MyCity » Ambulanta -> Arhiva Ambulante » Problem sa pretrazivacima..

Problem sa pretrazivacima..

Napisano na dan: 19.10.2014

Strana:
1
2

Problem sa pretrazivacima..

Sledeća strana

Pagination

Odgovori

Strana:
1
2

Tamara Radojkovic-Ristic Poslao: 19 Okt 2014 02:20 Idi na vrh
offline Tamara Radojkovic-Ristic Novi MyCity građanin Pridružio: 26 Nov 2012 Poruke: 18	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 19 Okt 2014 1:27 Pozdrav svima. Ovako imam problem sa pretrazivacima otvorim neku stranicu i posle par minuta samo pukne.Koristim Mozilu i Chrome isto je na oba. Pomislila sam da je problem sa virusima.Od zastite imam Avast antivirus pa sam skinula Malwarebytes Anti-Malware i jos neki, ali koji god sam pokusala da instaliram pise (The setup files are corrupted.Please obtain a new copy of the program... )Ne znam u cemu je problem. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-10-2014 01 Ran by Power (administrator) on POWER-PC on 19-10-2014 00:39:06 Running from C:\Users\Power\Downloads Loaded Profile: Power (Available profiles: Power) Platform: Windows 7 Ultimate (X64) OS Language: English (United States) Internet Explorer Version 8 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: [Link mogu videti samo ulogovani korisnici] ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe () C:\Program Files (x86)\SupTab\HpUI.exe (Taiwan Shui Mu Chih Ching Technology Limited.) C:\Program Files (x86)\WinZipper\winzipersvc.exe () C:\Program Files (x86)\SupTab\Loader64.exe () C:\Program Files (x86)\SupTab\Loader32.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Bandoo Media Inc.) C:\Users\Power\AppData\Local\iLivid\iLivid.exe (BitTorrent Inc.) C:\Users\Power\AppData\Roaming\uTorrent\uTorrent.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (ArtistScope Pty Ltd) C:\Program Files\Common Files\ArtistScope\CSHelper64.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Telefónica I+D) C:\Program Files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe () C:\Program Files (x86)\GreyGray\updateGreyGray.exe () C:\Program Files (x86)\GreyGray\bin\utilGreyGray.exe (Telefónica I+D) C:\Program Files (x86)\o2\Mobile Connection Manager\EMMSN.exe (Telefónica I+D) C:\Program Files (x86)\o2\Nori\Nori.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe () C:\Program Files (x86)\GreyGray\bin\GreyGray.PurBrowse64.exe () C:\Program Files (x86)\GreyGray\bin\GreyGray.BrowserAdapter64.exe () C:\Program Files (x86)\GreyGray\bin\GreyGray.BrowserAdapter.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation) HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-08-07] (AVAST Software) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [Google+ Auto Backup] => "C:\Users\Power\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe" /autostart HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [DAEMON Tools Lite] => D:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd) HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [iLivid] => C:\Users\Power\AppData\Local\iLivid\iLivid.exe [6827008 2013-09-09] (Bandoo Media Inc.) HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [InetStat] => C:\Users\Power\AppData\Roaming\InetStat\inetstat.exe [1259488 2014-05-02] () HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [Facebook Update] => C:\Users\Power\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-06-18] (Facebook Inc.) HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [SpeedItupFree] => "C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe" HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [uTorrent] => C:\Users\Power\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-10-08] (BitTorrent Inc.) HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [22065760 2014-10-01] (Skype Technologies S.A.) HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd) HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: G - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: H - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {1a536c92-814b-11e3-bf4b-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {1a536ca3-814b-11e3-bf4b-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {41b25d36-814d-11e3-bccb-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {41b25d45-814d-11e3-bccb-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {433f84c4-af77-11e3-aa33-001e101f36d9} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {433f84d2-af77-11e3-aa33-001e101f36d9} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {81525203-15c2-11e4-90a9-806e6f6e6963} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {81525238-15c2-11e4-90a9-844bf5c2755e} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {9e91e5d6-1769-11e4-a8ea-844bf5c2755e} - J:\NokiaPCIA_Autorun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {acc1b7b5-53a4-11e4-bd8d-844bf5c2755e} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {aebf5089-b8e2-11e3-b033-001e101f9843} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {b70178c6-b9de-11e3-a396-001e101f3315} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {e611e311-df6d-11e3-96d1-844bf5c2755e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {e611e350-df6d-11e3-96d1-844bf5c2755e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {f15c5595-4741-11e4-b6c3-001e101f1f81} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {f3bf9ffc-f275-11e3-a225-844bf5c2755e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {fffef618-df6c-11e3-814e-844bf5c2755e} - G:\AutoRun.exe IFEO\bitguard.exe: [Debugger] tasklist.exe IFEO\bprotect.exe: [Debugger] tasklist.exe IFEO\bpsvc.exe: [Debugger] tasklist.exe IFEO\browsemngr.exe: [Debugger] tasklist.exe IFEO\browserdefender.exe: [Debugger] tasklist.exe IFEO\browsermngr.exe: [Debugger] tasklist.exe IFEO\browserprotect.exe: [Debugger] tasklist.exe IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe IFEO\cltmngsvc.exe: [Debugger] IFEO\delta babylon.exe: [Debugger] tasklist.exe IFEO\delta tb.exe: [Debugger] tasklist.exe IFEO\delta2.exe: [Debugger] tasklist.exe IFEO\deltainstaller.exe: [Debugger] tasklist.exe IFEO\deltasetup.exe: [Debugger] tasklist.exe IFEO\deltatb.exe: [Debugger] tasklist.exe IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe IFEO\iminentsetup.exe: [Debugger] tasklist.exe IFEO\protectedsearch.exe: [Debugger] tasklist.exe IFEO\rjatydimofu.exe: [Debugger] tasklist.exe IFEO\searchprotection.exe: [Debugger] tasklist.exe IFEO\snapdo.exe: [Debugger] tasklist.exe IFEO\stinst32.exe: [Debugger] tasklist.exe IFEO\stinst64.exe: [Debugger] tasklist.exe IFEO\sweetimsetup.exe: [Debugger] tasklist.exe IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software) GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) ProxyServer: http=127.0.0.1:51952;https=127.0.0.1:51952 HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [Link mogu videti samo ulogovani korisnici]{searchTerms} HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = [Link mogu videti samo ulogovani korisnici] HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x23E5DC13EE00CF01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = sr-rs HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [Link mogu videti samo ulogovani korisnici]{searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = [Link mogu videti samo ulogovani korisnici]{searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = [Link mogu videti samo ulogovani korisnici] StartMenuInternet: IEXPLORE.EXE - iexplore.exe SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&a=ast_ir_14_41_ff&cd=2XzuyEtN2Y1L1QzuzzyEyE0B0FyD0CtByByDyD0E0A0EtAtAtN0D0Tzu0StCtDtCyDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StA0EyCtDtAzztD0AtG0D0AtA0CtG0BzytDyEtG0ByDtByCtGtD0EyC0A0E0FtBzzyDzyyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0B0D0F0C0A0A0CtGyByDzyyDtGyEtCtA0DtGzyzztCtAtG0Azy0BtDyBtC0C0A0AzyyC0B2Q&cr=2021511369&ir= SearchScopes: HKLM - {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&a=ast_ir_14_41_ff&cd=2XzuyEtN2Y1L1QzuzzyEyE0B0FyD0CtByByDyD0E0A0EtAtAtN0D0Tzu0StCtDtCyDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StA0EyCtDtAzztD0AtG0D0AtA0CtG0BzytDyEtG0ByDtByCtGtD0EyC0A0E0FtBzzyDzyyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0B0D0F0C0A0A0CtGyByDzyyDtGyEtCtA0DtGzyzztCtAtG0Azy0BtDyBtC0C0A0AzyyC0B2Q&cr=2021511369&ir= SearchScopes: HKLM-x32 - DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKLM-x32 - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKLM-x32 - {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&pid=2356&r=2014/06/27&hid=13136696006792945503&lg=EN&cc=RS&unqvl=56 SearchScopes: HKCU - DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&SSPV= SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&babsrc=SP_ss&mntrId=34A2844BF5C2755E&affID=129300&tt=100714_kmsbusol&tsp=5305 SearchScopes: HKCU - {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&a=ast_ir_14_41_ff&cd=2XzuyEtN2Y1L1QzuzzyEyE0B0FyD0CtByByDyD0E0A0EtAtAtN0D0Tzu0StCtDtCyDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StA0EyCtDtAzztD0AtG0D0AtA0CtG0BzytDyEtG0ByDtByCtGtD0EyC0A0E0FtBzzyDzyyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0B0D0F0C0A0A0CtGyByDzyyDtGyEtCtA0DtGzyzztCtAtG0Azy0BtDyBtC0C0A0AzyyC0B2Q&cr=2021511369&ir= SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&FORM=AVASDF&PC=AV01 SearchScopes: HKCU - {6AD5CAB4-1067-41D9-BB5A-EA17BC2A87FD} URL = [Link mogu videti samo ulogovani korisnici]^BE7^OSJ000^YY^AT&gct=sb&itbv=12.15.5.31&apn_uid=F2BBB9EC-6D0B-4CB0-9ECE-677CA1B7BEF5&apn_ptnrs=BE7&apn_dtid=^OSJ000^YY^AT&apn_dbr=ie_8.0.7600.16385&doi=2014-09-06&trgb=IE&q={searchTerms}&psv=&pt=tb SearchScopes: HKCU - {86427B5A-F7CF-48B7-93C1-2C728D123012} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&r=982 SearchScopes: HKCU - {95EBC53E-E8F4-4B1E-98FD-81D33D493D57} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&r=792 SearchScopes: HKCU - {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&pid=2356&r=2014/06/27&hid=13136696006792945503&lg=EN&cc=RS&unqvl=56 BHO: No Name -> {4F524A2D-5637-4300-76A7-7A786E7484D7} -> No File BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) BHO-x32: No Name -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> No File BHO-x32: No Name -> {4F524A2D-5637-4300-76A7-7A786E7484D7} -> No File BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: FlowSurf -> {E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0} -> C:\Program Files (x86)\Flowsurf\FlowSurf.dll (FlowSurf Inc.) Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File Toolbar: HKLM - No Name - {4F524A2D-5637-4300-76A7-7A786E7484D7} - No File Toolbar: HKLM-x32 - No Name - {4F524A2D-5637-4300-76A7-7A786E7484D7} - No File Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File Toolbar: HKCU - No Name - {4F524A2D-5637-4300-76A7-7A786E7484D7} - No File Toolbar: HKCU - No Name - {4F524A2D-5354-2D53-5045-7A786E7484D7} - No File Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) Tcpip\..\Interfaces\{51865FC6-00C1-4E6F-AB11-1C54C9DEC61C}: [NameServer] 213.94.78.16 213.94.78.17 FireFox: ======== FF ProfilePath: C:\Users\Power\AppData\Roaming\Mozilla\Firefox\Profiles\j40q149r.default-1413664120597 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll () FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF Plugin-x32: @artistscope.com/DRMPlugin -> C:\Program Files (x86)\CopySafe PDF Reader\npArtistScopeDRM.dll () FF Plugin-x32: @artistscope.com/PDFReaderWeb -> C:\Program Files (x86)\CopySafe PDF Reader\npPDFReaderWeb.dll (ArtistScope Pty Ltd) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @artistscope.com/PDFReaderWeb -> C:\Program Files (x86)\CopySafe PDF Reader\npPDFReaderWeb.dll (ArtistScope Pty Ltd) FF Plugin HKCU: @lightspark.github.com/Lightspark;version=1 -> C:\Program Files (x86)\Lightspark 0.5.3-git\nplightsparkplugin.dll No File FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Power\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\Ask.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mystarttb.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\nationzoom.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\omiga-plus.xml FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-09-03] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-12-23] FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta282.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta282\ff FF HKLM-x32\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\Power\AppData\Roaming\Mozilla\Firefox\Profiles\rezui95y.default\extensions\lightningnewtab@gmail.com.xpi FF HKLM-x32\...\Firefox\Extensions: [ext@flashenhancer.com] - C:\Program Files (x86)\AmiExt\flashEnhancer\ff FF HKLM-x32\...\Firefox\Extensions: [jid1-tofUlNEIFlkUIA@jetpack] - C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Power\AppData\Roaming\Mozilla\Firefox\Profiles\1qk4gqgl.default\extensions\faststartff@gmail.com FF StartMenuInternet: FIREFOX.EXE - firefox.exe Chrome: ======= CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}sugkey={google:suggestAPIKeyParameter} CHR Plugin: (Shockwave Flash) - F:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\Application\21.0.1180.83\PepperFlash\pepflashplayer.dll No File CHR Plugin: (Shockwave Flash) - C:\Users\Power\AppData\Local\Google\Chrome\Application\37.0.2062.124\gcswf32.dll No File CHR Plugin: (Shockwave Flash) - F:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll No File CHR Plugin: (Remoting Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Users\Power\AppData\Local\Google\Chrome\Application\37.0.2062.124\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Users\Power\AppData\Local\Google\Chrome\Application\37.0.2062.124\pdf.dll No File CHR Plugin: (Wajam) - F:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0\plugins/PriamNPAPI.dll No File CHR Plugin: (Adobe Acrobat) - F:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll No File CHR Plugin: (Java Deployment Toolkit 6.0.170.4) - F:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll No File CHR Plugin: (2007 Microsoft Office system) - F:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL No File CHR Plugin: (QuickTime Plug-in 7.7.1) - F:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll No File CHR Plugin: (QuickTime Plug-in 7.7.1) - F:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll No File CHR Plugin: (QuickTime Plug-in 7.7.1) - F:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll No File CHR Plugin: (QuickTime Plug-in 7.7.1) - F:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll No File CHR Plugin: (QuickTime Plug-in 7.7.1) - F:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll No File CHR Plugin: (QuickTime Plug-in 7.7.1) - F:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll No File CHR Plugin: (QuickTime Plug-in 7.7.1) - F:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll No File CHR Plugin: (Winamp Application Detector) - F:\Program Files\Mozilla Firefox\plugins\npwachk.dll No File CHR Plugin: (Microsoft® DRM) - F:\Program Files\Windows Media Player\npdrmv2.dll No File CHR Plugin: (Microsoft® DRM) - F:\Program Files\Windows Media Player\npwmsdrm.dll No File CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - F:\Program Files\Windows Media Player\npdsplay.dll No File CHR Plugin: (Google Update) - F:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File CHR Plugin: (Google Earth Plugin) - F:\Program Files\Google\Google Earth\plugin\npgeplugin.dll No File CHR Plugin: (Panda ActiveScan 2.0) - F:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll No File CHR Plugin: (iTunes Application Detector) - F:\Program Files\iTunes\Mozilla Plugins\npitunes.dll No File CHR Plugin: (Ma-Config.com plugin) - F:\Program Files\ma-config.com\nphardwaredetection.dll No File CHR Plugin: (Silverlight Plug-In) - f:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File CHR Profile: C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23] CHR Extension: (GreyGray) - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceiapeodjfjcbfkfkfbdpgbhbgiidjdb [2014-10-19] CHR Extension: (Google Wallet) - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-21] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-07] CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx [2014-02-26] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14] CHR HKLM-x32\...\Chrome\Extension: [pelmeidfhdlhlbjimpabfcbnnojbboma] - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx [2014-09-28] CHR HKLM-x32\...\Chrome\Extension: [pkndmigholgfjlniaohblojbhgjbkakn] - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx [2014-01-21] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-07] (AVAST Software) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation) R2 CSHelper; C:\Program Files\Common Files\ArtistScope\CSHelper64.exe [361552 2014-09-29] (ArtistScope Pty Ltd) R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [715656 2014-09-28] (Cherished Technololgy LIMITED) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-04-03] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-04-03] (Intel Corporation) R2 TGCM_ImportWiFiSvc; C:\Program Files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe [200624 2010-09-29] (Telefónica I+D) R2 Update GreyGray; C:\Program Files (x86)\GreyGray\updateGreyGray.exe [523544 2014-10-18] () R2 Util GreyGray; C:\Program Files (x86)\GreyGray\bin\utilGreyGray.exe [523544 2014-10-18] () R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [425104 2014-02-26] (Taiwan Shui Mu Chih Ching Technology Limited.) <==== ATTENTION ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-07] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-07] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-07] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-07] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-07] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [426848 2014-08-07] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-07] (AVAST Software) S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [44640 2014-01-28] (The OpenVPN Project) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-12-19] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-07] () R1 CSDriver; C:\Program Files\Common Files\ArtistScope\CSDriver64.sys [61424 2014-09-29] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-01-03] (Disc Soft Ltd) R3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [256000 2010-08-31] (Huawei Technologies Co., Ltd.) S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [42224 2014-05-13] (Visicom Media Inc.) S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35440 2014-05-13] (Visicom Media Inc.) R2 sbmntr; C:\Program Files (x86)\YTDownloader\sbmntr.sys [58728 2014-05-22] (YTDownloader) R1 {f551efce-3692-4ed5-8201-c1c7dbef1744}w64; C:\Windows\System32\drivers\{f551efce-3692-4ed5-8201-c1c7dbef1744}w64.sys [44728 2014-09-16] (StdLib) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-10-19 00:39 - 2014-10-19 00:39 - 00031119 _____ () C:\Users\Power\Downloads\FRST.txt 2014-10-19 00:38 - 2014-10-19 00:39 - 00000000 ____D () C:\FRST 2014-10-19 00:37 - 2014-10-19 00:37 - 02112000 _____ (Farbar) C:\Users\Power\Downloads\FRST64.exe 2014-10-19 00:22 - 2014-10-19 00:26 - 36333504 _____ () C:\Users\Power\Downloads\spybotsd-2.1.20-SR1.exe 2014-10-19 00:09 - 2014-10-19 00:15 - 19812056 _____ (Malwarebytes Corporation ) C:\Users\Power\Downloads\mbam-setup-2.0.3.1025(2).exe 2014-10-19 00:01 - 2014-10-19 00:05 - 00000000 ____D () C:\Program Files\CCleaner 2014-10-19 00:01 - 2014-10-19 00:01 - 00002772 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC 2014-10-19 00:01 - 2014-10-19 00:01 - 00000782 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-10-19 00:01 - 2014-10-19 00:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2014-10-18 23:59 - 2014-10-19 00:00 - 04965896 _____ (Piriform Ltd) C:\Users\Power\Downloads\ccsetup418.exe 2014-10-18 23:39 - 2014-10-18 23:42 - 19814776 _____ (Malwarebytes Corporation ) C:\Users\Power\Downloads\mbam-setup-2.0.3.1025(1).exe 2014-10-18 23:11 - 2014-10-18 23:15 - 19824296 _____ (Malwarebytes Corporation ) C:\Users\Power\Downloads\mbam-setup-2.0.3.1025.exe 2014-10-18 22:28 - 2014-10-18 22:28 - 00000000 ____D () C:\Users\Power\Desktop\Old Firefox Data 2014-10-18 12:01 - 2014-10-18 12:01 - 00000484 _____ () C:\Users\Power\Downloads\ancbanner_custom2_728x90_268.htm 2014-10-18 02:51 - 2014-10-18 02:51 - 00046671 _____ () C:\Users\Power\Downloads\b686bd177c998000e0c710588e985a3d5b6ca419.zip 2014-10-18 02:51 - 2010-08-09 00:44 - 00115010 _____ () C:\Users\Power\Desktop\asister-sil.srt 2014-10-18 01:59 - 2014-10-18 02:49 - 736323584 ____R () C:\Users\Power\Downloads\Scusa.Ma.Ti.Chiamo.Amore.2008.iTALiAN.DVDRip.XviD-SVD.avi 2014-10-17 20:28 - 2014-10-17 20:28 - 00000192 _____ () C:\Users\Power\Downloads\widget_najcitanije.html 2014-10-17 01:30 - 2014-10-17 19:52 - 727470970 _____ () C:\Users\Power\Downloads\Fitness_Cindy Crawford - Shape Your Body Workout.rar 2014-10-16 23:37 - 2014-10-16 23:38 - 00006925 _____ () C:\Users\Power\Downloads\ivica-ristic 2014-10-16 02:00 - 2014-10-16 02:13 - 00000000 ____D () C:\Users\Power\Downloads\cvece 2014-10-16 01:52 - 2014-10-16 02:25 - 00000000 ____D () C:\Users\Power\Downloads\ne procitano 2014-10-16 01:50 - 2014-10-17 21:27 - 00000000 ____D () C:\Users\Power\Downloads\yeyancija 2014-10-15 21:04 - 2014-10-15 21:04 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2014-10-15 21:04 - 2014-10-15 21:04 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2014-10-15 21:04 - 2014-10-15 21:04 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2014-10-15 21:04 - 2014-10-15 21:04 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2014-10-15 21:04 - 2014-10-15 21:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-10-15 01:03 - 2014-10-15 01:03 - 00000000 ____D () C:\Windows\Sun 2014-10-11 23:36 - 2014-10-11 23:42 - 00000000 ____D () C:\Users\Power\AppData\Local\Gameo 2014-10-11 23:36 - 2014-10-11 23:36 - 00000171 _____ () C:\Users\Power\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url 2014-10-11 23:36 - 2014-10-11 23:36 - 00000000 ___HD () C:\Users\Power\AppData\Roaming\GoldenGate 2014-10-11 23:03 - 2014-10-11 23:03 - 00003214 _____ () C:\Windows\System32\Tasks\{3B8B81D0-13B3-408E-B4C3-69FAD6B2305D} 2014-10-11 20:16 - 2014-10-11 23:05 - 00000000 ____D () C:\Program Files (x86)\Connectify 2014-10-11 20:16 - 2014-10-11 20:16 - 00042152 _____ (Connectify) C:\Windows\system32\Drivers\cnnctfy3.sys 2014-10-11 20:13 - 2014-10-11 20:13 - 00758128 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-10-11 19:24 - 2009-11-25 11:47 - 01942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2014-10-11 19:24 - 2009-11-25 11:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll 2014-10-11 19:24 - 2009-11-25 11:47 - 00444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll 2014-10-11 19:24 - 2009-11-25 11:47 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe 2014-10-11 19:24 - 2009-11-25 11:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll 2014-10-11 19:24 - 2009-11-25 11:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe 2014-10-11 19:24 - 2009-11-25 11:47 - 00109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll 2014-10-11 19:24 - 2009-11-25 11:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll 2014-10-11 19:24 - 2009-11-25 11:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll 2014-10-11 19:24 - 2009-11-25 11:47 - 00048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll 2014-10-11 18:56 - 2014-10-14 15:03 - 00000375 _____ () C:\Windows\system32\Drivers\etc\hosts.ics 2014-10-10 20:23 - 2014-10-10 20:23 - 00000000 ____D () C:\Users\Power\AppData\Local\TuneUp Software 2014-10-10 20:08 - 2014-10-10 20:08 - 00000000 ____D () C:\Users\Power\AppData\Roaming\rmi 2014-10-10 19:56 - 2014-09-27 20:36 - 00000000 ____D () C:\Users\Power\Desktop\Sin City 2014-10-05 17:32 - 2014-10-05 17:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2014-10-03 21:10 - 2014-10-03 21:10 - 00003174 _____ () C:\Windows\System32\Tasks\{7E03AF63-0586-42E2-BF8E-E42DABF1DF91} 2014-10-02 15:11 - 2014-10-02 15:11 - 00003168 _____ () C:\Windows\System32\Tasks\{CB657BF8-F44D-4671-A79E-90CA2B318159} 2014-09-29 19:26 - 2014-09-29 19:26 - 00002015 _____ () C:\Users\Public\Desktop\CopySafe PDF Reader.lnk 2014-09-29 19:26 - 2014-09-29 19:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CopySafe PDF Reader 2014-09-29 19:26 - 2014-09-29 19:26 - 00000000 ____D () C:\Program Files\Common Files\ArtistScope 2014-09-29 19:24 - 2014-09-29 19:26 - 00000000 ____D () C:\Windows\CopySafe PDF Reader 2014-09-29 19:22 - 2014-09-29 19:26 - 06906608 _____ (ArtistScope) C:\Users\Power\AppData\Local\TempCopysafePDFreader.exe 2014-09-29 19:22 - 2014-09-29 19:26 - 00000000 ____D () C:\Program Files (x86)\CopySafe PDF Reader 2014-09-28 21:10 - 2014-10-19 00:15 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-09-28 21:10 - 2014-09-28 21:10 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-09-28 21:10 - 2014-09-28 21:10 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-09-28 21:10 - 2014-09-28 21:10 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-09-28 19:58 - 2014-10-01 19:59 - 00000376 _____ () C:\Windows\Tasks\APSnotifierPP3.job 2014-09-28 19:58 - 2014-09-29 19:59 - 00000376 _____ () C:\Windows\Tasks\APSnotifierPP2.job 2014-09-28 19:58 - 2014-09-28 20:19 - 00000378 _____ () C:\Windows\Tasks\APSnotifierPP1.job 2014-09-28 19:58 - 2014-09-28 19:59 - 00002828 _____ () C:\Windows\System32\Tasks\APSnotifierPP1 2014-09-28 19:58 - 2014-09-28 19:59 - 00002826 _____ () C:\Windows\System32\Tasks\APSnotifierPP3 2014-09-28 19:58 - 2014-09-28 19:59 - 00002826 _____ () C:\Windows\System32\Tasks\APSnotifierPP2 2014-09-28 19:58 - 2014-09-28 19:58 - 00000320 _____ () C:\Users\Power\AppData\Roaming\aps.uninstall.scan.results 2014-09-28 19:57 - 2014-09-28 19:57 - 00627560 _____ (ClickMeIn Limited) C:\Users\Power\AppData\Local\nsiD906.tmp 2014-09-28 19:01 - 2014-09-28 19:01 - 00003148 _____ () C:\Windows\System32\Tasks\{3ABD8B14-7542-4C1D-B146-50787F2BD231} 2014-09-28 18:48 - 2014-09-28 20:18 - 00000000 ____D () C:\ProgramData\WindowsMangerProtect 2014-09-28 18:48 - 2014-09-28 18:48 - 00004026 _____ () C:\Windows\System32\Tasks\LaunchSignup 2014-09-28 18:48 - 2014-09-28 18:48 - 00000000 ____D () C:\ProgramData\IePluginServices 2014-09-20 21:23 - 2014-09-20 21:24 - 00000000 ____D () C:\Users\Power\Desktop\Fading Gigolo (2013) 2014-09-20 21:18 - 2014-09-20 21:20 - 00000000 ____D () C:\Users\Power\Desktop\New folder 2014-09-20 11:52 - 2014-10-11 23:34 - 00001139 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2014-09-20 11:52 - 2014-09-28 20:36 - 00001163 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2014-09-20 11:52 - 2014-09-26 00:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-09-19 19:13 - 2014-09-20 13:48 - 00000000 ____D () C:\Users\Power\Downloads\[TorrentCity.pl] Big.Love.2012.PL [AgusiQ] ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-10-19 00:37 - 2013-12-24 22:04 - 00000000 ____D () C:\Users\Power\AppData\Roaming\uTorrent 2014-10-19 00:13 - 2013-12-23 15:08 - 00000000 ____D () C:\Users\Power\AppData\Local\Google 2014-10-19 00:07 - 2014-08-07 22:56 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-10-19 00:05 - 2014-09-06 16:59 - 00000000 ____D () C:\Users\Power\AppData\Roaming\BitTorrent 2014-10-19 00:05 - 2014-01-03 16:05 - 00000000 ____D () C:\Users\Power\AppData\Roaming\DAEMON Tools Lite 2014-10-19 00:05 - 2013-12-23 21:49 - 00000000 ____D () C:\Windows\Panther 2014-10-19 00:05 - 2013-12-23 15:02 - 00000000 ____D () C:\Users\Power\AppData\Roaming\Skype 2014-10-19 00:02 - 2009-07-14 06:45 - 00014192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-10-19 00:02 - 2009-07-14 06:45 - 00014192 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-10-19 00:01 - 2013-12-24 22:27 - 00000000 ____D () C:\Program Files (x86)\GreyGray 2014-10-19 00:01 - 2009-07-14 07:13 - 00716598 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-10-19 00:01 - 2009-07-14 04:34 - 00000678 _____ () C:\Windows\win.ini 2014-10-18 23:58 - 2014-02-26 20:17 - 00000000 ____D () C:\Program Files (x86)\WinZipper 2014-10-18 23:57 - 2014-01-28 02:34 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2014-10-18 23:55 - 2014-08-07 22:56 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-10-18 23:55 - 2014-05-02 04:24 - 00000000 ____D () C:\Program Files (x86)\Flowsurf 2014-10-18 23:55 - 2014-03-02 17:29 - 00065536 _____ () C:\Windows\system32\Ikeext.etl 2014-10-18 23:55 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-10-18 23:55 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\tracing 2014-10-18 22:29 - 2014-06-18 22:24 - 00000928 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2862407325-3774677572-1820764921-1000UA.job 2014-10-18 22:29 - 2014-06-18 22:24 - 00000906 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2862407325-3774677572-1820764921-1000Core.job 2014-10-18 11:45 - 2014-09-18 19:43 - 00000464 __RSH () C:\ProgramData\ntuser.pol 2014-10-18 11:28 - 2009-07-14 07:08 - 00032654 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-10-16 02:24 - 2014-02-25 18:26 - 00000000 ____D () C:\Users\Power\Downloads\New folder 2014-10-16 02:12 - 2014-02-20 23:47 - 00000000 ____D () C:\Users\Power\Desktop\enterijer 2014-10-16 02:12 - 2013-12-30 13:59 - 00000000 ____D () C:\Users\Power\Desktop\Slike 2014-10-16 02:08 - 2014-03-26 04:10 - 00000000 ____D () C:\Users\Power\Downloads\New folder (2) 2014-10-15 21:08 - 2014-01-21 23:46 - 00000000 ____D () C:\ProgramData\Oracle 2014-10-15 21:04 - 2014-01-21 23:46 - 00000000 ____D () C:\Program Files (x86)\Java 2014-10-15 17:59 - 2013-12-23 15:01 - 00000000 ____D () C:\ProgramData\Skype 2014-10-15 17:56 - 2014-05-02 04:12 - 00000000 ____D () C:\Users\Power\AppData\Roaming\SkypEmoticons 2014-10-12 16:44 - 2014-01-25 16:57 - 00000000 ____D () C:\Users\Power\Desktop\muzika 2014-10-10 20:22 - 2013-12-25 12:18 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} 2014-10-10 20:12 - 2014-07-24 22:28 - 00001189 _____ () C:\Users\Public\Desktop\GOM Player.lnk 2014-10-10 20:12 - 2013-12-25 12:17 - 00001213 _____ () C:\Users\Power\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk 2014-10-10 20:12 - 2013-12-25 12:17 - 00000000 ____D () C:\Users\Power\AppData\Roaming\OpenCandy 2014-10-05 17:32 - 2013-12-23 15:01 - 00000000 ___RD () C:\Program Files (x86)\Skype 2014-10-04 18:08 - 2014-03-12 23:23 - 00000000 ____D () C:\Users\Power\Desktop\alles 2014-10-03 21:10 - 2014-01-28 19:49 - 00000000 ____D () C:\Users\Power\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-10-03 21:10 - 2014-01-28 19:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-10-03 21:10 - 2014-01-28 19:17 - 00000000 ____D () C:\Program Files (x86)\WinRAR 2014-09-28 21:11 - 2013-12-23 15:14 - 00000000 ____D () C:\Users\Power\AppData\Local\Adobe 2014-09-28 20:36 - 2013-12-23 12:58 - 00001447 _____ () C:\Users\Power\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-09-28 20:36 - 2013-12-23 12:58 - 00001413 _____ () C:\Users\Power\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2014-09-28 20:26 - 2014-01-28 02:27 - 00000000 ____D () C:\Program Files\Sweet Home 3D 2014-09-28 18:48 - 2014-01-21 23:57 - 00000000 ____D () C:\Program Files (x86)\SupTab 2014-09-28 10:57 - 2014-02-11 12:11 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr 2014-09-28 10:10 - 2014-01-14 23:35 - 00281688 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0 2014-09-27 20:07 - 2014-05-26 14:38 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2014-09-26 00:32 - 2014-09-03 18:07 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-10-17 16:01 ==================== End Of Log ============================ [Link mogu videti samo ulogovani korisnici] Dopuna: 19 Okt 2014 2:12 [Link mogu videti samo ulogovani korisnici] Dopuna: 19 Okt 2014 2:20 Pokrenula sam adwcleaner i evo izvjestaja sada cu cekati vasa sledeca upustva.

Profil

Sass Drake Poslao: 19 Okt 2014 09:04 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Zdravo Tamara, Sistem ti je pun adwarea i ostalog neželjenog softvera. Ako negdje zapneš, obavezno pitaj. Korak 1 Idi u Start -> Control Panel -> Programs and Features i deinstaliraj sljedeće programe: buenosearch toolbar iLivid SkypEmoticons WinZipper Korak 2 FRST treba da bude na Desktopu te ga premjesti iz Downloads foldera na Deskop. Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja. CloseProcesses: HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [iLivid] => C:\Users\Power\AppData\Local\iLivid\iLivid.exe [6827008 2013-09-09] (Bandoo Media Inc.) HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [SpeedItupFree] => "C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe" HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: G - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: H - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {1a536c92-814b-11e3-bf4b-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {1a536ca3-814b-11e3-bf4b-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {41b25d36-814d-11e3-bccb-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {41b25d45-814d-11e3-bccb-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {433f84c4-af77-11e3-aa33-001e101f36d9} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {433f84d2-af77-11e3-aa33-001e101f36d9} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {81525203-15c2-11e4-90a9-806e6f6e6963} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {81525238-15c2-11e4-90a9-844bf5c2755e} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {9e91e5d6-1769-11e4-a8ea-844bf5c2755e} - J:\NokiaPCIA_Autorun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {acc1b7b5-53a4-11e4-bd8d-844bf5c2755e} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {aebf5089-b8e2-11e3-b033-001e101f9843} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {b70178c6-b9de-11e3-a396-001e101f3315} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {e611e311-df6d-11e3-96d1-844bf5c2755e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {e611e350-df6d-11e3-96d1-844bf5c2755e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {f15c5595-4741-11e4-b6c3-001e101f1f81} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {f3bf9ffc-f275-11e3-a225-844bf5c2755e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {fffef618-df6c-11e3-814e-844bf5c2755e} - G:\AutoRun.exe IFEO\bitguard.exe: [Debugger] tasklist.exe IFEO\bprotect.exe: [Debugger] tasklist.exe IFEO\bpsvc.exe: [Debugger] tasklist.exe IFEO\browsemngr.exe: [Debugger] tasklist.exe IFEO\browserdefender.exe: [Debugger] tasklist.exe IFEO\browsermngr.exe: [Debugger] tasklist.exe IFEO\browserprotect.exe: [Debugger] tasklist.exe IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe IFEO\cltmngsvc.exe: [Debugger] IFEO\delta babylon.exe: [Debugger] tasklist.exe IFEO\delta tb.exe: [Debugger] tasklist.exe IFEO\delta2.exe: [Debugger] tasklist.exe IFEO\deltainstaller.exe: [Debugger] tasklist.exe IFEO\deltasetup.exe: [Debugger] tasklist.exe IFEO\deltatb.exe: [Debugger] tasklist.exe IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe IFEO\iminentsetup.exe: [Debugger] tasklist.exe IFEO\protectedsearch.exe: [Debugger] tasklist.exe IFEO\rjatydimofu.exe: [Debugger] tasklist.exe IFEO\searchprotection.exe: [Debugger] tasklist.exe IFEO\snapdo.exe: [Debugger] tasklist.exe IFEO\stinst32.exe: [Debugger] tasklist.exe IFEO\stinst64.exe: [Debugger] tasklist.exe IFEO\sweetimsetup.exe: [Debugger] tasklist.exe IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1411.....FNUM3AX&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://isearch.omiga-plus.com/?type=hp&ts=14119228.....M3AFNUM3AX HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://isearch.omiga-plus.com/?type=hp&ts=14119228.....M3AFNUM3AX HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com/web/?type=ds&ts=1411.....FNUM3AX&q={searchTerms} SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_ir_14_41_ff&cd=2XzuyEtN2Y1L1QzuzzyEyE0B0FyD0CtByByDyD0E0A0EtAtAtN0D0Tzu0StCtDtCyDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StA0EyCtDtAzztD0AtG0D0AtA0CtG0BzytDyEtG0ByDtByCtGtD0EyC0A0E0FtBzzyDzyyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0B0D0F0C0A0A0CtGyByDzyyDtGyEtCtA0DtGzyzztCtAtG0Azy0BtDyBtC0C0A0AzyyC0B2Q&cr=2021511369&ir= SearchScopes: HKLM - {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1411.....FNUM3AX&q={searchTerms} SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_ir_14_41_ff&cd=2XzuyEtN2Y1L1QzuzzyEyE0B0FyD0CtByByDyD0E0A0EtAtAtN0D0Tzu0StCtDtCyDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StA0EyCtDtAzztD0AtG0D0AtA0CtG0BzytDyEtG0ByDtByCtGtD0EyC0A0E0FtBzzyDzyyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0B0D0F0C0A0A0CtGyByDzyyDtGyEtCtA0DtGzyzztCtAtG0Azy0BtDyBtC0C0A0AzyyC0B2Q&cr=2021511369&ir= SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1411.....FNUM3AX&q={searchTerms} SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.fastsearchings.info/?l=1&q={searchTerms}&pid=2356&r=2014/06/27&hid=13136696006792945503&lg=EN&cc=RS&unqvl=56 SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&ctid=CT33197.....1031007&q={searchTerms}&SSPV= SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.only-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=34A2844BF5C2755E&affID=129300&tt=100714_kmsbusol&tsp=5305 SearchScopes: HKCU - {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1411.....FNUM3AX&q={searchTerms} SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_ir_14_41_ff&cd=2XzuyEtN2Y1L1QzuzzyEyE0B0FyD0CtByByDyD0E0A0EtAtAtN0D0Tzu0StCtDtCyDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StA0EyCtDtAzztD0AtG0D0AtA0CtG0BzytDyEtG0ByDtByCtGtD0EyC0A0E0FtBzzyDzyyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0B0D0F0C0A0A0CtGyByDzyyDtGyEtCtA0DtGzyzztCtAtG0Azy0BtDyBtC0C0A0AzyyC0B2Q&cr=2021511369&ir= SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://www.mystart.com/results.php?gen=ms&pr=manyc.....ch_5047&q={searchTerms} SearchScopes: HKCU - {6AD5CAB4-1067-41D9-BB5A-EA17BC2A87FD} URL = http://www.search.ask.com/web?tpid=ORJ-ST-SPE&o=APN11461&pf=V7&p2=^BE7^OSJ000^YY^AT&gct=sb&itbv=12.15.5.31&apn_uid=F2BBB9EC-6D0B-4CB0-9ECE-677CA1B7BEF5&apn_ptnrs=BE7&apn_dtid=^OSJ000^YY^AT&apn_dbr=ie_8.0.7600.16385&doi=2014-09-06&trgb=IE&q={searchTerms}&psv=&pt=tb SearchScopes: HKCU - {86427B5A-F7CF-48B7-93C1-2C728D123012} URL = http://rts.dsrlte.com/?q={searchTerms}&r=982 SearchScopes: HKCU - {95EBC53E-E8F4-4B1E-98FD-81D33D493D57} URL = http://www.only-search.com/?babsrc=SP_kms&mntrId=0.....sp=5305&q={searchTerms}&r=792 SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.fastsearchings.info/?l=1&q={searchTerms}&pid=2356&r=2014/06/27&hid=13136696006792945503&lg=EN&cc=RS&unqvl=56 BHO-x32: No Name -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> No File BHO-x32: No Name -> {4F524A2D-5637-4300-76A7-7A786E7484D7} -> No File BHO-x32: FlowSurf -> {E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0} -> C:\Program Files (x86)\Flowsurf\FlowSurf.dll (FlowSurf Inc.) Toolbar: HKLM - No Name - {4F524A2D-5637-4300-76A7-7A786E7484D7} - No File Toolbar: HKLM-x32 - No Name - {4F524A2D-5637-4300-76A7-7A786E7484D7} - No File Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File Toolbar: HKCU - No Name - {4F524A2D-5637-4300-76A7-7A786E7484D7} - No File Toolbar: HKCU - No Name - {4F524A2D-5354-2D53-5045-7A786E7484D7} - No File FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\Ask.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mystarttb.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\nationzoom.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\omiga-plus.xml FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta282.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta282\ff FF HKLM-x32\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\Power\AppData\Roaming\Mozilla\Firefox\Profiles\rezui95y.default\extensions\lightningnewtab@gmail.com.xpi FF HKLM-x32\...\Firefox\Extensions: [ext@flashenhancer.com] - C:\Program Files (x86)\AmiExt\flashEnhancer\ff FF HKLM-x32\...\Firefox\Extensions: [jid1-tofUlNEIFlkUIA@jetpack] - C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Power\AppData\Roaming\Mozilla\Firefox\Profiles\1qk4gqgl.default\extensions\faststartff@gmail.com CHR Plugin: (Wajam) - F:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0\plugins/PriamNPAPI.dll No File CHR Plugin: (Ma-Config.com plugin) - F:\Program Files\ma-config.com\nphardwaredetection.dll No File CHR Extension: (GreyGray) - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceiapeodjfjcbfkfkfbdpgbhbgiidjdb [2014-10-19] CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx [2014-02-26] CHR HKLM-x32\...\Chrome\Extension: [pelmeidfhdlhlbjimpabfcbnnojbboma] - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx [2014-09-28] CHR HKLM-x32\...\Chrome\Extension: [pkndmigholgfjlniaohblojbhgjbkakn] - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx [2014-01-21] R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [715656 2014-09-28] (Cherished Technololgy LIMITED) R2 Update GreyGray; C:\Program Files (x86)\GreyGray\updateGreyGray.exe [523544 2014-10-18] () R2 Util GreyGray; C:\Program Files (x86)\GreyGray\bin\utilGreyGray.exe [523544 2014-10-18] () R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [425104 2014-02-26] (Taiwan Shui Mu Chih Ching Technology Limited.) <==== ATTENTION R1 {f551efce-3692-4ed5-8201-c1c7dbef1744}w64; C:\Windows\System32\drivers\{f551efce-3692-4ed5-8201-c1c7dbef1744}w64.sys [44728 2014-09-16] (StdLib) Task: {451327CB-238B-40AE-BA73-19EAD8AA2794} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION Task: {4EC3AD6B-C825-4906-B87C-DD4CF69DDF56} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-28] (Adobe Systems Incorporated) Task: {59D72641-E55F-4554-BA90-3585B465ECD4} - System32\Tasks\fsupdate => C:\Program Files (x86)\Flowsurf\fsupd.exe [2014-04-15] () Task: {6C8FF300-558E-4161-9C55-2984F09B34DC} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION Task: {72848DAD-67D2-4CA2-8915-675EFB1D9B69} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION Task: {99BE7789-D7AA-4CC3-B1ED-51BB1ACF9C15} - System32\Tasks\GoforFilesUpdate => C:\Program Files (x86)\GoforFiles Updater\GFFUpdater.exe <==== ATTENTION Task: {BD7E3FCE-74FA-44D8-91E8-18EBF5C49003} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {D0555307-6D63-4F79-A100-77FEA08101F1} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {EAD3C327-C3BC-439D-A08E-639545F0FDB5} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {F10E58F7-4D30-4DAC-8201-035AB7327A75} - System32\Tasks\YTDownloaderUpd => C:\Program Files (x86)\YTDownloader\updater.exe [2014-05-22] (Goobzo) <==== ATTENTION Task: {FF3B83E9-E3E9-49BD-886D-921E98DD76AB} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION C:\Program Files (x86)\Mobogenie C:\ProgramData\IePluginServices C:\Program Files (x86)\SupTab C:\Program Files (x86)\WinZipper C:\Users\Power\AppData\Local\iLivid C:\Program Files (x86)\GreyGray C:\Program Files (x86)\SpeedItup Free C:\Program Files (x86)\Flowsurf C:\Program Files (x86)\VideoPlayerV3 C:\ProgramData\IePluginServices C:\Windows\System32\drivers\{f551efce-3692-4ed5-8201-c1c7dbef1744}w64.sys C:\Program Files\Common Files\System\sysmenu.dll C:\Program Files (x86)\MyPC Backup C:\Program Files (x86)\GoforFiles Updater C:\Program Files (x86)\AnyProtectEx C:\Program Files (x86)\YTDownloader EmptyTemp: Provjeri da li si dobro kopirala U okviru Notepad-a klikni na File --> Save As Fajl nazovi Fixlist i sačuvaj na Desktop Dvoklikom ponovo pokreni FRST.exe Klikni na Fix i sačekaj dok program ne završi. Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi. Nakon završetka rada, otvoriće se Notepad, sa sadržajem koji treba da kopiraš u temu. Takođe, na Desktop-u će se nalaziti (fixlog.txt). Potrebno je da sadržaj fixlog.txt kopiraš na forum Korak 3 Ono što si uradila sa AdwCleanerom, zaboravi jer idemo opet iznova. Preuzmi "Xplode"-ov AdwCleaner i sačuvaj ga na Desktop Dvoklikom pokreni program. u EULA prozoru klikni na I agree. Klikni na dugme Scan i sačekaj da se završi skeniranje. Klikni na dugme Clean i pričekaj da program završi. Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu. Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK Računar će se restartovati, a potom otvoriti Notepad (C:\AdwCleaner[S0].txt) sa izvještajem. Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl" Napomena: Izvještaj ce takođe biti sačuvan na C:\Adwcleaner\AdwCleaner[S0].txt

Profil

Tamara Radojkovic-Ristic Poslao: 19 Okt 2014 15:01 Idi na vrh
offline Tamara Radojkovic-Ristic Novi MyCity građanin Pridružio: 26 Nov 2012 Poruke: 18	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Uradila sve kao sto ste mi rekli... Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-10-2014 01 Ran by Power at 2014-10-19 14:36:16 Run:1 Running from C:\Users\Power\Desktop Loaded Profile: Power (Available profiles: Power) Boot Mode: Normal ============================================== Content of fixlist: *************** CloseProcesses: HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [iLivid] => C:\Users\Power\AppData\Local\iLivid\iLivid.exe [6827008 2013-09-09] (Bandoo Media Inc.) HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\Run: [SpeedItupFree] => "C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe" HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: G - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: H - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {1a536c92-814b-11e3-bf4b-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {1a536ca3-814b-11e3-bf4b-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {41b25d36-814d-11e3-bccb-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {41b25d45-814d-11e3-bccb-30f9edb84e0e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {433f84c4-af77-11e3-aa33-001e101f36d9} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {433f84d2-af77-11e3-aa33-001e101f36d9} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {81525203-15c2-11e4-90a9-806e6f6e6963} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {81525238-15c2-11e4-90a9-844bf5c2755e} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {9e91e5d6-1769-11e4-a8ea-844bf5c2755e} - J:\NokiaPCIA_Autorun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {acc1b7b5-53a4-11e4-bd8d-844bf5c2755e} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {aebf5089-b8e2-11e3-b033-001e101f9843} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {b70178c6-b9de-11e3-a396-001e101f3315} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {e611e311-df6d-11e3-96d1-844bf5c2755e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {e611e350-df6d-11e3-96d1-844bf5c2755e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {f15c5595-4741-11e4-b6c3-001e101f1f81} - H:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {f3bf9ffc-f275-11e3-a225-844bf5c2755e} - G:\AutoRun.exe HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\...\MountPoints2: {fffef618-df6c-11e3-814e-844bf5c2755e} - G:\AutoRun.exe IFEO\bitguard.exe: [Debugger] tasklist.exe IFEO\bprotect.exe: [Debugger] tasklist.exe IFEO\bpsvc.exe: [Debugger] tasklist.exe IFEO\browsemngr.exe: [Debugger] tasklist.exe IFEO\browserdefender.exe: [Debugger] tasklist.exe IFEO\browsermngr.exe: [Debugger] tasklist.exe IFEO\browserprotect.exe: [Debugger] tasklist.exe IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe IFEO\cltmngsvc.exe: [Debugger] IFEO\delta babylon.exe: [Debugger] tasklist.exe IFEO\delta tb.exe: [Debugger] tasklist.exe IFEO\delta2.exe: [Debugger] tasklist.exe IFEO\deltainstaller.exe: [Debugger] tasklist.exe IFEO\deltasetup.exe: [Debugger] tasklist.exe IFEO\deltatb.exe: [Debugger] tasklist.exe IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe IFEO\iminentsetup.exe: [Debugger] tasklist.exe IFEO\protectedsearch.exe: [Debugger] tasklist.exe IFEO\rjatydimofu.exe: [Debugger] tasklist.exe IFEO\searchprotection.exe: [Debugger] tasklist.exe IFEO\snapdo.exe: [Debugger] tasklist.exe IFEO\stinst32.exe: [Debugger] tasklist.exe IFEO\stinst64.exe: [Debugger] tasklist.exe IFEO\sweetimsetup.exe: [Debugger] tasklist.exe IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&a=ast_ir_14_41_ff&cd=2XzuyEtN2Y1L1QzuzzyEyE0B0FyD0CtByByDyD0E0A0EtAtAtN0D0Tzu0StCtDtCyDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StA0EyCtDtAzztD0AtG0D0AtA0CtG0BzytDyEtG0ByDtByCtGtD0EyC0A0E0FtBzzyDzyyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0B0D0F0C0A0A0CtGyByDzyyDtGyEtCtA0DtGzyzztCtAtG0Azy0BtDyBtC0C0A0AzyyC0B2Q&cr=2021511369&ir= SearchScopes: HKLM - {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&a=ast_ir_14_41_ff&cd=2XzuyEtN2Y1L1QzuzzyEyE0B0FyD0CtByByDyD0E0A0EtAtAtN0D0Tzu0StCtDtCyDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StA0EyCtDtAzztD0AtG0D0AtA0CtG0BzytDyEtG0ByDtByCtGtD0EyC0A0E0FtBzzyDzyyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0B0D0F0C0A0A0CtGyByDzyyDtGyEtCtA0DtGzyzztCtAtG0Azy0BtDyBtC0C0A0AzyyC0B2Q&cr=2021511369&ir= SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&pid=2356&r=2014/06/27&hid=13136696006792945503&lg=EN&cc=RS&unqvl=56 SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&SSPV= SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&babsrc=SP_ss&mntrId=34A2844BF5C2755E&affID=129300&tt=100714_kmsbusol&tsp=5305 SearchScopes: HKCU - {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&a=ast_ir_14_41_ff&cd=2XzuyEtN2Y1L1QzuzzyEyE0B0FyD0CtByByDyD0E0A0EtAtAtN0D0Tzu0StCtDtCyDtN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StA0EyCtDtAzztD0AtG0D0AtA0CtG0BzytDyEtG0ByDtByCtGtD0EyC0A0E0FtBzzyDzyyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0B0D0F0C0A0A0CtGyByDzyyDtGyEtCtA0DtGzyzztCtAtG0Azy0BtDyBtC0C0A0AzyyC0B2Q&cr=2021511369&ir= SearchScopes: HKCU - {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms} SearchScopes: HKCU - {6AD5CAB4-1067-41D9-BB5A-EA17BC2A87FD} URL = [Link mogu videti samo ulogovani korisnici]^BE7^OSJ000^YY^AT&gct=sb&itbv=12.15.5.31&apn_uid=F2BBB9EC-6D0B-4CB0-9ECE-677CA1B7BEF5&apn_ptnrs=BE7&apn_dtid=^OSJ000^YY^AT&apn_dbr=ie_8.0.7600.16385&doi=2014-09-06&trgb=IE&q={searchTerms}&psv=&pt=tb SearchScopes: HKCU - {86427B5A-F7CF-48B7-93C1-2C728D123012} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&r=982 SearchScopes: HKCU - {95EBC53E-E8F4-4B1E-98FD-81D33D493D57} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&r=792 SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&pid=2356&r=2014/06/27&hid=13136696006792945503&lg=EN&cc=RS&unqvl=56 BHO-x32: No Name -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> No File BHO-x32: No Name -> {4F524A2D-5637-4300-76A7-7A786E7484D7} -> No File BHO-x32: FlowSurf -> {E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0} -> C:\Program Files (x86)\Flowsurf\FlowSurf.dll (FlowSurf Inc.) Toolbar: HKLM - No Name - {4F524A2D-5637-4300-76A7-7A786E7484D7} - No File Toolbar: HKLM-x32 - No Name - {4F524A2D-5637-4300-76A7-7A786E7484D7} - No File Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File Toolbar: HKCU - No Name - {4F524A2D-5637-4300-76A7-7A786E7484D7} - No File Toolbar: HKCU - No Name - {4F524A2D-5354-2D53-5045-7A786E7484D7} - No File FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\Ask.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mystarttb.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\nationzoom.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\omiga-plus.xml FF HKLM-x32\...\Firefox\Extensions: [ext@VideoPlayerV3beta282.net] - C:\Program Files (x86)\VideoPlayerV3\VideoPlayerV3beta282\ff FF HKLM-x32\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\Power\AppData\Roaming\Mozilla\Firefox\Profiles\rezui95y.default\extensions\lightningnewtab@gmail.com.xpi FF HKLM-x32\...\Firefox\Extensions: [ext@flashenhancer.com] - C:\Program Files (x86)\AmiExt\flashEnhancer\ff FF HKLM-x32\...\Firefox\Extensions: [jid1-tofUlNEIFlkUIA@jetpack] - C:\Program Files (x86)\Flowsurf\jid1-tofUlNEIFlkUIA@jetpack FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Power\AppData\Roaming\Mozilla\Firefox\Profiles\1qk4gqgl.default\extensions\faststartff@gmail.com CHR Plugin: (Wajam) - F:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0\plugins/PriamNPAPI.dll No File CHR Plugin: (Ma-Config.com plugin) - F:\Program Files\ma-config.com\nphardwaredetection.dll No File CHR Extension: (GreyGray) - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceiapeodjfjcbfkfkfbdpgbhbgiidjdb [2014-10-19] CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx [2014-02-26] CHR HKLM-x32\...\Chrome\Extension: [pelmeidfhdlhlbjimpabfcbnnojbboma] - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx [2014-09-28] CHR HKLM-x32\...\Chrome\Extension: [pkndmigholgfjlniaohblojbhgjbkakn] - C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx [2014-01-21] R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [715656 2014-09-28] (Cherished Technololgy LIMITED) R2 Update GreyGray; C:\Program Files (x86)\GreyGray\updateGreyGray.exe [523544 2014-10-18] () R2 Util GreyGray; C:\Program Files (x86)\GreyGray\bin\utilGreyGray.exe [523544 2014-10-18] () R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [425104 2014-02-26] (Taiwan Shui Mu Chih Ching Technology Limited.) <==== ATTENTION R1 {f551efce-3692-4ed5-8201-c1c7dbef1744}w64; C:\Windows\System32\drivers\{f551efce-3692-4ed5-8201-c1c7dbef1744}w64.sys [44728 2014-09-16] (StdLib) Task: {451327CB-238B-40AE-BA73-19EAD8AA2794} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION Task: {4EC3AD6B-C825-4906-B87C-DD4CF69DDF56} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-28] (Adobe Systems Incorporated) Task: {59D72641-E55F-4554-BA90-3585B465ECD4} - System32\Tasks\fsupdate => C:\Program Files (x86)\Flowsurf\fsupd.exe [2014-04-15] () Task: {6C8FF300-558E-4161-9C55-2984F09B34DC} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION Task: {72848DAD-67D2-4CA2-8915-675EFB1D9B69} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION Task: {99BE7789-D7AA-4CC3-B1ED-51BB1ACF9C15} - System32\Tasks\GoforFilesUpdate => C:\Program Files (x86)\GoforFiles Updater\GFFUpdater.exe <==== ATTENTION Task: {BD7E3FCE-74FA-44D8-91E8-18EBF5C49003} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {D0555307-6D63-4F79-A100-77FEA08101F1} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {EAD3C327-C3BC-439D-A08E-639545F0FDB5} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {F10E58F7-4D30-4DAC-8201-035AB7327A75} - System32\Tasks\YTDownloaderUpd => C:\Program Files (x86)\YTDownloader\updater.exe [2014-05-22] (Goobzo) <==== ATTENTION Task: {FF3B83E9-E3E9-49BD-886D-921E98DD76AB} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION C:\Program Files (x86)\Mobogenie C:\ProgramData\IePluginServices C:\Program Files (x86)\SupTab C:\Program Files (x86)\WinZipper C:\Users\Power\AppData\Local\iLivid C:\Program Files (x86)\GreyGray C:\Program Files (x86)\SpeedItup Free C:\Program Files (x86)\Flowsurf C:\Program Files (x86)\VideoPlayerV3 C:\ProgramData\IePluginServices C:\Windows\System32\drivers\{f551efce-3692-4ed5-8201-c1c7dbef1744}w64.sys C:\Program Files\Common Files\System\sysmenu.dll C:\Program Files (x86)\MyPC Backup C:\Program Files (x86)\GoforFiles Updater C:\Program Files (x86)\AnyProtectEx C:\Program Files (x86)\YTDownloader EmptyTemp: ************* Processes closed successfully. HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mobilegeni daemon => value deleted successfully. HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\Software\Microsoft\Windows\CurrentVersion\Run\\iLivid => value deleted successfully. HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\Software\Microsoft\Windows\CurrentVersion\Run\\SpeedItupFree => value deleted successfully. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-2862407325-3774677572-1820764921-1000" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\S-1-5-21-2862407325-3774677572-1820764921-1000" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1a536c92-814b-11e3-bf4b-30f9edb84e0e}" => Key deleted successfully. "HKCR\CLSID\{1a536c92-814b-11e3-bf4b-30f9edb84e0e}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1a536ca3-814b-11e3-bf4b-30f9edb84e0e}" => Key deleted successfully. "HKCR\CLSID\{1a536ca3-814b-11e3-bf4b-30f9edb84e0e}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{41b25d36-814d-11e3-bccb-30f9edb84e0e}" => Key deleted successfully. "HKCR\CLSID\{41b25d36-814d-11e3-bccb-30f9edb84e0e}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{41b25d45-814d-11e3-bccb-30f9edb84e0e}" => Key deleted successfully. "HKCR\CLSID\{41b25d45-814d-11e3-bccb-30f9edb84e0e}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{433f84c4-af77-11e3-aa33-001e101f36d9}" => Key deleted successfully. "HKCR\CLSID\{433f84c4-af77-11e3-aa33-001e101f36d9}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{433f84d2-af77-11e3-aa33-001e101f36d9}" => Key deleted successfully. "HKCR\CLSID\{433f84d2-af77-11e3-aa33-001e101f36d9}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{81525203-15c2-11e4-90a9-806e6f6e6963}" => Key deleted successfully. "HKCR\CLSID\{81525203-15c2-11e4-90a9-806e6f6e6963}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{81525238-15c2-11e4-90a9-844bf5c2755e}" => Key deleted successfully. "HKCR\CLSID\{81525238-15c2-11e4-90a9-844bf5c2755e}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9e91e5d6-1769-11e4-a8ea-844bf5c2755e}" => Key deleted successfully. "HKCR\CLSID\{9e91e5d6-1769-11e4-a8ea-844bf5c2755e}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{acc1b7b5-53a4-11e4-bd8d-844bf5c2755e}" => Key deleted successfully. "HKCR\CLSID\{acc1b7b5-53a4-11e4-bd8d-844bf5c2755e}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{aebf5089-b8e2-11e3-b033-001e101f9843}" => Key deleted successfully. "HKCR\CLSID\{aebf5089-b8e2-11e3-b033-001e101f9843}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b70178c6-b9de-11e3-a396-001e101f3315}" => Key deleted successfully. "HKCR\CLSID\{b70178c6-b9de-11e3-a396-001e101f3315}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e611e311-df6d-11e3-96d1-844bf5c2755e}" => Key deleted successfully. "HKCR\CLSID\{e611e311-df6d-11e3-96d1-844bf5c2755e}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e611e350-df6d-11e3-96d1-844bf5c2755e}" => Key deleted successfully. "HKCR\CLSID\{e611e350-df6d-11e3-96d1-844bf5c2755e}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f15c5595-4741-11e4-b6c3-001e101f1f81}" => Key deleted successfully. "HKCR\CLSID\{f15c5595-4741-11e4-b6c3-001e101f1f81}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f3bf9ffc-f275-11e3-a225-844bf5c2755e}" => Key deleted successfully. "HKCR\CLSID\{f3bf9ffc-f275-11e3-a225-844bf5c2755e}" => Key not found. "HKU\S-1-5-21-2862407325-3774677572-1820764921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fffef618-df6c-11e3-814e-844bf5c2755e}" => Key deleted successfully. "HKCR\CLSID\{fffef618-df6c-11e3-814e-844bf5c2755e}" => Key not found. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bitguard.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bprotect.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bpsvc.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsemngr.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserdefender.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browsermngr.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\browserprotect.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\bundlesweetimsetup.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\cltmngsvc.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\delta babylon.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\delta tb.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\delta2.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltainstaller.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltasetup.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltatb.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\deltatb_2501-c733154b.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\iminentsetup.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\protectedsearch.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\rjatydimofu.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\searchprotection.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\snapdo.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst32.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\stinst64.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\sweetimsetup.exe" => Key deleted successfully. "HKLM\Software\microsoft\windows nt\currentversion\Image File Execution Options\tbdelta.exetoolbar783881609.exe" => Key deleted successfully. C:\Windows\system32\GroupPolicy\Machine => Moved successfully. C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully. "HKLM\SOFTWARE\Policies\Google" => Key deleted successfully. "HKCU\SOFTWARE\Policies\Google" => Key deleted successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => Value was restored successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => Value was restored successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully. HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => Value was restored successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully. "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2E00D31D-D171-423D-836D-1A4D7EA7F1A9}" => Key deleted successfully. "HKCR\CLSID\{2E00D31D-D171-423D-836D-1A4D7EA7F1A9}" => Key not found. "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully. "HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key not found. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key not found. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}" => Key not found. "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" => Key deleted successfully. "HKCR\CLSID\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}" => Key not found. "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}" => Key not found. "HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}" => Key not found. "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2E00D31D-D171-423D-836D-1A4D7EA7F1A9}" => Key deleted successfully. "HKCR\CLSID\{2E00D31D-D171-423D-836D-1A4D7EA7F1A9}" => Key not found. "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key deleted successfully. "HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => Key not found. "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}" => Key deleted successfully. "HKCR\CLSID\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}" => Key not found. "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6AD5CAB4-1067-41D9-BB5A-EA17BC2A87FD}" => Key deleted successfully. "HKCR\CLSID\{6AD5CAB4-1067-41D9-BB5A-EA17BC2A87FD}" => Key not found. "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{86427B5A-F7CF-48B7-93C1-2C728D123012}" => Key deleted successfully. "HKCR\CLSID\{86427B5A-F7CF-48B7-93C1-2C728D123012}" => Key not found. "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{95EBC53E-E8F4-4B1E-98FD-81D33D493D57}" => Key deleted successfully. "HKCR\CLSID\{95EBC53E-E8F4-4B1E-98FD-81D33D493D57}" => Key not found. "HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}" => Key deleted successfully. "HKCR\CLSID\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}" => Key not found. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}" => Key not found. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5637-4300-76A7-7A786E7484D7}" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{4F524A2D-5637-4300-76A7-7A786E7484D7}" => Key not found. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}" => Key deleted successfully. "HKCR\Wow6432Node\CLSID\{E3F1CA13-EA0E-4617-8D03-3EAA6A94A7E0}" => Key deleted successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{4F524A2D-5637-4300-76A7-7A786E7484D7} => value deleted successfully. "HKCR\CLSID\{4F524A2D-5637-4300-76A7-7A786E7484D7}" => Key not found. HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{4F524A2D-5637-4300-76A7-7A786E7484D7} => value deleted successfully. "HKCR\Wow6432Node\CLSID\{4F524A2D-5637-4300-76A7-7A786E7484D7}" => Key not found. HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} => value deleted successfully. "HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}" => Key not found. HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4F524A2D-5637-4300-76A7-7A786E7484D7} => value deleted successfully. "HKCR\CLSID\{4F524A2D-5637-4300-76A7-7A786E7484D7}" => Key not found. HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4F524A2D-5354-2D53-5045-7A786E7484D7} => value deleted successfully. "HKCR\CLSID\{4F524A2D-5354-2D53-5045-7A786E7484D7}" => Key not found. C:\Program Files (x86)\mozilla firefox\browser\searchplugins\Ask.xml => Moved successfully. C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mystarttb.xml => Moved successfully. C:\Program Files (x86)\mozilla firefox\browser\searchplugins\nationzoom.xml => Moved successfully. C:\Program Files (x86)\mozilla firefox\browser\searchplugins\omiga-plus.xml => Moved successfully. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@VideoPlayerV3beta282.net => value deleted successfully. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\lightningnewtab@gmail.com => value deleted successfully. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\ext@flashenhancer.com => value deleted successfully. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\jid1-tofUlNEIFlkUIA@jetpack => value deleted successfully. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\faststartff@gmail.com => value deleted successfully. F:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0\plugins/PriamNPAPI.dll not found. F:\Program Files\ma-config.com\nphardwaredetection.dll not found. C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceiapeodjfjcbfkfkfbdpgbhbgiidjdb => Moved successfully. "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo" => Key deleted successfully. C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx => Moved successfully. "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma" => Key deleted successfully. C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx => Moved successfully. "HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pkndmigholgfjlniaohblojbhgjbkakn" => Key deleted successfully. C:\Users\Power\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx => Moved successfully. IePluginServices => Service deleted successfully. Update GreyGray => Unable to stop service Update GreyGray => Service deleted successfully. Util GreyGray => Unable to stop service Util GreyGray => Service deleted successfully. winzipersvc => Service not found. {f551efce-3692-4ed5-8201-c1c7dbef1744}w64 => Unable to stop service {f551efce-3692-4ed5-8201-c1c7dbef1744}w64 => Service deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{451327CB-238B-40AE-BA73-19EAD8AA2794}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{451327CB-238B-40AE-BA73-19EAD8AA2794}" => Key deleted successfully. C:\Windows\System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Maintenance\SMupdate2" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4EC3AD6B-C825-4906-B87C-DD4CF69DDF56}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4EC3AD6B-C825-4906-B87C-DD4CF69DDF56}" => Key deleted successfully. C:\Windows\System32\Tasks\Adobe Flash Player Updater => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player Updater" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{59D72641-E55F-4554-BA90-3585B465ECD4}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{59D72641-E55F-4554-BA90-3585B465ECD4}" => Key deleted successfully. C:\Windows\System32\Tasks\fsupdate => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\fsupdate" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6C8FF300-558E-4161-9C55-2984F09B34DC}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6C8FF300-558E-4161-9C55-2984F09B34DC}" => Key deleted successfully. C:\Windows\System32\Tasks\LaunchSignup => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\LaunchSignup" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{72848DAD-67D2-4CA2-8915-675EFB1D9B69}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{72848DAD-67D2-4CA2-8915-675EFB1D9B69}" => Key deleted successfully. C:\Windows\System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Multimedia\SMupdate3" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{99BE7789-D7AA-4CC3-B1ED-51BB1ACF9C15}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{99BE7789-D7AA-4CC3-B1ED-51BB1ACF9C15}" => Key deleted successfully. C:\Windows\System32\Tasks\GoforFilesUpdate => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoforFilesUpdate" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BD7E3FCE-74FA-44D8-91E8-18EBF5C49003}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BD7E3FCE-74FA-44D8-91E8-18EBF5C49003}" => Key deleted successfully. C:\Windows\System32\Tasks\APSnotifierPP2 => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP2" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D0555307-6D63-4F79-A100-77FEA08101F1}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D0555307-6D63-4F79-A100-77FEA08101F1}" => Key deleted successfully. C:\Windows\System32\Tasks\APSnotifierPP1 => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP1" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EAD3C327-C3BC-439D-A08E-639545F0FDB5}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EAD3C327-C3BC-439D-A08E-639545F0FDB5}" => Key deleted successfully. C:\Windows\System32\Tasks\APSnotifierPP3 => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\APSnotifierPP3" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F10E58F7-4D30-4DAC-8201-035AB7327A75}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F10E58F7-4D30-4DAC-8201-035AB7327A75}" => Key deleted successfully. C:\Windows\System32\Tasks\YTDownloaderUpd => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\YTDownloaderUpd" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FF3B83E9-E3E9-49BD-886D-921E98DD76AB}" => Key deleted successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FF3B83E9-E3E9-49BD-886D-921E98DD76AB}" => Key deleted successfully. C:\Windows\System32\Tasks\SMupdate1 => Moved successfully. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SMupdate1" => Key deleted successfully. C:\Windows\Tasks\APSnotifierPP1.job => Moved successfully. C:\Windows\Tasks\APSnotifierPP2.job => Moved successfully. C:\Windows\Tasks\APSnotifierPP3.job => Moved successfully. "C:\Program Files (x86)\Mobogenie" => File/Directory not found. C:\ProgramData\IePluginServices => Moved successfully. C:\Program Files (x86)\SupTab => Moved successfully. C:\Program Files (x86)\WinZipper => Moved successfully. "C:\Users\Power\AppData\Local\iLivid" => File/Directory not found. "C:\Program Files (x86)\GreyGray" directory move: C:\Program Files (x86)\GreyGray\ceiapeodjfjcbfkfkfbdpgbhbgiidjdb.crx => Moved successfully. C:\Program Files (x86)\GreyGray\GreyGray.ico => Moved successfully. C:\Program Files (x86)\GreyGray\GreyGrayUninstall.exe => Moved successfully. C:\Program Files (x86)\GreyGray\sqlite3.exe => Moved successfully. C:\Program Files (x86)\GreyGray\updateGreyGray.exe => Moved successfully. C:\Program Files (x86)\GreyGray\updateGreyGray.InstallState => Moved successfully. C:\Program Files (x86)\GreyGray\bin\7za.exe => Moved successfully. C:\Program Files (x86)\GreyGray\bin\BrowserAdapter.7z => Moved successfully. C:\Program Files (x86)\GreyGray\bin\f551efce36924ed58201.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\f551efce36924ed5820164.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\GreyGray.BrowserAdapter.exe => Moved successfully. C:\Program Files (x86)\GreyGray\bin\GreyGray.BrowserAdapter64.exe => Moved successfully. C:\Program Files (x86)\GreyGray\bin\GreyGray.BrowserFilter.Helper.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\GreyGray.BrowserFilter.Helper.dll.old.c38aa6b3-227e-4af6-a479-a812e13f8732 => Moved successfully. C:\Program Files (x86)\GreyGray\bin\GreyGray.PurBrowse.zip => Moved successfully. C:\Program Files (x86)\GreyGray\bin\GreyGray.PurBrowse64.exe => Moved successfully. C:\Program Files (x86)\GreyGray\bin\GreyGray.PurBrowse64.exe.PendingOverwrite => Moved successfully. C:\Program Files (x86)\GreyGray\bin\GreyGrayBrowserFilter.exe => Moved successfully. C:\Program Files (x86)\GreyGray\bin\sqlite3.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\tmpF9BC.tmp => Moved successfully. C:\Program Files (x86)\GreyGray\bin\utilGreyGray.exe => Moved successfully. C:\Program Files (x86)\GreyGray\bin\utilGreyGray.InstallState => Moved successfully. C:\Program Files (x86)\GreyGray\bin\{f551efce-3692-4ed5-8201-c1c7dbef1744}.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\{f551efce-3692-4ed5-8201-c1c7dbef1744}64.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\TEMP\mfs8FD2.tmp => Moved successfully. C:\Program Files (x86)\GreyGray\bin\TEMP\mfsA48A.tmp => Moved successfully. C:\Program Files (x86)\GreyGray\bin\TEMP\mfsA48B.tmp => Moved successfully. C:\Program Files (x86)\GreyGray\bin\TEMP\mfsC6A.tmp => Moved successfully. C:\Program Files (x86)\GreyGray\bin\TEMP\mfsE00.tmp => Moved successfully. C:\Program Files (x86)\GreyGray\bin\TEMP\mfsF019.tmp => Moved successfully. C:\Program Files (x86)\GreyGray\bin\TEMP\mfsF0D5.tmp => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.BOAS.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.Bromon.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.BroStats.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.BrowserAdapter.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.BrowserAdapterS.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.BrowserFilter.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.BRT.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.CompatibilityChecker.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.FFUpdate.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.GCUpdate.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.IEUpdate.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.OfSvc.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.PurBrowse.dll => Moved successfully. C:\Program Files (x86)\GreyGray\bin\plugins\GreyGray.Repmon.dll => Moved successfully. Could not move "C:\Program Files (x86)\GreyGray" directory. => Scheduled to move on reboot. C:\Program Files (x86)\SpeedItup Free => Moved successfully. C:\Program Files (x86)\Flowsurf => Moved successfully. C:\Program Files (x86)\VideoPlayerV3 => Moved successfully. "C:\ProgramData\IePluginServices" => File/Directory not found. C:\Windows\System32\drivers\{f551efce-3692-4ed5-8201-c1c7dbef1744}w64.sys => Moved successfully. C:\Program Files\Common Files\System\sysmenu.dll => Moved successfully. "C:\Program Files (x86)\MyPC Backup" => File/Directory not found. "C:\Program Files (x86)\GoforFiles Updater" => File/Directory not found. "C:\Program Files (x86)\AnyProtectEx" => File/Directory not found. C:\Program Files (x86)\YTDownloader => Moved successfully. EmptyTemp: => Removed 117.7 MB temporary data. => Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-10-19 14:41:30)<= C:\Program Files (x86)\GreyGray => Is moved successfully. ==== End of Fixlog ==== [Link mogu videti samo ulogovani korisnici]**

Profil

Sass Drake Poslao: 19 Okt 2014 15:57 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Nema potrebe za persiranjem. Sada uradi ovo: Korak 1 Preuzmi Junkware Removal Tool (JRT) i sačuvaj ga na Desktop. Zatvori browser i ostale pokrenute programe Privremeno deaktiviraj zaštitni softver (Uputstvo); Dvoklikom na ikonicu () pokreni program JRT; Kod obavještenja "Press any key" pritisnuti bilo koji taster i alat ce započeti skeniranje. Napomena: u ovisnosti od hardvera račuanra vreme skeniranja u nekim slučajevima moze da potraje. Kada završi otvorice se Notepad sa izvještajem koji ce biti sačuvan na Desktopu pod nazivom JRT.txt Kopiraj sadržaj tog loga u temu. Korak 2 Pokreni Google Chrome Klikni na tarabu (dugme Settings sa tri vodoravne crte) u gornjem desnom uglu Klikni na About Google Chrome i otvoriće ti se stranica sa podacima o verziji koja ti je instalirana Napravi screenshot tog prozora (uputstvo) i postavi ga na forum korišenjem opcije Prikači fajl ili Prikači sliku

Profil

Tamara Radojkovic-Ristic Poslao: 19 Okt 2014 17:50 Idi na vrh
offline Tamara Radojkovic-Ristic Novi MyCity građanin Pridružio: 26 Nov 2012 Poruke: 18	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 19 Okt 2014 17:48 Uspesno odradjeno... ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.3.3 (10.14.2014:1) OS: Windows 7 Ultimate x64 Ran by Power on ned 19.10.2014 at 17:04:51,81 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\update greygray Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\util greygray Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\GreyGraySetup_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\GreyGraySetup_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\GreyGray_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\GreyGray_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\GreyGray_Setup_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\GreyGray_Setup_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\updateGreyGray_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\updateGreyGray_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\utilGreyGray_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\utilGreyGray_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\iLividSetup-r362-n-bc_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\iLividSetup-r362-n-bc_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\iLividSetup-r420-n-bc_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\iLividSetup-r420-n-bc_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SetupDataMngr_iLivid_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\SetupDataMngr_iLivid_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\DynamicPricerInstaller_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\DynamicPricerInstaller_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Softonic_DE_1-5-10_DE-Production_10_CleanRelease_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Softonic_DE_1-5-10_DE-Production_10_CleanRelease_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Softonic_DE_1-5-11_DE-Production_10_CleanRelease_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Softonic_DE_1-5-11_DE-Production_10_CleanRelease_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Softonic_EN_1-5-4_EN[1]_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Softonic_EN_1-5-4_EN[1]_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Softonic_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\Softonic_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\GreyGraySetup_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\GreyGraySetup_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\GreyGray_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\GreyGray_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\GreyGray_Setup_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\GreyGray_Setup_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\updateGreyGray_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\updateGreyGray_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\utilGreyGray_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\utilGreyGray_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\iLividSetup-r362-n-bc_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\iLividSetup-r362-n-bc_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\iLividSetup-r420-n-bc_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\iLividSetup-r420-n-bc_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SetupDataMngr_iLivid_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\SetupDataMngr_iLivid_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\DynamicPricerInstaller_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\DynamicPricerInstaller_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Softonic_DE_1-5-10_DE-Production_10_CleanRelease_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Softonic_DE_1-5-10_DE-Production_10_CleanRelease_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Softonic_DE_1-5-11_DE-Production_10_CleanRelease_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Softonic_DE_1-5-11_DE-Production_10_CleanRelease_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Softonic_EN_1-5-4_EN[1]_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Softonic_EN_1-5-4_EN[1]_RASMANCS Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Softonic_RASAPI32 Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\Softonic_RASMANCS ~~~ Files ~~~ Folders ~~~ FireFox Emptied folder: C:\Users\Power\AppData\Roaming\mozilla\firefox\profiles\j40q149r.default-1413664120597\minidumps [2 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on ned 19.10.2014 at 17:07:49,94 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Dopuna: 19 Okt 2014 17:50 Jel mogu sad opet da aktiviram Avast?

Profil

Sass Drake Poslao: 19 Okt 2014 20:19 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Aktiviraj ga slobodno. Reci mi kakvo je sad stanje sistema? Da li sad možeš instalirati MBAM?

Profil

Tamara Radojkovic-Ristic Poslao: 20 Okt 2014 00:43 Idi na vrh
offline Tamara Radojkovic-Ristic Novi MyCity građanin Pridružio: 26 Nov 2012 Poruke: 18	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Sve sad funkcionise i pretrazivaci normalno rade i ne koci vise... Hvala na pomoci.

Profil

Sass Drake Poslao: 20 Okt 2014 00:54 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Nismo još gotovi. Imao još jednu provjeru da obavimo. Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop. Dvoklikom pokreni MBAR () na ikonicu programa: - Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u; - mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.; - U uvodnom prozoru klikni dugme Next ukoliko si saglasan; • Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next; • Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan; Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka: - 'Could not load protection driver' => u tom slucaju klikni OK. - 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta. >> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje. >> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje. - Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja. Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe: - Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ... - Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem. Sledeci izvestaji ce biti formirani u mbar folderu. 1. mbar-log-year-month-day (hour-minute-second).txt 2. system-log.txt Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.

Profil

Tamara Radojkovic-Ristic Poslao: 20 Okt 2014 15:23 Idi na vrh
offline Tamara Radojkovic-Ristic Novi MyCity građanin Pridružio: 26 Nov 2012 Poruke: 18	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Uradila sam i to.. Malwarebytes Anti-Rootkit BETA 1.07.0.1012 [Link mogu videti samo ulogovani korisnici] Database version: v2014.10.20.03 Windows 7 x64 NTFS Internet Explorer 8.0.7600.16385 Power :: POWER-PC [administrator] 20.10.2014 14:49:07 mbar-log-2014-10-20 (14-49-07).txt Scan type: Quick scan Scan options enabled: Anti-Rootkit \| Drivers \| MBR \| Physical Sectors \| Memory \| Startup \| Registry \| File System \| Heuristics/Extra \| Heuristics/Shuriken Scan options disabled: Objects scanned: 329909 Time elapsed: 10 minute(s), 35 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) Physical Sectors Detected: 0 (No malicious items detected) (end) [Link mogu videti samo ulogovani korisnici]

Profil

Sass Drake Poslao: 20 Okt 2014 15:51 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Onda bi to bilo to. OStaje ti još da uradiš sljedeće: • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja. Preporučujem da za zaštitu USB memorijskih uređaja koristiš MCShield. Nema nikakve veze sa antivirus-om tj. neće ometati njegov rad, a pokazao se kao jedan od najboljih vida zaštite od malware-a koji se prenosi putem USB mem. uređaja. Home Page MCShield-a: [Link mogu videti samo ulogovani korisnici] Više o MCShield-u možeš saznati u ovoj temi: [Link mogu videti samo ulogovani korisnici] Facebook stranica MCShield-a: [Link mogu videti samo ulogovani korisnici] Preporučujem ti da instaliraš Service Pack 1 za tvoj Windows 7 operativni sistem. Možeš ga preuzeti sa ovog linka: Windows 7 SP1 x64 Zatim pokreni Windows Update (Start -> All Programs -> Windows Update) i instaliraj ponuđene zakrpe. Ako se odlučiš na ovu preporuku imaj na umu da može jako dugo potrajati dok se to sve ne završi.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Problem sa pretrazivacima..

Ko je trenutno na forumu

Ukupno su 926 korisnika na forumu :: 61 registrovanih, 9 sakrivenih i 856 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 33 bren, Alexandar-1973, ArmFPGA, arsa, Arsenije, baltazar01, bigfoot, bobomicek, Boris BM, Boris90, borya90, boxbole, brause, ccoogg123, crnirocko, d.arsenal321, debeli, Demi87, Dežurni_Automatičar, doktor097, dule10savic, Džordžino, Electron, Georgius, GT, jackreacher011011, KonstantinR, ljuba.b, mdp92, mercedesamg, miki kv, milan.tatanac1, milenko crazy north, MILO-VAN, Mrav Obrad, nebidrag, nebojsag, nemkea71, NMNJ, NNPD, Nobunaga, Paklenica, pceklic, Pero, Povratak1912, precan, radoznao, raso76, RD84, sasa87, smerch, sova72, spalev, synergia, tecataki, vathra, VJ, vjetar, Vlado82, Volkcho, zeka013

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by