MyCity » Ambulanta -> Arhiva Ambulante » Otvaranje reklama na klick!!!

Otvaranje reklama na klick!!!

Napisano na dan: 27.8.2015

Otvaranje reklama na klick!!!
Sledeća strana Pagination

Idi na vrh

Poslao: 27 Avg 2015 15:59
Idi na vrh
offline
  • Pridružio: 27 Avg 2015
  • Poruke: 1

Ne znam da li sam dobro razumeo ovde sve kako treba... Ali ovako. Skinuo sam program, skenirao kompjuter, dobio tekst i prikacio file...
mycity.rs/must-login.png

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-08-2015 02
Ran by TRooperPN (administrator) on TROOPER (27-08-2015 16:54:25)
Running from C:\Documents and Settings\TRooperPN.TROOPER\My Documents\Downloads
Loaded Profiles: TRooperPN (Available Profiles: TRooperPN)
Platform: Microsoft Windows XP Service Pack 3 (X86) Language: English (United States)
Internet Explorer Version 6 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
(DTools LIMITED) C:\Documents and Settings\All Users.WINDOWS\Application Data\1WinManPro1\WinManPro.exe
(Atheros) C:\WINDOWS\system32\acs.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
(Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Atheros Communications, Inc.) C:\Program Files\Atheros\ACU.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(MSI) C:\Program Files\System Control Manager\MGSysCtrl.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.0.285\SSScheduler.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
() C:\Program Files\System Control Manager\edd.exe
(O2Micro International) C:\Program Files\O2Micro Oz128 Driver\o2flash.exe
(PhraseProfessor) C:\Program Files\PhraseProfessor_1.10.0.22\Service\ppsvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
() C:\Program Files\Core Temp\Core Temp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16377344 2007-06-14] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [ACU] => C:\Program Files\Atheros\ACU.exe [372825 2007-04-10] (Atheros Communications, Inc.)
HKLM\...\Run: [BluetoothAuthenticationAgent] => rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKLM\...\Run: [MGSysCtrl] => C:\Program Files\System Control Manager\MGSysCtrl.exe [180224 2008-01-09] (MSI)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-10-03] (Adobe Systems Incorporated)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776 2015-08-27] (AVAST Software)
HKU\S-1-5-21-789336058-1336601894-1177238915-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53655680 2015-07-28] (Skype Technologies S.A.)
HKU\S-1-5-21-789336058-1336601894-1177238915-1003\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_18_0_0_203_Plugin.exe [1155760 2015-07-11] (Adobe Systems Incorporated)
Startup: C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-07-06]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.0.285\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-07-06]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.0.285\SSScheduler.exe (McAfee, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-08-27] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-789336058-1336601894-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKU\S-1-5-21-789336058-1336601894-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: HKU\S-1-5-21-789336058-1336601894-1177238915-1003 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope value is missing
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2015-08-22] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-08-22] (Oracle Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{C924A6B0-8715-441F-96ED-38F77C5CB41A}: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\TRooperPN.TROOPER\Application Data\Mozilla\Firefox\Profiles\9eg9w2fs.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_203.dll [2015-07-11] ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\WINDOWS\system32\npDeployJava1.dll [2015-08-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-08-22] (Oracle Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.448 -> C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll [2009-09-04] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.448 -> C:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll [2009-09-04] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npnul32.dll [2009-04-24] (mozilla.org)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2013-10-17] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll [2013-10-17] (RealPlayer)
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-08-20]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-08-20]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-08-27]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\firefox-branding.js [2015-08-20]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\firefox-l10n.js [2015-08-20]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\firefox.js [2015-08-20]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\reporter.js [2015-08-20]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-27]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACS; C:\WINDOWS\system32\acs.exe [364629 2007-04-10] (Atheros) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-27] (AVAST Software)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182184 2015-08-22] (Oracle Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.0.285\McCHSvc.exe [234776 2012-09-05] (McAfee, Inc.)
R2 NishService; C:\Program Files\System Control Manager\edd.exe [40960 2006-03-22] () [File not signed]
R2 o2flash; C:\Program Files\O2Micro Oz128 Driver\o2flash.exe [65536 2007-02-12] (O2Micro International) [File not signed]
R2 ppsvc_1.10.0.22; C:\Program Files\PhraseProfessor_1.10.0.22\Service\ppsvc.exe [300128 2015-08-14] (PhraseProfessor)
R2 WindowsMangerProtect; C:\Documents and Settings\All Users.WINDOWS\Application Data\1WinManPro1\WinManPro.exe [707720 2015-08-22] (DTools LIMITED) <==== ATTENTION
S2 IHProtect Service; C:\Program Files\MiniLite\ProtectService.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AR5211; C:\WINDOWS\System32\DRIVERS\ar5211.sys [546112 2007-04-05] (Atheros Communications, Inc.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-08-27] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [76000 2015-08-27] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2015-08-27] (AVAST Software)
S0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-08-27] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [788784 2015-08-27] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [433264 2015-08-27] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [161472 2015-08-27] (AVAST Software)
R3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57888 2015-08-27] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [208664 2015-08-27] (AVAST Software)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R3 MGHwCtrl; C:\WINDOWS\system32\drivers\MGHwCtrl.sys [9088 2006-07-03] (Windows (R) 2000 DDK provider) [File not signed]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R1 ppfd_vt_1_10_0_22; C:\WINDOWS\System32\drivers\ppfd_vt_1_10_0_22.sys [56464 2015-08-14] (PhraseProfessor)
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [57024 2007-03-28] (Atheros Communications, Inc.)
R3 ALSysIO; \??\C:\DOCUME~1\TROOPE~1.TRO\LOCALS~1\Temp\ALSysIO.sys [X]
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-27 16:40 - 2015-08-27 16:40 - 00000000 ____D C:\Documents and Settings\TRooperPN.TROOPER\Application Data\AVAST Software
2015-08-27 16:39 - 2015-08-27 16:39 - 00001689 _____ C:\Documents and Settings\All Users.WINDOWS\Desktop\Avast Free Antivirus.lnk
2015-08-27 16:39 - 2015-08-27 16:39 - 00000000 __HDC C:\WINDOWS\$NtUninstallWdf01009$
2015-08-27 16:39 - 2015-08-27 16:39 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\AVAST Software
2015-08-27 16:39 - 2015-08-27 16:39 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\AVAST Software
2015-08-27 16:39 - 2008-11-07 18:55 - 00026144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spupdsvc.exe
2015-08-27 16:39 - 2008-11-07 18:55 - 00016928 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsgXP_2k3.dll
2015-08-27 16:38 - 2015-08-27 16:50 - 00000370 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-08-27 16:38 - 2015-08-27 16:39 - 00021295 _____ C:\WINDOWS\Wdf01009Inst.log
2015-08-27 16:38 - 2015-08-27 16:38 - 00000000 ____D C:\WINDOWS\LastGood
2015-08-27 16:37 - 2015-08-27 16:37 - 00433264 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-08-27 16:37 - 2015-08-27 16:37 - 00208664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-08-27 16:37 - 2015-08-27 16:37 - 00161472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2015-08-27 16:37 - 2015-08-27 16:37 - 00076000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-08-27 16:37 - 2015-08-27 16:37 - 00057888 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2015-08-27 16:37 - 2015-08-27 16:37 - 00055200 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2015-08-27 16:37 - 2015-08-27 16:37 - 00049776 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-08-27 16:37 - 2015-08-27 16:37 - 00024016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-08-27 16:37 - 2015-08-27 16:36 - 00788784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-08-27 16:37 - 2015-08-27 16:36 - 00313472 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-08-27 16:36 - 2015-08-27 16:36 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-08-27 16:35 - 2015-08-27 16:54 - 00000000 ____D C:\FRST
2015-08-27 16:34 - 2015-08-27 16:34 - 00000000 ____D C:\Program Files\AVAST Software
2015-08-27 16:22 - 2015-08-27 16:22 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\AVAST Software
2015-08-27 16:22 - 2015-08-27 16:22 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\AVAST Software
2015-08-27 16:19 - 2015-08-27 16:19 - 00000462 _____ C:\WINDOWS\Tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job
2015-08-27 16:13 - 2015-08-27 16:15 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\MFAData
2015-08-27 16:13 - 2015-08-27 16:15 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\MFAData
2015-08-27 16:13 - 2015-08-27 16:13 - 00000000 ____D C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Application Data\MFAData
2015-08-27 16:13 - 2015-08-27 16:13 - 00000000 ____D C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Application Data\Avg2015
2015-08-26 18:14 - 2015-08-26 22:54 - 00074271 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Samo golovi.xlsx
2015-08-26 16:11 - 2015-08-26 16:31 - 02314077 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Nova sezona 2.xlsx
2015-08-26 10:53 - 2015-08-26 10:54 - 00000000 ____D C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Smure
2015-08-25 09:36 - 2015-08-25 09:36 - 00000000 ____D C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Application Data\Sun
2015-08-25 09:32 - 2015-08-27 16:17 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\CPA_VA
2015-08-25 09:32 - 2015-08-27 16:17 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\CPA_VA
2015-08-25 09:31 - 2015-08-27 16:50 - 00147921 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2015-08-24 16:31 - 2015-08-25 09:32 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\Comodo
2015-08-24 16:31 - 2015-08-25 09:32 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\Comodo
2015-08-24 16:31 - 2015-08-24 16:31 - 01700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdiplus.dll
2015-08-24 16:31 - 2015-08-24 16:31 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71.dll
2015-08-22 16:44 - 2015-08-22 16:44 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\Sun
2015-08-22 16:44 - 2015-08-22 16:44 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\Sun
2015-08-22 16:44 - 2015-08-22 16:43 - 00867240 _____ (Oracle Corporation) C:\WINDOWS\system32\npDeployJava1.dll
2015-08-22 16:44 - 2015-08-22 16:43 - 00789416 _____ (Oracle Corporation) C:\WINDOWS\system32\deployJava1.dll
2015-08-22 16:44 - 2015-08-22 16:43 - 00263592 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2015-08-22 16:44 - 2015-08-22 16:43 - 00144896 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2015-08-22 16:43 - 2015-08-22 16:43 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2015-08-22 16:43 - 2015-08-22 16:43 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2015-08-22 16:43 - 2015-08-22 16:43 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-08-22 16:42 - 2015-08-22 16:42 - 00000000 ____D C:\Documents and Settings\TRooperPN.TROOPER\Application Data\Sun
2015-08-22 16:41 - 2015-08-27 11:37 - 00000000 ____D C:\Program Files\MiniLite
2015-08-22 16:41 - 2015-08-23 09:15 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\1WinManPro1
2015-08-22 16:41 - 2015-08-23 09:15 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\1WinManPro1
2015-08-22 16:41 - 2015-08-22 16:41 - 00000216 _____ C:\Documents and Settings\All Users.WINDOWS\Application Data\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-08-22 16:41 - 2015-08-22 16:41 - 00000216 _____ C:\Documents and Settings\All Users.WINDOWS\Application Data\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-08-22 16:41 - 2015-08-22 16:41 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\update
2015-08-22 16:41 - 2015-08-22 16:41 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\update
2015-08-22 16:40 - 2015-08-22 16:40 - 00000818 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Core Temp.lnk
2015-08-22 16:40 - 2015-08-22 16:40 - 00000000 ____D C:\Program Files\PhraseProfessor_1.10.0.22
2015-08-22 16:40 - 2015-08-22 16:40 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Core Temp
2015-08-22 16:40 - 2015-08-22 16:40 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Core Temp
2015-08-20 18:18 - 2015-08-21 07:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-08-19 16:10 - 2015-08-19 17:10 - 02434607 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Copy (2) of Negativ sa velikim kvotama.xlsx
2015-08-18 12:51 - 2015-08-19 16:56 - 02156548 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Copy of Negativ sa velikim kvotama.xlsx
2015-08-14 21:52 - 2015-08-14 21:52 - 00056464 _____ (PhraseProfessor) C:\WINDOWS\system32\Drivers\ppfd_vt_1_10_0_22.sys
2015-08-14 21:52 - 2015-08-14 21:52 - 00048528 _____ (PhraseProfessor) C:\WINDOWS\system32\Drivers\ppfd_vw_1_10_0_22.sys
2015-08-11 16:06 - 2015-08-12 18:51 - 01895101 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Negativ sa velikim kvotama.xlsx
2015-08-11 14:36 - 2015-08-11 16:24 - 00000000 ____D C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Za troskove
2015-08-11 13:40 - 2015-08-11 13:40 - 06428883 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Skola za kladionicare (Autosaved).xlsx
2015-08-11 10:15 - 2015-08-11 10:15 - 00000165 ____H C:\Documents and Settings\TRooperPN.TROOPER\Desktop\~$Skola za kladionicare.xlsx
2015-08-11 10:15 - 2015-08-11 10:15 - 00000165 ____H C:\Documents and Settings\TRooperPN.TROOPER\Desktop\~$Obrada kvote prepravljanje.xlsx

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-27 16:54 - 2015-06-12 16:14 - 00000000 ____D C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Temp
2015-08-27 16:39 - 2015-06-12 17:56 - 00055070 _____ C:\WINDOWS\iis6.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00021005 _____ C:\WINDOWS\comsetup.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00017728 _____ C:\WINDOWS\ocgen.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00017719 _____ C:\WINDOWS\FaxSetup.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00013646 _____ C:\WINDOWS\tsoc.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00012483 _____ C:\WINDOWS\ntdtcsetup.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00011968 _____ C:\WINDOWS\msmqinst.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00003873 _____ C:\WINDOWS\netfxocm.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00001912 _____ C:\WINDOWS\MedCtrOC.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00001563 _____ C:\WINDOWS\tabletoc.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00001374 _____ C:\WINDOWS\imsins.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00001227 _____ C:\WINDOWS\ocmsn.log
2015-08-27 16:39 - 2015-06-12 17:56 - 00001180 _____ C:\WINDOWS\msgsocm.log
2015-08-27 16:39 - 2015-06-12 17:55 - 00311941 _____ C:\WINDOWS\setupapi.log
2015-08-27 16:17 - 2013-02-05 02:29 - 00000000 ____D C:\Program Files\Comodo
2015-08-27 16:00 - 2015-06-12 16:07 - 00247795 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-26 18:57 - 2015-07-26 14:38 - 02552340 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Nova sezona.xlsx
2015-08-26 16:50 - 2015-06-13 14:44 - 00029696 _____ C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-25 12:50 - 2015-02-02 19:07 - 00000000 ____D C:\Documents and Settings\Goran\Local Settings\Application Data\PriceFountain
2015-08-25 12:42 - 2014-05-11 19:11 - 00000000 ____D C:\temp
2015-08-25 09:36 - 2015-06-12 17:56 - 00356120 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-25 09:33 - 2015-06-15 09:47 - 00000000 ____D C:\Documents and Settings\TRooperPN.TROOPER\Application Data\Skype
2015-08-25 09:32 - 2015-07-04 19:06 - 00002265 _____ C:\Documents and Settings\All Users.WINDOWS\Desktop\Skype.lnk
2015-08-25 09:32 - 2015-06-12 18:00 - 00000159 _____ C:\WINDOWS\wiadebug.log
2015-08-25 09:32 - 2015-06-12 18:00 - 00000049 _____ C:\WINDOWS\wiaservc.log
2015-08-25 09:31 - 2015-06-12 16:13 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-25 09:31 - 2013-10-17 19:34 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-08-25 09:31 - 2008-04-14 15:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2015-08-25 09:30 - 2015-06-12 16:14 - 00000178 ___SH C:\Documents and Settings\TRooperPN.TROOPER\ntuser.ini
2015-08-25 09:30 - 2015-06-12 16:13 - 00002740 _____ C:\WINDOWS\SchedLgU.Txt
2015-08-25 08:20 - 2015-06-13 18:00 - 00703599 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Padavici statistika.xlsx
2015-08-22 16:47 - 2015-07-14 23:47 - 00000847 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Shortcut to firefox.lnk
2015-08-22 16:47 - 2015-06-12 16:14 - 00000767 _____ C:\Documents and Settings\TRooperPN.TROOPER\Start Menu\Programs\Internet Explorer.lnk
2015-08-22 16:47 - 2015-06-12 15:57 - 00000730 _____ C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-22 16:47 - 2015-06-12 15:57 - 00000730 _____ C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-22 16:47 - 2015-06-12 15:54 - 00000724 _____ C:\Documents and Settings\All Users.WINDOWS\Desktop\Mozilla Firefox.lnk
2015-08-22 16:40 - 2014-09-24 01:33 - 00000000 ____D C:\Program Files\Core Temp
2015-08-16 12:39 - 2015-06-13 18:00 - 30274899 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Obrada kvote prepravljanje.xlsx
2015-08-13 23:20 - 2015-06-13 18:00 - 00000000 ____D C:\Documents and Settings\TRooperPN.TROOPER\Desktop\ZA CUVANJE
2015-08-13 13:19 - 2015-06-13 18:00 - 06488414 _____ C:\Documents and Settings\TRooperPN.TROOPER\Desktop\Skola za kladionicare.xlsx
2015-08-08 16:26 - 2015-06-15 09:47 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\Skype
2015-08-08 16:26 - 2015-06-15 09:47 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\Skype
2015-07-30 19:43 - 2015-06-12 16:42 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe
2015-07-30 19:43 - 2015-06-12 16:42 - 00000000 ____D C:\Documents and Settings\All Users.WINDOWS\Application Data\Adobe

==================== Files in the root of some directories =======

2015-03-01 19:26 - 2010-01-26 11:11 - 0444283 _____ () C:\Program Files\Common Files\WinPcapNmap.exe
2015-06-13 14:44 - 2015-08-26 16:50 - 0029696 _____ () C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some files in TEMP:
====================
C:\Documents and Settings\TRooperPN\Local Settings\Temp\AskInstallChecker.exe
C:\Documents and Settings\TRooperPN\Local Settings\Temp\setup.exe
C:\Documents and Settings\TRooperPN\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\TRooperPN\Local Settings\Temp\utt1363.tmp.exe
C:\Documents and Settings\TRooperPN\Local Settings\Temp\VDownloaderSetup.exe
C:\Documents and Settings\TRooperPN\Local Settings\Temp\_is91.exe
C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Temp\cis31B.exe
C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Temp\InstallGenieo.exe
C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Temp\jreInstall.exe
C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Temp\setup.exe
C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Temp\smt_istartsurf.exe
C:\Documents and Settings\TRooperPN.TROOPER\Local Settings\Temp\sqlite-3.7.2-sqlitejdbc.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================


Do sada sam svaki put radio novi windows kada bi mi to dosadjivalo, ali mrzi me da svaka 2-3 meseca radim novi windows... Kako da se oslobodim tih reklama i da me vise ne smara to?

Unapred hvala Smile

Poslao: 27 Avg 2015 19:39
Idi na vrh
offline
  • Pridružio: 26 Avg 2010
  • Poruke: 10622
  • Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building

Prvo deinstaliraj PhraseProfessor.

Zatim, ponovo pokreni FRST i postavi nove FRST.txt i Addition.tx izvještaje (Addition.txt nisi postavio).

MyCity » Ambulanta -> Arhiva Ambulante » Otvaranje reklama na klick!!!

Ko je trenutno na forumu
 

Ukupno su 882 korisnika na forumu :: 62 registrovanih, 6 sakrivenih i 814 gosta   ::   [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:
Korisnici trenutno na forumu: _Petar, Apok, babaroga, bagor10, bato, BORUTUS, BraneS, ccoogg123, cifra, darkangel, Darko8, dekan.m, Denaya, Dimitrije Paunovic, djboj, DPera, draganca, dragoljub11987, DragoslavS, eaglehawk, Gargantua, GenZee, GORDI, havoc995, HrcAk47, kikisp, Koridor, Kubovac, kvcali, kybonacci, lelemud, Lubica, marsovac 2, milan47, mile23, milenko crazy north, Miškić, mkukoleca, MrNo, opt1, ostoja, pacika, pein, Raso75, savaskytec, Shinobi, srbijaiznadsvega, Srle993, strelac07, Valter071, VJ, vladaa012, Vlajman1957, vobo, VojvodaMisic, wizzardone, wolf431, ZetaMan, zixmix, zlaya011, Čivi, 79693