MyCity » Ambulanta -> Arhiva Ambulante » Problem sa iskacicim prozorima

Problem sa iskacicim prozorima

Napisano na dan: 20.6.2014

Strana:
1
2

Problem sa iskacicim prozorima

Sledeća strana

Pagination

Odgovori

Strana:
1
2

MonteCarlo Poslao: 20 Jun 2014 23:35 Idi na vrh
offline MonteCarlo Građanin Pridružio: 18 Jan 2009 Poruke: 203	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Pocelo je pre par dana. Kada koristim internet kliknem da otvorim neku stranicu ili da se vratim nazad ili kliknem bilo gde na stranici,otvara se novi prozor sa pocetnom adresom clik.com a posle sekundu redirektuje dalje po nekim sajtovima bez veze. Nisam nasao ni jedan program koji se instalirao bez mog znanja,takodje u podesavanjima google chrome nisam pronasao nista. Ukljucio sam CCleaner nadajuci se da ce resiti problem ali nije. Imam osnovnu adsl telekom konekciju. Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-06-2014 Ran by Marko (administrator) on MARKO-PC on 20-06-2014 23:29:02 Running from C:\Users\Marko\Downloads Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (AMD) C:\Windows\System32\atiesrxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe (PandoraTV) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (installdaddy) C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe (installdaddy) C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Farbar) C:\Users\Marko\Downloads\FRST64 (1).exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6839952 2012-09-13] (Realtek Semiconductor) HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-06] (AVAST Software) HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd) HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [Video Performer64197.exe] => "C:\Users\Marko\AppData\Local\Temp\Video Performer64197.exe" /XML="C:\Users\Marko\AppData\Local\Temp\12F3.tmp" /ROS /STP=0:2 <===== ATTENTION HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [Smart Driver Updater] => C:\Program Files (x86)\Smart Driver Updater\SDULauncher.exe HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [RGSC] => C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe [305064 2008-11-14] (Take-Two Interactive Software, Inc.) HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [ares] => "C:\Program Files (x86)\Ares\Ares.exe" -h HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\MountPoints2: {6f10593e-e028-11e2-a420-d43d7e551364} - F:\autorun.exe AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll => c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll File Not Found ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_ss&mntrI.....p;tsp=5267 HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www2.delta-search.com/?babsrc=HP_ss&mnt.....p;tsp=5008 SearchScopes: HKLM-x32 - DefaultScope {F101602F-B87E-4239-A5B0-DCF26A049114} URL = SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=92D8D43D7E551364&affID=128403&tsp=5267 SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=92D8D43D7E551364&affID=128403&tsp=5267 SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {B8840B7F-11AB-4122-8A73-4DA23C20198E} URL = http://mp3tubetoolbar.com/?tmp=toolbar_sb_results&.....;Keywords={searchTerms}&clid=ed23d6344b3f484992a7bf6dd2023eb4 SearchScopes: HKCU - {F101602F-B87E-4239-A5B0-DCF26A049114} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282698&CUI=UN18453682761731032&UM=2 BHO: GoPhoto.it V9.0 - {11111111-1111-1111-1111-110311401168} - C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-bho64.dll (installdaddy) BHO: Torntv V9.0 - {11111111-1111-1111-1111-110511131190} - C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho64.dll (installdaddy) BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) BHO-x32: GoPhoto.it V9.0 - {11111111-1111-1111-1111-110311401168} - C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-bho.dll (installdaddy) BHO-x32: FTdownloader V4.0 - {11111111-1111-1111-1111-110311551174} - C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-bho.dll (installdaddy) BHO-x32: Torntv V9.0 - {11111111-1111-1111-1111-110511131190} - C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho.dll (installdaddy) BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) BHO-x32: BrowseFox - {b9507101-e464-4b3b-a4cb-291aaedd94f2} - C:\Program Files (x86)\BrowseFox\BrowseFoxbho.dll (Browse Fox) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File Toolbar: HKLM-x32 - Mp3Tube Toolbar - {46897C77-E7A6-4c33-BFFB-E9C2E2718942} - C:\Program Files (x86)\Mp3Tube Toolbar\mp3tubetb.DLL (Mp3Tube Toolbar) Toolbar: HKCU - No Name - {46897C77-E7A6-4C33-BFFB-E9C2E2718942} - No File Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation) Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 - C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 - C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF HKLM-x32\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com FF Extension: Speed Analysis 2 - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013-07-15] FF HKLM-x32\...\Firefox\Extensions: [zulagames@ZulaGames.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com FF Extension: Zula Games - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013-07-15] FF HKCU\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com FF Extension: Speed Analysis 2 - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013-07-15] FF HKCU\...\Firefox\Extensions: [zulagames@ZulaGames.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com FF Extension: Zula Games - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013-07-15] Chrome: ======= CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-21] CHR Extension: (Zula Games) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn [2014-06-20] CHR Extension: (SweetTunes1) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\giolhomkcooifelkdfpejhidfidaahlc [2014-06-20] CHR Extension: (Skype Click to Call) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-06-20] CHR Extension: (Google Wallet) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21] CHR Extension: (BrowseFox) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdjnkblmcjfnlogjjhpigpdgpcgdpll [2014-06-20] CHR HKCU\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx [2013-11-07] CHR HKLM-x32\...\Chrome\Extension: [gflandjopdloblmlcoiidmncpinmmacn] - C:\Users\Marko\AppData\Roaming\zulagames\zulagames.crx [2013-07-01] CHR HKLM-x32\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx [2013-11-07] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11] CHR HKLM-x32\...\Chrome\Extension: [ppdjnkblmcjfnlogjjhpigpdgpcgdpll] - C:\Program Files (x86)\BrowseFox\ppdjnkblmcjfnlogjjhpigpdgpcgdpll.crx [2013-08-30] ==================== Services (Whitelisted) ================= R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-28] (Advanced Micro Devices, Inc.) [File not signed] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-21] (AVAST Software) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation) S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-03] (globalUpdate) [File not signed] S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-03] (globalUpdate) [File not signed] R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe [625304 2012-09-28] (Pandora.TV) ==================== Drivers (Whitelisted) ==================== R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-05-21] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-05-21] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-05-21] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-05-21] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-22] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-22] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-22] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-05-21] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-06-28] (DT Soft Ltd) S1 VD_FileDisk; C:\Windows\SysWow64\Drivers\VD_FileDisk.sys [15872 2006-01-13] (Flint Incorporation) [File not signed] S3 MSICDSetup; \??\E:\CDriver64.sys [X] S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X] S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-06-20 23:29 - 2014-06-20 23:29 - 00015093 _____ () C:\Users\Marko\Downloads\FRST.txt 2014-06-20 23:28 - 2014-06-20 23:29 - 00000000 ____D () C:\FRST 2014-06-20 23:28 - 2014-06-20 23:28 - 02083328 _____ (Farbar) C:\Users\Marko\Downloads\FRST64 (1).exe 2014-06-18 21:07 - 2014-06-18 21:07 - 00340480 _____ () C:\Users\Marko\Downloads\TVapp__8821_i902830411_il5.exe 2014-06-17 23:03 - 2014-06-17 23:03 - 00086528 _____ () C:\Users\Marko\Downloads\MINI_TENIS_REJTING (1).ppt 2014-06-13 23:27 - 2014-06-13 23:27 - 00001745 _____ () C:\Users\Marko\Desktop\pes2014 - Shortcut.lnk 2014-06-13 23:11 - 2014-06-13 23:11 - 00000000 ____D () C:\Program Files (x86)\KONAMI 2014-06-13 19:28 - 2014-06-13 22:33 - 00000000 ____D () C:\Users\Marko\Downloads\Pro.Evolution.Soccer.2014-RELOADED 2014-06-13 19:26 - 2014-06-13 19:26 - 00013027 _____ () C:\Users\Marko\Downloads\[kickass.to]pro.evolution.soccer.2014.pc.dvd.serial.(zabranjeno).torrent 2014-06-13 19:26 - 2014-06-13 19:26 - 00013027 _____ () C:\Users\Marko\Downloads\[kickass.to]pro.evolution.soccer.2014.pc.dvd.serial.(zabranjeno) (1).torrent 2014-06-13 16:41 - 2014-06-14 18:13 - 00000000 ____D () C:\Users\Marko\Desktop\3. razred zurka 2014-06-13 07:59 - 2014-06-20 23:22 - 00001184 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-06-13 07:59 - 2014-06-20 23:22 - 00001184 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-06-13 07:59 - 2014-06-13 07:59 - 00000552 _____ () C:\Windows\system32\spsys.log 2014-06-13 07:58 - 2014-06-13 07:58 - 00109296 _____ () C:\Users\Marko\AppData\Local\GDIPFONTCACHEV1.DAT 2014-06-13 07:56 - 2014-06-13 07:57 - 00416024 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-06-11 10:06 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-06-11 10:06 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-06-11 10:06 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-06-11 10:06 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-06-11 10:06 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-06-11 10:06 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-06-11 10:06 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-06-11 10:06 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-06-11 10:06 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-06-11 10:06 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-06-11 10:06 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-06-11 10:06 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-06-11 10:06 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-06-11 10:06 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-06-11 10:06 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-06-11 10:06 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-06-11 10:06 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-06-11 10:06 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-06-11 10:06 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-06-11 10:06 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-06-11 10:06 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-06-11 10:06 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-06-11 10:06 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-06-11 10:06 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-06-11 10:06 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-06-11 10:06 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-06-11 10:06 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-06-11 10:06 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-06-11 10:06 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-06-11 10:06 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-06-11 10:06 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-06-11 10:06 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-06-11 10:06 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-06-11 10:06 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-06-11 10:06 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-06-11 10:06 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-06-11 10:06 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-06-11 10:06 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-06-11 10:06 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-06-11 10:06 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-06-11 10:06 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-06-11 10:06 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-06-11 10:06 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-06-11 10:06 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-06-11 10:06 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-06-11 10:06 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-06-11 10:06 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-06-11 10:06 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-06-11 10:06 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-06-11 10:06 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-06-11 10:06 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-06-11 10:06 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-06-11 10:06 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-06-11 10:06 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2014-06-11 10:06 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll 2014-06-11 10:06 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll 2014-06-11 10:06 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-06-11 10:06 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-06-11 10:06 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2014-06-11 10:06 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-06-11 10:06 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2014-06-11 10:06 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2014-06-11 10:06 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2014-06-11 10:06 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2014-06-11 10:06 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll 2014-06-11 10:06 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2014-06-09 22:35 - 2014-06-09 22:35 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2014-06-09 10:38 - 2014-06-09 10:39 - 00657688 _____ (Conduit) C:\Users\Marko\Downloads\Deckdaq.exe 2014-06-03 15:22 - 2014-06-20 21:22 - 00001430 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5.job 2014-06-03 15:22 - 2014-06-20 21:22 - 00001416 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1.job 2014-06-03 15:22 - 2014-06-20 21:22 - 00001330 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2.job 2014-06-03 15:22 - 2014-06-03 15:22 - 00004460 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5 2014-06-03 15:22 - 2014-06-03 15:22 - 00004446 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1 2014-06-03 15:22 - 2014-06-03 15:22 - 00004360 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2 2014-06-03 15:21 - 2014-06-20 23:21 - 00001342 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7.job 2014-06-03 15:21 - 2014-06-20 23:21 - 00001290 _____ () C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7.job 2014-06-03 15:21 - 2014-06-20 21:26 - 00000944 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job 2014-06-03 15:21 - 2014-06-20 21:21 - 00003798 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3.job 2014-06-03 15:21 - 2014-06-20 21:21 - 00002176 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4.job 2014-06-03 15:21 - 2014-06-20 21:21 - 00001440 _____ () C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.job 2014-06-03 15:21 - 2014-06-20 21:21 - 00001414 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6.job 2014-06-03 15:21 - 2014-06-20 21:21 - 00001352 _____ () C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job 2014-06-03 15:21 - 2014-06-20 21:21 - 00001342 _____ () C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1.job 2014-06-03 15:21 - 2014-06-20 21:21 - 00001316 _____ () C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.job 2014-06-03 15:21 - 2014-06-20 15:26 - 00000940 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job 2014-06-03 15:21 - 2014-06-03 15:22 - 00005206 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4 2014-06-03 15:21 - 2014-06-03 15:22 - 00000000 ____D () C:\Program Files (x86)\GoPhoto.it V9.0 2014-06-03 15:21 - 2014-06-03 15:21 - 00006828 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3 2014-06-03 15:21 - 2014-06-03 15:21 - 00004470 _____ () C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5 2014-06-03 15:21 - 2014-06-03 15:21 - 00004444 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6 2014-06-03 15:21 - 2014-06-03 15:21 - 00004382 _____ () C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 2014-06-03 15:21 - 2014-06-03 15:21 - 00004372 _____ () C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 2014-06-03 15:21 - 2014-06-03 15:21 - 00004370 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7 2014-06-03 15:21 - 2014-06-03 15:21 - 00004346 _____ () C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2 2014-06-03 15:21 - 2014-06-03 15:21 - 00004318 _____ () C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7 2014-06-03 15:21 - 2014-06-03 15:21 - 00003942 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA 2014-06-03 15:21 - 2014-06-03 15:21 - 00003688 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore 2014-06-03 15:20 - 2014-06-13 15:21 - 00000000 ____D () C:\Program Files (x86)\Torntv V9.0 2014-06-03 15:20 - 2014-06-03 15:20 - 00000000 ____D () C:\Users\Marko\AppData\Local\globalUpdate 2014-06-03 15:20 - 2014-06-03 15:20 - 00000000 ____D () C:\Program Files (x86)\globalUpdate 2014-06-03 15:19 - 2014-06-03 15:19 - 00432600 _____ () C:\Users\Marko\Downloads\Stronghold_Crusader_HD_TiNYiSO_.exe 2014-05-27 14:37 - 2014-05-27 14:37 - 00000000 ____D () C:\Users\Marko\Downloads\Attachments_2014527 (2) 2014-05-27 14:34 - 2014-05-27 14:38 - 00000000 ____D () C:\Users\Marko\Downloads\Attachments_2014527 2014-05-27 14:34 - 2014-05-27 14:34 - 00000000 ____D () C:\Users\Marko\Downloads\Attachments_2014527 (1) 2014-05-22 14:12 - 2014-05-22 14:12 - 00000000 ____D () C:\Users\Marko\AppData\Roaming\AVAST Software 2014-05-21 20:47 - 2014-05-22 14:24 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys 2014-05-21 20:47 - 2014-05-21 20:47 - 00447888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswndisflt.sys.1400761451626 2014-05-21 20:47 - 2014-05-21 20:47 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2014-05-21 20:47 - 2014-05-21 20:47 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys 2014-05-21 20:42 - 2014-01-22 15:52 - 00131232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFW.sys 2014-05-21 13:33 - 2014-05-21 13:33 - 01287032 _____ () C:\Users\Marko\Desktop\Fcb camp nou datka_g.rar ==================== One Month Modified Files and Folders ======= 2014-06-20 23:29 - 2014-06-20 23:29 - 00015093 _____ () C:\Users\Marko\Downloads\FRST.txt 2014-06-20 23:29 - 2014-06-20 23:28 - 00000000 ____D () C:\FRST 2014-06-20 23:28 - 2014-06-20 23:28 - 02083328 _____ (Farbar) C:\Users\Marko\Downloads\FRST64 (1).exe 2014-06-20 23:22 - 2014-06-13 07:59 - 00001184 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-06-20 23:22 - 2014-06-13 07:59 - 00001184 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-06-20 23:21 - 2014-06-03 15:21 - 00001342 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7.job 2014-06-20 23:21 - 2014-06-03 15:21 - 00001290 _____ () C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7.job 2014-06-20 23:19 - 2013-06-28 23:44 - 00000000 ____D () C:\Users\Marko\AppData\Roaming\DAEMON Tools Lite 2014-06-20 23:19 - 2013-06-28 22:25 - 00000000 ____D () C:\Users\Marko\AppData\Roaming\uTorrent 2014-06-20 23:14 - 2013-06-27 18:23 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-06-20 22:33 - 2013-07-27 10:35 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-06-20 22:10 - 2013-06-27 18:04 - 01702951 ____N () C:\Windows\WindowsUpdate.log 2014-06-20 21:26 - 2014-06-03 15:21 - 00000944 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job 2014-06-20 21:22 - 2014-06-03 15:22 - 00001430 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5.job 2014-06-20 21:22 - 2014-06-03 15:22 - 00001416 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1.job 2014-06-20 21:22 - 2014-06-03 15:22 - 00001330 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2.job 2014-06-20 21:21 - 2014-06-03 15:21 - 00003798 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3.job 2014-06-20 21:21 - 2014-06-03 15:21 - 00002176 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4.job 2014-06-20 21:21 - 2014-06-03 15:21 - 00001440 _____ () C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.job 2014-06-20 21:21 - 2014-06-03 15:21 - 00001414 _____ () C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6.job 2014-06-20 21:21 - 2014-06-03 15:21 - 00001352 _____ () C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job 2014-06-20 21:21 - 2014-06-03 15:21 - 00001342 _____ () C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1.job 2014-06-20 21:21 - 2014-06-03 15:21 - 00001316 _____ () C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.job 2014-06-20 21:17 - 2014-02-16 18:13 - 00000000 ____D () C:\Users\Marko\Documents\FIFA 14 2014-06-20 19:21 - 2013-09-17 19:21 - 00001224 _____ () C:\Windows\Tasks\FTdownloader V4.0-codedownloader.job 2014-06-20 15:26 - 2014-06-03 15:21 - 00000940 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job 2014-06-20 15:14 - 2013-06-27 18:23 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-06-20 10:14 - 2013-06-28 12:34 - 00000000 ____D () C:\Users\Marko\AppData\Roaming\Skype 2014-06-20 10:07 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-06-18 21:07 - 2014-06-18 21:07 - 00340480 _____ () C:\Users\Marko\Downloads\TVapp__8821_i902830411_il5.exe 2014-06-18 09:35 - 2013-06-27 20:06 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update 2014-06-17 23:03 - 2014-06-17 23:03 - 00086528 _____ () C:\Users\Marko\Downloads\MINI_TENIS_REJTING (1).ppt 2014-06-14 18:13 - 2014-06-13 16:41 - 00000000 ____D () C:\Users\Marko\Desktop\3. razred zurka 2014-06-14 13:36 - 2013-07-15 09:27 - 00000000 ____D () C:\Users\Marko\AppData\Roaming\vlc 2014-06-13 23:27 - 2014-06-13 23:27 - 00001745 _____ () C:\Users\Marko\Desktop\pes2014 - Shortcut.lnk 2014-06-13 23:26 - 2013-06-29 11:38 - 00000000 ____D () C:\Users\Marko\Documents\KONAMI 2014-06-13 23:11 - 2014-06-13 23:11 - 00000000 ____D () C:\Program Files (x86)\KONAMI 2014-06-13 23:11 - 2013-09-15 16:31 - 00000000 ____D () C:\ProgramData\KONAMI 2014-06-13 22:33 - 2014-06-13 19:28 - 00000000 ____D () C:\Users\Marko\Downloads\Pro.Evolution.Soccer.2014-RELOADED 2014-06-13 19:26 - 2014-06-13 19:26 - 00013027 _____ () C:\Users\Marko\Downloads\[kickass.to]pro.evolution.soccer.2014.pc.dvd.serial.(zabranjeno).torrent 2014-06-13 19:26 - 2014-06-13 19:26 - 00013027 _____ () C:\Users\Marko\Downloads\[kickass.to]pro.evolution.soccer.2014.pc.dvd.serial.(zabranjeno) (1).torrent 2014-06-13 15:21 - 2014-06-03 15:20 - 00000000 ____D () C:\Program Files (x86)\Torntv V9.0 2014-06-13 07:59 - 2014-06-13 07:59 - 00000552 _____ () C:\Windows\system32\spsys.log 2014-06-13 07:58 - 2014-06-13 07:58 - 00109296 _____ () C:\Users\Marko\AppData\Local\GDIPFONTCACHEV1.DAT 2014-06-13 07:57 - 2014-06-13 07:56 - 00416024 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-06-12 09:18 - 2013-06-27 18:23 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-06-11 19:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-06-11 12:59 - 2013-09-22 11:12 - 00000000 ____D () C:\Windows\system32\MRT 2014-06-11 12:57 - 2013-06-27 19:14 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-06-11 12:56 - 2013-06-27 18:44 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-06-09 22:35 - 2014-06-09 22:35 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2014-06-09 10:39 - 2014-06-09 10:38 - 00657688 _____ (Conduit) C:\Users\Marko\Downloads\Deckdaq.exe 2014-06-03 15:22 - 2014-06-03 15:22 - 00004460 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5 2014-06-03 15:22 - 2014-06-03 15:22 - 00004446 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1 2014-06-03 15:22 - 2014-06-03 15:22 - 00004360 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2 2014-06-03 15:22 - 2014-06-03 15:21 - 00005206 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4 2014-06-03 15:22 - 2014-06-03 15:21 - 00000000 ____D () C:\Program Files (x86)\GoPhoto.it V9.0 2014-06-03 15:21 - 2014-06-03 15:21 - 00006828 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3 2014-06-03 15:21 - 2014-06-03 15:21 - 00004470 _____ () C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5 2014-06-03 15:21 - 2014-06-03 15:21 - 00004444 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6 2014-06-03 15:21 - 2014-06-03 15:21 - 00004382 _____ () C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 2014-06-03 15:21 - 2014-06-03 15:21 - 00004372 _____ () C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 2014-06-03 15:21 - 2014-06-03 15:21 - 00004370 _____ () C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7 2014-06-03 15:21 - 2014-06-03 15:21 - 00004346 _____ () C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2 2014-06-03 15:21 - 2014-06-03 15:21 - 00004318 _____ () C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7 2014-06-03 15:21 - 2014-06-03 15:21 - 00003942 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA 2014-06-03 15:21 - 2014-06-03 15:21 - 00003688 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore 2014-06-03 15:20 - 2014-06-03 15:20 - 00000000 ____D () C:\Users\Marko\AppData\Local\globalUpdate 2014-06-03 15:20 - 2014-06-03 15:20 - 00000000 ____D () C:\Program Files (x86)\globalUpdate 2014-06-03 15:19 - 2014-06-03 15:19 - 00432600 _____ () C:\Users\Marko\Downloads\Stronghold_Crusader_HD_TiNYiSO_.exe 2014-06-02 09:01 - 2013-06-28 12:34 - 00000000 ___RD () C:\Program Files (x86)\Skype 2014-06-02 09:01 - 2013-06-28 12:34 - 00000000 ____D () C:\ProgramData\Skype 2014-05-30 12:21 - 2014-06-11 10:06 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-30 12:02 - 2014-06-11 10:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-05-30 12:02 - 2014-06-11 10:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-05-30 11:45 - 2014-06-11 10:06 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-05-30 11:39 - 2014-06-11 10:06 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-05-30 11:39 - 2014-06-11 10:06 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-05-30 11:38 - 2014-06-11 10:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-05-30 11:28 - 2014-06-11 10:06 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-05-30 11:27 - 2014-06-11 10:06 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-05-30 11:24 - 2014-06-11 10:06 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-05-30 11:21 - 2014-06-11 10:06 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-05-30 11:21 - 2014-06-11 10:06 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-05-30 11:20 - 2014-06-11 10:06 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-05-30 11:18 - 2014-06-11 10:06 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-05-30 11:11 - 2014-06-11 10:06 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-05-30 11:08 - 2014-06-11 10:06 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-05-30 11:06 - 2014-06-11 10:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-05-30 11:02 - 2014-06-11 10:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-05-30 10:55 - 2014-06-11 10:06 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-05-30 10:49 - 2014-06-11 10:06 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-05-30 10:46 - 2014-06-11 10:06 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-30 10:44 - 2014-06-11 10:06 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-05-30 10:44 - 2014-06-11 10:06 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-05-30 10:43 - 2014-06-11 10:06 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-05-30 10:42 - 2014-06-11 10:06 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-05-30 10:38 - 2014-06-11 10:06 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-05-30 10:35 - 2014-06-11 10:06 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-05-30 10:34 - 2014-06-11 10:06 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-05-30 10:33 - 2014-06-11 10:06 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-05-30 10:30 - 2014-06-11 10:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-05-30 10:29 - 2014-06-11 10:06 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-05-30 10:28 - 2014-06-11 10:06 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-05-30 10:27 - 2014-06-11 10:06 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-05-30 10:24 - 2014-06-11 10:06 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-05-30 10:23 - 2014-06-11 10:06 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-05-30 10:16 - 2014-06-11 10:06 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-05-30 10:10 - 2014-06-11 10:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-05-30 10:06 - 2014-06-11 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-05-30 10:04 - 2014-06-11 10:06 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-05-30 10:02 - 2014-06-11 10:06 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-05-30 09:56 - 2014-06-11 10:06 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-05-30 09:56 - 2014-06-11 10:06 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-05-30 09:54 - 2014-06-11 10:06 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-05-30 09:50 - 2014-06-11 10:06 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-05-30 09:49 - 2014-06-11 10:06 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-05-30 09:43 - 2014-06-11 10:06 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-05-30 09:40 - 2014-06-11 10:06 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-05-30 09:30 - 2014-06-11 10:06 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-05-30 09:21 - 2014-06-11 10:06 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-05-30 09:15 - 2014-06-11 10:06 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-05-30 09:13 - 2014-06-11 10:06 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-05-30 09:13 - 2014-06-11 10:06 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-05-27 14:38 - 2014-05-27 14:34 - 00000000 ____D () C:\Users\Marko\Downloads\Attachments_2014527 2014-05-27 14:37 - 2014-05-27 14:37 - 00000000 ____D () C:\Users\Marko\Downloads\Attachments_2014527 (2) 2014-05-27 14:34 - 2014-05-27 14:34 - 00000000 ____D () C:\Users\Marko\Downloads\Attachments_2014527 (1) 2014-05-22 14:24 - 2014-05-21 20:47 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys 2014-05-22 14:24 - 2013-06-27 20:06 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys 2014-05-22 14:24 - 2013-06-27 20:06 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys 2014-05-22 14:12 - 2014-05-22 14:12 - 00000000 ____D () C:\Users\Marko\AppData\Roaming\AVAST Software 2014-05-21 20:47 - 2014-05-21 20:47 - 00447888 _____ (AVAST Software) C:\Windows\system32\Drivers\aswndisflt.sys.1400761451626 2014-05-21 20:47 - 2014-05-21 20:47 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2014-05-21 20:47 - 2014-05-21 20:47 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys 2014-05-21 20:47 - 2013-06-27 20:06 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1400761451626 2014-05-21 20:47 - 2013-06-27 20:06 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1400761451626 2014-05-21 20:47 - 2013-06-27 20:06 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2014-05-21 20:47 - 2013-06-27 20:06 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys 2014-05-21 20:47 - 2013-06-27 20:06 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2014-05-21 20:47 - 2013-06-27 20:06 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2014-05-21 20:47 - 2013-06-27 20:06 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys 2014-05-21 20:42 - 2013-06-27 20:06 - 00000000 _____ () C:\Windows\SysWOW64\config.nt 2014-05-21 20:42 - 2013-06-27 20:05 - 00000000 ____D () C:\ProgramData\AVAST Software 2014-05-21 13:33 - 2014-05-21 13:33 - 01287032 _____ () C:\Users\Marko\Desktop\Fcb camp nou datka_g.rar ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-06-18 20:43 ==================== End Of Log ============================ https://www.mycity.rs/must-login.png Hvala unapred

Profil

Sass Drake Poslao: 21 Jun 2014 01:36 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Imaš na sistemu gomilu smeća. Korak 1 Idi u Start -> Control Panel -> Programs and Features i deinstaliraj sljedeće programe: BrowseFox 3.0.0 FTdownloader V4.0 GoPhoto.it V9.0 Torntv V9.0 Korak 2 Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja. (installdaddy) C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe (installdaddy) C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [Video Performer64197.exe] => "C:\Users\Marko\AppData\Local\Temp\Video Performer64197.exe" /XML="C:\Users\Marko\AppData\Local\Temp\12F3.tmp" /ROS /STP=0:2 <===== ATTENTION AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll => c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll File Not Found HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_ss&mntrI.....p;tsp=5267 HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www2.delta-search.com/?babsrc=HP_ss&mnt.....p;tsp=5008 SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=92D8D43D7E551364&affID=128403&tsp=5267 SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=92D8D43D7E551364&affID=128403&tsp=5267 SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {B8840B7F-11AB-4122-8A73-4DA23C20198E} URL = http://mp3tubetoolbar.com/?tmp=toolbar_sb_results&.....;Keywords={searchTerms}&clid=ed23d6344b3f484992a7bf6dd2023eb4 SearchScopes: HKCU - {F101602F-B87E-4239-A5B0-DCF26A049114} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282698&CUI=UN18453682761731032&UM=2 BHO: GoPhoto.it V9.0 - {11111111-1111-1111-1111-110311401168} - C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-bho64.dll (installdaddy) BHO: Torntv V9.0 - {11111111-1111-1111-1111-110511131190} - C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho64.dll (installdaddy) BHO-x32: GoPhoto.it V9.0 - {11111111-1111-1111-1111-110311401168} - C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-bho.dll (installdaddy) BHO-x32: FTdownloader V4.0 - {11111111-1111-1111-1111-110311551174} - C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-bho.dll (installdaddy) BHO-x32: Torntv V9.0 - {11111111-1111-1111-1111-110511131190} - C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho.dll (installdaddy) BHO-x32: BrowseFox - {b9507101-e464-4b3b-a4cb-291aaedd94f2} - C:\Program Files (x86)\BrowseFox\BrowseFoxbho.dll (Browse Fox) Toolbar: HKLM-x32 - Mp3Tube Toolbar - {46897C77-E7A6-4c33-BFFB-E9C2E2718942} - C:\Program Files (x86)\Mp3Tube Toolbar\mp3tubetb.DLL (Mp3Tube Toolbar) FF HKLM-x32\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com FF Extension: Speed Analysis 2 - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013-07-15] FF HKLM-x32\...\Firefox\Extensions: [zulagames@ZulaGames.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com FF Extension: Zula Games - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013-07-15] FF HKCU\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com FF Extension: Speed Analysis 2 - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013-07-15] FF HKCU\...\Firefox\Extensions: [zulagames@ZulaGames.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com FF Extension: Zula Games - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013-07-15] CHR Extension: (Zula Games) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn [2014-06-20] CHR Extension: (SweetTunes1) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\giolhomkcooifelkdfpejhidfidaahlc [2014-06-20] CHR Extension: (BrowseFox) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdjnkblmcjfnlogjjhpigpdgpcgdpll [2014-06-20] CHR HKCU\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx [2013-11-07] CHR HKLM-x32\...\Chrome\Extension: [gflandjopdloblmlcoiidmncpinmmacn] - C:\Users\Marko\AppData\Roaming\zulagames\zulagames.crx [2013-07-01] CHR HKLM-x32\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx [2013-11-07] CHR HKLM-x32\...\Chrome\Extension: [ppdjnkblmcjfnlogjjhpigpdgpcgdpll] - C:\Program Files (x86)\BrowseFox\ppdjnkblmcjfnlogjjhpigpdgpcgdpll.crx [2013-08-30] S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-03] (globalUpdate) [File not signed] S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-03] (globalUpdate) [File not signed] 2014-06-03 15:20 - 2014-06-13 15:21 - 00000000 ____D () C:\Program Files (x86)\Torntv V9.0 2014-06-03 15:20 - 2014-06-03 15:20 - 00000000 ____D () C:\Users\Marko\AppData\Local\globalUpdate 2014-06-03 15:20 - 2014-06-03 15:20 - 00000000 ____D () C:\Program Files (x86)\globalUpdate Task: {1A1350ED-353A-4B90-96F1-55B1494E71BA} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7 => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe [2014-06-03] (installdaddy) Task: {1E0A3558-4267-4BB0-9A07-978DDED301D0} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6 => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-novainstaller.exe [2014-06-03] (installdaddy) Task: {1E79EEFA-4D38-4695-87AD-AFF6FE357EEB} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-2.exe [2014-06-03] (installdaddy) Task: {27960AD4-D4FA-4EE3-9648-80854C5C3587} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-03] (globalUpdate) <==== ATTENTION Task: {29DCEF2F-30DA-496F-BAC9-A4592E906717} - System32\Tasks\DealPly => C:\Users\Marko\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE <==== ATTENTION Task: {47486E08-65A6-404C-A32E-AAF23CC205F6} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-codedownloader.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {47486E08-65A6-404C-A32E-AAF23CC205F6} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-codedownloader.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {559B156D-149A-46E3-9073-4CD7829E5AE1} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-03] (globalUpdate) <==== ATTENTION Task: {66681957-45F7-43CC-95C1-E552B9712542} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1 => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-codedownloader.exe [2014-06-03] (installdaddy) Task: {69820067-E4EF-4E8A-9A48-357902FD4908} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {7E2D1016-AC9A-4051-AE00-D91B4BF010BF} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-3.exe [2014-06-03] (installdaddy) Task: {A4A90DAF-BCFB-4F8D-BF93-F6FF9A8C6088} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-novainstaller.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {A67300AB-EBCB-4EBB-AF07-E85F9823B9EC} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-4.exe [2014-06-03] (installdaddy) Task: {AB999EA4-519D-4F5C-83A7-A95F98DE4063} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5 => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {B8D4A326-C672-4A54-B761-153069225630} - System32\Tasks\BitGuard => Sc.exe start BitGuard <==== ATTENTION Task: {C968A7EC-EF88-4C73-AB6A-D284FAC83C65} - System32\Tasks\FTdownloader V4.0-codedownloader => C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-codedownloader.exe [2013-09-17] (installdaddy) <==== ATTENTION Task: {DB235801-B825-411C-BEDC-89166758F5F9} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2 => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {DB35AC13-286D-4550-AC9F-965D48008E7E} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-5.exe [2014-06-03] (installdaddy) Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1.job => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-codedownloader.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-2.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-3.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-4.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-5.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6.job => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-novainstaller.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7.job => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.job => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.job => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-novainstaller.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe <==== ATTENTION Task: C:\Windows\Tasks\FTdownloader V4.0-codedownloader.job => C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Nakon kopiranja provjeri da li si sve kopirao. U okviru Notepad-a klikni na File --> Save As Fajl nazovi Fixlist i sačuvaj na Desktop Dvoklikom ponovo pokreni FRST.exe Klikni na Fix i sačekaj dok program ne završi. Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi. Nakon završetka rada, otvoriće se Notepad, sa sadržajem koji treba da kopiraš u temu. Takođe, na Desktop-u će se nalaziti (fixlog.txt). Potrebno je da sadržaj fixlog.txt kopiraš na forum Korak 3 Preuzmi "Xplode"-ov AdwCleaner i sačuvaj ga na Desktop Dvoklikom pokreni program. u EULA prozoru klikni na I agree. Klikni na dugme Scan i sačekaj da se završi skeniranje. Klikni na dugme Clean i pričekaj da program završi. Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu. Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK Računar će se restartovati, a potom otvoriti Notepad (C:\AdwCleaner[S0].txt) sa izvještajem. Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl" Napomena: Izvještaj ce takođe biti sačuvan na C:\Adwcleaner\AdwCleaner[S0].txt

Profil

MonteCarlo Poslao: 21 Jun 2014 14:19 Idi na vrh
offline MonteCarlo Građanin Pridružio: 18 Jan 2009 Poruke: 203	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Obrisao sam programe iz prvog koraka.Iskopirao u neteped ali frst kad otvorim i kliknem na fix izlazi prozor u kome pise No fixlist.txt found The fixlist should be in the same folder/directory the tool located Kad zatvorim taj prozor gasi se i frst.

Profil

Sass Drake Poslao: 21 Jun 2014 14:31 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! FRST si snimio u Downloads folder, a ne na Desktop. Prebaci FRST na Desktop, pokreni ga i onda klikni na Fix. fixlist.txt ti takođe treba biti na Desktopu.

Profil

MonteCarlo Poslao: 21 Jun 2014 15:12 Idi na vrh
offline MonteCarlo Građanin Pridružio: 18 Jan 2009 Poruke: 203	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 21 Jun 2014 15:06 Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-06-2014 01 Ran by Marko at 2014-06-21 15:02:58 Run:1 Running from C:\Users\Marko\Desktop Boot Mode: Normal ============================================== Content of fixlist: *************** (installdaddy) C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe (installdaddy) C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [Video Performer64197.exe] => "C:\Users\Marko\AppData\Local\Temp\Video Performer64197.exe" /XML="C:\Users\Marko\AppData\Local\Temp\12F3.tmp" /ROS /STP=0:2 <===== ATTENTION AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll => c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll File Not Found HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_ss&mntrI.....p;tsp=5267 HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www2.delta-search.com/?babsrc=HP_ss&mnt.....p;tsp=5008 SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=92D8D43D7E551364&affID=128403&tsp=5267 SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=92D8D43D7E551364&affID=128403&tsp=5267 SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {B8840B7F-11AB-4122-8A73-4DA23C20198E} URL = http://mp3tubetoolbar.com/?tmp=toolbar_sb_results&.....;Keywords={searchTerms}&clid=ed23d6344b3f484992a7bf6dd2023eb4 SearchScopes: HKCU - {F101602F-B87E-4239-A5B0-DCF26A049114} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282698&CUI=UN18453682761731032&UM=2 BHO: GoPhoto.it V9.0 - {11111111-1111-1111-1111-110311401168} - C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-bho64.dll (installdaddy) BHO: Torntv V9.0 - {11111111-1111-1111-1111-110511131190} - C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho64.dll (installdaddy) BHO-x32: GoPhoto.it V9.0 - {11111111-1111-1111-1111-110311401168} - C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-bho.dll (installdaddy) BHO-x32: FTdownloader V4.0 - {11111111-1111-1111-1111-110311551174} - C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-bho.dll (installdaddy) BHO-x32: Torntv V9.0 - {11111111-1111-1111-1111-110511131190} - C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho.dll (installdaddy) BHO-x32: BrowseFox - {b9507101-e464-4b3b-a4cb-291aaedd94f2} - C:\Program Files (x86)\BrowseFox\BrowseFoxbho.dll (Browse Fox) Toolbar: HKLM-x32 - Mp3Tube Toolbar - {46897C77-E7A6-4c33-BFFB-E9C2E2718942} - C:\Program Files (x86)\Mp3Tube Toolbar\mp3tubetb.DLL (Mp3Tube Toolbar) FF HKLM-x32\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com FF Extension: Speed Analysis 2 - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013-07-15] FF HKLM-x32\...\Firefox\Extensions: [zulagames@ZulaGames.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com FF Extension: Zula Games - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013-07-15] FF HKCU\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com FF Extension: Speed Analysis 2 - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013-07-15] FF HKCU\...\Firefox\Extensions: [zulagames@ZulaGames.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com FF Extension: Zula Games - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013-07-15] CHR Extension: (Zula Games) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn [2014-06-20] CHR Extension: (SweetTunes1) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\giolhomkcooifelkdfpejhidfidaahlc [2014-06-20] CHR Extension: (BrowseFox) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdjnkblmcjfnlogjjhpigpdgpcgdpll [2014-06-20] CHR HKCU\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx [2013-11-07] CHR HKLM-x32\...\Chrome\Extension: [gflandjopdloblmlcoiidmncpinmmacn] - C:\Users\Marko\AppData\Roaming\zulagames\zulagames.crx [2013-07-01] CHR HKLM-x32\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx [2013-11-07] CHR HKLM-x32\...\Chrome\Extension: [ppdjnkblmcjfnlogjjhpigpdgpcgdpll] - C:\Program Files (x86)\BrowseFox\ppdjnkblmcjfnlogjjhpigpdgpcgdpll.crx [2013-08-30] S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-03] (globalUpdate) [File not signed] S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-03] (globalUpdate) [File not signed] 2014-06-03 15:20 - 2014-06-13 15:21 - 00000000 ____D () C:\Program Files (x86)\Torntv V9.0 2014-06-03 15:20 - 2014-06-03 15:20 - 00000000 ____D () C:\Users\Marko\AppData\Local\globalUpdate 2014-06-03 15:20 - 2014-06-03 15:20 - 00000000 ____D () C:\Program Files (x86)\globalUpdate Task: {1A1350ED-353A-4B90-96F1-55B1494E71BA} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7 => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe [2014-06-03] (installdaddy) Task: {1E0A3558-4267-4BB0-9A07-978DDED301D0} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6 => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-novainstaller.exe [2014-06-03] (installdaddy) Task: {1E79EEFA-4D38-4695-87AD-AFF6FE357EEB} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-2.exe [2014-06-03] (installdaddy) Task: {27960AD4-D4FA-4EE3-9648-80854C5C3587} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-03] (globalUpdate) <==== ATTENTION Task: {29DCEF2F-30DA-496F-BAC9-A4592E906717} - System32\Tasks\DealPly => C:\Users\Marko\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE <==== ATTENTION Task: {47486E08-65A6-404C-A32E-AAF23CC205F6} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-codedownloader.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {47486E08-65A6-404C-A32E-AAF23CC205F6} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-codedownloader.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {559B156D-149A-46E3-9073-4CD7829E5AE1} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-03] (globalUpdate) <==== ATTENTION Task: {66681957-45F7-43CC-95C1-E552B9712542} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1 => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-codedownloader.exe [2014-06-03] (installdaddy) Task: {69820067-E4EF-4E8A-9A48-357902FD4908} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {7E2D1016-AC9A-4051-AE00-D91B4BF010BF} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-3.exe [2014-06-03] (installdaddy) Task: {A4A90DAF-BCFB-4F8D-BF93-F6FF9A8C6088} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-novainstaller.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {A67300AB-EBCB-4EBB-AF07-E85F9823B9EC} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-4.exe [2014-06-03] (installdaddy) Task: {AB999EA4-519D-4F5C-83A7-A95F98DE4063} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5 => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {B8D4A326-C672-4A54-B761-153069225630} - System32\Tasks\BitGuard => Sc.exe start BitGuard <==== ATTENTION Task: {C968A7EC-EF88-4C73-AB6A-D284FAC83C65} - System32\Tasks\FTdownloader V4.0-codedownloader => C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-codedownloader.exe [2013-09-17] (installdaddy) <==== ATTENTION Task: {DB235801-B825-411C-BEDC-89166758F5F9} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2 => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {DB35AC13-286D-4550-AC9F-965D48008E7E} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-5.exe [2014-06-03] (installdaddy) Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1.job => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-codedownloader.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-2.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-3.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-4.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-5.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6.job => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-novainstaller.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7.job => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.job => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.job => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-novainstaller.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe <==== ATTENTION Task: C:\Windows\Tasks\FTdownloader V4.0-codedownloader.job => C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION ************* C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe => No running process found C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe => No running process found HKU\S-1-5-21-4496312-4232670094-2146604737-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Video Performer64197.exe => value deleted successfully. "c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll" => Value Data removed successfully. HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully. HKCU\Software\Microsoft\Internet Explorer\Main\\bProtector Start Page => value deleted successfully. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\bProtectorDefaultScope => value deleted successfully. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}' => Key deleted successfully. 'HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909}' => Key deleted successfully. 'HKCR\CLSID\{483830EE-A4CD-4b71-B0A3-3D82E62A6909}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B8840B7F-11AB-4122-8A73-4DA23C20198E}' => Key deleted successfully. 'HKCR\CLSID\{B8840B7F-11AB-4122-8A73-4DA23C20198E}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F101602F-B87E-4239-A5B0-DCF26A049114}' => Key deleted successfully. 'HKCR\CLSID\{F101602F-B87E-4239-A5B0-DCF26A049114}'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311401168}'=> Key not found. 'HKCR\CLSID\{11111111-1111-1111-1111-110311401168}'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511131190}'=> Key not found. 'HKCR\CLSID\{11111111-1111-1111-1111-110511131190}'=> Key not found. 'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311401168}'=> Key not found. 'HKCR\Wow6432Node\CLSID\{11111111-1111-1111-1111-110311401168}'=> Key not found. 'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551174}'=> Key not found. 'HKCR\Wow6432Node\CLSID\{11111111-1111-1111-1111-110311551174}'=> Key not found. 'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511131190}'=> Key not found. 'HKCR\Wow6432Node\CLSID\{11111111-1111-1111-1111-110511131190}'=> Key not found. 'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b9507101-e464-4b3b-a4cb-291aaedd94f2}'=> Key not found. 'HKCR\Wow6432Node\CLSID\{b9507101-e464-4b3b-a4cb-291aaedd94f2}'=> Key not found. HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{46897C77-E7A6-4c33-BFFB-E9C2E2718942} => value deleted successfully. 'HKCR\Wow6432Node\CLSID\{46897C77-E7A6-4c33-BFFB-E9C2E2718942}' => Key deleted successfully. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\speedanalysis02@SpeedAnalysis.com => value deleted successfully. C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com => Moved successfully. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\zulagames@ZulaGames.com => value deleted successfully. C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com => Moved successfully. HKCU\Software\Mozilla\Firefox\Extensions\\speedanalysis02@SpeedAnalysis.com => value deleted successfully. C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com not found. HKCU\Software\Mozilla\Firefox\Extensions\\zulagames@ZulaGames.com => value deleted successfully. C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com not found. C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn => Moved successfully. C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\giolhomkcooifelkdfpejhidfidaahlc => Moved successfully. C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdjnkblmcjfnlogjjhpigpdgpcgdpll directory not found. 'HKCU\SOFTWARE\Google\Chrome\Extensions\giolhomkcooifelkdfpejhidfidaahlc' => Key deleted successfully. C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx => Moved successfully. 'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gflandjopdloblmlcoiidmncpinmmacn' => Key deleted successfully. C:\Users\Marko\AppData\Roaming\zulagames\zulagames.crx => Moved successfully. 'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\giolhomkcooifelkdfpejhidfidaahlc' => Key deleted successfully. "C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx" => File/Directory not found. 'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ppdjnkblmcjfnlogjjhpigpdgpcgdpll'=> Key not found. "C:\Program Files (x86)\BrowseFox\ppdjnkblmcjfnlogjjhpigpdgpcgdpll.crx" => File/Directory not found. globalUpdate => Service deleted successfully. globalUpdatem => Service deleted successfully. "C:\Program Files (x86)\Torntv V9.0" => File/Directory not found. C:\Users\Marko\AppData\Local\globalUpdate => Moved successfully. C:\Program Files (x86)\globalUpdate => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A1350ED-353A-4B90-96F1-55B1494E71BA}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-7'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E0A3558-4267-4BB0-9A07-978DDED301D0}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-6'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E79EEFA-4D38-4695-87AD-AFF6FE357EEB}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-2'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27960AD4-D4FA-4EE3-9648-80854C5C3587}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27960AD4-D4FA-4EE3-9648-80854C5C3587}' => Key deleted successfully. C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{29DCEF2F-30DA-496F-BAC9-A4592E906717}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{29DCEF2F-30DA-496F-BAC9-A4592E906717}' => Key deleted successfully. C:\Windows\System32\Tasks\DealPly => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPly' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{47486E08-65A6-404C-A32E-AAF23CC205F6}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-1'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{47486E08-65A6-404C-A32E-AAF23CC205F6}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-1'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{559B156D-149A-46E3-9073-4CD7829E5AE1}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{559B156D-149A-46E3-9073-4CD7829E5AE1}' => Key deleted successfully. C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66681957-45F7-43CC-95C1-E552B9712542}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-1'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{69820067-E4EF-4E8A-9A48-357902FD4908}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-7'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7E2D1016-AC9A-4051-AE00-D91B4BF010BF}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-3'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4A90DAF-BCFB-4F8D-BF93-F6FF9A8C6088}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-6'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A67300AB-EBCB-4EBB-AF07-E85F9823B9EC}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-4'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AB999EA4-519D-4F5C-83A7-A95F98DE4063}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-5'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B8D4A326-C672-4A54-B761-153069225630}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B8D4A326-C672-4A54-B761-153069225630}' => Key deleted successfully. C:\Windows\System32\Tasks\BitGuard => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BitGuard' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C968A7EC-EF88-4C73-AB6A-D284FAC83C65}'=> Key not found. C:\Windows\System32\Tasks\FTdownloader V4.0-codedownloader not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FTdownloader V4.0-codedownloader'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DB235801-B825-411C-BEDC-89166758F5F9}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-2'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DB35AC13-286D-4550-AC9F-965D48008E7E}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-5'=> Key not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7.job not found. C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1.job not found. C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.job not found. C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.job not found. C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job not found. C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7.job not found. C:\Windows\Tasks\FTdownloader V4.0-codedownloader.job not found. C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => Moved successfully. C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => Moved successfully. ==== End of Fixlog ==== Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-06-2014 01 Ran by Marko at 2014-06-21 15:02:58 Run:1 Running from C:\Users\Marko\Desktop Boot Mode: Normal ============================================== Content of fixlist: ************* (installdaddy) C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe (installdaddy) C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe HKU\S-1-5-21-4496312-4232670094-2146604737-1000\...\Run: [Video Performer64197.exe] => "C:\Users\Marko\AppData\Local\Temp\Video Performer64197.exe" /XML="C:\Users\Marko\AppData\Local\Temp\12F3.tmp" /ROS /STP=0:2 <===== ATTENTION AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll => c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll File Not Found HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buenosearch.com/?babsrc=HP_ss&mntrI.....p;tsp=5267 HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www2.delta-search.com/?babsrc=HP_ss&mnt.....p;tsp=5008 SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=92D8D43D7E551364&affID=128403&tsp=5267 SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=92D8D43D7E551364&affID=128403&tsp=5267 SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {B8840B7F-11AB-4122-8A73-4DA23C20198E} URL = http://mp3tubetoolbar.com/?tmp=toolbar_sb_results&.....;Keywords={searchTerms}&clid=ed23d6344b3f484992a7bf6dd2023eb4 SearchScopes: HKCU - {F101602F-B87E-4239-A5B0-DCF26A049114} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282698&CUI=UN18453682761731032&UM=2 BHO: GoPhoto.it V9.0 - {11111111-1111-1111-1111-110311401168} - C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-bho64.dll (installdaddy) BHO: Torntv V9.0 - {11111111-1111-1111-1111-110511131190} - C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho64.dll (installdaddy) BHO-x32: GoPhoto.it V9.0 - {11111111-1111-1111-1111-110311401168} - C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-bho.dll (installdaddy) BHO-x32: FTdownloader V4.0 - {11111111-1111-1111-1111-110311551174} - C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-bho.dll (installdaddy) BHO-x32: Torntv V9.0 - {11111111-1111-1111-1111-110511131190} - C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-bho.dll (installdaddy) BHO-x32: BrowseFox - {b9507101-e464-4b3b-a4cb-291aaedd94f2} - C:\Program Files (x86)\BrowseFox\BrowseFoxbho.dll (Browse Fox) Toolbar: HKLM-x32 - Mp3Tube Toolbar - {46897C77-E7A6-4c33-BFFB-E9C2E2718942} - C:\Program Files (x86)\Mp3Tube Toolbar\mp3tubetb.DLL (Mp3Tube Toolbar) FF HKLM-x32\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com FF Extension: Speed Analysis 2 - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013-07-15] FF HKLM-x32\...\Firefox\Extensions: [zulagames@ZulaGames.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com FF Extension: Zula Games - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013-07-15] FF HKCU\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com FF Extension: Speed Analysis 2 - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com [2013-07-15] FF HKCU\...\Firefox\Extensions: [zulagames@ZulaGames.com] - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com FF Extension: Zula Games - C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com [2013-07-15] CHR Extension: (Zula Games) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn [2014-06-20] CHR Extension: (SweetTunes1) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\giolhomkcooifelkdfpejhidfidaahlc [2014-06-20] CHR Extension: (BrowseFox) - C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdjnkblmcjfnlogjjhpigpdgpcgdpll [2014-06-20] CHR HKCU\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx [2013-11-07] CHR HKLM-x32\...\Chrome\Extension: [gflandjopdloblmlcoiidmncpinmmacn] - C:\Users\Marko\AppData\Roaming\zulagames\zulagames.crx [2013-07-01] CHR HKLM-x32\...\Chrome\Extension: [giolhomkcooifelkdfpejhidfidaahlc] - C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx [2013-11-07] CHR HKLM-x32\...\Chrome\Extension: [ppdjnkblmcjfnlogjjhpigpdgpcgdpll] - C:\Program Files (x86)\BrowseFox\ppdjnkblmcjfnlogjjhpigpdgpcgdpll.crx [2013-08-30] S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-03] (globalUpdate) [File not signed] S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-06-03] (globalUpdate) [File not signed] 2014-06-03 15:20 - 2014-06-13 15:21 - 00000000 ____D () C:\Program Files (x86)\Torntv V9.0 2014-06-03 15:20 - 2014-06-03 15:20 - 00000000 ____D () C:\Users\Marko\AppData\Local\globalUpdate 2014-06-03 15:20 - 2014-06-03 15:20 - 00000000 ____D () C:\Program Files (x86)\globalUpdate Task: {1A1350ED-353A-4B90-96F1-55B1494E71BA} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7 => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe [2014-06-03] (installdaddy) Task: {1E0A3558-4267-4BB0-9A07-978DDED301D0} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6 => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-novainstaller.exe [2014-06-03] (installdaddy) Task: {1E79EEFA-4D38-4695-87AD-AFF6FE357EEB} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-2.exe [2014-06-03] (installdaddy) Task: {27960AD4-D4FA-4EE3-9648-80854C5C3587} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-03] (globalUpdate) <==== ATTENTION Task: {29DCEF2F-30DA-496F-BAC9-A4592E906717} - System32\Tasks\DealPly => C:\Users\Marko\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE <==== ATTENTION Task: {47486E08-65A6-404C-A32E-AAF23CC205F6} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-codedownloader.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {47486E08-65A6-404C-A32E-AAF23CC205F6} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-codedownloader.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {559B156D-149A-46E3-9073-4CD7829E5AE1} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-06-03] (globalUpdate) <==== ATTENTION Task: {66681957-45F7-43CC-95C1-E552B9712542} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1 => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-codedownloader.exe [2014-06-03] (installdaddy) Task: {69820067-E4EF-4E8A-9A48-357902FD4908} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {7E2D1016-AC9A-4051-AE00-D91B4BF010BF} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-3.exe [2014-06-03] (installdaddy) Task: {A4A90DAF-BCFB-4F8D-BF93-F6FF9A8C6088} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-novainstaller.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {A67300AB-EBCB-4EBB-AF07-E85F9823B9EC} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-4.exe [2014-06-03] (installdaddy) Task: {AB999EA4-519D-4F5C-83A7-A95F98DE4063} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5 => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {B8D4A326-C672-4A54-B761-153069225630} - System32\Tasks\BitGuard => Sc.exe start BitGuard <==== ATTENTION Task: {C968A7EC-EF88-4C73-AB6A-D284FAC83C65} - System32\Tasks\FTdownloader V4.0-codedownloader => C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-codedownloader.exe [2013-09-17] (installdaddy) <==== ATTENTION Task: {DB235801-B825-411C-BEDC-89166758F5F9} - System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2 => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.exe [2014-06-03] (installdaddy) <==== ATTENTION Task: {DB35AC13-286D-4550-AC9F-965D48008E7E} - System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5 => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-5.exe [2014-06-03] (installdaddy) Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1.job => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-codedownloader.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-2.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-3.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-4.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5.job => C:\Program Files (x86)\GoPhoto.it V9.0\5729038a-9822-4c6e-b74e-cdca07ff8183-5.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6.job => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-novainstaller.exe Task: C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7.job => C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.job => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.job => C:\Program Files (x86)\Torntv V9.0\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-novainstaller.exe <==== ATTENTION Task: C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7.job => C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe <==== ATTENTION Task: C:\Windows\Tasks\FTdownloader V4.0-codedownloader.job => C:\Program Files (x86)\FTdownloader V4.0\FTdownloader V4.0-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION *************** C:\Program Files (x86)\GoPhoto.it V9.0\GoPhoto.it V9.0-nova.exe => No running process found C:\Program Files (x86)\Torntv V9.0\Torntv V9.0-nova.exe => No running process found HKU\S-1-5-21-4496312-4232670094-2146604737-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Video Performer64197.exe => value deleted successfully. "c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll" => Value Data removed successfully. HKCU\Software\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully. HKCU\Software\Microsoft\Internet Explorer\Main\\bProtector Start Page => value deleted successfully. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully. HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\bProtectorDefaultScope => value deleted successfully. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}' => Key deleted successfully. 'HKCR\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909}' => Key deleted successfully. 'HKCR\CLSID\{483830EE-A4CD-4b71-B0A3-3D82E62A6909}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B8840B7F-11AB-4122-8A73-4DA23C20198E}' => Key deleted successfully. 'HKCR\CLSID\{B8840B7F-11AB-4122-8A73-4DA23C20198E}'=> Key not found. 'HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F101602F-B87E-4239-A5B0-DCF26A049114}' => Key deleted successfully. 'HKCR\CLSID\{F101602F-B87E-4239-A5B0-DCF26A049114}'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311401168}'=> Key not found. 'HKCR\CLSID\{11111111-1111-1111-1111-110311401168}'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511131190}'=> Key not found. 'HKCR\CLSID\{11111111-1111-1111-1111-110511131190}'=> Key not found. 'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311401168}'=> Key not found. 'HKCR\Wow6432Node\CLSID\{11111111-1111-1111-1111-110311401168}'=> Key not found. 'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311551174}'=> Key not found. 'HKCR\Wow6432Node\CLSID\{11111111-1111-1111-1111-110311551174}'=> Key not found. 'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110511131190}'=> Key not found. 'HKCR\Wow6432Node\CLSID\{11111111-1111-1111-1111-110511131190}'=> Key not found. 'HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b9507101-e464-4b3b-a4cb-291aaedd94f2}'=> Key not found. 'HKCR\Wow6432Node\CLSID\{b9507101-e464-4b3b-a4cb-291aaedd94f2}'=> Key not found. HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{46897C77-E7A6-4c33-BFFB-E9C2E2718942} => value deleted successfully. 'HKCR\Wow6432Node\CLSID\{46897C77-E7A6-4c33-BFFB-E9C2E2718942}' => Key deleted successfully. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\speedanalysis02@SpeedAnalysis.com => value deleted successfully. C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com => Moved successfully. HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\zulagames@ZulaGames.com => value deleted successfully. C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com => Moved successfully. HKCU\Software\Mozilla\Firefox\Extensions\\speedanalysis02@SpeedAnalysis.com => value deleted successfully. C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com not found. HKCU\Software\Mozilla\Firefox\Extensions\\zulagames@ZulaGames.com => value deleted successfully. C:\Users\Marko\AppData\Roaming\Mozilla\Extensions\zulagames@ZulaGames.com not found. C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gflandjopdloblmlcoiidmncpinmmacn => Moved successfully. C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\giolhomkcooifelkdfpejhidfidaahlc => Moved successfully. C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdjnkblmcjfnlogjjhpigpdgpcgdpll directory not found. 'HKCU\SOFTWARE\Google\Chrome\Extensions\giolhomkcooifelkdfpejhidfidaahlc' => Key deleted successfully. C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx => Moved successfully. 'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gflandjopdloblmlcoiidmncpinmmacn' => Key deleted successfully. C:\Users\Marko\AppData\Roaming\zulagames\zulagames.crx => Moved successfully. 'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\giolhomkcooifelkdfpejhidfidaahlc' => Key deleted successfully. "C:\Users\Marko\AppData\Local\CRE\giolhomkcooifelkdfpejhidfidaahlc.crx" => File/Directory not found. 'HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ppdjnkblmcjfnlogjjhpigpdgpcgdpll'=> Key not found. "C:\Program Files (x86)\BrowseFox\ppdjnkblmcjfnlogjjhpigpdgpcgdpll.crx" => File/Directory not found. globalUpdate => Service deleted successfully. globalUpdatem => Service deleted successfully. "C:\Program Files (x86)\Torntv V9.0" => File/Directory not found. C:\Users\Marko\AppData\Local\globalUpdate => Moved successfully. C:\Program Files (x86)\globalUpdate => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A1350ED-353A-4B90-96F1-55B1494E71BA}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-7'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E0A3558-4267-4BB0-9A07-978DDED301D0}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-6'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E79EEFA-4D38-4695-87AD-AFF6FE357EEB}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-2'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{27960AD4-D4FA-4EE3-9648-80854C5C3587}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{27960AD4-D4FA-4EE3-9648-80854C5C3587}' => Key deleted successfully. C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineUA' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{29DCEF2F-30DA-496F-BAC9-A4592E906717}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{29DCEF2F-30DA-496F-BAC9-A4592E906717}' => Key deleted successfully. C:\Windows\System32\Tasks\DealPly => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPly' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{47486E08-65A6-404C-A32E-AAF23CC205F6}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-1'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{47486E08-65A6-404C-A32E-AAF23CC205F6}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-1'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{559B156D-149A-46E3-9073-4CD7829E5AE1}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{559B156D-149A-46E3-9073-4CD7829E5AE1}' => Key deleted successfully. C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\globalUpdateUpdateTaskMachineCore' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{66681957-45F7-43CC-95C1-E552B9712542}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-1'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{69820067-E4EF-4E8A-9A48-357902FD4908}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-7'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7E2D1016-AC9A-4051-AE00-D91B4BF010BF}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-3'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4A90DAF-BCFB-4F8D-BF93-F6FF9A8C6088}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-6'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A67300AB-EBCB-4EBB-AF07-E85F9823B9EC}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-4'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AB999EA4-519D-4F5C-83A7-A95F98DE4063}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-5'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B8D4A326-C672-4A54-B761-153069225630}' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B8D4A326-C672-4A54-B761-153069225630}' => Key deleted successfully. C:\Windows\System32\Tasks\BitGuard => Moved successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BitGuard' => Key deleted successfully. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C968A7EC-EF88-4C73-AB6A-D284FAC83C65}'=> Key not found. C:\Windows\System32\Tasks\FTdownloader V4.0-codedownloader not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\FTdownloader V4.0-codedownloader'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DB235801-B825-411C-BEDC-89166758F5F9}'=> Key not found. C:\Windows\System32\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\a7982934-0630-49b5-bdb1-d23d83f53ffd-2'=> Key not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DB35AC13-286D-4550-AC9F-965D48008E7E}'=> Key not found. C:\Windows\System32\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5 not found. 'HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\5729038a-9822-4c6e-b74e-cdca07ff8183-5'=> Key not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-1.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-2.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-3.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-4.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-5.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-6.job not found. C:\Windows\Tasks\5729038a-9822-4c6e-b74e-cdca07ff8183-7.job not found. C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-1.job not found. C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-2.job not found. C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-5.job not found. C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-6.job not found. C:\Windows\Tasks\a7982934-0630-49b5-bdb1-d23d83f53ffd-7.job not found. C:\Windows\Tasks\FTdownloader V4.0-codedownloader.job not found. C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => Moved successfully. C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => Moved successfully. ==== End of Fixlog ==== Dopuna: 21 Jun 2014 15:12 I treci korak https://www.mycity.rs/must-login.png

Profil

Sass Drake Poslao: 21 Jun 2014 15:17 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kakvo je sada stanje? Korak 1 Zapakuj folder C:\FRST\Quarantine u arhivu i uploaduj ga preko: http://www.mycity.rs/ambulanta-upload.php Korak 2 Preuzmi zoek.exe sa ovog ili ovog linka i sačuvaj ga na Desktop. Zatvori browser i ostale pokrenute programe; deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ; dvoklikom pokreni zoek.exe; pričekaj da se alat startuje ... U beli okvir prozora iskopiraj sljedeći tekst: `process; startupall; skipfix-iedefaults; firefoxlook; chromelook; filesrcm;` Klikni na dugme i pričekaj da se skeniranje završi. Zoek će po potrebi restartovati Windows, a na kraju rada otvoriti Notepad sa izvještajem o skeniranju. Napomena: Izvještaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log) Kopiraj sadržaj tog loga u poruku.

Profil

MonteCarlo Poslao: 21 Jun 2014 15:33 Idi na vrh
offline MonteCarlo Građanin Pridružio: 18 Jan 2009 Poruke: 203	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Stanje je sada super Zoek.exe v5.0.0.0 Updated 20-06-2014 Tool run by Marko on Sat 06/21/2014 at 15:25:42.23. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Marko\Desktop\zoek.exe [Scan all users] [Script inserted] ==== System Restore Info ====================== 6/21/2014 3:26:44 PM Zoek.exe System Restore Point Created Succesfully. ==== Running Processes ====================== C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files\AVAST Software\Avast\avastui.exe C:\Users\Marko\Desktop\zoek.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\SysWOW64\cmd.exe ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== ====== C:\Users\Marko\AppData\Local\Temp ==== ====== Java Cache ===== 2014-06-08 07:47:02 DD47778E3215FFADE22D5148E1152346 426 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\1b67ef81-bd8c9fdabab260252b2bbe1de391397515856f303e976a2fd17b396c6332f6c3-6.0.lap 2014-06-07 15:12:09 CBF0C0D92E6D0111F2F0D27369735A57 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\3a24c98a-a2c54a956c1ec5c5a6c92cc7b23767630b76b5d0632b34880ac952dc07484b82-6.0.lap 2014-06-10 17:16:22 D4A79123ABAE7EBA4D5EEBBEECADB497 426 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\62b9ad52-b465fe51fee67b886a8b8f36d7f2601d640000008533f56590380597067ec863-6.0.lap 2014-06-05 16:35:27 1B583A860A18EC2AE5A33A76DFEACE44 426 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\399fe502-56255ea8fd1640bf22278b92ecad0f552fb226b31ae6c0e7ed2427c191a82d4c-6.0.lap 2014-06-07 14:40:56 4FE6B7CE1BF92939C04B2A1F110B37DA 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20\56eb9214-0d71fc8515c81ac1c4eea56ec6dbdff4cf5b661ad5effc7e890dd644111160c6-6.0.lap 2014-05-25 21:39:57 4700464960D659731561E2C592B6957B 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23\6d1ef57-f05ec5cf39ab3994778f2d696edde79e7d8c0524957efced0f36f49c3ca91e4b-6.0.lap 2014-06-09 17:51:15 DB5F5E03EFB4CFBAFBFFFFD477AFFB2D 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25\28af0fd9-c69dda79443dad9b61a7d30fbe03bc86a7d0b7757129adbbf2aedf8fd3302e1c-6.0.lap 2014-06-10 17:52:50 358DA3763DAD0F0A3B52190CCEACADCA 426 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\45de59dc-370a546555944516aa20f4e710568ad4a9e61702b20ea3400fa0a28dab127dca-6.0.lap 2014-06-07 17:04:46 AB7470F8E684C9FF074D52EA7FFEA0A5 426 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\63ca1983-4d98351ec8fbb7ccb743a973a91efc89927a23bd7a9a300d2c96fdea0c4a4e52-6.0.lap 2014-06-09 16:59:14 F7856F7CC022D405B8C73FAB4E4F5684 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30\4565bcde-b1e7f188de781ba70dd3414e80ea2ef8824f5a25db5fa21b78a13cf226be4094-6.0.lap 2014-06-07 19:02:37 F6463B46B74652283D81E57AB2D9502B 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30\e2c665e-77725abefc99023f1d94e334f96efe8781b0421d562e0ed85a4a35408066bf1d-6.0.lap 2014-06-07 15:40:51 5B203EF2F6E54503948C6164BACA8CB8 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\1da7c6df-0e8956ae40e9817e2935dededb91d5e7c00f59a4bc1b288aaf73447a190edc14-6.0.lap 2014-06-05 18:10:02 B82FD69DD22E88ED48E288E575D2E94E 426 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\635114a0-71ef9c8f5d91b95742fc174205b108b30e40b32bc41bf6cacbf8dd71d3b8ecc4-6.0.lap 2014-06-05 17:39:22 7D142B3C28E096E90CC2428E9DD6ADB5 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\7605a1-6bbdfb19e1324caa74c752e61a22049ad94f7ba5ac3ac5e0923d77ff7c0e0778-6.0.lap 2014-06-08 21:38:35 38EF5FFE4F064125732D32C0FE9A87EF 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\61fa9622-e25bab6a0a93e07a2d29dd86f58c6f092a5e70bf798e00647e604e31920171e9-6.0.lap 2014-06-05 17:04:57 721664C18A0126578CFDE30DED186708 426 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\1d329363-b652b2354b4710989552779ebc6f15595ca939914f3a65d6cb92bdb652358632-6.0.lap 2014-06-16 20:50:54 AD745D39B673E0C1FE16DAC43FEB0DC5 422 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\4c1faa63-19a3e28be1372af4560ed518fd2ccfad5346ebf862966e935d174c0ee9ceca7f-6.0.lap 2014-06-04 11:15:31 73E6502844F6CD2721B18FF9052D7593 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\177b3624-258d2d497e419008946e0c1130a3a76e70c1360960fff8ca6f0473a262ab2ccb-6.0.lap 2014-06-07 21:10:50 4674CECBFEB36DFF54E306B1CDD79A33 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\54d8aa27-e68ecc84298d35ebc7dde781b08034dc74ddac7a7653ed8e64aebf90b8612895-6.0.lap 2014-06-02 17:31:34 4AA6766E4BFE6D902F264412DC888288 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\5fa541a7-b98dd39c9b7529f1aecd66774ef86f8f54eaf1ba6ec068f48ae8b0eccfd5394d-6.0.lap 2014-06-07 21:46:38 93479F29B85361BE3E9F5A974D64BCC5 426 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\38562004-6f14de8288235cc5a02add8f7a60a4c4debe6451dd5d42787f91df97aebadde9-6.0.lap 2014-06-12 16:18:29 DA7FAA1A7E6F6899E322A8D70F264CBE 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\294b0eaf-e956f1b324be3514ed95332752a3eeec659bce204f1bde6b373226cae2a8a4f2-6.0.lap 2014-06-08 21:22:15 1EA23827D8F0FFAA335C252E8C8C4D22 426 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\7e9192f0-b108b7d5d5cafc33d96d439f4977bf0a63752aacc74e90fbd53e6fb84a38a10b-6.0.lap 2014-06-10 16:29:55 ED3DFDD26CE516C802D65D530DC36F15 426 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\7f4d2870-63562879805d913b93d82eb5098151e53efb2d652a0171ab3dc2723d7fd94485-6.0.lap 2014-05-28 12:56:54 17968CB526CAAB4CC6CC4937CCB94491 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\3eafcff1-e59496ba18e60fbc7d95751dd706ff1c9cadb1951270e0c9d5225c2048584153-6.0.lap 2014-06-07 17:38:57 F649603136BF8BBE0367D5AB364B2146 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\476f7245-148d74b38de7b106f9d3c50d9e3d9ad80d936c52a0adb974d8520b8858149e8d-6.0.lap 2014-06-05 16:48:48 F56A0010007B7473C431E261EF1F6060 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50\56532f32-07a57a61d46986dd5b4ecba94c439b0dcde41ad2d7b6c54eef7f8c76abebabb6-6.0.lap 2014-06-07 18:56:51 9B28ACE9529064332CCEAB5A7C9D4BC5 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\2af737f3-e55839756236f6e718b85276ce4fe7df0c206e433163b0f56f43af806f4f80c2-6.0.lap 2014-06-07 16:19:36 F6DBA599E1C5EA97967FD5082885851E 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\e86606-a1970cd7925c84f5bfdd95761fad913e1bfb70a08212a7261a9595715cc8bd38-6.0.lap 2014-06-12 16:48:56 41463C53D8690B5C60228F988EF5080C 429 ----a-w- C:\Users\Marko\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\c487a87-84bd806c528a01013fa42631b11647b615f464e73cc033b48c11dce17a40301b-6.0.lap ====== C:\Windows\SysWOW64 ===== 2014-06-21 13:06:34 0DC5AF80D059DEC792B665ED598C6567 536576 ----a-w- C:\Windows\SysWOW64\sqlite3.dll 2014-06-11 08:06:44 A5F833506BF6A1B5D693E1499DEE2444 626688 ----a-w- C:\Windows\SysWOW64\usp10.dll 2014-06-11 08:06:42 E227B810296AA27E6C69307A7B6456E5 1389056 ----a-w- C:\Windows\SysWOW64\msxml6.dll 2014-06-11 08:06:42 8B8D1CEF498678CAB9DF17145D34BC64 1237504 ----a-w- C:\Windows\SysWOW64\msxml3.dll 2014-06-11 08:06:42 2E673E776136354ECFB57BFD62E7EC3D 2048 ----a-w- C:\Windows\SysWOW64\msxml6r.dll 2014-06-11 08:06:41 0789F82BAE171323F74B8F175D406AB8 2048 ----a-w- C:\Windows\SysWOW64\msxml3r.dll 2014-06-11 08:06:37 BB9BADED14F0963498855AC28446CED5 51200 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll 2014-06-11 08:06:37 7E27FB6AB8976897A530FB30F5FF7691 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll 2014-06-11 08:06:37 6D8E6A9A524FFAAFA4D2F6C8EF38D0BB 592896 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll 2014-06-11 08:06:36 D5ECBB3BFDC73A59440D9CA79AB3A342 17271296 ----a-w- C:\Windows\SysWOW64\mshtml.dll 2014-06-11 08:06:36 C1F5812F355D0C9495C1B2E7165DA2AF 32256 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-06-11 08:06:36 8DF06ACA017949D37C38B6A0EF747D4E 526336 ----a-w- C:\Windows\SysWOW64\msfeeds.dll 2014-06-11 08:06:36 0AFCE8EEF3751810FE2101FD608FB8B3 1143296 ----a-w- C:\Windows\SysWOW64\urlmon.dll 2014-06-11 08:06:36 017B99D09904DCA35D5F66AD79084B5F 368128 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll 2014-06-11 08:06:34 D9F5B424C307B195E16A9B0A21E53BCC 61952 ----a-w- C:\Windows\SysWOW64\iesetup.dll 2014-06-11 08:06:34 C69FDD49AB9E8BCF2BAAC469CE0CC756 1964544 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl 2014-06-11 08:06:34 9EAAB4305536829D6B7D9C3A47E92861 2179072 ----a-w- C:\Windows\SysWOW64\iertutil.dll 2014-06-11 08:06:33 E0EA58834CD19FDFCD1BC37B22E1D3D8 43008 ----a-w- C:\Windows\SysWOW64\jsproxy.dll 2014-06-11 08:06:33 D36574C287D0764C95AC777DFF367715 32768 ----a-w- C:\Windows\SysWOW64\iernonce.dll 2014-06-11 08:06:32 814E0D53EF020BD93097F26B53B573F0 440832 ----a-w- C:\Windows\SysWOW64\ieui.dll 2014-06-11 08:06:32 688227D38A6FF6403B293D0C50B454B9 11725312 ----a-w- C:\Windows\SysWOW64\ieframe.dll 2014-06-11 08:06:32 5B5815477A53ED92B89955FFE7EDCB2E 242688 ----a-w- C:\Windows\SysWOW64\dxtrans.dll 2014-06-11 08:06:31 4D3074AA172DCFD5D56BE764B671085A 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb 2014-06-11 08:06:29 CC0077F9C7ACD7E97707DFC763A4EA99 112128 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe 2014-06-11 08:06:29 C58E97EEB1CB80CE91D5E7FD5E78794F 4244992 ----a-w- C:\Windows\SysWOW64\jscript9.dll 2014-06-11 08:06:29 0AC4E3C93D49E37D5B008ED99092115C 1068032 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll 2014-06-11 08:06:28 EB960643DC62832C88272573204B6DBA 164864 ----a-w- C:\Windows\SysWOW64\msrating.dll 2014-06-11 08:06:28 771CDBC3D62437D6DB070820BB1EDCCF 1790976 ----a-w- C:\Windows\SysWOW64\wininet.dll 2014-06-11 08:06:28 22D7FFA4B94916F18EB1F1D107B86839 704512 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll 2014-06-11 08:06:28 09771ABC896D2A88370F3AB8BADC242E 455168 ----a-w- C:\Windows\SysWOW64\vbscript.dll ====== C:\Windows\SysWOW64\drivers ===== ====== C:\Windows\Sysnative ===== 2014-06-13 05:59:24 !HASH: COULD NOT OPEN FILE !!!!! 1184 ---ha-w- C:\Windows\Sysnative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-06-13 05:59:24 !HASH: COULD NOT OPEN FILE !!!!! 1184 ---ha-w- C:\Windows\Sysnative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-06-13 05:56:56 F00388FAA20242B7903ADEC9A08324CA 416024 ----a-w- C:\Windows\Sysnative\FNTCACHE.DAT 2014-06-11 08:06:44 088CF6AFCD5CDD44E40C0ACDE3C1A5E0 801280 ----a-w- C:\Windows\Sysnative\usp10.dll 2014-06-11 08:06:42 ECA6AC33BD9E441F7B47D173D715D268 1882112 ----a-w- C:\Windows\Sysnative\msxml3.dll 2014-06-11 08:06:42 3408DD8081DC22858AE2E6ABD2594C02 2048 ----a-w- C:\Windows\Sysnative\msxml6r.dll 2014-06-11 08:06:42 0E3A7EC2B9590EA7767BBB1823630DEA 2002432 ----a-w- C:\Windows\Sysnative\msxml6.dll 2014-06-11 08:06:41 0465A8CFDDB4FFDB569802A70B9443D5 2048 ----a-w- C:\Windows\Sysnative\msxml3r.dll 2014-06-11 08:06:40 2147C5330F983D76A36B73F4A804F778 16384 ----a-w- C:\Windows\Sysnative\RdpGroupPolicyExtension.dll 2014-06-11 08:06:39 EF2D8BBA6E077559B675513BC0EE5FC2 3178496 ----a-w- C:\Windows\Sysnative\rdpcorets.dll 2014-06-11 08:06:36 DA7AAB5D4E5F7160E906C0D2EB9A2B9F 38400 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll 2014-06-11 08:06:36 3ED5C9055F7A635399FC12892F565287 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll 2014-06-11 08:06:34 D5C446B14DC667B7B9FBB30EA1701D92 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb 2014-06-11 08:06:34 3A1AB9DE852F2BC1ECE6403BDD01B9F0 1398272 ----a-w- C:\Windows\Sysnative\urlmon.dll 2014-06-11 08:06:33 DFD834E89B819B5ECE8E251C56B5A3CE 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll 2014-06-11 08:06:33 BFD3178735D97C858FFA467F8199700C 111616 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe 2014-06-11 08:06:32 867DD52B23D3B0390B88F3D7AD1E600C 631808 ----a-w- C:\Windows\Sysnative\msfeeds.dll 2014-06-11 08:06:32 12BA419E27DBC5DBF9262C8A885FA361 452096 ----a-w- C:\Windows\Sysnative\dxtmsft.dll 2014-06-11 08:06:31 EAAA62F272858695814A1F42D5E59BD3 608768 ----a-w- C:\Windows\Sysnative\ie4uinit.exe 2014-06-11 08:06:31 B34D3F303769E65CE7EFBD4E6FB62B25 66048 ----a-w- C:\Windows\Sysnative\iesetup.dll 2014-06-11 08:06:30 3FC3828E8820D1C93DBFBAD4BE456D85 2040832 ----a-w- C:\Windows\Sysnative\inetcpl.cpl 2014-06-11 08:06:29 063EF4239479F52DAF9F4849B0B304F1 2768384 ----a-w- C:\Windows\Sysnative\iertutil.dll 2014-06-11 08:06:28 CE6109C73C3A04CC2B8C6110B0F0FEF9 33792 ----a-w- C:\Windows\Sysnative\iernonce.dll 2014-06-11 08:06:28 790FD40601502C5FE8213D4F335DA0BD 51200 ----a-w- C:\Windows\Sysnative\jsproxy.dll 2014-06-11 08:06:27 CB8A91074AE1B5051E240B50A328DCF5 295424 ----a-w- C:\Windows\Sysnative\dxtrans.dll 2014-06-11 08:06:27 B2C037F50A02D6C057B1E0791BBF41A5 574976 ----a-w- C:\Windows\Sysnative\ieui.dll 2014-06-11 08:06:27 2DBB9127794BC30BC31D26FA088F8BAB 13522944 ----a-w- C:\Windows\Sysnative\ieframe.dll 2014-06-11 08:06:26 CC603EF96BA456D4BCD9FF849ED07A2A 85504 ----a-w- C:\Windows\Sysnative\mshtmled.dll 2014-06-11 08:06:26 A4A58E3171C03A1145D1C3EC488D1B4F 1249280 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll 2014-06-11 08:06:25 AB3FA3D9B1F1D0571CBC43D1487CCD6F 5782528 ----a-w- C:\Windows\Sysnative\jscript9.dll 2014-06-11 08:06:25 770F067D833DC017CEB8A36A2A1EC942 139264 ----a-w- C:\Windows\Sysnative\ieUnatt.exe 2014-06-11 08:06:25 6B9925F498D4E91FB57576CC3776D428 752640 ----a-w- C:\Windows\Sysnative\jscript9diag.dll 2014-06-11 08:06:24 9013D5BBE1B6D3A060F54B4B5BB2C3A3 846336 ----a-w- C:\Windows\Sysnative\ieapfltr.dll 2014-06-11 08:06:24 40BFD9D6EC8E174145F012246CA73CCD 2266112 ----a-w- C:\Windows\Sysnative\wininet.dll 2014-06-11 08:06:24 2F474D40626B0C694400589F3FBB9AA9 548352 ----a-w- C:\Windows\Sysnative\vbscript.dll 2014-06-11 08:06:23 F343ECB3C683EBD7E3990C03AD680855 940032 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe 2014-06-11 08:06:23 8E3C6008250A904C06943BCEA585E344 195584 ----a-w- C:\Windows\Sysnative\msrating.dll 2014-06-11 08:06:23 56803B20D168C1B740D12CE0BE4588F5 23414784 ----a-w- C:\Windows\Sysnative\mshtml.dll ====== C:\Windows\Sysnative\drivers ===== 2014-06-11 08:06:43 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS 2014-06-11 08:06:43 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2014-06-13 21:11:16 -------- d-----w- C:\PROGRA~2\KONAMI 2014-06-03 13:21:47 -------- d-----w- C:\PROGRA~2\GoPhoto.it V9.0 2014-06-02 07:01:50 -------- d-----w- C:\PROGRA~2\COMMON~1\Skype ======= C: ===== ====== C:\Users\Marko\AppData\Roaming ====== 2014-06-21 12:08:03 -------- d-sh--w- C:\Users\Marko\AppData\Local\EmieUserList 2014-06-21 12:08:03 -------- d-sh--w- C:\Users\Marko\AppData\Local\EmieSiteList 2014-06-13 05:58:09 17F4508EA75E8D15B5927E0B66E6BC3D 109296 ----a-w- C:\Users\Marko\AppData\Local\GDIPFONTCACHEV1.DAT ====== C:\Users\Marko ====== 2014-06-21 13:05:24 42F24559E8C472F6FF745BB7C5465FB2 1333465 ----a-w- C:\Users\Marko\Desktop\AdwCleaner.exe 2014-06-21 12:12:22 6FD62863663B5DAF6C30657A2D4688E2 2083328 ----a-w- C:\Users\Marko\Desktop\FRST64.exe 2014-06-18 19:07:09 733622D45D32B31EFE84B7623F3B0B52 340480 ----a-w- C:\Users\Marko\Downloads\TVapp__8821_i902830411_il5.exe 2014-06-09 08:38:56 6A90294CC1F8D9EE8C3772C92154B8A6 657688 ----a-w- C:\Users\Marko\Downloads\Deckdaq.exe ====== C: exe-files == 2014-06-21 13:05:24 42F24559E8C472F6FF745BB7C5465FB2 1333465 ----a-w- C:\Users\Marko\Desktop\AdwCleaner.exe 2014-06-21 12:12:22 6FD62863663B5DAF6C30657A2D4688E2 2083328 ----a-w- C:\Users\Marko\Desktop\FRST64.exe 2014-06-21 12:10:02 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\Marko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1J61POSS\FRST64[1].exe 2014-06-21 09:32:19 23C8F9C2CB81732A3207D197B9E9A4D4 1087296 ----a-w- C:\FRST\Quarantine\C\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\giolhomkcooifelkdfpejhidfidaahlc\10.31.4.510_0\nativeMessaging\TBMessagingHost.exe 2014-06-21 09:15:11 956672375AF066D958E4D07F5ABAFC1A 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe 2014-06-21 09:15:10 AC6998D92A311E7CF0B4DAEC3566F444 51080 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateBroker.exe 2014-06-21 09:15:10 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateSetup.exe 2014-06-21 09:15:06 AA0E4F73727BFC8BA404884B1C1DB719 285064 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe 2014-06-21 09:15:06 80E350E0AA963B2125896B13E60A4D68 114568 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdateComRegisterShell64.exe 2014-06-21 09:15:06 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleUpdate.exe 2014-06-21 09:15:06 397D14958D6C9C2B365469A857B2AC4E 230792 ----atw- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe 2014-06-21 09:15:02 901AC7A94B75648F4084A37640473271 895120 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.24.15\GoogleUpdateSetup.exe 2014-06-21 00:35:28 59EDC9600F3C5377170BE64AE85C6314 1314384 ----a-w- C:\Windows\Temp\avast_ash\uTorrent (current user)\uTorrent.exe 2014-06-18 19:07:09 733622D45D32B31EFE84B7623F3B0B52 340480 ----a-w- C:\Users\Marko\Downloads\TVapp__8821_i902830411_il5.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-4496312-4232670094-2146604737-1000\Software\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" "RGSC"="C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent" "ares"="C:\Program Files (x86)\Ares\Ares.exe -h" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" "AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools Lite"="C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe -autorun" "RGSC"="C:\Program Files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent" "ares"="C:\Program Files (x86)\Ares\Ares.exe -h" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [05/14/2014 08:34 PM] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ [Undetermined Task] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [06/27/2013 06:23 PM] ==== Other Scheduled Tasks ====================== "C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\Windows\SysNative\tasks\{26728685-951A-4125-B880-FD887E714FC8}" [C:\Program Files (x86)\Arab-GB\SniperGhostWarrior2\Bin32\SniperGhostWarrior2.exe] "C:\Windows\SysNative\tasks\{46B8785F-D974-4FBA-8F25-4CB5D0483046}" ["c:\program files (x86)\google\chrome\application\chrome.exe"] "C:\Windows\SysNative\tasks\{A39CA44B-2058-4D57-8B70-B9C9C0F18C25}" ["c:\program files (x86)\google\chrome\application\chrome.exe"] ==== Firefox Extensions ====================== ExtDir: C:\Users\Marko\AppData\Roaming\Mozilla\Firefox\Profiles\extensions - FT Downloader - %ExtDir%\ftd@ftd.com.xpi ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[04/11/2014 07:46 PM] Google Voice Search Hotword (Beta) - Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn Google Wallet - Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda ==== IE Start and Search Settings ====================== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" ==== C:\zoek_backup content ====================== C:\zoek_backup (files=0 folders=0 0 bytes) ==== EOF on Sat 06/21/2014 at 15:29:47.46 ======================

Profil

Sass Drake Poslao: 21 Jun 2014 15:53 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Preuzmi zoek.exe sa ovog ili ovog linka i sačuvaj ga na Desktop. Zatvori browser i ostale pokrenute programe; deaktiviraj zaštitni softver ( po potrebi ) Uputstvo ; dvoklikom pokreni zoek.exe; pričekaj da se alat startuje ... U beli okvir prozora iskopiraj sljedeći tekst: `C:\PROGRA~2\GoPhoto.it V9.0;fs C:\Users\Marko\Downloads\TVapp__8821_i902830411_il5.exe;f C:\Users\Marko\Downloads\Deckdaq.exe;f ftd@ftd.com.xpi;ff emptyalltemp; autoclean;` Klikni na dugme i pričekaj da se skeniranje završi. Zoek će po potrebi restartovati Windows, a na kraju rada otvoriti Notepad sa izvještajem o skeniranju. Napomena: Izvještaj će biti sačuvan pod nazivom zoek-results.log na sistemskoj particiji (tipična lokacija: C:\zoek-results.log) Kopiraj sadržaj tog loga u poruku.

Profil

MonteCarlo Poslao: 21 Jun 2014 16:14 Idi na vrh
offline MonteCarlo Građanin Pridružio: 18 Jan 2009 Poruke: 203	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Zoek.exe v5.0.0.0 Updated 20-06-2014 Tool run by Marko on Sat 06/21/2014 at 15:57:00.77. Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Marko\Desktop\zoek.exe [Scan all users] [Script inserted] ==== Older Logs ====================== C:\zoek-results2014-06-21-132947.log 23110 bytes ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\Marko\AppData\Roaming\Mozilla\Firefox\Profiles\extensions user.js not found ---- FireFox user.js and prefs.js backups ---- prefs_20140621_0405_.backup ==== Deleting Files \ Folders ====================== C:\PROGRA~2\GoPhoto.it V9.0 deleted C:\Users\Marko\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Search.lnk deleted C:\Users\Marko\AppData\Roaming\zulagames.ico deleted C:\Users\Marko\AppData\Roaming\AlawarEntertainment deleted C:\PROGRA~3\InstallMate deleted C:\PROGRA~3\SummerSoft deleted C:\Users\Marko\AppData\Local\CRE deleted C:\Users\Marko\AppData\Local\avgchrome deleted C:\Users\Marko\Searches deleted C:\Users\Marko\Downloads\SoftonicDownloader_for_hamachi.exe deleted C:\Users\Marko\Downloads\SoftonicDownloader_for_utorrent.exe deleted C:\Windows\SysWow64\searchplugins deleted C:\Windows\SysWow64\Extensions deleted C:\Users\Marko\Desktop\SoftonicDownloader_for_hamachi.exe deleted "C:\Users\Marko\Downloads\TVapp__8821_i902830411_il5.exe" deleted "C:\Users\Marko\Downloads\Deckdaq.exe" deleted "C:\Users\Marko\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\ftd@ftd.com.xpi" deleted "C:\Users\Marko\AppData\Roaming\XnView\category.db" deleted "C:\Users\Marko\AppData\Roaming\XnView\XnView.db" deleted "C:\Users\Marko\AppData\Roaming\XnView" deleted ==== Firefox Extensions ====================== ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[04/11/2014 07:46 PM] Google Voice Search Hotword (Beta) - Marko\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn ==== Chrome Fix ====================== C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage deleted successfully C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.superfish.com_0.localstorage-journal deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A21FFB72-14ED-6E38-9BC5-D268FFACCC83} deleted successfully ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Marko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Marko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Marko\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=30 folders=17 3960240 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Marko\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\Windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Marko\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted ==== EOF on Sat 06/21/2014 at 16:11:12.87 ======================

Profil

Sass Drake Poslao: 21 Jun 2014 16:17 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uradićemo još ARK provjeru i to bi trebalo biti to. Preuzmi Malwarebytes Anti-Rootkit (MBAR) sa sledeceg linka i sacuvaj ga na Desktop. Dvoklikom pokreni MBAR () na ikonicu programa: - Klikni OK na sledecem prozoru da bi dozvolio raspakivanje u zaseban mbar folder na desktop-u; - mbar.exe ce biti startovan. Na nekim sistemima to moze da potraje nekoliko dodatnih sekundi, te pricekati pokretanje.; - U uvodnom prozoru klikni dugme Next ukoliko si saglasan; • Na 'Update Database' prozoru klik na dugme Update da bi preuzeo sveze definicije. Kada se ispise poruka 'Success: Database was successfully updated' klik na dugme Next; • Pod sekcijom 'Scan Targets' proveri da su sve opcije stiklirane, te klikni na dugme Scan; Obavestenje: sa nekim infekcijama moze se desiti da se prikaze neka od sledecih poruka: - 'Could not load protection driver' => u tom slucaju klikni OK. - 'Could not load DDA driver' => klikni Yes na to obavestenje da bi dozvolio ucitavanje nakon restarta. Dozvoli restart i nastavi sa ostatkom instrukcija posle restarta. >> Ukoliko malware nije detektovan, klik na Exit dugme da zatvoris program. U sledecu poruku postavi mbar-log-year-month-day (sat-minuti-sekundi).txt i system-log.txt izveštaje. >> Ukoliko su infekcija/e pronadjene, proveriti da li je obelezena opcija 'Create Restore Point' i klikni na dugme Cleanup! da bi uklonili pretnje. - Procedura uklanjanje malware-a (scheduled) ce biti zakazana po restartu, bice prikazano obavestenje u pop-up prozoru. Klikni dugme Yes i sistem bi trebao da se restartuje i da zavrsi proceduru ciscenja. Obavestenje! samo ukoliko je RootKit detektovan: - postaraj se da pokrenes fixdamage.exe alat koji se nalazi u mbar folderu, \Plugins\fixdamage.exe: - Dvoklikom pokreni fixdamage, u crnom prozoru koji se otvori (command prompt) ukucaj Y (Y stoji za Yes) da bi nastavio izvrsenje, pricekati da alat odradi sve popravke ... - Kada vidis poruku 'press any key to exit' popravka je kompletirana. Pritisnuti bilo koju tipku na tastaturi da bi se prozor zatvorio. Restartovati sistem. Sledeci izvestaji ce biti formirani u mbar folderu. 1. mbar-log-year-month-day (hour-minute-second).txt 2. system-log.txt Iskopiraj sadrzaj mbar log-a u poruku a system log okaci uz poruku koristeci opciju Prikači fajl.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Problem sa iskacicim prozorima

Ko je trenutno na forumu

Ukupno su 823 korisnika na forumu :: 4 registrovanih, 1 sakriven i 818 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: DragoslavS, Nobunaga, sokojet, 125

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by