry.exe
2014-01-26 12:32:15 6E1B0EEBF3D1CC7ECF4104E1473900FF 15784 ----a-w- C:\Program Files\Java\jre7\bin\rmid.exe
2014-01-26 12:32:15 397A6EA17BB97800939DE44D7BFEEC04 15784 ----a-w- C:\Program Files\Java\jre7\bin\policytool.exe
2014-01-26 12:32:15 0E37C7C174521E16CEA0A6BC46F03BCD 16296 ----a-w- C:\Program Files\Java\jre7\bin\tnameserv.exe
2014-01-26 12:32:14 F4BA3A5D5FDE0A321CD7C4A74749CE5B 15784 ----a-w- C:\Program Files\Java\jre7\bin\pack200.exe
2014-01-26 12:32:14 ED1F5F1906F8D963612A4831CDB331D6 15784 ----a-w- C:\Program Files\Java\jre7\bin\ktab.exe
2014-01-26 12:32:14 B9436A665A8621073A12338B16D7BFD4 182696 ----a-w- C:\Program Files\Java\jre7\bin\jqs.exe
2014-01-26 12:32:14 A8F2A6D5782AA0166D8367FF674DDF77 52648 ----a-w- C:\Program Files\Java\jre7\bin\jp2launcher.exe
2014-01-26 12:32:14 762E372DCFDAE32FAE52C1A50A0029C2 15784 ----a-w- C:\Program Files\Java\jre7\bin\klist.exe
2014-01-26 12:32:14 6EEAD2C8A5CAC1F0F2066ABD77BA9092 15784 ----a-w- C:\Program Files\Java\jre7\bin\keytool.exe
2014-01-26 12:32:14 49A5F3169A23C00F9F2023DFE04D7AF6 15784 ----a-w- C:\Program Files\Java\jre7\bin\kinit.exe
2014-01-26 12:32:14 18BC25C50200C3DD4E67611D2467DAA2 15784 ----a-w- C:\Program Files\Java\jre7\bin\orbd.exe
2014-01-26 12:32:13 E9BFEA5B2F3F7598DA990F9728768790 66984 ----a-w- C:\Program Files\Java\jre7\bin\javacpl.exe
2014-01-26 12:32:13 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Program Files\Java\jre7\bin\javaw.exe
2014-01-26 12:32:13 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Program Files\Java\jre7\bin\javaws.exe
2014-01-26 12:32:12 FBC27FD8E76C53E6E8066944BBE2BF73 48040 ----a-w- C:\Program Files\Java\jre7\bin\jabswitch.exe
2014-01-26 12:32:12 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Program Files\Java\jre7\bin\java.exe
2014-01-26 12:32:12 5877E6618DA03EE8E7A869F57EE6ACE5 15784 ----a-w- C:\Program Files\Java\jre7\bin\java-rmi.exe
2014-01-26 12:22:53 D6A3D61864E8F9565550548865D7522C 921000 ----a-w- C:\Documents and Settings\Milana\My Documents\??????????\jxpiinstall.exe
2014-01-26 12:06:48 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\WINDOWS\system32\javaw.exe
2014-01-26 12:06:47 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\WINDOWS\system32\java.exe
2014-01-26 12:06:33 F17349E5E24A10FA017D7AD5A6DA0D54 144784 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\unpack200.exe
2014-01-26 12:06:33 C037D947F886667B2E04284A5C146764 43408 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\ssvagent.exe
2014-01-26 12:06:33 B01BDA7E43668CA945D49B56CB6F3989 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\tnameserv.exe
2014-01-26 12:06:32 E3438CF30CFE24D757F9CB9BAC10EA91 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\policytool.exe
2014-01-26 12:06:32 DFF4A42A4DA78EB8E06CF279408D9E5E 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\rmiregistry.exe
2014-01-26 12:06:32 D9831E49DC06AA9878514B3B0CAC37A5 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\ktab.exe
2014-01-26 12:06:32 BAAE51A01F10B76531450E9D345BC559 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\klist.exe
2014-01-26 12:06:32 9F1AC23FF27ADFF75CF4767ED87199AF 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\keytool.exe
2014-01-26 12:06:32 99FA37C59597924994E3CC5A3809A9D6 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\orbd.exe
2014-01-26 12:06:32 945025FDDB38E2176DBE1A47C69D7A51 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\pack200.exe
2014-01-26 12:06:32 72683B25954BCAB6D832E911E16B2660 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\kinit.exe
2014-01-26 12:06:32 6421FB60DDB334AA84EB09B260B70DF9 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\servertool.exe
2014-01-26 12:06:32 19329749C7A1B2E224F5DAED2A91EB52 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\rmid.exe
2014-01-26 12:06:31 BDD6664E0D9D9A5550038F33637265EA 173960 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javaw.exe
2014-01-26 12:06:31 B9AAFEA1DD9F168CA61E8397958FD070 61832 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javacpl.exe
2014-01-26 12:06:31 A25F44BEE54FFA7FC3005B6CB0F68FD5 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\java-rmi.exe
2014-01-26 12:06:31 973DB7AC74C554C546F8B0B7B98FB855 161664 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jqs.exe
2014-01-26 12:06:31 81CB82C6E1D75051D8C43F11C309D96E 32144 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jp2launcher.exe
2014-01-26 12:06:31 61E86929127BA5BC4F8D29E4E60D36B2 87432 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jbroker.exe
2014-01-26 12:06:31 3201F63F840D1609141EF3D903EBE30E 223112 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javaws.exe
2014-01-26 12:06:31 078C041AC65593A812F5B2A10F53C4E8 173960 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\java.exe
2014-01-26 11:45:11 F7047D04ABD0CC36A3914A74AC8B4362 195777 ----a-w- C:\Program Files\VideoLAN\VLC\uninstall.exe
2014-01-24 18:53:58 FD9CDDA845016FD1AB5224608AFF8B40 486088 ----a-w- C:\Program Files\MCShield\MCS-Uninstall.exe
2014-01-21 19:53:45 EC4801027AFC2DAF40F8B62B3821044D 1392480 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera_crashreporter.exe
2014-01-21 19:53:45 6AC06D82C55BC114A884B9027013A6E6 2457952 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera_autoupdate.exe
2014-01-21 19:53:45 0AFA29EDDD1998207DD29FD42757304A 1598304 ----a-w- C:\Program Files\Opera\launcher.exe
2014-01-21 19:53:43 BF2AD1BD9EBE59FC82639DBF959A3DB8 73568 ----a-w- C:\Program Files\Opera\18.0.1284.68\wow_helper.exe
2014-01-21 19:53:43 0D7A1BBAFFC9A0FFA16D94E16BF141FB 43706208 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera.exe
2014-01-20 21:24:18 035FED3620FA7F14D443375200FDE08C 721472 ----a-w- C:\Program Files\MCShield\Tools\Translator.exe
=== C: other files ==
2014-01-26 17:00:58 CC6C23C02BE66014AD87F2678BBB3A1D 8117 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\modules.bat
2014-01-26 17:00:58 C4A5476A9D54B400F1623A2EE7DDA5C5 13955 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\chrome.bat
2014-01-26 17:00:58 BAD6C67C870CC81C48DBA53089929884 153331 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\firefox.bat
2014-01-26 17:00:58 B964B792D3692699CD7D4FDB63EE470E 1239 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\FWPolicy.bat
2014-01-26 17:00:58 B7D46D5BC21F69EFEEFFC15060E423AC 154167 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\misc.bat
2014-01-26 17:00:58 B45931E5313CB14CAA0F2BC3DA30E6FC 29648 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\ask.bat
2014-01-26 17:00:58 80D02380F1AC33E459324B088392A1EC 732 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\ev_clear.bat
2014-01-26 17:00:58 75C9C20DD9839BF287B43B0E179822DC 31414 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\iexplore.bat
2014-01-26 17:00:58 7178963AEE641F3E47E1CE22416F8A3A 9295 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\runvalues.bat
2014-01-26 17:00:58 654E9FE74B930A454EE5BDE165794B65 85 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\delorphans.bat
2014-01-26 17:00:58 5AE8F4442CA6D69FE9A6738E8DB411F2 10261 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\JRT.bat
2014-01-26 17:00:58 58605DA3492FB918D3D40B1FB88046AE 39471 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\prelim.bat
2014-01-26 17:00:58 55D97CE5B1A61AD51F887E46550029F6 16063 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\get.bat
2014-01-26 17:00:58 372EA6F783198102CF5779072EE78C79 24751 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\searchlnk.bat
2014-01-26 17:00:58 1FBF882AA934A741530741FC134872A3 1243 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\TDL4.bat
2014-01-26 17:00:58 14D6EE8B672684E2232FB430D8C4A928 18668 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\medfos.bat
2014-01-26 17:00:58 0768E560CCD86C18F35FAD29DCEA7B80 1820 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\delfolders.bat
2014-01-26 12:32:16 863EB6802B1C3B7630290871599BE0BD 18636 ----a-w- C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip
2014-01-26 12:06:56 81051BCC2CF1BEDF378224B0A93E2877 2 ----a-w- C:\Program Files\Java\jre1.7.0_02\TempWmicBatchFile.bat
2014-01-26 12:06:33 891CB00E6C55477F69A624A831D76659 18505 ----a-w- C:\Program Files\Java\jre1.7.0_02\lib\deploy\ffjcext.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-21-1060284298-1343024091-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe"
"MCShield Monitor"="C:\Program Files\MCShield\mcshieldrtm.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE"
"Alcmtr"="ALCMTR.EXE"
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
"Domino"="C:\WINDOWS\Domino.EXE"
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
"LanguageShortcut"="C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
"avast5"="C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui"
"AvastUI.exe"="C:\Program Files\Alwil Software\Avast5\AvastUI.exe /nogui"
"TkBellExe"="C:\Program Files\Real\RealPlayer\update\realsched.exe -osboot"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"BigDog303"="C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe"
"MCShield Monitor"="C:\Program Files\MCShield\mcshieldrtm.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BitTorrent Sync]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BitTorrent Sync"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\BitTorrent Sync\\BTSync.exe\" /MINIMIZED"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Facebook Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Facebook Update"
"hkey"="HKCU"
"command"="\"C:\\Documents and Settings\\Milana\\Local Settings\\Application Data\\Facebook\\Update\\FacebookUpdate.exe\" /c /nocrashserver"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HitmanPro35]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HitmanPro35"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Hitman Pro 3.5\\HitmanPro35.exe\" /scan:boot"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iLivid]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iLivid"
"hkey"="HKCU"
"command"="\"C:\\Documents and Settings\\Milana\\Local Settings\\Application Data\\iLivid\\iLivid.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSMSGS]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MSMSGS"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Skype"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /minimized /regrun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SpybotSD TeaTimer]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SpybotSD TeaTimer"
"hkey"="HKCU"
"command"="C:\\Program Files\\Spybot - Search & Destroy\\TeaTimer.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UnlockerAssistant]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UnlockerAssistant"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Unlocker\\UnlockerAssistant.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="uTorrent"
"hkey"="HKCU"
"command"="C:\\Documents and Settings\\Milana\\Application Data\\uTorrent\\uTorrent.exe /MINIMIZED"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
"item"="McAfee Security Scan Plus"
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\McAfee Security Scan Plus.lnk"
"backup"="C:\\WINDOWS\\pss\\McAfee Security Scan Plus.lnkCommon Startup"
"command"="C:\\PROGRA~1\\MCAFEE~1\\38A0D1~1.130\\SSSCHE~1.EXE"


==== Startup Folders ======================


==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
C:\WINDOWS\tasks\avast\Undetermined Task.exe []
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1060284298-1343024091-682003330-1003Core.job --a------ [Undetermined Task]
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1060284298-1343024091-682003330-1003UA.job --a------ C:\Documents and Settings\Milana\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe []
C:\WINDOWS\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1060284298-1343024091-682003330-1003.job --a------ C:\Program Files\Real\RealUpgrade\realupgrade.exe [08/14/2013 05:13 PM]
C:\WINDOWS\tasks\User_Feed_Synchronization-{9C9098F7-5199-4612-9185-47566BB7D877}.job --ah----- [Undetermined Task]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"="C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext" [12/08/2013 11:28 PM]

==== Firefox Extensions ======================

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Documents and Settings\Milana\Application Data\Mozilla\Firefox\Profiles\z4ann2xm.default
A9191AE22A8F1287B5E2DF33E3A57253 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U51
9B10927CFD0F7AD39E40C0E34005B1AD - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.510.13
2557FBC582910A71CDEB0F22886D118D - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll - Shockwave Flash
5B4DA1113F240C3F06FFF9D52761528B - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa
3A9E1940B4459CC97FDCBB24FCB69004 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll - RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)
0FCEAA7D12B7B0BA825E5C770B1DCA48 - C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll - RealPlayer Download Plugin
BE126CB7049E89ED6F3038016668B502 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit)
EAC427FEF96A13058C1ACD17C38966CF - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit)
96B3689320E9B16EDF38B7A5001C35F0 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit)
F8CB60A5ACA5D73807ECBD9942A8BCB7 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin
28000D7EEB2FD95A36E1A7539F599C3B - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM
5D41BCD19A3D90E4EBB58A6BFB79E4F7 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
8B6884E3E1E5F8ABA5FA0C6A2B13181D - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
idhngdhcfkoamngbedgpaokgjbnpdiji - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[08/14/2013 03:24 PM]

RealDownloader - Milana\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{48BF1C8A-08FA-46F9-BE16-E01045C9B996} Yahoo! Search Url="http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo Url="http://www.google.com/search?q={searc"

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on Sun 01/26/2014 at 21:16:36.32 ======================

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building


Zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;
dvoklikom pokreni zoek.exe;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sljedeći tekst:

C:\Program Files\uTorrentControl_v6;fs
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iLivid];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk];r
emptyalltemp;
emptyclsid;
autoclean;


Klikni na dugme i pričekaj da se skeniranje završi.


Zoek će po potrebi restartovati Windows, a na kraju rada otvoriti Notepad sa izvještajem o skeniranju.

Napomena: Izvještaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadržaj tog loga u poruku.

offline
  • Dalibor
  • Pridružio: 03 Feb 2011
  • Poruke: 439
  • Gde živiš: Berlin

Zoek.exe v5.0.0.0 Updated 25-January-2014
Tool run by Milana on Sun 01/26/2014 at 22:48:48.85.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Milana\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

1/26/2014 10:49:45 PM Zoek.exe System Restore Point Created Succesfully.

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10621
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Nisi kopirao kompletan izvještaj.

Ko je trenutno na forumu
 

Ukupno su 683 korisnika na forumu :: 28 registrovanih, 6 sakrivenih i 649 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _Sale, A.R.Chafee.Jr., arsa, babaroga, bato, caesar, Chainsaw, dankisha, denisnapast2015, dragon986, gorozup, ikan, indja, ivan979, Jovan Nenad, Lošmi, Marko Marković, mercedesamg, Panter, rodoljub, royst33, S-lash, segax1, sosko, Srki94, tmanda323, vlvl, zixmix