Možda tražite i:
kako da pronadjem ukraden lap top
cuje se "clik clik" sa lap-top
hp lap top
lap top i tv

MyCity » Ambulanta -> Arhiva Ambulante » lap top virusi

lap top virusi

Napisano na dan: 13.5.2015

Strana:
1
2

lap top virusi

Sledeća strana

Pagination

Odgovori

Strana:
1
2

jovann1994 Poslao: 13 Maj 2015 11:34 Idi na vrh
offline jovann1994 Ugledni građanin Pridružio: 30 Avg 2014 Poruke: 314 Gde živiš: Montenegro	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: lap top se koristi za rad na poslu i bitno je da mi program neki za ciscenje njega ne obrise potrebne podatke,a na google stranice sve same iskacu i bas je spor lap top pa je potrebna pomoc Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-05-2015 Ran by dell (administrator) on DELL-PC on 13-05-2015 11:25:33 Running from C:\Users\dell\Desktop Loaded Profiles: dell (Available profiles: dell) Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: English (United States) Internet Explorer Version 11 (Default browser: Opera) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (SysTool PasSame LIMITED) C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Atheros Commnucations) C:\Program Files\Dell Wireless\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files\Dell Wireless\Bluetooth Suite\AthBtTray.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe () C:\Program Files\T-Mobile Internet Manager\UIExec.exe (Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Google Inc.) C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler.exe (ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Atheros) C:\Program Files\Dell Wireless\Ath_CoexAgent.exe (Atheros Commnucations) C:\Program Files\Dell Wireless\Bluetooth Suite\AdminService.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe () C:\Program Files\T-Mobile Internet Manager\AssistantServices.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Search Protect) C:\Program Files\SearchProtect\Main\bin\CltMngSvc.exe (Microsoft Corporation) C:\Windows\System32\wuauclt.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-08-06] (Advanced Micro Devices, Inc.) HKLM\...\Run: [AtherosBtStack] => C:\Program Files\Dell Wireless\Bluetooth Suite\BtvStack.exe [490656 2011-03-31] (Atheros Commnucations) HKLM\...\Run: [AthBtTray] => C:\Program Files\Dell Wireless\Bluetooth Suite\AthBtTray.exe [302240 2011-03-31] (Atheros Commnucations) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2219184 2011-01-12] (ESET) HKLM\...\Run: [UIExec] => C:\Program Files\T-Mobile Internet Manager\UIExec.exe [136328 2010-03-02] () HKLM\...\Run: [] => [X] HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2014-12-03] (Adobe Systems Incorporated) HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2014-12-03] (Adobe Systems Inc.) HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics Co., Ltd.) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [18678376 2013-05-09] (Skype Technologies S.A.) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\Run: [KiesPDLR.exe] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2015-02-24] (Samsung) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: E - E:\autorun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {0107643d-664e-11e2-98e9-c01885793332} - E:\Install.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {367e919e-49ef-11e2-9516-c01885793331} - E:\AutoRun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {367e91b3-49ef-11e2-9516-c01885793331} - E:\AutoRun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {de5d1453-6de0-11e2-adfe-c01885793332} - E:\autorun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [10240 2009-07-14] (Microsoft Corporation) AppInit_DLLs: C:\PROGRA~1\SearchProtect\SearchProtect\bin\VC32Loader.dll => C:\Program Files\SearchProtect\SearchProtect\bin\VC32Loader.dll [188224 2014-11-10] (Search Protect) Startup: C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2013-01-30] ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2009-02-09] (Autodesk, Inc.) CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com/web/?type=ds&ts=.....T7T&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=ds&ts=.....T7T&q={searchTerms} HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=about:blank HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp SearchScopes: HKLM -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://mysearch.sweetpacks.com/?src=6&q={searchTerms}&st=12&i=48&did=11034&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&barid=1605756575266169056 SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://search.conduit.com/Results.aspx?ctid=CT3321.....838&q={searchTerms}&SSPV= SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://search.conduit.com/Results.aspx?ctid=CT3321.....838&q={searchTerms}&SSPV= SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylon.com/?q={searchTerms}&affID=121183&babsrc=SP_ss_din2g&mntrId=7AB2E21885793331 SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {57150180-4691-4AC9-A82B-CCE91AACD844} URL = http://search.toggle.com/?lang=en&cid=adfaa7a7&q={searchTerms} SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://mysearch.sweetpacks.com?src=6&q={searchTerms}&barid=1605756575266169056&crg=&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&st=23&i=48&did=11034 BHO: BitSavoer -> {04025add-bc42-4e30-9674-cfb0e1a00875} -> C:\Program Files\BitSavoer\3jGCZGpAvdZqAk.dll [2015-05-12] () BHO: BitComet Helper -> {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} -> C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll [2013-11-29] (BitComet) BHO: NetoCioupono -> {51c10404-6489-4705-b775-ea3051f2483c} -> C:\Program Files\NetoCioupono\0RU8dA0ePtQslE.dll [2015-05-12] () BHO: GreaatSavee4UU -> {6db47201-0d30-4fd3-829c-a87be4b02102} -> C:\Program Files\GreaatSavee4UU\IGD2qNrRvR2XzL.dll [2015-05-13] () BHO: Fuun2Suave -> {6ed9d63f-43d3-4a4e-9cd9-a07f17b92c39} -> C:\Program Files\Fuun2Suave\qHp38pXY9eD1r8.dll [2015-05-04] () BHO: GreatSAAve44U -> {ae7e3a92-9a4e-4806-9ddd-23dcddd421c3} -> C:\Program Files\GreatSAAve44U\BNuyMalNPo6hAi.dll [2015-05-13] () BHO: HHappy2iSave -> {b328cfa4-cb3f-4439-b711-3d4bc9e7f0fd} -> C:\Program Files\HHappy2iSave\8Ad82He8KvUkyo.dll [2015-05-13] () BHO: COupExTenssion -> {c1da64d6-39bf-40ff-82e1-489450d99aa4} -> C:\Program Files\COupExTenssion\AJ0VnIKLfWCWLU.dll [2015-05-13] () Toolbar: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2014-12-03] (Adobe Systems Incorporated) Toolbar: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2013-05-30] (SweetIM Technologies Ltd.) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0055-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553530000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation) Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-11-22] (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga-plus.com/?type=sc&ts=1422.....XXS2WE1T7T FireFox: ======== FF ProfilePath: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default FF NewTab: hxxp://search.conduit.com/?ctid=CT3321459&octid=EB_ORIGINAL_CTID&SearchSource=69&CUI=&SSPV=&Lay=1&UM=2&UP=SPF08E9858-8AB8-4055-9354-8AD785914838 FF DefaultSearchUrl: FF Keyword.URL: hxxp://mysearch.sweetpacks.com/?src=2&st=12&i=48&did=11034&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&barid=1605756575266169056&q= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] () FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2013-04-02] (Google, Inc.) FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2014-12-03] (Adobe Systems Inc.) FF user.js: detected! => C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\user.js [2015-02-05] FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2013-05-10] (Adobe Systems Inc.) FF SearchPlugin: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\searchplugins\BrowserProtect.xml [2013-06-07] FF SearchPlugin: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\searchplugins\sweetim.xml [2014-06-13] FF SearchPlugin: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\searchplugins\Sweetpacks Search.xml [2014-05-29] FF SearchPlugin: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\searchplugins\toggle.xml [2013-02-13] FF SearchPlugin: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\searchplugins\trovi-search.xml [2014-11-17] FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-02-05] FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} [2015-02-05] FF HKLM\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files\T-Mobile Internet Manager\addon FF Extension: Bytemobile Optimization Client - C:\Program Files\T-Mobile Internet Manager\addon [2013-01-24] FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-02-13] FF HKLM\...\Firefox\Extensions: [speedanalysis@SpeedAnalysis.com] - C:\Users\dell\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com FF Extension: SpeedAnalysis.com - C:\Users\dell\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com [2013-03-31] FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-08-02] FF HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\Firefox\Extensions: [speedanalysis@SpeedAnalysis.com] - C:\Users\dell\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\e9d197d59f2f45f382b1aa5c14d82@8706aaed9b904554b5cb7984e9.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\PDVDZDW52397720@XDDWJXW57740856.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\551f2920-3c19-11e1-b86c-0800200c9a66@jetpack [Not Found] FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found] FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2015-02-05] <==== ATTENTION Chrome: ======= CHR dev: Chrome dev build detected! <======= ATTENTION CHR StartupUrls: Default -> "hxxp://www.google.rs/" CHR DefaultSuggestURL: Default -> http://ssmsp.ask.com/query?sstype=prefix&li=ff&q={searchTerms} CHR Profile: C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Ask Search) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaabcdhikdcpainmmjceakmkacogdko [2015-05-05] CHR Extension: (Google Slides) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-27] CHR Extension: (Google Docs) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-27] CHR Extension: (Google Drive) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-27] CHR Extension: (YouTube) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-27] CHR Extension: (SpeedAnalysis.com) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfcbmgbfdbijmjgjihagbomfbjfjmgon [2015-04-27] CHR Extension: (Google Search) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-27] CHR Extension: (Google Sheets) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-27] CHR Extension: (Bookmark Manager) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-27] CHR Extension: (CNN News) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlbmobpknbcilinljgcbogfcofhcbkem [2015-05-13] CHR Extension: (Snow) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdcgdhlccojbnonmhcioigcdodakjcmh [2015-05-12] CHR Extension: (HDvid Codec) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli [2015-04-27] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-05] CHR Extension: (Youtube Preview Is it worth watching) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nacgopecogaedhhjdfondlcobjofdhap [2015-04-28] CHR Extension: (iLivid) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafaimnnclfjfedmmabolbppcngeolgf [2015-05-05] CHR Extension: (Google Wallet) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-27] CHR Extension: (Free Games Zone) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\oppjbdkgpfhhllancffaoaemplhkngoc [2015-05-05] CHR Extension: (HoofSounds) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pakhjhphleppgakhlffhlfhbekfnobbk [2015-05-13] CHR Extension: (Gmail) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-27] CHR HKLM\...\Chrome\Extension: [cfcbmgbfdbijmjgjihagbomfbjfjmgon] - C:\Users\dell\AppData\Roaming\SpeedanAlysis\speedanalysis.crx [2013-02-14] CHR HKLM\...\Chrome\Extension: [kpkbnefaikfaeadgidhpoanckoiaheli] - C:\Program Files\HDvidCodec.com\HDvidCodec10.crx [2013-04-17] CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-11-22] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 7eed278e; c:\Program Files\SystemContinue\SystemContinue.dll [1963008 2015-02-27] () [File not signed] R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [294400 2011-08-06] (Advanced Micro Devices, Inc.) [File not signed] R2 Atheros Bt&Wlan Coex Agent; C:\Program Files\Dell Wireless\Ath_CoexAgent.exe [135168 2011-02-16] (Atheros) [File not signed] R2 AtherosSvc; C:\Program Files\Dell Wireless\Bluetooth Suite\adminservice.exe [72864 2011-03-31] (Atheros Commnucations) [File not signed] R2 b92b1769; c:\Program Files\SystemMolder\SystemMolder.dll [1584640 2015-04-21] () [File not signed] S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com) S2 BrowserProtect; C:\ProgramData\BrowserProtect\2.6.1519.190\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe [0 2013-08-07] () <==== ATTENTION (zero size file/folder) R2 CltMngSvc; C:\Program Files\SearchProtect\Main\bin\CltMngSvc.exe [3056960 2014-11-10] (Search Protect) S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [33584 2011-01-12] (ESET) R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [810144 2011-01-12] (ESET) S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2012-08-02] (Macrovision Europe Ltd.) [File not signed] R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.) R2 UI Assistant Service; C:\Program Files\T-Mobile Internet Manager\AssistantServices.exe [245384 2010-03-02] () [File not signed] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [464384 2015-01-30] (SysTool PasSame LIMITED) [File not signed] <==== ATTENTION S2 IBUpdaterService; %SystemRoot%\system32\dmwu.exe [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 AthBTPort; C:\Windows\System32\DRIVERS\btath_flt.sys [34976 2011-03-31] (Atheros) S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1570304 2011-04-20] (Atheros Communications, Inc.) U0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [22528 2010-02-10] (Bytemobile, Inc.) [File not signed] S3 BTATH_A2DP; C:\Windows\System32\drivers\btath_a2dp.sys [259232 2011-03-31] (Atheros) R3 BTATH_BUS; C:\Windows\System32\DRIVERS\btath_bus.sys [24736 2011-03-31] (Atheros) S3 BTATH_HCRP; C:\Windows\System32\DRIVERS\btath_hcrp.sys [175776 2011-03-31] (Atheros) S3 BTATH_RCP; C:\Windows\System32\DRIVERS\btath_rcp.sys [141088 2011-03-31] (Atheros) S3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [243360 2011-03-31] (Atheros) R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [137144 2010-12-21] (ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [115008 2010-12-21] (ESET) R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [95384 2010-12-21] (ESET) R3 mcdbus; C:\Windows\System32\DRIVERS\mcdbus.sys [116736 2009-02-24] (MagicISO, Inc.) [File not signed] R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [114408 2013-12-16] (Power Software Ltd) S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] R3 SPPD; \??\C:\Windows\system32\drivers\SPPD.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-13 11:25 - 2015-05-13 11:26 - 00024428 _____ () C:\Users\dell\Desktop\FRST.txt 2015-05-13 11:25 - 2015-05-13 11:25 - 00000000 ____D () C:\FRST 2015-05-13 11:24 - 2015-05-13 11:24 - 01141248 _____ (Farbar) C:\Users\dell\Desktop\FRST.exe 2015-05-13 11:04 - 2015-05-13 11:15 - 00000000 ____D () C:\Users\dell\AppData\Roaming\BitTorrent 2015-05-13 10:39 - 2015-05-13 10:40 - 01999976 _____ (BitTorrent Inc.) C:\Users\dell\Downloads\BitTorrent.exe 2015-05-13 08:23 - 2015-05-13 08:23 - 00000000 ____D () C:\Program Files\COupExTenssion 2015-05-13 08:22 - 2015-05-13 08:22 - 00000000 ____D () C:\Program Files\HoofSounds 2015-05-13 08:22 - 2015-05-13 08:22 - 00000000 ____D () C:\Program Files\HHappy2iSave 2015-05-13 08:22 - 2015-05-13 08:22 - 00000000 ____D () C:\Program Files\500CCouupons 2015-05-13 07:43 - 2015-05-13 07:44 - 00000000 ____D () C:\Program Files\GreatSAAve44U 2015-05-13 07:43 - 2015-05-13 07:43 - 00000000 ____D () C:\Program Files\CNN News 2015-05-13 07:42 - 2015-05-13 07:42 - 00000000 ____D () C:\Program Files\SaVeLLoTS 2015-05-13 07:42 - 2015-05-13 07:42 - 00000000 ____D () C:\Program Files\GreaatSavee4UU 2015-05-12 13:19 - 2015-05-12 13:19 - 00034041 _____ () C:\Users\dell\Downloads\208379-the.captive.2014.1080p.bluray.x264.yify.zip 2015-05-12 13:18 - 2015-05-12 13:18 - 00014213 _____ () C:\Users\dell\Downloads\205531-sword.of.vengeance.2015.webdl.zip 2015-05-12 09:19 - 2015-05-12 09:19 - 00000000 ____D () C:\Program Files\Snow 2015-05-12 09:19 - 2015-05-12 09:19 - 00000000 ____D () C:\Program Files\NetoCioupono 2015-05-12 09:18 - 2015-05-12 09:18 - 00000000 ____D () C:\Program Files\FindBeesetDeael 2015-05-12 09:18 - 2015-05-12 09:18 - 00000000 ____D () C:\Program Files\BitSavoer 2015-05-11 11:01 - 2015-05-11 11:01 - 00017597 _____ () C:\Users\dell\Downloads\The Captive (2014) [1080p] YIFY - YTS.torrent 2015-05-11 11:01 - 2015-05-11 11:01 - 00017597 _____ () C:\Users\dell\Downloads\The Captive (2014) [1080p] YIFY - YTS (1).torrent 2015-05-11 11:00 - 2015-05-11 11:01 - 00007780 _____ () C:\Users\dell\Downloads\Sword Of Vengeance (2015) [720p] YIFY - YTS.torrent 2015-05-11 10:56 - 2015-05-12 12:43 - 01162173 _____ () C:\Users\dell\Desktop\PP I MB30 pumpani 4 FRAKCIJE TRANSPETROL.xlsx 2015-05-11 10:29 - 2015-05-11 10:29 - 00000000 ____D () C:\Program Files\Common Files\Java 2015-05-11 10:21 - 2015-05-11 10:21 - 00562272 _____ (Oracle Corporation) C:\Users\dell\Downloads\chromeinstall-8u45.exe 2015-05-07 07:19 - 2015-05-07 07:19 - 00002167 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-05-07 07:19 - 2015-05-07 07:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-05-06 14:06 - 2015-05-06 14:06 - 00038332 _____ () C:\Users\dell\Downloads\208154-jupiter.ascending.2015.720p.bluray.x264.yify.zip 2015-05-05 13:46 - 2015-05-05 13:46 - 00040299 _____ () C:\Users\dell\Downloads\205331-unbroken.2014.brrip.zip 2015-05-05 11:49 - 2015-05-05 11:49 - 05893354 _____ () C:\Users\dell\Desktop\mehanizacija 04 05 2015.rar 2015-05-04 11:56 - 2015-05-12 12:34 - 00000000 ____D () C:\Users\dell\Desktop\Mjesavine 2015-05-04 11:56 - 2015-05-04 11:56 - 00025829 _____ () C:\Users\dell\Downloads\Mjesavine.rar 2015-05-04 11:56 - 2015-05-04 11:56 - 00025829 _____ () C:\Users\dell\Desktop\Mjesavine.rar 2015-05-04 08:28 - 2015-05-07 11:54 - 00000000 ____D () C:\Users\dell\Desktop\mehanizacija 04 05 2015 2015-05-04 08:09 - 2015-05-04 08:09 - 00000000 ____D () C:\Program Files\Fuun2Suave 2015-04-29 07:47 - 2015-05-04 08:09 - 00000000 ____D () C:\Program Files\DigiSauver 2015-04-28 14:20 - 2015-04-28 14:20 - 19401477 _____ () C:\Users\dell\Downloads\DIY Flower Crown!.mp4 2015-04-28 14:15 - 2015-04-28 14:15 - 04825004 _____ () C:\Users\dell\Downloads\Learn to Make Paper Flowers! (1).mp4 2015-04-28 14:13 - 2015-04-28 14:15 - 36716756 _____ () C:\Users\dell\Downloads\videoplayback.mp4 2015-04-28 14:09 - 2015-04-28 14:09 - 04825004 _____ () C:\Users\dell\Downloads\Learn to Make Paper Flowers!.mp4 2015-04-28 14:07 - 2015-04-28 14:09 - 33160301 _____ () C:\Users\dell\Downloads\Fabrication d'une rose en collant - Nylon Rose.mp4 2015-04-28 14:06 - 2015-04-28 14:06 - 08292301 _____ () C:\Users\dell\Downloads\Instruction for nylon flower - lotus.mp4 2015-04-28 14:02 - 2015-04-28 14:03 - 24271788 _____ () C:\Users\dell\Downloads\DIY Instruction- How to Make Wedding Flower - Calla Lily - Nylon Stocking flower.mp4 2015-04-28 13:57 - 2015-04-28 13:59 - 33925344 _____ () C:\Users\dell\Downloads\Tissue Paper Butterfly.mp4 2015-04-28 13:54 - 2015-04-28 13:55 - 09860415 _____ () C:\Users\dell\Downloads\How to make a Tissue Paper Flower very easily.....mp4 2015-04-28 08:12 - 2015-04-28 08:12 - 00000000 ____D () C:\Program Files\Youtube Preview Is it worth watching 2015-04-28 08:11 - 2015-04-29 07:48 - 00000000 ____D () C:\Program Files\5o00CoupoNso 2015-04-28 08:11 - 2015-04-29 07:47 - 00000000 ____D () C:\Program Files\DIoscOuntExtenisi 2015-04-28 08:11 - 2015-04-28 08:11 - 00000000 ____D () C:\Program Files\FUn2Save 2015-04-27 08:02 - 2015-05-06 13:32 - 00000020 _____ () C:\Users\dell\AppData\Roaming\appdataFr3.bin 2015-04-27 08:02 - 2015-04-27 08:02 - 00000000 ____D () C:\ProgramData\Block The Ads 2015-04-24 12:20 - 2015-04-24 12:22 - 25940056 _____ () C:\Users\dell\Downloads\L. N.Tolstoj o religiji.mp4 2015-04-22 10:17 - 2014-11-25 18:32 - 00000000 ____D () C:\Users\dell\Downloads\T-MST10PDEUC 2015-04-21 08:18 - 2015-04-21 08:18 - 00000000 ____D () C:\ProgramData\{34a5fb3d-6bb9-3551-34a5-5fb3d6bbecf5} 2015-04-21 07:35 - 2015-04-21 07:35 - 00000000 ____D () C:\Program Files\SystemMolder 2015-04-21 07:34 - 2015-04-27 07:50 - 00000000 ____D () C:\Program Files\ClearNiceeBRowse 2015-04-21 07:34 - 2015-04-21 07:34 - 00000000 ____D () C:\Program Files\metalmouth voice browser 2015-04-21 07:33 - 2015-04-29 07:48 - 00000000 ____D () C:\Program Files\RighitOOffeRuAppP 2015-04-21 07:33 - 2015-04-21 07:33 - 00000000 ____D () C:\Program Files\DiscountExt 2015-04-15 07:57 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-04-15 07:57 - 2015-03-23 05:06 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-04-15 07:57 - 2015-03-23 05:06 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-04-15 07:57 - 2015-03-23 05:06 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-04-15 07:57 - 2015-03-23 05:06 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-04-15 07:57 - 2015-03-23 05:06 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-04-15 07:57 - 2015-03-23 05:06 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-04-15 07:57 - 2015-03-23 05:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-04-15 07:57 - 2015-03-23 04:59 - 00896000 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-04-15 07:57 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2015-04-15 07:57 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-04-15 07:57 - 2015-03-17 07:01 - 00137656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-04-15 07:57 - 2015-03-17 07:01 - 00067512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-04-15 07:57 - 2015-03-17 06:59 - 01306112 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-04-15 07:57 - 2015-03-17 06:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-04-15 07:57 - 2015-03-17 06:56 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-04-15 07:57 - 2015-03-17 06:56 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-04-15 07:57 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-04-15 07:57 - 2015-03-17 06:56 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-04-15 07:57 - 2015-03-17 06:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-04-15 07:57 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-04-15 07:57 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-04-15 07:57 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-04-15 07:57 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-04-15 07:57 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-04-15 07:57 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-04-15 07:57 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-04-15 07:57 - 2015-03-13 05:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-04-15 07:57 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-04-15 07:57 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-04-15 07:57 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-04-15 07:57 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-04-15 07:57 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-04-15 07:57 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-04-15 07:57 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-04-15 07:57 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-04-15 07:57 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-04-15 07:57 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-04-15 07:57 - 2015-03-13 05:16 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-04-15 07:57 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-04-15 07:57 - 2015-03-13 05:09 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-04-15 07:57 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-04-15 07:57 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-04-15 07:57 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-04-15 07:57 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-04-15 07:57 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-04-15 07:57 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-04-15 07:57 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-04-15 07:57 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-04-15 07:57 - 2015-03-13 04:43 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-04-15 07:57 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-04-15 07:57 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-04-15 07:57 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-04-15 07:57 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-04-15 07:57 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-04-15 07:53 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys 2015-04-15 07:53 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll 2015-04-15 07:46 - 2015-03-05 06:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2015-04-15 07:41 - 2015-03-25 05:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-04-15 07:41 - 2015-03-25 05:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-04-15 07:41 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-04-15 07:41 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-04-15 07:41 - 2015-03-25 05:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-04-15 07:41 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-04-15 07:41 - 2015-03-25 05:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-04-15 07:41 - 2015-03-25 05:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-04-15 07:41 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-04-15 07:41 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-04-15 07:41 - 2015-03-25 05:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-04-15 07:41 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2015-04-15 07:41 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2015-04-15 07:41 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-13 11:21 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\tracing 2015-05-13 11:16 - 2013-07-18 23:25 - 00000000 ____D () C:\Windows\pss 2015-05-13 11:09 - 2012-08-02 15:02 - 00000000 ____D () C:\Users\dell\AppData\Roaming\Skype 2015-05-13 10:57 - 2013-02-06 12:23 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-13 10:44 - 2012-08-02 15:01 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-05-13 08:23 - 2015-03-06 08:55 - 00000000 ____D () C:\ProgramData\17789729017210468518 2015-05-13 07:31 - 2012-08-02 21:24 - 01918424 _____ () C:\Windows\WindowsUpdate.log 2015-05-13 07:28 - 2010-11-20 23:01 - 00782398 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-05-13 07:27 - 2009-07-14 06:34 - 00031504 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-05-13 07:27 - 2009-07-14 06:34 - 00031504 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-05-13 07:21 - 2013-07-19 14:56 - 00046283 _____ () C:\Windows\setupact.log 2015-05-13 07:21 - 2013-02-06 12:23 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-13 07:21 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-05-11 14:19 - 2014-02-13 16:32 - 00000000 ____D () C:\Users\dell\AppData\Roaming\BitComet 2015-05-11 11:04 - 2013-02-24 13:23 - 00000000 ____D () C:\Users\dell\AppData\Local\CrashDumps 2015-05-11 10:28 - 2014-05-05 13:40 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2015-05-11 10:27 - 2014-02-06 15:14 - 00000000 ____D () C:\ProgramData\Oracle 2015-05-11 10:27 - 2013-03-31 14:58 - 00000000 ____D () C:\Program Files\Java 2015-05-08 07:29 - 2013-08-09 06:19 - 00077034 _____ () C:\Windows\PFRO.log 2015-05-07 07:18 - 2012-08-02 14:39 - 00000000 ____D () C:\Program Files\Google 2015-05-04 11:59 - 2014-07-31 10:44 - 00000000 ____D () C:\Users\dell\Desktop\boris probe radni 2015-05-04 08:44 - 2015-01-20 08:56 - 00000000 ____D () C:\Users\dell\Desktop\RADNI ZAPISI U LAB 2015-04-30 10:17 - 2014-08-04 09:40 - 00000000 ____D () C:\Users\dell\Desktop\boris probe radni -Mehanizacija 2015-04-29 07:54 - 2015-02-12 14:12 - 00000000 ____D () C:\ProgramData\{fc979542-a4fa-d926-fc97-79542a4f550a} 2015-04-27 07:26 - 2012-08-02 14:40 - 00000000 ____D () C:\Users\dell\AppData\Local\Google 2015-04-21 07:33 - 2015-04-03 07:59 - 00000000 ____D () C:\Program Files\GreaatSavea4U 2015-04-21 07:33 - 2015-03-06 08:55 - 00000000 ____D () C:\Program Files\FindBESTDueal 2015-04-17 09:15 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat 2015-04-16 09:39 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache 2015-04-16 08:46 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2015-04-16 07:29 - 2014-12-11 07:56 - 00000000 ____D () C:\Windows\system32\appraiser 2015-04-16 07:29 - 2014-05-07 06:48 - 00000000 ___SD () C:\Windows\system32\CompatTel 2015-04-15 14:39 - 2013-10-28 15:30 - 00000000 ____D () C:\Windows\system32\MRT 2015-04-15 14:39 - 2013-10-28 15:29 - 125832184 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-04-15 09:45 - 2012-08-02 15:01 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-04-15 09:45 - 2012-08-02 15:01 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl ==================== Files in the root of some directories ======= 2015-04-27 08:02 - 2015-05-06 13:32 - 0000020 _____ () C:\Users\dell\AppData\Roaming\appdataFr3.bin 2013-03-31 14:50 - 2013-03-31 14:49 - 0030894 _____ () C:\Users\dell\AppData\Roaming\speedanalysis.ico Some content of TEMP: ==================== C:\Users\dell\AppData\Local\Temp\5197415732012515363.exe C:\Users\dell\AppData\Local\Temp\92D0.exe C:\Users\dell\AppData\Local\Temp\ebcabfcdceg.exe C:\Users\dell\AppData\Local\Temp\F1543c79fa.exe C:\Users\dell\AppData\Local\Temp\gtalkwmp1.dll C:\Users\dell\AppData\Local\Temp\ICReinstall_setup.exe C:\Users\dell\AppData\Local\Temp\install_flashplayer11x32_mssd_aaa_aih.exe C:\Users\dell\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe C:\Users\dell\AppData\Local\Temp\mgsqlite3.dll C:\Users\dell\AppData\Local\Temp\nsa32D9.tmp.exe C:\Users\dell\AppData\Local\Temp\nsl3BDF.exe C:\Users\dell\AppData\Local\Temp\nsl9AA4.exe C:\Users\dell\AppData\Local\Temp\nsq417B.exe C:\Users\dell\AppData\Local\Temp\nsv46C9.exe C:\Users\dell\AppData\Local\Temp\nsvA0FB.exe C:\Users\dell\AppData\Local\Temp\nsvA762.exe C:\Users\dell\AppData\Local\Temp\playerfile.exe C:\Users\dell\AppData\Local\Temp\safeguard.exe C:\Users\dell\AppData\Local\Temp\SoftonicAssistant_v0-1-6.exe C:\Users\dell\AppData\Local\Temp\Softonic_EN_1-5-11_EN-Production_10_CleanRelease.exe C:\Users\dell\AppData\Local\Temp\sp-downloader.exe C:\Users\dell\AppData\Local\Temp\SPIdentifier.exe C:\Users\dell\AppData\Local\Temp\tu17p84.exe C:\Users\dell\AppData\Local\Temp\uninst1.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-05-04 10:20 ==================== End Of Log ============================ https://www.mycity.rs/must-login.png

Profil

magna86 Poslao: 13 Maj 2015 12:25 Idi na vrh
offline magna86 Anti Malware Fighter Rank 2 Pridružio: 21 Jun 2008 Poruke: 6104	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Zdravo Jovane, molim procitaj pravilnik Ambulanta foruma: http://www.mycity.rs/Ambulanta/Pravila-ovog-dela-foruma.html

Profil

helen1 Poslao: 16 Maj 2015 11:11 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8620 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Zdravo, po drugi put. 1. Potrebno je i ovde reinstalirati Chrome. 2. Preuzmi "Xplode"-ov AdwCleaner () i sacuvaj ga na Desktop Dvoklikom pokreni program. Klikni na dugme [Scan] i pricekaj da program zavrsi. Klikni na dugme [Clean] Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu. Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem. Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl" Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S0].txt 3. Postavi mi novi FRST log i Addition log.

Profil

jovann1994 Poslao: 18 Maj 2015 08:57 Idi na vrh
offline jovann1994 Ugledni građanin Pridružio: 30 Avg 2014 Poruke: 314 Gde živiš: Montenegro	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 16 Maj 2015 11:27 Brzo cu i ovo ispratit samo da lap top donesem od majstora zbog dugmeta je na opravku Dopuna: 18 Maj 2015 8:52 https://www.mycity.rs/must-login.png Dopuna: 18 Maj 2015 8:57 Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-05-2015 02 Ran by dell (administrator) on DELL-PC on 18-05-2015 08:53:02 Running from C:\Users\dell\Desktop Loaded Profiles: dell (Available profiles: dell) Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Atheros) C:\Program Files\Dell Wireless\Ath_CoexAgent.exe (Atheros Commnucations) C:\Program Files\Dell Wireless\Bluetooth Suite\AdminService.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe () C:\Program Files\T-Mobile Internet Manager\AssistantServices.exe (Google Inc.) C:\Program Files\Google\Update\1.3.27.5\GoogleCrashHandler.exe (Atheros Commnucations) C:\Program Files\Dell Wireless\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files\Dell Wireless\Bluetooth Suite\AthBtTray.exe (Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe () C:\Program Files\T-Mobile Internet Manager\UIExec.exe (Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (BitTorrent Inc.) C:\Users\dell\AppData\Roaming\BitTorrent\BitTorrent.exe (www.BitComet.com) C:\Program Files\BitComet\BitComet.exe (www.BitComet.com) C:\Program Files\BitComet\tools\BitCometService.exe (ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-08-06] (Advanced Micro Devices, Inc.) HKLM\...\Run: [AtherosBtStack] => C:\Program Files\Dell Wireless\Bluetooth Suite\BtvStack.exe [490656 2011-03-31] (Atheros Commnucations) HKLM\...\Run: [AthBtTray] => C:\Program Files\Dell Wireless\Bluetooth Suite\AthBtTray.exe [302240 2011-03-31] (Atheros Commnucations) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2219184 2011-01-12] (ESET) HKLM\...\Run: [UIExec] => C:\Program Files\T-Mobile Internet Manager\UIExec.exe [136328 2010-03-02] () HKLM\...\Run: [] => [X] HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2014-12-03] (Adobe Systems Incorporated) HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2014-12-03] (Adobe Systems Inc.) HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics Co., Ltd.) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [18678376 2013-05-09] (Skype Technologies S.A.) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\Run: [KiesPDLR.exe] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2015-02-24] (Samsung) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\Run: [BitTorrent] => C:\Users\dell\AppData\Roaming\BitTorrent\BitTorrent.exe [1999976 2015-05-13] (BitTorrent Inc.) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\Run: [BitComet] => C:\Program Files\BitComet\BitComet.exe [14276784 2013-12-31] (www.BitComet.com) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: E - E:\autorun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {0107643d-664e-11e2-98e9-c01885793332} - E:\Install.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {367e919e-49ef-11e2-9516-c01885793331} - E:\AutoRun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {367e91b3-49ef-11e2-9516-c01885793331} - E:\AutoRun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {de5d1453-6de0-11e2-adfe-c01885793332} - E:\autorun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [10240 2009-07-14] (Microsoft Corporation) Startup: C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2013-01-30] ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2009-02-09] (Autodesk, Inc.) CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=about:blank HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp SearchScopes: HKLM -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://mysearch.sweetpacks.com/?src=6&q={searchTerms}&st=12&i=48&did=11034&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&barid=1605756575266169056 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {57150180-4691-4AC9-A82B-CCE91AACD844} URL = http://search.toggle.com/?lang=en&cid=adfaa7a7&q={searchTerms} SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://mysearch.sweetpacks.com?src=6&q={searchTerms}&barid=1605756575266169056&crg=&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&st=23&i=48&did=11034 BHO: BitComet Helper -> {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} -> C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll [2013-11-29] (BitComet) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-05-14] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-14] (Oracle Corporation) Toolbar: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2014-12-03] (Adobe Systems Incorporated) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0055-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553530000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation) Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-11-22] (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 FireFox: ======== FF ProfilePath: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default FF DefaultSearchUrl: FF Keyword.URL: hxxp://mysearch.sweetpacks.com/?src=2&st=12&i=48&did=11034&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&barid=1605756575266169056&q= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] () FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2013-04-02] (Google, Inc.) FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-14] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-14] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-14] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-14] (Google Inc.) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2014-12-03] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2013-05-10] (Adobe Systems Inc.) FF SearchPlugin: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\searchplugins\toggle.xml [2013-02-13] FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-02-05] FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} [2015-02-05] FF HKLM\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files\T-Mobile Internet Manager\addon FF Extension: Bytemobile Optimization Client - C:\Program Files\T-Mobile Internet Manager\addon [2013-01-24] FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-02-13] FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-08-02] FF Extension: SpeedAnalysis.com - C:\Users\dell\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com [2013-03-31] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\e9d197d59f2f45f382b1aa5c14d82@8706aaed9b904554b5cb7984e9.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\PDVDZDW52397720@XDDWJXW57740856.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\551f2920-3c19-11e1-b86c-0800200c9a66@jetpack [Not Found] FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found] FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2015-02-05] <==== ATTENTION Chrome: ======= CHR dev: Chrome dev build detected! <======= ATTENTION CHR StartupUrls: Default -> "hxxp://www.google.rs/" CHR Profile: C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (YouTube) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-27] CHR Extension: (Google Search) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-27] CHR Extension: (Gmail) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-27] CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-11-22] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [294400 2011-08-06] (Advanced Micro Devices, Inc.) [File not signed] R2 Atheros Bt&Wlan Coex Agent; C:\Program Files\Dell Wireless\Ath_CoexAgent.exe [135168 2011-02-16] (Atheros) [File not signed] R2 AtherosSvc; C:\Program Files\Dell Wireless\Bluetooth Suite\adminservice.exe [72864 2011-03-31] (Atheros Commnucations) [File not signed] R3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com) R2 DiagTrack; C:\Windows\system32\diagtrack.dll [851456 2015-04-27] (Microsoft Corporation) S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [33584 2011-01-12] (ESET) R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [810144 2011-01-12] (ESET) S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2012-08-02] (Macrovision Europe Ltd.) [File not signed] R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.) R2 UI Assistant Service; C:\Program Files\T-Mobile Internet Manager\AssistantServices.exe [245384 2010-03-02] () [File not signed] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 AthBTPort; C:\Windows\System32\DRIVERS\btath_flt.sys [34976 2011-03-31] (Atheros) S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1570304 2011-04-20] (Atheros Communications, Inc.) U0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [22528 2010-02-10] (Bytemobile, Inc.) [File not signed] S3 BTATH_A2DP; C:\Windows\System32\drivers\btath_a2dp.sys [259232 2011-03-31] (Atheros) R3 BTATH_BUS; C:\Windows\System32\DRIVERS\btath_bus.sys [24736 2011-03-31] (Atheros) S3 BTATH_HCRP; C:\Windows\System32\DRIVERS\btath_hcrp.sys [175776 2011-03-31] (Atheros) S3 BTATH_RCP; C:\Windows\System32\DRIVERS\btath_rcp.sys [141088 2011-03-31] (Atheros) S3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [243360 2011-03-31] (Atheros) R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [137144 2010-12-21] (ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [115008 2010-12-21] (ESET) R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [95384 2010-12-21] (ESET) R3 mcdbus; C:\Windows\System32\DRIVERS\mcdbus.sys [116736 2009-02-24] (MagicISO, Inc.) [File not signed] R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [114408 2013-12-16] (Power Software Ltd) S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-18 08:53 - 2015-05-18 08:53 - 00018419 _____ () C:\Users\dell\Desktop\FRST.txt 2015-05-18 08:52 - 2015-05-18 08:52 - 00000000 ____D () C:\Users\dell\Desktop\FRST-OlderVersion 2015-05-18 08:50 - 2015-05-18 08:50 - 00038024 _____ () C:\Users\dell\Desktop\AdwCleaner[S0].txt 2015-05-18 08:38 - 2015-05-18 08:41 - 00000000 ____D () C:\AdwCleaner 2015-05-18 08:36 - 2015-05-18 08:36 - 02209792 _____ () C:\Users\dell\Desktop\AdwCleaner.exe 2015-05-18 08:02 - 2015-05-18 08:02 - 00000000 ____D () C:\Program Files\Smart QrCode Generator 2015-05-15 14:31 - 2015-05-15 14:31 - 00039402 _____ () C:\Users\dell\Downloads\208647-mcfarland.usa.2015.720p.bluray.x264geckos.zip 2015-05-15 14:30 - 2015-05-15 14:30 - 00038099 _____ () C:\Users\dell\Downloads\205153-theloft.zip 2015-05-15 14:29 - 2015-05-15 14:29 - 00030144 _____ () C:\Users\dell\Downloads\208650-ex.machina.2015.720p.bluray.x264sparks.zip 2015-05-15 09:00 - 2015-05-15 09:00 - 00013509 _____ () C:\Users\dell\Desktop\BitComet_1.37_x86_setup - Shortcut.lnk 2015-05-15 09:00 - 2015-05-15 09:00 - 00000929 _____ () C:\Users\Public\Desktop\BitComet.lnk 2015-05-15 09:00 - 2015-05-15 09:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet 2015-05-15 08:52 - 2015-05-15 08:52 - 00009472 _____ () C:\Users\dell\Downloads\Mcfarland Usa (2015) [720p] YIFY - YTS.torrent 2015-05-15 08:51 - 2015-05-15 08:51 - 00008860 _____ () C:\Users\dell\Downloads\The Loft (2014) [720p] YIFY - YTS.torrent 2015-05-15 08:51 - 2015-05-15 08:51 - 00008844 _____ () C:\Users\dell\Downloads\Ex Machina (2015) [720p] YIFY - YTS.torrent 2015-05-15 07:33 - 2015-05-18 07:24 - 00000024 _____ () C:\Users\dell\AppData\Roaming\appdataFr25.bin 2015-05-14 13:46 - 2015-05-15 14:26 - 00000000 ____D () C:\Users\dell\Desktop\HE PERUCICA 2015-05-14 11:28 - 2015-05-14 11:26 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2015-05-14 11:22 - 2015-05-14 11:22 - 00562272 _____ (Oracle Corporation) C:\Users\dell\Downloads\chromeinstall-8u45 (1).exe 2015-05-13 14:55 - 2015-05-01 15:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-05-13 11:25 - 2015-05-18 08:53 - 00000000 ____D () C:\FRST 2015-05-13 11:24 - 2015-05-18 08:52 - 01146368 _____ (Farbar) C:\Users\dell\Desktop\FRST.exe 2015-05-13 11:04 - 2015-05-18 08:53 - 00000000 ____D () C:\Users\dell\AppData\Roaming\BitTorrent 2015-05-13 10:39 - 2015-05-13 10:40 - 01999976 _____ (BitTorrent Inc.) C:\Users\dell\Downloads\BitTorrent.exe 2015-05-13 08:22 - 2015-05-13 08:22 - 00000000 ____D () C:\Program Files\HoofSounds 2015-05-13 07:55 - 2015-04-27 21:11 - 03989440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2015-05-13 07:55 - 2015-04-27 21:11 - 03934144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-05-13 07:55 - 2015-04-27 21:08 - 01307648 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-05-13 07:55 - 2015-04-27 21:05 - 00851456 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-05-13 07:55 - 2015-04-27 21:05 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-05-13 07:55 - 2015-04-27 20:00 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-05-13 07:55 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll 2015-05-13 07:54 - 2015-04-27 21:11 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-05-13 07:54 - 2015-04-27 21:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-05-13 07:54 - 2015-04-27 21:05 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-05-13 07:54 - 2015-04-27 21:04 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-05-13 07:54 - 2015-04-27 21:04 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-05-13 07:54 - 2015-04-27 21:04 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-05-13 07:54 - 2015-04-27 21:04 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-05-13 07:54 - 2015-04-27 21:04 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-05-13 07:54 - 2015-04-27 21:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-05-13 07:54 - 2015-04-27 21:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe 2015-05-13 07:54 - 2015-04-27 21:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-05-13 07:54 - 2015-04-27 21:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-05-13 07:54 - 2015-04-27 20:59 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-05-13 07:54 - 2015-04-27 20:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-05-13 07:54 - 2015-04-20 04:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-05-13 07:54 - 2015-04-20 04:56 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-05-13 07:54 - 2015-04-20 04:03 - 02382336 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-05-13 07:53 - 2015-05-05 03:12 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-05-13 07:53 - 2015-04-22 03:48 - 00342736 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-05-13 07:53 - 2015-04-21 18:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-05-13 07:53 - 2015-04-21 18:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-05-13 07:53 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-05-13 07:53 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-05-13 07:53 - 2015-04-21 18:11 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-05-13 07:53 - 2015-04-21 18:10 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-05-13 07:53 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-05-13 07:53 - 2015-04-21 18:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-05-13 07:53 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-05-13 07:53 - 2015-04-21 18:03 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-05-13 07:53 - 2015-04-21 18:02 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-05-13 07:53 - 2015-04-21 18:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-05-13 07:53 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-05-13 07:53 - 2015-04-21 17:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-05-13 07:53 - 2015-04-21 17:58 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-05-13 07:53 - 2015-04-21 17:57 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-05-13 07:53 - 2015-04-21 17:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-05-13 07:53 - 2015-04-21 17:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-05-13 07:53 - 2015-04-21 17:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-05-13 07:53 - 2015-04-21 17:39 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-05-13 07:53 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-05-13 07:53 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-05-13 07:53 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-05-13 07:53 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-05-13 07:53 - 2015-04-21 17:26 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-05-13 07:53 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-05-13 07:53 - 2015-04-21 17:24 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-05-13 07:53 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-05-13 07:53 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-05-13 07:53 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-05-13 07:53 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-05-13 07:53 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2015-05-13 07:53 - 2015-04-13 05:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2015-05-13 07:49 - 2015-04-08 05:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-05-13 07:49 - 2015-04-08 05:14 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll 2015-05-13 07:49 - 2015-03-04 06:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll 2015-05-13 07:49 - 2015-03-04 06:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll 2015-05-13 07:49 - 2015-03-04 06:10 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll 2015-05-13 07:49 - 2015-03-04 06:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe 2015-05-13 07:48 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2015-05-13 07:43 - 2015-05-13 07:43 - 00000000 ____D () C:\Program Files\CNN News 2015-05-12 13:19 - 2015-05-12 13:19 - 00034041 _____ () C:\Users\dell\Downloads\208379-the.captive.2014.1080p.bluray.x264.yify.zip 2015-05-12 13:18 - 2015-05-12 13:18 - 00014213 _____ () C:\Users\dell\Downloads\205531-sword.of.vengeance.2015.webdl.zip 2015-05-12 09:19 - 2015-05-12 09:19 - 00000000 ____D () C:\Program Files\Snow 2015-05-11 11:01 - 2015-05-11 11:01 - 00017597 _____ () C:\Users\dell\Downloads\The Captive (2014) [1080p] YIFY - YTS.torrent 2015-05-11 11:01 - 2015-05-11 11:01 - 00017597 _____ () C:\Users\dell\Downloads\The Captive (2014) [1080p] YIFY - YTS (1).torrent 2015-05-11 11:00 - 2015-05-11 11:01 - 00007780 _____ () C:\Users\dell\Downloads\Sword Of Vengeance (2015) [720p] YIFY - YTS.torrent 2015-05-11 10:56 - 2015-05-18 07:57 - 01162610 _____ () C:\Users\dell\Desktop\PP I MB30 pumpani 4 FRAKCIJE TRANSPETROL.xlsx 2015-05-11 10:29 - 2015-05-11 10:29 - 00000000 ____D () C:\Program Files\Common Files\Java 2015-05-11 10:21 - 2015-05-11 10:21 - 00562272 _____ (Oracle Corporation) C:\Users\dell\Downloads\chromeinstall-8u45.exe 2015-05-07 07:19 - 2015-05-15 08:06 - 00002091 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-05-07 07:19 - 2015-05-07 07:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-05-06 14:06 - 2015-05-06 14:06 - 00038332 _____ () C:\Users\dell\Downloads\208154-jupiter.ascending.2015.720p.bluray.x264.yify.zip 2015-05-05 13:46 - 2015-05-05 13:46 - 00040299 _____ () C:\Users\dell\Downloads\205331-unbroken.2014.brrip.zip 2015-05-05 11:49 - 2015-05-05 11:49 - 05893354 _____ () C:\Users\dell\Desktop\mehanizacija 04 05 2015.rar 2015-05-04 11:56 - 2015-05-12 12:34 - 00000000 ____D () C:\Users\dell\Desktop\Mjesavine 2015-05-04 11:56 - 2015-05-04 11:56 - 00025829 _____ () C:\Users\dell\Downloads\Mjesavine.rar 2015-05-04 11:56 - 2015-05-04 11:56 - 00025829 _____ () C:\Users\dell\Desktop\Mjesavine.rar 2015-05-04 08:28 - 2015-05-07 11:54 - 00000000 ____D () C:\Users\dell\Desktop\mehanizacija 04 05 2015 2015-04-28 14:15 - 2015-04-28 14:15 - 04825004 _____ () C:\Users\dell\Downloads\Learn to Make Paper Flowers! (1).mp4 2015-04-28 14:09 - 2015-04-28 14:09 - 04825004 _____ () C:\Users\dell\Downloads\Learn to Make Paper Flowers!.mp4 2015-04-28 14:06 - 2015-04-28 14:06 - 08292301 _____ () C:\Users\dell\Downloads\Instruction for nylon flower - lotus.mp4 2015-04-28 13:54 - 2015-04-28 13:55 - 09860415 _____ () C:\Users\dell\Downloads\How to make a Tissue Paper Flower very easily.....mp4 2015-04-28 08:12 - 2015-04-28 08:12 - 00000000 ____D () C:\Program Files\Youtube Preview Is it worth watching 2015-04-27 08:02 - 2015-05-06 13:32 - 00000020 _____ () C:\Users\dell\AppData\Roaming\appdataFr3.bin 2015-04-22 10:17 - 2014-11-25 18:32 - 00000000 ____D () C:\Users\dell\Downloads\T-MST10PDEUC 2015-04-21 07:34 - 2015-04-27 07:50 - 00000000 ____D () C:\Program Files\ClearNiceeBRowse 2015-04-21 07:34 - 2015-04-21 07:34 - 00000000 ____D () C:\Program Files\metalmouth voice browser 2015-04-21 07:33 - 2015-04-21 07:33 - 00000000 ____D () C:\Program Files\DiscountExt ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-18 08:53 - 2014-02-13 16:32 - 00000000 ____D () C:\Users\dell\AppData\Roaming\BitComet 2015-05-18 08:52 - 2012-08-02 14:23 - 00000000 ____D () C:\Users\dell 2015-05-18 08:50 - 2009-07-14 06:34 - 00031504 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-05-18 08:50 - 2009-07-14 06:34 - 00031504 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-05-18 08:47 - 2010-11-20 23:01 - 00782398 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-05-18 08:44 - 2012-08-02 15:01 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-05-18 08:43 - 2012-08-02 15:02 - 00000000 ____D () C:\Users\dell\AppData\Roaming\Skype 2015-05-18 08:42 - 2013-07-19 14:56 - 00046563 _____ () C:\Windows\setupact.log 2015-05-18 08:42 - 2013-02-06 12:23 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-18 08:42 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-05-18 08:41 - 2012-08-02 21:24 - 01878258 _____ () C:\Windows\WindowsUpdate.log 2015-05-18 08:41 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\System 2015-05-18 08:18 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\tracing 2015-05-18 08:03 - 2015-03-06 08:55 - 00000000 ____D () C:\ProgramData\17789729017210468518 2015-05-18 08:03 - 2013-02-06 12:23 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-15 11:00 - 2013-02-24 13:23 - 00000000 ____D () C:\Users\dell\AppData\Local\CrashDumps 2015-05-15 09:00 - 2014-12-18 12:36 - 00000000 ____D () C:\Program Files\BitComet 2015-05-14 14:36 - 2010-11-21 02:47 - 00000000 ____D () C:\Program Files\Windows Journal 2015-05-14 11:25 - 2013-03-31 14:58 - 00000000 ____D () C:\Program Files\Java 2015-05-14 09:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2015-05-14 07:38 - 2009-07-14 06:33 - 00625960 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-05-14 07:34 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers 2015-05-14 07:33 - 2013-08-09 06:19 - 00077862 _____ () C:\Windows\PFRO.log 2015-05-13 14:39 - 2013-10-28 15:30 - 00000000 ____D () C:\Windows\system32\MRT 2015-05-13 14:38 - 2013-10-28 15:29 - 137310008 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-05-13 11:16 - 2013-07-18 23:25 - 00000000 ____D () C:\Windows\pss 2015-05-11 10:27 - 2014-02-06 15:14 - 00000000 ____D () C:\ProgramData\Oracle 2015-05-07 07:18 - 2012-08-02 14:39 - 00000000 ____D () C:\Program Files\Google 2015-05-04 11:59 - 2014-07-31 10:44 - 00000000 ____D () C:\Users\dell\Desktop\boris probe radni 2015-05-04 08:44 - 2015-01-20 08:56 - 00000000 ____D () C:\Users\dell\Desktop\RADNI ZAPISI U LAB 2015-04-30 10:17 - 2014-08-04 09:40 - 00000000 ____D () C:\Users\dell\Desktop\boris probe radni -Mehanizacija 2015-04-27 07:26 - 2012-08-02 14:40 - 00000000 ____D () C:\Users\dell\AppData\Local\Google ==================== Files in the root of some directories ======= 2015-05-15 07:33 - 2015-05-18 07:24 - 0000024 _____ () C:\Users\dell\AppData\Roaming\appdataFr25.bin 2015-04-27 08:02 - 2015-05-06 13:32 - 0000020 _____ () C:\Users\dell\AppData\Roaming\appdataFr3.bin Some content of TEMP: ==================== C:\Users\dell\AppData\Local\Temp\5197415732012515363.exe C:\Users\dell\AppData\Local\Temp\92D0.exe C:\Users\dell\AppData\Local\Temp\ebcabfcdceg.exe C:\Users\dell\AppData\Local\Temp\F1543c79fa.exe C:\Users\dell\AppData\Local\Temp\gtalkwmp1.dll C:\Users\dell\AppData\Local\Temp\ICReinstall_setup.exe C:\Users\dell\AppData\Local\Temp\install_flashplayer11x32_mssd_aaa_aih.exe C:\Users\dell\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe C:\Users\dell\AppData\Local\Temp\mgsqlite3.dll C:\Users\dell\AppData\Local\Temp\nsa32D9.tmp.exe C:\Users\dell\AppData\Local\Temp\nsl3BDF.exe C:\Users\dell\AppData\Local\Temp\nsl9AA4.exe C:\Users\dell\AppData\Local\Temp\nsq417B.exe C:\Users\dell\AppData\Local\Temp\nsv46C9.exe C:\Users\dell\AppData\Local\Temp\nsvA0FB.exe C:\Users\dell\AppData\Local\Temp\nsvA762.exe C:\Users\dell\AppData\Local\Temp\playerfile.exe C:\Users\dell\AppData\Local\Temp\Quarantine.exe C:\Users\dell\AppData\Local\Temp\safeguard.exe C:\Users\dell\AppData\Local\Temp\SoftonicAssistant_v0-1-6.exe C:\Users\dell\AppData\Local\Temp\Softonic_EN_1-5-11_EN-Production_10_CleanRelease.exe C:\Users\dell\AppData\Local\Temp\sp-downloader.exe C:\Users\dell\AppData\Local\Temp\SPIdentifier.exe C:\Users\dell\AppData\Local\Temp\sqlite3.dll C:\Users\dell\AppData\Local\Temp\tu17p84.exe C:\Users\dell\AppData\Local\Temp\uninst1.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-05-04 10:20 ==================== End Of Log ============================ https://www.mycity.rs/must-login.png Dopuna: 18 Maj 2015 8:57 kasnim zbog opravke ....to je to

Profil

helen1 Poslao: 18 Maj 2015 10:21 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8620 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav, Uninstaliraj sledece programe: SpeedAnalysis.com Youtube Preview Is it worth watching 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: E - E:\autorun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {0107643d-664e-11e2-98e9-c01885793332} - E:\Install.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {367e919e-49ef-11e2-9516-c01885793331} - E:\AutoRun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {367e91b3-49ef-11e2-9516-c01885793331} - E:\AutoRun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {de5d1453-6de0-11e2-adfe-c01885793332} - E:\autorun.exe CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION SearchScopes: HKLM -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://mysearch.sweetpacks.com/?src=6&q={searchTerms}&st=12&i=48&did=11034&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&barid=1605756575266169056 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {57150180-4691-4AC9-A82B-CCE91AACD844} URL = http://search.toggle.com/?lang=en&cid=adfaa7a7&q={searchTerms} SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://mysearch.sweetpacks.com?src=6&q={searchTerms}&barid=1605756575266169056&crg=&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&st=23&i=48&did=11034 FF DefaultSearchUrl: FF Keyword.URL: hxxp://mysearch.sweetpacks.com/?src=2&st=12&i=48&did=11034&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&barid=1605756575266169056&q= FF Extension: SpeedAnalysis.com - C:\Users\dell\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com [2013-03-31] C:\Users\dell\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\e9d197d59f2f45f382b1aa5c14d82@8706aaed9b904554b5cb7984e9.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\PDVDZDW52397720@XDDWJXW57740856.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\551f2920-3c19-11e1-b86c-0800200c9a66@jetpack [Not Found] FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found] FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2015-02-05] <==== ATTENTION FF SearchPlugin: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\searchplugins\toggle.xml [2013-02-13] EmptyTemp: 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

Profil

jovann1994 Poslao: 19 Maj 2015 08:27 Idi na vrh
offline jovann1994 Ugledni građanin Pridružio: 30 Avg 2014 Poruke: 314 Gde živiš: Montenegro	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 16-05-2015 02 Ran by dell at 2015-05-19 08:18:40 Run:2 Running from C:\Users\dell\Desktop Loaded Profiles: dell (Available profiles: dell) Boot Mode: Normal ============================================== Content of fixlist: *************** HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: E - E:\autorun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {0107643d-664e-11e2-98e9-c01885793332} - E:\Install.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {367e919e-49ef-11e2-9516-c01885793331} - E:\AutoRun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {367e91b3-49ef-11e2-9516-c01885793331} - E:\AutoRun.exe HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\MountPoints2: {de5d1453-6de0-11e2-adfe-c01885793332} - E:\autorun.exe CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION SearchScopes: HKLM -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://mysearch.sweetpacks.com/?src=6&q={searchTerms}&st=12&i=48&did=11034&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&barid=1605756575266169056 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {57150180-4691-4AC9-A82B-CCE91AACD844} URL = http://search.toggle.com/?lang=en&cid=adfaa7a7&q={searchTerms} SearchScopes: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://mysearch.sweetpacks.com?src=6&q={searchTerms}&barid=1605756575266169056&crg=&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&st=23&i=48&did=11034 FF DefaultSearchUrl: FF Keyword.URL: hxxp://mysearch.sweetpacks.com/?src=2&st=12&i=48&did=11034&ppd=1434,122991,20uQ2j3KMdRv38ly2.LUwx1wPX.K000.,,,,sweet-player,,,www.sweetplayer.com&barid=1605756575266169056&q= FF Extension: SpeedAnalysis.com - C:\Users\dell\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com [2013-03-31] C:\Users\dell\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\e9d197d59f2f45f382b1aa5c14d82@8706aaed9b904554b5cb7984e9.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\PDVDZDW52397720@XDDWJXW57740856.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\551f2920-3c19-11e1-b86c-0800200c9a66@jetpack [Not Found] FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found] FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2015-02-05] <==== ATTENTION FF SearchPlugin: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\searchplugins\toggle.xml [2013-02-13] EmptyTemp: *************** HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\E => Key not found. HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0107643d-664e-11e2-98e9-c01885793332} => Key not found. HKCR\CLSID\{0107643d-664e-11e2-98e9-c01885793332} => Key not found. HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{367e919e-49ef-11e2-9516-c01885793331} => Key not found. HKCR\CLSID\{367e919e-49ef-11e2-9516-c01885793331} => Key not found. HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{367e91b3-49ef-11e2-9516-c01885793331} => Key not found. HKCR\CLSID\{367e91b3-49ef-11e2-9516-c01885793331} => Key not found. HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{de5d1453-6de0-11e2-adfe-c01885793332} => Key not found. HKCR\CLSID\{de5d1453-6de0-11e2-adfe-c01885793332} => Key not found. HKLM\SOFTWARE\Policies\Google => Key not found. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} => Key not found. HKCR\CLSID\{EEE6C360-6118-11DC-9C72-001320C79847} => Key not found. HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found. HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} => Key not found. HKCR\CLSID\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} => Key not found. HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found. HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found. HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} => Key not found. HKCR\CLSID\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} => Key not found. HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{57150180-4691-4AC9-A82B-CCE91AACD844} => Key not found. HKCR\CLSID\{57150180-4691-4AC9-A82B-CCE91AACD844} => Key not found. HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} => Key not found. HKCR\CLSID\{EEE6C360-6118-11DC-9C72-001320C79847} => Key not found. Firefox DefaultSearchUrl deleted successfully. Firefox Keyword.URL deleted successfully. C:\Users\dell\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com => not found. "C:\Users\dell\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com" => File/Directory not found. C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com => not found. C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\e9d197d59f2f45f382b1aa5c14d82@8706aaed9b904554b5cb7984e9.com => not found. C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\PDVDZDW52397720@XDDWJXW57740856.com => not found. C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\551f2920-3c19-11e1-b86c-0800200c9a66@jetpack => not found. C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} => not found. "C:\Program Files\mozilla firefox\firefox.cfg" => not found. "C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\searchplugins\toggle.xml" => not found. EmptyTemp: => Removed 24.8 MB temporary data. The system needed a reboot. ==== End of Fixlog 08:18:52 ====

Profil

helen1 Poslao: 19 Maj 2015 09:48 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8620 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Postavi novi FRST loga da proverimo stanje.

Profil

jovann1994 Poslao: 19 Maj 2015 13:02 Idi na vrh
offline jovann1994 Ugledni građanin Pridružio: 30 Avg 2014 Poruke: 314 Gde živiš: Montenegro	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-05-2015 02 Ran by dell (administrator) on DELL-PC on 19-05-2015 12:57:46 Running from C:\Users\dell Loaded Profiles: dell (Available profiles: dell) Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: English (United States) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Atheros Commnucations) C:\Program Files\Dell Wireless\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files\Dell Wireless\Bluetooth Suite\AthBtTray.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Atheros) C:\Program Files\Dell Wireless\Ath_CoexAgent.exe () C:\Program Files\T-Mobile Internet Manager\UIExec.exe (Atheros Commnucations) C:\Program Files\Dell Wireless\Bluetooth Suite\AdminService.exe (Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe (Google Inc.) C:\Program Files\Google\Update\1.3.27.5\GoogleCrashHandler.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe () C:\Program Files\T-Mobile Internet Manager\AssistantServices.exe (www.BitComet.com) C:\Program Files\BitComet\BitComet.exe (www.BitComet.com) C:\Program Files\BitComet\tools\BitCometService.exe (ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-08-06] (Advanced Micro Devices, Inc.) HKLM\...\Run: [AtherosBtStack] => C:\Program Files\Dell Wireless\Bluetooth Suite\BtvStack.exe [490656 2011-03-31] (Atheros Commnucations) HKLM\...\Run: [AthBtTray] => C:\Program Files\Dell Wireless\Bluetooth Suite\AthBtTray.exe [302240 2011-03-31] (Atheros Commnucations) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation) HKLM\...\Run: [UIExec] => C:\Program Files\T-Mobile Internet Manager\UIExec.exe [136328 2010-03-02] () HKLM\...\Run: [] => [X] HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2014-12-03] (Adobe Systems Incorporated) HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2014-12-03] (Adobe Systems Inc.) HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2015-02-24] (Samsung Electronics Co., Ltd.) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation) HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-30] (Microsoft Corporation) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [18678376 2013-05-09] (Skype Technologies S.A.) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\Run: [KiesPDLR.exe] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2015-02-24] (Samsung) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\...\Run: [BitComet] => C:\Program Files\BitComet\BitComet.exe [14276784 2013-12-31] (www.BitComet.com) HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [10240 2009-07-14] (Microsoft Corporation) Startup: C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2013-01-30] ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2009-02-09] (Autodesk, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=about:blank HKU\S-1-5-21-3569164440-1089637409-4081706395-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp Toolbar: HKU\S-1-5-21-3569164440-1089637409-4081706395-1000 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2014-12-03] (Adobe Systems Incorporated) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0055-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_55-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553530000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation) Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-11-22] (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 FireFox: ======== FF ProfilePath: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] () FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2013-04-02] (Google, Inc.) FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-14] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-14] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-14] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-14] (Google Inc.) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2014-12-03] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2013-05-10] (Adobe Systems Inc.) FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-02-05] FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} [2015-02-05] FF HKLM\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files\T-Mobile Internet Manager\addon FF Extension: Bytemobile Optimization Client - C:\Program Files\T-Mobile Internet Manager\addon [2013-01-24] FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-02-13] FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\389579c4-efa9-4d96-a1dd-3c86f7bd1a51@gmail.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\e9d197d59f2f45f382b1aa5c14d82@8706aaed9b904554b5cb7984e9.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\PDVDZDW52397720@XDDWJXW57740856.com [Not Found] FF Extension: No Name - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xmqyegnp.default\extensions\551f2920-3c19-11e1-b86c-0800200c9a66@jetpack [Not Found] FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found] Chrome: ======= CHR StartupUrls: Default -> "hxxp://www.google.rs/" CHR Profile: C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-19] CHR Extension: (Bookmark Manager) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-19] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-19] CHR Extension: (Skype Click to Call) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-05-19] CHR Extension: (Google Wallet) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-19] CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-11-22] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [294400 2011-08-06] (Advanced Micro Devices, Inc.) [File not signed] R2 Atheros Bt&Wlan Coex Agent; C:\Program Files\Dell Wireless\Ath_CoexAgent.exe [135168 2011-02-16] (Atheros) [File not signed] R2 AtherosSvc; C:\Program Files\Dell Wireless\Bluetooth Suite\adminservice.exe [72864 2011-03-31] (Atheros Commnucations) [File not signed] R3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com) R2 DiagTrack; C:\Windows\system32\diagtrack.dll [851456 2015-04-27] (Microsoft Corporation) S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2012-08-02] (Macrovision Europe Ltd.) [File not signed] R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation) R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.) R2 UI Assistant Service; C:\Program Files\T-Mobile Internet Manager\AssistantServices.exe [245384 2010-03-02] () [File not signed] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 AthBTPort; C:\Windows\System32\DRIVERS\btath_flt.sys [34976 2011-03-31] (Atheros) S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1570304 2011-04-20] (Atheros Communications, Inc.) U0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [22528 2010-02-10] (Bytemobile, Inc.) [File not signed] S3 BTATH_A2DP; C:\Windows\System32\drivers\btath_a2dp.sys [259232 2011-03-31] (Atheros) R3 BTATH_BUS; C:\Windows\System32\DRIVERS\btath_bus.sys [24736 2011-03-31] (Atheros) S3 BTATH_HCRP; C:\Windows\System32\DRIVERS\btath_hcrp.sys [175776 2011-03-31] (Atheros) S3 BTATH_RCP; C:\Windows\System32\DRIVERS\btath_rcp.sys [141088 2011-03-31] (Atheros) S3 BtFilter; C:\Windows\System32\DRIVERS\btfilter.sys [243360 2011-03-31] (Atheros) R3 mcdbus; C:\Windows\System32\DRIVERS\mcdbus.sys [116736 2009-02-24] (MagicISO, Inc.) [File not signed] R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [245096 2015-03-04] (Microsoft Corporation) R1 MpKslf9202d11; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{036619E8-0B61-42ED-BAC4-F391F2EB7A13}\MpKslf9202d11.sys [39464 2015-05-19] (Microsoft Corporation) R1 SCDEmu; C:\Windows\system32\Drivers\SCDEmu.sys [114408 2013-12-16] (Power Software Ltd) S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-19 12:57 - 2015-05-19 12:58 - 00015639 _____ () C:\Users\dell\FRST.txt 2015-05-19 08:35 - 2015-05-19 08:35 - 00002077 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk 2015-05-19 08:35 - 2015-05-19 08:35 - 00001945 _____ () C:\Windows\epplauncher.mif 2015-05-19 08:34 - 2015-05-19 08:35 - 00000000 ____D () C:\Program Files\Microsoft Security Client 2015-05-19 08:34 - 2015-05-19 08:34 - 00002165 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-05-19 08:34 - 2015-05-19 08:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-05-19 08:28 - 2015-05-19 08:29 - 11588952 _____ (Microsoft Corporation) C:\Users\dell\Downloads\mseinstall.exe 2015-05-19 08:13 - 2015-05-19 08:13 - 00880208 _____ (Google Inc.) C:\Users\dell\Downloads\ChromeSetup (1).exe 2015-05-18 10:50 - 2015-05-18 10:50 - 00008864 _____ () C:\Users\dell\Downloads\Extinction (2014) [720p] YIFY - YTS.torrent 2015-05-18 10:50 - 2015-05-18 10:50 - 00008854 _____ () C:\Users\dell\Downloads\Focus (2015) [720p] YIFY - YTS.torrent 2015-05-18 08:54 - 2015-05-18 08:55 - 00030675 _____ () C:\Users\dell\Desktop\Addition.txt 2015-05-18 08:53 - 2015-05-18 08:55 - 00039119 _____ () C:\Users\dell\Desktop\FRST.txt 2015-05-18 08:52 - 2015-05-18 08:52 - 00000000 ____D () C:\Users\dell\Desktop\FRST-OlderVersion 2015-05-18 08:50 - 2015-05-18 08:50 - 00038024 _____ () C:\Users\dell\Desktop\AdwCleaner[S0].txt 2015-05-18 08:38 - 2015-05-18 08:41 - 00000000 ____D () C:\AdwCleaner 2015-05-18 08:36 - 2015-05-18 08:36 - 02209792 _____ () C:\Users\dell\Desktop\AdwCleaner.exe 2015-05-18 08:02 - 2015-05-18 08:02 - 00000000 ____D () C:\Program Files\Smart QrCode Generator 2015-05-15 14:31 - 2015-05-15 14:31 - 00039402 _____ () C:\Users\dell\Downloads\208647-mcfarland.usa.2015.720p.bluray.x264geckos.zip 2015-05-15 14:30 - 2015-05-15 14:30 - 00038099 _____ () C:\Users\dell\Downloads\205153-theloft.zip 2015-05-15 14:29 - 2015-05-15 14:29 - 00030144 _____ () C:\Users\dell\Downloads\208650-ex.machina.2015.720p.bluray.x264sparks.zip 2015-05-15 09:00 - 2015-05-15 09:00 - 00013509 _____ () C:\Users\dell\Desktop\BitComet_1.37_x86_setup - Shortcut.lnk 2015-05-15 09:00 - 2015-05-15 09:00 - 00000929 _____ () C:\Users\Public\Desktop\BitComet.lnk 2015-05-15 09:00 - 2015-05-15 09:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet 2015-05-15 08:52 - 2015-05-15 08:52 - 00009472 _____ () C:\Users\dell\Downloads\Mcfarland Usa (2015) [720p] YIFY - YTS.torrent 2015-05-15 08:51 - 2015-05-15 08:51 - 00008860 _____ () C:\Users\dell\Downloads\The Loft (2014) [720p] YIFY - YTS.torrent 2015-05-15 08:51 - 2015-05-15 08:51 - 00008844 _____ () C:\Users\dell\Downloads\Ex Machina (2015) [720p] YIFY - YTS.torrent 2015-05-15 07:33 - 2015-05-18 07:24 - 00000024 _____ () C:\Users\dell\AppData\Roaming\appdataFr25.bin 2015-05-14 13:46 - 2015-05-15 14:26 - 00000000 ____D () C:\Users\dell\Desktop\HE PERUCICA 2015-05-14 11:28 - 2015-05-14 11:26 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2015-05-14 11:22 - 2015-05-14 11:22 - 00562272 _____ (Oracle Corporation) C:\Users\dell\Downloads\chromeinstall-8u45 (1).exe 2015-05-13 14:55 - 2015-05-01 15:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-05-13 11:25 - 2015-05-19 12:58 - 00000000 ____D () C:\FRST 2015-05-13 11:24 - 2015-05-18 08:52 - 01146368 _____ (Farbar) C:\Users\dell\FRST.exe 2015-05-13 11:04 - 2015-05-18 08:53 - 00000000 ____D () C:\Users\dell\AppData\Roaming\BitTorrent 2015-05-13 10:39 - 2015-05-13 10:40 - 01999976 _____ (BitTorrent Inc.) C:\Users\dell\Downloads\BitTorrent.exe 2015-05-13 08:22 - 2015-05-13 08:22 - 00000000 ____D () C:\Program Files\HoofSounds 2015-05-13 07:55 - 2015-04-27 21:11 - 03989440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2015-05-13 07:55 - 2015-04-27 21:11 - 03934144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-05-13 07:55 - 2015-04-27 21:08 - 01307648 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-05-13 07:55 - 2015-04-27 21:05 - 00851456 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-05-13 07:55 - 2015-04-27 21:05 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-05-13 07:55 - 2015-04-27 20:00 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-05-13 07:55 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll 2015-05-13 07:54 - 2015-04-27 21:11 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-05-13 07:54 - 2015-04-27 21:11 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-05-13 07:54 - 2015-04-27 21:05 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-05-13 07:54 - 2015-04-27 21:05 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-05-13 07:54 - 2015-04-27 21:04 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-05-13 07:54 - 2015-04-27 21:04 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-05-13 07:54 - 2015-04-27 21:04 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-05-13 07:54 - 2015-04-27 21:04 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-05-13 07:54 - 2015-04-27 21:04 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-05-13 07:54 - 2015-04-27 21:04 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-05-13 07:54 - 2015-04-27 21:03 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-05-13 07:54 - 2015-04-27 21:03 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe 2015-05-13 07:54 - 2015-04-27 21:01 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-05-13 07:54 - 2015-04-27 21:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-05-13 07:54 - 2015-04-27 20:59 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-05-13 07:54 - 2015-04-27 20:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-05-13 07:54 - 2015-04-20 04:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-05-13 07:54 - 2015-04-20 04:56 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-05-13 07:54 - 2015-04-20 04:03 - 02382336 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-05-13 07:53 - 2015-05-05 03:12 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-05-13 07:53 - 2015-04-22 03:48 - 00342736 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-05-13 07:53 - 2015-04-21 18:25 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-05-13 07:53 - 2015-04-21 18:25 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-05-13 07:53 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-05-13 07:53 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-05-13 07:53 - 2015-04-21 18:11 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-05-13 07:53 - 2015-04-21 18:10 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-05-13 07:53 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-05-13 07:53 - 2015-04-21 18:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-05-13 07:53 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-05-13 07:53 - 2015-04-21 18:03 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-05-13 07:53 - 2015-04-21 18:02 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-05-13 07:53 - 2015-04-21 18:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-05-13 07:53 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-05-13 07:53 - 2015-04-21 17:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-05-13 07:53 - 2015-04-21 17:58 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-05-13 07:53 - 2015-04-21 17:57 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-05-13 07:53 - 2015-04-21 17:51 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-05-13 07:53 - 2015-04-21 17:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-05-13 07:53 - 2015-04-21 17:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-05-13 07:53 - 2015-04-21 17:39 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-05-13 07:53 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-05-13 07:53 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-05-13 07:53 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-05-13 07:53 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-05-13 07:53 - 2015-04-21 17:26 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-05-13 07:53 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-05-13 07:53 - 2015-04-21 17:24 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-05-13 07:53 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-05-13 07:53 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-05-13 07:53 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-05-13 07:53 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-05-13 07:53 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2015-05-13 07:53 - 2015-04-13 05:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2015-05-13 07:49 - 2015-04-08 05:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-05-13 07:49 - 2015-04-08 05:14 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll 2015-05-13 07:49 - 2015-03-04 06:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll 2015-05-13 07:49 - 2015-03-04 06:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll 2015-05-13 07:49 - 2015-03-04 06:10 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll 2015-05-13 07:49 - 2015-03-04 06:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe 2015-05-13 07:48 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2015-05-13 07:43 - 2015-05-13 07:43 - 00000000 ____D () C:\Program Files\CNN News 2015-05-12 13:19 - 2015-05-12 13:19 - 00034041 _____ () C:\Users\dell\Downloads\208379-the.captive.2014.1080p.bluray.x264.yify.zip 2015-05-12 13:18 - 2015-05-12 13:18 - 00014213 _____ () C:\Users\dell\Downloads\205531-sword.of.vengeance.2015.webdl.zip 2015-05-12 09:19 - 2015-05-12 09:19 - 00000000 ____D () C:\Program Files\Snow 2015-05-11 11:01 - 2015-05-11 11:01 - 00017597 _____ () C:\Users\dell\Downloads\The Captive (2014) [1080p] YIFY - YTS.torrent 2015-05-11 11:01 - 2015-05-11 11:01 - 00017597 _____ () C:\Users\dell\Downloads\The Captive (2014) [1080p] YIFY - YTS (1).torrent 2015-05-11 11:00 - 2015-05-11 11:01 - 00007780 _____ () C:\Users\dell\Downloads\Sword Of Vengeance (2015) [720p] YIFY - YTS.torrent 2015-05-11 10:56 - 2015-05-18 07:57 - 01162610 _____ () C:\Users\dell\Desktop\PP I MB30 pumpani 4 FRAKCIJE TRANSPETROL.xlsx 2015-05-11 10:29 - 2015-05-11 10:29 - 00000000 ____D () C:\Program Files\Common Files\Java 2015-05-11 10:21 - 2015-05-11 10:21 - 00562272 _____ (Oracle Corporation) C:\Users\dell\Downloads\chromeinstall-8u45.exe 2015-05-06 14:06 - 2015-05-06 14:06 - 00038332 _____ () C:\Users\dell\Downloads\208154-jupiter.ascending.2015.720p.bluray.x264.yify.zip 2015-05-05 13:46 - 2015-05-05 13:46 - 00040299 _____ () C:\Users\dell\Downloads\205331-unbroken.2014.brrip.zip 2015-05-05 11:49 - 2015-05-05 11:49 - 05893354 _____ () C:\Users\dell\Desktop\mehanizacija 04 05 2015.rar 2015-05-04 11:56 - 2015-05-12 12:34 - 00000000 ____D () C:\Users\dell\Desktop\Mjesavine 2015-05-04 11:56 - 2015-05-04 11:56 - 00025829 _____ () C:\Users\dell\Downloads\Mjesavine.rar 2015-05-04 11:56 - 2015-05-04 11:56 - 00025829 _____ () C:\Users\dell\Desktop\Mjesavine.rar 2015-05-04 08:28 - 2015-05-07 11:54 - 00000000 ____D () C:\Users\dell\Desktop\mehanizacija 04 05 2015 2015-04-28 14:15 - 2015-04-28 14:15 - 04825004 _____ () C:\Users\dell\Downloads\Learn to Make Paper Flowers! (1).mp4 2015-04-28 14:09 - 2015-04-28 14:09 - 04825004 _____ () C:\Users\dell\Downloads\Learn to Make Paper Flowers!.mp4 2015-04-28 14:06 - 2015-04-28 14:06 - 08292301 _____ () C:\Users\dell\Downloads\Instruction for nylon flower - lotus.mp4 2015-04-28 13:54 - 2015-04-28 13:55 - 09860415 _____ () C:\Users\dell\Downloads\How to make a Tissue Paper Flower very easily.....mp4 2015-04-27 08:02 - 2015-05-06 13:32 - 00000020 _____ () C:\Users\dell\AppData\Roaming\appdataFr3.bin 2015-04-22 10:17 - 2014-11-25 18:32 - 00000000 ____D () C:\Users\dell\Downloads\T-MST10PDEUC 2015-04-21 07:34 - 2015-04-27 07:50 - 00000000 ____D () C:\Program Files\ClearNiceeBRowse 2015-04-21 07:34 - 2015-04-21 07:34 - 00000000 ____D () C:\Program Files\metalmouth voice browser 2015-04-21 07:33 - 2015-04-21 07:33 - 00000000 ____D () C:\Program Files\DiscountExt ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-19 12:57 - 2012-08-02 14:23 - 00000000 ____D () C:\Users\dell 2015-05-19 12:55 - 2014-02-13 16:32 - 00000000 ____D () C:\Users\dell\AppData\Roaming\BitComet 2015-05-19 12:44 - 2012-08-02 15:01 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-05-19 12:34 - 2012-08-02 21:24 - 01667741 _____ () C:\Windows\WindowsUpdate.log 2015-05-19 12:03 - 2013-02-06 12:23 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-19 12:03 - 2012-08-02 15:02 - 00000000 ____D () C:\Users\dell\AppData\Roaming\Skype 2015-05-19 08:40 - 2009-07-14 06:34 - 00031504 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-05-19 08:40 - 2009-07-14 06:34 - 00031504 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-05-19 08:34 - 2012-08-02 14:40 - 00000000 ____D () C:\Users\dell\AppData\Local\Google 2015-05-19 08:33 - 2012-08-02 14:39 - 00000000 ____D () C:\Program Files\Google 2015-05-19 08:30 - 2010-11-20 23:01 - 00782398 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-05-19 08:24 - 2013-07-19 14:56 - 00046843 _____ () C:\Windows\setupact.log 2015-05-19 08:24 - 2013-02-06 12:23 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-19 08:24 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-05-19 08:19 - 2013-08-09 06:19 - 00078418 _____ () C:\Windows\PFRO.log 2015-05-19 08:04 - 2015-02-05 10:14 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2015-05-18 13:16 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache 2015-05-18 11:37 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF 2015-05-18 08:41 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\System 2015-05-18 08:18 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\tracing 2015-05-18 08:03 - 2015-03-06 08:55 - 00000000 ____D () C:\ProgramData\17789729017210468518 2015-05-15 11:00 - 2013-02-24 13:23 - 00000000 ____D () C:\Users\dell\AppData\Local\CrashDumps 2015-05-15 09:00 - 2014-12-18 12:36 - 00000000 ____D () C:\Program Files\BitComet 2015-05-14 14:36 - 2010-11-21 02:47 - 00000000 ____D () C:\Program Files\Windows Journal 2015-05-14 11:25 - 2013-03-31 14:58 - 00000000 ____D () C:\Program Files\Java 2015-05-14 09:20 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2015-05-14 07:38 - 2009-07-14 06:33 - 00625960 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-05-14 07:34 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers 2015-05-13 14:39 - 2013-10-28 15:30 - 00000000 ____D () C:\Windows\system32\MRT 2015-05-13 14:38 - 2013-10-28 15:29 - 137310008 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-05-13 11:16 - 2013-07-18 23:25 - 00000000 ____D () C:\Windows\pss 2015-05-11 10:27 - 2014-02-06 15:14 - 00000000 ____D () C:\ProgramData\Oracle 2015-05-04 11:59 - 2014-07-31 10:44 - 00000000 ____D () C:\Users\dell\Desktop\boris probe radni 2015-05-04 08:44 - 2015-01-20 08:56 - 00000000 ____D () C:\Users\dell\Desktop\RADNI ZAPISI U LAB 2015-04-30 10:17 - 2014-08-04 09:40 - 00000000 ____D () C:\Users\dell\Desktop\boris probe radni -Mehanizacija ==================== Files in the root of some directories ======= 2015-05-15 07:33 - 2015-05-18 07:24 - 0000024 _____ () C:\Users\dell\AppData\Roaming\appdataFr25.bin 2015-04-27 08:02 - 2015-05-06 13:32 - 0000020 _____ () C:\Users\dell\AppData\Roaming\appdataFr3.bin Files to move or delete: ==================== C:\Users\dell\FRST.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-05-18 12:26 ==================== End Of Log ============================ https://www.mycity.rs/must-login.png

Profil

helen1 Poslao: 19 Maj 2015 17:05 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8620 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Da li sada ima problema?

Profil

jovann1994 Poslao: 20 Maj 2015 06:44 Idi na vrh
offline jovann1994 Ugledni građanin Pridružio: 30 Avg 2014 Poruke: 314 Gde živiš: Montenegro	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Bolji je rad lap topa hvala

Profil

MyCity » Ambulanta -> Arhiva Ambulante » lap top virusi

Ko je trenutno na forumu

Ukupno su 1016 korisnika na forumu :: 32 registrovanih, 2 sakrivenih i 982 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: ajo baba, Aleksa 3215, avijacija, babaroga, bufanje, Denaya, dolinalima, Drenic7, HrcAk47, ILGromovnik, Kibice, kunktator, kuntalo, laurusri, Lieutenant, lord sir giga, Marko Marković, mercedesamg, milenko crazy north, milos.cbr, nextyamb, pein, Povratak1912, procesor, raptorsi, robertino, rodoljub, ruma, Sirius, vathra, vukovi, wolf431

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by