Svasta nesto sa racunarom

Svasta nesto sa racunarom

offline
  • Pridružio: 04 Jan 2009
  • Poruke: 141
  • Gde živiš: SRBIJA

Pozdrav
evo citam neko vreme ove zadnje postove i svi nesto usporeni racunari i problemi sa internetom pa i kod mene isti problem.
Naime u zadnjih jedno mesec dana problem sa chromom, posto dosta vremena ja i zence gledamo uvece kad legnemo online serije problem je poceo sa pucanjem prvo flash pleyera pa onda i jave. Trazio sam resenje i naleteo na nesto probao ( iskljucio dupli flash pleyer probao i jedan i drugi da iskljucim) ali i dalje isto puca povremeno ne tako cesto ali desava se, i u zadnje vreme kao i evo malopre udjem u npr vojvodina.net i krenem da ucitavam seriju i odjednom nemogu da kliknem ni na puzu ni na uvelicavanje ekrana ni na smanjivanje zvuka nista... Onda imam problem i sa fejsom zena se dosta igra onih igara i jako su usporene i vuku se sve nesto kao da imam neku davnu PC 3 a ne ovo moje cereslo. Da napomenem da sam probao u Mozilu i 360 browser ali sižžisto je to.


Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-11-2014
Ran by Popa (administrator) on POPA-PC on 01-11-2014 20:43:07
Running from C:\Users\Popa\Desktop
Loaded Profile: Popa (Available profiles: Popa)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Monect) C:\Program Files (x86)\MonectHost\MonectServerService.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
() C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Sonix) C:\Windows\vsnp2uvc.exe
(MyCity) C:\Program Files (x86)\MCShield\MCShieldRTM.exe
(Comfort Software Group) C:\Program Files (x86)\FreeAlarmClock\FreeAlarmClock.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
() E:\Programi\HTC_Home_Apis\Clock.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM\...\Run: [TNOD UP] => C:\Program Files\TNod User & Password Finder\TNODUP.exe [1024748 2013-07-01] (Tukero[X]Team)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [snp2uvc] => C:\Windows\vsnp2uvc.exe [675840 2008-08-01] (Sonix)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [630912 2012-05-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [12288 2012-04-19] ()
HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [111696 2013-10-18] (VMware, Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM-x32\...\Run: [snp2uvc] => C:\Windows\vsnp2uvc.exe [675840 2008-08-01] (Sonix)
HKLM-x32\...\Run: [tsnp2uvc] => C:\Windows\tsnp2uvc.exe [320512 2009-12-11] ()
HKU\S-1-5-21-3961711720-3283241288-3328590404-1002\...\Run: [MCShield Monitor] => C:\Program Files (x86)\MCShield\mcshieldrtm.exe [650816 2014-04-11] (MyCity)
HKU\S-1-5-21-3961711720-3283241288-3328590404-1002\...\Run: [FreeAC] => C:\Program Files (x86)\FreeAlarmClock\FreeAlarmClock.exe [1339672 2013-11-12] (Comfort Software Group)
HKU\S-1-5-21-3961711720-3283241288-3328590404-1002\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [33120 2010-08-20] (Alcohol Soft Development Team)
HKU\S-1-5-21-3961711720-3283241288-3328590404-1002\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-3961711720-3283241288-3328590404-1002\...\MountPoints2: {c52fa3dd-9260-11e3-8b83-806e6f6e6963} - F:\Install.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Clock - Shortcut.lnk
ShortcutTarget: Clock - Shortcut.lnk -> E:\Programi\HTC_Home_Apis\Clock.exe ()
Startup: C:\Users\Popa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk
ShortcutTarget: PdaNet Desktop.lnk -> C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = uk.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x17BA23416626CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GB
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Qualys BrowserCheck IE Helper -> {7D2FB79E-E58C-4DB5-A36F-AC1C73967FA5} -> C:\Windows\Downloaded Program Files\qbc_bho.dll (Qualys, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {7D2FB79E-E58C-4DB5-A36F-AC1C73967F4D} browsercheck.qualys.com/qbc_ax.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Popa\AppData\Roaming\Mozilla\Firefox\Profiles\5fkxixn5.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-02-10]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.rs/
CHR StartupUrls: Default -> "hxxp://www.google.rs/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.6.703\_platform_specific\win_x86\widevinecdmadapter.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\internal-nacl-plugin No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll ()
CHR Plugin: (Qualys BrowserCheck Plugin) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejhnkognlohdkpjkjongioociddgoibk\1.9.20.1_0\npqbc.dll (Qualys, Inc.)
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java Deployment Toolkit 8.0.250.18) - C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 8 U25) - C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
CHR Profile: C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google документи) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-10]
CHR Extension: (Google диск) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-10]
CHR Extension: (YouTube) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-10]
CHR Extension: (GeoGebra) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnbaboaihhkjoaolfnfoablhllahjnee [2014-02-10]
CHR Extension: (Google претрага) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-10]
CHR Extension: (Qualys BrowserCheck for Windows) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejhnkognlohdkpjkjongioociddgoibk [2014-02-17]
CHR Extension: (eRepublik) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkdgljgbgpkidcggafgoabibfligjaal [2014-02-10]
CHR Extension: (Mibbit webchat) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbadbkkklnhamjjeagmknajgmbgcmnpi [2014-02-10]
CHR Extension: (IE Tab) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2014-04-15]
CHR Extension: (Google новчаник) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-10]
CHR Extension: (VLC Media Player) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\peaekdbfhaeflbgfjpnclbemhpoikidj [2014-10-26]
CHR Extension: (Gmail) - C:\Users\Popa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-10]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-05-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
R2 MonectServerService; C:\Program Files (x86)\MonectHost\MonectServerService.exe [72192 2014-03-21] (Monect) [File not signed]
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]
R2 vmware-converter-agent; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe [479824 2013-04-09] (VMware, Inc.)
R2 vmware-converter-server; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [479824 2013-04-09] (VMware, Inc.)
R2 vmware-converter-worker; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [479824 2013-04-09] (VMware, Inc.)
R2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [14405200 2013-10-18] ()

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 androidusb; C:\Windows\System32\Drivers\smhwadb.sys [31744 2009-12-24] (Google Inc)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [55936 2011-11-13] (Advanced Micro Devices)
S3 bmdrvr; C:\Windows\SysWow64\drivers\bmdrvr.sys [75344 2013-02-22] (VMware, Inc.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
S3 HWHandSet; C:\Windows\System32\DRIVERS\hw_quusbmdm.sys [223232 2011-10-24] (Huawei Technologies Co., Ltd.)
R3 hw_usbdev; C:\Windows\System32\DRIVERS\hw_usbdev.sys [116864 2011-10-24] (Huawei Technologies Co., Ltd.)
R3 monectdevices; C:\Windows\System32\DRIVERS\monectdevices.sys [15768 2013-12-03] ()
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2013-01-11] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12384 2013-01-11] ()
S3 smhwser; C:\Windows\System32\DRIVERS\smhwser.sys [122624 2010-02-04] (QUALCOMM Incorporated)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3552512 2009-12-18] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [530488 2014-04-23] () [File not signed]
R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-02-22] (VMware, Inc.)
U3 artg0kpd; C:\Windows\System32\Drivers\artg0kpd.sys [0 ] (Advanced Micro Devices)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-01 20:43 - 2014-11-01 20:43 - 00016021 _____ () C:\Users\Popa\Desktop\FRST.txt
2014-11-01 20:43 - 2014-11-01 20:43 - 00000000 ____D () C:\FRST
2014-11-01 20:36 - 2014-11-01 20:36 - 02114048 _____ (Farbar) C:\Users\Popa\Desktop\FRST64.exe
2014-11-01 20:18 - 2014-11-01 20:18 - 02670106 _____ () C:\Users\Popa\Desktop\UPDATE-SuperSU-v2.16.zip
2014-11-01 20:07 - 2014-11-01 20:08 - 00000000 ____D () C:\Users\Popa\Desktop\slicice
2014-11-01 19:53 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-11-01 19:52 - 2014-11-01 19:54 - 00000000 ____D () C:\AdwCleaner
2014-11-01 19:51 - 2014-11-01 19:51 - 01375089 _____ () C:\Users\Popa\Desktop\adwcleaner_3.311.exe
2014-10-31 02:01 - 2009-01-17 23:49 - 00042031 _____ () C:\Users\Popa\Desktop\Veronica.Mars.S01E03.Meet.John.Smith.WS.DVDRip.XviD-FOV.srt
2014-10-31 01:59 - 2014-10-31 01:59 - 00013227 _____ () C:\Users\Popa\Desktop\Veronica Mars - 01x03 - Meet John Smith HDTV XviD HR.rar
2014-10-31 01:58 - 2014-10-31 01:58 - 00013222 _____ () C:\Users\Popa\Desktop\Veronica Mars - 01x03 - Meet John Smith DVDRip HR.rar
2014-10-31 01:57 - 2010-08-19 17:16 - 00039424 _____ () C:\Users\Popa\Desktop\gfSubtitlePlayer.exe
2014-10-27 01:24 - 2014-10-27 01:36 - 00000000 ____D () C:\Users\Popa\Desktop\Playliste
2014-10-26 23:34 - 2014-10-26 23:34 - 00000835 _____ () C:\Users\Popa\Desktop\RNT_rtmp.bat
2014-10-26 23:33 - 2014-09-12 16:33 - 00198144 _____ () C:\Windows\system32\rtmpdump.exe
2014-10-26 23:33 - 2014-09-12 16:33 - 00196096 _____ () C:\Windows\system32\rtmpgw.exe
2014-10-26 23:33 - 2014-09-12 16:33 - 00194560 _____ () C:\Windows\system32\rtmpsuck.exe
2014-10-26 23:33 - 2014-09-12 16:33 - 00194560 _____ () C:\Windows\system32\rtmpsrv-vlc.exe
2014-10-26 23:33 - 2014-09-12 16:33 - 00194560 _____ () C:\Windows\system32\rtmpsrv.exe
2014-10-26 23:31 - 2014-10-26 23:31 - 00187392 _____ (Microsoft) C:\Users\Popa\Desktop\RNT.exe
2014-10-26 23:31 - 2014-10-26 23:31 - 00000000 ____D () C:\Users\Popa\Downloads\rtmpdump-2.4
2014-10-26 23:29 - 2014-10-26 23:29 - 01196008 _____ () C:\Users\Popa\Downloads\rtmpdump-2.4.zip
2014-10-26 23:17 - 2014-10-26 23:17 - 00000000 ____D () C:\Users\Popa\AppData\Local\Macromedia
2014-10-26 23:16 - 2014-10-26 23:17 - 00000000 ____D () C:\Users\Popa\AppData\Roaming\Mozilla
2014-10-26 23:16 - 2014-10-26 23:17 - 00000000 ____D () C:\Users\Popa\AppData\Local\Mozilla
2014-10-26 23:16 - 2014-10-26 23:16 - 00000000 ____D () C:\ProgramData\Mozilla
2014-10-26 23:16 - 2014-10-26 23:16 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-26 23:16 - 2014-10-26 23:16 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-26 23:04 - 2014-11-01 19:31 - 00007600 _____ () C:\Users\Popa\AppData\Local\Resmon.ResmonCfg
2014-10-26 22:41 - 2014-10-26 22:42 - 63850156 _____ () C:\Users\Popa\Desktop\xbmc-13.2-Gotham.exe
2014-10-26 22:35 - 2014-10-30 23:07 - 00000000 ____D () C:\Users\Popa\AppData\Roaming\vlc
2014-10-26 22:33 - 2014-10-26 22:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-10-24 20:33 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-24 20:33 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-24 20:33 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-24 20:33 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-24 20:33 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-24 20:33 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-24 20:33 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-24 20:33 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-24 20:33 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-24 20:33 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-24 20:33 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-24 20:33 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-24 20:33 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-24 20:33 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-24 20:33 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-24 20:33 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-24 20:33 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-24 20:33 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-24 20:33 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-24 20:33 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-24 20:33 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-24 20:33 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-24 20:33 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-24 20:33 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-24 20:33 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-24 20:33 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-24 20:33 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-24 20:33 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-24 20:33 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-24 20:33 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-24 20:33 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-24 20:33 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-24 20:33 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-24 20:33 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-24 20:33 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-24 20:33 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-24 20:33 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-24 20:33 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-24 20:33 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-24 20:33 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-24 20:33 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-24 20:33 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-24 20:33 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-24 20:33 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-24 20:33 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-24 20:33 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-24 20:33 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-24 20:33 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-24 20:33 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-24 20:33 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-24 20:33 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-24 20:33 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-24 20:33 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-24 20:33 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-24 20:33 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-24 20:33 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-24 20:33 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-24 20:33 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-24 20:33 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-24 20:33 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-24 20:33 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-24 20:33 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-24 20:33 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-24 20:33 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-24 20:33 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-24 20:33 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-24 20:33 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-24 20:32 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-24 20:32 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-24 20:32 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-24 20:32 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-24 20:32 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-24 20:32 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-24 20:32 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-24 20:32 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-24 20:32 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-24 20:32 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-24 20:32 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-24 20:32 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-24 20:28 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-24 20:28 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-24 20:27 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-24 20:27 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-24 19:57 - 2014-10-24 19:57 - 02647622 _____ () C:\Users\Popa\Desktop\UPDATE-SuperSU-v2.14.zip
2014-10-23 18:53 - 2004-05-27 00:32 - 00102400 _____ (Info-ZIP) C:\Windows\SysWOW64\unzip32.dll
2014-10-23 18:53 - 2001-03-13 07:51 - 01066176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2014-10-23 18:48 - 2014-10-23 18:48 - 00000000 ____D () C:\Users\Popa\AppData\Roaming\InstallShield
2014-10-23 18:48 - 2014-10-23 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Video Device
2014-10-23 18:48 - 2009-12-11 14:16 - 00320512 _____ () C:\Windows\tsnp2uvc.exe
2014-10-23 18:48 - 2009-12-11 13:29 - 00184320 _____ ( ) C:\Windows\SysWOW64\rsnp2uvc.dll
2014-10-23 18:48 - 2009-12-11 13:29 - 00184320 _____ ( ) C:\Windows\system32\rsnp2uvc.dll
2014-10-23 18:48 - 2008-08-20 17:05 - 00361472 _____ (Sonix) C:\Windows\system32\vsnp2uvc.dll
2014-10-23 18:48 - 2008-08-20 17:04 - 00291328 _____ (Sonix) C:\Windows\SysWOW64\vsnp2uvc.dll
2014-10-23 18:48 - 2008-08-01 15:10 - 00675840 _____ (Sonix) C:\Windows\vsnp2uvc.exe
2014-10-23 18:48 - 2007-07-04 16:28 - 00301056 _____ ( ) C:\Windows\system32\csnp2uvc.dll
2014-10-23 18:48 - 2006-05-19 10:53 - 00013022 _____ () C:\Windows\snp2uvc.src
2014-10-23 18:48 - 2006-05-19 10:39 - 00015497 _____ () C:\Windows\snp2uvc.ini
2014-10-23 18:42 - 2014-10-23 18:42 - 00000000 ____D () C:\Users\Popa\Documents\VideoPower
2014-10-23 18:41 - 2009-12-18 15:20 - 03552512 _____ () C:\Windows\system32\Drivers\snp2uvc.sys
2014-10-23 18:41 - 2009-02-11 12:48 - 00035584 _____ () C:\Windows\system32\Drivers\sncduvc.sys
2014-10-23 18:41 - 2007-10-13 16:23 - 00094208 _____ (Microsoft Corporation) C:\Windows\amcap.exe
2014-10-23 18:34 - 2014-10-23 18:35 - 00000000 ____D () C:\Users\Popa\Documents\Images
2014-10-23 18:17 - 2014-10-23 18:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Power
2014-10-23 18:17 - 2014-10-23 18:17 - 00000000 ____D () C:\Program Files (x86)\Video Power
2014-10-23 18:04 - 2014-10-23 18:05 - 14006282 _____ () C:\Users\Popa\Desktop\Asphalt 5 HD v3.3.6.apk
2014-10-23 18:04 - 2014-10-23 18:05 - 06036816 _____ () C:\Users\Popa\Desktop\Virtual Table Tennis 3D_2.7.2.apk
2014-10-23 00:05 - 2014-11-01 19:55 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-23 00:05 - 2014-10-23 00:05 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-23 00:05 - 2014-10-23 00:05 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-23 00:05 - 2014-10-23 00:05 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-10-23 00:05 - 2014-10-23 00:05 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-10-23 00:05 - 2014-10-23 00:05 - 00000000 ____D () C:\Windows\system32\Macromed
2014-10-21 14:37 - 2014-10-21 14:37 - 00000000 ____D () C:\Users\Popa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\360 Browser
2014-10-18 14:27 - 2014-10-18 14:16 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-10-18 14:27 - 2014-10-18 14:16 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-10-18 14:27 - 2014-10-18 14:16 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-10-17 18:08 - 2014-10-17 18:09 - 00000000 ____D () C:\Users\Popa\Desktop\New folder (2)

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-01 20:28 - 2009-07-14 05:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-01 20:28 - 2009-07-14 05:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-01 20:20 - 2014-06-17 14:09 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf8a2d5bd252e1.job
2014-11-01 20:11 - 2009-07-14 06:13 - 00786086 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-01 20:10 - 2014-02-10 16:08 - 00000000 ____D () C:\ProgramData\MCShield
2014-11-01 19:33 - 2014-02-10 15:39 - 01241914 _____ () C:\Windows\WindowsUpdate.log
2014-11-01 16:48 - 2014-03-18 22:37 - 00000000 ____D () C:\The KMPlayer
2014-11-01 16:20 - 2014-02-10 14:45 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-31 00:28 - 2014-02-21 09:01 - 00000000 ____D () C:\Users\Popa\AppData\Roaming\uTorrent
2014-10-28 06:34 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-26 22:33 - 2014-03-15 21:15 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-10-24 21:06 - 2014-06-23 16:58 - 00000000 ____D () C:\ProgramData\VMware
2014-10-24 21:06 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-24 21:06 - 2009-07-14 05:51 - 00018216 _____ () C:\Windows\setupact.log
2014-10-24 21:05 - 2009-07-14 05:45 - 00295608 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-24 20:45 - 2014-02-10 16:28 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-24 20:34 - 2013-02-16 05:20 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-23 21:57 - 2014-04-21 23:20 - 00000000 ____D () C:\Users\Popa\AppData\Local\IE Tab
2014-10-23 18:49 - 2009-07-14 03:34 - 00000461 _____ () C:\Windows\win.ini
2014-10-23 18:48 - 2014-02-10 14:56 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-23 18:46 - 2010-11-21 04:47 - 00009632 _____ () C:\Windows\PFRO.log
2014-10-23 00:06 - 2014-02-10 15:12 - 00000000 ____D () C:\Users\Popa\AppData\Local\Adobe
2014-10-21 14:37 - 2014-07-10 22:41 - 00002239 _____ () C:\Users\Popa\AppData\Roaming\Microsoft\Windows\Start Menu\360 Browser.lnk
2014-10-19 15:15 - 2014-06-17 14:09 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1cf8a2d5bd252e1
2014-10-19 15:15 - 2014-02-10 14:45 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-18 14:27 - 2014-02-17 00:38 - 00000000 ____D () C:\Program Files (x86)\Java
2014-10-18 14:16 - 2014-04-18 22:34 - 00272296 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-10-18 14:16 - 2014-02-17 00:53 - 00000000 ____D () C:\ProgramData\Oracle
2014-10-04 06:37 - 2014-05-04 15:02 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-10-03 03:51 - 2014-02-10 15:16 - 00000000 ____D () C:\ProgramData\Adobe

Some content of TEMP:
====================
C:\Users\Popa\AppData\Local\Temp\KMP_3.9.0.126.exe
C:\Users\Popa\AppData\Local\Temp\ochelper.exe
C:\Users\Popa\AppData\Local\Temp\PIPInstaller_PTV_.exe
C:\Users\Popa\AppData\Local\Temp\proxy_vole7227303744011575192.dll
C:\Users\Popa\AppData\Local\Temp\Uninstall.exe
C:\Users\Popa\AppData\Local\Temp\vlc-2.1.5-win32.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-06 21:35

==================== End Of Log ============================
mycity.rs/must-login.png

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Nikakvih tragova malware-a ne vidim Probacemo jednu proveru.


Arrow Preuzmi instalaciju za Malwarebytes Anti-Malware (MBAM) ver.2.0 i instaliraj aplikaciju.
Dvoklik na mbam-setup.exe i prati uputstva za instalaciju. Instalacija je klasicna, "Next > I Agree . . > Next > Install" princip. Po zavrsenoj instalaciji, klikni Finish.
Napomena: 14 dana besplatna trail verzija je pre-selektovana. Mozes decekirati ovu opciju ako zelis.


- Po prvom pokretanju, MBAM ce zapoceti "Update" u nameri da preuzme najsvezije definicije.
Ili ... klik na 'Update Now >>' link ili dugme radi preuzimanja svezih definicija.

• Konfigurisati skener; Na 'Settings' tabu, Detection and Protection podesiti sledece opcije:
1. pod-tab Detection Options, cekirati kucicu za 'Scan for rootkits';
2. pod-tab Non-Malware Protection, za 'PUP detections', prostarati se da je selektovana 'Threat detections as malware' opcija.




• Izvrsiti 'Threat Scan';
Klik na Scan tab, zatim na 'Scan Now >>' da bi izvrsio skeniranje.
Ukoliko MBAM prijavi da je 'update' dostupan, klik na 'Update Now' a potom nastaviti do skeniranja.
Obavestenje: kod nekih teskih infekcija, moguce je dobiti sledecu poruku "Could not load DDA driver". U tom slucaju, klik Yes na tu poruku, dopustiti ucitavanje drajvera po restartu racunara, dozvoliti restart.
Potom, nastaviti sa ostatkom instrukcija.


• Po zavrsenom skeniranju, klik na Apply Action dugme ukoliko je pretnja detektovana. Sacekati da program zatrazi restart!
- Klik na Yes na poruku koja govori da ce se sistem restartovati.



• Postaviti izvestaj (export-ovati logfile) na uvid;
Ponovo pokrenuti MBAM, klik na History tab > Application Logs. Dvoklik na 'Scan Log' koji pokazuje vreme i datum upravo izvrsenog skeniranja.
1. U novom prozoru klik na 'Export' dugme, pa izabrati 'Text file (*.txt)';
2. Kada se pojavi Save File dialog, izabrati da se log sacuva na Desktop.
U tom istom prozoru, dole pod File name: upisi 'mbam' kao naziv izvestaja i klikni dugme Save.

- Po dobijenoj poruci ("Your file has been successfully exported") izvestaj koji si nazvao kao 'mbam' bice sacuvan na Desktop.




Arrow Okaci mbam.txt uz poruku koristeci opciju Prikači fajl.

offline
  • Pridružio: 04 Jan 2009
  • Poruke: 141
  • Gde živiš: SRBIJA

mycity.rs/must-login.png

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

To sto je strpao u karantin je ESET krek.

Preporuka je da deinstaliras taj ESET i instaliras neki besplatan antivirus.

offline
  • Pridružio: 04 Jan 2009
  • Poruke: 141
  • Gde živiš: SRBIJA

Pa nije eset krek nego program koji pronalazi kljuceve za eset totalno nezavisan program od eseta doduse i ubacuje ih ali nema veze ionako u zadnje vreme pronalazi samo trial kljuceve do 20 dana. Nego sta da radim dalje problem je i dalje tu, donekle sam se i nadao da nema virusa i zlonamernih programa osim ovog ali sta mi je dalje ciniti.

rip
  • argus  Male
  • Anti Malware Fighter
    Rank 2
  • Pridružio: 27 Apr 2008
  • Poruke: 9160
  • Gde živiš: Prokuplje

Otvori temu u Windows forumu, ovde se bavimo iskljucivo malware-ima.

offline
  • Pridružio: 04 Jan 2009
  • Poruke: 141
  • Gde živiš: SRBIJA

Hvala na pomoci

Ko je trenutno na forumu
 

Ukupno su 942 korisnika na forumu :: 23 registrovanih, 1 sakriven i 918 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: -[CoA]-, Bobrock1, bojank, Djordje29, draganl, dragoljub11987, HrcAk47, ILGromovnik, Karla, kjkszpj, Kriglord, krkalon, Krvava Devetka, LUDI, Nemanja.M, panzerwaffe, raykan, Regrut Boskica, Shilok, slonic_tonic, sovanova95, styg, zlaya011