Sistem mi otezano radi

1

Sistem mi otezano radi

offline
  • Dalibor
  • Pridružio: 03 Feb 2011
  • Poruke: 434
  • Gde živiš: EU

Poslednjih par dana mi sistem otezano radi,koci i secka stranice.


DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.51.2
Run by Milana at 9:23:26 on 2014-01-26
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.355 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ================
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\WINDOWS\Domino.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Real\RealPlayer\update\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MCShield\mcshieldrtm.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Opera\18.0.1284.68\opera.exe
C:\Program Files\Opera\18.0.1284.68\opera_crashreporter.exe
C:\Program Files\Opera\18.0.1284.68\opera.exe
C:\Program Files\Opera\18.0.1284.68\opera.exe
C:\Program Files\Opera\18.0.1284.68\opera.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uWindow Title = Internet Explorer, optimized for Bing and MSN
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = hxxp://www.pandasecurity.com/redirector/?app=Welcome&prod=3753&lang=eng
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - c:\program files\mcafee security scan\3.8.130\McAfeeMSS_IE.dll
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\ie\rndlbrowserrecordplugin.dll
BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [MCShield Monitor] c:\program files\mcshield\mcshieldrtm.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [StartCCC] c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe
mRun: [Domino] c:\windows\Domino.EXE
mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe"
mRun: [LanguageShortcut] "c:\program files\cyberlink\powerdvd\language\Language.exe"
mRun: [avast5] c:\progra~1\alwils~1\avast5\avastUI.exe /nogui
mRun: [AvastUI.exe] "c:\program files\alwil software\avast5\AvastUI.exe" /nogui
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\milana\startm~1\programs\startup\yahoo!~1.lnk - c:\program files\yahoo!\widgets\YahooWidgets.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{DCCDEBB0-9A55-49BA-BF7A-7DA0BDF3657B} : DHCPNameServer = 192.168.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: AtiExtEvent - Ati2evxx.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\milana\application data\mozilla\firefox\profiles\z4ann2xm.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/firefox
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlchromebrowserrecordext.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlhtml5videoshim.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlpepperflashvideoshim.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\npdlplugin.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\mcafee security scan\3.8.130\npMcAfeeMSS.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_12_0_0_43.dll
FF - ExtSQL: 2013-12-08 23:28; {DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}; c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\firefox\Ext
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2013-6-14 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2013-6-14 178304]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2013-6-14 774392]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2013-6-14 403440]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2013-6-14 35656]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-6-14 70384]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2013-6-14 50344]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\realnetworks\realdownloader\rndlresolversvc.exe [2013-8-14 39056]
R2 TeamViewer9;TeamViewer 9;c:\program files\teamviewer\version9\TeamViewer_Service.exe [2014-1-4 5341536]
R3 vmfilter303;vmfilter303;c:\windows\system32\drivers\vmfilter303.sys [2013-11-5 428160]
RUnknown SASKUTIL;SASKUTIL; [x]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-9-5 171680]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys --> c:\windows\system32\drivers\ew_hwusbdev.sys [?]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys --> c:\windows\system32\drivers\ew_jucdcacm.sys [?]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys --> c:\windows\system32\drivers\ew_jubusenum.sys [?]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.8.130\McCHSvc.exe [2013-9-6 235216]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\e:\ntglm7x.sys --> e:\NTGLM7X.sys [?]
.
=============== Created Last 30 ================
.
2014-01-25 12:07:26 -------- d-sh--w- c:\documents and settings\milana\IECompatCache
2014-01-25 09:31:45 106557 ----a-w- c:\windows\system32\btw_ci.dll
2014-01-19 21:11:17 -------- d-----w- c:\documents and settings\milana\local settings\application data\fTalk
2014-01-19 14:46:03 145408 ----a-w- c:\windows\system32\javacpl.cpl
2014-01-19 14:45:58 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-01-14 20:10:52 -------- d-----w- c:\documents and settings\all users\application data\mts mobilni internet
2014-01-14 20:10:17 14640 ------w- c:\windows\system32\spmsgXP_2k3.dll
2014-01-14 20:10:08 28672 ----a-w- c:\windows\system32\drivers\usbccid.sys
2014-01-14 20:10:08 1112288 ----a-w- c:\windows\system32\wdfcoinstaller01007.dll
2014-01-14 20:10:08 1112288 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll
2014-01-14 20:09:43 -------- d-----w- c:\program files\mts mobilni internet
2014-01-14 20:09:16 -------- d-----w- c:\documents and settings\all users\application data\DatacardService
2014-01-14 20:08:55 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2014-01-14 20:08:55 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-01-06 19:23:36 4558848 ----a-w- c:\windows\system32\GPhotos.scr
2014-01-04 11:55:35 -------- d-----w- c:\program files\TeamViewer
2014-01-01 16:42:03 -------- d-----w- c:\documents and settings\milana\local settings\application data\uTorrentControl_v6
2014-01-01 16:42:00 -------- d-----w- c:\program files\uTorrentControl_v6
2014-01-01 16:39:12 -------- d-----w- c:\documents and settings\milana\.android
2014-01-01 16:39:08 -------- d-----w- c:\documents and settings\milana\local settings\application data\cache
2014-01-01 16:39:05 -------- d-----w- c:\documents and settings\milana\local settings\application data\Mobogenie
2014-01-01 16:39:05 -------- d-----w- c:\documents and settings\milana\local settings\application data\genienext
2014-01-01 16:38:19 -------- d-----w- c:\program files\Mobogenie
.
==================== Find3M ====================
.
2014-01-25 07:44:02 23624 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2014-01-21 05:56:58 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-01-21 05:56:58 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-12-23 18:55:40 922112 ------w- c:\windows\system32\imapi2fs.dll
2013-12-23 18:55:40 426496 ------w- c:\windows\system32\imapi2.dll
2013-12-08 22:27:56 499712 ----a-w- c:\windows\system32\msvcp71.dll
2013-12-08 22:27:56 348160 ----a-w- c:\windows\system32\msvcr71.dll
2013-11-05 20:55:25 315392 ----a-w- c:\windows\HideWin.exe
.
============= FINISH: 9:23:43.79 ===============

https://www.mycity.rs/must-login.png

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10481
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Arrow Korak 1

Idi u Start -> Control Panel -> Add or Remove Programs i deinstaliraj sljedeće programe ako ti nisu potrebni:

McAfee Security Scan Plus




Arrow Korak 2

Preuzmi Junkware Removal Tool (JRT) i sačuvaj ga na Desktop.

Zatvori browser i ostale pokrenute programe

Privremeno deaktiviraj zaštitni softver (Uputstvo);

Dvoklikom na ikonicu () pokreni program JRT;

Kod obavještenja "Press any key" pritisnuti bilo koji taster i alat ce započeti skeniranje.
Napomena: u ovisnosti od hardvera račuanra vreme skeniranja u nekim slučajevima moze da potraje.

Kada završi otvorice se Notepad sa izvještajem koji ce biti sačuvan na Desktopu pod nazivom JRT.txt


Arrow Kopiraj sadržaj tog loga u temu.

offline
  • Dalibor
  • Pridružio: 03 Feb 2011
  • Poruke: 434
  • Gde živiš: EU

Arrow McAfee Security Scan Plus sam deinstalirao .


Arrow ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Microsoft Windows XP x86
Ran by Milana on Sun 01/26/2014 at 18:07:20.75
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Chrome

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 01/26/2014 at 18:11:53.21
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10481
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Arrow

Preuzmi zoek.exe sa ovog ili ovog linka i sačuvaj ga na Desktop.


Zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;
dvoklikom pokreni zoek.exe;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sljedeći tekst:

startupall;
skipfix-iedefaults;
firefoxlook;
chromelook;
filesrcm;


Klikni na dugme i pričekaj da se skeniranje završi.


Zoek će po potrebi restartovati Windows, a na kraju rada otvoriti Notepad sa izvještajem o skeniranju.

Napomena: Izvještaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadržaj tog loga u poruku.

offline
  • Dalibor
  • Pridružio: 03 Feb 2011
  • Poruke: 434
  • Gde živiš: EU

Zoek.exe v5.0.0.0 Updated 25-January-2014
Tool run by Milana on Sun 01/26/2014 at 21:14:08.42.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Milana\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

1/26/2014 9:15:05 PM Zoek.exe System Restore Point Created Succesfully.

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\DOCUME~1\Milana\LOCALS~1\Temp ====
2014-01-26 17:00:59 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\erunt\ERUNT.EXE
2014-01-26 16:59:52 EA77325B4FAF6EBC8ACEB42011747DA1 571472 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerStartup.dll
2014-01-26 16:59:52 919160525DA7A3D5D09E0DD5A6B16454 264008 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerRes.dll
2014-01-26 16:59:52 8D15BBCBA2B1A6096C0D15E3D1893B5F 153280 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerRes_LD.dll
2014-01-26 16:59:52 74557BFD04530E512DBB9C151C4DA110 499384 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McUICnt.exe
2014-01-26 16:59:52 206A83BDC11D09FB1B3740236ED5E9EE 418568 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\mcbrwsr2.dll
====== Java Cache =====
2014-01-07 12:26:14 E5C101FE381DE7A2C0549D632E64C6D7 87 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\13\567603cd-6.0.lap
2014-01-07 12:26:15 A5BCD7370FE25039D9118CEA286954A8 17556 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\20\2ea66e94-23b07207
2014-01-07 12:25:42 550D98C3FED4E15451FD8D5C43E0FD65 17193 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\50\4467a472-1e9fe84d
2014-01-07 12:25:41 8E5E7BA449123FEA14197C8E8124CACC 79 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\58\184bc73a-6.0.lap
====== C:\WINDOWS\system32 =====
2014-01-26 12:32:29 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\WINDOWS\System32\javaws.exe
2014-01-26 12:32:23 FD80D0AE205EC54D1A204DDBD6B766DA 94632 ----a-w- C:\WINDOWS\System32\WindowsAccessBridge.dll
2014-01-26 12:06:48 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\WINDOWS\System32\javaw.exe
2014-01-26 12:06:47 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\WINDOWS\System32\java.exe
2014-01-25 09:31:45 0F14B4CC389894A89D3BA1F5B427FCF0 106557 ----a-w- C:\WINDOWS\System32\btw_ci.dll
2014-01-19 14:46:03 C94EC0201AD94C0A25461F1073F60493 145408 ----a-w- C:\WINDOWS\System32\javacpl.cpl
2014-01-14 20:10:17 066F7FCCA265D01A5B7EAF41ADE789B1 14640 ------w- C:\WINDOWS\System32\spmsgXP_2k3.dll
2014-01-14 20:10:08 81D9BCCEB78795CD0315B24960F2D130 1112288 ----a-w- C:\WINDOWS\System32\wdfcoinstaller01007.dll
====== C:\WINDOWS\system32\drivers =====
2014-01-14 20:12:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2014-01-14 20:10:23 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2014-01-14 20:10:22 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2014-01-14 20:10:08 81D9BCCEB78795CD0315B24960F2D130 1112288 ----a-w- C:\WINDOWS\System32\drivers\WdfCoInstaller01007.dll
2014-01-14 20:10:08 6B5E4D5E6E5ECD6ACD14AED59768CE5C 28672 ----a-w- C:\WINDOWS\System32\drivers\usbccid.sys
2014-01-14 20:08:55 173F317CE0DB8E21322E71B7E60A27E8 32128 ----a-w- C:\WINDOWS\System32\drivers\usbccgp.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-01-26 11:44:18 -------- d-----w- C:\Program Files\VideoLAN
2014-01-14 20:09:43 -------- d-----w- C:\Program Files\mts mobilni internet
2014-01-07 12:34:55 -------- d-----w- C:\Program Files\Common Files\Java
2014-01-07 12:34:30 -------- d-----w- C:\Program Files\Java
2014-01-04 11:55:35 -------- d-----w- C:\Program Files\TeamViewer
2014-01-01 16:42:00 -------- d-----w- C:\Program Files\uTorrentControl_v6
2014-01-01 16:38:19 -------- d-----w- C:\Program Files\Mobogenie
======= C: =====
====== C:\Documents and Settings\Milana\Application Data ======
2014-01-26 11:46:30 -------- d-----w- C:\Documents and Settings\Milana\Application Data\vlc
2014-01-01 16:42:03 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\uTorrentControl_v6
2014-01-01 16:39:08 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\cache
2014-01-01 16:39:05 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\Mobogenie
2014-01-01 16:39:05 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\genienext
====== C:\Documents and Settings\Milana ======
2014-01-26 17:00:35 EE386D5ACB945089BCD91766697224BB 1037068 ----a-w- C:\Documents and Settings\Milana\Desktop\JRT.exe
2014-01-26 08:20:05 -------- d--h--r- C:\Documents and Settings\Milana\Recent
2014-01-25 12:07:26 -------- d-sh--w- C:\Documents and Settings\Milana\IECompatCache
2014-01-01 16:39:12 -------- d-----w- C:\Documents and Settings\Milana\.android
2014-01-01 16:39:07 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Documents and Settings\Milana\daemonprocess.txt

====== C: exe-files ==
2014-01-26 17:00:59 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\erunt\ERUNT.EXE
2014-01-26 17:00:35 EE386D5ACB945089BCD91766697224BB 1037068 ----a-w- C:\Documents and Settings\Milana\Desktop\JRT.exe
2014-01-26 16:59:52 74557BFD04530E512DBB9C151C4DA110 499384 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McUICnt.exe
2014-01-26 12:32:29 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\WINDOWS\system32\javaws.exe
2014-01-26 12:32:15 EBAB810C999D8C31F0D5D8B28B3EEDD1 15784 ----a-w- C:\Program Files\Java\jre7\bin\servertool.exe
2014-01-26 12:32:15 C422AF851B98378A39B51D99FE707E64 146344 ----a-w- C:\Program Files\Java\jre7\bin\unpack200.exe
2014-01-26 12:32:15 ACA236A716C2291E40ED069F2CBB3D35 49064 ----a-w- C:\Program Files\Java\jre7\bin\ssvagent.exe
2014-01-26 12:32:15 6E2BECF6E17FF8DC850C058A38A50C4F 15784 ----a-w- C:\Program Files\Java\jre7\bin\rmiregistry.exe
2014-01-26 12:32:15 6E1B0EEBF3D1CC7ECF4104E1473900FF 15784 ----a-w- C:\Program Files\Java\jre7\bin\rmid.exe
2014-01-26 12:32:15 397A6EA17BB97800939DE44D7BFEEC04 15784 ----a-w- C:\Program Files\Java\jre7\bin\policytool.exe
2014-01-26 12:32:15 0E37C7C174521E16CEA0A6BC46F03BCD 16296 ----a-w- C:\Program Files\Java\jre7\bin\tnameserv.exe
2014-01-26 12:32:14 F4BA3A5D5FDE0A321CD7C4A74749CE5B 15784 ----a-w- C:\Program Files\Java\jre7\bin\pack200.exe
2014-01-26 12:32:14 ED1F5F1906F8D963612A4831CDB331D6 15784 ----a-w- C:\Program Files\Java\jre7\bin\ktab.exe
2014-01-26 12:32:14 B9436A665A8621073A12338B16D7BFD4 182696 ----a-w- C:\Program Files\Java\jre7\bin\jqs.exe
2014-01-26 12:32:14 A8F2A6D5782AA0166D8367FF674DDF77 52648 ----a-w- C:\Program Files\Java\jre7\bin\jp2launcher.exe
2014-01-26 12:32:14 762E372DCFDAE32FAE52C1A50A0029C2 15784 ----a-w- C:\Program Files\Java\jre7\bin\klist.exe
2014-01-26 12:32:14 6EEAD2C8A5CAC1F0F2066ABD77BA9092 15784 ----a-w- C:\Program Files\Java\jre7\bin\keytool.exe
2014-01-26 12:32:14 49A5F3169A23C00F9F2023DFE04D7AF6 15784 ----a-w- C:\Program Files\Java\jre7\bin\kinit.exe
2014-01-26 12:32:14 18BC25C50200C3DD4E67611D2467DAA2 15784 ----a-w- C:\Program Files\Java\jre7\bin\orbd.exe
2014-01-26 12:32:13 E9BFEA5B2F3F7598DA990F9728768790 66984 ----a-w- C:\Program Files\Java\jre7\bin\javacpl.exe
2014-01-26 12:32:13 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Program Files\Java\jre7\bin\javaw.exe
2014-01-26 12:32:13 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Program Files\Java\jre7\bin\javaws.exe
2014-01-26 12:32:12 FBC27FD8E76C53E6E8066944BBE2BF73 48040 ----a-w- C:\Program Files\Java\jre7\bin\jabswitch.exe
2014-01-26 12:32:12 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Program Files\Java\jre7\bin\java.exe
2014-01-26 12:32:12 5877E6618DA03EE8E7A869F57EE6ACE5 15784 ----a-w- C:\Program Files\Java\jre7\bin\java-rmi.exe
2014-01-26 12:22:53 D6A3D61864E8F9565550548865D7522C 921000 ----a-w- C:\Documents and Settings\Milana\My Documents\??????????\jxpiinstall.exe
2014-01-26 12:06:48 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\WINDOWS\system32\javaw.exe
2014-01-26 12:06:47 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\WINDOWS\system32\java.exe
2014-01-26 12:06:33 F17349E5E24A10FA017D7AD5A6DA0D54 144784 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\unpack200.exe
2014-01-26 12:06:33 C037D947F886667B2E04284A5C146764 43408 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\ssvagent.exe
2014-01-26 12:06:33 B01BDA7E43668CA945D49B56CB6F3989 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\tnameserv.exe
2014-01-26 12:06:32 E3438CF30CFE24D757F9CB9BAC10EA91 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\policytool.exe
2014-01-26 12:06:32 DFF4A42A4DA78EB8E06CF279408D9E5E 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\rmiregistry.exe
2014-01-26 12:06:32 D9831E49DC06AA9878514B3B0CAC37A5 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\ktab.exe
2014-01-26 12:06:32 BAAE51A01F10B76531450E9D345BC559 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\klist.exe
2014-01-26 12:06:32 9F1AC23FF27ADFF75CF4767ED87199AF 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\keytool.exe
2014-01-26 12:06:32 99FA37C59597924994E3CC5A3809A9D6 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\orbd.exe
2014-01-26 12:06:32 945025FDDB38E2176DBE1A47C69D7A51 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\pack200.exe
2014-01-26 12:06:32 72683B25954BCAB6D832E911E16B2660 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\kinit.exe
2014-01-26 12:06:32 6421FB60DDB334AA84EB09B260B70DF9 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\servertool.exe
2014-01-26 12:06:32 19329749C7A1B2E224F5DAED2A91EB52 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\rmid.exe
2014-01-26 12:06:31 BDD6664E0D9D9A5550038F33637265EA 173960 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javaw.exe
2014-01-26 12:06:31 B9AAFEA1DD9F168CA61E8397958FD070 61832 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javacpl.exe
2014-01-26 12:06:31 A25F44BEE54FFA7FC3005B6CB0F68FD5 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\java-rmi.exe
2014-01-26 12:06:31 973DB7AC74C554C546F8B0B7B98FB855 161664 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jqs.exe
2014-01-26 12:06:31 81CB82C6E1D75051D8C43F11C309D96E 32144 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jp2launcher.exe
2014-01-26 12:06:31 61E86929127BA5BC4F8D29E4E60D36B2 87432 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jbroker.exe
2014-01-26 12:06:31 3201F63F840D1609141EF3D903EBE30E 223112 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javaws.exe
2014-01-26 12:06:31 078C041AC65593A812F5B2A10F53C4E8 173960 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\java.exe
2014-01-26 11:45:11 F7047D04ABD0CC36A3914A74AC8B4362 195777 ----a-w- C:\Program Files\VideoLAN\VLC\uninstall.exe
2014-01-24 18:53:58 FD9CDDA845016FD1AB5224608AFF8B40 486088 ----a-w- C:\Program Files\MCShield\MCS-Uninstall.exe
2014-01-21 19:53:45 EC4801027AFC2DAF40F8B62B3821044D 1392480 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera_crashreporter.exe
2014-01-21 19:53:45 6AC06D82C55BC114A884B9027013A6E6 2457952 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera_autoupdate.exe
2014-01-21 19:53:45 0AFA29EDDD1998207DD29FD42757304A 1598304 ----a-w- C:\Program Files\Opera\launcher.exe
2014-01-21 19:53:43 BF2AD1BD9EBE59FC82639DBF959A3DB8 73568 ----a-w- C:\Program Files\Opera\18.0.1284.68\wow_helper.exe
2014-01-21 19:53:43 0D7A1BBAFFC9A0FFA16D94E16BF141FB 43706208 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera.exe
2014-01-20 21:24:18 035FED3620FA7F14D443375200FDE08C 721472 ----a-w- C:\Program Files\MCShield\Tools\Translator.exe
=== C: other files ==
2014-01-26 17:00:58 CC6C23C02BE66014AD87F2678BBB3A1D 8117 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\modules.bat
2014-01-26 17:00:58 C4A5476A9D54B400F1623A2EE7DDA5C5 13955 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\chrome.bat
2014-01-26 17:00:58 BAD6C67C870CC81C48DBA53089929884 153331 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\firefox.bat
2014-01-26 17:00:58 B964B792D3692699CD7D4FDB63EE470E 1239 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\FWPolicy.bat
2014-01-26 17:00:58 B7D46D5BC21F69EFEEFFC15060E423AC 154167 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\misc.bat
2014-01-26 17:00:58 B45931E5313CB14CAA0F2BC3DA30E6FC 29648 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\ask.bat
2014-01-26 17:00:58 80D02380F1AC33E459324B088392A1EC 732 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\ev_clear.bat
2014-01-26 17:00:58 75C9C20DD9839BF287B43B0E179822DC 31414 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\iexplore.bat
2014-01-26 17:00:58 7178963AEE641F3E47E1CE22416F8A3A 9295 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\runvalues.bat
2014-01-26 17:00:58 654E9FE74B930A454EE5BDE165794B65 85 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\delorphans.bat
2014-01-26 17:00:58 5AE8F4442CA6D69FE9A6738E8DB411F2 10261 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\JRT.bat
2014-01-26 17:00:58 58605DA3492FB918D3D40B1FB88046AE 39471 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\prelim.bat
2014-01-26 17:00:58 55D97CE5B1A61AD51F887E46550029F6 16063 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\get.bat
2014-01-26 17:00:58 372EA6F783198102CF5779072EE78C79 24751 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\searchlnk.bat
2014-01-26 17:00:58 1FBF882AA934A741530741FC134872A3 1243 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\TDL4.bat
2014-01-26 17:00:58 14D6EE8B672684E2232FB430D8C4A928 18668 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\medfos.bat
2014-01-26 17:00:58 0768E560CCD86C18F35FAD29DCEA7B80 1820 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\delfolders.bat
2014-01-26 12:32:16 863EB6802B1C3B7630290871599BE0BD 18636 ----a-w- C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip
2014-01-26 12:06:56 81051BCC2CF1BEDF378224B0A93E2877 2 ----a-w- C:\Program Files\Java\jre1.7.0_02\TempWmicBatchFile.bat
2014-01-26 12:06:33 891CB00E6C55477F69A624A831D76659 18505 ----a-w- C:\Program Files\Java\jre1.7.0_02\lib\deploy\ffjcext.zip

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10481
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Nisi kopirao kompletan izvještaj.

offline
  • Dalibor
  • Pridružio: 03 Feb 2011
  • Poruke: 434
  • Gde živiš: EU

Zoek.exe v5.0.0.0 Updated 25-January-2014
Tool run by Milana on Sun 01/26/2014 at 21:14:08.42.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Milana\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

1/26/2014 9:15:05 PM Zoek.exe System Restore Point Created Succesfully.

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====
====== C:\DOCUME~1\Milana\LOCALS~1\Temp ====
2014-01-26 17:00:59 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\erunt\ERUNT.EXE
2014-01-26 16:59:52 EA77325B4FAF6EBC8ACEB42011747DA1 571472 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerStartup.dll
2014-01-26 16:59:52 919160525DA7A3D5D09E0DD5A6B16454 264008 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerRes.dll
2014-01-26 16:59:52 8D15BBCBA2B1A6096C0D15E3D1893B5F 153280 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McInstallerRes_LD.dll
2014-01-26 16:59:52 74557BFD04530E512DBB9C151C4DA110 499384 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McUICnt.exe
2014-01-26 16:59:52 206A83BDC11D09FB1B3740236ED5E9EE 418568 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\mcbrwsr2.dll
====== Java Cache =====
2014-01-07 12:26:14 E5C101FE381DE7A2C0549D632E64C6D7 87 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\13\567603cd-6.0.lap
2014-01-07 12:26:15 A5BCD7370FE25039D9118CEA286954A8 17556 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\20\2ea66e94-23b07207
2014-01-07 12:25:42 550D98C3FED4E15451FD8D5C43E0FD65 17193 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\50\4467a472-1e9fe84d
2014-01-07 12:25:41 8E5E7BA449123FEA14197C8E8124CACC 79 ----a-w- C:\Documents and Settings\Milana\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\58\184bc73a-6.0.lap
====== C:\WINDOWS\system32 =====
2014-01-26 12:32:29 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\WINDOWS\System32\javaws.exe
2014-01-26 12:32:23 FD80D0AE205EC54D1A204DDBD6B766DA 94632 ----a-w- C:\WINDOWS\System32\WindowsAccessBridge.dll
2014-01-26 12:06:48 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\WINDOWS\System32\javaw.exe
2014-01-26 12:06:47 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\WINDOWS\System32\java.exe
2014-01-25 09:31:45 0F14B4CC389894A89D3BA1F5B427FCF0 106557 ----a-w- C:\WINDOWS\System32\btw_ci.dll
2014-01-19 14:46:03 C94EC0201AD94C0A25461F1073F60493 145408 ----a-w- C:\WINDOWS\System32\javacpl.cpl
2014-01-14 20:10:17 066F7FCCA265D01A5B7EAF41ADE789B1 14640 ------w- C:\WINDOWS\System32\spmsgXP_2k3.dll
2014-01-14 20:10:08 81D9BCCEB78795CD0315B24960F2D130 1112288 ----a-w- C:\WINDOWS\System32\wdfcoinstaller01007.dll
====== C:\WINDOWS\system32\drivers =====
2014-01-14 20:12:01 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf
2014-01-14 20:10:23 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf
2014-01-14 20:10:22 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf
2014-01-14 20:10:08 81D9BCCEB78795CD0315B24960F2D130 1112288 ----a-w- C:\WINDOWS\System32\drivers\WdfCoInstaller01007.dll
2014-01-14 20:10:08 6B5E4D5E6E5ECD6ACD14AED59768CE5C 28672 ----a-w- C:\WINDOWS\System32\drivers\usbccid.sys
2014-01-14 20:08:55 173F317CE0DB8E21322E71B7E60A27E8 32128 ----a-w- C:\WINDOWS\System32\drivers\usbccgp.sys
====== C:\WINDOWS\Tasks ======
====== C:\WINDOWS\Temp ======
======= C:\Program Files =====
2014-01-26 11:44:18 -------- d-----w- C:\Program Files\VideoLAN
2014-01-14 20:09:43 -------- d-----w- C:\Program Files\mts mobilni internet
2014-01-07 12:34:55 -------- d-----w- C:\Program Files\Common Files\Java
2014-01-07 12:34:30 -------- d-----w- C:\Program Files\Java
2014-01-04 11:55:35 -------- d-----w- C:\Program Files\TeamViewer
2014-01-01 16:42:00 -------- d-----w- C:\Program Files\uTorrentControl_v6
2014-01-01 16:38:19 -------- d-----w- C:\Program Files\Mobogenie
======= C: =====
====== C:\Documents and Settings\Milana\Application Data ======
2014-01-26 11:46:30 -------- d-----w- C:\Documents and Settings\Milana\Application Data\vlc
2014-01-01 16:42:03 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\uTorrentControl_v6
2014-01-01 16:39:08 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\cache
2014-01-01 16:39:05 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\Mobogenie
2014-01-01 16:39:05 -------- d-----w- C:\Documents and Settings\Milana\Local Settings\Application Data\genienext
====== C:\Documents and Settings\Milana ======
2014-01-26 17:00:35 EE386D5ACB945089BCD91766697224BB 1037068 ----a-w- C:\Documents and Settings\Milana\Desktop\JRT.exe
2014-01-26 08:20:05 -------- d--h--r- C:\Documents and Settings\Milana\Recent
2014-01-25 12:07:26 -------- d-sh--w- C:\Documents and Settings\Milana\IECompatCache
2014-01-01 16:39:12 -------- d-----w- C:\Documents and Settings\Milana\.android
2014-01-01 16:39:07 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Documents and Settings\Milana\daemonprocess.txt

====== C: exe-files ==
2014-01-26 17:00:59 2E0323A94915FAAB10A25F3BABF82584 157696 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\erunt\ERUNT.EXE
2014-01-26 17:00:35 EE386D5ACB945089BCD91766697224BB 1037068 ----a-w- C:\Documents and Settings\Milana\Desktop\JRT.exe
2014-01-26 16:59:52 74557BFD04530E512DBB9C151C4DA110 499384 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\MSS\3.8.130.10\McUICnt.exe
2014-01-26 12:32:29 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\WINDOWS\system32\javaws.exe
2014-01-26 12:32:15 EBAB810C999D8C31F0D5D8B28B3EEDD1 15784 ----a-w- C:\Program Files\Java\jre7\bin\servertool.exe
2014-01-26 12:32:15 C422AF851B98378A39B51D99FE707E64 146344 ----a-w- C:\Program Files\Java\jre7\bin\unpack200.exe
2014-01-26 12:32:15 ACA236A716C2291E40ED069F2CBB3D35 49064 ----a-w- C:\Program Files\Java\jre7\bin\ssvagent.exe
2014-01-26 12:32:15 6E2BECF6E17FF8DC850C058A38A50C4F 15784 ----a-w- C:\Program Files\Java\jre7\bin\rmiregistry.exe
2014-01-26 12:32:15 6E1B0EEBF3D1CC7ECF4104E1473900FF 15784 ----a-w- C:\Program Files\Java\jre7\bin\rmid.exe
2014-01-26 12:32:15 397A6EA17BB97800939DE44D7BFEEC04 15784 ----a-w- C:\Program Files\Java\jre7\bin\policytool.exe
2014-01-26 12:32:15 0E37C7C174521E16CEA0A6BC46F03BCD 16296 ----a-w- C:\Program Files\Java\jre7\bin\tnameserv.exe
2014-01-26 12:32:14 F4BA3A5D5FDE0A321CD7C4A74749CE5B 15784 ----a-w- C:\Program Files\Java\jre7\bin\pack200.exe
2014-01-26 12:32:14 ED1F5F1906F8D963612A4831CDB331D6 15784 ----a-w- C:\Program Files\Java\jre7\bin\ktab.exe
2014-01-26 12:32:14 B9436A665A8621073A12338B16D7BFD4 182696 ----a-w- C:\Program Files\Java\jre7\bin\jqs.exe
2014-01-26 12:32:14 A8F2A6D5782AA0166D8367FF674DDF77 52648 ----a-w- C:\Program Files\Java\jre7\bin\jp2launcher.exe
2014-01-26 12:32:14 762E372DCFDAE32FAE52C1A50A0029C2 15784 ----a-w- C:\Program Files\Java\jre7\bin\klist.exe
2014-01-26 12:32:14 6EEAD2C8A5CAC1F0F2066ABD77BA9092 15784 ----a-w- C:\Program Files\Java\jre7\bin\keytool.exe
2014-01-26 12:32:14 49A5F3169A23C00F9F2023DFE04D7AF6 15784 ----a-w- C:\Program Files\Java\jre7\bin\kinit.exe
2014-01-26 12:32:14 18BC25C50200C3DD4E67611D2467DAA2 15784 ----a-w- C:\Program Files\Java\jre7\bin\orbd.exe
2014-01-26 12:32:13 E9BFEA5B2F3F7598DA990F9728768790 66984 ----a-w- C:\Program Files\Java\jre7\bin\javacpl.exe
2014-01-26 12:32:13 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\Program Files\Java\jre7\bin\javaw.exe
2014-01-26 12:32:13 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\Program Files\Java\jre7\bin\javaws.exe
2014-01-26 12:32:12 FBC27FD8E76C53E6E8066944BBE2BF73 48040 ----a-w- C:\Program Files\Java\jre7\bin\jabswitch.exe
2014-01-26 12:32:12 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\Program Files\Java\jre7\bin\java.exe
2014-01-26 12:32:12 5877E6618DA03EE8E7A869F57EE6ACE5 15784 ----a-w- C:\Program Files\Java\jre7\bin\java-rmi.exe
2014-01-26 12:22:53 D6A3D61864E8F9565550548865D7522C 921000 ----a-w- C:\Documents and Settings\Milana\My Documents\??????????\jxpiinstall.exe
2014-01-26 12:06:48 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\WINDOWS\system32\javaw.exe
2014-01-26 12:06:47 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\WINDOWS\system32\java.exe
2014-01-26 12:06:33 F17349E5E24A10FA017D7AD5A6DA0D54 144784 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\unpack200.exe
2014-01-26 12:06:33 C037D947F886667B2E04284A5C146764 43408 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\ssvagent.exe
2014-01-26 12:06:33 B01BDA7E43668CA945D49B56CB6F3989 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\tnameserv.exe
2014-01-26 12:06:32 E3438CF30CFE24D757F9CB9BAC10EA91 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\policytool.exe
2014-01-26 12:06:32 DFF4A42A4DA78EB8E06CF279408D9E5E 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\rmiregistry.exe
2014-01-26 12:06:32 D9831E49DC06AA9878514B3B0CAC37A5 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\ktab.exe
2014-01-26 12:06:32 BAAE51A01F10B76531450E9D345BC559 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\klist.exe
2014-01-26 12:06:32 9F1AC23FF27ADFF75CF4767ED87199AF 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\keytool.exe
2014-01-26 12:06:32 99FA37C59597924994E3CC5A3809A9D6 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\orbd.exe
2014-01-26 12:06:32 945025FDDB38E2176DBE1A47C69D7A51 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\pack200.exe
2014-01-26 12:06:32 72683B25954BCAB6D832E911E16B2660 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\kinit.exe
2014-01-26 12:06:32 6421FB60DDB334AA84EB09B260B70DF9 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\servertool.exe
2014-01-26 12:06:32 19329749C7A1B2E224F5DAED2A91EB52 14728 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\rmid.exe
2014-01-26 12:06:31 BDD6664E0D9D9A5550038F33637265EA 173960 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javaw.exe
2014-01-26 12:06:31 B9AAFEA1DD9F168CA61E8397958FD070 61832 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javacpl.exe
2014-01-26 12:06:31 A25F44BEE54FFA7FC3005B6CB0F68FD5 14736 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\java-rmi.exe
2014-01-26 12:06:31 973DB7AC74C554C546F8B0B7B98FB855 161664 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jqs.exe
2014-01-26 12:06:31 81CB82C6E1D75051D8C43F11C309D96E 32144 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jp2launcher.exe
2014-01-26 12:06:31 61E86929127BA5BC4F8D29E4E60D36B2 87432 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\jbroker.exe
2014-01-26 12:06:31 3201F63F840D1609141EF3D903EBE30E 223112 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\javaws.exe
2014-01-26 12:06:31 078C041AC65593A812F5B2A10F53C4E8 173960 ----a-w- C:\Program Files\Java\jre1.7.0_02\bin\java.exe
2014-01-26 11:45:11 F7047D04ABD0CC36A3914A74AC8B4362 195777 ----a-w- C:\Program Files\VideoLAN\VLC\uninstall.exe
2014-01-24 18:53:58 FD9CDDA845016FD1AB5224608AFF8B40 486088 ----a-w- C:\Program Files\MCShield\MCS-Uninstall.exe
2014-01-21 19:53:45 EC4801027AFC2DAF40F8B62B3821044D 1392480 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera_crashreporter.exe
2014-01-21 19:53:45 6AC06D82C55BC114A884B9027013A6E6 2457952 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera_autoupdate.exe
2014-01-21 19:53:45 0AFA29EDDD1998207DD29FD42757304A 1598304 ----a-w- C:\Program Files\Opera\launcher.exe
2014-01-21 19:53:43 BF2AD1BD9EBE59FC82639DBF959A3DB8 73568 ----a-w- C:\Program Files\Opera\18.0.1284.68\wow_helper.exe
2014-01-21 19:53:43 0D7A1BBAFFC9A0FFA16D94E16BF141FB 43706208 ----a-w- C:\Program Files\Opera\18.0.1284.68\opera.exe
2014-01-20 21:24:18 035FED3620FA7F14D443375200FDE08C 721472 ----a-w- C:\Program Files\MCShield\Tools\Translator.exe
=== C: other files ==
2014-01-26 17:00:58 CC6C23C02BE66014AD87F2678BBB3A1D 8117 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\modules.bat
2014-01-26 17:00:58 C4A5476A9D54B400F1623A2EE7DDA5C5 13955 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\chrome.bat
2014-01-26 17:00:58 BAD6C67C870CC81C48DBA53089929884 153331 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\firefox.bat
2014-01-26 17:00:58 B964B792D3692699CD7D4FDB63EE470E 1239 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\FWPolicy.bat
2014-01-26 17:00:58 B7D46D5BC21F69EFEEFFC15060E423AC 154167 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\misc.bat
2014-01-26 17:00:58 B45931E5313CB14CAA0F2BC3DA30E6FC 29648 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\ask.bat
2014-01-26 17:00:58 80D02380F1AC33E459324B088392A1EC 732 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\ev_clear.bat
2014-01-26 17:00:58 75C9C20DD9839BF287B43B0E179822DC 31414 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\iexplore.bat
2014-01-26 17:00:58 7178963AEE641F3E47E1CE22416F8A3A 9295 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\runvalues.bat
2014-01-26 17:00:58 654E9FE74B930A454EE5BDE165794B65 85 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\delorphans.bat
2014-01-26 17:00:58 5AE8F4442CA6D69FE9A6738E8DB411F2 10261 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\JRT.bat
2014-01-26 17:00:58 58605DA3492FB918D3D40B1FB88046AE 39471 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\prelim.bat
2014-01-26 17:00:58 55D97CE5B1A61AD51F887E46550029F6 16063 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\get.bat
2014-01-26 17:00:58 372EA6F783198102CF5779072EE78C79 24751 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\searchlnk.bat
2014-01-26 17:00:58 1FBF882AA934A741530741FC134872A3 1243 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\TDL4.bat
2014-01-26 17:00:58 14D6EE8B672684E2232FB430D8C4A928 18668 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\medfos.bat
2014-01-26 17:00:58 0768E560CCD86C18F35FAD29DCEA7B80 1820 ----a-w- C:\Documents and Settings\Milana\Local Settings\Temp\jrt\delfolders.bat
2014-01-26 12:32:16 863EB6802B1C3B7630290871599BE0BD 18636 ----a-w- C:\Program Files\Java\jre7\lib\deploy\ffjcext.zip
2014-01-26 12:06:56 81051BCC2CF1BEDF378224B0A93E2877 2 ----a-w- C:\Program Files\Java\jre1.7.0_02\TempWmicBatchFile.bat
2014-01-26 12:06:33 891CB00E6C55477F69A624A831D76659 18505 ----a-w- C:\Program Files\Java\jre1.7.0_02\lib\deploy\ffjcext.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_USERS\S-1-5-21-1060284298-1343024091-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe"
"MCShield Monitor"="C:\Program Files\MCShield\mcshieldrtm.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE"
"Alcmtr"="ALCMTR.EXE"
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
"Domino"="C:\WINDOWS\Domino.EXE"
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
"LanguageShortcut"="C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
"avast5"="C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui"
"AvastUI.exe"="C:\Program Files\Alwil Software\Avast5\AvastUI.exe /nogui"
"TkBellExe"="C:\Program Files\Real\RealPlayer\update\realsched.exe -osboot"
"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"
"BigDog303"="C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe"
"MCShield Monitor"="C:\Program Files\MCShield\mcshieldrtm.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\BitTorrent Sync]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="BitTorrent Sync"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\BitTorrent Sync\\BTSync.exe\" /MINIMIZED"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Facebook Update]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Facebook Update"
"hkey"="HKCU"
"command"="\"C:\\Documents and Settings\\Milana\\Local Settings\\Application Data\\Facebook\\Update\\FacebookUpdate.exe\" /c /nocrashserver"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HitmanPro35]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="HitmanPro35"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Hitman Pro 3.5\\HitmanPro35.exe\" /scan:boot"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iLivid]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iLivid"
"hkey"="HKCU"
"command"="\"C:\\Documents and Settings\\Milana\\Local Settings\\Application Data\\iLivid\\iLivid.exe\" -autorun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSMSGS]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="MSMSGS"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Skype"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /minimized /regrun"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SpybotSD TeaTimer]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SpybotSD TeaTimer"
"hkey"="HKCU"
"command"="C:\\Program Files\\Spybot - Search & Destroy\\TeaTimer.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\UnlockerAssistant]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="UnlockerAssistant"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Unlocker\\UnlockerAssistant.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="uTorrent"
"hkey"="HKCU"
"command"="C:\\Documents and Settings\\Milana\\Application Data\\uTorrent\\uTorrent.exe /MINIMIZED"


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
"item"="McAfee Security Scan Plus"
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\McAfee Security Scan Plus.lnk"
"backup"="C:\\WINDOWS\\pss\\McAfee Security Scan Plus.lnkCommon Startup"
"command"="C:\\PROGRA~1\\MCAFEE~1\\38A0D1~1.130\\SSSCHE~1.EXE"


==== Startup Folders ======================


==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ [Undetermined Task]
C:\WINDOWS\tasks\avast\Undetermined Task.exe []
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1060284298-1343024091-682003330-1003Core.job --a------ [Undetermined Task]
C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-1060284298-1343024091-682003330-1003UA.job --a------ C:\Documents and Settings\Milana\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe []
C:\WINDOWS\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1060284298-1343024091-682003330-1003.job --a------ C:\Program Files\Real\RealUpgrade\realupgrade.exe [08/14/2013 05:13 PM]
C:\WINDOWS\tasks\User_Feed_Synchronization-{9C9098F7-5199-4612-9185-47566BB7D877}.job --ah----- [Undetermined Task]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"="C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext" [12/08/2013 11:28 PM]

==== Firefox Extensions ======================

AppDir: C:\Program Files\Mozilla Firefox
- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Documents and Settings\Milana\Application Data\Mozilla\Firefox\Profiles\z4ann2xm.default
A9191AE22A8F1287B5E2DF33E3A57253 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U51
9B10927CFD0F7AD39E40C0E34005B1AD - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.510.13
2557FBC582910A71CDEB0F22886D118D - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll - Shockwave Flash
5B4DA1113F240C3F06FFF9D52761528B - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa
3A9E1940B4459CC97FDCBB24FCB69004 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll - RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)
0FCEAA7D12B7B0BA825E5C770B1DCA48 - C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll - RealPlayer Download Plugin
BE126CB7049E89ED6F3038016668B502 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll - RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In (32-bit)
EAC427FEF96A13058C1ACD17C38966CF - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll - RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In (32-bit)
96B3689320E9B16EDF38B7A5001C35F0 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll - RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In (32-bit)
F8CB60A5ACA5D73807ECBD9942A8BCB7 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll - RealDownloader Plugin
28000D7EEB2FD95A36E1A7539F599C3B - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM
5D41BCD19A3D90E4EBB58A6BFB79E4F7 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library
8B6884E3E1E5F8ABA5FA0C6A2B13181D - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
idhngdhcfkoamngbedgpaokgjbnpdiji - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[08/14/2013 03:24 PM]

RealDownloader - Milana\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{48BF1C8A-08FA-46F9-BE16-E01045C9B996} Yahoo! Search Url="http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo Url="http://www.google.com/search?q={searc"

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on Sun 01/26/2014 at 21:16:36.32 ======================

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10481
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building


Zatvori browser i ostale pokrenute programe;
deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ;
dvoklikom pokreni zoek.exe;
pričekaj da se alat startuje ...


U beli okvir prozora iskopiraj sljedeći tekst:

C:\Program Files\uTorrentControl_v6;fs
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iLivid];r
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk];r
emptyalltemp;
emptyclsid;
autoclean;


Klikni na dugme i pričekaj da se skeniranje završi.


Zoek će po potrebi restartovati Windows, a na kraju rada otvoriti Notepad sa izvještajem o skeniranju.

Napomena: Izvještaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log)


Arrow Kopiraj sadržaj tog loga u poruku.

offline
  • Dalibor
  • Pridružio: 03 Feb 2011
  • Poruke: 434
  • Gde živiš: EU

Zoek.exe v5.0.0.0 Updated 25-January-2014
Tool run by Milana on Sun 01/26/2014 at 22:48:48.85.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Milana\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

1/26/2014 10:49:45 PM Zoek.exe System Restore Point Created Succesfully.

offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10481
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Nisi kopirao kompletan izvještaj.

Ko je trenutno na forumu
 

Ukupno su 960 korisnika na forumu :: 60 registrovanih, 5 sakrivenih i 895 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3028 - dana 22 Nov 2019 07:47

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _commandos_, A.R.Chafee.Jr., Acaks88, Aleksa-, amaterSRB, Apok, axa, banebeograd, bankulen, Boris902, celeron, comi991, dane007, darcaud, darkangel, darkstar101, delrey2, Dorcolac, Drug pukovnik, Duh sa sekirom, Dusko Nikolin, duskovuk63, Gabriel182, ikan, JOntra2, krauterbox, Kubovac, KUZMAR, lacko2, LUDI, Mercury2, Metanoja, milanbosnjane, mrvica78, nemkea71, ostoja, panzerwaffe, pedjolino76, Recce, renoje2, repac2, rodoljub2, rovac, Sibin2, slonic_tonic, Srki94, Trpe Grozni, vasa.93, Vatreni Zmaj, Vieri, vladom6, voja64, Warhawk, Yellow Pinky, yrraf, YU-UKI, yufighter, Zandar2, zukara, 187