MyCity » Ambulanta -> Arhiva Ambulante » explorer.exe provera

explorer.exe provera

Napisano na dan: 29.8.2014

explorer.exe provera

Sledeća strana

Pagination

Odgovori

Deathadder Poslao: 29 Avg 2014 13:42 Idi na vrh
offline Deathadder Građanin Pridružio: 21 Feb 2014 Poruke: 42	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Proces explorer.exe je poceo da zauzima bas puno RAM memorije. Pocelo je nakon instalacije drajvera za graficke kartice, ovde sam pisao o ovom problemu: Tekst za link. Danas zauzima i do 500000KB. Skenirao sam sa Avastom i Malwarebytes i nista nisu nasli. Pa sam hteo da proverim kod vas, mozda vi nadjete nesto. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-08-2014 Ran by Vladimir (administrator) on RZRDA on 29-08-2014 13:31:23 Running from C:\Users\Vladimir\Desktop Platform: Windows 8.1 Pro (X64) OS Language: English (United States) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: [Link mogu videti samo ulogovani korisnici] Download link for 64-Bit Version: [Link mogu videti samo ulogovani korisnici] Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: [Link mogu videti samo ulogovani korisnici] ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\livecomm.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-01] (AVAST Software) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation) Winlogon\Notify\igfxcui: igfxdev.dll [X] HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-25] ( (Qualcomm®Atheros®)) HKU\S-1-5-21-4102159106-2973013109-174288874-1001\...\MountPoints2: F - "F:\autorun.exe" AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [166568 2014-07-02] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146480 2014-07-02] (NVIDIA Corporation) Startup: C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software) ShellIconOverlayIdentifiers: StorageProviderError -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\System32\shell32.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: StorageProviderSyncing -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\System32\shell32.dll (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: StorageProviderError -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: StorageProviderSyncing -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 FireFox: ======== FF ProfilePath: C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\xg3yzzqs.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll () FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Extension: Qualys BrowserCheck - C:\Users\Vladimir\AppData\Roaming\Mozilla\Firefox\Profiles\xg3yzzqs.default\Extensions\{7D2FB79E-E58C-4DB5-A36F-AC1C73967F4D} [2014-08-21] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-03] Chrome: ======= CHR HomePage: Default -> [Link mogu videti samo ulogovani korisnici] CHR StartupUrls: Default -> "hxxp://false/" CHR Profile: C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google документи) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-03] CHR Extension: (Google диск) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-03] CHR Extension: (YouTube) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-03] CHR Extension: (Google претрага) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-03] CHR Extension: (Qualys BrowserCheck for Windows) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejhnkognlohdkpjkjongioociddgoibk [2014-07-03] CHR Extension: (Tank Riders) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdmmodjlfegeieihcdcgcalkgmhgmiae [2014-08-24] CHR Extension: (Cut the Rope) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj [2014-08-24] CHR Extension: (90`s Games) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\illbbfoihflomkbpcaaakhijinbnejom [2014-08-26] CHR Extension: (SWOOOP) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\jblimahfbhdcengjfbdpdngcfcghladf [2014-08-24] CHR Extension: (Tetris) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdkbgliocggekemkdldibejbmeijeiam [2014-08-24] CHR Extension: (Google новчаник) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-03] CHR Extension: (3Д бомба Дестроиер) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\okehlnjpihomkdokiiafpejniofjaoom [2014-08-24] CHR Extension: (Gmail) - C:\Users\Vladimir\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-03] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-03] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-25] (Windows (R) Win 7 DDK provider) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-03] (AVAST Software) S3 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [315352 2014-06-05] (Intel Corporation) S3 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation) R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-03] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-03] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-03] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-03] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-03] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-04] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-03] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-03] () R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.) S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-25] (Qualcomm Atheros) S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation) S3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation) U5 RTSPER; C:\Windows\System32\Drivers\RTSPER.sys [465624 2014-07-03] (Realsil Semiconductor Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation) S3 WinRing0_1_2_0; D:\Vladimir\Programi\New folder\WinRing0x64.sys [14544 2008-07-26] (OpenLibSys.org) S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-29 13:31 - 2014-08-29 13:31 - 00013402 _____ () C:\Users\Vladimir\Desktop\FRST.txt 2014-08-29 13:30 - 2014-08-29 13:30 - 02103296 _____ (Farbar) C:\Users\Vladimir\Desktop\FRST64.exe 2014-08-29 12:56 - 2014-08-29 12:56 - 00000000 _____ () C:\Users\Vladimir\Desktop\New Text Document (2).txt 2014-08-29 11:55 - 2014-08-29 11:55 - 01064876 _____ () C:\Users\Vladimir\Documents\Default.txt 2014-08-29 01:41 - 2014-08-29 02:01 - 00000000 ____D () C:\Windows\SysWOW64\NV 2014-08-29 01:41 - 2014-08-29 02:01 - 00000000 ____D () C:\Windows\system32\NV 2014-08-29 01:41 - 2014-08-29 01:41 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\NVIDIA 2014-08-29 01:41 - 2014-08-29 01:41 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-08-29 01:41 - 2014-07-02 20:55 - 06783776 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2014-08-29 01:41 - 2014-07-02 20:55 - 03522392 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2014-08-29 01:41 - 2014-07-02 20:55 - 02559960 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2014-08-29 01:41 - 2014-07-02 20:55 - 01084704 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2014-08-29 01:41 - 2014-07-02 20:55 - 00935368 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2014-08-29 01:41 - 2014-07-02 20:55 - 00386520 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2014-08-29 01:41 - 2014-07-02 20:55 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2014-08-29 01:41 - 2014-07-02 20:55 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2014-08-29 01:41 - 2014-07-02 12:14 - 03826628 _____ () C:\Windows\system32\nvcoproc.bin 2014-08-29 01:40 - 2014-07-02 22:48 - 31512520 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 24196896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 22994208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 18626304 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 17555104 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 16122344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 15294296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 14498552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 13922752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 13835208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 12866008 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2014-08-29 01:40 - 2014-07-02 22:48 - 11283344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 11222048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 04247000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 03989960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 03196816 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 02814656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 01890080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434052.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 01539928 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434052.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00965312 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00944928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00907096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00903624 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00869152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00846832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00502232 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00418760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00391640 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00354016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00348120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00305600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00166568 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00146480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2014-08-29 01:40 - 2014-07-02 22:48 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys 2014-08-29 01:40 - 2014-07-02 22:48 - 00026353 _____ () C:\Windows\system32\nvinfo.pb 2014-08-29 01:39 - 2014-08-29 12:14 - 00338619 _____ () C:\Windows\WindowsUpdate.log 2014-08-29 01:39 - 2014-08-29 11:29 - 00000103 _____ () C:\Windows\setupact.log 2014-08-29 01:39 - 2014-08-29 01:41 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-08-29 01:39 - 2014-08-29 01:39 - 00000000 _____ () C:\Windows\setuperr.log 2014-08-29 01:38 - 2014-08-29 01:38 - 00000000 ____D () C:\NVIDIA 2014-08-29 01:32 - 2014-08-29 01:32 - 00002576 _____ () C:\Users\Vladimir\Documents\cc_20140829_013201.reg 2014-08-29 01:31 - 2014-08-29 01:31 - 00005708 _____ () C:\Users\Vladimir\Documents\cc_20140829_013146.reg 2014-08-29 01:24 - 2014-08-29 01:24 - 00000032 _____ () C:\Users\Vladimir\Desktop\New Text Document.txt 2014-08-29 00:59 - 2014-08-29 01:04 - 142398671 _____ () C:\Users\Vladimir\Desktop\win64_153322.zip 2014-08-29 00:49 - 2014-08-29 00:58 - 274075712 _____ (NVIDIA Corporation) C:\Users\Vladimir\Desktop\340.52-notebook-win8-win7-64bit-international-whql.exe 2014-08-29 00:43 - 2014-08-29 00:49 - 167371160 _____ () C:\Users\Vladimir\Desktop\VGA_Intel_Win81_64_VER101810330802.zip 2014-08-28 20:43 - 2014-08-28 21:41 - 1381826136 _____ () C:\Users\Vladimir\Downloads\Game.of.Thrones.S02E02.720p.HDTV.x264-IMMERSE.mkv 2014-08-28 17:42 - 2014-08-28 17:42 - 00011370 _____ () C:\Users\Vladimir\Documents\cc_20140828_174243.reg 2014-08-28 17:40 - 2014-08-28 17:40 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2014-08-28 17:40 - 2013-12-10 01:27 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll 2014-08-28 17:40 - 2013-12-10 01:27 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys 2014-08-28 17:20 - 2014-08-28 17:20 - 00000144 _____ () C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2014-08-28 17:09 - 2014-08-28 17:09 - 00015890 _____ () C:\Windows\system32\results.xml 2014-08-28 17:09 - 2014-08-28 17:09 - 00000451 _____ () C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2014-08-28 17:08 - 2014-08-28 17:08 - 00481024 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-08-28 17:07 - 2014-08-28 17:07 - 00000724 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel(R) HD Graphics Control Panel.lnk 2014-08-28 17:07 - 2014-08-28 17:07 - 00000000 ____D () C:\Program Files (x86)\Intel 2014-08-28 16:08 - 2014-08-28 16:08 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab 2014-08-28 16:07 - 2014-08-28 16:07 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\SystemRequirementsLab 2014-08-28 14:54 - 2014-08-28 20:35 - 00000000 ____D () C:\Users\Vladimir\Downloads\Game.of.Thrones.S02E01.720p.HDTV.x264-IMMERSE [PublicHD.ORG] 2014-08-28 13:26 - 2014-08-28 17:52 - 00000000 ____D () C:\Users\Vladimir\Downloads\GoT 2014-08-27 19:55 - 2014-08-28 10:55 - 00000000 ____D () C:\Users\Vladimir\Downloads\We.Steal.Secrets.The.Story.of.WikiLeaks.2013.LIMITED.720p.BRRip.h264.AAC-RARBG 2014-08-27 17:27 - 2014-08-27 17:27 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-08-27 17:27 - 2014-08-27 17:27 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-08-27 17:27 - 2014-08-27 17:27 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-08-27 17:27 - 2014-08-27 17:27 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-08-27 17:12 - 2014-08-27 17:12 - 00000000 ____D () C:\Windows\system32\appmgmt 2014-08-27 17:09 - 2014-08-27 17:09 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\Oracle 2014-08-27 17:08 - 2014-08-27 17:08 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-08-27 17:08 - 2014-08-27 17:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-08-27 17:08 - 2014-08-27 17:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-08-27 17:08 - 2014-08-27 17:08 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-08-27 17:08 - 2014-08-27 17:08 - 00000000 ____D () C:\ProgramData\Sun 2014-08-27 17:08 - 2014-08-27 17:08 - 00000000 ____D () C:\ProgramData\Oracle 2014-08-27 17:08 - 2014-08-27 17:08 - 00000000 ____D () C:\Program Files (x86)\Java 2014-08-24 21:33 - 2014-08-24 21:33 - 00000000 ____D () C:\ProgramData\Steam 2014-08-24 21:26 - 2014-08-24 21:26 - 00000000 ____D () C:\ProgramData\Package Cache 2014-08-24 21:24 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2014-08-24 21:24 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2014-08-24 21:24 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2014-08-24 21:24 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2014-08-24 20:01 - 2014-08-24 20:01 - 00000000 ___RD () C:\Users\Vladimir\Documents\Notes 2014-08-24 16:53 - 2014-08-24 17:57 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome апликације 2014-08-24 16:52 - 2014-08-24 16:52 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-21 22:04 - 2014-08-21 22:04 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\Adobe 2014-08-21 01:00 - 2014-08-21 01:00 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\Macromedia 2014-08-21 00:53 - 2014-08-21 00:53 - 00001171 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2014-08-21 00:53 - 2014-08-21 00:53 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\Mozilla 2014-08-21 00:53 - 2014-08-21 00:53 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\Mozilla 2014-08-21 00:53 - 2014-08-21 00:53 - 00000000 ____D () C:\ProgramData\Mozilla 2014-08-21 00:53 - 2014-08-21 00:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-08-21 00:53 - 2014-08-21 00:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-08-20 12:08 - 2014-08-20 13:04 - 00000000 ____D () C:\Users\Vladimir\.idlerc 2014-08-14 18:43 - 2014-08-14 18:43 - 00000000 ____D () C:\ProgramData\GRETECH 2014-08-14 18:42 - 2014-08-14 18:42 - 00001225 _____ () C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk 2014-08-14 18:42 - 2014-08-14 18:42 - 00000000 ____D () C:\Users\Vladimir\Documents\GomPlayer 2014-08-14 18:42 - 2014-08-14 18:42 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\GRETECH 2014-08-14 18:42 - 2014-08-14 18:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player 2014-08-14 18:42 - 2014-08-14 18:42 - 00000000 ____D () C:\Program Files (x86)\GRETECH 2014-08-09 11:30 - 2014-08-09 11:30 - 00007607 _____ () C:\Users\Vladimir\AppData\Local\Resmon.ResmonCfg 2014-08-08 00:47 - 2014-08-08 00:47 - 00001387 _____ () C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RealTemp - Shortcut.lnk 2014-08-06 16:39 - 2014-08-06 16:39 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\MPC-HC 2014-08-05 11:02 - 2014-08-05 11:02 - 00000000 ____D () C:\ProgramData\ASUS ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-29 13:31 - 2014-08-29 13:31 - 00013402 _____ () C:\Users\Vladimir\Desktop\FRST.txt 2014-08-29 13:31 - 2014-07-03 14:58 - 00000000 ____D () C:\FRST 2014-08-29 13:30 - 2014-08-29 13:30 - 02103296 _____ (Farbar) C:\Users\Vladimir\Desktop\FRST64.exe 2014-08-29 13:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru 2014-08-29 12:56 - 2014-08-29 12:56 - 00000000 _____ () C:\Users\Vladimir\Desktop\New Text Document (2).txt 2014-08-29 12:42 - 2014-07-03 22:08 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\AIMP3 2014-08-29 12:33 - 2013-09-30 06:14 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-08-29 12:32 - 2014-07-03 22:07 - 00000000 ____D () C:\ProgramData\MCShield 2014-08-29 12:14 - 2014-08-29 01:39 - 00338619 _____ () C:\Windows\WindowsUpdate.log 2014-08-29 11:59 - 2014-07-03 10:45 - 00000000 __RDO () C:\Users\Vladimir\SkyDrive 2014-08-29 11:59 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-08-29 11:55 - 2014-08-29 11:55 - 01064876 _____ () C:\Users\Vladimir\Documents\Default.txt 2014-08-29 11:55 - 2014-07-24 20:19 - 00135680 ___SH () C:\Users\Vladimir\Downloads\Thumbs.db 2014-08-29 11:48 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp 2014-08-29 11:29 - 2014-08-29 01:39 - 00000103 _____ () C:\Windows\setupact.log 2014-08-29 11:29 - 2014-07-03 12:58 - 00000000 ____D () C:\Users\Vladimir\Documents\Bluetooth Folder 2014-08-29 02:01 - 2014-08-29 01:41 - 00000000 ____D () C:\Windows\SysWOW64\NV 2014-08-29 02:01 - 2014-08-29 01:41 - 00000000 ____D () C:\Windows\system32\NV 2014-08-29 01:54 - 2014-07-03 10:49 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4102159106-2973013109-174288874-1001 2014-08-29 01:41 - 2014-08-29 01:41 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\NVIDIA 2014-08-29 01:41 - 2014-08-29 01:41 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-08-29 01:41 - 2014-08-29 01:39 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-08-29 01:41 - 2014-07-03 12:47 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-08-29 01:41 - 2014-07-03 12:47 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-08-29 01:41 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help 2014-08-29 01:39 - 2014-08-29 01:39 - 00000000 _____ () C:\Windows\setuperr.log 2014-08-29 01:38 - 2014-08-29 01:38 - 00000000 ____D () C:\NVIDIA 2014-08-29 01:32 - 2014-08-29 01:32 - 00002576 _____ () C:\Users\Vladimir\Documents\cc_20140829_013201.reg 2014-08-29 01:32 - 2014-07-03 14:04 - 00677888 ___SH () C:\Users\Vladimir\Desktop\Thumbs.db 2014-08-29 01:31 - 2014-08-29 01:31 - 00005708 _____ () C:\Users\Vladimir\Documents\cc_20140829_013146.reg 2014-08-29 01:31 - 2014-07-03 22:11 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\BitTorrent 2014-08-29 01:24 - 2014-08-29 01:24 - 00000032 _____ () C:\Users\Vladimir\Desktop\New Text Document.txt 2014-08-29 01:24 - 2014-07-03 12:48 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\NVIDIA Corporation 2014-08-29 01:21 - 2014-07-03 13:26 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2014-08-29 01:11 - 2013-08-22 15:25 - 00524288 ___SH () C:\Windows\system32\config\BBI 2014-08-29 01:04 - 2014-08-29 00:59 - 142398671 _____ () C:\Users\Vladimir\Desktop\win64_153322.zip 2014-08-29 00:58 - 2014-08-29 00:49 - 274075712 _____ (NVIDIA Corporation) C:\Users\Vladimir\Desktop\340.52-notebook-win8-win7-64bit-international-whql.exe 2014-08-29 00:49 - 2014-08-29 00:43 - 167371160 _____ () C:\Users\Vladimir\Desktop\VGA_Intel_Win81_64_VER101810330802.zip 2014-08-28 21:41 - 2014-08-28 20:43 - 1381826136 _____ () C:\Users\Vladimir\Downloads\Game.of.Thrones.S02E02.720p.HDTV.x264-IMMERSE.mkv 2014-08-28 20:41 - 2014-07-03 22:22 - 00000000 ____D () C:\Lyrics 2014-08-28 20:41 - 2014-07-03 22:15 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\MiniLyrics 2014-08-28 20:35 - 2014-08-28 14:54 - 00000000 ____D () C:\Users\Vladimir\Downloads\Game.of.Thrones.S02E01.720p.HDTV.x264-IMMERSE [PublicHD.ORG] 2014-08-28 18:27 - 2014-07-03 14:40 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-08-28 17:52 - 2014-08-28 13:26 - 00000000 ____D () C:\Users\Vladimir\Downloads\GoT 2014-08-28 17:42 - 2014-08-28 17:42 - 00011370 _____ () C:\Users\Vladimir\Documents\cc_20140828_174243.reg 2014-08-28 17:40 - 2014-08-28 17:40 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2014-08-28 17:20 - 2014-08-28 17:20 - 00000144 _____ () C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2014-08-28 17:09 - 2014-08-28 17:09 - 00015890 _____ () C:\Windows\system32\results.xml 2014-08-28 17:09 - 2014-08-28 17:09 - 00000451 _____ () C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat 2014-08-28 17:09 - 2014-07-03 10:43 - 00000000 ____D () C:\Users\Vladimir 2014-08-28 17:08 - 2014-08-28 17:08 - 00481024 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-08-28 17:07 - 2014-08-28 17:07 - 00000724 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel(R) HD Graphics Control Panel.lnk 2014-08-28 17:07 - 2014-08-28 17:07 - 00000000 ____D () C:\Program Files (x86)\Intel 2014-08-28 17:06 - 2014-07-03 12:08 - 00000000 ____D () C:\Intel 2014-08-28 17:01 - 2014-07-03 12:08 - 00000000 ____D () C:\ProgramData\Intel 2014-08-28 17:01 - 2014-07-03 12:08 - 00000000 ____D () C:\Program Files\Intel 2014-08-28 16:08 - 2014-08-28 16:08 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab 2014-08-28 16:07 - 2014-08-28 16:07 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\SystemRequirementsLab 2014-08-28 10:55 - 2014-08-27 19:55 - 00000000 ____D () C:\Users\Vladimir\Downloads\We.Steal.Secrets.The.Story.of.WikiLeaks.2013.LIMITED.720p.BRRip.h264.AAC-RARBG 2014-08-27 17:27 - 2014-08-27 17:27 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-08-27 17:27 - 2014-08-27 17:27 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-08-27 17:27 - 2014-08-27 17:27 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-08-27 17:27 - 2014-08-27 17:27 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2014-08-27 17:27 - 2014-07-03 22:16 - 00000000 ____D () C:\Program Files\Java 2014-08-27 17:12 - 2014-08-27 17:12 - 00000000 ____D () C:\Windows\system32\appmgmt 2014-08-27 17:09 - 2014-08-27 17:09 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\Oracle 2014-08-27 17:08 - 2014-08-27 17:08 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-08-27 17:08 - 2014-08-27 17:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-08-27 17:08 - 2014-08-27 17:08 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-08-27 17:08 - 2014-08-27 17:08 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-08-27 17:08 - 2014-08-27 17:08 - 00000000 ____D () C:\ProgramData\Sun 2014-08-27 17:08 - 2014-08-27 17:08 - 00000000 ____D () C:\ProgramData\Oracle 2014-08-27 17:08 - 2014-08-27 17:08 - 00000000 ____D () C:\Program Files (x86)\Java 2014-08-26 17:02 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\NDF 2014-08-24 21:33 - 2014-08-24 21:33 - 00000000 ____D () C:\ProgramData\Steam 2014-08-24 21:26 - 2014-08-24 21:26 - 00000000 ____D () C:\ProgramData\Package Cache 2014-08-24 20:01 - 2014-08-24 20:01 - 00000000 ___RD () C:\Users\Vladimir\Documents\Notes 2014-08-24 17:57 - 2014-08-24 16:53 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome апликације 2014-08-24 16:52 - 2014-08-24 16:52 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-08-21 22:04 - 2014-08-21 22:04 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\Adobe 2014-08-21 01:00 - 2014-08-21 01:00 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\Macromedia 2014-08-21 00:53 - 2014-08-21 00:53 - 00001171 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2014-08-21 00:53 - 2014-08-21 00:53 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\Mozilla 2014-08-21 00:53 - 2014-08-21 00:53 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\Mozilla 2014-08-21 00:53 - 2014-08-21 00:53 - 00000000 ____D () C:\ProgramData\Mozilla 2014-08-21 00:53 - 2014-08-21 00:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-08-21 00:53 - 2014-08-21 00:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-08-21 00:23 - 2014-07-03 22:25 - 00000000 ____D () C:\Users\Vladimir\workspace 2014-08-20 13:04 - 2014-08-20 12:08 - 00000000 ____D () C:\Users\Vladimir\.idlerc 2014-08-14 23:00 - 2014-07-05 09:52 - 00000000 ____D () C:\Users\Vladimir\AppData\Local\CrashDumps 2014-08-14 18:43 - 2014-08-14 18:43 - 00000000 ____D () C:\ProgramData\GRETECH 2014-08-14 18:42 - 2014-08-14 18:42 - 00001225 _____ () C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk 2014-08-14 18:42 - 2014-08-14 18:42 - 00000000 ____D () C:\Users\Vladimir\Documents\GomPlayer 2014-08-14 18:42 - 2014-08-14 18:42 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\GRETECH 2014-08-14 18:42 - 2014-08-14 18:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player 2014-08-14 18:42 - 2014-08-14 18:42 - 00000000 ____D () C:\Program Files (x86)\GRETECH 2014-08-09 11:30 - 2014-08-09 11:30 - 00007607 _____ () C:\Users\Vladimir\AppData\Local\Resmon.ResmonCfg 2014-08-08 00:47 - 2014-08-08 00:47 - 00001387 _____ () C:\Users\Vladimir\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RealTemp - Shortcut.lnk 2014-08-06 16:39 - 2014-08-06 16:39 - 00000000 ____D () C:\Users\Vladimir\AppData\Roaming\MPC-HC 2014-08-05 11:02 - 2014-08-05 11:02 - 00000000 ____D () C:\ProgramData\ASUS 2014-08-04 02:05 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness 2014-08-03 23:19 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\LiveKernelReports ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-08-21 15:01 ==================== End Of Log ============================ [Link mogu videti samo ulogovani korisnici]

Profil

ivance95 Poslao: 29 Avg 2014 13:56 Idi na vrh
offline ivance95 AMF pripravnik Pridružio: 04 Jul 2011 Poruke: 5424	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop. Dvoklikom pokreni MBAR () na ikonicu programa: - Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u; - mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.; - U uvodnom prozoru klikni dugme Next ukoliko si saglasan; • Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next; • Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan; Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka: - 'Could not load protection driver' => u tom slucaju klikni OK. - 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta. >> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje. >> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje. - Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja. Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe: - Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ... - Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem. Sledeci izvestaji ce biti formirani u mbar folderu. 1. mbar-log-year-month-day (hour-minute-second).txt 2. system-log.txt Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.

Profil

Deathadder Poslao: 29 Avg 2014 14:11 Idi na vrh
offline Deathadder Građanin Pridružio: 21 Feb 2014 Poruke: 42	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 29 Avg 2014 14:05 Ovo se pojavilo. Da nastavim ? Dopuna: 29 Avg 2014 14:11 Zaboravio sam da kazem da se ovaj prozor pojavio nakon pokretanja Malwarebytes Anti-Rootkita

Profil

ivance95 Poslao: 29 Avg 2014 14:28 Idi na vrh
offline ivance95 AMF pripravnik Pridružio: 04 Jul 2011 Poruke: 5424	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Klikni na No, i nastavi po uputstvu.

Profil

Deathadder Poslao: 29 Avg 2014 19:22 Idi na vrh
offline Deathadder Građanin Pridružio: 21 Feb 2014 Poruke: 42	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 29 Avg 2014 14:50 Malwarebytes Anti-Rootkit BETA 1.07.0.1012 [Link mogu videti samo ulogovani korisnici] Database version: v2014.08.29.03 Windows 8.1 x64 NTFS Internet Explorer 11.0.9600.16438 Vladimir :: RZRDA [administrator] 29-Aug-14 2:33:42 PM mbar-log-2014-08-29 (14-33-42).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit \| Drivers \| MBR \| Physical Sectors \| Memory \| Startup \| Registry \| File System \| Heuristics/Extra \| Heuristics/Shuriken Scan options disabled: Objects scanned: 297248 Time elapsed: 11 minute(s), 27 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) Physical Sectors Detected: 0 (No malicious items detected) (end) [Link mogu videti samo ulogovani korisnici] Dopuna: 29 Avg 2014 19:22 Bez obzira sto nije detektovao nijedan malware, explorer.exe se ponasa isto kao i ranije.

Profil

ivance95 Poslao: 29 Avg 2014 19:34 Idi na vrh
offline ivance95 AMF pripravnik Pridružio: 04 Jul 2011 Poruke: 5424	1Ovo se svidja korisniku: Deathadder Registruj se da bi pohvalio/la poruku! Tvoj kompjuter je čist što se malware-a tiče, i to ti ne pravi problem. Možeš da nastaviš rešavanje problema u temi u Windows potforumu. • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Profil

Deathadder Poslao: 30 Avg 2014 11:27 Idi na vrh
offline Deathadder Građanin Pridružio: 21 Feb 2014 Poruke: 42	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ivance95, hvala na izdvojenom vremenu.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » explorer.exe provera

Ko je trenutno na forumu

Ukupno su 1032 korisnika na forumu :: 83 registrovanih, 11 sakrivenih i 938 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 8086 - dana 18 Jan 2026 07:11

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 015, 357magnum, A.R.Chafee.Jr., ajugovic74, aleksmajstor, aleph_one, AMX72, avijacija, Ba4e, blackeye, Bobrock1, Borski1977, Boskovic, bozo13, DalmatinacMF, darkojbn, debeli, Dekanovic, deks, Dežurni pod palubom, Dimitrise93, Djuza, Dragan7777, Draganeli, dskrlec33, dushan, FOX, GeoM, goran.vvv, gost321, Igor Antonic, ivanhoe31, Jakonjveliki, Jeremiah, Jezekijel, jopicus, Jovan1983, Kajzer Soze, kaskadija, Knovakov, laurusri, Libertas, Limeni91, ljuba, lukisa, mercedesamg, Miki01, milutin134, Mis uz pusku, Mićko, mm1811, moldway, Naum T, Neutral-M, ozzy, Paklenica, Pekman, Polemarchoi, Pururin, raptorsi, redstar011, rodoljub, samocitam, SamostalniReferent, Sevatar, shomypfc, Sirius, skvara, Smiljkovich, Stevan Visoki, synergia, Tandrčak, TheBeastOfMG, Tihi86, vaci, Velibor Radoja, Viktor Petrenko, VladaKG1980, Vlado82, vlahale, zeo, ZetaMan, 79693

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by