MyCity » Ambulanta -> Arhiva Ambulante » Dosadni LinkBucks.com - Get your share!

Dosadni LinkBucks.com - Get your share!

Napisano na dan: 2.12.2012

Strana:
1
2
3
4
5
6

Dosadni LinkBucks.com - Get your share!

Pagination

Prethodna strana

Sledeća strana

Pagination

Odgovori

Strana:
1
2
3
4
5
6

Nikola Markovic 4 Poslao: 03 Dec 2012 21:47 Idi na vrh
offline Nikola Markovic 4 Građanin Pridružio: 02 Dec 2012 Poruke: 37	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! OTL logfile created on: 03/12/2012 21:38:54 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pedja\Downloads Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000809 \| Country: United Kingdom \| Language: ENG \| Date Format: dd/MM/yyyy 3.00 Gb Total Physical Memory \| 0.93 Gb Available Physical Memory \| 31.00% Memory free 6.00 Gb Paging File \| 2.85 Gb Available in Paging File \| 47.54% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: \| %SystemRoot% = C:\Windows \| %ProgramFiles% = C:\Program Files Drive C: \| 117.09 Gb Total Space \| 73.42 Gb Free Space \| 62.71% Space Free \| Partition Type: NTFS Drive D: \| 348.57 Gb Total Space \| 245.32 Gb Free Space \| 70.38% Space Free \| Partition Type: NTFS Drive F: \| 2.33 Gb Total Space \| 0.00 Gb Free Space \| 0.00% Space Free \| Partition Type: CDFS Computer Name: PEDJA-PC \| User Name: Pedja \| Logged in as Administrator. Boot Mode: Normal \| Scan Mode: Current user Company Name Whitelist: Off \| Skip Microsoft Files: Off \| No Company Name Whitelist: On \| File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2012/12/03 19:48:36 \| 004,732,416 \| ---- \| M] (AVAST Software) -- C:\Users\Pedja\Downloads\aswMBR (1).exe PRC - [2012/12/03 19:46:18 \| 001,354,736 \| ---- \| M] (Valve Corporation) -- C:\Program Files\Steam\Steam.exe PRC - [2012/12/03 15:19:47 \| 000,602,112 \| ---- \| M] (OldTimer Tools) -- C:\Users\Pedja\Downloads\OTL.exe PRC - [2012/11/30 14:16:26 \| 000,257,008 \| ---- \| M] () -- C:\Program Files\Steam\steamapps\common\dota 2 beta\dota.exe PRC - [2012/11/28 04:43:18 \| 001,242,728 \| ---- \| M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe PRC - [2012/11/22 10:29:16 \| 003,290,304 \| ---- \| M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe PRC - [2012/11/17 01:58:43 \| 000,096,056 \| ---- \| M] (Siber Systems) -- C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe PRC - [2012/11/10 13:53:20 \| 000,071,464 \| ---- \| M] (Valve Corporation) -- C:\Program Files\Steam\GameOverlayUI.exe PRC - [2012/11/02 11:36:36 \| 000,388,085 \| ---- \| M] () -- C:\Program Files\Yahoo Messenger.exe PRC - [2012/10/31 15:52:30 \| 000,464,256 \| ---- \| M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe PRC - [2012/10/30 23:50:59 \| 004,297,136 \| ---- \| M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe PRC - [2012/10/30 23:50:59 \| 000,044,808 \| ---- \| M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe PRC - [2012/10/29 20:33:46 \| 000,698,752 \| ---- \| M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 6\Monitor.exe PRC - [2012/09/29 19:54:26 \| 000,766,536 \| ---- \| M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2012/09/29 19:54:26 \| 000,676,936 \| ---- \| M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2012/09/29 19:54:26 \| 000,399,432 \| ---- \| M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe PRC - [2012/09/24 21:59:16 \| 000,490,880 \| ---- \| M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe PRC - [2012/08/31 15:02:03 \| 002,754,984 \| ---- \| M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe PRC - [2012/08/21 14:43:58 \| 000,794,272 \| ---- \| M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe PRC - [2012/08/21 14:43:58 \| 000,105,120 \| ---- \| M] (PC Tools) -- C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe PRC - [2012/07/27 21:51:26 \| 000,063,960 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2011/11/25 16:32:36 \| 000,687,400 \| ---- \| M] (Nero AG) -- C:\Program Files\Nero\Update\NASvc.exe PRC - [2011/11/11 13:08:06 \| 000,205,336 \| ---- \| M] (Logitech Inc.) -- C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe PRC - [2011/11/11 13:07:54 \| 000,265,240 \| ---- \| M] () -- C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe PRC - [2011/08/12 11:19:40 \| 000,680,984 \| ---- \| M] () -- C:\Program Files\Common Files\logishrd\LQCVFX\COCIManager.exe PRC - [2011/04/20 01:04:38 \| 000,393,216 \| ---- \| M] (AMD) -- C:\Windows\System32\atieclxx.exe PRC - [2011/04/20 01:04:08 \| 000,176,128 \| ---- \| M] (AMD) -- C:\Windows\System32\atiesrxx.exe PRC - [2011/02/25 06:30:54 \| 002,616,320 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2010/11/20 13:17:47 \| 000,049,152 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe ========== Modules (No Company Name) ========== MOD - [2012/12/03 08:06:57 \| 002,036,224 \| ---- \| M] () -- C:\Program Files\AVAST Software\Avast\defs\12120300\algo.dll MOD - [2012/12/02 23:26:22 \| 014,586,808 \| ---- \| M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_5_502_110.dll MOD - [2012/11/30 23:37:56 \| 033,537,520 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\dota\bin\client.dll MOD - [2012/11/30 14:16:30 \| 001,430,512 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\vguimatsurface.dll MOD - [2012/11/30 14:16:27 \| 004,600,816 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\scaleformui_4.dll MOD - [2012/11/30 14:16:27 \| 000,710,640 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\vscript.dll MOD - [2012/11/30 14:16:26 \| 001,150,960 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\vphysics.dll MOD - [2012/11/30 14:16:26 \| 000,257,008 \| ---- \| M] () -- C:\Program Files\Steam\steamapps\common\dota 2 beta\dota.exe MOD - [2012/11/30 14:16:26 \| 000,074,736 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\vaudio_miles.dll MOD - [2012/11/30 14:16:25 \| 000,987,120 \| ---- \| M] () -- C:\Program Files\Steam\steamapps\common\dota 2 beta\bin\shaderapidx9.dll MOD - [2012/11/30 14:16:24 \| 001,075,696 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\stdshader_dx9.dll MOD - [2012/11/30 14:16:24 \| 000,667,120 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\studiorender.dll MOD - [2012/11/30 14:16:24 \| 000,452,080 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\vgui2.dll MOD - [2012/11/30 14:16:23 \| 006,102,512 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\engine.dll MOD - [2012/11/30 14:16:23 \| 000,823,280 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\networksystem.dll MOD - [2012/11/30 14:16:23 \| 000,212,464 \| ---- \| M] () -- C:\Program Files\Steam\steamapps\common\dota 2 beta\bin\vstdlib.dll MOD - [2012/11/30 14:16:23 \| 000,079,856 \| ---- \| M] () -- C:\Program Files\Steam\steamapps\common\dota 2 beta\bin\scenefilecache.dll MOD - [2012/11/30 14:16:22 \| 000,164,336 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\soundemittersystem.dll MOD - [2012/11/30 14:16:22 \| 000,138,224 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\localize.dll MOD - [2012/11/30 14:16:21 \| 000,155,632 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\stdshader_dbg.dll MOD - [2012/11/30 14:16:20 \| 000,195,056 \| ---- \| M] () -- C:\Program Files\Steam\steamapps\common\dota 2 beta\bin\launcher.dll MOD - [2012/11/30 14:16:19 \| 000,438,768 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\datacache.dll MOD - [2012/11/30 14:16:19 \| 000,410,608 \| ---- \| M] () -- C:\Program Files\Steam\steamapps\common\dota 2 beta\bin\filesystem_stdio.dll MOD - [2012/11/30 14:16:19 \| 000,171,504 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\vaudio_celt.dll MOD - [2012/11/30 14:16:18 \| 001,188,336 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\materialsystem.dll MOD - [2012/11/30 14:16:18 \| 000,950,272 \| ---- \| M] () -- C:\Program Files\Steam\steamapps\common\dota 2 beta\bin\chromehtml.dll MOD - [2012/11/30 14:16:17 \| 000,313,328 \| ---- \| M] () -- C:\Program Files\Steam\steamapps\common\dota 2 beta\bin\tier0.dll MOD - [2012/11/30 14:16:16 \| 000,139,760 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\inputsystem.dll MOD - [2012/11/28 04:43:17 \| 000,460,904 \| ---- \| M] () -- C:\Program Files\Google\Chrome\Application\23.0.1271.95\ppgooglenaclpluginchrome.dll MOD - [2012/11/28 04:43:16 \| 012,456,040 \| ---- \| M] () -- C:\Program Files\Google\Chrome\Application\23.0.1271.95\PepperFlash\pepflashplayer.dll MOD - [2012/11/28 04:43:15 \| 004,008,040 \| ---- \| M] () -- C:\Program Files\Google\Chrome\Application\23.0.1271.95\pdf.dll MOD - [2012/11/28 04:42:30 \| 000,587,880 \| ---- \| M] () -- C:\Program Files\Google\Chrome\Application\23.0.1271.95\libglesv2.dll MOD - [2012/11/28 04:42:29 \| 000,124,520 \| ---- \| M] () -- C:\Program Files\Google\Chrome\Application\23.0.1271.95\libegl.dll MOD - [2012/11/28 04:42:22 \| 000,157,304 \| ---- \| M] () -- C:\Program Files\Google\Chrome\Application\23.0.1271.95\avutil-51.dll MOD - [2012/11/28 04:42:21 \| 002,168,952 \| ---- \| M] () -- C:\Program Files\Google\Chrome\Application\23.0.1271.95\avcodec-54.dll MOD - [2012/11/28 04:42:21 \| 000,275,576 \| ---- \| M] () -- C:\Program Files\Google\Chrome\Application\23.0.1271.95\avformat-54.dll MOD - [2012/11/23 14:05:33 \| 020,313,384 \| ---- \| M] () -- C:\Program Files\Steam\steamapps\common\dota 2 beta\bin\libcef.dll MOD - [2012/11/23 14:05:28 \| 000,124,416 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\valve_avi.dll MOD - [2012/11/23 13:24:56 \| 000,153,600 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\mssvoice.asi MOD - [2012/11/23 13:24:52 \| 000,095,744 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\mssmp3.asi MOD - [2012/11/23 13:24:52 \| 000,060,416 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\msseax.flt MOD - [2012/11/23 13:24:52 \| 000,013,312 \| ---- \| M] () -- c:\Program Files\Steam\steamapps\common\dota 2 beta\bin\mssds3d.flt MOD - [2012/11/10 13:53:18 \| 020,317,008 \| ---- \| M] () -- C:\Program Files\Steam\bin\libcef.dll MOD - [2012/11/10 13:53:17 \| 001,099,616 \| ---- \| M] () -- C:\Program Files\Steam\bin\avcodec-53.dll MOD - [2012/11/10 13:53:17 \| 000,902,480 \| ---- \| M] () -- C:\Program Files\Steam\bin\chromehtml.dll MOD - [2012/11/10 13:53:17 \| 000,190,816 \| ---- \| M] () -- C:\Program Files\Steam\bin\avformat-53.dll MOD - [2012/11/10 13:53:17 \| 000,123,232 \| ---- \| M] () -- C:\Program Files\Steam\bin\avutil-51.dll MOD - [2012/11/02 11:36:36 \| 000,388,085 \| ---- \| M] () -- C:\Program Files\Yahoo Messenger.exe MOD - [2012/10/30 15:37:26 \| 000,348,032 \| ---- \| M] () -- C:\Program Files\IObit\Advanced SystemCare 6\madexcept_.bpl MOD - [2012/10/30 15:37:24 \| 000,050,048 \| ---- \| M] () -- C:\Program Files\IObit\Advanced SystemCare 6\maddisAsm_.bpl MOD - [2012/10/30 15:37:22 \| 000,182,656 \| ---- \| M] () -- C:\Program Files\IObit\Advanced SystemCare 6\madbasic_.bpl MOD - [2011/11/11 13:09:20 \| 000,336,408 \| ---- \| M] () -- C:\Program Files\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll MOD - [2011/11/11 13:08:18 \| 007,956,504 \| ---- \| M] () -- C:\Program Files\Logitech\LWS\Webcam Software\QTGui4.dll MOD - [2011/11/11 13:08:18 \| 000,342,552 \| ---- \| M] () -- C:\Program Files\Logitech\LWS\Webcam Software\QTXml4.dll MOD - [2011/11/11 13:08:18 \| 000,128,536 \| ---- \| M] () -- C:\Program Files\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll MOD - [2011/11/11 13:08:18 \| 000,029,208 \| ---- \| M] () -- C:\Program Files\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll MOD - [2011/11/11 13:08:06 \| 002,145,304 \| ---- \| M] () -- C:\Program Files\Logitech\LWS\Webcam Software\QTCore4.dll MOD - [2011/11/11 13:07:54 \| 000,265,240 \| ---- \| M] () -- C:\Program Files\Logitech\LWS\Webcam Software\CameraHelperShell.exe MOD - [2011/08/12 11:19:40 \| 000,680,984 \| ---- \| M] () -- C:\Program Files\Common Files\logishrd\LQCVFX\COCIManager.exe ========== Services (SafeList) ========== SRV - [2012/12/02 23:26:22 \| 000,250,808 \| ---- \| M] (Adobe Systems Incorporated) [On_Demand \| Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012/11/22 10:29:16 \| 003,290,304 \| ---- \| M] (Skype Technologies S.A.) [Auto \| Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service) SRV - [2012/11/10 13:53:18 \| 000,529,744 \| ---- \| M] (Valve Corporation) [On_Demand \| Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012/10/31 15:52:30 \| 000,464,256 \| ---- \| M] (IObit) [Auto \| Running] -- C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe -- (AdvancedSystemCareService6) SRV - [2012/10/30 23:50:59 \| 000,044,808 \| ---- \| M] (AVAST Software) [Auto \| Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV - [2012/09/29 19:54:26 \| 000,676,936 \| ---- \| M] (Malwarebytes Corporation) [Auto \| Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2012/09/29 19:54:26 \| 000,399,432 \| ---- \| M] (Malwarebytes Corporation) [Auto \| Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2012/08/31 15:02:03 \| 002,754,984 \| ---- \| M] (TeamViewer GmbH) [Auto \| Running] -- C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7) SRV - [2012/08/21 14:43:58 \| 000,794,272 \| ---- \| M] (PC Tools) [Auto \| Running] -- C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc) SRV - [2012/07/27 21:51:26 \| 000,063,960 \| ---- \| M] (Adobe Systems Incorporated) [Auto \| Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2012/07/13 12:28:36 \| 000,160,944 \| R--- \| M] (Skype Technologies) [Auto \| Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2011/11/25 16:32:36 \| 000,687,400 \| ---- \| M] (Nero AG) [Auto \| Running] -- C:\Program Files\Nero\Update\NASvc.exe -- (NAUpdate) SRV - [2011/04/20 01:04:08 \| 000,176,128 \| ---- \| M] (AMD) [Auto \| Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility) SRV - [2009/07/14 02:16:13 \| 000,025,088 \| ---- \| M] (Microsoft Corporation) [On_Demand \| Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV - [2009/07/14 02:16:12 \| 001,004,544 \| ---- \| M] (Microsoft Corporation) [Disabled \| Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc) SRV - [2009/07/14 02:15:41 \| 000,680,960 \| ---- \| M] (Microsoft Corporation) [Auto \| Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) ========== Driver Services (SafeList) ========== DRV - File not found [Kernel \| On_Demand \| Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU) DRV - File not found [Kernel \| On_Demand \| Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub) DRV - File not found [Kernel \| On_Demand \| Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc) DRV - File not found [Kernel \| On_Demand \| Stopped] -- C:\Program Files\Garena Plus\Room\safedrv.sys -- (GGSAFERDriver) DRV - File not found [Kernel \| On_Demand \| Unknown] -- C:\Users\Pedja\AppData\Local\Temp\aswMBR.sys -- (aswMBR) DRV - [2012/11/18 00:36:49 \| 000,242,240 \| ---- \| M] (DT Soft Ltd) [Kernel \| System \| Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2012/11/01 19:29:22 \| 000,035,592 \| ---- \| M] (Anchorfree Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\System32\drivers\taphss6.sys -- (taphss6) DRV - [2012/11/01 19:21:56 \| 000,035,592 \| ---- \| M] (AnchorFree Inc.) [Kernel \| System \| Running] -- C:\Windows\System32\drivers\hssdrv6.sys -- (HssDRV6) DRV - [2012/10/30 23:51:58 \| 000,738,504 \| ---- \| M] (AVAST Software) [File_System \| System \| Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2012/10/30 23:51:58 \| 000,361,032 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP) DRV - [2012/10/30 23:51:58 \| 000,054,232 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2012/10/30 23:51:57 \| 000,058,680 \| ---- \| M] (AVAST Software) [File_System \| Auto \| Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt) DRV - [2012/10/30 23:51:56 \| 000,021,256 \| ---- \| M] (AVAST Software) [File_System \| Auto \| Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2012/10/30 15:28:24 \| 000,049,664 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV - [2012/10/30 15:28:24 \| 000,014,848 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV - [2012/10/15 17:59:28 \| 000,044,784 \| ---- \| M] (AVAST Software) [Kernel \| System \| Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr) DRV - [2012/09/29 19:54:26 \| 000,022,856 \| ---- \| M] (Malwarebytes Corporation) [File_System \| On_Demand \| Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector) DRV - [2012/09/22 21:55:04 \| 000,717,296 \| ---- \| M] (Duplex Secure Ltd.) [Kernel \| Boot \| Stopped] -- C:\Windows\System32\drivers\sptd.sys -- (sptd) DRV - [2012/08/01 19:13:40 \| 000,033,512 \| ---- \| M] (AnchorFree Inc) [Kernel \| On_Demand \| Stopped] -- C:\Windows\System32\drivers\taphss.sys -- (taphss) DRV - [2012/01/18 05:44:28 \| 000,312,096 \| ---- \| M] (Logitech Inc.) [Kernel \| On_Demand \| Stopped] -- C:\Windows\System32\drivers\lvrs.sys -- (LVRS) DRV - [2011/04/20 01:43:42 \| 007,772,160 \| ---- \| M] (ATI Technologies Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag) DRV - [2011/04/20 00:22:10 \| 000,243,712 \| ---- \| M] (Advanced Micro Devices, Inc.) [Kernel \| On_Demand \| Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap) DRV - [2010/11/20 13:30:15 \| 000,175,360 \| ---- \| M] (Microsoft Corporation) [Kernel \| Boot \| Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus) DRV - [2010/11/20 13:30:15 \| 000,040,704 \| ---- \| M] (Microsoft Corporation) [Kernel \| Boot \| Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt) DRV - [2010/11/20 13:30:15 \| 000,028,032 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc) DRV - [2010/11/20 10:14:45 \| 000,017,920 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID) DRV - [2010/11/20 10:14:41 \| 000,005,632 \| ---- \| M] (Microsoft Corporation) [Kernel \| On_Demand \| Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap) DRV - [2010/04/09 01:32:36 \| 000,215,656 \| ---- \| M] (NVIDIA Corporation) [Kernel \| Boot \| Running] -- C:\Windows\System32\drivers\nvstor32.sys -- (nvstor32) DRV - [2010/03/22 17:29:08 \| 000,018,944 \| ---- \| M] (NVIDIA Corporation) [Kernel \| On_Demand \| Running] -- C:\Windows\System32\drivers\nvsmu.sys -- (nvsmu) DRV - [1996/04/03 20:33:26 \| 000,005,248 \| ---- \| M] () [Kernel \| Boot \| Running] -- C:\Windows\System32\giveio.sys -- (giveio) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = google.com/ IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = google.com IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = google.com IE - HKLM\..\SearchScopes,DefaultScope = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Default_Page_URL = google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = uk.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GB IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D0 CC 2F EB 00 C8 CD 01 [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = google.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Bar = google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Search Page = google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Start Default_Page_URL = google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = google.com IE - HKCU\..\SearchScopes,DefaultScope = IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:7.0.1474 FF - prefs.js..extensions.enabledAddons: %7B82AF8DCA-6DE9-405D-BD5E-43525BDAD38A%7D:6.4.0.11328 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_110.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Pedja\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: D:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012/11/17 01:58:06 \| 000,000,000 \| ---D \| M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/12/03 10:12:18 \| 000,000,000 \| ---D \| M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/09/22 19:57:39 \| 000,000,000 \| ---D \| M] [2012/09/22 18:40:32 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Users\Pedja\AppData\Roaming\Mozilla\Extensions [2012/12/03 15:15:38 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Users\Pedja\AppData\Roaming\Mozilla\Firefox\Profiles\yar0gpg2.default\extensions [2012/11/12 20:51:28 \| 000,214,127 \| ---- \| M] () (No name found) -- C:\Users\Pedja\AppData\Roaming\Mozilla\Firefox\Profiles\yar0gpg2.default\extensions\freehdsport@freehdsport.tv.xpi [2012/11/21 17:44:45 \| 000,000,000 \| ---D \| M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012/11/27 22:55:25 \| 000,000,000 \| ---D \| M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012/11/17 01:58:06 \| 000,000,000 \| ---D \| M] (avast! WebRep) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF [2012/11/20 07:17:52 \| 000,262,112 \| ---- \| M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012/06/28 16:42:00 \| 000,012,800 \| ---- \| M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll [2012/11/20 07:17:14 \| 000,002,465 \| ---- \| M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2012/11/20 07:17:14 \| 000,002,058 \| ---- \| M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml ========== Chrome ========== CHR - homepage: google.com/ CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}, CHR - homepage: google.com/ CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.95\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npwachk.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll CHR - plugin: Pando Web Plugin (Disabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\Pedja\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_110.dll CHR - plugin: Java Deployment Toolkit 7.0.70.11 (Enabled) = C:\Windows\system32\npDeployJava1.dll CHR - plugin: Uplay PC (Enabled) = D:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll CHR - Extension: Google Drive = C:\Users\Pedja\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\Pedja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Google Search = C:\Users\Pedja\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Gmail = C:\Users\Pedja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012/10/19 14:50:12 \| 000,001,050 \| ---- \| M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 static3.cdn.ubi.com O1 - Hosts: 127.0.0.1 ubisoft-orbit.s3.amazonaws.com O1 - Hosts: 127.0.0.1 onlineconfigservice.ubi.com O1 - Hosts: 127.0.0.1 orbitservice.ubi.com O1 - Hosts: 127.0.0.1 ubisoft-orbit-savegames.s3.amazonaws.com O2 - BHO: (avast! EasyPass Toolbar Helper) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (avast! EasyPass Toolbar) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software) O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [LWS] C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.) O4 - HKLM..\Run: [SSDMonitor] C:\Program Files\Common Files\PC Tools\sMonitor\SSDMonitor.exe (PC Tools) O4 - HKCU..\Run: [Advanced SystemCare 6] C:\Program Files\IObit\Advanced SystemCare 6\ASCTray.exe (IObit) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [Facebook Update] C:\Users\Pedja\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) O4 - HKCU..\Run: [RoboForm] C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe (Siber Systems) O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation) O4 - Startup: C:\Users\Pedja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Yahoo Messenger!.lnk = C:\Program Files\Yahoo Messenger.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Customize Menu - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html () O8 - Extra context menu item: Fill Forms - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html () O8 - Extra context menu item: Save Forms - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html () O8 - Extra context menu item: Show avast! EasyPass Toolbar - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html () O9 - Extra Button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software) O9 - Extra 'Tools' menuitem : Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software) O9 - Extra Button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software) O9 - Extra 'Tools' menuitem : Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software) O9 - Extra Button: Show Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software) O9 - Extra 'Tools' menuitem : Show avast! EasyPass Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (AVAST Software) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O13 - gopher Prefix: missing O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.216.1.40 89.216.1.50 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7D25C9FD-EAC2-4D12-8404-9D28A1804B19}: DhcpNameServer = 89.216.1.40 89.216.1.50 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/06/10 22:42:20 \| 000,000,024 \| ---- \| M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2012/11/05 16:47:00 \| 000,000,071 \| R--- \| M] () - F:\Autorun.inf -- [ CDFS ] O33 - MountPoints2\{1a4eba2a-30de-11e2-a65f-6c626dafc41f}\Shell - "" = AutoRun O33 - MountPoints2\{1a4eba2a-30de-11e2-a65f-6c626dafc41f}\Shell\AutoRun\command - "" = F:\Setup.exe -- [2012/11/05 16:47:00 \| 001,969,765 \| R--- \| M] (SEGA ) O33 - MountPoints2\{a08e588d-04f8-11e2-812e-6c626dafc41f}\Shell - "" = AutoRun O33 - MountPoints2\{a08e588d-04f8-11e2-812e-6c626dafc41f}\Shell\AutoRun\command - "" = F:\setup\rsrc\Autorun.exe O33 - MountPoints2\{a08e588d-04f8-11e2-812e-6c626dafc41f}\Shell\dinstall\command - "" = F:\Directx\dxsetup.exe O33 - MountPoints2\{faa49d49-dce2-11df-94e3-806e6f6e6963}\Shell - "" = AutoRun O33 - MountPoints2\{faa49d49-dce2-11df-94e3-806e6f6e6963}\Shell\AutoRun\command - "" = E:\CDSetup.exe O34 - HKLM BootExecute: (autocheck autochk ) O35 - HKLM\..comfile [open] -- "%1" % O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation) NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found ========== Files/Folders - Created Within 30 Days ========== [2012/12/03 16:53:28 \| 000,000,000 \| ---D \| C] -- C:\_OTL [2012/12/03 14:35:16 \| 001,101,824 \| ---- \| C] (Woodbury Associates Limited) -- C:\Windows\System32\UniBox210.ocx [2012/12/03 14:35:16 \| 001,081,616 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\MSCOMCTL.OCX [2012/12/03 14:35:16 \| 000,880,640 \| ---- \| C] (Woodbury Associates Limited) -- C:\Windows\System32\UniBox10.ocx [2012/12/03 14:35:16 \| 000,658,432 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\MSCOMCT2.OCX [2012/12/03 14:35:16 \| 000,513,696 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\msxml.dll [2012/12/03 14:35:16 \| 000,212,992 \| ---- \| C] (Woodbury Associates Limited) -- C:\Windows\System32\UniBoxVB12.ocx [2012/12/03 14:35:16 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Tools Registry Mechanic [2012/12/03 14:35:13 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Common Files\PC Tools [2012/12/03 14:35:11 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\TEMP [2012/12/03 14:35:11 \| 000,000,000 \| ---D \| C] -- C:\Program Files\PC Tools Registry Mechanic [2012/12/02 23:26:26 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\McAfee [2012/12/01 15:58:27 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Local\Facebook [2012/11/26 17:40:41 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Sun [2012/11/26 17:40:39 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Common Files\Java [2012/11/26 17:40:27 \| 000,174,056 \| ---- \| C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe [2012/11/26 17:40:27 \| 000,174,056 \| ---- \| C] (Oracle Corporation) -- C:\Windows\System32\java.exe [2012/11/26 17:40:27 \| 000,093,672 \| ---- \| C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll [2012/11/23 14:20:38 \| 000,527,192 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll [2012/11/23 14:20:38 \| 000,239,960 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll [2012/11/23 14:20:38 \| 000,074,072 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll [2012/11/23 14:20:36 \| 000,528,216 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll [2012/11/23 14:20:36 \| 000,515,416 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll [2012/11/23 14:20:36 \| 000,238,936 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll [2012/11/23 14:20:36 \| 000,074,072 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll [2012/11/23 14:20:36 \| 000,022,360 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll [2012/11/23 14:20:35 \| 001,974,616 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll [2012/11/23 14:20:35 \| 000,238,936 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll [2012/11/23 14:20:34 \| 005,501,792 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll [2012/11/23 14:20:34 \| 000,453,456 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll [2012/11/23 14:20:34 \| 000,235,344 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll [2012/11/23 14:20:33 \| 001,892,184 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll [2012/11/23 14:20:32 \| 000,069,464 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll [2012/11/23 14:20:30 \| 000,514,384 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll [2012/11/23 14:20:30 \| 000,235,856 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll [2012/11/23 14:20:30 \| 000,070,992 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll [2012/11/23 14:20:30 \| 000,023,376 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll [2012/11/23 14:20:29 \| 000,509,448 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll [2012/11/23 14:20:29 \| 000,238,088 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll [2012/11/23 14:20:29 \| 000,068,616 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll [2012/11/21 18:29:35 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Roaming\YCanPDF [2012/11/21 17:31:18 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 6 [2012/11/21 15:37:56 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Roaming\Malwarebytes [2012/11/21 15:37:40 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2012/11/21 15:37:39 \| 000,022,856 \| ---- \| C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2012/11/21 15:37:39 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Malwarebytes [2012/11/21 15:37:38 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Malwarebytes' Anti-Malware [2012/11/21 15:33:36 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2012/11/21 15:32:46 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Local\Deployment [2012/11/21 15:32:46 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Local\Apps [2012/11/19 12:42:31 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy [2012/11/19 12:42:27 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Spybot - Search & Destroy [2012/11/19 12:42:27 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Spybot - Search & Destroy [2012/11/19 11:39:04 \| 000,000,000 \| ---D \| C] -- C:\Windows\Minidump [2012/11/19 11:33:56 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Local\Opera [2012/11/19 11:33:55 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Roaming\Opera [2012/11/19 11:33:47 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Opera [2012/11/18 00:44:36 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Local\Chromium [2012/11/18 00:42:06 \| 000,000,000 \| ---D \| C] -- C:\Users\Public\Documents\Sports Interactive [2012/11/18 00:42:06 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\Documents\Sports Interactive [2012/11/18 00:37:23 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite [2012/11/18 00:36:49 \| 000,242,240 \| ---- \| C] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys [2012/11/18 00:36:43 \| 000,000,000 \| ---D \| C] -- C:\Program Files\DAEMON Tools Lite [2012/11/18 00:34:30 \| 014,682,176 \| ---- \| C] (DT Soft Ltd) -- C:\Users\Pedja\Desktop\DTLite4461-0327.exe [2012/11/17 01:58:55 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\RoboForm [2012/11/17 01:58:55 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! EasyPass [2012/11/17 01:58:53 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\Documents\My Avast EasyPass Data [2012/11/17 01:58:44 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Siber Systems [2012/11/17 01:58:26 \| 000,021,256 \| ---- \| C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys [2012/11/17 01:58:26 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus [2012/11/17 01:58:25 \| 000,361,032 \| ---- \| C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys [2012/11/17 01:58:22 \| 000,044,784 \| ---- \| C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr2.sys [2012/11/17 01:58:20 \| 000,054,232 \| ---- \| C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys [2012/11/17 01:58:17 \| 000,738,504 \| ---- \| C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys [2012/11/17 01:58:15 \| 000,058,680 \| ---- \| C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys [2012/11/17 01:58:00 \| 000,227,648 \| ---- \| C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe [2012/11/17 01:58:00 \| 000,041,224 \| ---- \| C] (AVAST Software) -- C:\Windows\avastSS.scr [2012/11/16 17:44:54 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Roaming\GarenaPlus [2012/11/16 17:30:45 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Garena Plus [2012/11/16 17:30:39 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\GarenaMessenger [2012/11/15 14:30:22 \| 000,078,336 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll [2012/11/15 14:30:06 \| 000,613,888 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll [2012/11/15 14:30:06 \| 000,172,032 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll [2012/11/15 14:30:06 \| 000,038,912 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll [2012/11/15 14:29:36 \| 000,047,720 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys [2012/11/15 14:29:36 \| 000,009,728 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\Wdfres.dll [2012/11/15 14:25:49 \| 002,382,848 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2012/11/15 14:25:49 \| 001,800,704 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2012/11/15 14:25:49 \| 001,427,968 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2012/11/15 14:25:49 \| 000,607,744 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2012/11/15 14:25:49 \| 000,231,936 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2012/11/15 14:25:49 \| 000,176,640 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2012/11/15 14:25:49 \| 000,142,848 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2012/11/15 14:25:49 \| 000,065,024 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2012/11/15 14:25:16 \| 002,345,984 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2012/11/15 14:21:33 \| 000,193,536 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore6.dll [2012/11/15 14:21:33 \| 000,044,032 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll [2012/11/15 14:21:07 \| 000,175,104 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\netcorehc.dll [2012/11/15 14:21:07 \| 000,156,672 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll [2012/11/15 14:21:07 \| 000,018,944 \| ---- \| C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll [2012/11/13 18:02:38 \| 000,000,000 \| R--D \| C] -- C:\Users\Pedja\Desktop\YT-Download [2012/11/13 17:52:42 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Local\PC_Drivers_Headquarters [2012/11/12 20:51:27 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LSHunter.TV [2012/11/12 20:51:23 \| 000,000,000 \| ---D \| C] -- C:\Program Files\LSHunter.TV [2012/11/10 13:56:56 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam [2012/11/10 13:52:30 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Common Files\Steam [2012/11/10 13:52:28 \| 000,000,000 \| ---D \| C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam [2012/11/10 13:52:28 \| 000,000,000 \| ---D \| C] -- C:\Program Files\Steam [2012/11/10 12:53:56 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com [2012/11/10 12:53:55 \| 000,000,000 \| ---D \| C] -- C:\Program Files\TornTV.com [2012/11/04 04:46:28 \| 000,000,000 \| ---D \| C] -- C:\uTorent Download [2012/11/04 02:31:30 \| 000,000,000 \| ---D \| C] -- C:\Users\Pedja\Tracing [2012/11/04 02:30:54 \| 000,000,000 \| ---D \| C] -- C:\Users\Public\Documents\microsoft [2012/11/03 21:58:31 \| 000,000,000 \| ---D \| C] -- C:\Windows\System32\appmgmt ========== Files - Modified Within 30 Days ========== [2012/12/03 21:37:00 \| 000,000,884 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012/12/03 21:33:02 \| 000,000,830 \| ---- \| M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012/12/03 21:04:53 \| 000,000,512 \| ---- \| M] () -- C:\Users\Pedja\Desktop\MBR.dat [2012/12/03 19:51:28 \| 000,014,016 \| -H-- \| M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012/12/03 19:51:28 \| 000,014,016 \| -H-- \| M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012/12/03 19:50:30 \| 000,623,940 \| ---- \| M] () -- C:\Windows\System32\perfh009.dat [2012/12/03 19:50:30 \| 000,106,316 \| ---- \| M] () -- C:\Windows\System32\perfc009.dat [2012/12/03 19:46:15 \| 000,000,880 \| ---- \| M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012/12/03 19:46:09 \| 000,000,272 \| ---- \| M] () -- C:\Windows\tasks\RMAutoUpdate.job [2012/12/03 19:45:52 \| 000,067,584 \| --S- \| M] () -- C:\Windows\bootstat.dat [2012/12/03 19:45:49 \| 264,225,010 \| ---- \| M] () -- C:\Windows\MEMORY.DMP [2012/12/03 19:45:49 \| 2415,321,088 \| -HS- \| M] () -- C:\hiberfil.sys [2012/12/03 19:03:02 \| 000,000,928 \| ---- \| M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2530232652-1996389211-866987093-1000UA.job [2012/12/03 19:00:11 \| 000,000,272 \| ---- \| M] () -- C:\Windows\tasks\RMSchedule.job [2012/12/03 16:03:00 \| 000,000,906 \| ---- \| M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2530232652-1996389211-866987093-1000Core.job [2012/12/03 14:35:17 \| 000,001,152 \| ---- \| M] () -- C:\Users\Public\Desktop\PC Tools Registry Mechanic.lnk [2012/12/03 14:34:41 \| 000,001,247 \| ---- \| M] () -- C:\Users\Public\Desktop\YTD Video Downloader.lnk [2012/12/03 10:15:45 \| 000,540,743 \| ---- \| M] () -- C:\Users\Pedja\Desktop\adwcleaner.exe [2012/12/02 23:26:22 \| 000,697,272 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe [2012/12/02 23:26:22 \| 000,073,656 \| ---- \| M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2012/11/22 22:29:57 \| 000,045,270 \| ---- \| M] () -- C:\Users\Pedja\AppData\Roaming\room_v3.dat [2012/11/21 17:44:45 \| 000,001,105 \| ---- \| M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2012/11/21 17:31:18 \| 000,001,179 \| ---- \| M] () -- C:\Users\Public\Desktop\Advanced SystemCare 6.lnk [2012/11/21 15:37:40 \| 000,001,091 \| ---- \| M] () -- C:\Users\Pedja\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk [2012/11/21 15:37:40 \| 000,001,067 \| ---- \| M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2012/11/21 15:33:39 \| 000,002,235 \| ---- \| M] () -- C:\Users\Pedja\Desktop\Google Chrome.lnk [2012/11/19 12:42:32 \| 000,001,240 \| ---- \| M] () -- C:\Users\Pedja\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk [2012/11/19 12:42:32 \| 000,001,216 \| ---- \| M] () -- C:\Users\Pedja\Desktop\Spybot - Search & Destroy.lnk [2012/11/19 12:38:50 \| 000,001,413 \| ---- \| M] () -- C:\Users\Pedja\Desktop\Internet Explorer.lnk [2012/11/18 00:37:23 \| 000,001,896 \| ---- \| M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2012/11/18 00:36:49 \| 000,242,240 \| ---- \| M] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys [2012/11/18 00:35:36 \| 014,682,176 \| ---- \| M] (DT Soft Ltd) -- C:\Users\Pedja\Desktop\DTLite4461-0327.exe [2012/11/17 01:58:26 \| 000,002,111 \| ---- \| M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk [2012/11/17 01:58:15 \| 000,002,577 \| ---- \| M] () -- C:\Windows\System32\config.nt [2012/11/16 17:43:04 \| 000,000,905 \| ---- \| M] () -- C:\Users\Pedja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Yahoo Messenger!.lnk [2012/11/15 15:36:58 \| 000,269,568 \| ---- \| M] () -- C:\Windows\System32\FNTCACHE.DAT [2012/11/15 14:30:22 \| 000,078,336 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll [2012/11/15 14:30:06 \| 000,613,888 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll [2012/11/15 14:30:06 \| 000,172,032 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll [2012/11/15 14:30:06 \| 000,038,912 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll [2012/11/15 14:30:06 \| 000,000,003 \| ---- \| M] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf [2012/11/15 14:29:36 \| 000,047,720 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys [2012/11/15 14:29:36 \| 000,009,728 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\Wdfres.dll [2012/11/15 14:29:36 \| 000,002,560 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui [2012/11/15 14:29:36 \| 000,000,003 \| ---- \| M] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf [2012/11/15 14:25:49 \| 002,382,848 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2012/11/15 14:25:49 \| 001,800,704 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2012/11/15 14:25:49 \| 001,427,968 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2012/11/15 14:25:49 \| 000,607,744 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2012/11/15 14:25:49 \| 000,231,936 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2012/11/15 14:25:49 \| 000,176,640 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2012/11/15 14:25:49 \| 000,142,848 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2012/11/15 14:25:49 \| 000,065,024 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2012/11/15 14:25:16 \| 002,345,984 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2012/11/15 14:21:33 \| 000,193,536 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore6.dll [2012/11/15 14:21:33 \| 000,044,032 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll [2012/11/15 14:21:07 \| 000,175,104 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\netcorehc.dll [2012/11/15 14:21:07 \| 000,156,672 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll [2012/11/15 14:21:07 \| 000,018,944 \| ---- \| M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll [2012/11/10 13:52:32 \| 000,000,875 \| ---- \| M] () -- C:\Users\Public\Desktop\Steam.lnk ========== Files Created - No Company Name ========== [2012/12/03 21:04:53 \| 000,000,512 \| ---- \| C] () -- C:\Users\Pedja\Desktop\MBR.dat [2012/12/03 14:35:28 \| 000,000,272 \| ---- \| C] () -- C:\Windows\tasks\RMSchedule.job [2012/12/03 14:35:27 \| 000,000,272 \| ---- \| C] () -- C:\Windows\tasks\RMAutoUpdate.job [2012/12/03 14:35:17 \| 000,001,152 \| ---- \| C] () -- C:\Users\Public\Desktop\PC Tools Registry Mechanic.lnk [2012/12/03 14:35:16 \| 000,038,560 \| ---- \| C] () -- C:\Windows\System32\CleanMFT32.exe [2012/12/03 14:34:41 \| 000,001,247 \| ---- \| C] () -- C:\Users\Public\Desktop\YTD Video Downloader.lnk [2012/12/03 10:15:38 \| 000,540,743 \| ---- \| C] () -- C:\Users\Pedja\Desktop\adwcleaner.exe [2012/12/02 13:05:49 \| 264,225,010 \| ---- \| C] () -- C:\Windows\MEMORY.DMP [2012/12/01 15:58:29 \| 000,000,928 \| ---- \| C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2530232652-1996389211-866987093-1000UA.job [2012/12/01 15:58:28 \| 000,000,906 \| ---- \| C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2530232652-1996389211-866987093-1000Core.job [2012/11/21 17:44:45 \| 000,001,105 \| ---- \| C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2012/11/21 17:31:18 \| 000,001,179 \| ---- \| C] () -- C:\Users\Public\Desktop\Advanced SystemCare 6.lnk [2012/11/21 15:37:40 \| 000,001,091 \| ---- \| C] () -- C:\Users\Pedja\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk [2012/11/21 15:37:40 \| 000,001,067 \| ---- \| C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2012/11/21 15:33:39 \| 000,002,235 \| ---- \| C] () -- C:\Users\Pedja\Desktop\Google Chrome.lnk [2012/11/21 15:32:57 \| 000,000,884 \| ---- \| C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2012/11/21 15:32:57 \| 000,000,880 \| ---- \| C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2012/11/19 12:42:32 \| 000,001,240 \| ---- \| C] () -- C:\Users\Pedja\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk [2012/11/19 12:42:32 \| 000,001,216 \| ---- \| C] () -- C:\Users\Pedja\Desktop\Spybot - Search & Destroy.lnk [2012/11/19 12:38:50 \| 000,001,413 \| ---- \| C] () -- C:\Users\Pedja\Desktop\Internet Explorer.lnk [2012/11/18 00:37:23 \| 000,001,896 \| ---- \| C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2012/11/17 01:58:26 \| 000,002,111 \| ---- \| C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk [2012/11/16 22:26:58 \| 000,045,270 \| ---- \| C] () -- C:\Users\Pedja\AppData\Roaming\room_v3.dat [2012/11/16 17:43:04 \| 000,388,085 \| ---- \| C] () -- C:\Program Files\Yahoo Messenger.exe [2012/11/16 17:43:04 \| 000,000,905 \| ---- \| C] () -- C:\Users\Pedja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Yahoo Messenger!.lnk [2012/11/15 14:30:06 \| 000,000,003 \| ---- \| C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf [2012/11/15 14:29:36 \| 000,000,003 \| ---- \| C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf [2012/11/10 13:52:32 \| 000,000,875 \| ---- \| C] () -- C:\Users\Public\Desktop\Steam.lnk [2012/10/02 10:42:00 \| 000,033,134 \| ---- \| C] () -- C:\Users\Pedja\AppData\Roaming\UserTile.png [2012/09/23 12:27:41 \| 000,293,889 \| ---- \| C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT [2012/09/22 22:16:25 \| 000,139,152 \| ---- \| C] () -- C:\Windows\System32\drivers\PnkBstrK.sys [2012/09/22 22:16:25 \| 000,139,152 \| ---- \| C] () -- C:\Users\Pedja\AppData\Roaming\PnkBstrK.sys [2012/09/22 22:16:00 \| 000,111,928 \| ---- \| C] () -- C:\Windows\System32\PnkBstrB.exe [2012/09/22 22:15:57 \| 000,794,408 \| ---- \| C] () -- C:\Windows\System32\pbsvc.exe [2012/09/22 22:15:57 \| 000,075,064 \| ---- \| C] () -- C:\Windows\System32\PnkBstrA.exe [2012/09/22 21:04:29 \| 000,080,896 \| ---- \| C] () -- C:\Windows\System32\RDVGHelper.exe [2012/09/22 21:02:48 \| 000,066,048 \| ---- \| C] () -- C:\Windows\System32\PrintBrmUi.exe [2012/09/22 19:27:04 \| 000,000,000 \| ---- \| C] () -- C:\Windows\ativpsrm.bin [2012/01/18 05:22:54 \| 000,028,418 \| ---- \| C] () -- C:\Windows\System32\lvcoinst.ini [2011/08/12 11:20:14 \| 000,015,896 \| ---- \| C] () -- C:\Windows\System32\drivers\iKeyLFT2.dll [2011/04/20 00:21:02 \| 000,037,376 \| ---- \| C] () -- C:\Windows\System32\atitmpxx.dll [2011/03/17 16:51:46 \| 000,003,929 \| ---- \| C] () -- C:\Windows\System32\atipblag.dat [2011/02/28 20:30:06 \| 000,233,012 \| ---- \| C] () -- C:\Windows\System32\atiicdxx.dat ========== ZeroAccess Check ========== [2009/07/14 05:42:31 \| 000,000,227 \| RHS- \| M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 05:41:00 \| 012,873,728 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 \| 000,606,208 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 02:16:17 \| 000,342,528 \| ---- \| M] (Microsoft Corporation) "ThreadingModel" = Both ========== Custom Scans ========== ========== Drive Information ========== Physical Drives --------------- Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media Interface type: IDE Media Type: Fixed hard disk media Model: WDC WD50 00AADS-00S9B SCSI Disk Device Partitions: 3 Status: OK Status Info: 0 Partitions --------------- DeviceID: Disk #0, Partition #0 PartitionType: Installable File System Bootable: True BootPartition: True PrimaryPartition: True Size: 100.00MB Starting Offset: 1048576 Hidden sectors: 0 DeviceID: Disk #0, Partition #1 PartitionType: Installable File System Bootable: False BootPartition: False PrimaryPartition: True Size: 117.00GB Starting Offset: 105906176 Hidden sectors: 0 DeviceID: Disk #0, Partition #2 PartitionType: Installable File System Bootable: False BootPartition: False PrimaryPartition: True Size: 349.00GB Starting Offset: 125829120000 Hidden sectors: 0 < %SYSTEMDRIVE%\*.exe > < MD5 for: EXPLORER.EXE > [2011/02/26 06:19:21 \| 002,616,320 \| ---- \| M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe [2009/07/14 02:14:20 \| 002,613,248 \| ---- \| M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe [2011/02/26 06:51:13 \| 002,614,784 \| ---- \| M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe [2009/10/31 06:45:39 \| 002,614,272 \| ---- \| M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe [2011/02/26 06:33:07 \| 002,614,784 \| ---- \| M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe [2010/11/20 13:17:09 \| 002,616,320 \| ---- \| M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe [2011/02/25 06:30:54 \| 002,616,320 \| ---- \| M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe [2011/02/25 06:30:54 \| 002,616,320 \| ---- \| M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe [2009/08/03 06:49:47 \| 002,613,248 \| ---- \| M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe [2009/08/03 06:35:50 \| 002,613,248 \| ---- \| M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe [2009/10/31 07:00:51 \| 002,614,272 \| ---- \| M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe < MD5 for: SERVICES > [2009/06/10 22:39:37 \| 000,017,463 \| ---- \| M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\System32\drivers\etc\services [2009/06/10 22:39:37 \| 000,017,463 \| ---- \| M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_045b589158ae90da\services < MD5 for: SERVICES.CFG > [2012/07/27 21:51:34 \| 000,586,083 \| ---- \| M] () MD5=6DE4EA437EC1FE6DB27CADB0A7EA8DC2 -- C:\Program Files\Adobe\Reader 10.0\Reader\Services\Services.cfg [2011/06/06 11:55:30 \| 000,584,045 \| R--- \| M] () MD5=B82DD53FA8C260DDD7FDC42182DB816E -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\services.cfg < MD5 for: SERVICES.EXE > [2009/07/14 02:14:36 \| 000,259,072 \| ---- \| M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe [2009/07/14 02:14:36 \| 000,259,072 \| ---- \| M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe < MD5 for: SERVICES.EXE.MUI > [2009/07/14 03:03:06 \| 000,017,408 \| ---- \| M] (Microsoft Corporation) MD5=0DA5F221169DEB5AC3A22465CD6F0281 -- C:\Windows\System32\en-US\services.exe.mui [2009/07/14 03:03:06 \| 000,017,408 \| ---- \| M] (Microsoft Corporation) MD5=0DA5F221169DEB5AC3A22465CD6F0281 -- C:\Windows\winsxs\x86_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_69d39d3a8748c332\services.exe.mui < MD5 for: SERVICES.LNK > [2009/07/14 05:41:45 \| 000,001,288 \| ---- \| M] () MD5=021B1B178776500E54560EDCFFE0EE21 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk [2009/07/14 05:41:45 \| 000,001,288 \| ---- \| M] () MD5=021B1B178776500E54560EDCFFE0EE21 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk < MD5 for: SERVICES.MOF > [2009/06/10 22:26:14 \| 000,002,866 \| ---- \| M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\System32\wbem\services.mof [2009/06/10 22:26:14 \| 000,002,866 \| ---- \| M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.mof < MD5 for: SERVICES.MSC > [2009/07/14 03:08:50 \| 000,092,745 \| ---- \| M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\System32\en-US\services.msc [2009/06/10 22:21:09 \| 000,092,745 \| ---- \| M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\System32\services.msc [2009/07/14 03:08:50 \| 000,092,745 \| ---- \| M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc [2009/06/10 22:21:09 \| 000,092,745 \| ---- \| M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc < MD5 for: SERVICES.PTXML > [2009/07/13 21:20:01 \| 000,001,061 \| ---- \| M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\System32\wdi\perftrack\Services.ptxml [2009/07/13 21:20:01 \| 000,001,061 \| ---- \| M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\Services.ptxml < MD5 for: SERVICES.SBS > [2011/03/01 08:58:46 \| 000,034,818 \| ---- \| M] () MD5=62AFD4B2025CE6D4706B36F4C4808F9B -- C:\Program Files\Spybot - Search & Destroy\Includes\Services.sbs < MD5 for: SVCHOST.EXE > [2009/07/14 02:14:41 \| 000,020,992 \| ---- \| M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe [2009/07/14 02:14:41 \| 000,020,992 \| ---- \| M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe [2012/09/29 19:54:26 \| 000,218,184 \| ---- \| M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe < MD5 for: USERINIT.EXE > [2010/11/20 13:17:48 \| 000,026,624 \| ---- \| M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe [2010/11/20 13:17:48 \| 000,026,624 \| ---- \| M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe [2009/07/14 02:14:43 \| 000,026,112 \| ---- \| M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe < MD5 for: WINLOGON.EXE > [2009/10/28 07:17:59 \| 000,285,696 \| ---- \| M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe [2009/10/28 06:52:08 \| 000,285,696 \| ---- \| M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe [2010/11/20 13:17:54 \| 000,286,720 \| ---- \| M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe [2010/11/20 13:17:54 \| 000,286,720 \| ---- \| M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe [2012/09/29 19:54:26 \| 000,218,184 \| ---- \| M] () MD5=8846E87210AD131CF71E3E2E49F647B0 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe [2009/07/14 02:14:45 \| 000,285,696 \| ---- \| M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe ========== Files - Unicode (All) ========== [2012/12/03 10:21:53 \| 000,000,000 \| R--D \| M](C:\Users\Pedja\Desktop\?y sity) -- C:\Users\Pedja\Desktop\мy sity [2012/12/02 14:10:49 \| 000,000,000 \| R--D \| C](C:\Users\Pedja\Desktop\?y sity) -- C:\Users\Pedja\Desktop\мy sity ========== Alternate Data Streams ========== @Alternate Data Stream - 112 bytes -> C:\ProgramData\TEMP:D1B5B4F1 < End of report >

Profil

Sass Drake Poslao: 03 Dec 2012 22:07 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	1Ovo se svidja korisniku: ThePhilosopher Registruj se da bi pohvalio/la poruku! Idi na: http://www.mycity.rs/ambulanta-upload.php i pošalji sljedeći fajl: C:\Program Files\Yahoo Messenger.exe Javi u poruci kada to uradiš.

Profil

Nikola Markovic 4 Poslao: 03 Dec 2012 22:15 Idi na vrh
offline Nikola Markovic 4 Građanin Pridružio: 02 Dec 2012 Poruke: 37	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! da li da idem na choose file ili na upload

Profil

Sass Drake Poslao: 03 Dec 2012 22:17 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Choose File, nađeš fajl koj isam tražio i klikneš na upload.

Profil

Nikola Markovic 4 Poslao: 03 Dec 2012 22:22 Idi na vrh
offline Nikola Markovic 4 Građanin Pridružio: 02 Dec 2012 Poruke: 37	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! uradjeno kako si rekao!!

Profil

Sass Drake Poslao: 03 Dec 2012 22:32 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Da li ti se ovaj problem počeo dešavati nakon instalacije nekog programa ili igre?

Profil

Nikola Markovic 4 Poslao: 03 Dec 2012 22:35 Idi na vrh
offline Nikola Markovic 4 Građanin Pridružio: 02 Dec 2012 Poruke: 37	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! nisam siguran ali sve instalacije i igre posle 15.11 sam obrisao misleci da je taj malwer potice od njih.nazalost nisam uspeo da ga eliminisem.razmisljam cak i da oborim sistem.

Profil

Sass Drake Poslao: 03 Dec 2012 22:37 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kada ti opet iskoči LinkBucks okači screenshot toga da pogledamo. http://www.mycity.rs/Pitanja-i-predlozi/Pravljenje-screenshota.html

Profil

Nikola Markovic 4 Poslao: 03 Dec 2012 22:46 Idi na vrh
offline Nikola Markovic 4 Građanin Pridružio: 02 Dec 2012 Poruke: 37	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Napisano: 03 Dec 2012 22:38 usput da ti kazem da i mnogi moji drugovi imaju problem sa tim malwerom. Dopuna: 03 Dec 2012 22:46 nista od toga sto si mi predlozio i nakon pregledanog uputstva mi nije uspelo.zacementirao se malwer

Profil

Sass Drake Poslao: 03 Dec 2012 22:49 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Da li je jedna od igara koje si imao isntalirane zahtijevalje instalaciju hakovane verzije Steam klijenta?

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Dosadni LinkBucks.com - Get your share!

Ko je trenutno na forumu

Ukupno su 982 korisnika na forumu :: 30 registrovanih, 2 sakrivenih i 950 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 357magnum, babaroga, Bane san, brufen, DPera, Džordžino, GandorCC, ILGromovnik, jackreacher011011, Jeremiah, Još malo pa deda, Koca Popovic, mercedesamg, Mi lao shu, mikrimaus, naki011, nemkea71, nikoladim, Panter, Primus17, procesor, raketaš, skvara, vathra, Vatreni Zmaj, vlahale, x9, yrraf, yufighter, zixmix

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by