MyCity » Ambulanta -> Arhiva Ambulante » Kada digne sistem treba mu vremena da se pokrene

Kada digne sistem treba mu vremena da se pokrene

Napisano na dan: 17.4.2015

Strana:
1
2

Kada digne sistem treba mu vremena da se pokrene

Sledeća strana

Pagination

Odgovori

Strana:
1
2

dejanod Poslao: 17 Apr 2015 17:54 Idi na vrh
offline dejanod Moderator foruma u administraciji Pridružio: 16 Okt 2010 Poruke: 3468 Gde živiš: KRAGUJEVAC	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Ovako, imam problem kad podigne sistem nema ono odmah da mogu otvoriti Mozilu ili Chrome i WE ,nego moram sačekati do3-5min kao da se zagreje pa tek onda i ti je počeo da koči , skoro 10min mu treba da bude u radnom stanju.A ja ga održavam kao dete, prašine nema nigde, defragmentaciju, ccleaner. Nemam mnogo programa možda 7-8 kom. ADSL -10MB/S Internet Anti virus- AVG FRE EDITION 2015(Krekovan) Windows 7 Ultimate Nisam ništa pokušavao da rešim. https://www.mycity.rs/must-login.png Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-04-2015 04 Ran by dejan (administrator) on DEJAN-PC on 17-04-2015 17:31:19 Running from C:\Users\dejan\Desktop Loaded Profiles: dejan (Available profiles: dejan) Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: English (United States) Internet Explorer Version 11 (Default browser: Opera) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe (FileZilla Project) C:\xampp\FileZillaFTP\FileZillaServer.exe (Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe (WinAbility® Software Corporation) C:\Program Files\Folder Guard\FG32.exe (Nalpeiron Ltd.) C:\Windows\System32\NlsSrv32.exe (SoftwareForMe Inc) C:\Program Files\SoftwareForMe Inc\PhoneMyPC\PhoneMyPC_Helper.exe (SoftwareForMe Inc) C:\Program Files\SoftwareForMe Inc\PhoneMyPC\PhoneMyPC.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe (WinAbility® Software Corporation) C:\Program Files\Folder Guard\FG32.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe () C:\Program Files\Unlocker\UnlockerAssistant.exe (BitTorrent Inc.) C:\Users\dejan\AppData\Roaming\uTorrent\uTorrent.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (CyberScrub LLC) C:\Program Files\CyberScrub Privacy Suite\CSRiskMon.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\System32\calc.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3710416 2015-02-19] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [FG_Monitor] => C:\Program Files\Folder Guard\FG32.exe [181832 2013-08-26] (WinAbility® Software Corporation) HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] () HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\Run: [uTorrent] => C:\Users\dejan\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-11-15] (BitTorrent Inc.) HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [31344744 2015-02-26] (Skype Technologies S.A.) HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\Run: [Privacy Suite RiskMonitor] => C:\Program Files\CyberScrub Privacy Suite\CSRiskMon.exe [2425072 2010-03-29] (CyberScrub LLC) HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5529880 2015-03-13] (Piriform Ltd) HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\MountPoints2: {49ba0df5-a0a3-11e4-8658-001fd01ee4db} - K:\LG_PC_Programs.exe HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\MountPoints2: {985a1b4f-4e58-11e4-8674-001fd01ee4db} - K:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A02B07 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B} Startup: C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WindowsLGFirmwareExtract-1.2.1.0-Release.zip.lnk ShortcutTarget: WindowsLGFirmwareExtract-1.2.1.0-Release.zip.lnk -> C:\ProgramData\{aebadf42-fe1e-7474-aeba-adf42fe17d0b}\WindowsLGFirmwareExtract-1.2.1.0-Release.zip.exe (No File) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.coolsearches.info/?pid=20495&.....p;unqvl=85 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.coolsearches.info/?pid=20495&.....p;unqvl=85 HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp SearchScopes: HKLM -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 SearchScopes: HKLM -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> DefaultScope {92C7B1B5-DE71-40E3-AC68-A0FC9758D12A} URL = https://search.yahoo.com/yhs/search?hspart=tightro.....415&p={searchTerms} SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> {7FE5D492-FF15-4BB0-ACF5-A6B18DB94324} URL = http://search.yahoo.com/search?p={searchTerms}&fr=tightropetb&type=11185 SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> {92C7B1B5-DE71-40E3-AC68-A0FC9758D12A} URL = https://search.yahoo.com/yhs/search?hspart=tightro.....415&p={searchTerms} SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={55B1B356-8AFF-410B-94DF-DBCA8601494B}&mid=dd5fc3f655bb47d296e3d15696fa0d28-0024689bf3919a4e8122f47637591eafddd236e7&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-04 18:49:44&v=4.0.0.19&pid=wtu&sg=&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-09-27] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-09-27] (Oracle Corporation) BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2015-03-24] (DVDVideoSoft Ltd.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default FF DefaultSearchEngine,S: WebSearch FF DefaultSearchUrl: hxxp://websearch.coolsearches.info/?pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85&l=1&q= FF SearchEngineOrder.1: WebSearch FF SearchEngineOrder.1,S: WebSearch FF SelectedSearchEngine: WebSearch FF SelectedSearchEngine,S: WebSearch FF Homepage: hxxp://ww.google.com/ FF Keyword.URL: hxxp://websearch.coolsearches.info/?pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85&l=1&q= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] () FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-27] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-09-27] (Oracle Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.) FF Plugin: @verimatrix.com/ViewRightWeb -> C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll [2014-06-10] (Verimatrix, Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-10-15] (Adobe Systems) FF Plugin HKU\S-1-5-21-3105228336-3140102207-1041830059-1000: @verimatrix.com/ViewRightWeb -> C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll [2014-06-10] (Verimatrix, Inc.) FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\pogodakyu.xml [2015-04-05] FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\vokabular.xml [2015-04-05] FF Extension: SSaleePluss - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\A@qDuUGe1.org [2015-04-08] FF Extension: EHTip - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\ehtip@robertkatic [2015-04-03] FF Extension: SalEPlues - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\wkb3C@M7i.net [2015-04-08] FF Extension: MEGA - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\firefox@mega.co.nz.xpi [2015-03-22] FF Extension: HyperTranslate - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\hypertranslate@mdc.com.xpi [2015-02-10] FF Extension: Just Restart! - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\{5afc0857-ce93-471c-9a00-b6247890dc1d}.xpi [2015-04-11] FF Extension: No Name - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi [2015-04-02] FF Extension: Adblock Plus - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-03-14] FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird Chrome: ======= CHR dev: Chrome dev build detected! <======= ATTENTION CHR HomePage: Default -> hxxp://websearch.mocaflix.com/ CHR StartupUrls: Default -> "hxxp://websearch.mocaflix.com/", "hxxp://websearch.searchandfly.info/?pid=3896&r=2014/09/18&hid=14315775422242091832&lg=EN&cc=RS&unqvl=62", "hxxp://www.istartsurf.com/?type=hp&ts=1411404801&from=smt&uid=WDCXWD5000AAKS-00YGA0_WD-WCAS8066279662796", "hxxp://websearch.searchandfly.info/?pid=3896&r=2014/09/25&hid=14315775422242091832&lg=EN&cc=RS&unqvl=62", "hxxp://websearch.allsearches.info/?pid=3482&r=2014/10/05&hid=14315775422242091832&lg=EN&cc=RS&unqvl=64", "hxxp://istart.webssearches.com/?type=hp&ts=1412519908&from=exp&uid=WDCXWD5000AAKS-00YGA0_WD-WCAS8066279662796", "hxxp://www.sweet-page.com/?type=hp&ts=1413876712&from=cor&uid=WDCXWD5000AAKS-00YGA0_WD-WCAS8066279662796", "hxxp://websearch.searc-hall.info/?pid=3458&r=2014/11/03&hid=14315775422242091832&lg=EN&cc=RS&unqvl=65", "hxxp://websearch.search-plaza.info/?pid=3463&r=2014/11/11&hid=14315775422242091832&lg=EN&cc=RS&unqvl=69", "hxxp://istart.webssearches.com/?type=hp&ts=1416947335&from=exp&uid=WDCXWD5000AAKS-00YGA0_WD-WCAS8066279662796", "hxxp://www.mystartsearch.com/?type=hp&ts=1422035696&from=smt&uid=WDCXWD5000AAKS-00YGA0_WD-WCAS8066279662796" CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (BIODIGITAL HUMAN) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2014-09-27] CHR Extension: (Tampermonkey) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-01-24] CHR Extension: (Facebook for Chrome) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdalhedleemkkdjddjgfjmcnbpejpapp [2015-01-03] CHR Extension: (Magisto - Magical Video Editor) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghmngbmfdgknokcefmkbjlcjabdklnlk [2014-11-12] CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2014-10-07] CHR Extension: (jmjonpeiaiacbgfgemlchebljmfgjnmh) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjonpeiaiacbgfgemlchebljmfgjnmh [2014-10-10] CHR Extension: (HyperTranslate) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kecaejkkcpijbbnnmnkpcpgiifdplcia [2014-09-27] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-11] CHR Extension: (mdaboflcmhejfihjcbmdiebgfchigjcf) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdaboflcmhejfihjcbmdiebgfchigjcf [2014-10-09] CHR Extension: (Facebook Messenger) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdapmeleikeppmfgadilffngabfpibok [2014-09-27] CHR Extension: (Google Wallet) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-27] CHR Extension: (KnowtheBible) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\oliggifnpofcibpgfmoimpfgjeidhhdp [2014-09-27] CHR Extension: (Facebook - Delete My Timeline) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\olpgdigakalagbnckjmnhajofccbbeaf [2014-12-06] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [Not Found] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S2 avgfws; C:\Program Files\AVG\AVG2015\avgfws.exe [1508656 2015-02-19] (AVG Technologies CZ, s.r.o.) S2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3411408 2015-02-19] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [308720 2015-02-19] (AVG Technologies CZ, s.r.o.) R2 FileZilla Server; C:\xampp\FileZillaFTP\FileZillaServer.exe [632320 2012-02-26] (FileZilla Project) [File not signed] R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project) [File not signed] R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project) [File not signed] R2 Folder Guard; C:\Program Files\Folder Guard\FG32.exe [181832 2013-08-26] (WinAbility® Software Corporation) R2 PhoneMyPC_Helper; C:\Program Files\SoftwareForMe Inc\PhoneMyPC\PhoneMyPC_Helper.exe [31232 2011-07-15] (SoftwareForMe Inc) [File not signed] R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5448464 2015-03-30] (TeamViewer GmbH) S3 wampapache; c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [22016 2014-05-01] (Apache Software Foundation) [File not signed] S3 wampmysqld; c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [10959360 2014-05-01] () [File not signed] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [25856 2012-07-03] (Google Inc) S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus.sys [15744 2015-01-21] (LG Electronics Inc.) S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [24576 2015-01-26] (LG Electronics Inc.) S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [29696 2015-01-26] (LG Electronics Inc.) R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.) R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [48920 2014-12-03] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [217568 2015-02-19] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [154904 2014-11-18] (AVG Technologies CZ, s.r.o.) R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.) R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.) R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [265184 2015-02-03] (AVG Technologies CZ, s.r.o.) R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [107488 2015-01-23] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.) R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [210400 2015-01-16] (AVG Technologies CZ, s.r.o.) R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [42784 2014-11-04] (AVG Technologies) R2 FGUARD32; C:\Program Files\Folder Guard\FGUARD32.SYS [58128 2013-08-26] (WinAbility® Software Corporation) S3 pneteth; C:\Windows\System32\DRIVERS\pneteth.sys [13440 2011-11-25] (June Fabrics Technology Inc.) S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [15688 2013-09-30] () S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-11-04] (Duplex Secure Ltd.) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2014-07-29] (Huawei Technologies Co., Ltd.) U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-04-17 17:31 - 2015-04-17 17:31 - 00019605 _____ () C:\Users\dejan\Desktop\FRST.txt 2015-04-17 17:30 - 2015-04-17 17:30 - 01137152 _____ (Farbar) C:\Users\dejan\Desktop\FRST.exe 2015-04-17 17:29 - 2015-04-17 17:31 - 00000000 ____D () C:\FRST 2015-04-16 17:00 - 2015-04-16 17:00 - 11194863 _____ () C:\Users\dejan\Downloads\com.android.vending-5.4.12-80341200-minAPI9.apk 2015-04-15 23:24 - 2015-03-23 05:06 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-04-15 23:24 - 2015-03-23 04:59 - 00896000 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-04-15 23:24 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2015-04-15 23:24 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-04-15 23:24 - 2015-03-17 07:01 - 00137656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-04-15 23:24 - 2015-03-17 07:01 - 00067512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-04-15 23:24 - 2015-03-17 06:59 - 01306112 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-04-15 23:24 - 2015-03-17 06:56 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-04-15 23:24 - 2015-03-17 06:56 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-04-15 23:24 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-04-15 23:24 - 2015-03-17 06:56 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-04-15 23:24 - 2015-03-17 06:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-04-15 23:24 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-04-15 23:24 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-04-15 23:24 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-04-15 23:24 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-04-15 23:24 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-04-15 23:24 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys 2015-04-15 23:24 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll 2015-04-15 23:23 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-04-15 23:23 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-04-15 23:23 - 2015-03-13 05:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-04-15 23:23 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-04-15 23:23 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-04-15 23:23 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-04-15 23:23 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-04-15 23:23 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-04-15 23:23 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-04-15 23:23 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-04-15 23:23 - 2015-03-13 05:16 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-04-15 23:23 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-04-15 23:23 - 2015-03-13 05:09 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-04-15 23:23 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-04-15 23:23 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-04-15 23:23 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-04-15 23:23 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-04-15 23:23 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-04-15 23:23 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-04-15 23:23 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-04-15 23:23 - 2015-03-13 04:43 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-04-15 23:23 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-04-15 23:23 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-04-15 23:23 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-04-15 23:23 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-04-15 23:23 - 2015-03-05 06:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-04-15 23:22 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-04-15 23:22 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-04-15 23:22 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-04-15 23:22 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-04-15 23:22 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-04-15 23:22 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-04-15 23:22 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-04-15 23:22 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-04-15 23:22 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2015-04-15 23:22 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2015-04-15 23:22 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys 2015-04-15 23:15 - 2015-04-16 16:15 - 17189552 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe 2015-04-11 19:14 - 2015-04-11 19:14 - 00000000 ____D () C:\Users\dejan\Downloads\11876_505174655_registry files Windows 2015-04-11 19:13 - 2015-04-11 19:13 - 00356358 _____ () C:\Users\dejan\Downloads\11876_505174655_registry files Windows.rar 2015-04-11 13:06 - 2015-04-11 13:06 - 02366265 _____ () C:\Users\dejan\Downloads\Tapet_3.93.apk 2015-04-11 13:05 - 2015-04-11 13:05 - 00088984 _____ () C:\Users\dejan\Downloads\XposedGELSettings_1.2.apk 2015-04-11 13:04 - 2015-04-11 13:04 - 03646343 _____ () C:\Users\dejan\Downloads\GravityBox+LP+v5.0.6alpha+Unlocked.apk 2015-04-11 13:02 - 2015-04-11 13:02 - 00728857 _____ () C:\Users\dejan\Downloads\Xposed+Installer+v2.6.1.apk 2015-04-09 21:10 - 2015-04-09 21:10 - 00000598 _____ () C:\Users\dejan\Desktop\WampServer.lnk 2015-04-09 21:10 - 2015-04-09 21:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WampServer 2015-04-09 21:07 - 2015-04-09 21:12 - 00000000 ____D () C:\wamp 2015-04-09 19:58 - 2015-04-09 19:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP 2015-04-09 19:43 - 2015-04-09 22:25 - 00000000 ____D () C:\xampp 2015-04-09 12:19 - 2015-04-09 12:19 - 00001595 _____ () C:\Users\dejan\Desktop\SkipSoft ToolKit.lnk 2015-04-09 12:19 - 2015-04-09 12:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SkipSoft Android ToolKit 2015-04-09 12:18 - 2015-04-09 12:20 - 00000000 ____D () C:\Unified_Android_ToolKit 2015-04-08 16:12 - 2015-04-08 16:32 - 00000000 ____D () C:\KDZTOOL 2015-04-08 15:42 - 2015-04-08 15:42 - 00000000 ____D () C:\Windows\system32\X86 2015-04-08 15:42 - 2015-04-08 15:42 - 00000000 ____D () C:\Windows\system32\AMD64 2015-04-08 15:42 - 2015-04-08 15:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZDownloader 2015-04-08 15:41 - 2015-04-08 19:17 - 00000000 ____D () C:\Program Files\SalEPlues 2015-04-08 15:41 - 2015-04-08 15:41 - 00000000 ____D () C:\ProgramData\lpknfjaeigcmaopebplbeicakpilhebd 2015-04-08 15:40 - 2015-04-08 15:40 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\EZDownloader 2015-04-08 15:36 - 2015-04-08 19:17 - 00000000 ____D () C:\Program Files\SSaleePluss 2015-04-08 15:36 - 2015-04-08 15:42 - 00001868 _____ () C:\Users\Public\Desktop\EZDownloader.lnk 2015-04-08 15:35 - 2015-04-08 15:35 - 00000000 ____D () C:\ProgramData\elmcfjljiglccigjnbmclokjfaanhdll 2015-04-08 15:34 - 2015-04-09 22:30 - 00000000 ____D () C:\ProgramData\{aebadf42-fe1e-7474-aeba-adf42fe17d0b} 2015-04-05 15:45 - 2015-04-05 15:45 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2015-04-05 13:14 - 2015-04-05 13:16 - 00000000 ___SD () C:\Windows\system32\GWX 2015-04-03 11:45 - 2015-04-04 19:25 - 00002894 _____ () C:\Windows\PFRO.log 2015-04-02 21:21 - 2015-04-02 21:21 - 00001172 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2015-04-02 21:21 - 2015-04-02 21:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft 2015-04-02 21:17 - 2015-04-02 21:21 - 00000000 ____D () C:\Program Files\DVDVideoSoft 2015-04-02 21:17 - 2015-04-02 21:21 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft 2015-04-02 21:17 - 2015-04-02 21:17 - 00000000 ____D () C:\Program Files\Free Codec Pack 2015-04-02 21:08 - 2015-04-02 21:08 - 00000000 ____D () C:\Users\dejan\AppData\Local\WMTools Downloaded Files 2015-04-02 21:07 - 2015-04-02 21:07 - 00002495 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker 2.6.lnk 2015-04-02 21:07 - 2015-04-02 21:07 - 00000000 ____D () C:\Program Files\Movie Maker 2.6 2015-04-02 20:41 - 2015-04-02 21:01 - 00000000 ____D () C:\Program Files\Common Files\FlashIntegro 2015-04-02 20:41 - 2015-04-02 20:41 - 00000000 ____D () C:\Users\dejan\Documents\FlashIntegro 2015-04-02 20:41 - 2015-04-02 20:41 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\VideoEditor 2015-04-02 20:41 - 2015-04-02 20:41 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\FlashIntegro 2015-04-02 20:41 - 2014-12-09 13:21 - 00081792 _____ (Flash-Integro LLC) C:\Windows\system32\mslvddsfilter2.ax 2015-04-02 20:41 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\system32\Lagarith.dll 2015-04-02 20:41 - 2005-08-01 19:43 - 00245760 _____ () C:\Windows\system32\lame.ax 2015-04-02 20:41 - 2004-12-10 10:03 - 00438272 _____ (On2.com) C:\Windows\system32\vp6vfw.dll 2015-04-02 20:41 - 2004-09-06 16:06 - 00053248 _____ () C:\Windows\system32\xvid.ax 2015-04-02 20:41 - 2004-07-03 21:08 - 00139264 _____ () C:\Windows\system32\xvidvfw.dll 2015-04-02 20:41 - 2004-07-03 20:59 - 00524288 _____ () C:\Windows\system32\xvidcore.dll 2015-04-02 20:41 - 2004-02-04 21:11 - 00081920 _____ (fccHandler) C:\Windows\system32\AC3ACM.acm 2015-04-02 20:41 - 2003-05-22 12:26 - 00638976 _____ (DivXNetworks, Inc.) C:\Windows\system32\divx.dll 2015-04-02 20:41 - 2003-05-22 12:26 - 00221215 _____ (DivXNetworks, Inc.) C:\Windows\system32\divxdec.ax 2015-04-02 20:41 - 2003-05-21 23:50 - 00261632 _____ (MainConcept) C:\Windows\system32\mcdvd_32.dll 2015-04-02 20:41 - 2003-05-21 23:50 - 00156910 _____ () C:\Windows\WMSysPr8.prx 2015-04-02 20:41 - 2003-05-21 23:50 - 00082944 _____ (Voxware, Inc.) C:\Windows\system32\vct3216.acm 2015-04-02 20:41 - 2003-05-21 23:50 - 00038912 _____ (NCT Company) C:\Windows\system32\alf2cd.acm 2015-04-02 20:41 - 2003-05-21 23:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3a.dll 2015-04-02 20:41 - 2003-03-25 05:49 - 00098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\L3CODECX.AX 2015-04-02 20:41 - 2003-03-18 23:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71.dll 2015-04-02 20:41 - 2002-08-20 00:41 - 00413760 _____ (Microsoft Corporation) C:\Windows\system32\mpg4c32.dll 2015-04-02 20:41 - 2000-03-14 20:55 - 00013239 _____ (SHARP Corporation) C:\Windows\system32\Scg726.acm 2015-04-02 20:24 - 2015-04-02 20:36 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\avidemux 2015-04-02 20:07 - 2015-04-02 20:07 - 00000000 ____D () C:\Users\dejan\Documents\HighAndes 2015-04-02 20:07 - 2015-04-02 20:07 - 00000000 ____D () C:\Users\dejan\AppData\Local\HighAndes 2015-04-02 20:07 - 2015-04-02 20:07 - 00000000 ____D () C:\ProgramData\HighAndes 2015-04-02 20:07 - 2012-11-10 01:21 - 00071280 _____ (Nalpeiron Ltd.) C:\Windows\system32\NlsSrv32.exe 2015-04-02 16:54 - 2015-04-02 16:54 - 22012281 _____ () C:\Users\dejan\Documents\b8_12486479_rootsrbija (1).sql 2015-04-02 16:53 - 2015-04-02 16:53 - 22012281 _____ () C:\Users\dejan\Documents\b8_12486479_rootsrbija.sql 2015-04-01 18:37 - 2015-04-01 18:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftwareForMe 2015-04-01 18:11 - 2015-04-01 18:11 - 00000000 ____D () C:\Program Files\SoftwareForMe Inc 2015-04-01 15:44 - 2015-04-01 15:49 - 00000000 ____D () C:\Users\dejan\Desktop\MTK-TWRP 2015-03-30 20:39 - 2015-04-17 15:26 - 00004842 _____ () C:\Windows\setupact.log 2015-03-30 20:39 - 2015-03-30 20:39 - 00000000 _____ () C:\Windows\setuperr.log 2015-03-30 18:49 - 2015-04-02 21:02 - 00000000 ____D () C:\Program Files\Common Files\Web Solution Mart 2015-03-30 18:49 - 2004-03-09 01:00 - 00152848 _____ (Microsoft Corporation) C:\Windows\system32\COMDLG32.OCX 2015-03-30 18:49 - 2004-03-09 00:00 - 01081616 _____ (Microsoft Corporation) C:\Windows\system32\MSCOMCTL.OCX 2015-03-30 18:49 - 2004-03-09 00:00 - 00132880 _____ (Microsoft Corporation) C:\Windows\system32\MSINET.OCX 2015-03-30 18:27 - 2015-03-30 18:27 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite 2015-03-30 18:25 - 2015-04-02 21:05 - 00126013 _____ () C:\Users\dejan\AppData\Roaming\VideoPad.dmp 2015-03-30 18:25 - 2015-03-30 18:35 - 00001089 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad Video Editor.lnk 2015-03-30 18:25 - 2015-03-30 18:35 - 00001077 _____ () C:\Users\Public\Desktop\VideoPad Video Editor.lnk 2015-03-30 18:25 - 2015-03-30 18:25 - 00002011 _____ () C:\Users\Public\Desktop\NCH Suite.lnk 2015-03-30 18:25 - 2015-03-30 18:25 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\NCH Software 2015-03-30 18:25 - 2015-03-30 18:25 - 00000000 ____D () C:\ProgramData\NCH Software 2015-03-30 18:25 - 2015-03-30 18:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite 2015-03-30 18:25 - 2015-03-30 18:25 - 00000000 ____D () C:\Program Files\NCH Software 2015-03-30 15:43 - 2015-03-30 15:43 - 00000938 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2015-03-30 15:43 - 2015-03-30 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-03-30 15:43 - 2015-03-30 15:43 - 00000000 ____D () C:\Program Files\CCleaner 2015-03-30 15:32 - 2015-03-30 15:32 - 00001836 _____ () C:\Users\Public\Desktop\Defraggler.lnk 2015-03-30 15:32 - 2015-03-30 15:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler 2015-03-30 15:32 - 2015-03-30 15:32 - 00000000 ____D () C:\Program Files\Defraggler 2015-03-29 23:32 - 2015-03-29 23:32 - 00000000 ____D () C:\Users\dejan\AppData\Local\Reincubate_Ltd 2015-03-29 19:38 - 2015-03-29 19:39 - 03533838 _____ () C:\Users\dejan\Documents\video-ac492b9bbdba7f5d767ec7cd0b3d871cabf4893e685159c7c374eaf0f5f7ea8b-V.mp4 2015-03-29 19:37 - 2015-04-02 21:17 - 00000000 ____D () C:\Users\dejan\Downloads\Video 2015-03-28 22:02 - 2015-03-28 22:05 - 00000000 ____D () C:\Program Files\Unlocker 2015-03-28 22:02 - 2015-03-28 22:02 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker 2015-03-28 20:55 - 2015-03-28 20:55 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\CyberScrub 2015-03-28 20:54 - 2015-03-28 20:54 - 00000986 _____ () C:\Users\Public\Desktop\CyberScrub Privacy Suite.lnk 2015-03-28 20:54 - 2015-03-28 20:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberScrub Privacy Suite 2015-03-28 20:54 - 2015-03-28 20:54 - 00000000 ____D () C:\Program Files\CyberScrub Privacy Suite 2015-03-28 20:54 - 2007-02-07 13:08 - 00000084 _____ () C:\Windows\csact.ini 2015-03-28 20:29 - 2015-04-01 15:33 - 00000000 ____D () C:\Users\dejan\AppData\Local\Folder Guard 2015-03-28 20:27 - 2015-04-01 15:30 - 00000000 ____D () C:\ProgramData\Folder Guard 2015-03-28 20:27 - 2015-03-28 20:27 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Folder Guard 2015-03-28 20:27 - 2015-03-28 20:27 - 00000000 ____D () C:\Program Files\Folder Guard 2015-03-28 19:59 - 2015-03-28 20:06 - 00000000 ____D () C:\Program Files\Folder Password Expert 2015-03-28 19:54 - 2015-03-28 21:06 - 00000000 ____D () C:\Program Files\Lock Folder XP 2015-03-28 19:31 - 2015-03-28 19:31 - 00000000 ____D () C:\RecoveredData 2015-03-28 15:12 - 2015-01-26 10:23 - 00029696 _____ (LG Electronics Inc.) C:\Windows\system32\Drivers\lgandnetmodem.sys 2015-03-28 15:12 - 2015-01-26 10:22 - 00024576 _____ (LG Electronics Inc.) C:\Windows\system32\Drivers\lgandnetdiag.sys 2015-03-28 15:12 - 2015-01-21 12:49 - 00015744 _____ (LG Electronics Inc.) C:\Windows\system32\Drivers\lgandnetbus.sys 2015-03-28 14:52 - 2015-03-28 15:12 - 00002411 _____ () C:\Windows\system32\lgAxconfig.ini 2015-03-28 14:52 - 2015-03-28 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LGMobile Support Tool 2015-03-28 14:52 - 2011-05-06 11:37 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\msvcr90.dll 2015-03-28 14:52 - 2011-05-06 11:37 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp90.dll 2015-03-28 14:52 - 2011-05-06 11:37 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\msvcm90.dll 2015-03-28 14:52 - 2006-04-30 06:33 - 00053248 _____ () C:\Windows\system32\CommonDL.dll 2015-03-28 14:52 - 2005-09-29 23:39 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\msxml4a.dll 2015-03-28 14:51 - 2015-03-28 14:52 - 00000000 ____D () C:\ProgramData\LGMOBILEAX 2015-03-27 17:17 - 2015-03-28 13:16 - 00000000 ____D () C:\Users\dejan\Documents\AirDroid 2015-03-27 14:18 - 2015-03-27 14:18 - 00001055 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\LG PC Suite.Lnk 2015-03-26 16:32 - 2015-03-27 14:37 - 00000813 _____ () C:\Windows\psb_raster.ini 2015-03-21 23:01 - 2015-04-01 19:26 - 00000898 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk 2015-03-21 23:01 - 2015-04-01 19:26 - 00000886 _____ () C:\Users\Public\Desktop\TeamViewer 10.lnk 2015-03-20 14:25 - 2015-03-20 14:25 - 00000000 ____D () C:\Users\dejan\Tracing 2015-03-20 14:24 - 2015-03-20 14:24 - 00002685 _____ () C:\Users\Public\Desktop\Skype.lnk 2015-03-20 14:24 - 2015-03-20 14:24 - 00000000 ___RD () C:\Program Files\Skype 2015-03-20 14:24 - 2015-03-20 14:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-03-20 14:24 - 2015-03-20 14:24 - 00000000 ____D () C:\Program Files\Common Files\Skype 2015-03-18 12:52 - 2015-03-28 20:06 - 00000000 ____D () C:\Users\dejan\AppData\Local\Lenovo 2015-03-18 12:50 - 2015-03-18 12:51 - 00000000 ____D () C:\Program Files\Lenovo 2015-03-18 12:50 - 2015-03-18 12:50 - 00000000 ____D () C:\Windows\Downloaded Installations ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-04-17 17:32 - 2015-01-14 23:53 - 00000000 ____D () C:\ProgramData\TEMP 2015-04-17 17:31 - 2014-10-03 23:24 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\uTorrent 2015-04-17 17:15 - 2014-09-27 18:13 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-04-17 17:12 - 2014-09-27 16:52 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-04-17 15:49 - 2014-09-28 01:36 - 01344110 _____ () C:\Windows\WindowsUpdate.log 2015-04-17 15:31 - 2014-11-04 00:27 - 00000000 ____D () C:\ProgramData\MFAData 2015-04-17 00:12 - 2014-09-27 16:52 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-04-16 20:05 - 2009-07-14 06:34 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-04-16 20:05 - 2009-07-14 06:34 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-04-16 19:02 - 2014-10-05 21:23 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\Skype 2015-04-16 15:38 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat 2015-04-16 15:32 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache 2015-04-16 14:45 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2015-04-16 14:02 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-04-16 13:58 - 2014-12-11 12:58 - 00000000 ____D () C:\Windows\system32\appraiser 2015-04-16 13:58 - 2014-09-28 16:13 - 00000000 ___SD () C:\Windows\system32\CompatTel 2015-04-16 13:44 - 2014-09-27 19:09 - 00000000 ____D () C:\Windows\system32\MRT 2015-04-16 13:23 - 2014-09-27 19:09 - 125832184 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-04-16 13:22 - 2010-11-20 23:01 - 00765280 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-04-15 22:51 - 2014-09-27 18:13 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-04-15 22:51 - 2014-09-27 18:13 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-04-09 22:28 - 2015-02-10 14:42 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2015-04-09 21:39 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF 2015-04-09 21:27 - 2015-03-10 21:13 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\Opera Software 2015-04-09 21:27 - 2015-03-10 21:13 - 00000000 ____D () C:\Users\dejan\AppData\Local\Opera Software 2015-04-09 21:27 - 2015-03-10 21:12 - 00000000 ____D () C:\Program Files\Opera 2015-04-07 19:37 - 2014-10-14 23:16 - 00000000 ____D () C:\Users\dejan\Downloads\Compressed 2015-04-04 01:30 - 2014-09-27 16:53 - 00002098 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-04-03 23:27 - 2014-10-14 23:16 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\DMCache 2015-04-03 14:11 - 2014-10-03 14:58 - 00000000 ____D () C:\Program Files\TeamViewer 2015-04-02 21:17 - 2014-11-04 21:15 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\DVDVideoSoft 2015-03-31 13:10 - 2014-10-03 16:28 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\TeamViewer 2015-03-30 18:18 - 2014-11-11 14:53 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\FileZilla 2015-03-30 16:02 - 2015-01-07 15:53 - 00000000 ____D () C:\Windows\Minidump 2015-03-30 16:02 - 2014-09-28 02:32 - 00000000 ____D () C:\Windows\Panther 2015-03-30 14:54 - 2009-07-14 06:33 - 00272376 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-03-29 19:37 - 2014-09-27 18:11 - 00059480 _____ () C:\Users\dejan\AppData\Local\GDIPFONTCACHEV1.DAT 2015-03-29 19:01 - 2015-03-12 15:25 - 00000000 ____D () C:\Users\dejan\AppData\Local\Vivaldi 2015-03-28 15:13 - 2015-01-23 19:41 - 00000000 ____D () C:\Program Files\LG Electronics 2015-03-27 14:18 - 2015-01-25 20:22 - 00001049 _____ () C:\Users\Public\Desktop\LG PC Suite.Lnk 2015-03-27 14:18 - 2015-01-25 20:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG PC Suite 2015-03-26 19:26 - 2014-11-25 21:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\YourFileDownloader 2015-03-20 14:25 - 2014-09-27 16:48 - 00000000 ____D () C:\Users\dejan 2015-03-20 14:24 - 2014-10-05 21:23 - 00000000 ____D () C:\ProgramData\Skype 2015-03-18 00:15 - 2014-11-01 18:56 - 00000000 ____D () C:\Users\dejan\AppData\Local\Adobe ==================== Files in the root of some directories ======= 2014-10-05 14:19 - 2014-10-05 14:32 - 0000693 _____ () C:\Program Files\Simlock Remote Clientoperations.log 2014-10-31 23:17 - 2014-10-31 23:17 - 0000132 _____ () C:\Users\dejan\AppData\Roaming\Adobe GIF Format CS6 Prefs 2014-09-28 16:50 - 2015-01-19 21:32 - 0000447 _____ () C:\Users\dejan\AppData\Roaming\burnaware.ini 2015-02-10 15:30 - 2015-02-10 15:31 - 0046592 ___SH () C:\Users\dejan\AppData\Roaming\Thumbs.db 2015-03-30 18:25 - 2015-04-02 21:05 - 0126013 _____ () C:\Users\dejan\AppData\Roaming\VideoPad.dmp 2014-11-05 19:14 - 2014-11-05 19:23 - 0001456 _____ () C:\Users\dejan\AppData\Local\Adobe Save for Web 13.0 Prefs 2014-10-13 20:19 - 2014-10-13 20:19 - 0007605 _____ () C:\Users\dejan\AppData\Local\Resmon.ResmonCfg ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-04-16 14:56 ==================== End Of Log ============================ https://www.mycity.rs/must-login.png

Profil

helen1 Poslao: 17 Apr 2015 22:37 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	1Ovo se svidja korisniku: dejanod Registruj se da bi pohvalio/la poruku! Pozdrav, 1. Deinstaliraj EZDownloader. 2. Potrebno je da reinstaliras Chrome browser posto je ostecen. 3.Preuzmi "Xplode"-ov AdwCleaner () i sacuvaj ga na Desktop Dvoklikom pokreni program. Klikni na dugme [Scan] i pricekaj da program zavrsi. Klikni na dugme [Clean] Program ce zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni Ok kao potvrdu. Na sledeca dva prozora koja se otvore (Informations i Restart required ) klikni Ok Racunar ce se restartovati a potom otvoriti notepad (C:\AdwCleaner[S1].txt) sa izvestajem. Sacuvaj taj notepad na Desktop i okaci ga uz poruku koristeci opciju "Prikaci fajl" Napomena: Izvestaj ce takodje biti sacuvan na C:\AdwCleaner[S0].txt

Profil

dejanod Poslao: 19 Apr 2015 14:38 Idi na vrh
offline dejanod Moderator foruma u administraciji Pridružio: 16 Okt 2010 Poruke: 3468 Gde živiš: KRAGUJEVAC	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Izbacuje da nista nije pronašao i ne restartuje se, posle završenog skeniranja u programu nema nista nikakvih logova i ja da ga zatvorim pita me da li hocu, i zatvorim ga i to je to.

Profil

helen1 Poslao: 19 Apr 2015 14:57 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! 1. Reinstaliraj Chrome jer je ostecen. 2. 1. Otvori Notepad (Text Document) i iskopiraj sledeći tekst unutar kod polja ispod: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\MountPoints2: {49ba0df5-a0a3-11e4-8658-001fd01ee4db} - K:\LG_PC_Programs.exe HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\MountPoints2: {985a1b4f-4e58-11e4-8674-001fd01ee4db} - K:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A02B07 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B} HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.coolsearches.info/?pid=20495&.....p;unqvl=85 HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.coolsearches.info/?pid=20495&.....p;unqvl=85 SearchScopes: HKLM -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 SearchScopes: HKLM -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 FF DefaultSearchEngine,S: WebSearch FF DefaultSearchUrl: hxxp://websearch.coolsearches.info/?pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85&l=1&q= FF SearchEngineOrder.1: WebSearch FF SearchEngineOrder.1,S: WebSearch FF SelectedSearchEngine: WebSearch FF SelectedSearchEngine,S: WebSearch FF Keyword.URL: hxxp://websearch.coolsearches.info/?pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85&l=1&q= FF Extension: SSaleePluss - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\A@qDuUGe1.org [2015-04-08] FF Extension: SalEPlues - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\wkb3C@M7i.net [2015-04-08] 2. Sačuvaj notepad na Desktop pod nazivom fixlist.txt To možes uraditi i iz notepad-a => klik na File potom na Save As i u novom prozoru, dole pod File Name: staviš za naziv fixlist.txt Napomena: Važno je da se oba fajla, FRST i fixlist nalaze na istoj lokaciji jer u suprotnom fix nece raditi. 3. Ponovo pokreni FRST/FRST64, klikni jednom na dugme Fix i sačekaj. Ukoliko alat zatraži restart sistema, dozvoli mu i postaraj se da alat kompletira fix nakon restarta sistema. Alat će formirati log (Fixlog.txt) na Desktop-u. Potrebno je sadržaj tog loga iskopirati u poruku. Napomena: Ukoliko te alat upozori da postoji novija verzija, postaraj se da preuzmes i koristiš ažuriranu kopiju FRST-a.

Profil

dejanod Poslao: 21 Apr 2015 20:09 Idi na vrh
offline dejanod Moderator foruma u administraciji Pridružio: 16 Okt 2010 Poruke: 3468 Gde živiš: KRAGUJEVAC	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 20-04-2015 Ran by dejan at 2015-04-21 20:06:54 Run:1 Running from C:\Users\dejan\Desktop Loaded Profiles: dejan (Available profiles: dejan) Boot Mode: Normal ============================================== Content of fixlist: *************** HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\MountPoints2: {49ba0df5-a0a3-11e4-8658-001fd01ee4db} - K:\LG_PC_Programs.exe HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\MountPoints2: {985a1b4f-4e58-11e4-8674-001fd01ee4db} - K:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A02B07 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B} HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.coolsearches.info/?pid=20495&.....p;unqvl=85 HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.coolsearches.info/?pid=20495&.....p;unqvl=85 SearchScopes: HKLM -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 SearchScopes: HKLM -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 FF DefaultSearchEngine,S: WebSearch FF DefaultSearchUrl: hxxp://websearch.coolsearches.info/?pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85&l=1&q= FF SearchEngineOrder.1: WebSearch FF SearchEngineOrder.1,S: WebSearch FF SelectedSearchEngine: WebSearch FF SelectedSearchEngine,S: WebSearch FF Keyword.URL: hxxp://websearch.coolsearches.info/?pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85&l=1&q= FF Extension: SSaleePluss - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\A@qDuUGe1.org [2015-04-08] FF Extension: SalEPlues - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\wkb3C@M7i.net [2015-04-08] *************** "HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{49ba0df5-a0a3-11e4-8658-001fd01ee4db}" => Key deleted successfully. HKCR\CLSID\{49ba0df5-a0a3-11e4-8658-001fd01ee4db} => Key not found. "HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{985a1b4f-4e58-11e4-8674-001fd01ee4db}" => Key deleted successfully. HKCR\CLSID\{985a1b4f-4e58-11e4-8674-001fd01ee4db} => Key not found. HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully. HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully. "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}" => Key deleted successfully. HKCR\CLSID\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} => Key not found. HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully. HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully. HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully. "HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE}" => Key deleted successfully. HKCR\CLSID\{BB82DE59-BC4C-4172-9AC4-73315F71CFFE} => Key not found. Firefox DefaultSearchEngine,S deleted successfully. Firefox DefaultSearchUrl deleted successfully. Firefox SearchEngineOrder.1 deleted successfully. Firefox SearchEngineOrder.1,S deleted successfully. Firefox SelectedSearchEngine deleted successfully. Firefox SelectedSearchEngine,S deleted successfully. Firefox Keyword.URL deleted successfully. C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\A@qDuUGe1.org => Moved successfully. C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\wkb3C@M7i.net => Moved successfully. ==== End of Fixlog 20:06:55 ====

Profil

helen1 Poslao: 21 Apr 2015 20:26 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Postavi mi novi FRST log.

Profil

dejanod Poslao: 21 Apr 2015 20:54 Idi na vrh
offline dejanod Moderator foruma u administraciji Pridružio: 16 Okt 2010 Poruke: 3468 Gde živiš: KRAGUJEVAC	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-04-2015 04 Ran by dejan (administrator) on DEJAN-PC on 17-04-2015 17:31:19 Running from C:\Users\dejan\Desktop Loaded Profiles: dejan (Available profiles: dejan) Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: English (United States) Internet Explorer Version 11 (Default browser: Opera) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe (FileZilla Project) C:\xampp\FileZillaFTP\FileZillaServer.exe (Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe (WinAbility® Software Corporation) C:\Program Files\Folder Guard\FG32.exe (Nalpeiron Ltd.) C:\Windows\System32\NlsSrv32.exe (SoftwareForMe Inc) C:\Program Files\SoftwareForMe Inc\PhoneMyPC\PhoneMyPC_Helper.exe (SoftwareForMe Inc) C:\Program Files\SoftwareForMe Inc\PhoneMyPC\PhoneMyPC.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (Firebird Project) C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe (WinAbility® Software Corporation) C:\Program Files\Folder Guard\FG32.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe () C:\Program Files\Unlocker\UnlockerAssistant.exe (BitTorrent Inc.) C:\Users\dejan\AppData\Roaming\uTorrent\uTorrent.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (CyberScrub LLC) C:\Program Files\CyberScrub Privacy Suite\CSRiskMon.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\System32\calc.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3710416 2015-02-19] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [FG_Monitor] => C:\Program Files\Folder Guard\FG32.exe [181832 2013-08-26] (WinAbility® Software Corporation) HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] () HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\Run: [uTorrent] => C:\Users\dejan\AppData\Roaming\uTorrent\uTorrent.exe [1385808 2014-11-15] (BitTorrent Inc.) HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [31344744 2015-02-26] (Skype Technologies S.A.) HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\Run: [Privacy Suite RiskMonitor] => C:\Program Files\CyberScrub Privacy Suite\CSRiskMon.exe [2425072 2010-03-29] (CyberScrub LLC) HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5529880 2015-03-13] (Piriform Ltd) HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\MountPoints2: {49ba0df5-a0a3-11e4-8658-001fd01ee4db} - K:\LG_PC_Programs.exe HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\...\MountPoints2: {985a1b4f-4e58-11e4-8674-001fd01ee4db} - K:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A02B07 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B} Startup: C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WindowsLGFirmwareExtract-1.2.1.0-Release.zip.lnk ShortcutTarget: WindowsLGFirmwareExtract-1.2.1.0-Release.zip.lnk -> C:\ProgramData\{aebadf42-fe1e-7474-aeba-adf42fe17d0b}\WindowsLGFirmwareExtract-1.2.1.0-Release.zip.exe (No File) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.coolsearches.info/?pid=20495&r=20.....S&unqvl=85 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.coolsearches.info/?pid=20495&r=20.....S&unqvl=85 HKU\S-1-5-21-3105228336-3140102207-1041830059-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp SearchScopes: HKLM -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 SearchScopes: HKLM -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> DefaultScope {92C7B1B5-DE71-40E3-AC68-A0FC9758D12A} URL = https://search.yahoo.com/yhs/search?hspart=tightro....._011415&p={searchTerms} SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> {7FE5D492-FF15-4BB0-ACF5-A6B18DB94324} URL = http://search.yahoo.com/search?p={searchTerms}&fr=tightropetb&type=11185 SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> {92C7B1B5-DE71-40E3-AC68-A0FC9758D12A} URL = https://search.yahoo.com/yhs/search?hspart=tightro....._011415&p={searchTerms} SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg.com/search?cid={55B1B356-8AFF-410B-94DF-DBCA8601494B}&mid=dd5fc3f655bb47d296e3d15696fa0d28-0024689bf3919a4e8122f47637591eafddd236e7&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-04 18:49:44&v=4.0.0.19&pid=wtu&sg=&sap=dsp&q={searchTerms} SearchScopes: HKU\S-1-5-21-3105228336-3140102207-1041830059-1000 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.coolsearches.info/?l=1&q={searchTerms}&pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85 BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-09-27] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-09-27] (Oracle Corporation) BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2015-03-24] (DVDVideoSoft Ltd.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default FF DefaultSearchEngine,S: WebSearch FF DefaultSearchUrl: hxxp://websearch.coolsearches.info/?pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85&l=1&q= FF SearchEngineOrder.1: WebSearch FF SearchEngineOrder.1,S: WebSearch FF SelectedSearchEngine: WebSearch FF SelectedSearchEngine,S: WebSearch FF Homepage: hxxp://ww.google.com/ FF Keyword.URL: hxxp://websearch.coolsearches.info/?pid=20495&r=2015/04/08&hid=14315775422242091832&lg=EN&cc=RS&unqvl=85&l=1&q= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] () FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-27] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-09-27] (Oracle Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.) FF Plugin: @verimatrix.com/ViewRightWeb -> C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll [2014-06-10] (Verimatrix, Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-10-15] (Adobe Systems) FF Plugin HKU\S-1-5-21-3105228336-3140102207-1041830059-1000: @verimatrix.com/ViewRightWeb -> C:\Program Files\Verimatrix\ViewRight Web\\npViewRight.dll [2014-06-10] (Verimatrix, Inc.) FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\pogodakyu.xml [2015-04-05] FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\vokabular.xml [2015-04-05] FF Extension: SSaleePluss - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\A@qDuUGe1.org [2015-04-08] FF Extension: EHTip - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\ehtip@robertkatic [2015-04-03] FF Extension: SalEPlues - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\wkb3C@M7i.net [2015-04-08] FF Extension: MEGA - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\firefox@mega.co.nz.xpi [2015-03-22] FF Extension: HyperTranslate - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\hypertranslate@mdc.com.xpi [2015-02-10] FF Extension: Just Restart! - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\{5afc0857-ce93-471c-9a00-b6247890dc1d}.xpi [2015-04-11] FF Extension: No Name - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi [2015-04-02] FF Extension: Adblock Plus - C:\Users\dejan\AppData\Roaming\Mozilla\Firefox\Profiles\c7p3cv1b.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-03-14] FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird Chrome: ======= CHR dev: Chrome dev build detected! <======= ATTENTION CHR HomePage: Default -> hxxp://websearch.mocaflix.com/ CHR StartupUrls: Default -> "hxxp://websearch.mocaflix.com/", "hxxp://websearch.searchandfly.info/?pid=3896&r=2014/09/18&hid=14315775422242091832&lg=EN&cc=RS&unqvl=62", "hxxp://www.istartsurf.com/?type=hp&ts=1411404801&from=smt&uid=WDCXWD5000AAKS-00YGA0_WD-WCAS8066279662796", "hxxp://websearch.searchandfly.info/?pid=3896&r=2014/09/25&hid=14315775422242091832&lg=EN&cc=RS&unqvl=62", "hxxp://websearch.allsearches.info/?pid=3482&r=2014/10/05&hid=14315775422242091832&lg=EN&cc=RS&unqvl=64", "hxxp://istart.webssearches.com/?type=hp&ts=1412519908&from=exp&uid=WDCXWD5000AAKS-00YGA0_WD-WCAS8066279662796", "hxxp://www.sweet-page.com/?type=hp&ts=1413876712&from=cor&uid=WDCXWD5000AAKS-00YGA0_WD-WCAS8066279662796", "hxxp://websearch.searc-hall.info/?pid=3458&r=2014/11/03&hid=14315775422242091832&lg=EN&cc=RS&unqvl=65", "hxxp://websearch.search-plaza.info/?pid=3463&r=2014/11/11&hid=14315775422242091832&lg=EN&cc=RS&unqvl=69", "hxxp://istart.webssearches.com/?type=hp&ts=1416947335&from=exp&uid=WDCXWD5000AAKS-00YGA0_WD-WCAS8066279662796", "hxxp://www.mystartsearch.com/?type=hp&ts=1422035696&from=smt&uid=WDCXWD5000AAKS-00YGA0_WD-WCAS8066279662796" CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (BIODIGITAL HUMAN) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2014-09-27] CHR Extension: (Tampermonkey) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2015-01-24] CHR Extension: (Facebook for Chrome) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdalhedleemkkdjddjgfjmcnbpejpapp [2015-01-03] CHR Extension: (Magisto - Magical Video Editor) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghmngbmfdgknokcefmkbjlcjabdklnlk [2014-11-12] CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2014-10-07] CHR Extension: (jmjonpeiaiacbgfgemlchebljmfgjnmh) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjonpeiaiacbgfgemlchebljmfgjnmh [2014-10-10] CHR Extension: (HyperTranslate) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\kecaejkkcpijbbnnmnkpcpgiifdplcia [2014-09-27] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-11] CHR Extension: (mdaboflcmhejfihjcbmdiebgfchigjcf) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdaboflcmhejfihjcbmdiebgfchigjcf [2014-10-09] CHR Extension: (Facebook Messenger) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdapmeleikeppmfgadilffngabfpibok [2014-09-27] CHR Extension: (Google Wallet) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-27] CHR Extension: (KnowtheBible) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\oliggifnpofcibpgfmoimpfgjeidhhdp [2014-09-27] CHR Extension: (Facebook - Delete My Timeline) - C:\Users\dejan\AppData\Local\Google\Chrome\User Data\Default\Extensions\olpgdigakalagbnckjmnhajofccbbeaf [2014-12-06] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [Not Found] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S2 avgfws; C:\Program Files\AVG\AVG2015\avgfws.exe [1508656 2015-02-19] (AVG Technologies CZ, s.r.o.) S2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3411408 2015-02-19] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [308720 2015-02-19] (AVG Technologies CZ, s.r.o.) R2 FileZilla Server; C:\xampp\FileZillaFTP\FileZillaServer.exe [632320 2012-02-26] (FileZilla Project) [File not signed] R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbguard.exe [98304 2010-09-17] (Firebird Project) [File not signed] R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_5\bin\fbserver.exe [3735552 2010-09-17] (Firebird Project) [File not signed] R2 Folder Guard; C:\Program Files\Folder Guard\FG32.exe [181832 2013-08-26] (WinAbility® Software Corporation) R2 PhoneMyPC_Helper; C:\Program Files\SoftwareForMe Inc\PhoneMyPC\PhoneMyPC_Helper.exe [31232 2011-07-15] (SoftwareForMe Inc) [File not signed] R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5448464 2015-03-30] (TeamViewer GmbH) S3 wampapache; c:\wamp\bin\apache\apache2.4.9\bin\httpd.exe [22016 2014-05-01] (Apache Software Foundation) [File not signed] S3 wampmysqld; c:\wamp\bin\mysql\mysql5.6.17\bin\mysqld.exe [10959360 2014-05-01] () [File not signed] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [25856 2012-07-03] (Google Inc) S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus.sys [15744 2015-01-21] (LG Electronics Inc.) S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [24576 2015-01-26] (LG Electronics Inc.) S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [29696 2015-01-26] (LG Electronics Inc.) R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-18] (AVG Technologies CZ, s.r.o.) R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [48920 2014-12-03] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [217568 2015-02-19] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [154904 2014-11-18] (AVG Technologies CZ, s.r.o.) R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-18] (AVG Technologies CZ, s.r.o.) R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [192792 2014-08-28] (AVG Technologies CZ, s.r.o.) R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [265184 2015-02-03] (AVG Technologies CZ, s.r.o.) R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [107488 2015-01-23] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-18] (AVG Technologies CZ, s.r.o.) R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [210400 2015-01-16] (AVG Technologies CZ, s.r.o.) R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [42784 2014-11-04] (AVG Technologies) R2 FGUARD32; C:\Program Files\Folder Guard\FGUARD32.SYS [58128 2013-08-26] (WinAbility® Software Corporation) S3 pneteth; C:\Windows\System32\DRIVERS\pneteth.sys [13440 2011-11-25] (June Fabrics Technology Inc.) S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [15688 2013-09-30] () S3 pwdspio; C:\Windows\system32\pwdspio.sys [10320 2013-09-30] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-11-04] (Duplex Secure Ltd.) U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2014-07-29] (Huawei Technologies Co., Ltd.) U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-04-17 17:31 - 2015-04-17 17:31 - 00019605 _____ () C:\Users\dejan\Desktop\FRST.txt 2015-04-17 17:30 - 2015-04-17 17:30 - 01137152 _____ (Farbar) C:\Users\dejan\Desktop\FRST.exe 2015-04-17 17:29 - 2015-04-17 17:31 - 00000000 ____D () C:\FRST 2015-04-16 17:00 - 2015-04-16 17:00 - 11194863 _____ () C:\Users\dejan\Downloads\com.android.vending-5.4.12-80341200-minAPI9.apk 2015-04-15 23:24 - 2015-03-23 05:06 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00331264 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-04-15 23:24 - 2015-03-23 05:06 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-04-15 23:24 - 2015-03-23 04:59 - 00896000 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-04-15 23:24 - 2015-03-17 07:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2015-04-15 23:24 - 2015-03-17 07:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-04-15 23:24 - 2015-03-17 07:01 - 00137656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-04-15 23:24 - 2015-03-17 07:01 - 00067512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-04-15 23:24 - 2015-03-17 06:59 - 01306112 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-04-15 23:24 - 2015-03-17 06:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-04-15 23:24 - 2015-03-17 06:56 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-04-15 23:24 - 2015-03-17 06:56 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-04-15 23:24 - 2015-03-17 06:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-04-15 23:24 - 2015-03-17 06:56 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-04-15 23:24 - 2015-03-17 06:56 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-04-15 23:24 - 2015-03-17 06:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-04-15 23:24 - 2015-03-17 06:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-04-15 23:24 - 2015-03-17 06:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-04-15 23:24 - 2015-03-17 06:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-04-15 23:24 - 2015-03-17 06:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-04-15 23:24 - 2015-03-04 06:16 - 00249784 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys 2015-04-15 23:24 - 2015-03-04 06:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll 2015-04-15 23:23 - 2015-04-02 01:49 - 00342704 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-04-15 23:23 - 2015-03-13 05:42 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-04-15 23:23 - 2015-03-13 05:42 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-04-15 23:23 - 2015-03-13 05:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-04-15 23:23 - 2015-03-13 05:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-04-15 23:23 - 2015-03-13 05:27 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-04-15 23:23 - 2015-03-13 05:20 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-04-15 23:23 - 2015-03-13 05:20 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-04-15 23:23 - 2015-03-13 05:17 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-04-15 23:23 - 2015-03-13 05:16 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-04-15 23:23 - 2015-03-13 05:16 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-04-15 23:23 - 2015-03-13 05:15 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-04-15 23:23 - 2015-03-13 05:09 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-04-15 23:23 - 2015-03-13 05:06 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-04-15 23:23 - 2015-03-13 05:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-04-15 23:23 - 2015-03-13 04:57 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-04-15 23:23 - 2015-03-13 04:56 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-04-15 23:23 - 2015-03-13 04:54 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-04-15 23:23 - 2015-03-13 04:44 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-04-15 23:23 - 2015-03-13 04:43 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-04-15 23:23 - 2015-03-13 04:43 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-04-15 23:23 - 2015-03-13 04:34 - 12825600 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-04-15 23:23 - 2015-03-13 04:20 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-04-15 23:23 - 2015-03-13 04:16 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-04-15 23:23 - 2015-03-13 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-04-15 23:23 - 2015-03-05 06:06 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 03088384 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 02020864 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-04-15 23:22 - 2015-03-25 05:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-04-15 23:22 - 2015-03-25 05:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-04-15 23:22 - 2015-03-25 05:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-04-15 23:22 - 2015-03-13 05:42 - 19695616 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-04-15 23:22 - 2015-03-13 05:28 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-04-15 23:22 - 2015-03-13 05:26 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-04-15 23:22 - 2015-03-13 05:22 - 02278400 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-04-15 23:22 - 2015-03-13 04:49 - 04305408 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-04-15 23:22 - 2015-03-13 04:42 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-04-15 23:22 - 2015-03-10 05:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2015-04-15 23:22 - 2015-03-10 05:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2015-04-15 23:22 - 2015-02-25 05:03 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys 2015-04-15 23:15 - 2015-04-16 16:15 - 17189552 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe 2015-04-11 19:14 - 2015-04-11 19:14 - 00000000 ____D () C:\Users\dejan\Downloads\11876_505174655_registry files Windows 2015-04-11 19:13 - 2015-04-11 19:13 - 00356358 _____ () C:\Users\dejan\Downloads\11876_505174655_registry files Windows.rar 2015-04-11 13:06 - 2015-04-11 13:06 - 02366265 _____ () C:\Users\dejan\Downloads\Tapet_3.93.apk 2015-04-11 13:05 - 2015-04-11 13:05 - 00088984 _____ () C:\Users\dejan\Downloads\XposedGELSettings_1.2.apk 2015-04-11 13:04 - 2015-04-11 13:04 - 03646343 _____ () C:\Users\dejan\Downloads\GravityBox+LP+v5.0.6alpha+Unlocked.apk 2015-04-11 13:02 - 2015-04-11 13:02 - 00728857 _____ () C:\Users\dejan\Downloads\Xposed+Installer+v2.6.1.apk 2015-04-09 21:10 - 2015-04-09 21:10 - 00000598 _____ () C:\Users\dejan\Desktop\WampServer.lnk 2015-04-09 21:10 - 2015-04-09 21:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WampServer 2015-04-09 21:07 - 2015-04-09 21:12 - 00000000 ____D () C:\wamp 2015-04-09 19:58 - 2015-04-09 19:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP 2015-04-09 19:43 - 2015-04-09 22:25 - 00000000 ____D () C:\xampp 2015-04-09 12:19 - 2015-04-09 12:19 - 00001595 _____ () C:\Users\dejan\Desktop\SkipSoft ToolKit.lnk 2015-04-09 12:19 - 2015-04-09 12:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SkipSoft Android ToolKit 2015-04-09 12:18 - 2015-04-09 12:20 - 00000000 ____D () C:\Unified_Android_ToolKit 2015-04-08 16:12 - 2015-04-08 16:32 - 00000000 ____D () C:\KDZTOOL 2015-04-08 15:42 - 2015-04-08 15:42 - 00000000 ____D () C:\Windows\system32\X86 2015-04-08 15:42 - 2015-04-08 15:42 - 00000000 ____D () C:\Windows\system32\AMD64 2015-04-08 15:42 - 2015-04-08 15:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZDownloader 2015-04-08 15:41 - 2015-04-08 19:17 - 00000000 ____D () C:\Program Files\SalEPlues 2015-04-08 15:41 - 2015-04-08 15:41 - 00000000 ____D () C:\ProgramData\lpknfjaeigcmaopebplbeicakpilhebd 2015-04-08 15:40 - 2015-04-08 15:40 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\EZDownloader 2015-04-08 15:36 - 2015-04-08 19:17 - 00000000 ____D () C:\Program Files\SSaleePluss 2015-04-08 15:36 - 2015-04-08 15:42 - 00001868 _____ () C:\Users\Public\Desktop\EZDownloader.lnk 2015-04-08 15:35 - 2015-04-08 15:35 - 00000000 ____D () C:\ProgramData\elmcfjljiglccigjnbmclokjfaanhdll 2015-04-08 15:34 - 2015-04-09 22:30 - 00000000 ____D () C:\ProgramData\{aebadf42-fe1e-7474-aeba-adf42fe17d0b} 2015-04-05 15:45 - 2015-04-05 15:45 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2015-04-05 13:14 - 2015-04-05 13:16 - 00000000 ___SD () C:\Windows\system32\GWX 2015-04-03 11:45 - 2015-04-04 19:25 - 00002894 _____ () C:\Windows\PFRO.log 2015-04-02 21:21 - 2015-04-02 21:21 - 00001172 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk 2015-04-02 21:21 - 2015-04-02 21:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft 2015-04-02 21:17 - 2015-04-02 21:21 - 00000000 ____D () C:\Program Files\DVDVideoSoft 2015-04-02 21:17 - 2015-04-02 21:21 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft 2015-04-02 21:17 - 2015-04-02 21:17 - 00000000 ____D () C:\Program Files\Free Codec Pack 2015-04-02 21:08 - 2015-04-02 21:08 - 00000000 ____D () C:\Users\dejan\AppData\Local\WMTools Downloaded Files 2015-04-02 21:07 - 2015-04-02 21:07 - 00002495 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker 2.6.lnk 2015-04-02 21:07 - 2015-04-02 21:07 - 00000000 ____D () C:\Program Files\Movie Maker 2.6 2015-04-02 20:41 - 2015-04-02 21:01 - 00000000 ____D () C:\Program Files\Common Files\FlashIntegro 2015-04-02 20:41 - 2015-04-02 20:41 - 00000000 ____D () C:\Users\dejan\Documents\FlashIntegro 2015-04-02 20:41 - 2015-04-02 20:41 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\VideoEditor 2015-04-02 20:41 - 2015-04-02 20:41 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\FlashIntegro 2015-04-02 20:41 - 2014-12-09 13:21 - 00081792 _____ (Flash-Integro LLC) C:\Windows\system32\mslvddsfilter2.ax 2015-04-02 20:41 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\system32\Lagarith.dll 2015-04-02 20:41 - 2005-08-01 19:43 - 00245760 _____ () C:\Windows\system32\lame.ax 2015-04-02 20:41 - 2004-12-10 10:03 - 00438272 _____ (On2.com) C:\Windows\system32\vp6vfw.dll 2015-04-02 20:41 - 2004-09-06 16:06 - 00053248 _____ () C:\Windows\system32\xvid.ax 2015-04-02 20:41 - 2004-07-03 21:08 - 00139264 _____ () C:\Windows\system32\xvidvfw.dll 2015-04-02 20:41 - 2004-07-03 20:59 - 00524288 _____ () C:\Windows\system32\xvidcore.dll 2015-04-02 20:41 - 2004-02-04 21:11 - 00081920 _____ (fccHandler) C:\Windows\system32\AC3ACM.acm 2015-04-02 20:41 - 2003-05-22 12:26 - 00638976 _____ (DivXNetworks, Inc.) C:\Windows\system32\divx.dll 2015-04-02 20:41 - 2003-05-22 12:26 - 00221215 _____ (DivXNetworks, Inc.) C:\Windows\system32\divxdec.ax 2015-04-02 20:41 - 2003-05-21 23:50 - 00261632 _____ (MainConcept) C:\Windows\system32\mcdvd_32.dll 2015-04-02 20:41 - 2003-05-21 23:50 - 00156910 _____ () C:\Windows\WMSysPr8.prx 2015-04-02 20:41 - 2003-05-21 23:50 - 00082944 _____ (Voxware, Inc.) C:\Windows\system32\vct3216.acm 2015-04-02 20:41 - 2003-05-21 23:50 - 00038912 _____ (NCT Company) C:\Windows\system32\alf2cd.acm 2015-04-02 20:41 - 2003-05-21 23:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3a.dll 2015-04-02 20:41 - 2003-03-25 05:49 - 00098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\L3CODECX.AX 2015-04-02 20:41 - 2003-03-18 23:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71.dll 2015-04-02 20:41 - 2002-08-20 00:41 - 00413760 _____ (Microsoft Corporation) C:\Windows\system32\mpg4c32.dll 2015-04-02 20:41 - 2000-03-14 20:55 - 00013239 _____ (SHARP Corporation) C:\Windows\system32\Scg726.acm 2015-04-02 20:24 - 2015-04-02 20:36 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\avidemux 2015-04-02 20:07 - 2015-04-02 20:07 - 00000000 ____D () C:\Users\dejan\Documents\HighAndes 2015-04-02 20:07 - 2015-04-02 20:07 - 00000000 ____D () C:\Users\dejan\AppData\Local\HighAndes 2015-04-02 20:07 - 2015-04-02 20:07 - 00000000 ____D () C:\ProgramData\HighAndes 2015-04-02 20:07 - 2012-11-10 01:21 - 00071280 _____ (Nalpeiron Ltd.) C:\Windows\system32\NlsSrv32.exe 2015-04-02 16:54 - 2015-04-02 16:54 - 22012281 _____ () C:\Users\dejan\Documents\b8_12486479_rootsrbija (1).sql 2015-04-02 16:53 - 2015-04-02 16:53 - 22012281 _____ () C:\Users\dejan\Documents\b8_12486479_rootsrbija.sql 2015-04-01 18:37 - 2015-04-01 18:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftwareForMe 2015-04-01 18:11 - 2015-04-01 18:11 - 00000000 ____D () C:\Program Files\SoftwareForMe Inc 2015-04-01 15:44 - 2015-04-01 15:49 - 00000000 ____D () C:\Users\dejan\Desktop\MTK-TWRP 2015-03-30 20:39 - 2015-04-17 15:26 - 00004842 _____ () C:\Windows\setupact.log 2015-03-30 20:39 - 2015-03-30 20:39 - 00000000 _____ () C:\Windows\setuperr.log 2015-03-30 18:49 - 2015-04-02 21:02 - 00000000 ____D () C:\Program Files\Common Files\Web Solution Mart 2015-03-30 18:49 - 2004-03-09 01:00 - 00152848 _____ (Microsoft Corporation) C:\Windows\system32\COMDLG32.OCX 2015-03-30 18:49 - 2004-03-09 00:00 - 01081616 _____ (Microsoft Corporation) C:\Windows\system32\MSCOMCTL.OCX 2015-03-30 18:49 - 2004-03-09 00:00 - 00132880 _____ (Microsoft Corporation) C:\Windows\system32\MSINET.OCX 2015-03-30 18:27 - 2015-03-30 18:27 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite 2015-03-30 18:25 - 2015-04-02 21:05 - 00126013 _____ () C:\Users\dejan\AppData\Roaming\VideoPad.dmp 2015-03-30 18:25 - 2015-03-30 18:35 - 00001089 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad Video Editor.lnk 2015-03-30 18:25 - 2015-03-30 18:35 - 00001077 _____ () C:\Users\Public\Desktop\VideoPad Video Editor.lnk 2015-03-30 18:25 - 2015-03-30 18:25 - 00002011 _____ () C:\Users\Public\Desktop\NCH Suite.lnk 2015-03-30 18:25 - 2015-03-30 18:25 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\NCH Software 2015-03-30 18:25 - 2015-03-30 18:25 - 00000000 ____D () C:\ProgramData\NCH Software 2015-03-30 18:25 - 2015-03-30 18:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite 2015-03-30 18:25 - 2015-03-30 18:25 - 00000000 ____D () C:\Program Files\NCH Software 2015-03-30 15:43 - 2015-03-30 15:43 - 00000938 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2015-03-30 15:43 - 2015-03-30 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-03-30 15:43 - 2015-03-30 15:43 - 00000000 ____D () C:\Program Files\CCleaner 2015-03-30 15:32 - 2015-03-30 15:32 - 00001836 _____ () C:\Users\Public\Desktop\Defraggler.lnk 2015-03-30 15:32 - 2015-03-30 15:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler 2015-03-30 15:32 - 2015-03-30 15:32 - 00000000 ____D () C:\Program Files\Defraggler 2015-03-29 23:32 - 2015-03-29 23:32 - 00000000 ____D () C:\Users\dejan\AppData\Local\Reincubate_Ltd 2015-03-29 19:38 - 2015-03-29 19:39 - 03533838 _____ () C:\Users\dejan\Documents\video-ac492b9bbdba7f5d767ec7cd0b3d871cabf4893e685159c7c374eaf0f5f7ea8b-V.mp4 2015-03-29 19:37 - 2015-04-02 21:17 - 00000000 ____D () C:\Users\dejan\Downloads\Video 2015-03-28 22:02 - 2015-03-28 22:05 - 00000000 ____D () C:\Program Files\Unlocker 2015-03-28 22:02 - 2015-03-28 22:02 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker 2015-03-28 20:55 - 2015-03-28 20:55 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\CyberScrub 2015-03-28 20:54 - 2015-03-28 20:54 - 00000986 _____ () C:\Users\Public\Desktop\CyberScrub Privacy Suite.lnk 2015-03-28 20:54 - 2015-03-28 20:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberScrub Privacy Suite 2015-03-28 20:54 - 2015-03-28 20:54 - 00000000 ____D () C:\Program Files\CyberScrub Privacy Suite 2015-03-28 20:54 - 2007-02-07 13:08 - 00000084 _____ () C:\Windows\csact.ini 2015-03-28 20:29 - 2015-04-01 15:33 - 00000000 ____D () C:\Users\dejan\AppData\Local\Folder Guard 2015-03-28 20:27 - 2015-04-01 15:30 - 00000000 ____D () C:\ProgramData\Folder Guard 2015-03-28 20:27 - 2015-03-28 20:27 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Folder Guard 2015-03-28 20:27 - 2015-03-28 20:27 - 00000000 ____D () C:\Program Files\Folder Guard 2015-03-28 19:59 - 2015-03-28 20:06 - 00000000 ____D () C:\Program Files\Folder Password Expert 2015-03-28 19:54 - 2015-03-28 21:06 - 00000000 ____D () C:\Program Files\Lock Folder XP 2015-03-28 19:31 - 2015-03-28 19:31 - 00000000 ____D () C:\RecoveredData 2015-03-28 15:12 - 2015-01-26 10:23 - 00029696 _____ (LG Electronics Inc.) C:\Windows\system32\Drivers\lgandnetmodem.sys 2015-03-28 15:12 - 2015-01-26 10:22 - 00024576 _____ (LG Electronics Inc.) C:\Windows\system32\Drivers\lgandnetdiag.sys 2015-03-28 15:12 - 2015-01-21 12:49 - 00015744 _____ (LG Electronics Inc.) C:\Windows\system32\Drivers\lgandnetbus.sys 2015-03-28 14:52 - 2015-03-28 15:12 - 00002411 _____ () C:\Windows\system32\lgAxconfig.ini 2015-03-28 14:52 - 2015-03-28 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LGMobile Support Tool 2015-03-28 14:52 - 2011-05-06 11:37 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\msvcr90.dll 2015-03-28 14:52 - 2011-05-06 11:37 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp90.dll 2015-03-28 14:52 - 2011-05-06 11:37 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\msvcm90.dll 2015-03-28 14:52 - 2006-04-30 06:33 - 00053248 _____ () C:\Windows\system32\CommonDL.dll 2015-03-28 14:52 - 2005-09-29 23:39 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\msxml4a.dll 2015-03-28 14:51 - 2015-03-28 14:52 - 00000000 ____D () C:\ProgramData\LGMOBILEAX 2015-03-27 17:17 - 2015-03-28 13:16 - 00000000 ____D () C:\Users\dejan\Documents\AirDroid 2015-03-27 14:18 - 2015-03-27 14:18 - 00001055 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\LG PC Suite.Lnk 2015-03-26 16:32 - 2015-03-27 14:37 - 00000813 _____ () C:\Windows\psb_raster.ini 2015-03-21 23:01 - 2015-04-01 19:26 - 00000898 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk 2015-03-21 23:01 - 2015-04-01 19:26 - 00000886 _____ () C:\Users\Public\Desktop\TeamViewer 10.lnk 2015-03-20 14:25 - 2015-03-20 14:25 - 00000000 ____D () C:\Users\dejan\Tracing 2015-03-20 14:24 - 2015-03-20 14:24 - 00002685 _____ () C:\Users\Public\Desktop\Skype.lnk 2015-03-20 14:24 - 2015-03-20 14:24 - 00000000 ___RD () C:\Program Files\Skype 2015-03-20 14:24 - 2015-03-20 14:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-03-20 14:24 - 2015-03-20 14:24 - 00000000 ____D () C:\Program Files\Common Files\Skype 2015-03-18 12:52 - 2015-03-28 20:06 - 00000000 ____D () C:\Users\dejan\AppData\Local\Lenovo 2015-03-18 12:50 - 2015-03-18 12:51 - 00000000 ____D () C:\Program Files\Lenovo 2015-03-18 12:50 - 2015-03-18 12:50 - 00000000 ____D () C:\Windows\Downloaded Installations ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-04-17 17:32 - 2015-01-14 23:53 - 00000000 ____D () C:\ProgramData\TEMP 2015-04-17 17:31 - 2014-10-03 23:24 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\uTorrent 2015-04-17 17:15 - 2014-09-27 18:13 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-04-17 17:12 - 2014-09-27 16:52 - 00000886 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-04-17 15:49 - 2014-09-28 01:36 - 01344110 _____ () C:\Windows\WindowsUpdate.log 2015-04-17 15:31 - 2014-11-04 00:27 - 00000000 ____D () C:\ProgramData\MFAData 2015-04-17 00:12 - 2014-09-27 16:52 - 00000882 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-04-16 20:05 - 2009-07-14 06:34 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-04-16 20:05 - 2009-07-14 06:34 - 00026352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-04-16 19:02 - 2014-10-05 21:23 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\Skype 2015-04-16 15:38 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat 2015-04-16 15:32 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache 2015-04-16 14:45 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2015-04-16 14:02 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-04-16 13:58 - 2014-12-11 12:58 - 00000000 ____D () C:\Windows\system32\appraiser 2015-04-16 13:58 - 2014-09-28 16:13 - 00000000 ___SD () C:\Windows\system32\CompatTel 2015-04-16 13:44 - 2014-09-27 19:09 - 00000000 ____D () C:\Windows\system32\MRT 2015-04-16 13:23 - 2014-09-27 19:09 - 125832184 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-04-16 13:22 - 2010-11-20 23:01 - 00765280 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-04-15 22:51 - 2014-09-27 18:13 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-04-15 22:51 - 2014-09-27 18:13 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-04-09 22:28 - 2015-02-10 14:42 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2015-04-09 21:39 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF 2015-04-09 21:27 - 2015-03-10 21:13 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\Opera Software 2015-04-09 21:27 - 2015-03-10 21:13 - 00000000 ____D () C:\Users\dejan\AppData\Local\Opera Software 2015-04-09 21:27 - 2015-03-10 21:12 - 00000000 ____D () C:\Program Files\Opera 2015-04-07 19:37 - 2014-10-14 23:16 - 00000000 ____D () C:\Users\dejan\Downloads\Compressed 2015-04-04 01:30 - 2014-09-27 16:53 - 00002098 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-04-03 23:27 - 2014-10-14 23:16 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\DMCache 2015-04-03 14:11 - 2014-10-03 14:58 - 00000000 ____D () C:\Program Files\TeamViewer 2015-04-02 21:17 - 2014-11-04 21:15 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\DVDVideoSoft 2015-03-31 13:10 - 2014-10-03 16:28 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\TeamViewer 2015-03-30 18:18 - 2014-11-11 14:53 - 00000000 ____D () C:\Users\dejan\AppData\Roaming\FileZilla 2015-03-30 16:02 - 2015-01-07 15:53 - 00000000 ____D () C:\Windows\Minidump 2015-03-30 16:02 - 2014-09-28 02:32 - 00000000 ____D () C:\Windows\Panther 2015-03-30 14:54 - 2009-07-14 06:33 - 00272376 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-03-29 19:37 - 2014-09-27 18:11 - 00059480 _____ () C:\Users\dejan\AppData\Local\GDIPFONTCACHEV1.DAT 2015-03-29 19:01 - 2015-03-12 15:25 - 00000000 ____D () C:\Users\dejan\AppData\Local\Vivaldi 2015-03-28 15:13 - 2015-01-23 19:41 - 00000000 ____D () C:\Program Files\LG Electronics 2015-03-27 14:18 - 2015-01-25 20:22 - 00001049 _____ () C:\Users\Public\Desktop\LG PC Suite.Lnk 2015-03-27 14:18 - 2015-01-25 20:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG PC Suite 2015-03-26 19:26 - 2014-11-25 21:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\YourFileDownloader 2015-03-20 14:25 - 2014-09-27 16:48 - 00000000 ____D () C:\Users\dejan 2015-03-20 14:24 - 2014-10-05 21:23 - 00000000 ____D () C:\ProgramData\Skype 2015-03-18 00:15 - 2014-11-01 18:56 - 00000000 ____D () C:\Users\dejan\AppData\Local\Adobe ==================== Files in the root of some directories ======= 2014-10-05 14:19 - 2014-10-05 14:32 - 0000693 _____ () C:\Program Files\Simlock Remote Clientoperations.log 2014-10-31 23:17 - 2014-10-31 23:17 - 0000132 _____ () C:\Users\dejan\AppData\Roaming\Adobe GIF Format CS6 Prefs 2014-09-28 16:50 - 2015-01-19 21:32 - 0000447 _____ () C:\Users\dejan\AppData\Roaming\burnaware.ini 2015-02-10 15:30 - 2015-02-10 15:31 - 0046592 ___SH () C:\Users\dejan\AppData\Roaming\Thumbs.db 2015-03-30 18:25 - 2015-04-02 21:05 - 0126013 _____ () C:\Users\dejan\AppData\Roaming\VideoPad.dmp 2014-11-05 19:14 - 2014-11-05 19:23 - 0001456 _____ () C:\Users\dejan\AppData\Local\Adobe Save for Web 13.0 Prefs 2014-10-13 20:19 - 2014-10-13 20:19 - 0007605 _____ () C:\Users\dejan\AppData\Local\Resmon.ResmonCfg ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-04-16 14:56 ==================== End Of Log ============================

Profil

helen1 Poslao: 21 Apr 2015 21:07 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! To je stari log, ponovo skeniraj i postavi.

Profil

dejanod Poslao: 21 Apr 2015 22:07 Idi na vrh
offline dejanod Moderator foruma u administraciji Pridružio: 16 Okt 2010 Poruke: 3468 Gde živiš: KRAGUJEVAC	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pokrenuo sam sada FRSCT i nema ništa u Notepadu, kliknio na scan https://www.mycity.rs/must-login.png

Profil

helen1 Poslao: 22 Apr 2015 09:22 Idi na vrh
offline helen1 Anti Malware Fighter Rank 2 Master učitelj Pridružio: 27 Avg 2005 Poruke: 8617 Gde živiš: Novi Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Preuzmi smeenk-ov zoek.zip ili zoek.rar () sa ovog ili ovog linka i sačuvaj ga na Desktop. Raspakuj arhivu u neki folder (uputstvo), a zatim: zatvori browser i ostale pokrenute programe; privremeno deaktiviraj zaštitni softver ( ukoliko je to potrebno ) Uputstvo ; dvoklikom pokreni zoek na ikonicu programa ; pričekaj da se alat startuje ... U beli okvir prozora iskopiraj sledeći tekst: `process; startupall; drivers-services-list; skipfix-iedefaults; firefoxlook; chromelook; filesrcm;` Klikni na dugme i pričekaj da se skeniranje završi. zoek ce po potrebi, restartovati Windows a na kraju rada, otvoriti Notepad sa izveštajem o skeniranju. Napomena:Izveštaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log) Kopiraj sadrzaj tog loga u poruku.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Kada digne sistem treba mu vremena da se pokrene

Ko je trenutno na forumu

Ukupno su 1041 korisnika na forumu :: 40 registrovanih, 9 sakrivenih i 992 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 9k38, ajo baba, Apok, Ben Roj, Bokiboks, Boris BM, BORUTUS, cavatina, cifra, dane007, darkangel, darkojbn, debeli, dragon986, DragoslavS, drimer, dushan, FOX, Frunze, gasha, ikan, magna86, Marko Marković, mercedesamg, Mercury, Mixelotti, mocnijogurt, mrav pesadinac, procesor, sevenino, sokars, stankolich, Stanlio, suton, vathra, Vlada1389, wizzardone, x9, ZetaMan, šumar bk2

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by