Možda tražite i:
Nepobedivi virus VIRUT W32.CF
virus,virusi ili....
mbam i sas nasli viruse dali su to stvarno virusi?

MyCity » Ambulanta -> Arhiva Ambulante » Virus

Virus

Napisano na dan: 13.3.2016

Strana:
1
2

Virus

Sledeća strana

Pagination

Odgovori

Strana:
1
2

Misko Drobnjak Poslao: 13 Mar 2016 11:12 Idi na vrh
offline Misko Drobnjak Novi MyCity građanin Pridružio: 07 Maj 2012 Poruke: 7	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozzz, pokupio sam virus koji mi je zarazio sve dokumente u racunaru i vise ni jedan ne mogu da otvorim .Inace iza svakog imena je dodat surprice (septembar.docx.surprise).molim za pomoc

Profil

TwinHeadedEagle Poslao: 13 Mar 2016 11:29 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav, Isprati temu i dostavi izvestaje: [Link mogu videti samo ulogovani korisnici]

Profil

Misko Drobnjak Poslao: 13 Mar 2016 11:45 Idi na vrh
offline Misko Drobnjak Novi MyCity građanin Pridružio: 07 Maj 2012 Poruke: 7	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Napisano: 13 Mar 2016 11:35 Misko Drobnjak ::Pozzz, pokupio sam virus koji mi je zarazio sve dokumente u racunaru i vise ni jedan ne mogu da otvorim .Inace iza svakog imena je dodat surprice (septembar.docx.surprise).molim za pomoc [Link mogu videti samo ulogovani korisnici] Dopuna: 13 Mar 2016 11:45 Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01 Ran by Putevi Požega (administrator) on PUTEVIPOZEGA-PC (13-03-2016 11:26:34) Running from C:\Users\Putevi Požega\Downloads Loaded Profiles: UpdatusUser & Putevi Požega (Available Profiles: UpdatusUser & Putevi Požega) Platform: Microsoft Windows 7 Home Basic Service Pack 1 (X86) Language: English (United States) Internet Explorer Version 11 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: [Link mogu videti samo ulogovani korisnici] ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\avp.exe (Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.UI.Systray.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (Dropbox, Inc.) C:\Program Files\Dropbox\Client\Dropbox.exe (Popcorn Time) C:\Program Files\Popcorn Time\Updater.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe () C:\Users\Putevi Požega\AppData\Local\Viber\Viber.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\avpui.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Google Inc.) C:\Program Files\Google\Update\1.3.29.5\GoogleCrashHandler.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (www.shadowexplorer.com) C:\Program Files\ShadowExplorer\sesvc.exe (BitTorrent Inc.) C:\Users\Putevi Požega\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) C:\Users\Putevi Požega\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe (BitTorrent Inc.) C:\Users\Putevi Požega\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe () C:\Users\Putevi Požega\AppData\Local\Temp\Rar$EX00.444\Active@ File Recovery Professional 14.5.0.0 Portable\Active@ File Recovery.exe () C:\Users\Putevi Požega\AppData\Local\Temp\Rar$EX00.444\Active@ File Recovery Professional 14.5.0.0 Portable\Active@ File Recovery.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [Avira System Speedup User Starter] => C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [14952 2016-02-26] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [Dropbox] => C:\Program Files\Dropbox\Client\Dropbox.exe [25122080 2016-02-16] (Dropbox, Inc.) HKU\S-1-5-21-1716342526-734773038-3557111390-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd) HKU\S-1-5-21-1716342526-734773038-3557111390-1001\...\Run: [Viber] => C:\Users\Putevi Požega\AppData\Local\Viber\Viber.exe [80035536 2015-06-10] () HKU\S-1-5-21-1716342526-734773038-3557111390-1001\...\MountPoints2: {828e7040-cc72-11e4-848d-fcaa143e77c5} - F:\autorun.exe HKU\S-1-5-21-1716342526-734773038-3557111390-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [10240 2009-07-14] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.33.dll [2016-02-16] (Dropbox, Inc.) CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Tcpip\Parameters: [DhcpNameServer] 212.200.190.166 212.200.191.166 Tcpip\..\Interfaces\{9F06BDC2-0DF3-43C7-B8C6-53CE422B64B9}: [DhcpNameServer] 192.168.100.1 192.168.2.21 Tcpip\..\Interfaces\{C093893F-D2FC-44EE-B58F-8EF028A9E54D}: [DhcpNameServer] 192.168.100.1 192.168.2.20 Tcpip\..\Interfaces\{CD0534FC-2163-4C2A-84B4-61D9B04E2213}: [DhcpNameServer] 212.200.190.166 212.200.191.166 Tcpip\..\Interfaces\{DBCB26D1-08AB-49AD-B21F-8240D30F7B83}: [DhcpNameServer] 192.168.100.1 192.168.2.21 Internet Explorer: ================== HKU\S-1-5-21-1716342526-734773038-3557111390-1001\Software\Microsoft\Internet Explorer\Main,Start Page = [Link mogu videti samo ulogovani korisnici] HKU\S-1-5-21-1716342526-734773038-3557111390-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [Link mogu videti samo ulogovani korisnici] SearchScopes: HKLM -> DefaultScope {20B9D1AE-AD1A-38B4-87FE-AF278DA9861D} URL = SearchScopes: HKLM -> {73931851-5962-4F14-99A6-9AE40D424A26} URL = [Link mogu videti samo ulogovani korisnici]{searchTerms}&form=MNMTDF&pc=MANM&src=IE-SearchBox; BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) BHO: Kaspersky Protection plugin -> {C66D064F-82FE-4E1A-B06A-B2490BA48B18} -> C:\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\IEExt\ie_plugin.dll [2015-12-06] (AO Kaspersky Lab) Toolbar: HKLM - Kaspersky Protection toolbar - {3507FA00-ADA2-4A02-99B9-51AD26CA9120} - C:\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\IEExt\ie_plugin.dll [2015-12-06] (AO Kaspersky Lab) DPF: {CAFEEFAC-0018-0000-0040-ABCDEFFEDCBA} [Link mogu videti samo ulogovani korisnici] DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [Link mogu videti samo ulogovani korisnici] Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Putevi Požega\AppData\Roaming\Mozilla\Firefox\Profiles\hzptr20c.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_20_0_0_306.dll [2016-02-10] () FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2011-08-16] (Adobe Systems, Inc.) FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google) FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-20] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-20] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.) FF Extension: No Name - C:\Users\Putevi Požega\AppData\Roaming\Mozilla\Firefox\Profiles\hzptr20c.default\Extensions\@videoassistant.xpi.surprise [2016-03-10] [not signed] FF Extension: Avira Browser Safety - C:\Users\Putevi Požega\AppData\Roaming\Mozilla\Firefox\Profiles\hzptr20c.default\Extensions\abs@avira.com.xpi [2016-03-10] FF Extension: Avira SafeSearch Plus - C:\Users\Putevi Požega\AppData\Roaming\Mozilla\Firefox\Profiles\hzptr20c.default\Extensions\safesearchplus2@avira.com.xpi [2016-03-10] FF Extension: No Name - C:\Users\Putevi Požega\AppData\Roaming\Mozilla\Firefox\Profiles\hzptr20c.default\Extensions\vlcplaylist@helgatauscher.de.xpi.surprise [2016-03-10] [not signed] FF Extension: No Name - C:\Users\Putevi Požega\AppData\Roaming\Mozilla\Firefox\Profiles\hzptr20c.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi.surprise [2016-03-10] [not signed] FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-09] [not signed] FF HKLM\...\Firefox\Extensions: [light_plugin_D772DC8D6FAF43A29B25C4EBAA5AD1DE@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\FFExt\light_plugin_firefox FF Extension: Kaspersky Protection - C:\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\FFExt\light_plugin_firefox [2016-03-12] Chrome: ======= CHR HomePage: Default -> [Link mogu videti samo ulogovani korisnici] CHR Profile: C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-27] CHR Extension: (Google Docs) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-27] CHR Extension: (Google Drive) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-20] CHR Extension: (YouTube) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-27] CHR Extension: (Google Search) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-30] CHR Extension: (Google Sheets) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-27] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-22] CHR Extension: (Skype Click to Call) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-05-19] CHR Extension: (Google Mail Checker) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2015-04-01] CHR Extension: (Facebook Notifications) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmameahlembdcigphohgiodcgjomcgeo [2015-03-27] CHR Extension: (Chrome Web Store Payments) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28] CHR Extension: (Gmail) - C:\Users\Putevi Požega\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30] CHR HKLM\...\Chrome\Extension: [eahebamiopdhefndnmappcihfajigkka] - [Link mogu videti samo ulogovani korisnici] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - [Link mogu videti samo ulogovani korisnici] CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp] - [Link mogu videti samo ulogovani korisnici] CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AVP16.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Total Security 16.0.0\avp.exe [194000 2015-12-06] (Kaspersky Lab ZAO) R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation) S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [15768 2011-10-19] (Microsoft Corporation) S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [276248 2012-03-20] (Intel Corporation) S2 dbupdate; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-03-11] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files\Dropbox\Update\DropboxUpdate.exe [143144 2016-03-11] (Dropbox, Inc.) S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-21] (NVIDIA Corporation) R2 sesvc; C:\Program Files\ShadowExplorer\sesvc.exe [9216 2013-01-02] (www.shadowexplorer.com) [File not signed] R2 SpeedupService; C:\Program Files\Avira\System Speedup\Avira.SystemSpeedup.SpeedupService.exe [24224 2016-02-26] (Avira Operations GmbH & Co. KG) R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH) R2 Update service; C:\Program Files\Popcorn Time\Updater.exe [339968 2015-07-17] (Popcorn Time) [File not signed] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) S3 wxpSvc; C:\Program Files\wLite\wService.exe [4995072 2011-07-04] (Moonware Studios) [File not signed] ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 b06diag; C:\Windows\system32\drivers\bxdiagx.sys [76840 2010-12-16] (Broadcom Corporation) S3 BFN7x86; C:\Windows\system32\drivers\Xeno7x86.sys [129640 2011-01-14] (Bigfoot Networks, Inc.) S3 BFNVis32; C:\Windows\system32\drivers\XenoVx86.sys [129640 2011-01-14] (Bigfoot Networks, Inc.) S3 BXOIS; C:\Windows\system32\drivers\bxois.sys [431144 2010-12-10] (Broadcom Corporation) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [201912 2015-07-06] (Kaspersky Lab ZAO) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2015-01-24] (DT Soft Ltd) S3 IFCoEMP; C:\Windows\system32\drivers\ifM60x32.sys [271120 2011-03-18] (Intel(R) Corporation) S3 IFCoEVB; C:\Windows\system32\drivers\ifP60X32.sys [62224 2011-03-18] (Intel(R) Corporation) S3 ioatdma1; C:\Windows\System32\Drivers\qd16032.sys [36552 2009-11-16] (Intel Corporation) S3 ioatdma2; C:\Windows\System32\Drivers\qd26032.sys [37576 2009-11-16] (Intel Corporation) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [153784 2015-06-22] (Kaspersky Lab ZAO) R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [46776 2015-06-06] (Kaspersky Lab ZAO) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [58224 2015-06-27] (Kaspersky Lab ZAO) R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [66976 2016-03-12] (AO Kaspersky Lab) R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [147328 2015-12-06] (AO Kaspersky Lab) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [44728 2015-12-06] (AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [776088 2016-03-12] (AO Kaspersky Lab) R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [33976 2015-06-11] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [37048 2015-06-06] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [38072 2015-06-07] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [39304 2015-12-06] (AO Kaspersky Lab) R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54328 2015-06-11] (Kaspersky Lab ZAO) R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [87736 2015-06-16] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [156856 2015-06-23] (Kaspersky Lab ZAO) S3 L1C; C:\Windows\System32\DRIVERS\L1C60x86.sys [68208 2011-03-23] (Atheros Communications, Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation) R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation) R3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [172416 2011-10-19] (Microsoft Corporation) R1 vpcnfltr; C:\Windows\System32\DRIVERS\vpcnfltr.sys [48128 2011-10-19] (Microsoft Corporation) R3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2011-10-19] (Microsoft Corporation) R1 vpcvmm; C:\Windows\System32\drivers\vpcvmm.sys [296192 2011-10-19] (Microsoft Corporation) S3 gdrv; \??\C:\Windows\gdrv.sys [X] U4 klkbdflt2; system32\DRIVERS\klkbdflt2.sys [X] S1 MpKsl6dee9d8d; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6D39FFF2-991C-42AE-B97A-792D8AC4A0A9}\MpKsl6dee9d8d.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-03-13 11:26 - 2016-03-13 11:27 - 00019706 _____ C:\Users\Putevi Požega\Downloads\FRST.txt 2016-03-13 11:26 - 2016-03-13 11:26 - 00000000 ____D C:\FRST 2016-03-13 11:25 - 2016-03-13 11:25 - 01725440 _____ (Farbar) C:\Users\Putevi Požega\Downloads\FRST.exe 2016-03-13 09:27 - 2016-03-13 10:20 - 00000000 ____D C:\Users\Putevi Požega\Desktop\New folder (2) 2016-03-13 09:20 - 2016-03-13 09:20 - 00000000 ____D C:\Users\Putevi Požega\Desktop\vracanj 2016-03-13 08:52 - 2016-03-13 08:53 - 16179481 ____R C:\Users\Putevi Požega\Downloads\Active@ File Recovery Pro 14.5.0.0 Portable.zip 2016-03-13 08:45 - 2016-03-13 08:45 - 00001810 _____ C:\Users\Putevi Požega\Desktop\ShadowExplorer.lnk 2016-03-13 08:45 - 2016-03-13 08:45 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\www.shadowexplorer.com 2016-03-13 08:45 - 2016-03-13 08:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShadowExplorer 2016-03-13 08:45 - 2016-03-13 08:45 - 00000000 ____D C:\Program Files\ShadowExplorer 2016-03-13 08:45 - 2016-03-13 08:44 - 00969845 _____ (ShadowExplorer.com ) C:\Users\Putevi Požega\Desktop\ShadowExplorer-0.9-setup.exe 2016-03-13 08:44 - 2016-03-13 08:44 - 00969845 _____ (ShadowExplorer.com ) C:\Users\Putevi Požega\Downloads\ShadowExplorer-0.9-setup.exe 2016-03-13 08:43 - 2016-03-13 08:43 - 00137737 _____ C:\Users\Putevi Požega\Downloads\ShadowExplorer-0.9-portable(1).zip 2016-03-13 08:41 - 2016-03-13 08:41 - 00137737 _____ C:\Users\Putevi Požega\Downloads\ShadowExplorer-0.9-portable.zip 2016-03-13 07:57 - 2016-03-13 07:58 - 00164708 _____ C:\Windows\ntbtlog.txt 2016-03-12 14:25 - 2016-03-12 14:25 - 00002280 _____ C:\Users\Putevi Požega\Desktop\Safe Money.lnk 2016-03-12 14:25 - 2016-03-12 14:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security 2016-03-12 14:25 - 2016-03-12 14:24 - 00002048 _____ C:\Users\Public\Desktop\Kaspersky Total Security.lnk 2016-03-12 14:24 - 2016-03-13 09:54 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2016-03-12 14:24 - 2016-03-12 14:24 - 00000000 ____D C:\Windows\ELAMBKUP 2016-03-12 14:24 - 2016-03-12 14:24 - 00000000 ____D C:\Program Files\Kaspersky Lab 2016-03-12 14:23 - 2016-03-12 15:33 - 00776088 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys 2016-03-12 14:23 - 2015-12-06 01:12 - 00147328 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys 2016-03-12 14:23 - 2015-12-06 01:12 - 00044728 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys 2016-03-12 13:49 - 2016-03-12 13:53 - 162059984 _____ (Kaspersky Lab) C:\Users\Putevi Požega\Downloads\kts16.0.0.614en.exe 2016-03-12 13:47 - 2016-03-12 13:51 - 23233636 _____ C:\XoristDecryptor.2.4.0.0_12.03.2016_13.47.01_log.txt 2016-03-12 13:46 - 2016-03-12 13:46 - 01500817 _____ C:\Users\Putevi Požega\Downloads\ScatterDecryptor.zip 2016-03-12 13:46 - 2016-03-12 13:46 - 00751080 _____ (Kaspersky Lab ZAO) C:\Users\Putevi Požega\Downloads\xoristdecryptor.exe 2016-03-12 13:45 - 2016-03-12 13:45 - 00002352 _____ C:\RannohDecryptor.1.8.0.2_12.03.2016_13.45.14_log.txt 2016-03-12 13:44 - 2016-03-12 13:45 - 00583816 _____ (Kaspersky Lab ZAO) C:\Users\Putevi Požega\Downloads\rannohdecryptor.exe 2016-03-12 13:43 - 2016-03-12 13:44 - 00002892 _____ C:\RakhniDecryptor.1.15.1.0_12.03.2016_13.43.59_log.txt 2016-03-12 13:43 - 2016-03-12 13:43 - 02447392 _____ (Kaspersky Lab ZAO) C:\Users\Putevi Požega\Downloads\rakhnidecryptor.exe 2016-03-12 13:33 - 2016-03-12 13:43 - 17938512 _____ C:\RectorDecryptor.2.7.0.0_12.03.2016_13.33.28_log.txt 2016-03-12 13:33 - 2016-03-12 13:33 - 00919432 _____ (Kaspersky Lab ZAO) C:\Users\Putevi Požega\Downloads\rectordecryptor.exe 2016-03-12 13:30 - 2016-03-12 13:31 - 00209300 _____ C:\TDSSKiller.3.1.0.9_12.03.2016_13.30.22_log.txt 2016-03-12 13:30 - 2016-03-12 13:30 - 00000000 _____ C:\Users\Putevi Požega\Documents\.Rhistory 2016-03-12 13:29 - 2016-03-12 13:29 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Putevi Požega\Downloads\tdsskiller.exe 2016-03-12 13:02 - 2016-03-12 13:02 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\R 2016-03-12 12:59 - 2016-03-12 12:59 - 00000000 ____D C:\Users\Putevi Požega\Documents\.R 2016-03-12 12:44 - 2016-03-12 12:46 - 65586447 _____ (R Core Team ) C:\Users\Putevi Požega\Downloads\R-3.2.4-win.exe 2016-03-12 12:43 - 2016-03-12 13:30 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\RStudio 2016-03-12 12:42 - 2016-03-12 13:30 - 00000000 ____D C:\Users\Putevi Požega\AppData\Local\RStudio-Desktop 2016-03-12 12:37 - 2016-03-12 12:39 - 80806120 _____ (RStudio, Inc.) C:\Users\Putevi Požega\Downloads\RStudio-0.99.892.exe 2016-03-12 12:36 - 2016-03-12 12:37 - 16653845 _____ C:\Users\Putevi Požega\Downloads\testdisk-7.1-WIP.win(1).zip 2016-03-12 12:35 - 2016-03-12 12:35 - 03500046 _____ C:\Users\Putevi Požega\Downloads\testdisk-6.14-WIP.win.zip 2016-03-12 12:34 - 2016-03-12 12:35 - 16653845 _____ C:\Users\Putevi Požega\Downloads\testdisk-7.1-WIP.win.zip 2016-03-12 12:15 - 2011-05-15 15:00 - 00115920 _____ (Microsoft Corporation) C:\Windows\system32\MSINET.OCX 2016-03-12 12:14 - 2016-03-12 12:15 - 01733120 _____ (BrightFort LLC ) C:\Users\Putevi Požega\Downloads\eulalyzersetup22.exe 2016-03-12 10:39 - 2016-03-12 10:39 - 00001806 _____ C:\Windows\system32\.crusader 2016-03-12 10:21 - 2016-03-12 10:39 - 00000000 ____D C:\ProgramData\HitmanPro 2016-03-12 10:19 - 2016-03-12 10:19 - 10457272 _____ (SurfRight B.V.) C:\Users\Putevi Požega\Downloads\HitmanPro.exe 2016-03-12 08:08 - 2016-03-12 13:37 - 00000000 ____D C:\Users\Putevi Požega\Desktop\spaseno 2016-03-11 13:15 - 2016-03-11 13:15 - 00000020 _____ C:\Windows\dúś 2016-03-11 12:45 - 2016-03-11 12:45 - 00249168 _____ C:\Users\Putevi Požega\Downloads\Getting Started.pdf.surprise 2016-03-11 10:14 - 2016-03-11 10:15 - 43801424 _____ C:\Users\Putevi Požega\Downloads\Pcelar - Novi Pcelar 1810 - 2010.pdf.pdf.surprise 2016-03-11 10:12 - 2016-03-11 10:12 - 00046096 _____ C:\Users\Putevi Požega\Downloads\KAMENOLOM mesečna tabela VAŽEĆA sa sabiranjem.xls.surprise 2016-03-11 09:40 - 2016-03-11 09:41 - 08094300 _____ C:\Users\Putevi Požega\Downloads\2015.zip 2016-03-11 09:18 - 2016-03-11 09:18 - 00001151 _____ C:\Users\Putevi Požega\Desktop\Dropbox.lnk 2016-03-11 09:15 - 2016-03-11 09:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-03-11 09:07 - 2016-03-13 11:12 - 00000910 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2016-03-11 09:07 - 2016-03-13 09:12 - 00000906 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2016-03-11 09:06 - 2016-03-11 09:15 - 00000000 ____D C:\Program Files\Dropbox 2016-03-11 09:05 - 2016-03-11 09:06 - 00690072 _____ (Dropbox, Inc.) C:\Users\Putevi Požega\Downloads\DropboxInstaller.exe 2016-03-11 08:59 - 2016-03-11 08:59 - 00003072 _____ C:\Users\Putevi Požega\Downloads\iznosrecept.CDX 2016-03-11 08:55 - 2016-03-11 08:56 - 00006144 _____ C:\Users\Putevi Požega\Downloads\kupcigradilista.CDX 2016-03-10 22:48 - 2016-03-10 22:48 - 00001027 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-03-10 22:44 - 2016-03-10 22:44 - 22908888 _____ (Malwarebytes ) C:\Users\Putevi Požega\Downloads\mbam-setup-2.2.0.1024.exe 2016-03-10 19:29 - 2016-03-12 13:37 - 00000000 ____D C:\Users\Putevi Požega\Desktop\2016 2016-03-10 18:40 - 2016-03-12 08:27 - 00000000 ____D C:\Asfalt 2016-03-10 18:40 - 2010-03-08 09:48 - 00000344 _____ C:\Users\Putevi Požega\Desktop\Evidencija isporuke.lnk 2016-03-10 18:32 - 2016-03-10 18:32 - 00001409 _____ C:\Windows\system\TAHOMA.FOT 2016-03-10 18:32 - 2016-03-10 18:32 - 00000162 _____ C:\Windows\ODBC.INI 2016-03-10 18:32 - 2016-03-10 18:32 - 00000032 _____ C:\Windows\GRAPH5.INI 2016-03-10 18:28 - 2016-03-10 18:37 - 00000000 ____D C:\visualfox5 2016-03-10 13:33 - 2016-03-10 13:33 - 00270120 _____ (Microsoft Corporation) C:\Users\Putevi Požega\Downloads\vfp6swiz.exe 2016-03-10 11:41 - 2016-03-10 11:41 - 00000000 ____D C:\Users\Putevi Požega\Desktop\2011-2016 2016-03-10 11:04 - 2016-03-10 11:04 - 00000000 ____D C:\Users\Putevi Požega\Desktop\New folder 2016-03-10 10:05 - 2016-02-10 19:36 - 03999168 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2016-03-10 10:05 - 2016-02-10 19:36 - 03943360 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-03-10 10:05 - 2016-02-10 19:36 - 00138176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-03-10 10:05 - 2016-02-10 19:36 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2016-03-10 10:05 - 2016-02-10 19:32 - 01310744 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-03-10 10:05 - 2016-02-10 19:29 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2016-03-10 10:05 - 2016-02-10 19:29 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-03-10 10:05 - 2016-02-10 19:29 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-03-10 10:05 - 2016-02-10 19:29 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-03-10 10:05 - 2016-02-10 19:29 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2016-03-10 10:05 - 2016-02-10 19:28 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-03-10 10:05 - 2016-02-10 19:28 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-03-10 10:05 - 2016-02-10 19:28 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2016-03-10 10:05 - 2016-02-10 19:28 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2016-03-10 10:05 - 2016-02-10 19:28 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-03-10 10:05 - 2016-02-10 19:26 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-03-10 10:05 - 2016-02-10 19:26 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-03-10 10:05 - 2016-02-10 19:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-03-10 10:05 - 2016-02-10 19:26 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-03-10 10:05 - 2016-02-10 19:25 - 01062400 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-03-10 10:05 - 2016-02-10 19:25 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-03-10 10:05 - 2016-02-10 19:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-03-10 10:05 - 2016-02-10 19:24 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-03-10 10:05 - 2016-02-10 19:24 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll 2016-03-10 10:05 - 2016-02-10 19:24 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2016-03-10 10:05 - 2016-02-10 19:24 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-03-10 10:05 - 2016-02-10 19:24 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2016-03-10 10:05 - 2016-02-10 18:40 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe 2016-03-10 10:05 - 2016-02-10 18:40 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2016-03-10 10:05 - 2016-02-10 18:40 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll 2016-03-10 10:05 - 2016-02-10 18:40 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe 2016-03-10 10:05 - 2016-02-10 18:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-03-10 10:05 - 2016-02-10 18:34 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2016-03-10 10:05 - 2016-02-10 18:30 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2016-03-10 10:05 - 2016-02-10 18:30 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2016-03-10 10:05 - 2016-02-10 18:30 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2016-03-10 10:05 - 2016-02-10 18:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2016-03-10 10:05 - 2016-02-10 18:28 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-03-10 10:05 - 2016-02-10 18:28 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-03-10 10:05 - 2016-02-10 18:28 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-03-10 10:05 - 2016-02-09 10:50 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll 2016-03-10 10:05 - 2016-02-05 22:44 - 02395648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-03-10 10:05 - 2016-02-04 19:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2016-03-10 10:05 - 2016-02-03 18:59 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2016-03-10 10:04 - 2016-02-12 19:39 - 02956288 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2016-03-10 10:04 - 2016-02-12 19:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2016-03-10 10:04 - 2016-02-12 19:26 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2016-03-10 10:04 - 2016-02-12 19:07 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-03-10 10:04 - 2016-02-12 19:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-03-10 10:04 - 2016-02-12 19:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2016-03-10 10:04 - 2016-02-12 19:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2016-03-10 10:04 - 2016-02-12 19:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2016-03-10 10:04 - 2016-02-12 19:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2016-03-10 10:04 - 2016-02-12 19:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2016-03-10 10:04 - 2016-02-12 19:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2016-03-10 10:04 - 2016-02-03 19:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2016-03-10 10:04 - 2016-02-03 19:49 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll 2016-03-10 10:04 - 2016-02-03 19:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2016-03-10 10:03 - 2016-02-09 07:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-03-10 10:03 - 2016-02-08 22:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-03-10 10:03 - 2016-02-08 21:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-03-10 10:03 - 2016-02-08 21:51 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-03-10 10:03 - 2016-02-08 21:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-03-10 10:03 - 2016-02-08 21:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-03-10 10:03 - 2016-02-08 21:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-03-10 10:03 - 2016-02-08 21:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-03-10 10:03 - 2016-02-08 21:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-03-10 10:03 - 2016-02-08 21:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-03-10 10:03 - 2016-02-08 21:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-03-10 10:03 - 2016-02-08 21:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-03-10 10:03 - 2016-02-08 21:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-03-10 10:03 - 2016-02-08 21:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-03-10 10:03 - 2016-02-08 21:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-03-10 10:03 - 2016-02-08 21:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-03-10 10:03 - 2016-02-08 21:28 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-03-10 10:03 - 2016-02-08 21:23 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-03-10 10:03 - 2016-02-08 21:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-03-10 10:03 - 2016-02-08 21:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-03-10 10:03 - 2016-02-08 21:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-03-10 10:03 - 2016-02-08 21:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-03-10 10:03 - 2016-02-08 21:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-03-10 10:03 - 2016-02-08 21:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-03-10 10:03 - 2016-02-08 21:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-03-10 10:03 - 2016-02-08 21:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-03-10 10:03 - 2016-02-08 21:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-03-10 10:03 - 2016-02-08 21:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-03-10 10:03 - 2016-02-08 21:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-03-10 10:03 - 2016-02-08 21:02 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-03-10 10:03 - 2016-02-08 21:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-03-10 10:03 - 2016-02-08 21:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-03-10 10:03 - 2016-02-08 20:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-03-10 10:03 - 2016-02-08 20:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-03-10 10:03 - 2016-02-08 20:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-03-10 10:02 - 2016-02-09 10:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2016-03-10 10:02 - 2016-02-09 10:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2016-03-10 10:02 - 2016-02-09 10:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2016-03-10 10:02 - 2016-02-09 10:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2016-03-10 10:02 - 2016-02-09 10:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2016-03-10 10:02 - 2016-02-05 23:37 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2016-03-10 10:02 - 2016-02-05 23:37 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2016-03-10 10:02 - 2016-02-05 23:37 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2016-03-10 10:02 - 2016-02-05 22:41 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-03-10 10:02 - 2016-02-05 22:41 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-03-10 09:58 - 2016-03-10 09:58 - 00000968 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk 2016-03-10 09:58 - 2016-03-10 09:58 - 00000956 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk 2016-03-10 09:55 - 2016-03-10 09:55 - 11255504 _____ (TeamViewer GmbH) C:\Users\Putevi Požega\Downloads\TeamViewer_Setup.exe 2016-03-10 09:02 - 2016-03-10 09:02 - 00000000 ____D C:\Users\Putevi Požega\AppData\Local\Avira 2016-03-10 08:12 - 2016-03-13 07:36 - 00000000 ____D C:\Users\Public\Speedup Sessions 2016-03-10 07:58 - 2016-03-12 14:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2016-03-10 07:58 - 2016-03-12 14:03 - 00000000 ____D C:\ProgramData\Avira 2016-03-10 07:58 - 2016-03-12 14:03 - 00000000 ____D C:\Program Files\Avira 2016-03-10 07:58 - 2016-03-10 07:58 - 05404312 _____ (Avira Operations GmbH & Co. KG) C:\Users\Putevi Požega\Downloads\avira_en_av_56e11af8d2bd6__ws.exe 2016-03-10 07:24 - 2016-03-10 18:32 - 00001285 _____ C:\Windows\ODBCINST.INI 2016-03-10 07:24 - 2016-03-10 18:28 - 00143300 _____ C:\Windows\foxsetup.ttf 2016-03-10 07:24 - 2016-03-10 11:51 - 00143300 _____ C:\Windows\etup.ttf 2016-03-10 07:07 - 2016-03-10 07:07 - 00000000 __RSH C:\MSDOS.SYS 2016-03-10 07:07 - 2016-03-10 07:07 - 00000000 __RSH C:\IO.SYS 2016-03-09 10:59 - 2016-03-09 21:50 - 00000000 ____D C:\Program Files\Mozilla Firefox 2016-03-04 23:22 - 2016-03-04 23:22 - 00008192 _____ C:\Windows\system32\config\userdiff 2016-03-04 14:12 - 2016-03-04 14:12 - 00008192 __RSH C:\BOOTSECT.BAK 2016-03-04 14:12 - 2015-10-30 06:40 - 00000001 ___SH C:\BOOTNXT 2016-03-04 13:43 - 2016-03-10 07:22 - 00000000 ___HD C:\$WINDOWS.~BT 2016-03-04 13:43 - 2016-03-04 14:48 - 00014259 _____ C:\Windows\diagerr.xml 2016-03-04 13:43 - 2016-03-04 14:48 - 00013338 _____ C:\Windows\diagwrn.xml 2016-03-04 13:38 - 2016-03-04 13:38 - 00000000 ____D C:\ESD 2016-03-04 12:58 - 2016-03-04 12:58 - 07635472 _____ (Microsoft Corporation) C:\Users\Putevi Požega\Downloads\GetWindows10-Web_Default_Attr.exe 2016-03-04 12:58 - 2016-03-04 12:58 - 00000000 ___HD C:\$Windows.~WS 2016-02-26 14:24 - 2016-03-10 12:34 - 00000000 ____D C:\Users\Putevi Požega\Desktop\20152 2016-02-24 07:45 - 2016-03-10 04:53 - 07351664 _____ C:\Users\Putevi Požega\Downloads\M3U_Detective.zip.surprise 2016-02-22 12:17 - 2016-02-22 12:27 - 07954432 _____ (HOW Inc. ) C:\Users\Putevi Požega\Downloads\FYTDSetup.exe 2016-02-19 08:39 - 2016-02-19 08:39 - 00000000 ____D C:\Users\Putevi Požega\AppData\Local\CEF 2016-02-18 09:00 - 2016-03-10 20:25 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-02-18 09:00 - 2016-02-18 09:00 - 00000000 ____D C:\Program Files\Adobe ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-03-13 11:25 - 2015-01-23 16:16 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\uTorrent 2016-03-13 08:52 - 2016-02-04 09:54 - 00000000 ____D C:\Users\Putevi Požega\Downloads\JetBrains PhpStorm v8 0.1 build 138.2001 With Key [TorDigger] 2016-03-13 08:52 - 2016-02-03 12:35 - 00000000 ____D C:\Users\Putevi Požega\AppData\LocalLow\uTorrent 2016-03-13 08:10 - 2009-07-14 05:34 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-03-13 08:10 - 2009-07-14 05:34 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-03-13 08:09 - 2010-11-20 22:01 - 00006366 _____ C:\Windows\system32\PerfStringBackup.INI 2016-03-13 08:04 - 2011-12-22 07:38 - 00000000 ____D C:\Users\UpdatusUser 2016-03-13 08:03 - 2015-06-15 05:44 - 00000000 ____D C:\Users\Putevi Požega\AppData\Local\Dropbox 2016-03-13 08:03 - 2015-01-25 09:26 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\ViberPC 2016-03-13 08:03 - 2015-01-23 10:29 - 00000000 ___RD C:\Users\Putevi Požega\Dropbox 2016-03-13 08:01 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-03-13 07:55 - 2011-12-22 07:23 - 00000000 ____D C:\Program Files\Windows Live 2016-03-12 20:18 - 2015-07-07 04:51 - 00000000 ____D C:\Program Files\NCH Software 2016-03-12 20:18 - 2015-05-15 06:11 - 00000000 ____D C:\Program Files\Audacity 2016-03-12 20:18 - 2015-04-01 07:44 - 00000000 ____D C:\Program Files\Google 2016-03-12 20:18 - 2015-03-20 10:05 - 00000000 ____D C:\Program Files\PrivateVPN 2016-03-12 20:18 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\registration 2016-03-12 15:33 - 2015-06-06 08:48 - 00066976 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\kldisk.sys 2016-03-12 14:25 - 2015-08-11 21:10 - 00000000 ____D C:\Users\Putevi Po 2016-03-12 14:24 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf 2016-03-12 14:20 - 2015-01-23 10:41 - 00001945 _____ C:\Windows\epplauncher.mif 2016-03-12 12:18 - 2015-07-06 15:57 - 00000000 ____D C:\ProgramData\TEMP 2016-03-12 11:19 - 2015-01-20 19:57 - 00000000 ____D C:\Users\Putevi Požega 2016-03-12 11:13 - 2015-01-23 12:59 - 00000000 ____D C:\Users\Putevi Požega\Desktop\dok. kamenolom 2016-03-12 10:55 - 2015-03-27 11:21 - 00000000 ____D C:\Users\Putevi Požega\.WebIde80 2016-03-12 10:55 - 2015-03-27 11:04 - 00000000 ____D C:\Program Files\JetBrains 2016-03-12 10:53 - 2015-01-23 13:53 - 00000000 ____D C:\Program Files\GRETECH 2016-03-12 08:52 - 2015-03-19 17:41 - 00000000 ____D C:\Program Files\TeamViewer 2016-03-11 13:14 - 2015-01-30 14:48 - 00000000 ____D C:\Users\Putevi Požega\AppData\Local\ElevatedDiagnostics 2016-03-11 12:16 - 2015-11-02 13:45 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-03-11 12:16 - 2015-11-02 13:45 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-03-11 12:16 - 2015-08-12 04:07 - 00000370 _____ C:\Windows\Tasks\LiveSignal.job 2016-03-11 12:16 - 2015-08-11 22:07 - 00000370 _____ C:\Windows\Tasks\DataParser.job 2016-03-11 12:16 - 2015-08-07 10:07 - 00000354 _____ C:\Windows\Tasks\BookKeep.job 2016-03-11 12:16 - 2012-09-01 00:35 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-03-11 08:21 - 2015-01-23 10:25 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\Dropbox 2016-03-11 06:55 - 2009-07-14 05:33 - 00409696 _____ C:\Windows\system32\FNTCACHE.DAT 2016-03-10 22:56 - 2015-01-24 10:15 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-03-10 22:51 - 2015-01-24 10:14 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2016-03-10 22:48 - 2015-01-24 10:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2016-03-10 20:06 - 2015-07-07 04:52 - 00000000 ____D C:\ProgramData\NCH Software 2016-03-10 18:36 - 2015-03-20 10:11 - 00000000 ____D C:\Users\Putevi Požega\AppData\Local\Windows Live 2016-03-10 18:36 - 2015-01-20 14:17 - 00109168 _____ C:\Users\Putevi Požega\AppData\Local\GDIPFONTCACHEV1.DAT 2016-03-10 18:32 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system 2016-03-10 16:16 - 2015-12-14 07:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warships 2016-03-10 16:16 - 2015-09-18 11:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LANGMaster.com 2016-03-10 16:16 - 2015-09-08 09:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\webcamXP 5 2016-03-10 16:16 - 2015-09-04 09:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2016-03-10 16:16 - 2015-07-09 09:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Popcorn Time 2016-03-10 16:16 - 2015-07-06 10:50 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time 2016-03-10 16:16 - 2015-06-17 09:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2016-03-10 16:16 - 2015-04-09 07:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks 2016-03-10 16:16 - 2015-04-07 09:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-03-10 16:16 - 2015-03-23 07:18 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NetMon 2016-03-10 16:16 - 2015-01-24 10:13 - 00000000 ____D C:\Windows\SHELLNEW 2016-03-10 16:16 - 2015-01-24 10:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2016-03-10 16:16 - 2015-01-23 12:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-03-10 16:16 - 2012-03-09 07:15 - 00000000 ____D C:\Program Files\Common Files\Intel 2016-03-10 16:16 - 2011-12-22 07:38 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-03-10 16:16 - 2011-12-22 07:19 - 00000000 ____D C:\Program Files\Intel 2016-03-10 16:16 - 2011-10-28 02:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2016-03-10 16:16 - 2011-10-28 02:05 - 00000000 ____D C:\Windows\system32\Adobe 2016-03-10 16:16 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\MSBuild 2016-03-10 16:16 - 2009-07-14 03:37 - 00000000 __RSD C:\Windows\Media 2016-03-10 16:16 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF 2016-03-10 16:16 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Help 2016-03-10 16:16 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\System 2016-03-10 14:01 - 2015-01-23 12:00 - 00000000 ____D C:\Users\Putevi Požega\AppData\Local\Microsoft Help 2016-03-10 13:33 - 2015-01-24 10:18 - 00000000 ____D C:\Program Files\Microsoft Visual Studio 2016-03-10 09:58 - 2015-03-19 17:41 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\TeamViewer 2016-03-10 07:41 - 2015-03-19 09:02 - 00002675 _____ C:\Users\Putevi Požega\Desktop\Microsoft Office Word 2007.lnk 2016-03-10 07:41 - 2015-01-24 10:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-03-10 07:25 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-03-10 07:22 - 2011-10-28 02:55 - 00000000 ____D C:\Windows\Panther 2016-03-10 04:57 - 2015-01-23 11:45 - 00000000 ____D C:\Users\Putevi Požega\eksploziv 2016-03-10 04:53 - 2015-12-30 10:37 - 03305856 _____ C:\Users\Putevi Požega\Downloads\Your Trip Free Website Template - Free-CSS.com.zip.surprise 2016-03-10 04:53 - 2015-11-27 12:02 - 04955280 _____ C:\Users\Putevi Požega\Downloads\Roto X-100 SF 001 - Ch. A. Bell - Rat za Andromedu 17 (retfala-ri & emeri)(4.8 MB).pdf.surprise 2016-03-10 04:51 - 2016-02-03 12:36 - 00000000 ____D C:\Users\Putevi Požega\Downloads\JetBrains PhpStorm v9.0 build PS-141.1912 with LIC [TorDigger] 2016-03-10 04:51 - 2015-12-30 10:37 - 00000000 ____D C:\Users\Putevi Požega\Desktop\kamenolom 2016-03-10 04:51 - 2015-09-15 06:40 - 00042192 _____ C:\Users\Putevi Požega\Documents\lista.txt 2016-03-10 04:51 - 2015-08-05 09:01 - 00074112 _____ C:\Users\Putevi Požega\Documents\11214144_814779325310150_6206234012189787453_n.jpg.surprise 2016-03-10 04:51 - 2015-05-08 13:19 - 140599296 _____ C:\Users\Putevi Požega\Desktop\VID_20150508_124856.3gp.surprise 2016-03-10 04:51 - 2015-05-07 06:24 - 00012608 _____ C:\Users\Putevi Požega\Desktop\odobrenja.docx.surprise 2016-03-10 04:51 - 2015-01-25 09:28 - 00000000 ____D C:\Users\Putevi Požega\Documents\ViberDownloads 2016-03-10 04:46 - 2015-09-18 11:47 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\langmaster.com 2016-03-10 04:46 - 2015-05-15 07:13 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\Audacity 2016-03-09 18:09 - 2015-01-23 10:20 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\Skype 2016-03-09 10:08 - 2011-12-22 07:40 - 141270216 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-03-06 02:54 - 2015-01-25 09:25 - 00000000 ____D C:\Users\Putevi Požega\AppData\Local\Viber 2016-03-04 15:03 - 2015-01-20 19:59 - 00000000 ___RD C:\Users\Putevi Požega\Virtual Machines 2016-03-04 14:43 - 2015-10-13 09:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Delphi 7 Second Edition v7.2 2016-03-04 09:06 - 2015-06-17 09:43 - 00000000 ____D C:\Users\Putevi Požega\AppData\Roaming\vlc 2016-03-03 12:22 - 2015-12-01 08:59 - 00000000 ____D C:\Users\Putevi Požega\Downloads\PopcornTime 2016-02-26 11:38 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\Branding 2016-02-19 08:39 - 2015-01-23 12:39 - 00000000 ____D C:\Users\Putevi Požega\AppData\Local\Adobe 2016-02-18 09:00 - 2015-01-23 12:49 - 00000000 ____D C:\Program Files\Common Files\Adobe 2016-02-18 09:00 - 2015-01-23 12:48 - 00000000 ____D C:\ProgramData\Adobe Some files in TEMP: ==================== C:\Users\Putevi Požega\AppData\Local\Temp\avgnt.exe C:\Users\Putevi Požega\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpnakmqd.dll C:\Users\Putevi Požega\AppData\Local\Temp\HitmanPro.exe C:\Users\Putevi Požega\AppData\Local\Temp\SkypeSetup.exe ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-02-28 00:30 ==================== End of FRST.txt ============================

Profil

TwinHeadedEagle Poslao: 13 Mar 2016 14:10 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Pozdrav, Izgleda kao vrlo nova infekcija. Da li mozes da rekonstruises kako je doslo do problema? Da li si koristio Team Viewer u zadnje vreme?

Profil

Misko Drobnjak Poslao: 13 Mar 2016 14:18 Idi na vrh
offline Misko Drobnjak Novi MyCity građanin Pridružio: 07 Maj 2012 Poruke: 7	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Jesam, koristim ga i stalno je ukljucen a desilo se 10.03 komp je ostao upaljen a sve je izmenjeno oko 4-5 h

Profil

TwinHeadedEagle Poslao: 13 Mar 2016 14:21 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Otvori ovu lokaciju: C:\Program Files (x86)\TeamViewer Prikaci ovaj fajl u sledecoj poruci: TeamViewer11_Logfile.log

Profil

Misko Drobnjak Poslao: 13 Mar 2016 14:23 Idi na vrh
offline Misko Drobnjak Novi MyCity građanin Pridružio: 07 Maj 2012 Poruke: 7	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: [Link mogu videti samo ulogovani korisnici]

Profil

TwinHeadedEagle Poslao: 13 Mar 2016 14:27 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Prikaci i ovaj izvestaj. Ako ih imas jos sto pocinju sa TeamViewer11, prikaci i njih. TeamViewer11_Logfile_OLD.log

Profil

Misko Drobnjak Poslao: 13 Mar 2016 14:29 Idi na vrh
offline Misko Drobnjak Novi MyCity građanin Pridružio: 07 Maj 2012 Poruke: 7	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: [Link mogu videti samo ulogovani korisnici]

Profil

TwinHeadedEagle Poslao: 13 Mar 2016 14:39 Idi na vrh
offline TwinHeadedEagle Anti Malware Fighter Rank 2 Pridružio: 09 Avg 2011 Poruke: 15879 Gde živiš: Beograd	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Ljudi su prijavili da je upravo tog datuma napad i zapoceo i od tada se gubi svaki trag. U tvojim TeamViewer izvestajima nisam mogao da utvrim da li je se to i desilo jer TeamViewer ne cuva izvestaje od prethodnih datuma, tako da ne mogu da utvrdim sta se desilo. Uglavnom krivac je TeamViewer, nasli su neki bag ili sta vec i preko njega su odredjeni ljudi zarazeni. Trenutno ne moze da se uradi nista dok se ne vidi o cemu se radi i kako povratiti dokumenta.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Virus

Ko je trenutno na forumu

Ukupno su 1273 korisnika na forumu :: 105 registrovanih, 7 sakrivenih i 1161 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 15694 - dana 01 Feb 2026 12:23

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 33 bren, advokat84, aleph_one, ALEXV, alternator, amaterSRB, Armadillo, Avalon015, batana, Bo96, Bobrock1, Bojke549, bokicacar, bounty hunters, BOXRR, brkan1, Bubili, Bubimir, Cicumile, coaaco, cojapop, Comyymoc, CrazyDiablo, Denaya, DENIRO, Dimitrije Paunovic, Dioniss, Djokkinen, djordje92sm, DJUNTA, Djuza, DLazić, Dorijan Grej, Dzigy, Dzoni2412, Enderus, Feller, goran.vvv, GrobarPovratak, havoc995, Igritelj, In_hero, istina, Istman, j-22orao, Jester, kaisarevic1, Kalu128338, Korle, Kubovac, kybonacci, Lester Freamon, Levi, Malahit, Marko Marković, MB120mm, Mi lao shu, Miki01, mikrimaus, mir, Mitogna, MK10, mnn2, musa, nebidrag, nebkv, nebojsag, Nemanja.M, Parker, pein, Petar25, Pilence, Podgoritza, PoolbegD02, Prečanin30, repac, robertino, Romuluss, royst33, samoulogovankorisnik, sekretar, Slobodan Filipović, Srki98, Stanislav1970, synergia, t84dar, TRAVUNIJA, tritonus, Troja, Tumansky, Tunguska55, Utd4ce, veljko82, Viceroy, Vojkan Petrovic, vojnik švejk, vrag81, Warrior, wizzardone, XBMC, yrraf, Zastava, zeka013, Zoran1959, Čika Gliša

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by