Možda tražite i:
mbam i sas nasli viruse dali su to stvarno virusi?
virus,virusi ili....
Virusi preko e poste

MyCity » Ambulanta -> Arhiva Ambulante » Virusi

Virusi

Napisano na dan: 18.6.2014

Strana:
1
2

Virusi

Sledeća strana

Pagination

Odgovori

Strana:
1
2

nenadivanka030 Poslao: 18 Jun 2014 23:17 Idi na vrh
offline nenadivanka030 Novi MyCity građanin Pridružio: 18 Jun 2014 Poruke: 10	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 18 Jun 2014 23:16 Pun mi je kompjuter virusa ... Uradio sam adwcleaner - pa TFC pa skenirao antivirusom ...Pobrisao mi je i pola drajvera javio sam se i u forum drajveri da mi posalju linkove drajvera ... nmg ni da udjem u cs (igrica) tj udjem i samo mi ostane pocetna slika .. problem je poceo oko 5 sati danas ... odjednom mycity.rs/must-login.png mycity.rs/must-login.png mycity.rs/must-login.png primjetio sam i ova plava slova vj. je i to zbg virusa Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-06-2014 Ran by Userse (administrator) on USERSE-PC on 18-06-2014 23:11:58 Running from C:\Users\Userse\Downloads Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\System32\atiesrxx.exe (Microsoft Corporation) C:\Windows\System32\audiodg.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe (Sonix) C:\Windows\vsnp2uvc.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe () C:\Program Files (x86)\qualitink\updatequalitink.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe () C:\Program Files (x86)\qualitink\bin\utilqualitink.exe (VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe (PandoraTV) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe () C:\Program Files (x86)\qualitink\bin\qualitink.BrowserAdapter.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe () C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowse64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Desktop.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [snp2uvc] => C:\Windows\vsnp2uvc.exe [662016 2009-08-12] (Sonix) HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5015040 2012-02-09] (VIA) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-18] (AVAST Software) HKU\S-1-5-21-2382981010-3838380058-2614695883-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21444224 2014-05-08] (Skype Technologies S.A.) HKU\S-1-5-21-2382981010-3838380058-2614695883-1000\...\MountPoints2: {8d6dcc57-64b5-11e3-9fe7-50465d709274} - F:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.A11B02 PID_0083 BootExecute: autocheck autochk * aswBoot.exe /M:31c29912c /wow /dir:"C:\Program Files\AVAST Software\Avast" ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = msn.com/?pc=AV01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = msn.com/?pc=UP97&ocid=UP97DHP HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = msn.com/?pc=AV01 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = msn.com/?pc=AV01 SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKLM-x32 - DefaultScope value is missing. SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKCU - 484CA2F8DD1E440D9F0D8E9DDC869B4D URL = search.mywebsearch.com/mywebsearch/GGmain.jhtml?p2=^HJ^xdm073^YY^rs&si=pconverter&ptb=3DA564D7-122C-4B5A-8586-BDB14C0E7BEC&ind=2013111107&n=77fda343&psa=&st=sb&searchfor={searchTerms} SearchScopes: HKCU - {12192142-657C-456E-839F-7FF3D324CA9C} URL = search.ividi.org/?q={searchTerms}&src=tbsp&id=d23a1f9600000000000050465d709274&affilt=3&r=993 SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKCU - {81E6BF17-CAC4-4796-BA22-FBB7A8DAD743} URL = rts.dsrlte.com/?q={searchTerms}&r=822 SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKCU - {B48F76BA-F0A5-4CEE-8E6D-32F62EDEFA3D} URL = search.softonic.com/INF00176/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=d23a1f9600000000000050465d709274&r=843 BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Hosts: 127.0.0.1 secure.tune-up.com Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0 FireFox: ======== FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll () FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.9.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll No File FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Userse\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Userse\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-02-06] FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext FF HKLM-x32\...\Firefox\Extensions: [4zffxtbr@VideoDownloadConverter_4z.com] - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin Chrome: ======= CHR DefaultSearchKeyword: bing1.com CHR DefaultSearchProvider: Microsoft (Bing) CHR DefaultSearchURL: bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01 CHR DefaultNewTabURL: CHR Extension: (Skype Click to Call) - C:\Users\Userse\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-06-18] CHR Extension: (Google новчаник) - C:\Users\Userse\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-19] CHR HKLM-x32\...\Chrome\Extension: [hfimjncgpflkpkhbnnblhblobjjjhjhd] - C:\Program Files (x86)\qualitink\hfimjncgpflkpkhbnnblhblobjjjhjhd.crx [2013-11-19] CHR HKLM-x32\...\Chrome\Extension: [kpdhgpkkloealnjnmepfhanpcleldbef] - C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividi.crx [2013-11-19] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Services (Whitelisted) ================= R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-06-18] (AVAST Software) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165144 2012-05-10] (Intel Corporation) R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [625304 2012-09-28] (Pandora.TV) R2 Update qualitink; C:\Program Files (x86)\qualitink\updatequalitink.exe [317728 2014-06-18] () R2 Util qualitink; C:\Program Files (x86)\qualitink\bin\utilqualitink.exe [317728 2014-06-18] () R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-11] (VIA Technologies, Inc.) ==================== Drivers (Whitelisted) ==================== R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-06-18] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-06-18] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-06-18] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-06-18] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-06-18] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-06-18] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-06-18] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-06-18] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-01-26] (Disc Soft Ltd) R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [486192 2014-06-11] (Symantec Corporation) R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2010-04-23] (Paragon Software Group) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31648 2014-06-18] (REALiX(tm)) R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3567232 2011-09-09] () R1 {50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64; C:\Windows\System32\drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64.sys [61112 2014-06-17] (StdLib) R1 {50c078f1-4117-4aad-852a-0b3bbfb46b18}w64; C:\Windows\System32\drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}w64.sys [61112 2014-04-24] (StdLib) S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-06-18 23:11 - 2014-06-18 23:12 - 00014388 _____ () C:\Users\Userse\Downloads\FRST.txt 2014-06-18 23:02 - 2014-06-18 23:11 - 00000000 ____D () C:\FRST 2014-06-18 23:01 - 2014-06-18 23:01 - 02082304 _____ (Farbar) C:\Users\Userse\Downloads\FRST64.exe 2014-06-18 22:42 - 2014-06-18 22:42 - 00110020 _____ () C:\Users\Userse\Desktop\log.LOG 2014-06-18 22:41 - 2014-06-18 22:41 - 00031648 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS 2014-06-18 22:41 - 2014-06-18 22:41 - 00002720 _____ () C:\Windows\System32\Tasks\DriverToolkit Autorun 2014-06-18 22:41 - 2014-06-18 22:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64 2014-06-18 22:41 - 2014-06-18 22:41 - 00000000 ____D () C:\Program Files\HWiNFO64 2014-06-18 22:40 - 2014-06-18 22:40 - 00000360 _____ () C:\Windows\Tasks\DriverToolkit Autorun.job 2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\ProgramData\GRETECH 2014-06-18 22:26 - 2014-06-18 22:26 - 00001606 _____ () C:\Users\Userse\Desktop\CS 1.6 v44.lnk 2014-06-18 22:22 - 2014-06-17 15:32 - 00061112 _____ (StdLib) C:\Windows\system32\Drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64.sys 2014-06-18 22:17 - 2014-06-18 22:17 - 00000000 ____D () C:\ProgramData\Intel 2014-06-18 22:17 - 2014-06-18 22:17 - 00000000 ____D () C:\Program Files\Intel 2014-06-18 22:17 - 2012-05-10 15:04 - 00015128 _____ () C:\Windows\system32\Drivers\IntelMEFWVer.dll 2014-06-18 22:16 - 2011-11-10 01:04 - 00060184 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys 2014-06-18 22:12 - 2014-06-18 22:12 - 00000000 ____D () C:\Intel 2014-06-18 22:11 - 2014-06-18 22:11 - 00000687 _____ () C:\Users\Userse\Desktop\Userse - Shortcut.lnk 2014-06-18 22:11 - 2014-06-18 22:11 - 00000355 _____ () C:\Users\Userse\Desktop\Computer - Shortcut (2).lnk 2014-06-18 22:04 - 2014-06-18 22:45 - 00000000 ____D () C:\Program Files (x86)\DriverToolkit 2014-06-18 22:04 - 2014-06-18 22:04 - 00000000 ____D () C:\Users\Userse\AppData\Local\DriverToolkit 2014-06-18 22:01 - 2014-06-18 22:01 - 00000000 ____D () C:\Users\Userse\Desktop\7-Zip 2014-06-18 21:47 - 2014-06-18 21:47 - 00000756 _____ () C:\Users\Public\Desktop\Speccy.lnk 2014-06-18 21:47 - 2014-06-18 21:47 - 00000000 ____D () C:\Program Files\Speccy 2014-06-18 21:21 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll 2014-06-18 21:20 - 2014-06-18 21:23 - 00000000 ____D () C:\AdwCleaner 2014-06-18 21:03 - 2014-06-18 21:03 - 00001189 _____ () C:\Users\Public\Desktop\GOM Player.lnk 2014-06-18 20:51 - 2014-06-18 20:52 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\DropboxMaster 2014-06-18 20:50 - 2014-06-18 20:50 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-06-18 20:49 - 2014-06-18 20:52 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Dropbox 2014-06-18 20:38 - 2014-06-18 20:38 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\AVAST Software 2014-06-18 20:33 - 2014-06-18 21:12 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys 2014-06-18 20:33 - 2014-06-18 20:33 - 00001926 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2014-06-18 20:33 - 2014-06-18 20:32 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys 2014-06-18 20:32 - 2014-06-18 20:32 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2014-06-18 20:29 - 2014-06-18 20:32 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys 2014-06-18 20:29 - 2014-06-18 20:32 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys 2014-06-18 20:20 - 2014-06-18 20:20 - 00000794 _____ () C:\Users\Userse\Desktop\Half-Life WaRzOnE.lnk 2014-06-18 20:20 - 2014-06-18 20:20 - 00000732 _____ () C:\Users\Userse\Desktop\HLDS.lnk 2014-06-18 20:20 - 2014-06-18 20:20 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HLDS 2014-06-18 20:20 - 2014-06-18 20:20 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Half-Life 2014-06-18 20:20 - 2014-06-18 20:20 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 2014-06-18 19:01 - 2014-06-18 19:01 - 00000000 ____D () C:\Users\Userse\New folder 2014-06-18 18:56 - 2014-06-18 19:46 - 00000000 ____D () C:\ProgramData\VS Revo Group 2014-06-18 18:56 - 2014-06-18 19:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2014-06-18 18:56 - 2014-06-18 18:56 - 00001037 _____ () C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk 2014-06-18 18:56 - 2014-06-18 18:56 - 00000000 ____D () C:\Users\Userse\AppData\Local\VS Revo Group 2014-06-18 18:56 - 2014-06-18 18:56 - 00000000 ____D () C:\Program Files\VS Revo Group 2014-06-18 18:56 - 2009-12-30 10:21 - 00031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys 2014-06-18 18:36 - 2014-06-18 18:37 - 00000243 _____ () C:\Windows\SysWOW64\debug.log 2014-06-18 18:28 - 2014-06-18 18:35 - 00000000 ____D () C:\Users\Userse\AppData\Local\Adobe 2014-06-18 18:28 - 2014-06-18 18:28 - 00001268 _____ () C:\Users\Userse\Desktop\Revo Uninstaller.lnk 2014-06-18 17:25 - 2014-06-18 17:30 - 257129400 _____ (Valve ) C:\Users\Userse\Documents\CS1.6 FULL v42 - Protocol 48 Clean.exe 2014-06-18 16:56 - 2014-06-18 19:46 - 00000000 ____D () C:\Program Files (x86)\GoPhoto.it V9.0 2014-06-11 11:23 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-06-11 11:23 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-06-11 11:23 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-06-11 11:23 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-06-11 11:23 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-06-11 11:23 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-06-11 11:23 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-06-11 11:23 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-06-11 11:23 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-06-11 11:23 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-06-11 11:23 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-06-11 11:23 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-06-11 11:23 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-06-11 11:23 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-06-11 11:23 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-06-11 11:23 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-06-11 11:23 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-06-11 11:23 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-06-11 11:23 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-06-11 11:23 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-06-11 11:23 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-06-11 11:23 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-06-11 11:23 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-06-11 11:23 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-06-11 11:23 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-06-11 11:23 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-06-11 11:23 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-06-11 11:23 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-06-11 11:23 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-06-11 11:23 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-06-11 11:23 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-06-11 11:23 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-06-11 11:23 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-06-11 11:23 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-06-11 11:23 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-06-11 11:23 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-06-11 11:23 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-06-11 11:23 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-06-11 11:23 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-06-11 11:23 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-06-11 11:23 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-06-11 11:23 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-06-11 11:23 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-06-11 11:23 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-06-11 11:23 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-06-11 11:23 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-06-11 11:23 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-06-11 11:23 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-06-11 11:23 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-06-11 11:23 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-06-11 11:23 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-06-11 11:23 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-06-11 11:23 - 2014-05-08 11:32 - 01112064 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-06-11 11:23 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll 2014-06-11 11:23 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll 2014-06-11 11:23 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-06-11 11:23 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-06-11 11:23 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2014-06-11 11:23 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-06-11 11:23 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2014-06-11 11:23 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2014-06-11 11:23 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2014-06-11 11:23 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2014-06-11 11:23 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll 2014-06-11 11:23 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2014-06-11 11:22 - 2014-06-08 11:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-06-11 11:22 - 2014-06-08 11:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-06-10 13:01 - 2014-06-17 17:25 - 00000000 ____D () C:\Users\Userse\Desktop\slike 2 2014-06-03 17:30 - 2014-06-18 18:44 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Media Player Classic 2014-05-24 14:01 - 2014-06-02 20:30 - 00000000 ____D () C:\Users\Userse\Desktop\Slike cs 2014-05-23 08:40 - 2014-05-23 08:40 - 00000000 ____D () C:\Users\Userse\AppData\Local\Packages ==================== One Month Modified Files and Folders ======= 2014-06-18 23:12 - 2014-06-18 23:11 - 00014388 _____ () C:\Users\Userse\Downloads\FRST.txt 2014-06-18 23:11 - 2014-06-18 23:02 - 00000000 ____D () C:\FRST 2014-06-18 23:09 - 2013-10-20 21:42 - 00413696 ___SH () C:\Users\Userse\Desktop\Thumbs.db 2014-06-18 23:01 - 2014-06-18 23:01 - 02082304 _____ (Farbar) C:\Users\Userse\Downloads\FRST64.exe 2014-06-18 22:58 - 2013-02-06 01:00 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Skype 2014-06-18 22:45 - 2014-06-18 22:04 - 00000000 ____D () C:\Program Files (x86)\DriverToolkit 2014-06-18 22:42 - 2014-06-18 22:42 - 00110020 _____ () C:\Users\Userse\Desktop\log.LOG 2014-06-18 22:42 - 2013-02-06 00:33 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-06-18 22:41 - 2014-06-18 22:41 - 00031648 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS 2014-06-18 22:41 - 2014-06-18 22:41 - 00002720 _____ () C:\Windows\System32\Tasks\DriverToolkit Autorun 2014-06-18 22:41 - 2014-06-18 22:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64 2014-06-18 22:41 - 2014-06-18 22:41 - 00000000 ____D () C:\Program Files\HWiNFO64 2014-06-18 22:40 - 2014-06-18 22:40 - 00000360 _____ () C:\Windows\Tasks\DriverToolkit Autorun.job 2014-06-18 22:29 - 2014-06-18 22:29 - 00000000 ____D () C:\ProgramData\GRETECH 2014-06-18 22:26 - 2014-06-18 22:26 - 00001606 _____ () C:\Users\Userse\Desktop\CS 1.6 v44.lnk 2014-06-18 22:23 - 2013-06-01 07:35 - 01914600 ____N () C:\Windows\WindowsUpdate.log 2014-06-18 22:22 - 2013-09-24 22:28 - 00000000 ____D () C:\Games 2014-06-18 22:21 - 2009-07-14 04:34 - 00000886 _____ () C:\Windows\win.ini 2014-06-18 22:19 - 2013-02-06 00:33 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-06-18 22:19 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-06-18 22:18 - 2009-07-14 06:45 - 00020832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-06-18 22:18 - 2009-07-14 06:45 - 00020832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-06-18 22:17 - 2014-06-18 22:17 - 00000000 ____D () C:\ProgramData\Intel 2014-06-18 22:17 - 2014-06-18 22:17 - 00000000 ____D () C:\Program Files\Intel 2014-06-18 22:17 - 2013-02-06 06:54 - 00000000 ____D () C:\Program Files (x86)\Intel 2014-06-18 22:16 - 2013-02-06 06:59 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-06-18 22:16 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2014-06-18 22:13 - 2013-02-06 03:35 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-06-18 22:12 - 2014-06-18 22:12 - 00000000 ____D () C:\Intel 2014-06-18 22:12 - 2011-12-06 09:55 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2014-06-18 22:11 - 2014-06-18 22:11 - 00000687 _____ () C:\Users\Userse\Desktop\Userse - Shortcut.lnk 2014-06-18 22:11 - 2014-06-18 22:11 - 00000355 _____ () C:\Users\Userse\Desktop\Computer - Shortcut (2).lnk 2014-06-18 22:08 - 2013-04-06 22:03 - 00000932 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2382981010-3838380058-2614695883-1000UA.job 2014-06-18 22:08 - 2013-04-06 22:03 - 00000910 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2382981010-3838380058-2614695883-1000Core.job 2014-06-18 22:04 - 2014-06-18 22:04 - 00000000 ____D () C:\Users\Userse\AppData\Local\DriverToolkit 2014-06-18 22:01 - 2014-06-18 22:01 - 00000000 ____D () C:\Users\Userse\Desktop\7-Zip 2014-06-18 22:01 - 2013-02-06 00:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2014-06-18 22:00 - 2013-02-06 00:53 - 00000000 ____D () C:\ProgramData\WinZip 2014-06-18 21:47 - 2014-06-18 21:47 - 00000756 _____ () C:\Users\Public\Desktop\Speccy.lnk 2014-06-18 21:47 - 2014-06-18 21:47 - 00000000 ____D () C:\Program Files\Speccy 2014-06-18 21:42 - 2013-02-09 00:22 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\uTorrent 2014-06-18 21:33 - 2014-01-25 01:31 - 00003934 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{49D7E0ED-4435-496C-BE55-ABE680CD5FDD} 2014-06-18 21:23 - 2014-06-18 21:20 - 00000000 ____D () C:\AdwCleaner 2014-06-18 21:23 - 2014-05-11 20:31 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player 2014-06-18 21:23 - 2013-02-06 06:47 - 00000000 ____D () C:\Users\Userse 2014-06-18 21:12 - 2014-06-18 20:33 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys 2014-06-18 21:12 - 2013-02-06 01:45 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys 2014-06-18 21:12 - 2013-02-06 01:45 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys 2014-06-18 21:03 - 2014-06-18 21:03 - 00001189 _____ () C:\Users\Public\Desktop\GOM Player.lnk 2014-06-18 21:03 - 2013-02-06 00:43 - 00001213 _____ () C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk 2014-06-18 20:52 - 2014-06-18 20:51 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\DropboxMaster 2014-06-18 20:52 - 2014-06-18 20:49 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Dropbox 2014-06-18 20:50 - 2014-06-18 20:50 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-06-18 20:50 - 2013-02-06 03:35 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-06-18 20:50 - 2013-02-06 03:35 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-06-18 20:50 - 2013-02-06 03:35 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-06-18 20:40 - 2013-11-19 22:38 - 00002171 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-06-18 20:38 - 2014-06-18 20:38 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\AVAST Software 2014-06-18 20:33 - 2014-06-18 20:33 - 00001926 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2014-06-18 20:33 - 2013-02-06 01:45 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2014-06-18 20:32 - 2014-06-18 20:33 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys 2014-06-18 20:32 - 2014-06-18 20:32 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2014-06-18 20:32 - 2014-06-18 20:29 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys 2014-06-18 20:32 - 2014-06-18 20:29 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys 2014-06-18 20:32 - 2013-02-06 01:45 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1403118769819 2014-06-18 20:32 - 2013-02-06 01:45 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1403118769819 2014-06-18 20:32 - 2013-02-06 01:45 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2014-06-18 20:32 - 2013-02-06 01:45 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2014-06-18 20:32 - 2013-02-06 01:45 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2014-06-18 20:30 - 2013-02-06 01:11 - 00000000 ____D () C:\ProgramData\AVAST Software 2014-06-18 20:29 - 2013-02-06 01:45 - 00000000 _____ () C:\Windows\SysWOW64\config.nt 2014-06-18 20:20 - 2014-06-18 20:20 - 00000794 _____ () C:\Users\Userse\Desktop\Half-Life WaRzOnE.lnk 2014-06-18 20:20 - 2014-06-18 20:20 - 00000732 _____ () C:\Users\Userse\Desktop\HLDS.lnk 2014-06-18 20:20 - 2014-06-18 20:20 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HLDS 2014-06-18 20:20 - 2014-06-18 20:20 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Half-Life 2014-06-18 20:20 - 2014-06-18 20:20 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 2014-06-18 19:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\tracing 2014-06-18 19:46 - 2014-06-18 18:56 - 00000000 ____D () C:\ProgramData\VS Revo Group 2014-06-18 19:46 - 2014-06-18 18:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2014-06-18 19:46 - 2014-06-18 16:56 - 00000000 ____D () C:\Program Files (x86)\GoPhoto.it V9.0 2014-06-18 19:46 - 2013-10-07 17:02 - 00000000 ____D () C:\Program Files (x86)\qualitink 2014-06-18 19:46 - 2013-06-26 21:52 - 00000000 ____D () C:\ProgramData\InstallMate 2014-06-18 19:46 - 2013-06-25 20:13 - 00000000 ____D () C:\Program Files (x86)\SumatraPDF 2014-06-18 19:46 - 2013-02-06 07:16 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Winamp 2014-06-18 19:46 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF 2014-06-18 19:46 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration 2014-06-18 19:01 - 2014-06-18 19:01 - 00000000 ____D () C:\Users\Userse\New folder 2014-06-18 18:56 - 2014-06-18 18:56 - 00001037 _____ () C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk 2014-06-18 18:56 - 2014-06-18 18:56 - 00000000 ____D () C:\Users\Userse\AppData\Local\VS Revo Group 2014-06-18 18:56 - 2014-06-18 18:56 - 00000000 ____D () C:\Program Files\VS Revo Group 2014-06-18 18:44 - 2014-06-03 17:30 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Media Player Classic 2014-06-18 18:37 - 2014-06-18 18:36 - 00000243 _____ () C:\Windows\SysWOW64\debug.log 2014-06-18 18:36 - 2013-02-06 02:04 - 00000000 ____D () C:\Users\Userse\AppData\Roaming\Adobe 2014-06-18 18:35 - 2014-06-18 18:28 - 00000000 ____D () C:\Users\Userse\AppData\Local\Adobe 2014-06-18 18:29 - 2013-06-25 20:13 - 00001933 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk 2014-06-18 18:28 - 2014-06-18 18:28 - 00001268 _____ () C:\Users\Userse\Desktop\Revo Uninstaller.lnk 2014-06-18 17:30 - 2014-06-18 17:25 - 257129400 _____ (Valve ) C:\Users\Userse\Documents\CS1.6 FULL v42 - Protocol 48 Clean.exe 2014-06-18 13:47 - 2013-06-15 14:36 - 00000454 ____H () C:\Windows\Tasks\Norton Security Scan for Userse.job 2014-06-17 17:25 - 2014-06-10 13:01 - 00000000 ____D () C:\Users\Userse\Desktop\slike 2 2014-06-17 15:32 - 2014-06-18 22:22 - 00061112 _____ (StdLib) C:\Windows\system32\Drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64.sys 2014-06-16 22:15 - 2009-07-14 07:13 - 00713888 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-06-16 19:51 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-06-16 15:40 - 2013-09-04 12:05 - 00921624 _____ () C:\snp2uvc-001.raw 2014-06-13 08:40 - 2013-05-22 03:19 - 00000408 _____ () C:\Windows\Tasks\AllmyappsUpdateTask.job 2014-06-12 03:05 - 2013-08-15 03:03 - 00000000 ____D () C:\Windows\system32\MRT 2014-06-12 03:03 - 2013-02-06 01:02 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-06-12 03:00 - 2014-05-05 23:28 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-06-08 11:13 - 2014-06-11 11:22 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-06-08 11:08 - 2014-06-11 11:22 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-06-02 20:30 - 2014-05-24 14:01 - 00000000 ____D () C:\Users\Userse\Desktop\Slike cs 2014-05-31 19:20 - 2013-09-02 12:06 - 00000000 ___RD () C:\Users\Userse\Desktop\slike 2014-05-30 12:21 - 2014-06-11 11:23 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-30 12:02 - 2014-06-11 11:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-05-30 12:02 - 2014-06-11 11:23 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-05-30 11:45 - 2014-06-11 11:23 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-05-30 11:39 - 2014-06-11 11:23 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-05-30 11:39 - 2014-06-11 11:23 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-05-30 11:38 - 2014-06-11 11:23 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-05-30 11:28 - 2014-06-11 11:23 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-05-30 11:27 - 2014-06-11 11:23 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-05-30 11:24 - 2014-06-11 11:23 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-05-30 11:21 - 2014-06-11 11:23 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-05-30 11:21 - 2014-06-11 11:23 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-05-30 11:20 - 2014-06-11 11:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-05-30 11:18 - 2014-06-11 11:23 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-05-30 11:11 - 2014-06-11 11:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-05-30 11:08 - 2014-06-11 11:23 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-05-30 11:06 - 2014-06-11 11:23 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-05-30 11:02 - 2014-06-11 11:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-05-30 10:55 - 2014-06-11 11:23 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-05-30 10:49 - 2014-06-11 11:23 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-05-30 10:46 - 2014-06-11 11:23 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-30 10:44 - 2014-06-11 11:23 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-05-30 10:44 - 2014-06-11 11:23 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-05-30 10:43 - 2014-06-11 11:23 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-05-30 10:42 - 2014-06-11 11:23 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-05-30 10:38 - 2014-06-11 11:23 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-05-30 10:35 - 2014-06-11 11:23 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-05-30 10:34 - 2014-06-11 11:23 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-05-30 10:33 - 2014-06-11 11:23 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-05-30 10:30 - 2014-06-11 11:23 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-05-30 10:29 - 2014-06-11 11:23 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-05-30 10:28 - 2014-06-11 11:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-05-30 10:27 - 2014-06-11 11:23 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-05-30 10:24 - 2014-06-11 11:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-05-30 10:23 - 2014-06-11 11:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-05-30 10:16 - 2014-06-11 11:23 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-05-30 10:10 - 2014-06-11 11:23 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-05-30 10:06 - 2014-06-11 11:23 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-05-30 10:04 - 2014-06-11 11:23 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-05-30 10:02 - 2014-06-11 11:23 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-05-30 09:56 - 2014-06-11 11:23 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-05-30 09:56 - 2014-06-11 11:23 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-05-30 09:54 - 2014-06-11 11:23 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-05-30 09:50 - 2014-06-11 11:23 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-05-30 09:49 - 2014-06-11 11:23 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-05-30 09:43 - 2014-06-11 11:23 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-05-30 09:40 - 2014-06-11 11:23 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-05-30 09:30 - 2014-06-11 11:23 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-05-30 09:29 - 2014-05-16 15:49 - 00000000 ____D () C:\ProgramData\dd59f6e240880e29 2014-05-30 09:21 - 2014-06-11 11:23 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-05-30 09:15 - 2014-06-11 11:23 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-05-30 09:13 - 2014-06-11 11:23 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-05-30 09:13 - 2014-06-11 11:23 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-05-27 08:45 - 2013-04-06 22:03 - 00003920 _____ () C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2382981010-3838380058-2614695883-1000UA 2014-05-27 08:45 - 2013-04-06 22:03 - 00003552 _____ () C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2382981010-3838380058-2614695883-1000Core 2014-05-27 08:45 - 2013-02-06 01:04 - 00003694 _____ () C:\Windows\System32\Tasks\Adobe online update program 2014-05-27 08:45 - 2013-02-06 00:27 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC 2014-05-24 14:00 - 2013-07-11 13:10 - 00005632 _____ () C:\Users\Userse\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-05-23 19:40 - 2009-07-14 07:08 - 00032600 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-05-23 08:40 - 2014-05-23 08:40 - 00000000 ____D () C:\Users\Userse\AppData\Local\Packages 2014-05-22 00:12 - 2013-02-06 01:00 - 00000000 ___RD () C:\Program Files (x86)\Skype 2014-05-22 00:12 - 2013-02-06 01:00 - 00000000 ____D () C:\ProgramData\Skype 2014-05-20 09:46 - 2013-02-06 00:33 - 00003904 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2014-05-20 09:46 - 2013-02-06 00:33 - 00003652 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2014-05-19 10:36 - 2013-02-06 00:29 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk Some content of TEMP: ==================== C:\Users\Userse\AppData\Local\Temp\Uninstall.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe [2014-05-14 00:27] - [2011-01-16 02:01] - 0389632 ____A (Microsoft Corporation) 81257415084B84F3C0D95C381A8D4C8F C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll [2010-11-21 05:24] - [2011-01-16 02:01] - 1008640 ____A (Microsoft Corporation) 0B864E15A0BADFF0E7BB8B59009FDDCF C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-06-08 16:53 ==================== End Of Log ============================ Dopuna: 18 Jun 2014 23:17 mycity.rs/must-login.png

Profil

Sass Drake Poslao: 18 Jun 2014 23:40 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav. Nisi postavio Addition.txt izvještaj.

Profil

nenadivanka030 Poslao: 18 Jun 2014 23:44 Idi na vrh
offline nenadivanka030 Novi MyCity građanin Pridružio: 18 Jun 2014 Poruke: 10	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: mycity.rs/must-login.png Evo ... brate ma popizdio sam brate ... pa sam se zeznuo imao sam namjeru da ga postavim medjutim sam postavio FRST.txt

Profil

Sass Drake Poslao: 18 Jun 2014 23:58 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Korak 1 Idi u Start -> Control Panel -> Programs and Features i deinstaliraj sljedeće programe: Allmyapps DriverToolkit Norton Security Scan qualitink 1.0.0 Korak 2 Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja. () C:\Program Files (x86)\qualitink\updatequalitink.exe () C:\Program Files (x86)\qualitink\bin\qualitink.BrowserAdapter.exe () C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowse64.exe SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = http://dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = http://dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKCU - 484CA2F8DD1E440D9F0D8E9DDC869B4D URL = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?p2=^HJ^xdm073^YY^rs&si=pconverter&ptb=3DA564D7-122C-4B5A-8586-BDB14C0E7BEC&ind=2013111107&n=77fda343&psa=&st=sb&searchfor={searchTerms} SearchScopes: HKCU - {12192142-657C-456E-839F-7FF3D324CA9C} URL = http://search.ividi.org/?q={searchTerms}&src=tbsp&id=d23a1f9600000000000050465d709274&affilt=3&r=993 SearchScopes: HKCU - {81E6BF17-CAC4-4796-BA22-FBB7A8DAD743} URL = http://rts.dsrlte.com/?q={searchTerms}&r=822 SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = http://dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKCU - {B48F76BA-F0A5-4CEE-8E6D-32F62EDEFA3D} URL = http://search.softonic.com/INF00176/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=d23a1f9600000000000050465d709274&r=843 FF HKLM-x32\...\Firefox\Extensions: [4zffxtbr@VideoDownloadConverter_4z.com] - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin CHR HKLM-x32\...\Chrome\Extension: [hfimjncgpflkpkhbnnblhblobjjjhjhd] - C:\Program Files (x86)\qualitink\hfimjncgpflkpkhbnnblhblobjjjhjhd.crx [2013-11-19] CHR HKLM-x32\...\Chrome\Extension: [kpdhgpkkloealnjnmepfhanpcleldbef] - C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividi.crx [2013-11-19] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION R2 Update qualitink; C:\Program Files (x86)\qualitink\updatequalitink.exe [317728 2014-06-18] () R2 Util qualitink; C:\Program Files (x86)\qualitink\bin\utilqualitink.exe [317728 2014-06-18] () R1 {50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64; C:\Windows\System32\drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64.sys [61112 2014-06-17] (StdLib) R1 {50c078f1-4117-4aad-852a-0b3bbfb46b18}w64; C:\Windows\System32\drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}w64.sys [61112 2014-04-24] (StdLib) 2014-06-18 19:46 - 2013-10-07 17:02 - 00000000 ____D () C:\Program Files (x86)\qualitink Task: {28D2A6AC-E8E5-49BD-B732-E2610FB41C56} - \c9cfb475-3728-4a43-ab15-eea815d77c24-11 No Task File <==== ATTENTION Task: {2AAEBD7E-1A38-49F1-8B77-8D16872F054C} - \c9cfb475-3728-4a43-ab15-eea815d77c24-4 No Task File <==== ATTENTION Task: {3066CEAF-9885-424D-99A4-FE6F59A6D4A1} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION Task: {387D7A9D-089B-4FDD-9F1A-E56E33AA4459} - \f9274108-93c9-43de-bf25-189f8d6e653a-11 No Task File <==== ATTENTION Task: {3B9D077C-3CE4-427E-A573-AC9DAAAFDAA6} - \f9274108-93c9-43de-bf25-189f8d6e653a-5 No Task File <==== ATTENTION Task: {3CDBF21C-871B-441C-8A79-956FB8812858} - \a7982934-0630-49b5-bdb1-d23d83f53ffd-1 No Task File <==== ATTENTION Task: {4798D6A9-0C26-4C4D-85BB-F18FCC67CEA6} - \f9274108-93c9-43de-bf25-189f8d6e653a-6 No Task File <==== ATTENTION Task: {4BE41623-B47D-4CA2-A294-14ECF204ED13} - \c9cfb475-3728-4a43-ab15-eea815d77c24-2 No Task File <==== ATTENTION Task: {61BE775A-04D1-43D7-AEEE-C7AB9EA5B9C6} - \c9cfb475-3728-4a43-ab15-eea815d77c24-7 No Task File <==== ATTENTION Task: {73865EF5-35EB-4526-9215-BCD4DB81CF0F} - \f9274108-93c9-43de-bf25-189f8d6e653a-4 No Task File <==== ATTENTION Task: {829C55E8-A273-4D18-A71F-D39FBA378350} - \f9274108-93c9-43de-bf25-189f8d6e653a-1 No Task File <==== ATTENTION Task: {88A92815-9AF4-4EE0-8DB9-5B12EF586377} - \c9cfb475-3728-4a43-ab15-eea815d77c24-5 No Task File <==== ATTENTION Task: {969C4FD9-DD0F-468B-950A-EDE47700C526} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION Task: {B384BE75-7A80-4212-B0DA-0D66A9BE6777} - \c9cfb475-3728-4a43-ab15-eea815d77c24-1 No Task File <==== ATTENTION Task: {C4368CE0-FA98-4DBB-91EC-E41FFF7EDFF1} - \a7982934-0630-49b5-bdb1-d23d83f53ffd-5 No Task File <==== ATTENTION Task: {CE47AA4E-2E0C-4B97-8438-D6AD8E58E271} - \f9274108-93c9-43de-bf25-189f8d6e653a-7 No Task File <==== ATTENTION Task: {E6F084A8-7ACA-4F7D-A43E-C68EA9DC2942} - \c9cfb475-3728-4a43-ab15-eea815d77c24-6 No Task File <==== ATTENTION Task: {F0FC3725-A882-4B85-B56D-17696D73E4CB} - \f9274108-93c9-43de-bf25-189f8d6e653a-2 No Task File <==== ATTENTION AlternateDataStreams: C:\Windows: AlternateDataStreams: C:\ProgramData\TEMP:373E1720 U okviru Notepad-a klikni na File --> Save As Fajl nazovi Fixlist i sačuvaj na Desktop Dvoklikom ponovo pokreni FRST.exe Klikni na Fix i sačekaj dok program ne završi. Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi. Nakon završetka rada, otvoriće se Notepad, sa sadržajem koji treba da kopiraš u temu. Takođe, na Desktop-u će se nalaziti (fixlog.txt). Potrebno je da sadržaj fixlog.txt kopiraš na forum

Profil

nenadivanka030 Poslao: 19 Jun 2014 00:10 Idi na vrh
offline nenadivanka030 Novi MyCity građanin Pridružio: 18 Jun 2014 Poruke: 10	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 19 Jun 2014 0:08 Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-06-2014 Ran by Userse at 2014-06-19 00:05:53 Run:1 Running from C:\Users\Userse\Desktop Boot Mode: Normal ============================================== Content of fixlist: *************** () C:\Program Files (x86)\qualitink\updatequalitink.exe () C:\Program Files (x86)\qualitink\bin\qualitink.BrowserAdapter.exe () C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowse64.exe SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKCU - 484CA2F8DD1E440D9F0D8E9DDC869B4D URL = search.mywebsearch.com/mywebsearch/GGmain.jhtml?p2=^HJ^xdm073^YY^rs&si=pconverter&ptb=3DA564D7-122C-4B5A-8586-BDB14C0E7BEC&ind=2013111107&n=77fda343&psa=&st=sb&searchfor={searchTerms} SearchScopes: HKCU - {12192142-657C-456E-839F-7FF3D324CA9C} URL = search.ividi.org/?q={searchTerms}&src=tbsp&id=d23a1f9600000000000050465d709274&affilt=3&r=993 SearchScopes: HKCU - {81E6BF17-CAC4-4796-BA22-FBB7A8DAD743} URL = rts.dsrlte.com/?q={searchTerms}&r=822 SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKCU - {B48F76BA-F0A5-4CEE-8E6D-32F62EDEFA3D} URL = search.softonic.com/INF00176/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=d23a1f9600000000000050465d709274&r=843 FF HKLM-x32\...\Firefox\Extensions: [4zffxtbr@VideoDownloadConverter_4z.com] - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin CHR HKLM-x32\...\Chrome\Extension: [hfimjncgpflkpkhbnnblhblobjjjhjhd] - C:\Program Files (x86)\qualitink\hfimjncgpflkpkhbnnblhblobjjjhjhd.crx [2013-11-19] CHR HKLM-x32\...\Chrome\Extension: [kpdhgpkkloealnjnmepfhanpcleldbef] - C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividi.crx [2013-11-19] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION R2 Update qualitink; C:\Program Files (x86)\qualitink\updatequalitink.exe [317728 2014-06-18] () R2 Util qualitink; C:\Program Files (x86)\qualitink\bin\utilqualitink.exe [317728 2014-06-18] () R1 {50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64; C:\Windows\System32\drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64.sys [61112 2014-06-17] (StdLib) R1 {50c078f1-4117-4aad-852a-0b3bbfb46b18}w64; C:\Windows\System32\drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}w64.sys [61112 2014-04-24] (StdLib) 2014-06-18 19:46 - 2013-10-07 17:02 - 00000000 ____D () C:\Program Files (x86)\qualitink Task: {28D2A6AC-E8E5-49BD-B732-E2610FB41C56} - \c9cfb475-3728-4a43-ab15-eea815d77c24-11 No Task File <==== ATTENTION Task: {2AAEBD7E-1A38-49F1-8B77-8D16872F054C} - \c9cfb475-3728-4a43-ab15-eea815d77c24-4 No Task File <==== ATTENTION Task: {3066CEAF-9885-424D-99A4-FE6F59A6D4A1} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION Task: {387D7A9D-089B-4FDD-9F1A-E56E33AA4459} - \f9274108-93c9-43de-bf25-189f8d6e653a-11 No Task File <==== ATTENTION Task: {3B9D077C-3CE4-427E-A573-AC9DAAAFDAA6} - \f9274108-93c9-43de-bf25-189f8d6e653a-5 No Task File <==== ATTENTION Task: {3CDBF21C-871B-441C-8A79-956FB8812858} - \a7982934-0630-49b5-bdb1-d23d83f53ffd-1 No Task File <==== ATTENTION Task: {4798D6A9-0C26-4C4D-85BB-F18FCC67CEA6} - \f9274108-93c9-43de-bf25-189f8d6e653a-6 No Task File <==== ATTENTION Task: {4BE41623-B47D-4CA2-A294-14ECF204ED13} - \c9cfb475-3728-4a43-ab15-eea815d77c24-2 No Task File <==== ATTENTION Task: {61BE775A-04D1-43D7-AEEE-C7AB9EA5B9C6} - \c9cfb475-3728-4a43-ab15-eea815d77c24-7 No Task File <==== ATTENTION Task: {73865EF5-35EB-4526-9215-BCD4DB81CF0F} - \f9274108-93c9-43de-bf25-189f8d6e653a-4 No Task File <==== ATTENTION Task: {829C55E8-A273-4D18-A71F-D39FBA378350} - \f9274108-93c9-43de-bf25-189f8d6e653a-1 No Task File <==== ATTENTION Task: {88A92815-9AF4-4EE0-8DB9-5B12EF586377} - \c9cfb475-3728-4a43-ab15-eea815d77c24-5 No Task File <==== ATTENTION Task: {969C4FD9-DD0F-468B-950A-EDE47700C526} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION Task: {B384BE75-7A80-4212-B0DA-0D66A9BE6777} - \c9cfb475-3728-4a43-ab15-eea815d77c24-1 No Task File <==== ATTENTION Task: {C4368CE0-FA98-4DBB-91EC-E41FFF7EDFF1} - \a7982934-0630-49b5-bdb1-d23d83f53ffd-5 No Task File <==== ATTENTION Task: {CE47AA4E-2E0C-4B97-8438-D6AD8E58E271} - \f9274108-93c9-43de-bf25-189f8d6e653a-7 No Task File <==== ATTENTION Task: {E6F084A8-7ACA-4F7D-A43E-C68EA9DC2942} - \c9cfb475-3728-4a43-ab15-eea815d77c24-6 No Task File <==== ATTENTION Task: {F0FC3725-A882-4B85-B56D-17696D73E4CB} - \f9274108-93c9-43de-bf25-189f8d6e653a-2 No Task File <==== ATTENTION AlternateDataStreams: C:\Windows: AlternateDataStreams: C:\ProgramData\TEMP:373E1720 ************* C:\Program Files (x86)\qualitink\updatequalitink.exe => No running process found C:\Program Files (x86)\qualitink\bin\qualitink.BrowserAdapter.exe => No running process found C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowse64.exe => No running process found 'HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}' => Key deleted successfully. 'HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}'=> Key not found. 'HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}' => Key deleted successfully. 'HKCR\Wow6432Node\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\484CA2F8DD1E440D9F0D8E9DDC869B4D' => Key deleted successfully. 'HKCR\CLSID\484CA2F8DD1E440D9F0D8E9DDC869B4D'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{12192142-657C-456E-839F-7FF3D324CA9C}' => Key deleted successfully. 'HKCR\CLSID\{12192142-657C-456E-839F-7FF3D324CA9C}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{81E6BF17-CAC4-4796-BA22-FBB7A8DAD743}' => Key deleted successfully. 'HKCR\CLSID\{81E6BF17-CAC4-4796-BA22-FBB7A8DAD743}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}' => Key deleted successfully. 'HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B48F76BA-F0A5-4CEE-8E6D-32F62EDEFA3D}' => Key deleted successfully. 'HKCR\CLSID\{B48F76BA-F0A5-4CEE-8E6D-32F62EDEFA3D}'=> Key not found. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\4zffxtbr@VideoDownloadConverter_4z.com => value deleted successfully. 'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\hfimjncgpflkpkhbnnblhblobjjjhjhd' => Key deleted successfully. "C:\Program Files (x86)\qualitink\hfimjncgpflkpkhbnnblhblobjjjhjhd.crx" => File/Directory not found. 'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kpdhgpkkloealnjnmepfhanpcleldbef' => Key deleted successfully. "C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividi.crx" => File/Directory not found. 'HKLM\SOFTWARE\Policies\Google' => Key deleted successfully. Update qualitink => Service not found. Util qualitink => Service not found. {50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64 => Service stopped successfully. {50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64 => Service deleted successfully. {50c078f1-4117-4aad-852a-0b3bbfb46b18}w64 => Service stopped successfully. {50c078f1-4117-4aad-852a-0b3bbfb46b18}w64 => Service deleted successfully. "C:\Program Files (x86)\qualitink" => File/Directory not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{28D2A6AC-E8E5-49BD-B732-E2610FB41C56}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{28D2A6AC-E8E5-49BD-B732-E2610FB41C56}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-11' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2AAEBD7E-1A38-49F1-8B77-8D16872F054C}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2AAEBD7E-1A38-49F1-8B77-8D16872F054C}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-4' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3066CEAF-9885-424D-99A4-FE6F59A6D4A1}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3066CEAF-9885-424D-99A4-FE6F59A6D4A1}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{387D7A9D-089B-4FDD-9F1A-E56E33AA4459}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{387D7A9D-089B-4FDD-9F1A-E56E33AA4459}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-11' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3B9D077C-3CE4-427E-A573-AC9DAAAFDAA6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B9D077C-3CE4-427E-A573-AC9DAAAFDAA6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-5' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3CDBF21C-871B-441C-8A79-956FB8812858}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3CDBF21C-871B-441C-8A79-956FB8812858}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-1' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4798D6A9-0C26-4C4D-85BB-F18FCC67CEA6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4798D6A9-0C26-4C4D-85BB-F18FCC67CEA6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-6' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4BE41623-B47D-4CA2-A294-14ECF204ED13}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4BE41623-B47D-4CA2-A294-14ECF204ED13}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-2' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{61BE775A-04D1-43D7-AEEE-C7AB9EA5B9C6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{61BE775A-04D1-43D7-AEEE-C7AB9EA5B9C6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-7' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{73865EF5-35EB-4526-9215-BCD4DB81CF0F}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73865EF5-35EB-4526-9215-BCD4DB81CF0F}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-4' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{829C55E8-A273-4D18-A71F-D39FBA378350}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{829C55E8-A273-4D18-A71F-D39FBA378350}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-1' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{88A92815-9AF4-4EE0-8DB9-5B12EF586377}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{88A92815-9AF4-4EE0-8DB9-5B12EF586377}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-5' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{969C4FD9-DD0F-468B-950A-EDE47700C526}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{969C4FD9-DD0F-468B-950A-EDE47700C526}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B384BE75-7A80-4212-B0DA-0D66A9BE6777}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B384BE75-7A80-4212-B0DA-0D66A9BE6777}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-1' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C4368CE0-FA98-4DBB-91EC-E41FFF7EDFF1}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C4368CE0-FA98-4DBB-91EC-E41FFF7EDFF1}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-5' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CE47AA4E-2E0C-4B97-8438-D6AD8E58E271}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE47AA4E-2E0C-4B97-8438-D6AD8E58E271}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-7' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E6F084A8-7ACA-4F7D-A43E-C68EA9DC2942}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6F084A8-7ACA-4F7D-A43E-C68EA9DC2942}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-6' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F0FC3725-A882-4B85-B56D-17696D73E4CB}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F0FC3725-A882-4B85-B56D-17696D73E4CB}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-2' => Key deleted successfully. "C:\Windows" => ":" ADS not found. C:\ProgramData\TEMP => ":373E1720" ADS removed successfully. ==== End of Fixlog ==== Dopuna: 19 Jun 2014 0:09 Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-06-2014 Ran by Userse at 2014-06-19 00:05:53 Run:1 Running from C:\Users\Userse\Desktop Boot Mode: Normal ============================================== Content of fixlist: ************* () C:\Program Files (x86)\qualitink\updatequalitink.exe () C:\Program Files (x86)\qualitink\bin\qualitink.BrowserAdapter.exe () C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowse64.exe SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKCU - 484CA2F8DD1E440D9F0D8E9DDC869B4D URL = search.mywebsearch.com/mywebsearch/GGmain.jhtml?p2=^HJ^xdm073^YY^rs&si=pconverter&ptb=3DA564D7-122C-4B5A-8586-BDB14C0E7BEC&ind=2013111107&n=77fda343&psa=&st=sb&searchfor={searchTerms} SearchScopes: HKCU - {12192142-657C-456E-839F-7FF3D324CA9C} URL = search.ividi.org/?q={searchTerms}&src=tbsp&id=d23a1f9600000000000050465d709274&affilt=3&r=993 SearchScopes: HKCU - {81E6BF17-CAC4-4796-BA22-FBB7A8DAD743} URL = rts.dsrlte.com/?q={searchTerms}&r=822 SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2446} URL = dts.search-results.com/sr?src=ieb&gct=ds&ap.....9154491&q={searchTerms} SearchScopes: HKCU - {B48F76BA-F0A5-4CEE-8E6D-32F62EDEFA3D} URL = search.softonic.com/INF00176/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=d23a1f9600000000000050465d709274&r=843 FF HKLM-x32\...\Firefox\Extensions: [4zffxtbr@VideoDownloadConverter_4z.com] - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin CHR HKLM-x32\...\Chrome\Extension: [hfimjncgpflkpkhbnnblhblobjjjhjhd] - C:\Program Files (x86)\qualitink\hfimjncgpflkpkhbnnblhblobjjjhjhd.crx [2013-11-19] CHR HKLM-x32\...\Chrome\Extension: [kpdhgpkkloealnjnmepfhanpcleldbef] - C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividi.crx [2013-11-19] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION R2 Update qualitink; C:\Program Files (x86)\qualitink\updatequalitink.exe [317728 2014-06-18] () R2 Util qualitink; C:\Program Files (x86)\qualitink\bin\utilqualitink.exe [317728 2014-06-18] () R1 {50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64; C:\Windows\System32\drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64.sys [61112 2014-06-17] (StdLib) R1 {50c078f1-4117-4aad-852a-0b3bbfb46b18}w64; C:\Windows\System32\drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}w64.sys [61112 2014-04-24] (StdLib) 2014-06-18 19:46 - 2013-10-07 17:02 - 00000000 ____D () C:\Program Files (x86)\qualitink Task: {28D2A6AC-E8E5-49BD-B732-E2610FB41C56} - \c9cfb475-3728-4a43-ab15-eea815d77c24-11 No Task File <==== ATTENTION Task: {2AAEBD7E-1A38-49F1-8B77-8D16872F054C} - \c9cfb475-3728-4a43-ab15-eea815d77c24-4 No Task File <==== ATTENTION Task: {3066CEAF-9885-424D-99A4-FE6F59A6D4A1} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTION Task: {387D7A9D-089B-4FDD-9F1A-E56E33AA4459} - \f9274108-93c9-43de-bf25-189f8d6e653a-11 No Task File <==== ATTENTION Task: {3B9D077C-3CE4-427E-A573-AC9DAAAFDAA6} - \f9274108-93c9-43de-bf25-189f8d6e653a-5 No Task File <==== ATTENTION Task: {3CDBF21C-871B-441C-8A79-956FB8812858} - \a7982934-0630-49b5-bdb1-d23d83f53ffd-1 No Task File <==== ATTENTION Task: {4798D6A9-0C26-4C4D-85BB-F18FCC67CEA6} - \f9274108-93c9-43de-bf25-189f8d6e653a-6 No Task File <==== ATTENTION Task: {4BE41623-B47D-4CA2-A294-14ECF204ED13} - \c9cfb475-3728-4a43-ab15-eea815d77c24-2 No Task File <==== ATTENTION Task: {61BE775A-04D1-43D7-AEEE-C7AB9EA5B9C6} - \c9cfb475-3728-4a43-ab15-eea815d77c24-7 No Task File <==== ATTENTION Task: {73865EF5-35EB-4526-9215-BCD4DB81CF0F} - \f9274108-93c9-43de-bf25-189f8d6e653a-4 No Task File <==== ATTENTION Task: {829C55E8-A273-4D18-A71F-D39FBA378350} - \f9274108-93c9-43de-bf25-189f8d6e653a-1 No Task File <==== ATTENTION Task: {88A92815-9AF4-4EE0-8DB9-5B12EF586377} - \c9cfb475-3728-4a43-ab15-eea815d77c24-5 No Task File <==== ATTENTION Task: {969C4FD9-DD0F-468B-950A-EDE47700C526} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTION Task: {B384BE75-7A80-4212-B0DA-0D66A9BE6777} - \c9cfb475-3728-4a43-ab15-eea815d77c24-1 No Task File <==== ATTENTION Task: {C4368CE0-FA98-4DBB-91EC-E41FFF7EDFF1} - \a7982934-0630-49b5-bdb1-d23d83f53ffd-5 No Task File <==== ATTENTION Task: {CE47AA4E-2E0C-4B97-8438-D6AD8E58E271} - \f9274108-93c9-43de-bf25-189f8d6e653a-7 No Task File <==== ATTENTION Task: {E6F084A8-7ACA-4F7D-A43E-C68EA9DC2942} - \c9cfb475-3728-4a43-ab15-eea815d77c24-6 No Task File <==== ATTENTION Task: {F0FC3725-A882-4B85-B56D-17696D73E4CB} - \f9274108-93c9-43de-bf25-189f8d6e653a-2 No Task File <==== ATTENTION AlternateDataStreams: C:\Windows: AlternateDataStreams: C:\ProgramData\TEMP:373E1720 *************** C:\Program Files (x86)\qualitink\updatequalitink.exe => No running process found C:\Program Files (x86)\qualitink\bin\qualitink.BrowserAdapter.exe => No running process found C:\Program Files (x86)\qualitink\bin\qualitink.PurBrowse64.exe => No running process found 'HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}' => Key deleted successfully. 'HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}'=> Key not found. 'HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}' => Key deleted successfully. 'HKCR\Wow6432Node\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\484CA2F8DD1E440D9F0D8E9DDC869B4D' => Key deleted successfully. 'HKCR\CLSID\484CA2F8DD1E440D9F0D8E9DDC869B4D'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{12192142-657C-456E-839F-7FF3D324CA9C}' => Key deleted successfully. 'HKCR\CLSID\{12192142-657C-456E-839F-7FF3D324CA9C}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{81E6BF17-CAC4-4796-BA22-FBB7A8DAD743}' => Key deleted successfully. 'HKCR\CLSID\{81E6BF17-CAC4-4796-BA22-FBB7A8DAD743}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}' => Key deleted successfully. 'HKCR\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2446}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B48F76BA-F0A5-4CEE-8E6D-32F62EDEFA3D}' => Key deleted successfully. 'HKCR\CLSID\{B48F76BA-F0A5-4CEE-8E6D-32F62EDEFA3D}'=> Key not found. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\4zffxtbr@VideoDownloadConverter_4z.com => value deleted successfully. 'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\hfimjncgpflkpkhbnnblhblobjjjhjhd' => Key deleted successfully. "C:\Program Files (x86)\qualitink\hfimjncgpflkpkhbnnblhblobjjjhjhd.crx" => File/Directory not found. 'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kpdhgpkkloealnjnmepfhanpcleldbef' => Key deleted successfully. "C:\Program Files (x86)\Unitech LLC\ividi\1.8.23.0\ividi.crx" => File/Directory not found. 'HKLM\SOFTWARE\Policies\Google' => Key deleted successfully. Update qualitink => Service not found. Util qualitink => Service not found. {50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64 => Service stopped successfully. {50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64 => Service deleted successfully. {50c078f1-4117-4aad-852a-0b3bbfb46b18}w64 => Service stopped successfully. {50c078f1-4117-4aad-852a-0b3bbfb46b18}w64 => Service deleted successfully. "C:\Program Files (x86)\qualitink" => File/Directory not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{28D2A6AC-E8E5-49BD-B732-E2610FB41C56}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{28D2A6AC-E8E5-49BD-B732-E2610FB41C56}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-11' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2AAEBD7E-1A38-49F1-8B77-8D16872F054C}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2AAEBD7E-1A38-49F1-8B77-8D16872F054C}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-4' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3066CEAF-9885-424D-99A4-FE6F59A6D4A1}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3066CEAF-9885-424D-99A4-FE6F59A6D4A1}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{387D7A9D-089B-4FDD-9F1A-E56E33AA4459}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{387D7A9D-089B-4FDD-9F1A-E56E33AA4459}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-11' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3B9D077C-3CE4-427E-A573-AC9DAAAFDAA6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3B9D077C-3CE4-427E-A573-AC9DAAAFDAA6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-5' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3CDBF21C-871B-441C-8A79-956FB8812858}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3CDBF21C-871B-441C-8A79-956FB8812858}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-1' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4798D6A9-0C26-4C4D-85BB-F18FCC67CEA6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4798D6A9-0C26-4C4D-85BB-F18FCC67CEA6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-6' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4BE41623-B47D-4CA2-A294-14ECF204ED13}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4BE41623-B47D-4CA2-A294-14ECF204ED13}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-2' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{61BE775A-04D1-43D7-AEEE-C7AB9EA5B9C6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{61BE775A-04D1-43D7-AEEE-C7AB9EA5B9C6}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-7' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{73865EF5-35EB-4526-9215-BCD4DB81CF0F}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73865EF5-35EB-4526-9215-BCD4DB81CF0F}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-4' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{829C55E8-A273-4D18-A71F-D39FBA378350}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{829C55E8-A273-4D18-A71F-D39FBA378350}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-1' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{88A92815-9AF4-4EE0-8DB9-5B12EF586377}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{88A92815-9AF4-4EE0-8DB9-5B12EF586377}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-5' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{969C4FD9-DD0F-468B-950A-EDE47700C526}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{969C4FD9-DD0F-468B-950A-EDE47700C526}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B384BE75-7A80-4212-B0DA-0D66A9BE6777}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B384BE75-7A80-4212-B0DA-0D66A9BE6777}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-1' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C4368CE0-FA98-4DBB-91EC-E41FFF7EDFF1}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C4368CE0-FA98-4DBB-91EC-E41FFF7EDFF1}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-5' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CE47AA4E-2E0C-4B97-8438-D6AD8E58E271}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE47AA4E-2E0C-4B97-8438-D6AD8E58E271}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-7' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E6F084A8-7ACA-4F7D-A43E-C68EA9DC2942}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6F084A8-7ACA-4F7D-A43E-C68EA9DC2942}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\c9cfb475-3728-4a43-ab15-eea815d77c24-6' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F0FC3725-A882-4B85-B56D-17696D73E4CB}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F0FC3725-A882-4B85-B56D-17696D73E4CB}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\f9274108-93c9-43de-bf25-189f8d6e653a-2' => Key deleted successfully. "C:\Windows" => ":" ADS not found. C:\ProgramData\TEMP => ":373E1720" ADS removed successfully. ==== End of Fixlog ==== Dopuna: 19 Jun 2014 0:10 ovog nije bilo tamo da obrisem " Norton Security Scan "

Profil

Sass Drake Poslao: 19 Jun 2014 00:15 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Korak 1 Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja. 2014-06-18 22:41 - 2014-06-18 22:41 - 00002720 _____ () C:\Windows\System32\Tasks\DriverToolkit Autorun 2014-06-18 22:40 - 2014-06-18 22:40 - 00000360 _____ () C:\Windows\Tasks\DriverToolkit Autorun.job 2014-06-18 22:04 - 2014-06-18 22:04 - 00000000 ____D () C:\Users\Userse\AppData\Local\DriverToolkit Task: {E24D9A58-D7AF-480C-B36B-C455E69C77F9} - System32\Tasks\Norton Security Scan for Userse => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe Task: C:\Windows\Tasks\Norton Security Scan for Userse.job => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe U okviru Notepad-a klikni na File --> Save As Fajl nazovi Fixlist i sačuvaj na Desktop Dvoklikom ponovo pokreni FRST.exe Klikni na Fix i sačekaj dok program ne završi. Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi. Nakon završetka rada, otvoriće se Notepad, sa sadržajem koji treba da kopiraš u temu. Takođe, na Desktop-u će se nalaziti (fixlog.txt). Potrebno je da sadržaj fixlog.txt kopiraš na forum Korak 2 Preuzmi zoek.exe sa ovog ili ovog linka i sačuvaj ga na Desktop. Zatvori browser i ostale pokrenute programe; deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ; dvoklikom pokreni zoek.exe; pričekaj da se alat startuje ... U beli okvir prozora iskopiraj sljedeći tekst: `process; startupall; skipfix-iedefaults; firefoxlook; chromelook; filesrcm;` Klikni na dugme i pričekaj da se skeniranje završi. Zoek će po potrebi restartovati Windows, a na kraju rada otvoriti Notepad sa izvještajem o skeniranju. Napomena: Izvještaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log) Kopiraj sadržaj tog loga u poruku.

Profil

nenadivanka030 Poslao: 19 Jun 2014 00:20 Idi na vrh
offline nenadivanka030 Novi MyCity građanin Pridružio: 18 Jun 2014 Poruke: 10	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 19 Jun 2014 0:19 Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-06-2014 Ran by Userse at 2014-06-19 00:17:52 Run:2 Running from C:\Users\Userse\Desktop Boot Mode: Normal ============================================== Content of fixlist: *************** 2014-06-18 22:41 - 2014-06-18 22:41 - 00002720 _____ () C:\Windows\System32\Tasks\DriverToolkit Autorun 2014-06-18 22:40 - 2014-06-18 22:40 - 00000360 _____ () C:\Windows\Tasks\DriverToolkit Autorun.job 2014-06-18 22:04 - 2014-06-18 22:04 - 00000000 ____D () C:\Users\Userse\AppData\Local\DriverToolkit Task: {E24D9A58-D7AF-480C-B36B-C455E69C77F9} - System32\Tasks\Norton Security Scan for Userse => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe Task: C:\Windows\Tasks\Norton Security Scan for Userse.job => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe ************* C:\Windows\System32\Tasks\DriverToolkit Autorun => Moved successfully. C:\Windows\Tasks\DriverToolkit Autorun.job => Moved successfully. C:\Users\Userse\AppData\Local\DriverToolkit => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E24D9A58-D7AF-480C-B36B-C455E69C77F9}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E24D9A58-D7AF-480C-B36B-C455E69C77F9}' => Key deleted successfully. C:\Windows\System32\Tasks\Norton Security Scan for Userse => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Norton Security Scan for Userse' => Key deleted successfully. C:\Windows\Tasks\DriverToolkit Autorun.job not found. C:\Windows\Tasks\Norton Security Scan for Userse.job => Moved successfully. ==== End of Fixlog ==== Dopuna: 19 Jun 2014 0:20 Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-06-2014 Ran by Userse at 2014-06-19 00:17:52 Run:2 Running from C:\Users\Userse\Desktop Boot Mode: Normal ============================================== Content of fixlist: ************* 2014-06-18 22:41 - 2014-06-18 22:41 - 00002720 _____ () C:\Windows\System32\Tasks\DriverToolkit Autorun 2014-06-18 22:40 - 2014-06-18 22:40 - 00000360 _____ () C:\Windows\Tasks\DriverToolkit Autorun.job 2014-06-18 22:04 - 2014-06-18 22:04 - 00000000 ____D () C:\Users\Userse\AppData\Local\DriverToolkit Task: {E24D9A58-D7AF-480C-B36B-C455E69C77F9} - System32\Tasks\Norton Security Scan for Userse => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe Task: C:\Windows\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe Task: C:\Windows\Tasks\Norton Security Scan for Userse.job => C:\PROGRA~2\NORTON~2\Engine\410~1.28\Nss.exe *************** C:\Windows\System32\Tasks\DriverToolkit Autorun => Moved successfully. C:\Windows\Tasks\DriverToolkit Autorun.job => Moved successfully. C:\Users\Userse\AppData\Local\DriverToolkit => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E24D9A58-D7AF-480C-B36B-C455E69C77F9}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E24D9A58-D7AF-480C-B36B-C455E69C77F9}' => Key deleted successfully. C:\Windows\System32\Tasks\Norton Security Scan for Userse => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Norton Security Scan for Userse' => Key deleted successfully. C:\Windows\Tasks\DriverToolkit Autorun.job not found. C:\Windows\Tasks\Norton Security Scan for Userse.job => Moved successfully. ==== End of Fixlog ====

Profil

Sass Drake Poslao: 19 Jun 2014 00:27 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Isprati sad drugi korak.

Profil

nenadivanka030 Poslao: 19 Jun 2014 00:45 Idi na vrh
offline nenadivanka030 Novi MyCity građanin Pridružio: 18 Jun 2014 Poruke: 10	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Zoek.exe v5.0.0.0 Updated 16-June-2014 Tool run by Userse on Thu 06/19/2014 at 0:37:19.36. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Userse\Desktop\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2014-06-18-222345.log 1411 bytes C:\zoek-results2014-06-18-223401.log 33008 bytes ==== Running Processes ====================== C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe C:\Windows\vsnp2uvc.exe C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe C:\Users\Userse\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Windows\SysWOW64\cmd.exe ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2014-06-18 18:32:53 0B5A0005C0BDF4A05174576AF80DEA04 43152 ----a-w- C:\Windows\avastSS.scr ====== C:\Users\Userse\AppData\Local\Temp ==== 2014-06-18 19:36:31 BCADC26A6ED5B48361F8D0782ACA5DAF 150049 ----a-w- C:\Users\Userse\AppData\Local\Temp\Uninstall.exe ====== Java Cache ===== ====== C:\Windows\SysWOW64 ===== 2014-06-18 19:21:00 0DC5AF80D059DEC792B665ED598C6567 536576 ----a-w- C:\Windows\SysWOW64\sqlite3.dll 2014-06-11 09:23:45 A5F833506BF6A1B5D693E1499DEE2444 626688 ----a-w- C:\Windows\SysWOW64\usp10.dll 2014-06-11 09:23:42 E227B810296AA27E6C69307A7B6456E5 1389056 ----a-w- C:\Windows\SysWOW64\msxml6.dll 2014-06-11 09:23:42 8B8D1CEF498678CAB9DF17145D34BC64 1237504 ----a-w- C:\Windows\SysWOW64\msxml3.dll 2014-06-11 09:23:42 2E673E776136354ECFB57BFD62E7EC3D 2048 ----a-w- C:\Windows\SysWOW64\msxml6r.dll 2014-06-11 09:23:42 0789F82BAE171323F74B8F175D406AB8 2048 ----a-w- C:\Windows\SysWOW64\msxml3r.dll 2014-06-11 09:23:37 BB9BADED14F0963498855AC28446CED5 51200 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2014-06-11 09:23:37 7E27FB6AB8976897A530FB30F5FF7691 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2014-06-11 09:23:37 6D8E6A9A524FFAAFA4D2F6C8EF38D0BB 592896 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2014-06-11 09:23:36 C1F5812F355D0C9495C1B2E7165DA2AF 32256 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-06-11 09:23:36 8DF06ACA017949D37C38B6A0EF747D4E 526336 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2014-06-11 09:23:36 0AFCE8EEF3751810FE2101FD608FB8B3 1143296 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2014-06-11 09:23:36 017B99D09904DCA35D5F66AD79084B5F 368128 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2014-06-11 09:23:35 D5ECBB3BFDC73A59440D9CA79AB3A342 17271296 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-06-11 09:23:34 D9F5B424C307B195E16A9B0A21E53BCC 61952 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2014-06-11 09:23:34 C69FDD49AB9E8BCF2BAAC469CE0CC756 1964544 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2014-06-11 09:23:34 9EAAB4305536829D6B7D9C3A47E92861 2179072 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2014-06-11 09:23:33 E0EA58834CD19FDFCD1BC37B22E1D3D8 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2014-06-11 09:23:33 D36574C287D0764C95AC777DFF367715 32768 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2014-06-11 09:23:32 814E0D53EF020BD93097F26B53B573F0 440832 ----a-w- C:\Windows\SysWOW64\ieui.dll 2014-06-11 09:23:32 688227D38A6FF6403B293D0C50B454B9 11725312 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2014-06-11 09:23:32 5B5815477A53ED92B89955FFE7EDCB2E 242688 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2014-06-11 09:23:31 4D3074AA172DCFD5D56BE764B671085A 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2014-06-11 09:23:29 CC0077F9C7ACD7E97707DFC763A4EA99 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-06-11 09:23:29 C58E97EEB1CB80CE91D5E7FD5E78794F 4244992 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2014-06-11 09:23:29 771CDBC3D62437D6DB070820BB1EDCCF 1790976 ----a-w- C:\Windows\SysWOW64\wininet.dll 2014-06-11 09:23:29 22D7FFA4B94916F18EB1F1D107B86839 704512 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2014-06-11 09:23:29 0AC4E3C93D49E37D5B008ED99092115C 1068032 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll 2014-06-11 09:23:29 09771ABC896D2A88370F3AB8BADC242E 455168 ----a-w- C:\Windows\SysWOW64\vbscript.dll 2014-06-11 09:23:28 EB960643DC62832C88272573204B6DBA 164864 ----a-w- C:\Windows\SysWOW64\msrating.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-06-11 09:23:46 088CF6AFCD5CDD44E40C0ACDE3C1A5E0 801280 ----a-w- C:\Windows\Sysnative\usp10.dll 2014-06-11 09:23:42 ECA6AC33BD9E441F7B47D173D715D268 1882112 ----a-w- C:\Windows\Sysnative\msxml3.dll 2014-06-11 09:23:42 3408DD8081DC22858AE2E6ABD2594C02 2048 ----a-w- C:\Windows\Sysnative\msxml6r.dll 2014-06-11 09:23:42 0E3A7EC2B9590EA7767BBB1823630DEA 2002432 ----a-w- C:\Windows\Sysnative\msxml6.dll 2014-06-11 09:23:42 0465A8CFDDB4FFDB569802A70B9443D5 2048 ----a-w- C:\Windows\Sysnative\msxml3r.dll 2014-06-11 09:23:40 1E3E97D2C0E630F11EDDD03056B12ED1 1112064 ----a-w- C:\Windows\Sysnative\rdpcorets.dll 2014-06-11 09:23:36 DA7AAB5D4E5F7160E906C0D2EB9A2B9F 38400 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2014-06-11 09:23:36 3ED5C9055F7A635399FC12892F565287 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2014-06-11 09:23:34 D5C446B14DC667B7B9FBB30EA1701D92 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2014-06-11 09:23:34 3A1AB9DE852F2BC1ECE6403BDD01B9F0 1398272 ----a-w- C:\Windows\Sysnative\urlmon.dll 2014-06-11 09:23:33 DFD834E89B819B5ECE8E251C56B5A3CE 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2014-06-11 09:23:33 BFD3178735D97C858FFA467F8199700C 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2014-06-11 09:23:32 867DD52B23D3B0390B88F3D7AD1E600C 631808 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2014-06-11 09:23:32 12BA419E27DBC5DBF9262C8A885FA361 452096 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2014-06-11 09:23:31 EAAA62F272858695814A1F42D5E59BD3 608768 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2014-06-11 09:23:31 B34D3F303769E65CE7EFBD4E6FB62B25 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll 2014-06-11 09:23:30 3FC3828E8820D1C93DBFBAD4BE456D85 2040832 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2014-06-11 09:23:30 063EF4239479F52DAF9F4849B0B304F1 2768384 ----a-w- C:\Windows\Sysnative\iertutil.dll 2014-06-11 09:23:29 CE6109C73C3A04CC2B8C6110B0F0FEF9 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll 2014-06-11 09:23:29 790FD40601502C5FE8213D4F335DA0BD 51200 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2014-06-11 09:23:27 CB8A91074AE1B5051E240B50A328DCF5 295424 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2014-06-11 09:23:27 B2C037F50A02D6C057B1E0791BBF41A5 574976 ----a-w- C:\Windows\Sysnative\ieui.dll 2014-06-11 09:23:27 2DBB9127794BC30BC31D26FA088F8BAB 13522944 ----a-w- C:\Windows\Sysnative\ieframe.dll 2014-06-11 09:23:26 CC603EF96BA456D4BCD9FF849ED07A2A 85504 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2014-06-11 09:23:26 AB3FA3D9B1F1D0571CBC43D1487CCD6F 5782528 ----a-w- C:\Windows\Sysnative\jscript9.dll 2014-06-11 09:23:26 A4A58E3171C03A1145D1C3EC488D1B4F 1249280 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll 2014-06-11 09:23:26 770F067D833DC017CEB8A36A2A1EC942 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2014-06-11 09:23:26 6B9925F498D4E91FB57576CC3776D428 752640 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2014-06-11 09:23:25 9013D5BBE1B6D3A060F54B4B5BB2C3A3 846336 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2014-06-11 09:23:25 40BFD9D6EC8E174145F012246CA73CCD 2266112 ----a-w- C:\Windows\Sysnative\wininet.dll 2014-06-11 09:23:25 2F474D40626B0C694400589F3FBB9AA9 548352 ----a-w- C:\Windows\Sysnative\vbscript.dll 2014-06-11 09:23:24 F343ECB3C683EBD7E3990C03AD680855 940032 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe 2014-06-11 09:23:24 8E3C6008250A904C06943BCEA585E344 195584 ----a-w- C:\Windows\Sysnative\msrating.dll 2014-06-11 09:23:23 56803B20D168C1B740D12CE0BE4588F5 23414784 ----a-w- C:\Windows\Sysnative\mshtml.dll 2014-06-11 09:22:08 2C053C9B2A8249F1F9B38ED1AE455771 506368 ----a-w- C:\Windows\Sysnative\aepdu.dll 2014-06-11 09:22:07 84A13AB118F433898B5ABA36E8D7CA91 424448 ----a-w- C:\Windows\Sysnative\aeinv.dll ====== C:\Windows\Sysnative\drivers ===== 2014-06-18 20:41:30 D7E0591E2BA1289C875A9D948377441E 31648 ----a-w- C:\Windows\Sysnative\drivers\HWiNFO64A.SYS 2014-06-18 20:22:03 7ED79BFF4353D766759665FEAC04530B 61112 ----a-w- C:\Windows\Sysnative\drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64.sys 2014-06-18 20:17:14 1283601F0FDBD73B84849EFA5EFF2C3D 15128 ----a-w- C:\Windows\Sysnative\drivers\IntelMEFWVer.dll 2014-06-18 20:16:08 6B01B7414A105B9E51652089A03027CF 60184 ----a-w- C:\Windows\Sysnative\drivers\HECIx64.sys 2014-06-18 18:33:15 A7115ED31675BB823CFA9FE571C25676 85328 ----a-w- C:\Windows\Sysnative\drivers\aswstm.sys 2014-06-18 18:33:09 340B0467E98A8C92697D73034DB4BCB7 29208 ----a-w- C:\Windows\Sysnative\drivers\aswHwid.sys 2014-06-18 18:29:57 47CBD3F64E412FFAFD93404580A3C7B9 208416 ----a-w- C:\Windows\Sysnative\drivers\aswVmm.sys 2014-06-18 18:29:55 BF5B9E9E97CED45208E498D9FA73688F 65776 ----a-w- C:\Windows\Sysnative\drivers\aswRvrt.sys 2014-06-18 16:56:10 9C3AC71A9934B884FAC567A8807E9C4D 31800 ----a-w- C:\Windows\Sysnative\drivers\revoflt.sys 2014-06-11 09:23:44 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2014-06-11 09:23:44 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2014-06-18 20:41:10 -------- d-----w- C:\Program Files\HWiNFO64 2014-06-18 20:17:02 -------- d-----w- C:\Program Files\Intel 2014-06-18 19:47:23 -------- d-----w- C:\Program Files\Speccy 2014-06-18 16:56:09 -------- d-----w- C:\Program Files\VS Revo Group ======= C:\PROGRA~2 ===== 2014-06-18 20:16:28 -------- d-----w- C:\PROGRA~2\COMMON~1\postureAgent 2014-06-18 20:04:09 -------- d-----w- C:\PROGRA~2\DriverToolkit 2014-06-18 14:56:53 -------- d-----w- C:\PROGRA~2\GoPhoto.it V9.0 2014-05-21 22:12:12 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype ======= C: ===== ====== C:\Users\Userse\AppData\Roaming ====== 2014-06-18 21:57:14 -------- d-----w- C:\Users\Userse\AppData\Roaming\TeamViewer 2014-06-18 19:22:24 -------- d-sh--w- C:\Windows\SysNative\config\systemprofile\AppData\Local\EmieUserList 2014-06-18 19:22:24 -------- d-sh--w- C:\Windows\SysNative\config\systemprofile\AppData\Local\EmieSiteList 2014-06-18 18:51:35 -------- d-----w- C:\Users\Userse\AppData\Roaming\DropboxMaster 2014-06-18 18:50:59 -------- d-----w- C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-06-18 18:49:35 -------- d-----w- C:\Users\Userse\AppData\Roaming\Dropbox 2014-06-18 18:20:16 -------- d-----w- C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HLDS 2014-06-18 18:20:16 -------- d-----w- C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Half-Life 2014-06-18 18:20:16 -------- d-----w- C:\Users\Userse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 2014-06-18 16:56:17 -------- d-----w- C:\Users\Userse\AppData\Local\VS Revo Group 2014-06-18 16:28:21 -------- d-----w- C:\Users\Userse\AppData\Local\Adobe 2014-06-03 15:30:17 -------- d-----w- C:\Users\Userse\AppData\Roaming\Media Player Classic 2014-05-23 06:40:08 -------- d-----w- C:\Users\Userse\AppData\Local\Packages 2014-05-23 06:40:02 -------- d-----w- C:\Users\Userse\AppData\Locallow\{5253BBD3-FF87-3A9F-6721-2E8A99FC28DE} ====== C:\Users\Userse ====== 2014-06-18 21:01:33 6416722B22A6442B0D2A7C0BC2FAE2DF 2082304 ----a-w- C:\Users\Userse\Desktop\FRST64.exe 2014-06-18 20:41:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64 2014-06-18 20:29:07 -------- d-----w- C:\ProgramData\GRETECH 2014-06-18 20:17:08 -------- d-----w- C:\ProgramData\Intel 2014-06-18 17:01:41 -------- d-----w- C:\Users\Userse\New folder 2014-06-18 16:56:11 -------- d-----w- C:\ProgramData\VS Revo Group 2014-06-18 16:56:11 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro 2014-06-18 16:27:47 -------- d-----w- C:\ProgramData\Allmyapps 2014-06-18 15:25:35 9408B730D7D08139E19361259BCA06CD 257129400 ----a-w- C:\Users\Userse\Documents\CS1.6 FULL v42 - Protocol 48 Clean.exe ====== C: exe-files == 2014-06-18 22:16:40 EDAC53E2964C7ACE868208C3B6C5C8F1 39078480 ----a-w- C:\Program Files (x86)\Google\Update\Install\{432233BF-7ED4-434F-9E8A-801C5C9F9D6E}\35.0.1916.153_chrome_installer.exe 2014-06-18 22:16:40 EDAC53E2964C7ACE868208C3B6C5C8F1 39078480 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\35.0.1916.153\35.0.1916.153_chrome_installer.exe 2014-06-18 22:13:39 305204BF92B5D65AE2595BF3D4B2F661 918440 ----a-w- C:\Users\Userse\AppData\LocalLow\Sun\Java\JRERunOnce.exe 2014-06-18 22:13:05 3842C46F2FBC7522EF625F1833530804 145408 ----a-w- C:\Users\Userse\AppData\LocalLow\Sun\Java\jre1.7.0_60\lzma.exe 2014-06-18 21:37:39 34F60BD0324E34FC392A6DD7100DA2C3 1265521 ----a-w- C:\Program Files\VS Revo Group\Revo Uninstaller Pro\unins000.exe 2014-06-18 21:01:33 6416722B22A6442B0D2A7C0BC2FAE2DF 2082304 ----a-w- C:\Users\Userse\Desktop\FRST64.exe 2014-06-18 20:41:10 96402477FEE1CCDC8B5FDFE2F008C59F 852254 ----a-w- C:\Program Files\HWiNFO64\unins000.exe 2014-06-18 20:41:10 333D0AEADB5CA572F108474660773F5F 2308496 ----a-w- C:\Program Files\HWiNFO64\HWiNFO64.EXE 2014-06-18 20:17:12 4E5DB6816F165C0C7A7FAA0055788884 165144 ----a-w- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe 2014-06-18 20:16:57 C5CC2D35F038F2A934483A4D1C2E4435 363800 ----a-w- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 2014-06-18 20:16:28 B596A99DD9577C6CF1C8078A9FC5038C 277784 ----a-w- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 2014-06-18 20:16:22 B5B62B131C3F223E0A7A1C6FD719F881 184600 ----a-w- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\uninstall\x64\Drv64.exe 2014-06-18 20:16:21 1516F62D1421432E25469B460AAB96A9 977688 ----a-w- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\uninstall\Setup.exe 2014-06-18 20:16:05 FBAB280D0CAC5E21C72F0A1A7B5B9608 455600 ----a-w- C:\Program Files (x86)\InstallShield Installation Information\{40FEF622-6E0F-46B6-824B-A40C178FD4CD}\setup.exe 2014-06-18 19:36:31 BCADC26A6ED5B48361F8D0782ACA5DAF 150049 ----a-w- C:\Users\Userse\AppData\Local\Temp\Uninstall.exe 2014-06-18 18:20:13 FCCD7F257294E8C981419DDE93602FF7 101376 ----a-w- C:\Games\Counter-Strike\valve\addons\amxmodx\scripting\amxxpc.exe 2014-06-18 18:20:13 D1549A19D4B1F23963B2824CB0182B31 2261124 ----a-w- C:\Games\Counter-Strike\platform\Steam\cached\steambackup.exe 2014-06-18 18:20:13 5C37F632B39008B214420721FEE1E6CE 102912 ----a-w- C:\Games\Counter-Strike\valve\addons\amxmodx\scripting\compile.exe 2014-06-18 18:20:13 5C37F632B39008B214420721FEE1E6CE 102912 ----a-w- C:\Games\Counter-Strike\cstrike\addons\amxmodx\scripting\compile.exe 2014-06-18 18:20:13 3E6E841C6A326C1BBB39185F045CBB11 221184 ----a-w- C:\Games\Counter-Strike\hltv.exe 2014-06-18 18:20:13 3745840B996A56366857E83CD4244D5F 407336 ----a-w- C:\Games\Counter-Strike\hlds.exe 2014-06-18 18:20:13 2098CCF443433129B556C2849FE99E26 86077 ----a-w- C:\Games\Counter-Strike\hl.exe 2014-06-18 18:20:13 035D09E67DDED2A7636D04EEB620C3B9 122880 ----a-w- C:\Games\Counter-Strike\cstrike\addons\amxmodx\data\WinCSX.exe 2014-06-18 18:20:12 FCCD7F257294E8C981419DDE93602FF7 101376 ----a-w- C:\Games\Counter-Strike\cstrike\addons\amxmodx\scripting\amxxpc.exe 2014-06-18 16:56:11 04EFED15350A230218D3884C95C1931F 7151696 ----a-w- C:\Program Files\VS Revo Group\Revo Uninstaller Pro\ruplp.exe 2014-06-18 16:56:10 7F3B3ABA994FBFCC90FF8FED64111CDB 81360 ----a-w- C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoCmd.exe 2014-06-18 16:56:10 123D581BBA64C0D1FD1C361793B5EF85 3739208 ----a-w- C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoAppBar.exe 2014-06-18 16:56:09 8377B01AC4798030824AAFBE680010BE 17006136 ----a-w- C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe 2014-06-18 16:28:19 EDF1B2E4E611CC9A0BF1D9E7EEA2D325 130208 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe 2014-06-18 16:28:19 C24EAC61FF481033893953386788A2A6 59392 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\template.exe 2014-06-18 16:28:19 C113B2525CF0E7416C2F2CA7FBD7516E 96768 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe 2014-06-18 16:28:19 7B547F897E8A714512EEBC8A5E69324C 54432 ----a-w- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\airappinstaller.exe 2014-06-18 16:28:19 7B547F897E8A714512EEBC8A5E69324C 54432 ----a-w- C:\Program Files (x86)\Adobe\Flash Player\AddIns\airappinstaller\airappinstaller.exe 2014-06-18 15:25:35 9408B730D7D08139E19361259BCA06CD 257129400 ----a-w- C:\Users\Userse\Documents\CS1.6 FULL v42 - Protocol 48 Clean.exe 2014-06-18 14:57:40 F5FCDC863332FEE8B6F9665085910372 463744 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\f9274108-93c9-43de-bf25-189f8d6e653a-5.exe 2014-06-18 14:57:37 50376F2EF54FF95F9C2A767706668288 373632 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-buttonutil64.exe 2014-06-18 14:57:36 5744C15FA0BDE7091A1E25C35864FAA7 281472 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-buttonutil.exe 2014-06-18 14:57:34 D3DD7A36561AE829231034698A0DF5C4 525184 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-codedownloader.exe 2014-06-18 14:57:33 3B53928D11DAF3FE67784270B3915E62 660864 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-bg.exe 2014-06-18 14:57:27 7D976B2329A859D12CCCF43D8C08D180 372096 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\f9274108-93c9-43de-bf25-189f8d6e653a-2.exe 2014-06-18 14:57:21 B887F5F32391516889C6F4DDB3D601BE 850304 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\f9274108-93c9-43de-bf25-189f8d6e653a-4.exe 2014-06-18 14:57:15 D3DD7A36561AE829231034698A0DF5C4 525184 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-novainstaller.exe 2014-06-18 14:57:14 6507A8D26951F5CF4DC0A4E0A236A843 606080 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe 2014-06-18 14:56:58 8DEA7FFE2343C3C05829F22A76402FA0 1914240 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\f9274108-93c9-43de-bf25-189f8d6e653a-11.exe 2014-06-18 14:56:54 4E4088FB5BAE2020190A50E60564C50A 102784 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\Uninstall.exe 2014-06-18 14:56:53 359EE16F70A3E9950C420A4F84D013D5 2238685 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\utils.exe 2014-06-17 08:56:02 760D5FF0AFC7BF33C72343BD64F12AD3 9222752 ----a-w- C:\Program Files (x86)\GRETECH\GomPlayer\GOM.EXE 2014-06-15 07:13:23 EA65B463ED8D38C11FC196D9EE581390 1328976 ----a-w- C:\Users\Userse\AppData\Roaming\uTorrent\updates\3.4.2_31812.exe 2014-06-14 07:16:53 85E6CCE1AF1EAE327EDD9E04561F5E3D 1329488 ----a-w- C:\Users\Userse\AppData\Roaming\uTorrent\updates\3.4.2_31798.exe === C: other files == 2014-06-18 21:58:35 C768F85F5901CCC36DC3702716303664 152 ----a-w- C:\ProgramData\Allmyapps\ama_uninstall.bat 2014-06-18 20:41:30 D7E0591E2BA1289C875A9D948377441E 31648 ----a-w- C:\Windows\System32\drivers\HWiNFO64A.SYS 2014-06-18 20:22:03 7ED79BFF4353D766759665FEAC04530B 61112 ----a-w- C:\Windows\System32\drivers\{50c078f1-4117-4aad-852a-0b3bbfb46b18}Gw64.sys 2014-06-18 20:16:08 6B01B7414A105B9E51652089A03027CF 60184 ----a-w- C:\Windows\System32\drivers\HECIx64.sys 2014-06-18 18:33:15 A7115ED31675BB823CFA9FE571C25676 85328 ----a-w- C:\Windows\System32\drivers\aswstm.sys 2014-06-18 18:33:09 340B0467E98A8C92697D73034DB4BCB7 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys 2014-06-18 18:29:57 47CBD3F64E412FFAFD93404580A3C7B9 208416 ----a-w- C:\Windows\System32\drivers\aswVmm.sys 2014-06-18 18:29:55 BF5B9E9E97CED45208E498D9FA73688F 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys 2014-06-18 18:19:49 7A6C316AB0AAE37DFBE0869AA54633BC 49 ----a-w- C:\Games\Counter-Strike\Half-Life WaRzOnE.bat 2014-06-18 18:19:49 2A1AF54FA894F356573D575C297358AB 63 ----a-w- C:\Games\Counter-Strike\Counter-Strike WaRzOnE.bat 2014-06-18 16:56:10 9C3AC71A9934B884FAC567A8807E9C4D 31800 ----a-w- C:\Windows\System32\drivers\revoflt.sys 2014-06-18 16:56:10 9C3AC71A9934B884FAC567A8807E9C4D 31800 ----a-w- C:\Program Files\VS Revo Group\Revo Uninstaller Pro\revoflt.sys 2014-06-18 14:57:21 934ABE01006E91D6693CCFAD3B3E4770 543060 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\34068.xpi 2014-06-18 14:56:57 C495C1733B9A16B69F9C8EF3E558ACD8 356648 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\360-34068.crx 2014-06-18 14:56:57 B6BD677E2C6868BFFFDCD72F38467B5F 355454 ----a-w- C:\Program Files (x86)\GoPhoto.it V9.0\f9274108-93c9-43de-bf25-189f8d6e653a.crx ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2382981010-3838380058-2614695883-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "HDAudDeck"="C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun" "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun" [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=" " ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "snp2uvc"="C:\Windows\vsnp2uvc.exe" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"" ==== Startup Registry Disabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ACPW05EN] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="ACPW05EN" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\ACD Systems\\ACDSee Pro\\5.0\\ACDSeeProInTouch2.exe\" /pid ACPW05EN" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Adobe ARM" "hkey"="HKLM" "command"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Allmyapps] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Allmyapps" "hkey"="HKCU" "command"="\"C:\\Users\\Userse\\AppData\\Roaming\\Allmyapps\\Allmyapps.exe\" startup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Allmyapps Update] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Allmyapps Update" "hkey"="HKCU" "command"="\"C:\\Users\\Userse\\AppData\\Roaming\\Allmyapps\\AllmyappsUpdater.exe\" check startup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DAEMON Tools Lite] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DAEMON Tools Lite" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\DAEMON Tools Lite\\DTLite.exe\" -autorun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Facebook Update] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Facebook Update" "hkey"="HKCU" "command"="\"C:\\Users\\Userse\\AppData\\Local\\Facebook\\Update\\FacebookUpdate.exe\" /c /nocrashserver" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Sidebar] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Sidebar" "hkey"="HKCU" "command"="C:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\snp2uvc] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="snp2uvc" "hkey"="HKLM" "command"="C:\\Windows\\vsnp2uvc.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\swg] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="swg" "hkey"="HKCU" "command"="\"C:\\Program Files (x86)\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\tsnp2uvc] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="tsnp2uvc" "hkey"="HKLM" "command"="C:\\Program Files (x86)\\Common Files\\SNP2UVC\\tsnp2uvc.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\uTorrent] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="uTorrent" "hkey"="HKCU" "command"="\"C:\\Users\\Userse\\AppData\\Roaming\\uTorrent\\uTorrent.exe\" /MINIMIZED" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\VideoDownloadConverter Search Scope Monitor] "key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="VideoDownloadConverter Search Scope Monitor" "hkey"="HKLM" "command"="\"C:\\PROGRA~2\\VIDEOD~2\\bar\\1.bin\\4zsrchmn.exe\" /m=2 /w /h" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk] "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\McAfee Security Scan Plus.lnk" "backup"="C:\\Windows\\pss\\McAfee Security Scan Plus.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\PROGRA~2\\MCAFEE~1\\307523~1.318\\SSSCHE~1.EXE " "item"="McAfee Security Scan Plus" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [06/18/2014 08:50 PM] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2382981010-3838380058-2614695883-1000Core.job --a------ C:\Users\Userse\AppData\Local\Facebook\Update\FacebookUpdate.exe [04/06/2013 10:03 PM] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2382981010-3838380058-2614695883-1000UA.job --a------ C:\Users\Userse\AppData\Local\Facebook\Update\FacebookUpdate.exe [04/06/2013 10:03 PM] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02/06/2013 12:33 AM] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [02/06/2013 12:33 AM] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\Adobe online update program" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2382981010-3838380058-2614695883-1000Core" [C:\Users\Userse\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\FacebookUpdateTaskUserS-1-5-21-2382981010-3838380058-2614695883-1000UA" [C:\Users\Userse\AppData\Local\Facebook\Update\FacebookUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\Java Update Scheduler" [C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe] "C:\Windows\SysNative\tasks\Real Player online update program" [c:\program files (x86)\real\realplayer\update\realsched.exe] "C:\Windows\SysNative\tasks\RealCreateProcessScheduledTask100098337S-1-5-21-2382981010-3838380058-2614695883-1000" [c:\program files (x86)\real\realplayer\update\realsched.exe] "C:\Windows\SysNative\tasks\RealCreateProcessScheduledTask10249998S-1-5-21-2382981010-3838380058-2614695883-1000" [c:\program files (x86)\real\realplayer\update\realsched.exe] "C:\Windows\SysNative\tasks\RealCreateProcessScheduledTask275701346S-1-5-21-2382981010-3838380058-2614695883-1000" [c:\program files (x86)\real\realplayer\update\realsched.exe] "C:\Windows\SysNative\tasks\RealCreateProcessScheduledTask311119189S-1-5-21-2382981010-3838380058-2614695883-1000" [c:\program files (x86)\real\realplayer\update\realsched.exe] "C:\Windows\SysNative\tasks\RealCreateProcessScheduledTask312100217S-1-5-21-2382981010-3838380058-2614695883-1000" [c:\program files (x86)\real\realplayer\update\realsched.exe] "C:\Windows\SysNative\tasks\RealCreateProcessScheduledTask34224996S-1-5-21-2382981010-3838380058-2614695883-1000" [c:\program files (x86)\real\realplayer\update\realsched.exe] "C:\Windows\SysNative\tasks\RealCreateProcessScheduledTask35564998S-1-5-21-2382981010-3838380058-2614695883-1000" [c:\program files (x86)\real\realplayer\update\realsched.exe] "C:\Windows\SysNative\tasks\RealCreateProcessScheduledTask45502278S-1-5-21-2382981010-3838380058-2614695883-1000" [c:\program files (x86)\real\realplayer\update\realsched.exe] "C:\Windows\SysNative\tasks\RealCreateProcessScheduledTask458375475S-1-5-21-2382981010-3838380058-2614695883-1000" [c:\program files (x86)\real\realplayer\update\realsched.exe] "C:\Windows\SysNative\tasks\RealCreateProcessScheduledTask7873386S-1-5-21-2382981010-3838380058-2614695883-1000" [c:\program files (x86)\real\realplayer\update\realsched.exe] "C:\Windows\SysNative\tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2382981010-3838380058-2614695883-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe] "C:\Windows\SysNative\tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2382981010-3838380058-2614695883-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe] "C:\Windows\SysNative\tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2382981010-3838380058-2614695883-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe] "C:\Windows\SysNative\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2382981010-3838380058-2614695883-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\SysNative\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2382981010-3838380058-2614695883-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe] "C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\Windows\SysNative\tasks\TuneUpUtilities_Task_BkGndMaintenance2013" [C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe] "C:\Windows\SysNative\tasks\User_Feed_Synchronization-{49D7E0ED-4435-496C-BE55-ABE680CD5FDD}" [C:\Windows\system32\msfeedssync.exe] "C:\Windows\SysNative\tasks\{DC4A2444-A30E-4D92-80A3-35C77F1D541C}" ["c:\users\userse\appdata\local\torch\application\torch.exe"] "C:\Windows\SysNative\tasks\ASUS\i-Setup055127" [C:\Windows\SNB\AsusSetup.exe] "C:\Windows\SysNative\tasks\ASUS\i-Setup055248" [C:\Windows\SNB\AsusSetup.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{ABDE892B-13A8-4d1b-88E6-365A6E755758}"="C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext" [] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Userse\AppData\Roaming\Mozilla\Firefox\Profiles\hdjwbhe7.default - Undetermined - %ProfilePath%\extensions\{013a635f-e3aa-4371-b682-ece95ca974b0} ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[04/11/2014 07:46 PM] Skype Click to Call - Userse\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl Google Wallet - Userse\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== IE Start and Search Settings ====================== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.msn.com/?pc=AV01" "Search Page"="http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} Microsoft (Bing) Url="http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7PRFB_enRS522" ==== C:\zoek_backup content ====================== C:\zoek_backup (files=0 folders=0 0 bytes) ==== EOF on Thu 06/19/2014 at 0:42:21.41 ======================

Profil

Sass Drake Poslao: 19 Jun 2014 01:00 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Sve što imaš da napišeš napiši u temi i molim te da mi ne šalješ privatne poruke bez dobrog razloga tj. samo one stvari koje nisu za javnost, a u ovoj temi takvih stvari nema koliko vidim. Preuzmi zoek.exe sa ovog ili ovog linka i sačuvaj ga na Desktop. Zatvori browser i ostale pokrenute programe; deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ; dvoklikom pokreni zoek.exe; pričekaj da se alat startuje ... U beli okvir prozora iskopiraj sljedeći tekst: `[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\VideoDownloadConverter Search Scope Monitor];r emptyalltemp; autoclean;` Klikni na dugme i pričekaj da se skeniranje završi. Zoek će po potrebi restartovati Windows, a na kraju rada otvoriti Notepad sa izvještajem o skeniranju. Napomena: Izvještaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log) Kopiraj sadržaj tog loga u poruku. Kakvo je sada stanje sistema?

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Virusi

Ko je trenutno na forumu

Ukupno su 912 korisnika na forumu :: 34 registrovanih, 7 sakrivenih i 871 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: A.R.Chafee.Jr., anbeast, CikaKURE, cinoeye, debeli, djboj, Dovla, esx66, FileFinder, Georgius, hologram, jackreacher011011, Kibice, kolle.the.kid, Leonov, Lieutenant, mercedesamg, Mi lao shu, Milos ZA, moldway, MrNo, nenad81, NikolaGTR, pein, powSrb, raketaš, RiV, S2M, Trpe Grozni, vandrej, vathra, Vlad000, x9, ZetaMan

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by